• SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

Recent content by sirzur

  1. S

    VPN Director Question

    Oh, thanks for this. I will await the response to your question with interest. That is an elegant solution
  2. S

    VPN Director Question

    Thanks and I appreciate the detailed response to my question. Looks like I will just live with the rules, but maybe have the 5 you recommend instead of the 8 that I have. I too agree that the VOIP adapter should not be routed through VPN. I actually routed my VOIP ATA adapter through the WAN...
  3. S

    VPN Director Question

    In the VPN director page, is it possible to add a rule to direct access to a domain to WAN? The reason why I am attempting that is to allow Voice over Wifi (VoWifi) to work together with VPN. I have discovered that in order for VoWifi to work on a phone which is directed through VPN, I need...
  4. S

    sbnMerlin 1.2.6 - Network Isolation Tool based on Guest Networks, June 26 2024

    OK, here is where I should get hit over the head. I forgot the first rule. When there are issues, reboot. Anyways, when I woke up this morning and before anyone was awake to access the internet I rebooted the router. Turned on the Netgear managed switch and connected a couple of devices to...
  5. S

    sbnMerlin 1.2.6 - Network Isolation Tool based on Guest Networks, June 26 2024

    Thanks, I will try to do a bit more troubleshooting over the next couple of days and report back. I think I will first try to map eth5 port (which should be my 2.5G lan port, currently unused) to br1, connect some devices to it, bypassing the switches altogether and see whether one way access...
  6. S

    sbnMerlin 1.2.6 - Network Isolation Tool based on Guest Networks, June 26 2024

    So I have disabled br1 ie set br1_enabled=0 (but not disabled in the GUI) Here are some results admin@GT-AX6000-BF08:/tmp/home/root# iptables -S FORWARD -P FORWARD ACCEPT -A FORWARD -j IPSEC_DROP_SUBNET_ICMP -A FORWARD -j IPSEC_STRONGSWAN -A FORWARD -m state --state RELATED,ESTABLISHED -j...
  7. S

    sbnMerlin 1.2.6 - Network Isolation Tool based on Guest Networks, June 26 2024

    @janico82, I had already tried that when I woke up this morning, as a way to rule out the Netgear switch, but no success. I redid the test with no success as you can see from below See here is the client list connected, where the IP address is 192.168.101.230 bridge name interfaces...
  8. S

    sbnMerlin 1.2.6 - Network Isolation Tool based on Guest Networks, June 26 2024

    Yes, the main lan are the devices connected to br0 (or at least I assume so. The device is definitely not connected to br 2 because the IP address starts with 192.168.1. rather than 192.168.102. ). Running code "iptables -S FORWARD" does not show the firewall rule, so it looks like it has been...
  9. S

    sbnMerlin 1.2.6 - Network Isolation Tool based on Guest Networks, June 26 2024

    I have a GT-AX6000 with Merlin firmware (3004.388.7) and have installed the script primarily because i want to set up a separate vlan which I can access from my main (v)lan. In my scenario, both Guest Network1 2.4Ghz and 5Ghz are enabled with intranet access disabled. Running "bctl show" in...
  10. S

    VoWifi and NAT Acceleration

    I have been trying to get VoWifi working through my GT-AX6000 (with VoLTE already enabled). The router is pretty much standard Asuswrt Merlin, with latest firmware (3004.388.7), NordVPN and a DuckDDNS script. I know that VoWifi works on my phone because I can use VoWifi on another router at...
  11. S

    Release Asuswrt-Merlin 3004.388.6 is now available

    Thank you for this. I ran command "nvram set http+enable=0" followed by service restart_httpd. Did not need the "nvram commit" but probably good practise to run that command. Able to access via http. Sorted my certs and then set back to https access. More importantly, I backed up my...
  12. S

    Release Asuswrt-Merlin 3004.388.6 is now available

    I upgraded my GT-AX6000 to GT-AX6000_3004_388.6_0 (non rog) from 388.5 just now and promptly lost access to my router - all the while internet connection is available. I dont have a complicated system - just the single router with VPN, some static IP addresses defined Typing...
  13. S

    Curious log message

    I have firmware 386.7_2 loaded on my AC86U. I have not been checking the system log for the previous firmware, so am not certain when this particular log message started appearing or whether it is the latest firmware related, specifically about potentially unexpected fatal signal 6. I have not...
  14. S

    VPN Help

    And I have it finally working- reason it was not working before was that my jffs/configs directory did not have the proper certificate referenced in the script. For some reason, the certificate was not properly backed up (probably my mistake) just before I did the factory default
  15. S

    VPN Help

    After attempting a few diagnostic runs, I have discovered that the culprit is the jffs up (and maybe also down) scripts in custom configuration. I have those scripts to email me when the VPN goes up or down. At the moment if I leave the "down" script in, the VPN works (and likely because the...
Back
Top