What would I be looking for specifically? I know that using them via a VPN client such as Viscosity pushed the DNS from them.
[Test builds] 380.58 alpha builds are now available
- Thread starter RMerlin
- Start date
What would I be looking for specifically? I know that using them via a VPN client such as Viscosity pushed the DNS from them.
Ian Manning
Occasional Visitor
Is there any prospect of this release fixing NAT Loopback on the RT-AC68U?
It's only the LEDs in a particular situation. Moving to 380.58 a factory reset is almost necessary. After that everything is fine.
RMerlin
Asuswrt-Merlin dev
NAT loopback is working properly, there's nothing to fix there.
RMerlin
Asuswrt-Merlin dev
Look for the OpenVPN line that says "PUSH" in it, as well as any entries from "openvpn-updown".
I cleared the log then restarted both VPNs.
I got the following (Note, I restarted VPN #2 first, VPN #1 second):
Code:
Feb 26 10:29:37 openvpn[2602]: SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
Feb 26 10:29:37 openvpn[2602]: PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1 bypass-dhcp,dhcp-option DNS 10.4.0.1,comp-lzo no,route-gateway 10.4.0.1,topology subnet,ping 10,ping-restart 60,ifconfig 10.4.33.184 255.255.0.0'
Feb 26 10:30:38 openvpn[3313]: SENT CONTROL [Private Internet Access]: 'PUSH_REQUEST' (status=1)
Feb 26 10:30:38 openvpn[3313]: PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1,dhcp-option DNS 209.222.18.222,dhcp-option DNS 209.222.18.218,ping 10,comp-lzo no,route 10.100.4.1,topology net30,ifconfig 10.100.4.6 10.100.4.5'Those are the desired DNS servers with push log, but the clients just don't care, they use OpenDNS which is my main DNS configured.
I got these for updown (it was a script though not openvpn-updown)
Code:
Feb 26 10:29:37 openvpn[2602]: updown.sh tun12 1500 1558 10.4.33.184 255.255.0.0 init
Feb 26 10:30:38 openvpn[3313]: updown.sh tun11 1500 1558 10.100.4.6 10.100.4.5 initFor good measure, I rebooted the router and checked the log again.
Code:
Feb 26 10:38:40 openvpn[1372]: SENT CONTROL [Private Internet Access]: 'PUSH_REQUEST' (status=1)
Feb 26 10:38:40 openvpn[1372]: PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1,dhcp-option DNS 209.222.18.222,dhcp-option DNS 209.222.18.218,ping 10,comp-lzo no,route 10.100.4.1,topology net30,ifconfig 10.100.4.6 10.100.4.5'
Feb 26 10:38:43 openvpn[1383]: SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
Feb 26 10:38:43 openvpn[1383]: PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1 bypass-dhcp,dhcp-option DNS 10.4.0.1,comp-lzo no,route-gateway 10.4.0.1,topology subnet,ping 10,ping-restart 60,ifconfig 10.4.33.184 255.255.0.0'
Feb 26 10:38:40 openvpn[1372]: updown.sh tun11 1500 1558 10.100.4.6 10.100.4.5 init
Feb 26 10:38:43 openvpn[1383]: updown.sh tun12 1500 1558 10.4.33.184 255.255.0.0 initI then rebooted a client and went to ipleak.net and it is still using OpenDNS although using VPN for IP+WebRTC. It doesn't matter which one of the VPNs are used, the clients simply use OpenDNS instead, even though the DNS seems to be pushed. I've tried both Strict and Exclusive DNS (I would prefer to use exclusive - I want them 100% disconnected if the VPN is not running for any reason).
This wasn't working on stable either for me (adding a second VPN made it never work unless using DNSFilter, which still works on alpha 3).
RMerlin
Asuswrt-Merlin dev
The lack of entry for openvpn-updown means that for some reason there are no DNS being added to the firewall. Can you double check that you did set the Accept DNS option to "Exclusive" on your OpenVPN client configurations, and that policy-based routing is indeed enabled with some clients configured in it?
abescalamis
Regular Contributor
I installed .58 and its working good, the issue/bug that I found has nothing to do with the firmware is with DLNA, after merlin added minidlna 1.1.5. I store my movies with their cover picture (JPEG dlna compatible), so it will display the picture as the cover-art on players, and now it displays the cover separately. that started with .57 I believe.
RMerlin
Asuswrt-Merlin dev
No idea why it wouldn't work then. We'll need to mount a modified version of the updown.sh script on your router with additional debug output to figure out what's going on as I can't reproduce it here. However I can't do that now as I'm not at home.
If you are confortable with Linux script, make a copy of the script in a writable location, then mount it on top of the original read-only script:
Code:
cp /usr/sbin/updown.sh /jffs/
mount -o bind /jffs/updown.sh /usr/sbin/updown.shThen, you can modify /jffs/updown.sh script to insert more logging information (use the "logger" command to send to syslog, there are already a few example inside that script on how to use it), and try reconnecting your OpenVPN clients to see what you get. Most important is to check what you get as OPTION passed to that script.
I copied that file over then used init-start to mount it on reboot.
I got the following entries from that reboot: http://pastebin.com/6sj4rr7Y
I used the following script: http://pastebin.com/bu2egZXU
If you have any suggestions from there, please let me know.
RMerlin
Asuswrt-Merlin dev
Thanks. I'm not at home right now so I can't look, I'll check either tonight or this weekend to see if anything comes up.
MarkRH
Senior Member
I am guessing not, but does this version include the changes in the latest ASUS RT-AC68U Firmware version 3.0.0.4.380.1842? https://www.asus.com/us/Networking/RTAC68U/HelpDesk_Download/
Thanks,
Mark
Thanks,
Mark
All good here too.Vanilla config.No Qos(no need), No IP monitoring(no need)
NAT enabled(CTF+FA)
2.4 ghz(with NAT)Wireless clients have acces to internet and 5ghz working fine
1 days uptime
Great fw and i like the new "Advanced Tweaks and Hacks"
FYI = 2.4ghz with NAT disable is still present for AC68(tested), but i dont care , i dont need QOS or IP monitoring
My AC68 also spontaneously reboots with 380.57 onward, its fine with the previous SDK. I'm curious to see if others are experiencing this.
RMerlin
Asuswrt-Merlin dev
See the changelog for which GPL coebase this is based on.
RMerlin
Asuswrt-Merlin dev
Same place as the other releases -either of the download sites.
Sent from my Nexus 9 using Tapatalk
Veldkornet
Senior Member
DNSCrypt? New in this firmware? I look forward to that if it is
On that note, any recommendations on a provider that uses both? Which also has IPv6 support?
GoogleDNS -> DNSSEC - Yes | DNSCrypt - No
OpenDNS -> DNSSEC - No | DNSCrypt - Yes
Sent from my iPhone using Tapatalk
Last edited:
Similar threads
Similar threads
Similar threads
-
Beta Asuswrt-Merlin 3004.388.6_x test builds (dnsmasq 2.90)- Started by RMerlin
- Replies: 102
-
-
-
-
-
Weird Issue on Asus speed test vs Desktop Speed test
- Started by garysteel
- Replies: 12
-
-
Latest threads
-
-
-
-
-
can configuration information of the same firmware version be exported/imported to each other?- Started by fffddd
- Replies: 3
Sign Up For SNBForums Daily Digest
Get an update of what's new every day delivered to your mailbox. Sign up here!