Menu
What's new
By:
Filters Better Search

Feature request: support blocklists

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

ColinTaylor said:
That's not a log file. It's just a dump of his iptables rules.

iptables -L -v -n
Click to expand...
Thanks. It works normally :)
Now I have a question regarding direction src dst. As far as I can see in your (Edit: I observed that it was Nutz2U2's example. Sorry for confusion) case an in mine too I see [any] at both in/out even the block list is [BlockedCountries src] or [BlocklistComcastCIDR src,dst].
Code: 
pkts bytes target prot opt in out source destination
67634 5488K DROP all -- any any anywhere anywhere match-set BlockedCountries src
7 500 DROP all -- any any anywhere anywhere match-set TorNodes src
0 0 ACCEPT all -- any any anywhere anywhere match-set I-BlocklistComcastCIDR src,dst
And I do not understand how direction list src/dst works. I apreciate any response.

Thank you in advance.
 
Last edited:
redhat27 said:
@amplatfus you can also create an alias (in /jffs/config/profile.add, for example) as mentioned here to grep the output above for ipsets only
Click to expand...

Thank you for tip :). I did it, but still not understand even I have only SRC (DST is not pressed) in the lists why at both in/out I got any in output:
Code: 
 pkts bytes target     prot opt in     out     source               destination       
    0     0 DROP       all  --  any    any     anywhere             anywhere             match-set TBGHijackedCIDR src
    0     0 DROP       all  --  any    any     anywhere             anywhere             match-set TBGHijackedSingle src
    0     0 DROP       all  --  any    any     anywhere             anywhere             match-set AbuseSpyEyeCIDR src
    0     0 DROP       all  --  any    any     anywhere             anywhere             match-set AbuseSpyEyeCIDR src
    0     0 DROP       all  --  any    any     anywhere             anywhere             match-set AbuseSpyEyeSingle src
Many thanks!
 
The src is the source of the internet traffic (packets coming in from outside) If src is mentioned, it means that IPs in that ipset will be blocked. If dst (destination: packets leaving your network to internet) is specified, it means you will not be able to connect to those IPs mentioned. If you are using the extended version of the script, you can specify on the last column what you want to block (or allow).

Briefly, src is inbound traffic, dst is outbound traffic
 
redhat27 said:
The src is the source of the internet traffic (packets coming in from outside) If src is mentioned, it means that IPs in that ipset will be blocked. If dst (destination: packets leaving your network to internet) is specified, it means you will not be able to connect to those IPs mentioned. If you are using the extended version of the script, you can specify on the last column what you want to block (or allow).

Briefly, src is inbound traffic, dst is outbound traffic
Click to expand...
Yes. But in this case in the blockstats should be in out column none instead of all, right?

Thank you.

Sent from my ONE A2003 using Tapatalk
 
The "in" and "out" columns refer to the network interfaces defined on your router. The columns are from the standard iptables -L -v output. The "all" in the "prot" column refers to all protocols like tcp/udp/icmp
 
Hi to All,

Here is a crazy question:-

What is going on here?

