Recent content by bobby

Fair question! I use old RT N66U routers as cheap OpnVPN servers. They are cheap because they are no longer supported. Behind a good router they are not a security risk. This is a double NAT set up. The ddns service in the firmware does not support a double NAT setup. It will send the WAN IP...

JDB: you were spot on! I just commented that line and it works! You are brilliant. Thank you, dave14305 for leading JDB in the right direction :) So I can confirm that this script works in a double NAT situation. So for anybody wanting to do this, including newbies: all you have to do is put #...

The script is as follows (I replaced test with the proper hostname): #!/bin/sh # Set the host name, ending with .asuscomm.com is optional HOSTNAME='test' # The IP address to use IP="$1" # Asus DDNS server ASUS_SERVER='nwsrv-ns1.asus.com' # Router MAC address location is hardware dependent...

As I am behind a double NAT, I am running a custom script to update my IP address. The script that I installed is: https://github.com/RMerl/asuswrt-merlin/wiki/DDNS-Sample-Scripts#asus I put it in ddns-start, and made all the settings as indicated on the Merlin "custom scripts" page. When I...

I have several Asus routers that I use at our company. I mostly use the old N66U routers as VPN servers, behind an updated router such as the RT AC86U. The N66U are at different locations, and used to connect IP phones to the headquarter network. Wireless functions are switched off. I would...

I must admit that I used "Save Settings" file for the whole router (Administration - Restore/Save/Upload Setting) to transfer the settings. I first tried to set up the router manually, but could not get the VPN server to work. Then, when I used the above mentioned method, it actually worked for...

Hi Collin & kpf, thanks very much for your response. it sounds like the fact that the new router shows "2 clients are connecting to the AC86U through this device" is nothing alarming, in your opinion. So I need to look further. Is there any log file or something, that could help me find the...

New information: I just found out that the IP phone client gets 2 ip addresses from the new RT-AC86U router: 192.168.1.6 + 192.168.1.201 As written above, the VPN server is supposed to use 192.168.1.200-192.168.1.220 Why does the router assign a second IP address outside the range? Could...

Until last week, we had a company router RT-N66U running the latest Merlin firmware. On this router we ran an OpenVPN server, connecting two off-site devices: · 1 x RT N66U running merlin firmware, connecting as a client · 1 x Yealink phone T21P, connecting as a client. We...

My set up has been working for the last 9 months. Now there is a change in requirement: I would like to give access to a printer and NAS which are located under Router 1, to the clients under router 2. My first thought was that I could just change the Network Services Filter Settings as...

@ColinTaylor You are right! Thanks a MILLION! Here is the correct chain forward for whoever wants to do this as well: Chain FORWARD (policy DROP 0 packets, 0 bytes) pkts bytes target prot opt in out source destination 1742 112K ACCEPT all -- * *...

Dear Collin, I just followed your advice. Here is what happened: I entered the Network Services Filter Settings as follows: source IP ->empty Port Range ->empty Destination IP ->192.168.1.0/24 Port range -> empty Protocol (TCP/UDP) -> both For clarity sake: router 1 is in the range...

Hi Collin, thank you VERY MUCH for your advice. The office is closed right now, until February 18. So I will try this on February 19. For now I can tell you that I do not use parental controls. I am using the latest version of Merlin's firmware: RT-N66U_380.57_0 (31 Jan 2016) I filled in...

You are right, I am not worried too much about the safety of clients under router 2. I could ping the clients in under router 1 from a laptop under router 2. I could also open the WEB GUI of a device from router 1 when my laptop was connected to router 2.

jegesq - thank you very much for the useful links and advice. I already knew that router 2 devices could access router 1 connected devices. What was new to me is that malicious router 1 connected devices can intercept router 2 traffic simply because they are on the same ethernet, taking...