Search results

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

  1. SkierInAvon

    Asus Merlin - iptables command (not working?)

    Yes, A reply and a thank you! -pete
  2. SkierInAvon

    Asus Merlin - iptables command (not working?)

    FIXED! and Working! Asus Merlin now "protecting my email server" Example below. Example is from my: /jffs/scripts/firewall-start Subnet 101.53.144.0 is located in Noida (Bakhtāwarpur), India I have no interest in allowing (any) connections to my email server - from anywhere inside of...
  3. SkierInAvon

    Asus Merlin - iptables command (not working?)

    Thanks Colin! I followed your syntax to the letter - changed 192.168.50.10 to my email server 10.0.253.4 and tried it... No Joy...I think what I (maybe?) learning is that...when you use AsusMerlin Browser Interface and Port Forward TCP/25 to 10.0.253.4...that (web browser Asus forwarding) takes...
  4. SkierInAvon

    Asus Merlin - iptables command (not working?)

    Thanks. However I do want to block (some) traffic from the public internet, that tries to reach my LAN, specifically TCP Port 25 inbound traffic that the Asus is set to forward to my email server on the LAN... Do you know the specific IPTABLES syntax that will block that TCP Port 25 traffic...
  5. SkierInAvon

    Asus Merlin - iptables command (not working?)

    Trying to use Asus-Merlin on my RT-AX56U and IPTABLES to block all traffic from a specific public IP address. First, SSH into Asus Merlin as admin from the LAN interface. Issue Command: iptables -A INPUT -s 209.193.73.210 -j DROP Command seems to execute (no errors reported) yet I can...
  6. SkierInAvon

    Merlin - How to log and review deliberately dropped IP Packets on WAN

    Good Tip. -j DROP to -j logdrop Seems to be working now in the Asus/Merlin log...( I can see specific (Internet) IP addresses being Dropped from/on the WAN side of the Asus Router. What I wanted...Thanks For the record I have the Asus Log levels set to info and info Default...
  7. SkierInAvon

    Merlin - How to log and review deliberately dropped IP Packets on WAN

    #!/bin/sh # command line command service restart_firewall # sleep runs bash script 65 seconds after full boot of Merlin # below is a short sample of the bash script that is running on the WAN interface sleep 65 iptables -I FORWARD -s 1.10.185.0/24 -j DROP...
  8. SkierInAvon

    Merlin - How to log and review deliberately dropped IP Packets on WAN

    Merlin - helps protected my email server on (LAN) interface. Merlin does this by running a Bash script that deliberately drops (inbound) IP packets on the WAN Interface (read: from Internet). I maintain a list of known (spammer IP addresses/subnets) that are inside the running Bash Script. Q.)...
  9. SkierInAvon

    GT-AC5300 - Need Bash Script to run at Boot

    Thanks. I'll buy another Asus that does support Merlin. I know how to do what I want using the Merlin SW.
  10. SkierInAvon

    GT-AC5300 - Need Bash Script to run at Boot

    I have a bash script that is designed to prevent connections inbound FROM the Internet from getting through (inbound) my Asus GT-5300. I am trying to prevent my email server (SMTP Port 25) from (abusive inbound from the Internet) connections. Script is designed to just "drop" inbound packets...
  11. SkierInAvon

    FFMPEG running on Merlin

    My Asus Router RT-AC3200 I'll try the Entware version. Thanks.
  12. SkierInAvon

    FFMPEG running on Merlin

    I have a copy of FFMPEG that runs on my Raspberry Pi (Debian). Q.) If I copy that single file from the Rpi3 to Merlin....will it run on Merlin? If not, what (Linux version) of FFMPEG will run on Merlin? Just using FFMPEG to make an occasional single JPG file from an existing video stream...
  13. SkierInAvon

    WAN Connection Reporting (TCP/UDP inbound) to Router from Internet

    Thanks for your reply...however it's NOT 100% accurate. In order for that to be TRUE a user would have to proactively SET the Asus Firewall Settings to: 1 - enable firewall 2 - enable DoS protection 3 - don't respond to ICMP (ping) request to the WAN port from the Internet. See attached JPG for...
  14. SkierInAvon

    WAN Connection Reporting (TCP/UDP inbound) to Router from Internet

    Asus Merlin - am looking for an inbound WAN (reporting script?) that I can run in the JFFS partition. Script would make a daily report (text file?) of the inbound TCP/UDP connections into the WAN Interface of the Router from the Internet. Example: If there is a particular IP address that keeps...
  15. SkierInAvon

    IP Tables and Blocking Inbound (public) WAN IP addresses

    After about (30) minutes of testing - Your updated IPTABLES Syntax WORKS! THANKS! Working: iptables -I FORWARD -s 200.16.89.0/24 -j DROP Still kind of amazing to me the Router/NAT Gateway folks don't have a simple browser based interface that lets users BLOCK TRAFFIC...
  16. SkierInAvon

    IP Tables and Blocking Inbound (public) WAN IP addresses

    Thanks. I'll test it now, and report results.
  17. SkierInAvon

    IP Tables and Blocking Inbound (public) WAN IP addresses

    Am running (August 2017) version of AsusWrt-Merlin. Love it. Have Script wan-start running on permanent jffs partition. Am successfully blocking inbound WAN traffic from 200.16.89.92 with this: iptables -I FORWARD -s 200.16.89.92 -j DROP My question: What is the syntax to...
Top