Recent content by glehel

the same problem using nordvpn, apparently the redirection works but it's as if something is blocking the responses that unbound requires. I think that this is blocked on purpose, I don't know the reason. I reverted to the dnscrypt solution until it works again, but I don't trust it because I...

yes, I think the transmission needs to be reinstalled

For me, this is the solution for the scribe AX88u. opkg --force-depends remove libcurl opkg install libcurl And reinstall scribe :)

For me, this is the solution for the scribe AX88u. opkg --force-depends remove libcurl opkg install libcurl And reinstall scribe

do you use a pixelserv?

there is no installation script, everything has to be installed one by one manually https://bin.entware.net/aarch64-k3.10/test/suricata6/ suricata6-extra_6.0.4-1_aarch64-3.10.ipk iptables -I FORWARD -j NFQUEUE instead of this --runmode: workers-- You can try this --runmode: autofp--

Looks like IPS mode works in NFQUEUE mode. The test rule was used to block a download file that I uploaded to a web server. CPU Load Average (1, 5, 15 mins) 3.93, 3.62, 3.53 fast.log: 04/02/2022: 12: 54.223803 [Drop] [**] [1: 1: 1] Alarm detected [**] [Classification: Potential...

Thanks for the new version! I installed suricata 6.0.4 currently in test mode af-packet copy back and forth between the br0-eth0 interface. I later saw that the extra version supports nfqueue mode, which creates a new opportunity to test and maybe activate the ips feature. Who can please help...

the WAN status is connected and does not change. ( Cable modem)

i wrote 0.0.0.0 in both places and the DNS request was terminated

otherwise, the interesting thing is that if these values are empty you will still be connected to dns.msftncsi.com. where get this if these values are empty?

Thanks! I will test. maybe you need to write a script for it.

dns_probe_host, dns_probe_content i typed 127.0.0.1 here and now there are no more dns.msftncsi.com dns requests or I don't see it in the log, otherwise i use unboundot.

dns.msftncsi.com can't this be turned off? we have been without it so far. a lot of unnecessary DNS requests.

I've been looking for this solution for a long time, which you found! Thank you for the great work! It is a simple and fully transparent solution and works.