Recent content by NogNeetMachinaal

Thank you Gato. Can you elaborate a bit? As far as item (3) goes: I can not click in it?

Can you elaborate? It is my understanding that typically, routers rewrite OSI-L2 and OSI-L3 of any traffic - TCP or UDP? Because this is what routers are designed for - is it not...?

Mmm... I still don't understand the reasoning... Why is the router sending zero-win's to devices on the internet? Usually this only happens if these devices are sending to much packets in one go => not enough memory for storing these packets before they are processed? While memory usage is less...

I don't understand. The clients are NAT-ed. Meaning packets before and after the router are different on OSI-L2 and OSI-L3 => once on the WAN-side of the Asus router, there is nothing that points to a certain client - let alone the client IP. Please advise - how do I compare? What should I look...

Perhaps - but the same Allegro Packet setup applies to the LAN-side of the router (this time as a VM with the same capabilities). Within that, there are no zero-win packets; not from the client and not from the server => the "problem" must be on the Asus router itself.

With a packet-analyzer-on-steroids (aka Allegro 500 from Allegro Packets) connected to a network tap. This network tap is connected between the WAN-port of the router and the LAN-port of the ISP-modem. The Allegro 500 is configured in a way that an alert is sent each time a zero-win packet is...

Team, For performance reasons I'm tracking Zero-win packets (among a few other things). To make sure everybody is on the same page: a zero-win packet indicates that its sender is suffering from a lack of resources; one way or the other. I'm running Merlin version 386.1_2 on an Asus RT-AC68U...

Thank you for the feedback. Indeed - the first step is validating if it is a real vulnerability. And yes - I'm aware of the fact that the router is not running php and isn't a phone. Thinking out load now: If I do some research on the presented "vulnerabilities" then it seems to be related to...

See also attached screenshot: This is the result of a vulnerability scan of an Asus rt-ac68u with the latest Merlin firmware. This is done without any interactive logins => only portscanning. This router is not reachable via the internet While it looks worse then it really is due to the...

That's correct - I opened this in the Merlin-developers group => not what it is meant for => closed by the forum-admin.

Got things working now. In the end, the content of the log put me in the wrong direction. One reason was because of the timestamps => the router wasn't sync-ed with ntp. The other was the content of /tmp: as opposed to Ubuntu, it looks as if this folder is not cleared on a warm boot; only on a...

Thanks everybody for the feedback. I have changed things to the extend that: - the dnsmasq.conf is renamed to dnsmasq.conf.add - in it, any entries pointing the previous folders and/or interfaces are either renamed or removed - the conf-files starting with static are now in /jffs/configs as...

I'm struggling with dnsmasq and a custom config. What I'm trying to accomplish: Porting a working dnsmasq install/config from Ubuntu to Merlin. On Ubuntu there are 3 config files: dnsmasq.conf, static-hosts.conf and static-dhcp-hosts.conf (attached in zip). The file static-hosts contains a...