Menu
What's new
By:
Filters Better Search

Recent content by Markfree

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

  1. M

    deSEC DDNS update script

    After failing to create a custom Inadyn DDNS configuration for deSEC.io that would update both IPv4 and IPv6, I've created a script that updates my deSEC domain IP. It is a simple yet effective script that updates a deSEC.io domain name with the latest WAN IPv4 and IPv6 addresses. It uses...
  2. M

    AdGuardHome IPTables blocking TLS port 853 from other hosts

    I see. Thanks for the tip. Indeed, DNS Director is the one to blame. When I switch to global "no redirection", the rule is unset and all requests to port 853 work properly. However, when global redirection is enabled, packets for port 853 from different hosts are rejected instead of...
  3. M

    AdGuardHome IPTables blocking TLS port 853 from other hosts

    While testing out an AdGuard Home instance on a Docker container, it failed to reach upstream TLS servers. Upon closer inspection, I traced the packets back to the AX86U router IPTables. There is a chain called "DNSFILTER_DOT" that is blocking any packet on port 853 that is not destined for...
  4. M

    WAN port is unresponsive

    I guess so. I think that, for any surge to reach the WAN port, it would have to go through the UPS, which should have protections, the modem, and finally the router. I find this odd because the WAN port is connected to the modem and it did not suffer any loss. I'll check that with the owner...
  5. M

    WAN port is unresponsive

    Recently my RT-AX86U router failed to connect to the Internet. My setup has an ISP cable modem connected in bridge mode to the Asus router. After some possible lightning in the area, it seems that the WAN and 2.5G ports have completely stopped working. The device boots up and I'm able to connect...
  6. M

    AdGuardHome Monitor AdGuard Home with Zabbix

    Zabbix template for AdGuard Home If you're using Zabbix to monitor your network and want to collect statistics from your AdGuard Home instance, I've created a Zabbix template that provides some useful monitoring items. The monitoring is agentless via a "REST-ish" API, since AdGuard Home offers...
  7. M

    Scheduled check for new firmware availability source

    So, buildno= current version (is this equal to productid?) webs_state_info= new version webs_state_flag= after check, indicates there is a new version Is that correct?
  8. M

    Scheduled check for new firmware availability source

    I see. Nevertheless, when a check is performed does it store the new value in the NVRAM? Do these NVRAM parameters actually store the current and new versions?
  9. M

    Scheduled check for new firmware availability source

    I'm using a RT-AX86U and it has a "Scheduled check for new firmware availability" feature. I see that whenever a new update is available, a flashing bell appears at the top of the webpage. Regarding this schedule, how often does it run? Is the schedule configurable? I see that there are a...
    • Markfree
    • Thread
    • firmware monitoring notifications nvram update
    • Replies: 4
    • Forum: Asuswrt-Merlin
  10. M

    Firewall rule to allow only a specific domain name

    Great guys. It's getting even better. Dig was so much cleaner... I vote to add it to the base firmware. 🖐️ But you're right. Next time I reset the router, I may forget to install it. I could try something like this with Nslookup: NEWIP=$(nslookup $DDNSNAME 127.0.0.1 | awk 'NR==5 { print $3 }) I...
  11. M

    Firewall rule to allow only a specific domain name

    I think the IPTables Replace command should suffice. # Set up the domain, ip and port DDNSNAME=$1 EXTPORT=$2 NEWIP=$(dig +short @127.0.0.1 $DDNSNAME) # Considering the chain rule number is unknown, I need to filter it LINENUM=$(iptables --line-numbers -n -t nat -L VSERVER | grep...
  12. M

    Firewall rule to allow only a specific domain name

    I was reading the IPTable rules using iptables -S and iptables -L. It seems that these commands do not display the table names. It wasn't until I ran the iptables-save command that I was able to see those tables. Then I started to actually understand things a bit. There is also a file that...
  13. M

    Firewall rule to allow only a specific domain name

    Considering this scenario: WAN interface: eth0 Service name: SNMP Protocol: UDP External port: [ext port] Internal port: 161 Internal IP: 192.168.8.200 Source IP: [source ip] I tried to add the following rule set: iptables -I INPUT -i eth0 -p udp -m udp --dport [ext port] -s [source ip] -j...
  14. M

    Firewall rule to allow only a specific domain name

    Behind my AX86U I am monitoring a device via SNMP. The SNMP manager initiates the communication by using a non-standard port. So I created a forwarding rule that redirects the non-standard port to the internal device. Something like this: external [diff UDP port] -> internal [snmp UDP 161]...
  15. M

    Asus Merlin Router with Zabbix Agent

    I often use it to monitor Internet usage or outages. I monitor some of the router resources, including temp, as well as some services like Adguard, Conmon and NTPMerlin. Zabbix keeps a history and can plot some nice graphs, which helps to see some anomalous behavior as well. The standard Entware...
See more
Top