May 2 18:21:44 Firewall: /jffs/scripts/iblocklist-loader: Loaded I-BlocklistPedophilesSingle blocklist with 23286 entries
May 2 18:21:45 Firewall: /jffs/scripts/iblocklist-loader: Loaded I-BlocklistPedophilesSingle blocklist with 23286 entries
May 2 18:21:45 Firewall: /jffs/scripts/iblocklist-loader: Loaded I-BlocklistPedophilesSingle blocklist with 23286 entries
May 2 18:21:45 Firewall: /jffs/scripts/iblocklist-loader: Loaded I-BlocklistPedophilesSingle blocklist with 23286 entries
May 2 18:21:45 Firewall: /jffs/scripts/iblocklist-loader: Loaded I-BlocklistPedophilesSingle blocklist with 23286 entries
May 2 18:21:45 Firewall: /jffs/scripts/iblocklist-loader: Loaded I-BlocklistPedophilesSingle blocklist with 23286 entries
May 2 18:21:45 Firewall: /jffs/scripts/iblocklist-loader: Loaded I-BlocklistPedophilesSingle blocklist with 23286 entries
May 2 18:21:45 Firewall: /jffs/scripts/iblocklist-loader: Loaded I-BlocklistPedophilesCIDR blocklist with 4875 entries
May 2 18:21:45 Firewall: /jffs/scripts/iblocklist-loader: Loaded I-BlocklistPedophilesSingle blocklist with 23286 entries
May 2 18:21:45 Firewall: /jffs/scripts/iblocklist-loader: Loaded I-BlocklistPedophilesSingle blocklist with 23286 entries
May 2 18:21:45 Firewall: /jffs/scripts/iblocklist-loader: Loaded I-BlocklistPedophilesSingle blocklist with 23286 entries
May 2 18:21:46 Firewall: /jffs/scripts/iblocklist-loader: Loaded I-BlocklistPedophilesCIDR blocklist with 4875 entries
May 2 18:21:46 Firewall: /jffs/scripts/iblocklist-loader: Loaded I-BlocklistPedophilesCIDR blocklist with 4875 entries
May 2 18:21:46 Firewall: /jffs/scripts/iblocklist-loader: Loaded I-BlocklistPedophilesCIDR blocklist with 4875 entries
May 2 18:21:46 Firewall: /jffs/scripts/iblocklist-loader: Loaded I-BlocklistPedophilesCIDR blocklist with 4875 entries
May 2 18:21:46 Firewall: /jffs/scripts/iblocklist-loader: Loaded I-BlocklistPedophilesCIDR blocklist with 4875 entries
May 2 18:21:46 Firewall: /jffs/scripts/iblocklist-loader: Loaded I-BlocklistPedophilesCIDR blocklist with 4875 entries
May 2 18:21:46 Firewall: /jffs/scripts/iblocklist-loader: Loaded I-BlocklistPedophilesCIDR blocklist with 4875 entries
May 2 18:21:46 Firewall: /jffs/scripts/iblocklist-loader: Loaded I-BlocklistPedophilesCIDR blocklist with 4875 entries
May 2 18:21:46 Firewall: /jffs/scripts/iblocklist-loader: Loaded I-BlocklistPedophilesCIDR blocklist with 4875 entries
May 2 18:21:47 Firewall: /jffs/scripts/iblocklist-loader: Started processing BluetackLevel1 blocklist
May 2 18:21:47 Firewall: /jffs/scripts/iblocklist-loader: Started processing BluetackLevel1 blocklist
May 2 18:21:47 Firewall: /jffs/scripts/iblocklist-loader: Started processing BluetackLevel1 blocklist
May 2 18:21:47 Firewall: /jffs/scripts/iblocklist-loader: Started processing BluetackLevel1 blocklist
May 2 18:21:47 Firewall: /jffs/scripts/iblocklist-loader: Started processing BluetackLevel1 blocklist
May 2 18:21:48 Firewall: /jffs/scripts/iblocklist-loader: Started processing BluetackLevel1 blocklist
May 2 18:21:48 Firewall: /jffs/scripts/iblocklist-loader: Loaded I-BlocklistPedophilesSingle blocklist with 23286 entries
May 2 18:21:48 Firewall: /jffs/scripts/iblocklist-loader: Started processing BluetackLevel1 blocklist
May 2 18:21:48 Firewall: /jffs/scripts/iblocklist-loader: Started processing BluetackLevel1 blocklist
May 2 18:21:48 Firewall: /jffs/scripts/iblocklist-loader: Loaded I-BlocklistPedophilesSingle blocklist with 23286 entries
May 2 18:21:48 Firewall: /jffs/scripts/iblocklist-loader: Loaded I-BlocklistPedophilesSingle blocklist with 23286 entries
May 2 18:21:48 Firewall: /jffs/scripts/iblocklist-loader: Loaded I-BlocklistPedophilesSingle blocklist with 23286 entries
