Recent content by DrPozo

I've been thinking about it too. Allow all Internet host traffic for established connections. Block all Internet hosts who try to connect, when they're coming from the outside. Use TOR hidden service to access your home router, when you're coming from the outside. That's all we know.

Ask your sysadmin to open TCP port 1723 on the corporate firewall so you can login to your home router. The other option, as your co-worker suggested, is to configure OpenVPN Server on your home router. Use TCP port 443, a.k.a "stealth mode" :cool:

Depending on what you're trying to do, it's possible to configure TOR on the router as a transparent proxy by adding some firewall rules and enabling some torrc options. Then you can selectively route specific hosts through the TOR network. The best it can do is route UDP port 53 (DNS) and all...

If you check you will see there are source files: ate.c and dualwan.c. So you could delete all the ate.o and dualwan.o files? I think Yes. However, the RT-AC56U firmware will not compile because of some other missing GPL files. I am currently running the latest beta RT-AC68U firmware...

I bought a Raspberry Pi, installed Linux on it, and then configured the NTP server. Then I configured my RT-AC68U router to intercept any NTP request on the local network and redirect it to the Pi's NTP server (192.168.1.22). Here's a firewall rule to do that: /jffs/scripts/nat-start...

For the RT-AC68U firmware, I compiled it successfully after deleting two pre-built "o" files: ate.o and dualwan.o. The source code is there. Hopefully it was only an Asus oversight and there is no unexplained "closed source" intention here. Sea. Samba seems faster in this beta. Thank you.

I have not seen that on my router. I've been running with the following packages removed from the firmware, so maybe that's why. However, I have noticed unsolicited replies coming from 8.8.4.4, similar to those DNS and NTP amplification checks/attacks. MEDIASRV=n MODEM=n MODEMPIN=n PARENTAL2=n...

When I witnessed the "asusdiscovery" program appear and then quickly disappear, I go to https://github.com/RMerl/asuswrt-merlin to search the source code. There is no faster way. I found that the output of this program is to set the nvram variable, "asus_device_list", on line 201 in...

Now I can see them. Try this: http://192.168.1.1/networkmap.tar .

Apparently, it's trying to make a connection. I believe it's copied directly from the Tomato firmware.

This "asusdiscovery" process seems to be active on my RT-AC68U router. Should we kidnap the ASUS engineer, take him to a black site and ask him what it really does? https://github.com/RMerl/asuswrt-merlin/blob/380.58/release/src/router/networkmap/ASUS_Discovery.c

I don't know enough about the firmware to be anything other than dangerous. That said, when I compile the RT-AC68U firmware with BWDPI=N, I also had to patch a source file to get it to compile without error. --- a/asuswrt-merlin-380.58/release/src-rt-6.x.4708/router/shared/misc.c 2016-03-20...

I see the same guys probing my router 2-3 times per day. Assuming they're all "good guys", it's a little "tough love" from me to them.

I think it was this data structure that I once added members to, and my RT-AC68U would crash immediately after power on. Had to use the bootloader TFTP recovery to revert the firmware.

I would like to have the iptables TARPIT capability on my RT-AC68U, however I think this is not possible because it would conflict with the closed source pieces of the firmware? The iptables TARPIT capability is described here...