firewall

No one is answering

Hi All I'm new to the site and hope someone could help me. So i upgraded to 3.0.0.4.382.18881, this had was the first firmware i saw with the Ai-Protection Logs/Events. My question is the term "HIT" being used, Does this mean that both the Firewall & AiProtection failed (Implying a HIT) or...

Hey there, I'm a little confused regarding port forwarding on my ASUS AC3200. I disabled uPnP since it seems to be related with some security concerns and mapped all ports manually. My main doubt is, do I need to use the firewall-start script if the rule is already on the "WAN - Virtual Server...

Hi All, RE: Could someone please explain the specific steps, and what code i need to add/change in asuswrt-merlin, in order to use iptables or another approach to increase my stock firewall 32 rule limit. I am a newbie regarding the use of asuswrt-merlin. I have the stock asuswrt firmware...

Sorry for the repost...I accidentally posted it in the wrong forum & have yet to get a reply. I'm running an Asus RT-AC87, running 380.68 alpha2 but I don't think this is a hardware issue AiProtection - Trend Micro Malicious Site Protection breaks the TiVo iOS app. I have a TiVo Roamio Pro...

I have a TiVo Roamio Pro --same as the regular box but with a bigger HD, 6 tuners, and a built in TiVo Stream. The iOS app lets you download or stream content, look at the guide, set recordings & remotely control TiVo Boxes throughout the home. Oddly enough, the android app functions...

Well, I splitted my issue from another thread, as was suggested. I applied the suggested by @ColinTaylor rule to my iptables iptables -I INPUT -i eth0 -p udp -m udp --dport 5060 -j ACCEPT and it was added below the mentioned DROP/LOGDROP rule. And I still cannot access Asterisk from outside...

I have Asus RT-AC68U. It is double NATted and loopback does not work. Theoretically, this router has no problem with the loopback, so It may be entirely fault of my router being DoubleNAT. Changing NAT Loopback from Merlin to Asus does nothing. But, all of that is irrelevant. Same as firmware...

I found out that Spotify no longer works on any of my devices. Searching the forum I found this and crawling the rest of the internet if found this. From what I've understand, I should withlist the CIDR's below and open port 4070 for in- and outbound TCP traffic (please do correct me if I'm...

Hi there, Am I right here, assuming that this filter in Merlin is unlimited, and we can add any number of rules via iptables? I am speaking particularly about AC68U.

I'm hoping for some assistance with the proper config of the Adamm firewall for my specific home setup. I have installed and run for a couple of days and just let it do its default out-of-the-box thing (no other setup than install / run). But after a couple of days it is clear I need to do some...

I have following firewall white-list rule in my table However, I get following records in my log anyway: May 24 10:27:38 kernel: DROP IN=eth0 OUT= MAC=ff:ff:ff:ff:ff:ff:f0:79:59:61:c4:60:08:00 SRC=176.36.209.209 DST=255.255.255.255 LEN=68 TOS=0x00 PREC=0x00 TTL=128 ID=26988 PROTO=UDP...

Started a general discussion thread so that everyone can pitch in with their opinions about the ways which using iptables and ipsets can benefit the end user.

Blocks IPs & CIDR's tagged as Adware Country Custom ETF Malware Shalla(exp) Spam Tor-Exits Current Version: 1.1 See ChangeLog1_1.txt on github or on post2 if upgrading from Version 1.0 :: Features :: - Command Line Driven with Menu Assist - Category based Blocking - Select Categories to Block...

Scenario: The router's WAN and USB (Android connection) ports are configured in a load balanced (dual WAN) configuration. Does that mean you should protect the USB0 interface with iptables like you would VLAN2 (WAN port on an RT-AC88U) ? For example: iptables -I INPUT -i VLAN2 -m state...

Hi, I was wondering if it possible to block all traffic for a specific source IP without creating multiple filter entries (like one for TCP, one for UDP, etc ) ? For the moment, I've created one entry for tcp and another for udp for each ip I want to filter... is this enough or should I create...

Hi guys, I've been a reader of this forum for quite some time and I have a RT-AC68U for almost 2.5 years now but flashed Merlin's firmware last week. My reason was to flash was OpenVPN 2.4.x. My Synology was a bit behind and I don’t like services being exposed to the internet when they are not...

Numerous guides regarding firewalls state to block ICMP on the WAN interface (Input). However, when i do this internet connection fails. Now my ISP uses a /31 for the point to point connection (FTTP) to us, to which i then have 1x /30 and 1x /28 route-able blocks. so my connection is: 0.0.0.0/0...

This is an issue that cropped up recently and I am at a loss for why it is happening. When the router is restarted (method does not matter) there is something in the syslog "rc_service: skip the event: start_firewall.". Basically the firewall does not start. When this happens I can only access...

Is it actually possible to whitelist some of the ports/applications so they can bypass Parental Controls? I would like for example for WhatsApp to work on phone which is under restriction of the Parental Control.