Recent content by huxuan

  • ATTENTION! As of November 1, 2020, you are not able to reply to threads 6 months after the thread is opened if there are more than 500 posts in the thread.
    Threads will not be locked, so posts may still be edited by their authors.
    Just start a new thread on the topic to post if you get an error message when trying to reply to a thread.
  1. H

    How to prevent dnsmasq listening on WAN IP address?

    Forgive silly me! I just find my firewall is disabled unexpectedly. Enable it saves me. Thanks!
  2. H

    How to prevent dnsmasq listening on WAN IP address?

    Yeah, I also have DDNS configured. I guess I must have messed up something. Maybe I have to do a factory reset finally. :(
  3. H

    How to prevent dnsmasq listening on WAN IP address?

    Both of the commands above returns `eth0` and the VPS is NOT connected via VPN. `canyouseeme.org` also says that the 53 port is open. Actually, I just find the problem from another similar port open check tool.
  4. H

    How to prevent dnsmasq listening on WAN IP address?

    `netstat -ntpl | grep dnsmasq` shows that dnsmasq is listening on three addresses:127.0.0.1, 192.168.50.1 (My router LAN IP) and X.X.X.X (My WAN IP). I also tried to trigger a DNS request from one of my remote VPS with command `dig google.com @X.X.X.X` and it works.
  5. H

    How to prevent dnsmasq listening on WAN IP address?

    Currently, since dnsmasq is listening on wan interface, and the iptables magically does not block access to 53 port from outside, so I found my DNS is becoming an open one. Maybe the problem is not located at dnsmasq but iptables? I must have messed up some configuration.
  6. H

    How to prevent dnsmasq listening on WAN IP address?

    I suppose so, but I can not come up with it where I accidentally make it happen. :(
  7. H

    How to prevent dnsmasq listening on WAN IP address?

    Yeah, I do have enabled IPSec VPN so I can access LAN from outside, so this is an side effect? How should I deal with it?
  8. H

    How to prevent dnsmasq listening on WAN IP address?

    The auto generated `dnsmasq.conf` for me is listed as following. Seems the problem is caused by `interface=ppp0` and `interface=ppp1` but actually I have disabled `Dual WAN`, I do not know where there is still a `ppp1` exists. pid-file=/var/run/dnsmasq.pid user=nobody bind-dynamic...
  9. H

    How to prevent dnsmasq listening on WAN IP address?

    I am not sure this is a bug or my incorrect configuration, but on my merlin router, dnsmasq will listen on `127.0.0.1`, `192.168.50.1` (my router LAN IP) and `X.X.X.X` (my WAN IP). This is kind of exposure, because I can even trigger the DNS request from remote VPS to my router by command `dig...
  10. H

    Strange iowait and ntfs or ext4 for torrents?

    Just struggling with transmission on AC86U with the latest stable version (384.14_2) of Merlin for days. I thought ext4 should be the answer especially for the preallocation feature. Since NTFS freeze at the beginning of downloading and iostat shows that it keeps writing at about 100 MB/s (USB...
  11. H

    Right way to make the 2nd WAN hot-standby in `Fail Over` mode and route specific traffic via it?

    Hi Buddies, I want to have a 2nd WAN only for ISP's IPTV as I prefer to be able to scan the ISP's multicast port from merlin so I enabled the dual wan from the modem's IPTV port to LAN1 on merlin and want to route all traffic with 239.0.0.0/8 as destination via WAN1. Since the 2nd WAN does...
  12. H

    Redirect to local URL by using a name

    Yeah, I have to admit you are right. Why I accidentally find it seems to work is that I connected to my Asuswrt-Merlin using VPN from mobile outside. Anyway, thanks for the clarification.
  13. H

    Slow speed for transmission with Dual WAN

    Transmission used to work well on my AC86U with the latest stable Asusmwrt-Merlin 384.14, but I want to further speed it up with dual WAN. After some investigation, the Dual WAN seems to work, as speedtest.net shows double result as expected, but it turns out the speed of transmission become...
  14. H

    Redirect to local URL by using a name

    Find a solution with combination of hosts and iptables. in hosts (/jffs/configs/hosts.add more specifically): 192.168.1.2 plex.home Note that dhcp also need to be properly configured so that 192.168.1.2 will not be assigned to any devices. for iptables (/jffs/scripts/nat-start more...
Top