cgar
New Around Here
Hi I'm looking for a way to have the authentication method of HTTP access to the router from WAN set to both HTTP and HTTPS but disable HTTP from wan. So that I can have nice fast HTTP router configuring at home and more secure but slower HTTPS configuring from WAN.
I have an ASUS RT-AC66U running Asuswrt-Merlin 3.0.0.4.374.39_0.
I've tried setting a portforward the HTTP port to an invalid host in the Virtual server page and I've tried dabbeling with iptables to reject access from ppp0 on the HTTP port.
The System log > port forwards page shows:
5554 is the HTTP port I configured and 5555 is the HTTPS port I configured. There are no entries in the WAN > Virtual server / Port forward page.
In SSH the files /tmp/nat_rules_ppp0_eth0 and /tmp/nat_rules contain the line:
I've considered making a script to delete this line every time the router boots but woulden't that cause wear and tear to the flash memory? Also since this is a file in /tmp it must read the setting from somewhere else. If I edit the file it reads it from will that work accross reboots?
Anyone know a way?
I have an ASUS RT-AC66U running Asuswrt-Merlin 3.0.0.4.374.39_0.
I've tried setting a portforward the HTTP port to an invalid host in the Virtual server page and I've tried dabbeling with iptables to reject access from ppp0 on the HTTP port.
The System log > port forwards page shows:
Code:
Destination Proto. Port range Redirect to Local port Chain
ALL TCP 5554 192.168.1.1 80 VSERVER
ALL TCP 5555 192.168.1.1 5555 VSERVER
In SSH the files /tmp/nat_rules_ppp0_eth0 and /tmp/nat_rules contain the line:
Code:
-A VSERVER -p tcp -m tcp --dport 5554 -j DNAT --to-destination 192.168.1.1:80
Anyone know a way?
Last edited: