Recent content by merloid

It's not better than a VPN, it's worse. But I can't use a VPN client on my iPhone for unrelated reasons, so it's more convenient for me. It's restricted to a specific IP address by iptables (the address of the requesting client). It's not open to the WAN in any real sense. Packets are still...

You were right. It was not doing what I thought it was doing. Thanks, the service command is what I was looking for. I should read the docs better. Very fair question! I don't have SSH or web access open to the WAN. I'm looking at using knockd to open access on-demand as an alternative to...

It did seem to work for me on the RT-AX56U running Asuswrt, but is there a documented way to apply nvram changes without doing a full reboot?

Thanks, that's what I needed. For future reference, I found that issuing "nvram restart" to restart the WAN without rebooting the router worked.

Thanks. I should have said, this is an Asus RT-AX56U running Asuswrt-Merlin I have SSH set up, and when I open the port (not using 22 :) to the WAN via the settings in the web admin interface, it works. But if I leave it set to local-only in the web interface, and then add those iptables rules...

I'm trying to work out a way to open SSH to the WAN using a CLI command instead of the web interface, I've been messing with iptables but I can't get it to work. I was wondering if anyone knows how to do this? Thanks in advance.