Menu
What's new
By:
Filters Better Search

firewall

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

  1. AlleyCat

    How To Block Top-Level Domains?

    Greetings! A quick question: Is it possible to block top-level domains, like *.ru; *.cn; etc? I’ve looked at the Firewall URL Filter page (RT-AX88U), but I’m unsure of the proper syntax to use for blocking an entire TLD, assuming it can be done. I realize that client devices can simply use a...
  2. adri

    YazFi YazFi - Combining guest networks/subnets

    Hi, so this came up in my other thread, but I wanted to start a new one since it's a separate issue and I like separation of concerns :) . I want to make it so that, for one of my guest networks, the 2.4GHz segment (.14 subnet) can talk to the 5GHz segment (.15 subnet) and vice-versa, without...
    • adri
    • Thread
    • firewall guest networks iptables subnets testing user scripts yazfi
    • Replies: 9
    • Forum: Asuswrt-Merlin AddOns
  3. stevieosaurus

    Skynet Possible to EXCLUDE internal IP from firewall?

    Skynet is awesome, love it! Using it for country blocking (have no choice), and unfortunately external IP/domain whitelisting doesn't always work, nor is it practical in my case. What would be ideal is to have an internal IP address (mobile/tablet) be completely excluded from being protected by...
  4. S

    Firewall - Network Services Filter Problem

    Hi All, Im looking to setup my network services filter to block WAN access to my IoT devices. See attached picture, I believe I set it up correctly, I found an older post saying to block port 443 to limit secure connections as well, so I did that. Interestingly I still can access the IoT...
    • Spicy93
    • Thread
    • firewall https network services filter
    • Replies: 1
    • Forum: ASUS Wireless
  5. C

    Firewall Rules - Block all connections except VPN

    I am currently using an ASUS router (RT-AC68U with Merlin firmware - 386.4). I want to connect a single client to an OpenVPN server with no traffic other than the VPN allowed. I don't want to use the OpenVPN client in the router as speeds are low when using the VPN, so I'm looking to use an...
  6. S

    Another firewall advice

    I have lost my second PfSense router to another friend of mine for the 2nd time in as many years! Anyway, they were on an old hardware and I was planning an upgrade; because, we have starting planning a home-automation project. We want to lockdown the network before we do anything on this...
  7. carefulcomputer

    (Denial of service) Router reboots on visiting filtered URL

    I have router version 386.3_2 on RT-AC5300. It seems to reboot when a filtered url is visited from a connected computer. Steps to reproduce : 1. Go to Firewall->URL Filter 2. Enable URL filter , filter type 'Blacklist' 3. Add a keyword 'drama' (i had 5 other fqdn url in list if that matters) 4...
  8. D

    Strange Firewall Behavior on QNAP TS-230

    Hi, I'm seeing strange behavior on my firewall: when I turn on my NAS, sometimes the firewall isn't running and has been disabled, but I don't any warnings :/ Sometimes it runs automatically... Using the newest firmware. Up to date app updates.
    • dingo69
    • Thread
    • firewall help me
    • Replies: 11
    • Forum: QNAP
  9. trinketsecurity

    Home network security with limited budget and using existing hardware only

    I'm new to SNBforums, and I am a university student that have studied some networking and network security courses. I know some things about system hardening, VLANs, subnetting, security configurations to benchmarks/best practices and some more. Due to some unforeseen circumstances, I feel...
  10. V

    Firewall - Inbound Firewall Rules - How to block all traffic from specific remote IP ?

    Howdy, I haven't been able to find information on how to enter Local IP and Port Range in the firewall inbound rules. Those fields cannot be left empty. I want to block all traffic from a specific remote IP. Surely this must be possible?
  11. G

    Unbound unbound dns firewall (noobish question)

    Hello guys, got a question related to unbound (installed on AX86U) , specifically to the unbound GUI, what is the purpose of DNS firewall (what should be reflected there in case it contains something) and why it is completely empty in my case. Thanks for your inputs
  12. E

    Understanding what VPN Port Forwarding does locally

    I use a VPN service provider (similar to NordVPN etc), which offers port forwarding (opening ports). My understanding is that this is beneficial for some applications, such as BitTorrent. However, I am trying to understand what the functionality of opening ports actually accomplishes...
    • essence
    • Thread
    • firewall port forward openvpn port forwarding security vpn
    • Replies: 1
    • Forum: VPN
  13. D

    OpenVPN Server - Can I restrict access client to specified local IP on the server side local LAN? HELP!

    I have an Asus RT-AC88U running on stock firmware (Version 3.0.0.4.386.41700). I have created an OpenVPN server so that my brother can access my NAS from his home remotely. I have DDNS set up on the router. I can connect from his home to the VPN without issue. However, I noticed that when he is...
    • dblock8212
    • Thread
    • asuswrt firewall openvpn
    • Replies: 1
    • Forum: VPN
  14. A

    DNS-over-TLS - disable possibility for regular DNS requests from asus router

    Hi, Long time reader of these forums and grateful for all the advice. Running RT-AC86U smoothly. Configured DNS-over-TLS with all DNS traffic from LAN intercepted and answered by Router. This works flawlessly. (Got answer back for a "dig nas.lan @1.1.1.1 that only exists on my lan and couldn't...
  15. HELLO_wORLD

    Discussion on improving the firewall

    Hello to all. In a constant quest to improve security of the firewall, I recently added some rules to deal with port scan. The idea of this thread is to share our experiences and experimentation to make our firewalls better. It is open to comments, critics, improvements, etc... Here is my...
  16. HELLO_wORLD

    Aegis Aegis (simple yet effective protection)

    Due to new forum rules on threads older than six months, here is a fresh new one, good until April 2021. Previous thread Aegis A firewall blocklist script for Netgear R7800 and R9000 Routers with Voxel firmware. Should work with some other models as well. What is it? It is a script that...
  17. W

    NAS security help.

    Hi all. I'm new here, so apologies if this is posted in the wrong place. I recently added a Synology NAS to my home network. It has a dedicated IP that is entirely detached from all my other network hardware. The NAS is used as a backup server for an identical unit at my business address and...
  18. D

    Firewall "Network Services Filter" Is Bypassed When OpenVPN Client is Enabled 384.19

    I have an Amazon Fire tablet that by default appends 8.8.8.8 to any DNS settings. The 8.8.8.8 address is the first DNS server contacted by default, bypassing the router DNS setting provided by DHCP unless 8.8.8.8 is blocked. The only way I have found to block this is to 1. Add a network...
  19. Scobie

    Is there any way to block certain URLs for certain MAC addresses? (YES - solved)

    I just got a new Asus router and I installed Merlin and Diversion and so far it's looking amazing, big props to the developers. Anyway, stock Asus only has firewall blocking for every device, and parental controls blocks too many sites. How do I block URLs for certain MAC addresses? In practice...
  20. S

    DNS redirect to local DNS server

    Hi! Some of my devices use an hard-coded DNS server, i.e. 8.8.8.8. I like to re-direct this DNS traffic to my local unbound DNS server by using the firewall script of my AC86 router. I use the following IPTABLES commands. The rule is added correctly to iptables. Are these rules correct and how...
    • slytho
    • Thread
    • dns dnsfilter firewall iptables redirect internet traffic script
    • Replies: 10
    • Forum: Asuswrt-Merlin
Top