May 2 18:21:48 Firewall: /jffs/scripts/iblocklist-loader: Loaded I-BlocklistPedophilesSingle blocklist with 23286 entries
May 2 18:21:48 Firewall: /jffs/scripts/iblocklist-loader: Loaded I-BlocklistPedophilesCIDR blocklist with 4875 entries
May 2 18:21:48 Firewall: /jffs/scripts/iblocklist-loader: Loaded I-BlocklistPedophilesSingle blocklist with 23286 entries
May 2 18:21:48 Firewall: /jffs/scripts/iblocklist-loader: Started processing BluetackLevel1 blocklist
May 2 18:21:48 Firewall: /jffs/scripts/iblocklist-loader: Started processing BluetackLevel1 blocklist
May 2 18:21:48 Firewall: /jffs/scripts/iblocklist-loader: Loaded I-BlocklistPedophilesSingle blocklist with 23286 entries
May 2 18:21:48 Firewall: /jffs/scripts/iblocklist-loader: Loaded I-BlocklistPedophilesSingle blocklist with 23286 entries
May 2 18:21:49 Firewall: /jffs/scripts/iblocklist-loader: Loaded I-BlocklistPedophilesCIDR blocklist with 4875 entries
May 2 18:21:49 Firewall: /jffs/scripts/iblocklist-loader: Loaded I-BlocklistPedophilesCIDR blocklist with 4875 entries
May 2 18:21:49 Firewall: /jffs/scripts/iblocklist-loader: Loaded I-BlocklistPedophilesCIDR blocklist with 4875 entries
May 2 18:21:49 Firewall: /jffs/scripts/iblocklist-loader: Loaded I-BlocklistPedophilesCIDR blocklist with 4875 entries
May 2 18:21:49 Firewall: /jffs/scripts/iblocklist-loader: Loaded I-BlocklistPedophilesCIDR blocklist with 4875 entries
May 2 18:21:49 Firewall: /jffs/scripts/iblocklist-loader: Loaded I-BlocklistPedophilesCIDR blocklist with 4875 entries
May 2 18:21:49 Firewall: /jffs/scripts/iblocklist-loader: Loaded I-BlocklistPedophilesCIDR blocklist with 4875 entries
May 2 18:21:49 Firewall: /jffs/scripts/iblocklist-loader: Started processing BluetackLevel1 blocklist
May 2 18:21:49 Firewall: /jffs/scripts/iblocklist-loader: Started processing BluetackLevel1 blocklist
May 2 18:21:49 Firewall: /jffs/scripts/iblocklist-loader: Started processing BluetackLevel1 blocklist
May 2 18:21:50 Firewall: /jffs/scripts/iblocklist-loader: Started processing BluetackLevel1 blocklist
May 2 18:21:50 Firewall: /jffs/scripts/iblocklist-loader: Started processing BluetackLevel1 blocklist
May 2 18:21:50 Firewall: /jffs/scripts/iblocklist-loader: Started processing BluetackLevel1 blocklist
May 2 18:21:50 Firewall: /jffs/scripts/iblocklist-loader: Started processing BluetackLevel1 blocklist
May 2 18:21:50 Firewall: /jffs/scripts/iblocklist-loader: Started processing BluetackLevel1 blocklist
May 2 18:21:55 rc_service: httpd 14864:notify_rc stop_vpnclient1
May 2 18:21:55 openvpn[14766]: SIGTERM[hard,init_instance] received, process exiting
May 2 18:22:14 rc_service: httpd 14864:notify_rc start_vpnclient1
May 2 18:22:17 openvpn[19066]: OpenVPN 2.4.0 arm-unknown-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Mar 10 2017
May 2 18:22:17 openvpn[19066]: library versions: OpenSSL 1.0.2k 26 Jan 2017, LZO 2.08
May 2 18:22:17 openvpn[19066]: daemon() failed or unsupported: Cannot allocate memory (errno=12)
May 2 18:22:17 openvpn[19066]: Exiting due to fatal error
May 2 18:22:17 syslog: VPN_LOG_ERROR: 522: Starting OpenVPN failed...
May 2 18:24:11 rc_service: httpd 14864:notify_rc start_vpnclient1
May 2 18:24:12 syslog: VPN_LOG_ERROR: 159: Creating tunnel interface tun11 failed...
May 2 18:25:40 rc_service: httpd 14864:notify_rc start_vpnclient1
May 2 18:25:40 syslog: VPN_LOG_ERROR: 159: Creating tunnel interface tun11 failed...
May 2 18:28:45 rc_service: httpd 14864:notify_rc start_vpnclient1
May 2 18:28:45 syslog: VPN_LOG_ERROR: 159: Creating tunnel interface tun11 failed...
May 2 18:29:03 Firewall: /jffs/scripts/iblocklist-loader: Loaded BluetackLevel1Single blocklist with

