AICloud 2.0 worked but not anymore

[LukeH]

Hi I was able to successfully start AICloud and connect to it on my my RT-AC56U running merlin. Then I wanted to see if it's supposed to work only with either Cloud Disk or Smart Access enabled so i started to disable those. Now, without doing anything else it won't work anymore when I enable both again (or either for that matter). What could be the problem as it worked initially?

Also, additional questions: when it worked, I was with both the PC I was on and my Asus ZenPhone 2 phone in VPN with the router (not in LAN, and that worked initially as I sayed). But, in that situation:
- in the web GUI the PC I was on was showing but offline, prompting me to wake it up.
- the Phone, while seeing the router's disk, was not showing up on the web GUI.
Are those two thing normal or something wasn't ok, maybe because of the VPN?
Thanks,
Luke

 

[LukeH]

A restart made it work. Still the additional questions remain.
Also: how can I properly block WAN access to AICloud and allow only LAN and VPN?

 

[Martineau]

Q. how can I properly block WAN access to AICloud and allow only LAN and VPN?

Best practice says you should really also change the AiCloud 2.0 default port 443 to something obscure such as 54321; similarly the streaming port 8082 to say 12345 - but clearly don't use either of these examples!

So for blocking Cloud Disk access from the WAN

  iptables -I INPUT -i $(nvram get wan0_ifname) -p tcp --dport ????? -j DROP

e.g. on RT-AC68U vlan2 is used for the WAN interface name:

  iptables -I INPUT -i vlan2 -p tcp --dport 54321 -j DROP
  iptables -I INPUT -i vlan2 -p tcp --dport 12345 -j DROP

but depending on your router firmware it could be eth0, ppp0 etc.

NOTE: You may also create a single rule rather than use individual rules:

-m multiport --dports 54321,12345 -j DROP