Hi
I'm trying to get a grasp at my router (RT-AC68U) and this firmware (v380.65) by playing around. The final goal is a super paranoid setup, but only for educational purpose.
I'm trying to bind sshd and httpds to a specific device (a vlan). Sshd works, but I don't geht how I can change httpds.
I try to create a vlan (vlan9) that shall be used in my lan for admin/config purposes only with all admin interfaced attached only to this vlan. I did so far:
# my computer: 192.168.0.2; router 192.168.0.1, direclty connected, no switch (yet)
# change switch config
robocfg vlan 9 ports "4t 5t"
# change router config
vconfig add eth0 9
ifconfig vlan9 10.0.9.1 netmask 255.255.255.0
ifconfig vlan9 up
# allow traffic in firewall
iptables -A INPUT -i vlan9 -m state --state NEW -j ACCEPT
# i can add another sshd on the new interface by simply typing
dropbear -p 10.0.9.1:22 -s -j -k
# i succeed to connect from my computer after bringing up the vlan9
# (and plugging the cable into router port 4)
# top shows that the new process listening on the vlan spawns subprocesses if I login
vconfig add eth0 9
ifconfig eth0.9 10.0.9.2/24
ifconfig eth0.9 up
# but the same doesn't work for httpds:
httpds -s -p 8443 -i vlan9
# it exits immediately with this message:
[ssl_init] success
bind: address already in use
can't bind to loopback address
# So I guess I can only run one instance, so I kill httpds manually and restart it immediately, due to the automatic restarts
kill [pid of running httpds] && httpds -s -p 8443 -i vlan9
# this kinds works, the webbrowser can now connect from computer, but it doesn't deliver content, I only get an 404 on the browser of the computer. Please note that the connection seems to work, I do get the 404, and the ssh connections though the vlan9 is working.
So I have a couple of questions regarding to this:
How can I get httpds to deliver the webui on a second interface?
How can I control the automatic restart of the webgui?
Maybe in general, where is the config for the httpds service and how is it (re)started.
I would be very thankful if someone got a few minutes and pointed me in the right direction or to the right docs
I'm trying to get a grasp at my router (RT-AC68U) and this firmware (v380.65) by playing around. The final goal is a super paranoid setup, but only for educational purpose.
I'm trying to bind sshd and httpds to a specific device (a vlan). Sshd works, but I don't geht how I can change httpds.
I try to create a vlan (vlan9) that shall be used in my lan for admin/config purposes only with all admin interfaced attached only to this vlan. I did so far:
# my computer: 192.168.0.2; router 192.168.0.1, direclty connected, no switch (yet)
# change switch config
robocfg vlan 9 ports "4t 5t"
# change router config
vconfig add eth0 9
ifconfig vlan9 10.0.9.1 netmask 255.255.255.0
ifconfig vlan9 up
# allow traffic in firewall
iptables -A INPUT -i vlan9 -m state --state NEW -j ACCEPT
# i can add another sshd on the new interface by simply typing
dropbear -p 10.0.9.1:22 -s -j -k
# i succeed to connect from my computer after bringing up the vlan9
# (and plugging the cable into router port 4)
# top shows that the new process listening on the vlan spawns subprocesses if I login
vconfig add eth0 9
ifconfig eth0.9 10.0.9.2/24
ifconfig eth0.9 up
# but the same doesn't work for httpds:
httpds -s -p 8443 -i vlan9
# it exits immediately with this message:
[ssl_init] success
bind: address already in use
can't bind to loopback address
# So I guess I can only run one instance, so I kill httpds manually and restart it immediately, due to the automatic restarts
kill [pid of running httpds] && httpds -s -p 8443 -i vlan9
# this kinds works, the webbrowser can now connect from computer, but it doesn't deliver content, I only get an 404 on the browser of the computer. Please note that the connection seems to work, I do get the 404, and the ssh connections though the vlan9 is working.
So I have a couple of questions regarding to this:
How can I get httpds to deliver the webui on a second interface?
How can I control the automatic restart of the webgui?
Maybe in general, where is the config for the httpds service and how is it (re)started.
I would be very thankful if someone got a few minutes and pointed me in the right direction or to the right docs
Last edited:
