What's new

Asuswrt-Merlin 378.50 is out

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

I took a peek at the code and those rules are being set by Parental Controls, one per client that you add (the rules in the forward list are actually different, you just can't see the detail in that view).

Here's the comment that goes with setting that rule....

// MAC address in list and not in time period -> Redirect to blocking page.

It looks like the rule should be removed when the client is in the time period that access is allowed.

Accessing port 18099 in your browser does indeed lead to a blocking page, so it seems this is the reason these forwards were implemented; rather than the internet connection just dropping, which could lead to confusion as to why the connection just dropped, you get a page explaining why.

Adults 1 - Children 0

I'm assuming the port forwards are permanent though, since the block page seems to be hosted on port 18099, if another device is using this port when parental control kicks in, that device will have it's connection broken, make sense?
 
Last edited:
packets to ports 0&1 are not dropped after upgrade

Hi,

After upgrading to 378.50 from 378.46 I noticed that TCP connections from the wan to ports 0&1 are not dropped, but are responded with an RST packet.
I think they should be dropped, especially when firewall/DoS protection are on (and Respond Ping Request from WAN is off).
 
Hi,

After upgrading to 378.50 from 378.46 I noticed that TCP connections from the wan to ports 0&1 are not dropped, but are responded with an RST packet.
I think they should be dropped, especially when firewall/DoS protection are on (and Respond Ping Request from WAN is off).

You need to let us know what router you are posting about.

Edit: I don't have DoS or echo on and all ports including 0/1 are stealth.
 
Last edited:
Dual WAN

AC68U
After upgrading to 378.50 I've lost my Dual WAN functionality.
I did a factory reset and setup router manually, as per recommendation.
Then I tried to play around watchdog, but no matter what setting were applied, DW isn't still working. Neither changing LAN port helped.
My WAN has real address and backup channel comes from another device with grey address.
Seems router can't obtain an IP address on LAN1.

How to trace this issue?
 

Attachments

  • Screen Shot 2015-02-15 at 11.18.32.png
    Screen Shot 2015-02-15 at 11.18.32.png
    23 KB · Views: 419
  • Screen Shot 2015-02-15 at 11.18.47.png
    Screen Shot 2015-02-15 at 11.18.47.png
    53.7 KB · Views: 424
You need to let us know what router you are posting about.

Edit: I don't have DoS or echo on and all ports including 0/1 are stealth.

RT-AC66.
Checked using GRC ShieldsUP!

Matching DoS/Echo settings to yours didn't stealth them either.
 
I took a peek at the code and those rules are being set by Parental Controls, one per client that you add (the rules in the forward list are actually different, you just can't see the detail in that view).

Here's the comment that goes with setting that rule....

// MAC address in list and not in time period -> Redirect to blocking page.

It looks like the rule should be removed when the client is in the time period that access is allowed.

Accessing port 18099 in your browser does indeed lead to a blocking page, so it seems this is the reason these forwards were implemented; rather than the internet connection just dropping, which could lead to confusion as to why the connection just dropped, you get a page explaining why.

Adults 1 - Children 0

I'm assuming the port forwards are permanent though, since the block page seems to be hosted on port 18099, if another device is using this port when parental control kicks in, that device will have it's connection broken, make sense?

Thanks john9527 & aircoreboy

I had to make sure there is nothing else that are adding this NAT rule in my port forward.
When I add more clients to my Parental Controls I got the same rule "double" If you know what i mean.
The rules do not disappear when the client are inside the allowed set time.
 

Attachments

  • port_nat.jpg
    port_nat.jpg
    52.1 KB · Views: 500
I just happened to walk in and notice that the router appears to be completely resetting itself. All the lights flashed and it went through the startup cycle. Any ideas?
 
What router are you running this FW on? Did you follow the procedure to factory reset after installing it?
 
What router are you running this FW on? Did you follow the procedure to factory reset after installing it?

