Menu
What's new
By:
Filters Better Search

firewall

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

  1. M

    Network services filter limit?

    Hi there, Am I right here, assuming that this filter in Merlin is unlimited, and we can add any number of rules via iptables? I am speaking particularly about AC68U.
  2. P

    Adamm firewall - proper config

    I'm hoping for some assistance with the proper config of the Adamm firewall for my specific home setup. I have installed and run for a couple of days and just let it do its default out-of-the-box thing (no other setup than install / run). But after a couple of days it is clear I need to do some...
  3. M

    AC-68U firewall issue

    I have following firewall white-list rule in my table However, I get following records in my log anyway: May 24 10:27:38 kernel: DROP IN=eth0 OUT= MAC=ff:ff:ff:ff:ff:ff:f0:79:59:61:c4:60:08:00 SRC=176.36.209.209 DST=255.255.255.255 LEN=68 TOS=0x00 PREC=0x00 TTL=128 ID=26988 PROTO=UDP...
  4. S

    The optimum way to use iptables and ipsets

    Started a general discussion thread so that everyone can pitch in with their opinions about the ways which using iptables and ipsets can benefit the end user.
  5. S

    :: ipBLOCKer :: Category blocking using iptables and ipsets

    Blocks IPs & CIDR's tagged as Adware Country Custom ETF Malware Shalla(exp) Spam Tor-Exits Current Version: 1.1 See ChangeLog1_1.txt on github or on post2 if upgrading from Version 1.0 :: Features :: - Command Line Driven with Menu Assist - Category based Blocking - Select Categories to Block...
    • spalife
    • Thread
    • blocklist category custom filtering firewall ipset iptables net filter refresh whitelist
    • Replies: 81
    • Forum: Asuswrt-Merlin
  6. D

    Dual WAN configuration and firewall

    Scenario: The router's WAN and USB (Android connection) ports are configured in a load balanced (dual WAN) configuration. Does that mean you should protect the USB0 interface with iptables like you would VLAN2 (WAN port on an RT-AC88U) ? For example: iptables -I INPUT -i VLAN2 -m state...
  7. T

    trying to block all ports for a specific ip (including tcp/udp/tcp syn,ack,fin,rst,urg,psh)

    Hi, I was wondering if it possible to block all traffic for a specific source IP without creating multiple filter entries (like one for TCP, one for UDP, etc ) ? For the moment, I've created one entry for tcp and another for udp for each ip I want to filter... is this enough or should I create...
  8. zmaster

    Custom firewall-start script for OpenVPN (country allow list)

    Hi guys, I've been a reader of this forum for quite some time and I have a RT-AC68U for almost 2.5 years now but flashed Merlin's firmware last week. My reason was to flash was OpenVPN 2.4.x. My Synology was a bit behind and I don’t like services being exposed to the internet when they are not...
    • zmaster
    • Thread
    • country firewall ipset iptables openvpn script
    • Replies: 5
    • Forum: Asuswrt-Merlin
  9. D

    Blocking ICMP on WAN

    Numerous guides regarding firewalls state to block ICMP on the WAN interface (Input). However, when i do this internet connection fails. Now my ISP uses a /31 for the point to point connection (FTTP) to us, to which i then have 1x /30 and 1x /28 route-able blocks. so my connection is: 0.0.0.0/0...
    • delid4ve
    • Thread
    • firewall icmp mikrotik wan
    • Replies: 1
    • Forum: Routers
  10. U

    [SOLVED-FOR REAL] rc_service: skip the event: start_firewall.

    This is an issue that cropped up recently and I am at a loss for why it is happening. When the router is restarted (method does not matter) there is something in the syslog "rc_service: skip the event: start_firewall.". Basically the firewall does not start. When this happens I can only access...
  11. pirx73

    Whitelisted applications

    Is it actually possible to whitelist some of the ports/applications so they can bypass Parental Controls? I would like for example for WhatsApp to work on phone which is under restriction of the Parental Control.
  12. D

    Mikrotik Firewall Remote Access From DynDNS Address

    So i would like to create an access rule within the mikrotik firewall to restrict access to a couple of remote locations. Since these are residential and cannot obtain a static IP id like to know the best way of doing this, or if its even possible. The residential locations both have DynDNS...
    • delid4ve
    • Thread
    • dyndns firewall mikrotik remote access
    • Replies: 5
    • Forum: Routers
  13. Veldkornet

    dropping all-systems.mcast.net from Asuswrt Router

    Hey guys, SO I noticed on my firewall that it seems to be blocking a lot of IGMP requests from my RT-AC87U (AP mode - 380.63_2) to all-systems.mcast.net. I checked the source mac address to confirm that it's the RT-AC87U, although the IP address in use if completely wrong, that's the default IP...
  14. K

    Malware Filter / bad host IPSET

    Hello, I am trying to block outbound connects to know bad host from my LAN/ Wireless. I am running the script located below and have the below firewall rules so it looks to be working. Any know what else to check? Running this script under the heading "Malware Filter"...
  15. B

    pfSense/Sophos vs ASUSWRT/RMerlin - Is there any reason to change?

    So I have this "thing" for network security.... Trying to avoid to get hacked to easily... So from a security perspective, running pfSense on a dedicated box - is that a better (?) solution than the built in into ASUSWRT/RMerlin firmware? Let's have a peak at how I use my Asus: No web server...
  16. A

    Network Services Filter: how can I block internet access only at specific times?

    Forgive me if this has been addressed elsewhere, but I've searched everywhere in this subforum and found nothing (current, at least) that has helped me fix this. My goal is to block only internet on one device from TIME 1 to TIME 2 (ideally, 10p to 6p, but I'm not sure if that's possible given...
    • anoukaimee
    • Thread
    • asus merlin firewall hggomes iptables ntp parental control
    • Replies: 16
    • Forum: Asuswrt-Merlin
  17. thiggins

    CUJO Smart Internet Security Firewall Reviewed

    The CUJO Smart Internet Security Firewall tries to bring enterprise security to your home's network. Read on SmallNetBuilder
  18. octopus

    Adaptive TAB fw restarts

    Evey time I go go Adaptive Qos TAB firewall alwas restart even if i dont use it. Is it possible to fix so it only restart when its in use? Sep 13 10:47:30 kernel: * Make sure sizeof(struct sw_struct)=160 is consistent Sep 13 10:47:31 kernel: IDPfw: TrendMicro forward module ver-1.0.31 Sep 13...
    • octopus
    • Thread
    • adaptive qos firewall restart start_firewall
    • Replies: 0
    • Forum: Asuswrt-Merlin
  19. M

    Cisco RV320 ACLs not working

    Hi all, I was hoping to get some help configuring a Cisco RV320 router. The RV320 is at a remote location, I want to configure a port forward for remote desktop from my public static IP address through the RV320 to a server on the RV320's internal lan. I have setup port forwarding on the RV320...
    • mangyDOG
    • Thread
    • acl cisco firewall rv320
    • Replies: 3
    • Forum: Routers
  20. G

    URL Filter based on MAC or IP

    Running 380.1 on RT-AC3200 Is there any way to set URL Filter based on MAC or IP? I want to block certain domains but only for some devices in my network. I see Firewall - URL Filter but it blocks all devices. AiProtection is also no-good because some country specific streaming sites are no...
Top