Z06Frank
New Around Here
I'm new with using Entware on a ASUS RT-AX88U running latest ASUS-wrt Merlin firmware 386.1.2. I recently set up Entware (and Skynet, Diversion, pixelserv-tsl, etc...). All is good with what I've added and set up was fairly easy using this post below:
https://www.snbforums.com/threads/amtm-step-by-step-install-guide-l-ld.56237/#post-483441
Now I trying to learn how to add additional firewall rules to the router side on a LAN set up that has a fully functioning pihole (raspberry pi3B+) and Linux OMV server (new Kobol Helios64 on latest armbian and OMV). The Server is new and I'm going down the rabbits hole with trying to get Wireguard VPN to work on the OMV server via docker compose. Either way my question is adding new firewall rules via SkyNet (I think). I followed this post without success (other than breaking SkyNet's internet connection...and repairing it with updates/and the help menus):
https://github.com/RMerl/asuswrt-merlin.ng/wiki/Installing-Transmission-through-Entware
Here are the iptable firewall rules I'd like to add (they are some NAT redirect rules for mi pihole (.103) and forcing port forward of 51820 for Wireguard):
iptables -t nat -A PREROUTING -s 192.168.1.103 -j ACCEPT
iptables -t nat -A PREROUTING -d 192.168.1.1 -j ACCEPT
iptables -t nat -A OUTPUT -p udp --dport 53 -j DNAT --to 192.168.1.103
iptables -t nat -A OUTPUT -p tcp --dport 53 -j DNAT --to 192.168.1.103
iptables -I INPUT -p udp --destination-port 51820 -j ACCEPT
How and where do I add these rules via Entware? I have "nano" active and working for file editing. Do I add these rules to "firewall-start"?
Here are my files on my USB3.0:
XXXnet@RT-AX88U:/tmp/home/root# cd /tmp/mnt/data/
XXXnet@RT-AX88U:/tmp/mnt/data# ls
entware lost+found myswap.swp skynet
Here are my jffs scripts folders
XXXnet@RT-AX88U:/tmp/home/root# cd /jffs/scripts/
XXXnet@RT-AX88U:/jffs/scripts# ls
YazDHCP firewall post-mount service-event services-stop
dnsmasq.postconf firewall-start scmerlin services-start unmount
New noob in the Entware world help......thanks
https://www.snbforums.com/threads/amtm-step-by-step-install-guide-l-ld.56237/#post-483441
Now I trying to learn how to add additional firewall rules to the router side on a LAN set up that has a fully functioning pihole (raspberry pi3B+) and Linux OMV server (new Kobol Helios64 on latest armbian and OMV). The Server is new and I'm going down the rabbits hole with trying to get Wireguard VPN to work on the OMV server via docker compose. Either way my question is adding new firewall rules via SkyNet (I think). I followed this post without success (other than breaking SkyNet's internet connection...and repairing it with updates/and the help menus):
https://github.com/RMerl/asuswrt-merlin.ng/wiki/Installing-Transmission-through-Entware
Here are the iptable firewall rules I'd like to add (they are some NAT redirect rules for mi pihole (.103) and forcing port forward of 51820 for Wireguard):
iptables -t nat -A PREROUTING -s 192.168.1.103 -j ACCEPT
iptables -t nat -A PREROUTING -d 192.168.1.1 -j ACCEPT
iptables -t nat -A OUTPUT -p udp --dport 53 -j DNAT --to 192.168.1.103
iptables -t nat -A OUTPUT -p tcp --dport 53 -j DNAT --to 192.168.1.103
iptables -I INPUT -p udp --destination-port 51820 -j ACCEPT
How and where do I add these rules via Entware? I have "nano" active and working for file editing. Do I add these rules to "firewall-start"?
Here are my files on my USB3.0:
XXXnet@RT-AX88U:/tmp/home/root# cd /tmp/mnt/data/
XXXnet@RT-AX88U:/tmp/mnt/data# ls
entware lost+found myswap.swp skynet
Here are my jffs scripts folders
XXXnet@RT-AX88U:/tmp/home/root# cd /jffs/scripts/
XXXnet@RT-AX88U:/jffs/scripts# ls
YazDHCP firewall post-mount service-event services-stop
dnsmasq.postconf firewall-start scmerlin services-start unmount
New noob in the Entware world help......thanks