Opportunistic mode works so I don't know what has changed, always used to run strict mode.
Beta Asuswrt-Merlin 388.1 Beta is available for select models
- Thread starter RMerlin
- Start date
-
- Tags
- asuswrt-merlin beta firmware
- Status
DNS director has started blocking port 853 as well as port 53 when redirection is set to anything other than no redirection. If you're using DNS Director for an Android client using Private DNS you can add it to the rule list and select "no redirection". Had the same issue with the Alphas (kids stared telling me their phones weren't working
- using Private DNS so that kids' mobiles are filtered via CleanBrowsing profiles).
Last edited:
ZebMcKayhan
Very Senior Member
If I have understood @RMerlin right Wireguard dns is handled using firewall dnat, same as DNS Director. Look at you firewall rules to determine what is happening, I.e:
Code:
iptables -nvL PREROUTING -t natBy the way, if you use DNS director to alter dns of a wireguard client, which rule should take precedence in your opinion? I actually dont know... by heart I would say DnsDirector but then this would probably conflict with global settings... if not, there would not be any other way of redirecting wireguard clients, at least not one by one.
Anyone know how this is prioritized?
Last edited:
lilstone87
Very Senior Member
I have my main router AX6000, and a AX68U running this beta. AiMesh is broken when both devices are running this build. The AX6000 will show the AX68U as a node that can be added. However it will go through the process, seems the AX68U even reboots while it tries to add it as a node. However it's loading percentage will hit around 50% before a error message comes up saying the node failed to be added. I spent like 45 minutes trying to get this to work, no luck.
However in my case I do run my AX68U as a wired mesh node. So I can still just have it in AP mode, and still serve other devices. Just the mesh system itself is broken, with both devices running this beta build. Anyways I know others have reported this issue as well. Just wanted to add it's not working for me either.
However in my case I do run my AX68U as a wired mesh node. So I can still just have it in AP mode, and still serve other devices. Just the mesh system itself is broken, with both devices running this beta build. Anyways I know others have reported this issue as well. Just wanted to add it's not working for me either.
skeal
Part of the Furniture
I think what is going on is; if you configure a device that is currently running through your Wireguard client on the router, to use a different DNS service than what the router Wireguard client is configured for, then when you apply the setting in DNS Director to do this, it changes the DNS used by the router Wireguard client, to the DNS configured in the DNS Director interface that you just applied. In my case DoT Cloudflare because I selected "Router", this causes a DNS leak. I use all Torguard DNS on my router Wireguard client. Before doing this of course I have no leaks. Yes it's likely a routing rule, as no settings in the router Wireguard client are altered.
explorer200
Occasional Visitor
This is usually just a problem with AI Mesh "pairing". Make sure the two routers are sitting right next to each other
visortgw
Very Senior Member
Try using the latest Asus baseline build on the AX68U AiMesh node (as opposed to Merlin 388.1 beta1). I had some issues with RT-AX86U nodes (Merlin beta1) under my AX6000 primary router (Merlin beta1) that were resolved by reverting to the Asus baseline on the nodes (AX6000 remains on Merlin beta 1)
lilstone87
Very Senior Member
I tried that. At first they were probably 20+ feet apart, with walls, and such in the way. I ended up having the AX68U within 3-4 feet of the AX6000, didn't help.
Manually adding devices the router blocked to an exclusion list is a temporary work around.DNS director has started blocking port 853 as well as port 53 when redirection is set to anything other than no redirection. If you're using DNS Director for an Android client using Private DNS you can add it to the rule list and select "no redirection". Had the same issue with the Alphas (kids stared telling me thir phones weren't working
Eg my fix at the moment is to entirely stop using dns director.
TheOldMan
Senior Member
Besides RT-AX68U, I assume the client list and Bandwidth Monitor work on all other models?
blackfireball5
Occasional Visitor
@SomeWhereOverTheRainBow @RMerlin
I had some time after work to test.
First I cleared my log and set it to log everything.
Then, I went to the Privacy tab and withdrew per @SomeWhereOverTheRainBow's suggestion.
Then I went to AIProtection and enabled it. It prompted me to accept the agreement, I accepted, it did it's percentage based count until it said "Complete" and then the router rebooted.
It then proceeded to bootloop 2-4 times.
I caught it and turned off AIProtection and saved my log.
"Crashlog" shows up twice in this log.
Thanks everyone.
EDIT:
I tried attaching the file itself, but that doesn't seem to be working. Here are a few snippets of log from where the "crashlog" appears.
EDIT 2:
Created a pastebin:
pastebin.com
I had some time after work to test.
First I cleared my log and set it to log everything.
Then, I went to the Privacy tab and withdrew per @SomeWhereOverTheRainBow's suggestion.
Then I went to AIProtection and enabled it. It prompted me to accept the agreement, I accepted, it did it's percentage based count until it said "Complete" and then the router rebooted.
It then proceeded to bootloop 2-4 times.
I caught it and turned off AIProtection and saved my log.
"Crashlog" shows up twice in this log.
Thanks everyone.
EDIT:
I tried attaching the file itself, but that doesn't seem to be working. Here are a few snippets of log from where the "crashlog" appears.
EDIT 2:
Created a pastebin:
AIProtection Bootloop Log 388.1 - AXE-16000 - Pastebin.com
Pastebin.com is the number one paste tool since 2002. Pastebin is a website where you can store text online for a set period of time.
Last edited:
The RT-AX68U image is missing a library needed by networkmap, which is why the networkmap is empty on this model (networkmap fails to run).
skeal
Part of the Furniture
Use a free pastebin account and leave the link here instead.
blackfireball5
Occasional Visitor
Updated my post. Thanks.
ghalidrim
New Around Here
Having the same problem on a AX68U, my AX88Us both upgraded and running mesh router and node fine, but my AX68U refuses to be set back up as a mesh node. I've reset it and factory reset it and it always fails at the 50% level both wired and on wireless.
garbageman23
New Around Here
I had the same issue except I'm running an RT-AX88U as the main router with an RT-AX68U node. Using 388.1 beta_1 on the main router, I tried loading beta_1 on the AX68U node and it just disappeared on the AiMesh page. I reset the AX68U, and it found it but when the percentage configuration went to 75%, it stated that it was unable to connect. I downgraded the node back to 386.7_2, reset it, and connected it, and all is well again with the AX88U running 388.1 beta_1 and the AX68U node running 386.7_2.
Unfortunately there is no info about the crash in the log, and since I can't reproduce it and it happens with a closed source component, then probably nothing I can do about it. You might try doing a factory default reset to see if it resolves your issue.
blackfireball5
Occasional Visitor
Huh. Strange. You can enable all three AIProtection features on your AXE16000 just fine?
When you do that, do you have a section to "check for signatures" on your firmware page? And do you show more than one agreement on your Privacy tab?
I did two factory resets. One using the GUI and then one using WPS button.
I suppose I will have to try it again at a later date.
- Status
Similar threads
- Locked
Similar threads
Similar threads
-
-
-
Asuswrt-Merlin 3004.388.8_2 - Switching from ‘automatic IP’ to ‘PPPoE’- Started by AsusFreak
- Replies: 6
-
-
-
-
-
-
-
Beta Asuswrt-Merlin 3004.388.6_x test builds (dnsmasq 2.90)
- Started by RMerlin
- Replies: 102