Search results

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

  1. I

    ASUS Router Security

    Bit of a late response but you can set up iptables rules (even in AP mode for some reason) to restrict access to the web UI. Adjust this as necessary: iptables -A INPUT \! -s 192.168.1.0/24 -d 192.168.1.1 -p tcp --dport 8443 -j DROP iptables -A INPUT \! -s 192.168.1.0/24 -d 192.168.1.1 -p tcp...
  2. I

    Securing camera on network

    The caveman solution: All cameras should go behind the NVR. This goes for wired and wireless cameras. Buy an adapter that uses MediaTek MT76 drivers: https://www.amazon.com/dp/B086L3D3NB/?tag=snbforums-20 Pass the adapter to a Linux host and configure hostapd to spin up a WiFi network. Don't...
  3. I

    AC86U: Comments setting up Traditional QoS

    I agree with you that this feature kinda sucks but it does work on my end. This is just a low-end RT-AC68u on Merlin 384.16. Make sure you're on the latest firmware, older ones have a bug where the upload/download clamps are reversed. It leads here: https://www.asus.com/support/FAQ/1010951 It's...
  4. I

    Some general questions about QoS

    This is true, and you might not notice a difference if your internet is slow enough. I don't use adaptive QoS because I don't use any of the Trend Micro features.
  5. I

    Some general questions about QoS

    First I speedtest a few times with the same server to find the top speed. I use traditional QoS + fq_codel. Plug those top speed numbers into the Upload/Download clamps and enable QoS. (Generally you'll have to increase these numbers by some amount since the overhead calculations aren't...
  6. I

    Asus RT-AC68u NordVPN speed

    That's just the short answer. The long answer is these routers use cheap ARM SoCs that don't compute very fast and lack AES acceleration so naturally they have mediocre OpenVPN performance. OpenVPN generally uses AES and its implementations don't tend to have good multi-threading support so now...
  7. I

    Asus Router, Rmerlin Firmware and OpenVPN options for best performance

    If it's just for personal use and you don't mind using WIP software check out Wireguard: https://www.snbforums.com/threads/experimental-wireguard-for-rt-ac86u-ax88u.46164/
  8. I

    Cable Haunt Security vulnerabilty select modems

    No idea what your config is so I can't tell. Order does matter but you can check if the rule works by visiting that IP in your browser. If nobody on your network can access the modem then this particular exploit won't work. She was telling you very politely that you're never getting firmware...
  9. I

    Cable Haunt Security vulnerabilty select modems

    Edit: Thread got merged so this needs context. This is for Asus routers with Merlin firmware. /jffs/scripts/firewall-start example Run this to undo the rule if you're in a hurry Should be doing this even if your model isn't vulnerable...
  10. I

    Disabling Firefox's automatic switch to DoH

    Mozilla always has users' best interests at heart. :) https://en.wikipedia.org/wiki/Mozilla_Corporation#Google
  11. I

    PiHole as part of Merlin

    You don't even need Diversion lol. First go find a hosts blocklist then take a look at this script. I've configured the script for our routers below. It downloads the Steven Black blocklist, converts it and writes the results to /jffs/configs/dnsmasq.conf.add. Disclaimer: This is an extremely...
  12. I

    [Release] Asuswrt-Merlin 384.13 is now available

    You should put a warning somewhere. Overclocking the 68u with the CFE is dangerous because it can result in soft bricks if you're not careful. It's much easier to clear NVRAM than reflashing a CFE with correct values. My 68u was quasi-stable with 1400,800 for one day. The next day the overclock...
  13. I

    [Release] Asuswrt-Merlin 384.13 is now available

    Dirty flashed a 68u from 384.12 to 384.13, works great. Thanks for fixing the performance issues, enabling QoS no longer slows down the router interface.
  14. I

    [Release] Asuswrt-Merlin 384.12 is now available

    Any update on the issue of enabling QOS making router pages slow and erratic? I saw quite a few people mentioning it. I've been working around it by disabling QOS every time I want to make settings modifications.
  15. I

    [Release] Asuswrt-Merlin 384.12 is now available

    I have the same problem with my 68u, though I don't know if the issue is exclusive to this build. My interface is HTTPS only. Once I enable QOS with fq_codel all router pages slow to a crawl. Most pages still work if I'm patient and it seems like it's just the network map page that doesn't work...
  16. I

    SSH over OpenVPN client on router

    Yeah you lost me, that's pretty complicated.
  17. I

    SSH over OpenVPN client on router

    Yes that is exactly what I'm doing. :) Yesterday I tried adding 127.0.0.1 or 192.168.1.1 to the VPN policy list, didn't work. The system logs said something about refusing to recursively route or something.
  18. I

    SSH over OpenVPN client on router

    I'm trying to set up a SOCKS5 proxy on my router that tunnels traffic through an OpenVPN client so I can selectively tunnel some of my programs. How can I do this? Here's what I want to do Computer -> SSH - > Router -> OpenVPN -> Internet I'm currently SSHing to a spare machine which is being...
  19. I

    AiProtection - Do I really need it?

    I decided not to enable any of the EULA required features. The protection claimed seemed like a lot of hot air.
  20. I

    Cloudflare Announces DNS That Won't Track You

    I find it highly disingenuous to advertise security, privacy, and DNS-over-HTTPS support only to display instructions for plaintext DNS lookups. For what it's worth, 1.1.1.1 IS listed in dnscrypt's resolver lists as Cloudflare as a DoH server. If you're interested in DNS security you should...
Top