Recent content by sirzur

Oh, thanks for this. I will await the response to your question with interest. That is an elegant solution

Thanks and I appreciate the detailed response to my question. Looks like I will just live with the rules, but maybe have the 5 you recommend instead of the 8 that I have. I too agree that the VOIP adapter should not be routed through VPN. I actually routed my VOIP ATA adapter through the WAN...

In the VPN director page, is it possible to add a rule to direct access to a domain to WAN? The reason why I am attempting that is to allow Voice over Wifi (VoWifi) to work together with VPN. I have discovered that in order for VoWifi to work on a phone which is directed through VPN, I need...

OK, here is where I should get hit over the head. I forgot the first rule. When there are issues, reboot. Anyways, when I woke up this morning and before anyone was awake to access the internet I rebooted the router. Turned on the Netgear managed switch and connected a couple of devices to...

Thanks, I will try to do a bit more troubleshooting over the next couple of days and report back. I think I will first try to map eth5 port (which should be my 2.5G lan port, currently unused) to br1, connect some devices to it, bypassing the switches altogether and see whether one way access...

So I have disabled br1 ie set br1_enabled=0 (but not disabled in the GUI) Here are some results admin@GT-AX6000-BF08:/tmp/home/root# iptables -S FORWARD -P FORWARD ACCEPT -A FORWARD -j IPSEC_DROP_SUBNET_ICMP -A FORWARD -j IPSEC_STRONGSWAN -A FORWARD -m state --state RELATED,ESTABLISHED -j...

@janico82, I had already tried that when I woke up this morning, as a way to rule out the Netgear switch, but no success. I redid the test with no success as you can see from below See here is the client list connected, where the IP address is 192.168.101.230 bridge name interfaces...

Yes, the main lan are the devices connected to br0 (or at least I assume so. The device is definitely not connected to br 2 because the IP address starts with 192.168.1. rather than 192.168.102. ). Running code "iptables -S FORWARD" does not show the firewall rule, so it looks like it has been...

I have a GT-AX6000 with Merlin firmware (3004.388.7) and have installed the script primarily because i want to set up a separate vlan which I can access from my main (v)lan. In my scenario, both Guest Network1 2.4Ghz and 5Ghz are enabled with intranet access disabled. Running "bctl show" in...

I have been trying to get VoWifi working through my GT-AX6000 (with VoLTE already enabled). The router is pretty much standard Asuswrt Merlin, with latest firmware (3004.388.7), NordVPN and a DuckDDNS script. I know that VoWifi works on my phone because I can use VoWifi on another router at...

Thank you for this. I ran command "nvram set http+enable=0" followed by service restart_httpd. Did not need the "nvram commit" but probably good practise to run that command. Able to access via http. Sorted my certs and then set back to https access. More importantly, I backed up my...

I upgraded my GT-AX6000 to GT-AX6000_3004_388.6_0 (non rog) from 388.5 just now and promptly lost access to my router - all the while internet connection is available. I dont have a complicated system - just the single router with VPN, some static IP addresses defined Typing...

I have firmware 386.7_2 loaded on my AC86U. I have not been checking the system log for the previous firmware, so am not certain when this particular log message started appearing or whether it is the latest firmware related, specifically about potentially unexpected fatal signal 6. I have not...

And I have it finally working- reason it was not working before was that my jffs/configs directory did not have the proper certificate referenced in the script. For some reason, the certificate was not properly backed up (probably my mistake) just before I did the factory default

After attempting a few diagnostic runs, I have discovered that the culprit is the jffs up (and maybe also down) scripts in custom configuration. I have those scripts to email me when the VPN goes up or down. At the moment if I leave the "down" script in, the VPN works (and likely because the...