Recent content by bengalih

  1. bengalih

    SSH Brute Force Protection - sshd_bfp - where in GUI?

    Thanks...that makes sense. Is the ASUS option configurable at all?
  2. bengalih

    amtm disk-check script and ntp

    As I mention in my OP, my WAN is not available until after my disk mounts. This is because I require a compiled wpa_supplicant package and supported libraries to support 802.11x authentication with AT&T's fiber network. So, in my case I will *never* be synced to a WAN source prior to my disk...
  3. bengalih

    firewall-start being executed twice by IPDfw (what is it?)

    Yes you are correct that IDPfw causes the second restart. Technically, I don't think it is IDPfw but whatever is reading the nvram variable(s) I mention for TM that triggers the processes listed above (bwdpi, wred, etc). IDPfw is a consequence of whatever this other service is and when it...
  4. bengalih

    SSH Brute Force Protection - sshd_bfp - where in GUI?

    Ok thanks guys. Just to confirm, there is no GUI option for this? I feel like there used to be. If not, what would be the best way to toggle it after setting the nvram variable (without reboot).
  5. bengalih

    amtm disk-check script and ntp

    nothing in the current script can prevent that, there isn't a staggered delay. It is a 100 second timer that will stop as soon as ntp is detected as ready. I don't know how the underlying process deals with multiple disk mounts (whether or not pre/post mounts run synchronously or not), but...
  6. bengalih

    amtm disk-check script and ntp

    Don't pre-mount and post-mount go hand in hand? Anytime that post-mount is called, pre-mount would have been called prior, no? Also you would never have a delay as long as ntp was in sync. While I think amtm is great, this isn't the first time I have noticed it being too aggressive at poking...
  7. bengalih

    amtm disk-check script and ntp

    OK - so you are saying it is there just to have valid time in the log file, which is no different than wanting to have valid time in your syslog, or any other log to make it more accurate if you need to refer. Personally, I still think blocking for 100 seconds for this was not a great call and...
  8. bengalih

    firewall-start being executed twice by IPDfw (what is it?)

    Thanks for the one liner, but no that wasn't my intent at all with this thread, nor the problem I was having. All my firewall scripts issue delete commands before adding, so the firewall restarting multiple times was not an issue as far as that is concerned. Initially, I was just interested...
  9. bengalih

    amtm disk-check script and ntp

    This is specifically in the "disk-check" script though, it puts a 100 second block before it will even proceed with the check. It is possible he put it here because it goes from check > mount > then all services will start, so maybe he just thought it convenient to put there. I would have...
  10. bengalih

    SSH Brute Force Protection - sshd_bfp - where in GUI?

    Yes I understand it is on/off. I am asking: a) where that toggle option is in the GUI, because it isn't with the other SSH settings. b) Is there another configuration variable/file on the system that allows you to tweak the brute force settings. thanks.
  11. bengalih

    firewall-start being executed twice by IPDfw (what is it?)

    Ok - so update on the "Traffic Analyzer - Statistics". It definitely appears that bwdpi_db_enable is directly tied to this feature: https://www.snbforums.com/threads/finding-where-traffic-analyzer-statistic-on-off-is-stored.68685/ Now @RMerlin states there that disabling it "merely...
  12. bengalih

    SSH Brute Force Protection - sshd_bfp - where in GUI?

    I see the nvram variable 'sshd_bfp=1' but I don't know where this option is in the gui, and/or if any of the settings are configurable? Is there a way if you already have a console session open in one window you can reset this count by restarting a service? I have locked myself out a few times...
  13. bengalih

    firewall-start being executed twice by IPDfw (what is it?)

    Basically, ever since I setup my AT&T connection my `nvram get wan0_ifname` has been eth0 (and was before that). I don't know the specifics, but the people that got this AT&T bypass setup working stated that the AI Protection (or something related) would tag all traffic to the WAN as VLAN. This...
  14. bengalih

    firewall-start being executed twice by IPDfw (what is it?)

    So right now (as was before) my "NAT Acceleration" is set to auto and it states next to it (in yellow) "CTF (Cut Through Forwarding) is enabled." If I set it to "disable" (the only other option), my hard-wired computers get only about 300Mbps on speed tests as opposed to the ~850Mbps they can...
  15. bengalih

    syslog on jffs

    So old thread, but figured I didn't need to start a new one as this is all seemingly valid. My RT-AC68U is getting on in years, and I still plan to keep it around for a bit I was getting worried enough to finally try and mitigate the /jffs write cycle. I basically followed the general advice...
Top