Menu
What's new
By:
Filters Better Search

Recent content by galapogos01

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

  1. G

    Asus firmware IKEv2 VPN security issue

    I understand what you're saying, but I think you're missing my point. I have VPN connections configured to many other VPN servers. By forcing this setting on the client, Asus is potentially compromising all other VPN connections my client makes. This is a global setting not per connection.
  2. G

    Asus firmware IKEv2 VPN security issue

    It's a risk because making a connection requires that the client has a setting applied that will allow any other certs issued to act as the router. This applies not just to the connection, but to all VPN connections. There are multiple guides online suggesting this is simply poor configuration...
  3. G

    Asus firmware IKEv2 VPN security issue

    Hi guys, I was setting up an IKEv2 VPN on my Asus AX86S with stock firmware and I noticed in the official guide the step to disable Extended Key Usage (EKU) checks on the client. Without doing this, Windows will not connect to the VPN server. Per the Strongswan documentation, Is anyone else...
  4. G

    Beta [Fork] Asuswrt-Merlin 374 LTS release 53D1

    @john9527 How are new builds being released yet your git repo has not been updated since 2021?
  5. G

    Tag guest SSID traffic with VLAN

    Use the stock output above to work out which of the interfaces is the 5ghz ssid. Your script does not seem to include all of the ifs in your stock output. That all I have to suggest.
  6. G

    Tag guest SSID traffic with VLAN

    I am far from an expert, but iirc if you use a separate ssid for 5ghz you get either an additional eth interface or wl interface. Also why do you drop vlan1? btw your original post says the guest network is VLAN 20 but in your script it's 30.
  7. G

    Tag guest SSID traffic with VLAN

    It works! Thanks heaps for your help. ip_forward is turned off on the Asus. Now to tidy up the routing on my gateway. Jason
  8. G

    Tag guest SSID traffic with VLAN

    Thanks heaps for your help & patience. I finally got a hour or two to play and after making a rookie mistake (dropping the t on the vlan 9 port definition) I got the vlan working on the router. Without the t it would drop the untagged traffic. Now from the router I can ping my vlan interface...
  9. G

    Tag guest SSID traffic with VLAN

    Yours was one of the few scripts I saw that came close. The other was http://www.snbforums.com/threads/wap-guest-ssid-port-based-vlan.12750/ but the people who were close moved to Tomato! If I understand it correctly, your setup has a dedicated port (Port 4) for the VLAN9 traffic to your AP...
  10. G

    Tag guest SSID traffic with VLAN

    Agre. Maybe my question was not clear enough - I'm not looking for physical separation. How do I tag traffic coming in on the guest SSID with VLAN2? Jason
  11. G

    Tag guest SSID traffic with VLAN

    Hi guys, I have found loads of threads relating to this topic but unfortunately none that solve my problem. I run my AC66U in AP mode. I have a linux box as my NAT gateway, and have added a VLAN 2 to it's LAN interface, that will keep Guest traffic separate from my default LAN. I would like...
See more
Top