AC66U. Yea I just tried to go back to an older FW using the rescue/recovery. Afterwards i flashed using the restore in the GUI. Tee router just rebooted and is having the same issues.
 
Dec 31 17:00:33 WAN Connection: WAN was restored.
Dec 31 17:00:34 dnsmasq-dhcp[419]: DHCPDISCOVER(br0) 10:a5:d0:17:83:f6
Dec 31 17:00:34 dnsmasq-dhcp[419]: DHCPOFFER(br0) 192.168.1.19 10:a5:d0:17:83:f6
Dec 31 17:00:34 dnsmasq-dhcp[419]: DHCPREQUEST(br0) 192.168.1.95 6c:ad:f8:75:e4:8b
Dec 31 17:00:34 dnsmasq-dhcp[419]: DHCPACK(br0) 192.168.1.95 6c:ad:f8:75:e4:8b Chromecast
Dec 31 17:00:34 dnsmasq-dhcp[419]: DHCPREQUEST(br0) 192.168.1.99 68:b5:99:06:f0:20
Dec 31 17:00:34 dnsmasq-dhcp[419]: DHCPACK(br0) 192.168.1.99 68:b5:99:06:f0:20
Dec 31 17:00:34 dnsmasq-dhcp[419]: DHCPDISCOVER(br0) 10:a5:d0:17:83:f6
Dec 31 17:00:34 dnsmasq-dhcp[419]: DHCPOFFER(br0) 192.168.1.19 10:a5:d0:17:83:f6
Dec 31 17:00:34 dnsmasq-dhcp[419]: DHCPREQUEST(br0) 192.168.1.19 10:a5:d0:17:83:f6
Dec 31 17:00:34 dnsmasq-dhcp[419]: DHCPACK(br0) 192.168.1.19 10:a5:d0:17:83:f6 android-d9a1c8618070dbb4
Dec 31 17:00:37 dnsmasq-dhcp[419]: DHCPREQUEST(br0) 192.168.1.147 00:1a:ef:27:39:e3
Dec 31 17:00:37 dnsmasq-dhcp[419]: DHCPACK(br0) 192.168.1.147 00:1a:ef:27:39:e3 Josh-PC
Dec 31 17:00:44 dnsmasq-dhcp[419]: DHCPREQUEST(br0) 192.168.1.99 68:b5:99:06:f0:20
Dec 31 17:00:44 dnsmasq-dhcp[419]: DHCPACK(br0) 192.168.1.99 68:b5:99:06:f0:20 HP06F020
Feb 15 09:52:06 rc_service: ntp 465:notify_rc restart_upnp
Feb 15 09:52:06 rc_service: ntp 465:notify_rc restart_diskmon
Feb 15 09:52:06 rc_service: waitting "restart_upnp" via ntp ...
Feb 15 09:52:06 miniupnpd[468]: shutting down MiniUPnPd
Feb 15 09:52:06 miniupnpd[477]: HTTP listening on port 50939
Feb 15 09:52:06 miniupnpd[477]: Listening for NAT-PMP/PCP traffic on port 5351
Feb 15 09:52:07 crond[347]: time disparity of 2169651 minutes detected
Feb 15 09:52:07 disk monitor: be idle
 
378.50 with TA on AC87R large memory jump overnight

Since my last recycle over 6 days ago memory was staying about 25% used on my AC87R router. When I looked at the summary graph this morning and it was about 60%. Haven't done nothing to the router other than look at the traffic analyzer data on a daily basis. No process has spiked with memory usage so I assume it has to be in the kernel driver area.

Also the syslog doesn't show anything but the normal DHCP chatter. I am lost on trying to determine what has caused this. Anyone else had this issue?
 
Small Traffic Analysis UI glitches

I haven't seen these reported, but I'm seeing a few minor UI glitches on the Statistics tab on my 87R with 50_ta.