Is the script running multiple times or just that how it reports it'self in the log ??

Obviously the Router won't work till everything is loaded / running / configured. To me every minute off-line is a minute off-line and to a certain degree insecure. So the quicker the router runs - the quicker the network is secure.

Otherwise the scripts all run fine - just want to make sure they are running correctly and efficient.
 
Your firewall-start has been invoked more than once, Can you remove the /jffs/scripts/iblocklist-loader call out of firewall-start completely and put the call into services-start and reboot your router? I believe that will fix this issue
 
Hi redhat27,

Fixed :).

Hi redhat27,

May 2 20:26:08 Firewall: /jffs/scripts/iblocklist-loader: Loaded BluetackLevel1Single blocklist with 25639 entries
May 2 20:26:11 Firewall: /jffs/scripts/iblocklist-loader: Loaded BluetackLevel1CIDR blocklist with 222558 entries
May 2 20:26:11 Firewall: /jffs/scripts/iblocklist-loader: Started processing BluetackLevel2 blocklist
May 2 20:26:48 Firewall: /jffs/scripts/iblocklist-loader: Loaded BluetackLevel2Single blocklist with 3600 entries
May 2 20:26:49 Firewall: /jffs/scripts/iblocklist-loader: Loaded BluetackLevel2CIDR blocklist with 83962 entries
May 2 20:26:50 Firewall: /jffs/scripts/iblocklist-loader: Started processing BluetackLevel3 blocklist
May 2 20:26:58 Firewall: /jffs/scripts/iblocklist-loader: Loaded BluetackLevel3Single blocklist with 498 entries
May 2 20:26:58 Firewall: /jffs/scripts/iblocklist-loader: Loaded BluetackLevel3CIDR blocklist with 19031 entries
May 2 20:26:59 Firewall: /jffs/scripts/iblocklist-loader: Started processing BluetackEdu blocklist

Fixed. Thanking You. Router is buzzing again .........
 
You must log in or register to reply here.

Similar threads

RMerlin
  • Locked
Beta Asuswrt-Merlin 388.1 Beta is available for select models
44 45 46
Replies
903
Views
190K
RMerlin
RMerlin
L
Looking to finish a wireless deployment I started with MikroTik switch-routers
Replies
14
Views
3K
coxhaus
C
Klueless
My Unenlightened View of VPN Tunnels
2
Replies
31
Views
3K
Klueless
Klueless
S
BUY - Asus RT-AC3200 vs RT-AC86U vs Netgear R8000 - Stock vs Merlin vs Tomato vs DD-WRT vs OpenWRT
Replies
1
Views
10K
st3v3n
st3v3n
daviworld
  • Poll
RT-AC5300 Performance & Security Guide
2 3 4
Replies
71
Views
80K
L&LD
L&LD
Similar threads
Thread starter Title Forum Replies Date
M [🙏 Feature request For Asus Merlin] Add Public WiFi Mode for GT-AX11000 Asuswrt-Merlin 7
G Feature request: firewall url filter log Asuswrt-Merlin 0
Q [Feature Request] Schedule DoS Protection state and/or whitelist option Asuswrt-Merlin 5
mekki Solved UPDATE: No longer required. See thread. - [Feature request] Option for DHCP Query Frequency Backoff Mode Asuswrt-Merlin 76
M [WAN feature request] GT-AXE16000 use 2.5G port as LAN and use 2 1GB ports for dual wan Asuswrt-Merlin 14
A [Feature Request] Show all clients in Wireless Log Asuswrt-Merlin 1
P DNS Director- 2nd DNS server - Feature request Asuswrt-Merlin 8
torstein Feature request asuswrt-merlin: Option to quickly disable radios from the front / status page Asuswrt-Merlin 11
A Feature Request for ASUS FTP Server Port Selections Asuswrt-Merlin 4
H [Feature Request] Delay start of the 2.4ghz network after restart Asuswrt-Merlin 3

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 743 (members: 16, guests: 727)
Top