Skynet Outbound blocks

BeachGuy · Jul 19, 2024

I have 47 outbound blocks from my router (Skynet reports my router's WAN IP) to IP 91.212.166.118. When I click on the link in Skynet it brings me to AlienVault and says Great Britain and Northern Ireland. When I click on "whois" it says Russia. I'm not sure how to interpret the data on those websites but am concerned the router is sending anything out that's blocked. Where/why would the router be sending this from? I use unbound, diversion and skynet. What should I do?

P.S.
I do have the TOR browser and have used that a couple of times today. Could that be it?

firewall stats search ip 91.212.166.118
#############################################################################################################
# #
# ███████╗██╗ ██╗██╗ ██╗███╗ ██╗███████╗████████╗ ██╗ ██╗███████╗ #
# ██╔════╝██║ ██╔╝╚██╗ ██╔╝████╗ ██║██╔════╝╚══██╔══╝ ██║ ██║╚════██║ #
# ███████╗█████╔╝ ╚████╔╝ ██╔██╗ ██║█████╗ ██║ ██║ ██║ ██╔╝ #
# ╚════██║██╔═██╗ ╚██╔╝ ██║╚██╗██║██╔══╝ ██║ ╚██╗ ██╔╝ ██╔╝ #
# ███████║██║ ██╗ ██║ ██║ ╚████║███████╗ ██║ ╚████╔╝ ██║ #
# ╚══════╝╚═╝ ╚═╝ ╚═╝ ╚═╝ ╚═══╝╚══════╝ ╚═╝ ╚═══╝ ╚═╝ #
# #
# Router Firewall And Security Enhancements #
# By Adamm - https://github.com/Adamm00/IPSet_ASUS #
# 02/07/2024 - v7.6.1 #
#############################################################################################################

=============================================================================================================

Logging Data Detected in /tmp/mnt/ROUTER/skynet/skynet.log - 4.5M
Monitoring From Jul 18 21:00:09 To Jul 20 04:48:58
16496 Block Events Detected
2970 Unique IPs
0 Manual Bans Issued

91.212.166.118 is NOT in set Skynet-Whitelist.
91.212.166.118 is NOT in set Skynet-Blacklist.
Warning: 91.212.166.118 is in set Skynet-BlockedRanges.

BlockedRanges Reason;
91.212.166.0/24 "BanMalware: et_block.netset"

IP Location - Russia (Proton66 OOO / AS198953)

91.212.166.118 First Tracked On Jul 19 13:30:00
91.212.166.118 Last Tracked On Jul 19 13:30:01
47 Blocks Total

Event Log Entries From 91.212.166.118;

First Block Tracked From 91.212.166.118;
Jul 19 13:30:00 kernel: [BLOCKED - OUTBOUND] IN= OUT=eth0 SRC=WAN IP DST=91.212.166.118 LEN=74 TOS=0x00 PREC=0x00 TTL=64 ID=24500 PROTO=UDP SPT=34994 DPT=53 LEN=54

