Menu
What's new
By:
Filters Better Search

Recent content by Neurophile

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

  1. N

    Need help with IPSet

    I expect it will look something like this: ; Spamhaus EDROP List 2017/01/08 - (c) 2017 The Spamhaus Project ; https://www.spamhaus.org/drop/edrop.txt ; Last-Modified: Tue, 15 Nov 2016 14:08:00 GMT ; Expires: Mon, 09 Jan 2017 15:03:49 GMT 27.112.32.0/19 ; SBL237955 37.9.53.0/24 ; SBL273113...
  2. N

    AC88U Version 3.0.0.4.380.4180

    Bought a new AC3100 on Dec 22 and it came out of the box with this already installed. I guess they RTM before they push to the update servers. I wonder if this fixes the problems I was seeing on my old N66 with multiple PS4 connections causing them all to periodically lose connection. I haven't...
  3. N

    State of the project - 2016 in review

    Asus owes you a commission. Recently my trusty N66U suffered damage due to power fluctuations and was only able to hold settings for a day or two before it eventually went into an endless reboot. I got an AC3100 to replace it (was looking for an AC88U but my local Fry's carries literally every...
  4. N

    Malware Filter / bad host IPSET

    That is because the rule is applied to chain FORWARD. If you want to block traffic originating in the router itself you need to add a rule to chain OUTPUT.
  5. N

    Restart upnpd?

    Is there a way to restart miniupnpd? similar to how we can restart the dns server: service restart_dnsmasq On a similar note, where can I see a list of all valid options to pass to the "service" script/command? I tried help, --help, etc, but all it ever does is say "Done."
  6. N

    Microstutter/Jitter/Disconnects gaming

    Sorry to slightly hijack the thread, but I want those ping times! I just did a short test. Avg ping to RT-N66U through 5Ghz wireless N ~2 ms Avg ping to the cable modem ~4 ms Avg ping to 8.8.8.8 ~21 ms I would be very happy to cut 3 ms out of the route, but how? CTF on, QoS off, DNS filter on...
  7. N

    How do I write to the log from shell script?

    Title says it all. I want to trap certain conditions in a shell script and make sure they show up in the log. Also, how do I set the "severity" of the log message so it gets stored/not stored correctly?
  8. N

    Help Needed: Firewall Script *Fixed!*

    elif [ "$1" = "$CHECKBAN" ] then checkip=$(ipset -L | grep "$2") if test -n "$checkip"; then echo "$2" is banned. exit else echo "$2" is not banned. exit fi This is malformed. you are missing a fi and the indents are all messed up. Try this: elif [...
  9. N

    Using ipset revisited

    FYI if you want to see how much (if any) traffic is being blocked by the list do: iptables -L -v | less up near the top of the first page you should see something like this Chain FORWARD (policy DROP 0 packets, 0 bytes) pkts bytes target prot opt in out source destination...
  10. N

    Using ipset revisited

    OK. I think I have it fixed now. Thanks to this thread: http://www.snbforums.com/threads/certificate-verification-issue-with-rt-n66u.25248/ I added a line to services-start to update the user .wgetrc at boot time to point to the cert bundle. echo "ca-certificate=/rom/ca-bundle.crt" > ~/.wgetrc...
  11. N

    Using ipset revisited

    Thanks for writing the original! The main failure is that wget doesn't recognize the ssl certificates. I hacked around this by adding --no-check-certificate but that is not the safest fix. I am 99.9% sure that spamhaus has a valid ssl, so it has to be something with either the wget config or...
  12. N

    Using ipset revisited

    As part of a round of beefing up the security of my network I decided to set up ipset/iptables to filter traffic from the darkest corners of the interwebs. I started with the Malware Filter script from the wiki here: https://github.com/RMerl/asuswrt-merlin/wiki/Using-ipset Unfortunately, using...
See more
Top