Recent content by glehel

  • ATTENTION! As of November 1, 2020, you are not able to reply to threads 6 months after the thread is opened if there are more than 500 posts in the thread.
    Threads will not be locked, so posts may still be edited by their authors.
    Just start a new thread on the topic to post if you get an error message when trying to reply to a thread.
  1. G

    Unbound Unbound DNS VPN Client w/policy rules

    I've been looking for this solution for a long time, which you found! Thank you for the great work! It is a simple and fully transparent solution and works.
  2. G

    dnamasq.conf not redirecting

    use it as I wrote based on the Ip address. it works for me!
  3. G

    dnamasq.conf not redirecting

    HI! info: https://b0.dk/ dnsmasq conf add: address=/vtuner.com/168.119.122.34
  4. G

    Diversion Diversion blocking less than 2%

    Accept DNS configuration : disable Diversion working. Use stubby (DOT), dnscrypt... but if you redirect all traffic to vpn you can also use unbound. you only need to use the "bind disable" command here. the dns ip address and the external ip address are the same.
  5. G

    Unbound Unbound 1.12

    i tried the dns query in many ways, tested almost every variation. Everyone is recommended a different setting to suit their needs. If the entire network passes the vpn Network and uses an unbound resolver, it also "passes the dnsleak test" and the recursive mode is retained. The ip address...
  6. G

    Unbound unbound_manager (Manager/Installer utility for unbound - Recursive DNS Server)

    I redirected all traffic to a single vpn server (client 1). Accept DNS Configuration: disabled, Force Internet traffic through tunnel: yes. I redirected the unbound server to a query via vpn 1. The result is my dns and ip address are the same, no dns leaks, ad blocking works all over the...
  7. G

    Suricata Suricata - IDS on AsusWRT Merlin

    AX88U has improved the processing speed of the thread auto I set. This means: - Going to use 4 thread (s) - all 8 packet processing threads, 2 management threads initialized, engine started. increased memory usage but still have about 100 Mb free :) I couldn't check the blocking yet to make it...
  8. G

    Unbound unbound_manager (Manager/Installer utility for unbound - Recursive DNS Server)

    Is it possible to implement some ip addresses (192.168.1.107-108) from other dns servers on DOT which contains the parental control?
  9. G

    What are you running? DNSCrypt or Unbound?

    unbound + vpn tunnel dns inquiry
  10. G

    Suricata Suricata - IDS on AsusWRT Merlin

    you may ignore it yourself if another runmode is set. just a tip.
  11. G

    Suricata Suricata - IDS on AsusWRT Merlin

    i put the http.log and fast.log files in the syslog-ng conf file to check easily. For now, these two are in one but can be separated if needed. i configured the suricata config myself to delete the contents of http.log when it restarts because it already exists in another location. fast.log may...
  12. G

    Suricata Suricata - IDS on AsusWRT Merlin

    default setup and Suricata - IDS/IPS on AsusWRT Merlin setup same log. 18/5/2020 -- 20:26:05 - <Notice> - This is Suricata version 4.1.7 RELEASE 18/5/2020 -- 20:26:05 - <Info> - CPUs/cores online: 2 18/5/2020 -- 20:26:05 - <Info> - Found an MTU of 1500 for 'eth0' 18/5/2020 -- 20:26:05 - <Info>...
  13. G

    Suricata Suricata - IDS on AsusWRT Merlin

    the af-packet creates a software bridge between 2 interfaces if you have it then the IPS works. This should be thought of as how to accomplish this in the Asus router. I wanted to try nfq mode but it is not enabled in suricata. It must enable the compiler will work well if we can build the IP table.
  14. G

    DNS filtering not working

    why don't you try the AiProtection parental control menu, it worked fine for me.
  15. G

    Suricata Suricata - IDS on AsusWRT Merlin

    the interface is modified to br0 so that requests from vpn clients can be seen. many people use IPS lan. i set the ip address and it was successfully logged by suricata. but google.com remained available. interesting and I haven't realized yet that you don't see wired computer traffic ...
Top