love this- Notification on new unknown devices connecting
cheese, while I agree with safe browsing, time restrictions should be controlled by parents saying "switch it off" and teaching self control.such as "rewarding" a kid
How does Asus usually roll out? The most popular models first? The most expensive ones first? Cheapest ones? Or is there no logic to it?I won`t get access to 388 code until September, and Asus won't be migrating all other devices at once, they intend to do it gradually over the course of multiple months.
Unintentionally I fired upgrade from 386.3.2 to 386.7 without following "dirty upgrade" recommendations - USB disk inserted, Entware running (SAMBA, torrent client..).
Upgrade finished, new version show up on a main GUI window and all worked.
There was no need to do any of that as your router had successfully been updated to 386.7. You just wasted a lot of time for no reason.Then I release USB drive, swith off router, wait 5 minutes, pull out USB cable and boot for 15'.
Then switch off, pull in USB drive with Entware and boot for an hour, then rebooted.
When I feel it's ready and there are no more issues that need fixing for that release. I don't have any timetable at this time.
There's no real pre-established method. Previous major upgrades were typically rolled out in a shorter time frame.How does Asus usually roll out? The most popular models first? The most expensive ones first? Cheapest ones? Or is there no logic to it?
When I feel it's ready and there are no more issues that need fixing for that release. I don't have any timetable at this time.
There's no real pre-established method. Previous major upgrades were typically rolled out in a shorter time frame.
netstat -nlp | grep httpd
in the SSH.It's quite possible that the page does not support reporting 10 Mbps, probably because it's 2022.Actually the tools page will report the correct speed, this kind of issue only exists in the network map
If I recall, this is because it's required to display the block page when you use AiProtection and you try to access a blocked site. The router needs to be able to handle port 80 traffic to serve the error page.You can access HTTP through the port you set regardless of the Authentication method setting, and you can see that the httpd service is running throughnetstat -nlp | grep httpd
in the SSH.
I know that. But it was a safety measure as my job depend on a reliable internet connection.There was no need to do any of that as your router had successfully been updated to 386.7. You just wasted a lot of time for no reason.
Advice regarding routers safety from network specialists:Issue 2: Potential security holes of the http server.
To reproduce:
1: Set "Authentication Method" to "HTTPS only".
2: Change the HTTP port to any port other than 80.
3: You can access HTTP through the port you set regardless of the Authentication method setting, and you can see that the httpd service is running throughnetstat -nlp | grep httpd
in the SSH.
Tested routers: RT-AC86U and RT-AC68U.
To verify these issues, all routers were reset to factory.
Good morning and thanks for your explanations and clarifications.It's quite possible that the page does not support reporting 10 Mbps, probably because it's 2022.
BTW, don't force a specific rate. For it to work, both ends need to be set on a specific rate. If one of the two ends is still on auto negotiate, then the end result is unpredictable. Some ports will end up defaulting to half-duplex for example.
If I recall, this is because it's required to display the block page when you use AiProtection and you try to access a blocked site. The router needs to be able to handle port 80 traffic to serve the error page.
Thanks, I think this is only happening on the LAN, so the impact seems to be limited.Advice regarding routers safety from network specialists:
Never expose routers http(s) server to the world, only for a local network. It is intended only for a router administration. Use VPN to access local network and a http server.
As so, only ssh port hole is in firewall, which minimise security risks.
AiProtection was just one example, there are other reasons why httpd keeps listening on port 80. Parental Control is another one, to display the block page.No, I didn't enable AiProtection
Ah-hem... These routers are lacking an internal clock & they require a "successful" NTP Synchronization to establish a correct Date & Time ???I know that. But it was a safety measure as my job depend on a reliable internet connection.
Off topic: Yesterday we had a power drop. I started to work on a business over VPN and vital application shut-off at logon attempt, all other apps worked.
After searching for a reason I discovered that router did not synchronise time at boot - log show 5th may 2018 (default time at boot).
Reboot solved the issue.
Well, but I must stress that when set to port 80, the httpd server respects the setting of https only, so the problem is not port 80, but when changing to any port other than 80, https only loses its effect.AiProtection was just one example, there are other reasons why httpd keeps listening on port 80. Parental Control is another one, to display the block page.
I didn't make any recent change to that code, so any change in behaviour would come from upstream.
nvram set fc_disable=0
nvram commit
reboot
Welcome To SNBForums
SNBForums is a community for anyone who wants to learn about or discuss the latest in wireless routers, network storage and the ins and outs of building and maintaining a small network.
If you'd like to post a question, simply register and have at it!
While you're at it, please check out SmallNetBuilder for product reviews and our famous Router Charts, Ranker and plenty more!