Menu
What's new
By:
Filters Better Search

firewall

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

  1. B

    Trend Micro Malicious Site Protection breaks the TiVo iOS app blocking

    I have a TiVo Roamio Pro --same as the regular box but with a bigger HD, 6 tuners, and a built in TiVo Stream. The iOS app lets you download or stream content, look at the guide, set recordings & remotely control TiVo Boxes throughout the home. Oddly enough, the android app functions...
    • beboptrumpet
    • Thread
    • ctf firewall hardware acceleration ios tivo trend micro
    • Replies: 0
    • Forum: ASUS Wi-Fi
  2. M

    Opening port to external properly

    Well, I splitted my issue from another thread, as was suggested. I applied the suggested by @ColinTaylor rule to my iptables iptables -I INPUT -i eth0 -p udp -m udp --dport 5060 -j ACCEPT and it was added below the mentioned DROP/LOGDROP rule. And I still cannot access Asterisk from outside...
  3. P

    manual firewall rules for loopback

    I have Asus RT-AC68U. It is double NATted and loopback does not work. Theoretically, this router has no problem with the loopback, so It may be entirely fault of my router being DoubleNAT. Changing NAT Loopback from Merlin to Asus does nothing. But, all of that is irrelevant. Same as firmware...
  4. M

    [Solved] Spotify + AB-solution = limited functionality

    I found out that Spotify no longer works on any of my devices. Searching the forum I found this and crawling the rest of the internet if found this. From what I've understand, I should withlist the CIDR's below and open port 4070 for in- and outbound TCP traffic (please do correct me if I'm...
    • MarCoMLXXV
    • Thread
    • absolution firewall iptables skynet spotify
    • Replies: 11
    • Forum: Asuswrt-Merlin
  5. M

    Network services filter limit?

    Hi there, Am I right here, assuming that this filter in Merlin is unlimited, and we can add any number of rules via iptables? I am speaking particularly about AC68U.
  6. P

    Adamm firewall - proper config

    I'm hoping for some assistance with the proper config of the Adamm firewall for my specific home setup. I have installed and run for a couple of days and just let it do its default out-of-the-box thing (no other setup than install / run). But after a couple of days it is clear I need to do some...
  7. M

    AC-68U firewall issue

    I have following firewall white-list rule in my table However, I get following records in my log anyway: May 24 10:27:38 kernel: DROP IN=eth0 OUT= MAC=ff:ff:ff:ff:ff:ff:f0:79:59:61:c4:60:08:00 SRC=176.36.209.209 DST=255.255.255.255 LEN=68 TOS=0x00 PREC=0x00 TTL=128 ID=26988 PROTO=UDP...
  8. S

    The optimum way to use iptables and ipsets

    Started a general discussion thread so that everyone can pitch in with their opinions about the ways which using iptables and ipsets can benefit the end user.
  9. S

    :: ipBLOCKer :: Category blocking using iptables and ipsets

    Blocks IPs & CIDR's tagged as Adware Country Custom ETF Malware Shalla(exp) Spam Tor-Exits Current Version: 1.1 See ChangeLog1_1.txt on github or on post2 if upgrading from Version 1.0 :: Features :: - Command Line Driven with Menu Assist - Category based Blocking - Select Categories to Block...
    • spalife
    • Thread
    • blocklist category custom filtering firewall ipset iptables net filter refresh whitelist
    • Replies: 81
    • Forum: Asuswrt-Merlin
  10. D

    Dual WAN configuration and firewall

    Scenario: The router's WAN and USB (Android connection) ports are configured in a load balanced (dual WAN) configuration. Does that mean you should protect the USB0 interface with iptables like you would VLAN2 (WAN port on an RT-AC88U) ? For example: iptables -I INPUT -i VLAN2 -m state...
  11. T

    trying to block all ports for a specific ip (including tcp/udp/tcp syn,ack,fin,rst,urg,psh)

    Hi, I was wondering if it possible to block all traffic for a specific source IP without creating multiple filter entries (like one for TCP, one for UDP, etc ) ? For the moment, I've created one entry for tcp and another for udp for each ip I want to filter... is this enough or should I create...
  12. zmaster

    Custom firewall-start script for OpenVPN (country allow list)

    Hi guys, I've been a reader of this forum for quite some time and I have a RT-AC68U for almost 2.5 years now but flashed Merlin's firmware last week. My reason was to flash was OpenVPN 2.4.x. My Synology was a bit behind and I don’t like services being exposed to the internet when they are not...
    • zmaster
    • Thread
    • country firewall ipset iptables openvpn script
    • Replies: 5
    • Forum: Asuswrt-Merlin
  13. D

    Blocking ICMP on WAN

    Numerous guides regarding firewalls state to block ICMP on the WAN interface (Input). However, when i do this internet connection fails. Now my ISP uses a /31 for the point to point connection (FTTP) to us, to which i then have 1x /30 and 1x /28 route-able blocks. so my connection is: 0.0.0.0/0...
    • delid4ve
    • Thread
    • firewall icmp mikrotik wan
    • Replies: 1
    • Forum: Routers
  14. U

    [SOLVED-FOR REAL] rc_service: skip the event: start_firewall.

    This is an issue that cropped up recently and I am at a loss for why it is happening. When the router is restarted (method does not matter) there is something in the syslog "rc_service: skip the event: start_firewall.". Basically the firewall does not start. When this happens I can only access...
  15. pirx73

    Whitelisted applications

    Is it actually possible to whitelist some of the ports/applications so they can bypass Parental Controls? I would like for example for WhatsApp to work on phone which is under restriction of the Parental Control.
  16. D

    Mikrotik Firewall Remote Access From DynDNS Address

    So i would like to create an access rule within the mikrotik firewall to restrict access to a couple of remote locations. Since these are residential and cannot obtain a static IP id like to know the best way of doing this, or if its even possible. The residential locations both have DynDNS...
    • delid4ve
    • Thread
    • dyndns firewall mikrotik remote access
    • Replies: 5
    • Forum: Routers
  17. Veldkornet

    dropping all-systems.mcast.net from Asuswrt Router

    Hey guys, SO I noticed on my firewall that it seems to be blocking a lot of IGMP requests from my RT-AC87U (AP mode - 380.63_2) to all-systems.mcast.net. I checked the source mac address to confirm that it's the RT-AC87U, although the IP address in use if completely wrong, that's the default IP...
  18. K

    Malware Filter / bad host IPSET

    Hello, I am trying to block outbound connects to know bad host from my LAN/ Wireless. I am running the script located below and have the below firewall rules so it looks to be working. Any know what else to check? Running this script under the heading "Malware Filter"...
  19. B

    pfSense/Sophos vs ASUSWRT/RMerlin - Is there any reason to change?

    So I have this "thing" for network security.... Trying to avoid to get hacked to easily... So from a security perspective, running pfSense on a dedicated box - is that a better (?) solution than the built in into ASUSWRT/RMerlin firmware? Let's have a peak at how I use my Asus: No web server...
  20. A

    Network Services Filter: how can I block internet access only at specific times?

    Forgive me if this has been addressed elsewhere, but I've searched everywhere in this subforum and found nothing (current, at least) that has helped me fix this. My goal is to block only internet on one device from TIME 1 to TIME 2 (ideally, 10p to 6p, but I'm not sure if that's possible given...
    • anoukaimee
    • Thread
    • asus merlin firewall hggomes iptables ntp parental control
    • Replies: 16
    • Forum: Asuswrt-Merlin
Top