Regardless of the "Show By" setting of daily/weekly/monthly, the section at the bottom always displays the top 5 clients for the month and their traffic. If you change it, the message will flash Daily or Weekly, but when the data fills in, it switches back to Monthly.

Also, if you select the Apps button, any change to daily/weekly/monthly causes the drop down to revert to all clients, not all apps. If you do have the apps drop down, selecting one of the apps doesn't seem to bring up any data in either the graph, or the client list at the bottom.

None of these are showstoppers by any means (and TA is great!) but wanted to make sure they got reported.

Thanks again for your great work!
 
Hi RMerlin,

I'd set my AC-RT56U to use https only on standard 443 port. All work fine, but in each reboot cycle the Router seems to generate another different certificate, so I need to clear my browser cache, and add again the newer certificate before i can log in the router webui again.

I dont know if this is the normal behavior, but is annoying repeat the same process in each reboot.
 
Hi RMerlin,

I'd set my AC-RT56U to use https only on standard 443 port. All work fine, but in each reboot cycle the Router seems to generate another different certificate, so I need to clear my browser cache, and add again the newer certificate before i can log in the router webui again.

I dont know if this is the normal behavior, but is annoying repeat the same process in each reboot.

It is exactly the same with my RT-N66U. A already get used to this ...
 
AC66U. Yea I just tried to go back to an older FW using the rescue/recovery. Afterwards i flashed using the restore in the GUI. Tee router just rebooted and is having the same issues.

Could it be a heat problem? Maybe its getting hot and resetting. Also I have had a few strange issues after flashing a few times in that speeds super slow and wireless AC stuck at 2.4 N speeds. Connecting via telnet and clearing nvram via "mtd-erase -d nvram" is the only way I have been able to resolve. Using the GUI restore defaults or holding reset button to reset default didn't help. Not sure why exactly as I understand all 3 clear nvram. Maybe try an nvram clear that way and certainly check for vents clogged with dust causing excess heat.
 
Last edited:
My DLNA server is no longer detected on my TV also I cannot connect to the Sky+HD box over my phone connected via WiFi. I even reset the router and reconfigured it. Any ideas what I may have not configured :(
 
New RT-AC68U. Came with the .376 FW. I've upgraded the FW incrementally to 378.3873 before doing the 378.50_0. Reset with the WPS button while powering up before configuring router. After changing a couple of settings I set the WIFI to fixed channels. after saving the settings the WIFI does not come back up. Even after a power cycle the WIFI lights are on but no signal (sometimes 5g comes up) Firmware restore to .376.1663 and the router works again!



Suggestions? Bad router?
 
My DLNA server is no longer detected on my TV also I cannot connect to the Sky+HD box over my phone connected via WiFi. I even reset the router and reconfigured it. Any ideas what I may have not configured :(

I have noticed this too on my AC68R. DLNA discovery over the network has gotten flaky compared to the latest .49_4 build I was running on before. It is not as bad as it was in the early days of the RT68R firmware in the early part of last year. But it has definitely regressed in the .50 build.
 
After just about giving up I reset the nvram with the command : mtd-erase2 nvram and the RT-AC68U seems to be working very well! Thanks Eric!!!



Update: Seems that I "spoke" too soon. After I erased the nvram, restarted the router and went through the setup it did seem to be working well. Until... I power cycled it. The LED's came on but I had no WIFI, LAN or WAN. Another power cycle with the WPS button pushed. Nothing... pressed the reset button... nothing. Finally powered up into recovery mode and installed .376.1663, factory reset, installed the .376.1663 again from the firmware update, factory reset again, configured the router and let it update itself to .376.3626. Power cycled a couple more time then installed Merlin .376.48_5, another factory reset, configured the router, several power cycles/reboots and it is working!



Not sure what is up with the 378.50 Merlin build but it just will not work for me! The .376.49_5 has the features I need so I may just stay with it. Suggestions?



Bill
 
Last edited:

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!
Top