10 Most Recent Blocks From 91.212.166.118;
Jul 19 13:30:01 kernel: [BLOCKED - OUTBOUND] IN= OUT=eth0 SRC=WAN IP DST=91.212.166.118 LEN=78 TOS=0x00 PREC=0x00 TTL=64 ID=24858 PROTO=UDP SPT=41049 DPT=53 LEN=58
Jul 19 13:30:01 kernel: [BLOCKED - OUTBOUND] IN= OUT=eth0 SRC=WAN IP DST=91.212.166.118 LEN=78 TOS=0x00 PREC=0x00 TTL=64 ID=24864 PROTO=UDP SPT=60967 DPT=53 LEN=58
Jul 19 13:30:01 kernel: [BLOCKED - OUTBOUND] IN= OUT=eth0 SRC=WAN IP DST=91.212.166.118 LEN=78 TOS=0x00 PREC=0x00 TTL=64 ID=24876 PROTO=UDP SPT=37636 DPT=53 LEN=58
Jul 19 13:30:01 kernel: [BLOCKED - OUTBOUND] IN= OUT=eth0 SRC=WAN IP DST=91.212.166.118 LEN=78 TOS=0x00 PREC=0x00 TTL=64 ID=24883 PROTO=UDP SPT=20023 DPT=53 LEN=58
Jul 19 13:30:01 kernel: [BLOCKED - OUTBOUND] IN= OUT=eth0 SRC=WAN IP DST=91.212.166.118 LEN=78 TOS=0x00 PREC=0x00 TTL=64 ID=24892 PROTO=UDP SPT=36667 DPT=53 LEN=58
Jul 19 13:30:01 kernel: [BLOCKED - OUTBOUND] IN= OUT=eth0 SRC=WAN IP DST=91.212.166.118 LEN=78 TOS=0x00 PREC=0x00 TTL=64 ID=24899 PROTO=UDP SPT=12063 DPT=53 LEN=58
Jul 19 13:30:01 kernel: [BLOCKED - OUTBOUND] IN= OUT=eth0 SRC=WAN IP DST=91.212.166.118 LEN=78 TOS=0x00 PREC=0x00 TTL=64 ID=24902 PROTO=UDP SPT=30030 DPT=53 LEN=58
Jul 19 13:30:01 kernel: [BLOCKED - OUTBOUND] IN= OUT=eth0 SRC=WAN IP DST=91.212.166.118 LEN=78 TOS=0x00 PREC=0x00 TTL=64 ID=24913 PROTO=UDP SPT=52516 DPT=53 LEN=58
Jul 19 13:30:01 kernel: [BLOCKED - OUTBOUND] IN= OUT=eth0 SRC=WAN IP DST=91.212.166.118 LEN=78 TOS=0x00 PREC=0x00 TTL=64 ID=24919 PROTO=UDP SPT=45708 DPT=53 LEN=58
Jul 19 13:30:01 kernel: [BLOCKED - OUTBOUND] IN= OUT=eth0 SRC=WAN IP DST=91.212.166.118 LEN=78 TOS=0x00 PREC=0x00 TTL=64 ID=24931 PROTO=UDP SPT=22682 DPT=53 LEN=58

Top 10 Targeted Ports From 91.212.166.118 (Inbound);

-------- | -------- | --------------
| Hits | | | Port | | | SpeedGuide |
-------- | -------- | --------------

--*

Top 10 Sourced Ports From 91.212.166.118 (Inbound);

-------- | -------- | --------------
| Hits | | | Port | | | SpeedGuide |
-------- | -------- | --------------

*--

=============================================================================================================

[#] 33459 IPs (+0) -- 2848 Ranges Banned (+0) || 16450 Inbound -- 47 Outbound Connections Blocked! [stats] [17s]

BeachGuy · Jul 20, 2024

I just ran TOR browser again and the number of outbound blocks didn't change leading me to believe it's not the TOR browser.

Thread starter	Title	Forum	Replies	Date
P	Skynet Hundreds of Outbound Blocks from Pi-hole	Asuswrt-Merlin AddOns	12	Dec 16, 2023
A	Skynet Outbound block notification mail	Asuswrt-Merlin AddOns	0	Nov 17, 2024
K	Skynet No data to display for only outbound?	Asuswrt-Merlin AddOns	5	Sep 13, 2024
N	Skynet SkyNet/Firewall blocking all ping requests, including outbound	Asuswrt-Merlin AddOns	6	Jul 29, 2024
A	[SOLVED] Turned off outbound filtering and qos for upload still incredibly slow upload speeds?	Asuswrt-Merlin AddOns	24	Mar 29, 2024
B	Skynet Source LAN IP for outbound IP blocked by SkyNet	Asuswrt-Merlin AddOns	8	Feb 26, 2024
	Diversion Kids mode blocks normal dhcp function	Asuswrt-Merlin AddOns	4	Sep 3, 2024
	Blocking “RO” country code in Skynet blocks Proton VPN UK connections	Asuswrt-Merlin AddOns	2	Apr 28, 2024
A	Diversion apparently blocks domains not included in any list	Asuswrt-Merlin AddOns	9	Mar 21, 2024

Search

Search

Skynet Outbound blocks

BeachGuy

Senior Member

BeachGuy

Senior Member

Similar threads

Similar threads

Latest threads

Support SNBForums w/ Amazon

Sign Up For SNBForums Daily Digest

Members online