firewall

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

  1. R

    Inbound Firewall Rules on 388 firmware

    Hello! I have upgraded to the 388 firmware and i notice theres a new firewall section for IPv4, however i cant seem to truly understand what it is for and what it does, as there is no explaination on both webui and asus website, does someone maybe know? Is it any similar to what we get in...
  2. halilnevzat

    RT-AC86U firewall blocks forwarded ports

    hi, im using asuswrt-merlin 386.7_2 , i use torrent often with Rutorrent, i have a fiber nokia modem provided by my isp, and my router connected to it via LAN cable and runs in a wireless router mode. all ip's is static. my main problem is when i open firewall my forwarded ports gets cut off, i...
  3. S

    Double NAT issue with upstream firewall

    Hi, I am running a mesh with 2 Asus Zen XT8 and 1Asus RT-AX86U. 1st XT8 is primary, 2nd XT8 and 86U are nodes. Here is my current network setup: ISP modem (in bridge) -> Sonicwall Firewall -> Asus XT8 primary - Clients Sonicwall LAN interface (X0) - 192.168.1.1 Asus WAN - 192.168.1.2 Asus...
  4. R

    [Firewall] Lock Port and Only Allow Cloudflare?

    Is there a way to lock open port 443 to only accept connections from cloudflare? Can it be done with skynet?
  5. I

    Skynet Should I unblock PDST.FM?

    My Skynet logs contain several blocked outbound connections to pdst.fm. After some investigation, I found that Overcast lists several podcasts my partner and I listen to in the privacy section that connect to pdst.fm. I couldn't find anything about pdst.fm when I searched the forum. I seem...
  6. AlleyCat

    How To Block Top-Level Domains?

    Greetings! A quick question: Is it possible to block top-level domains, like *.ru; *.cn; etc? I’ve looked at the Firewall URL Filter page (RT-AX88U), but I’m unsure of the proper syntax to use for blocking an entire TLD, assuming it can be done. I realize that client devices can simply use a...
  7. adri

    YazFi YazFi - Combining guest networks/subnets

    Hi, so this came up in my other thread, but I wanted to start a new one since it's a separate issue and I like separation of concerns :) . I want to make it so that, for one of my guest networks, the 2.4GHz segment (.14 subnet) can talk to the 5GHz segment (.15 subnet) and vice-versa, without...
  8. stevieosaurus

    Skynet Possible to EXCLUDE internal IP from firewall?

    Skynet is awesome, love it! Using it for country blocking (have no choice), and unfortunately external IP/domain whitelisting doesn't always work, nor is it practical in my case. What would be ideal is to have an internal IP address (mobile/tablet) be completely excluded from being protected by...
  9. S

    Firewall - Network Services Filter Problem

    Hi All, Im looking to setup my network services filter to block WAN access to my IoT devices. See attached picture, I believe I set it up correctly, I found an older post saying to block port 443 to limit secure connections as well, so I did that. Interestingly I still can access the IoT...
  10. C

    Firewall Rules - Block all connections except VPN

    I am currently using an ASUS router (RT-AC68U with Merlin firmware - 386.4). I want to connect a single client to an OpenVPN server with no traffic other than the VPN allowed. I don't want to use the OpenVPN client in the router as speeds are low when using the VPN, so I'm looking to use an...
  11. S

    Another firewall advice

    I have lost my second PfSense router to another friend of mine for the 2nd time in as many years! Anyway, they were on an old hardware and I was planning an upgrade; because, we have starting planning a home-automation project. We want to lockdown the network before we do anything on this...
  12. carefulcomputer

    (Denial of service) Router reboots on visiting filtered URL

    I have router version 386.3_2 on RT-AC5300. It seems to reboot when a filtered url is visited from a connected computer. Steps to reproduce : 1. Go to Firewall->URL Filter 2. Enable URL filter , filter type 'Blacklist' 3. Add a keyword 'drama' (i had 5 other fqdn url in list if that matters) 4...
  13. D

    Strange Firewall Behavior on QNAP TS-230

    Hi, I'm seeing strange behavior on my firewall: when I turn on my NAS, sometimes the firewall isn't running and has been disabled, but I don't any warnings :/ Sometimes it runs automatically... Using the newest firmware. Up to date app updates.
  14. trinketsecurity

    Home network security with limited budget and using existing hardware only

    I'm new to SNBforums, and I am a university student that have studied some networking and network security courses. I know some things about system hardening, VLANs, subnetting, security configurations to benchmarks/best practices and some more. Due to some unforeseen circumstances, I feel...
  15. V

    Firewall - Inbound Firewall Rules - How to block all traffic from specific remote IP ?

    Howdy, I haven't been able to find information on how to enter Local IP and Port Range in the firewall inbound rules. Those fields cannot be left empty. I want to block all traffic from a specific remote IP. Surely this must be possible?
  16. G

    Unbound unbound dns firewall (noobish question)

    Hello guys, got a question related to unbound (installed on AX86U) , specifically to the unbound GUI, what is the purpose of DNS firewall (what should be reflected there in case it contains something) and why it is completely empty in my case. Thanks for your inputs
  17. E

    Understanding what VPN Port Forwarding does locally

    I use a VPN service provider (similar to NordVPN etc), which offers port forwarding (opening ports). My understanding is that this is beneficial for some applications, such as BitTorrent. However, I am trying to understand what the functionality of opening ports actually accomplishes...
  18. D

    OpenVPN Server - Can I restrict access client to specified local IP on the server side local LAN? HELP!

    I have an Asus RT-AC88U running on stock firmware (Version 3.0.0.4.386.41700). I have created an OpenVPN server so that my brother can access my NAS from his home remotely. I have DDNS set up on the router. I can connect from his home to the VPN without issue. However, I noticed that when he is...
  19. A

    DNS-over-TLS - disable possibility for regular DNS requests from asus router

    Hi, Long time reader of these forums and grateful for all the advice. Running RT-AC86U smoothly. Configured DNS-over-TLS with all DNS traffic from LAN intercepted and answered by Router. This works flawlessly. (Got answer back for a "dig nas.lan @1.1.1.1 that only exists on my lan and couldn't...
  20. HELLO_wORLD

    Discussion on improving the firewall

    Hello to all. In a constant quest to improve security of the firewall, I recently added some rules to deal with port scan. The idea of this thread is to share our experiences and experimentation to make our firewalls better. It is open to comments, critics, improvements, etc... Here is my...
Top