[Fork] Asuswrt-Merlin 374.43 LTS releases (V44EA)

dave14305

Part of the Furniture
I did think about suggesting that but he did say he wanted to block all clients. In which case he'd have to block all possible DoH servers that may be used now and in the future - and hope that they don't share the same IP address as a web site they need to access.

EDIT: Actually, you are correct. If you were to block on IP address and port number (rather than just IP address) that could work. So "all" you need to do is create a block list of every DoH server in the world and keep it up to date. That sounds like a task more suited to Skynet.
I think Cloudflare would be an outlier because at least for me, https://cloudflare-dns.com/ doesn’t resolve to 1.1.1.1 or 1.0.0.1. The other big providers are more predictable for IP-based blocking.

Maybe a combination of hosts-based blocking of the DoH URL hostname during bootstrapping and IP based blocking of IP:443.
 

jrmwvu04

Very Senior Member
Now I'm confused (I'm beginning to think that's my normal state) :)
Just to double check.....Comcast IPv6 now working for you?
Yeah. Works on Native with all the default settings. I did change the one you mentioned but it works without that change as well, as in years prior. But for one or another reason it did not last night. I noticed the same behavior as @luni though - the LAN address began with 2001 something last night and today that it’s back to working it’s 2601 - I have never taken note of that prior because I don’t use ipv6 but can now corroborate that observation. Whether it means anything, truly I don’t know.
 

jrmwvu04

Very Senior Member
COVID 19 has proven to be an absolute nightmare to try to troubleshoot internet/networking hiccups.
 

RMerlin

Asuswrt-Merlin dev
And hope the client will fall back to standard DNS on port 53 if DoH is unavailable.
If it doesn't, then it's that client user's problems, not yours.
 

Gar

Very Senior Member
Running fine on my AC56, thanks again.

I never noticed before but, in the system log it says (referring to Skynet): "Firewall detected but Custom Scripts Disabled". Is that because of the differences between 384.xx and 374.43? Or do I have a problem? The Skynet data is supposed to be in the Add0ns tab I realize, but it's empty.
 

dave14305

Part of the Furniture
Running fine on my AC56, thanks again.

I never noticed before but, in the system log it says (referring to Skynet): "Firewall detected but Custom Scripts Disabled". Is that because of the differences between 384.xx and 374.43? Or do I have a problem? The Skynet data is supposed to be in the Add0ns tab I realize, but it's empty.
Are jffs custom scripts and configs enabled on the Admin / System tab?
 
  • Like
Reactions: Gar

john9527

Part of the Furniture

Lord Lovaduck

Regular Contributor
Hi there guys. I have two ASUS routers, an RTN16 running John's fork and an AC68U running Merlin, both latest builds. I did run some new long cables and the quality of the Cat 5 seems to be low. The cable continuity checker shows OK but don't know how good that is as a transmission quality gauge. How do I check for data transmission errors/retries at the switch portion? Would like to look at individual ports. Is there a command or commands I can use? (Most of the cables end up at the RTN16 with John's fork, that's why I ask here).
Thanks!
 

luni

New Around Here
Thanks for confirming....sounds like Comcast had a hiccup...
Hopefully it's now working for @luni now as well.

Just as an FYI....on Cox my address starts with 2600
@john9527 @jrmwvu04 @dave14305

I must just have the worst timing. I had to reboot my router but upon reboot it picked up ipv6 and my network devices are now passing ipv6 tests again. Thanks everyone.

For posterity:
  1. I still had "Prefix delegation requires address request" set to yes from previous experiments, but as previously mentioned, that's likely not required. Leaving it, since it's working ¯\_(ツ)_/¯
  2. Prefix of 64 since I don't have complex subnetting needs, but supposedly you can get a /60 from comcast if you want.
  3. IPv6 System Log is showing a WAN 2001: and a LAN 2601: which matches comcast's ipv6 setup
Thanks everyone for your time and John for all the work you do.
 

BloodFX

Regular Contributor
Any idea what this is keep getting it now on latest firmware, never seen it before: Jul 18 22:01:30 dnsmasq[607]: possible DNS-rebind attack detected: crb.kargo.com ?
 

ColinTaylor

Part of the Furniture
Any idea what this is keep getting it now on latest firmware, never seen it before: Jul 18 22:01:30 dnsmasq[607]: possible DNS-rebind attack detected: crb.kargo.com ?
Did you not have DNS Rebind Protection enabled before (WAN - Internet Connection)?

The message is valid. You are trying to go to that domain and it is has an address of 0.0.0.0.
 

ColinTaylor

Part of the Furniture
Hi there guys. I have two ASUS routers, an RTN16 running John's fork and an AC68U running Merlin, both latest builds. I did run some new long cables and the quality of the Cat 5 seems to be low. The cable continuity checker shows OK but don't know how good that is as a transmission quality gauge. How do I check for data transmission errors/retries at the switch portion? Would like to look at individual ports. Is there a command or commands I can use? (Most of the cables end up at the RTN16 with John's fork, that's why I ask here).
Thanks!
Is the RT-N16U in router mode or AP mode? If you're in AP mode the interface to look at is br0. If you're in router mode you need to look the interface shown by nvram get wan0_ifname.

Code:
# ifconfig br0
br0       Link encap:Ethernet  HWaddr 30:5A:3A:C7:8A:20
          inet addr:192.168.1.1  Bcast:192.168.1.255  Mask:255.255.255.0
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:5908839 errors:0 dropped:0 overruns:0 frame:0
          TX packets:16983105 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0
          RX bytes:888364441 (847.2 MiB)  TX bytes:21723650483 (20.2 GiB)
Look at the "errors" and "dropped" numbers.
 

LeilaBD

New Around Here
Has anyone else had problems (or success) downloading RT-N66U_374.43_44EAj9527.zip? I'm repeatedly getting it failing at about 17.53 MB.
 

Lord Lovaduck

Regular Contributor
Thanks a LOT Colin.

The RTN16 is in Router mode. Or gateway, I have a wan port that goes into a fiber optic bridge and I connect to the ISP using PPOE. There are four Cat 5 cables and each goes to a downstream AP that creates its own WiFi network. DHCP remains at the RTN16 as it should.

I am looking for the error rate for the cables that come out of the four RTN16 ethernet ports, not the wan port. Isn't wan0 the wan port? That would tell me about the quality of the fiber connection, I would think.
Run the commands, here's the output. Also checked BR0.

Code:
ASUSWRT-Merlin RT-N16_3.0.0.4 Wed May 27 13:28:03 UTC 2020
[email protected]:/tmp/home/root# nvram get wan0_ifname
eth0
[email protected]:/tmp/home/root# ifconfig eth0
eth0      Link encap:Ethernet  HWaddr BC:AE:C5:C4:F5:6E
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:85093211 errors:0 dropped:0 overruns:0 frame:0
          TX packets:84956179 errors:59878 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:41508570 (39.5 MiB)  TX bytes:3508690720 (3.2 GiB)
          Interrupt:4 Base address:0x2000

[email protected]:/tmp/home/root# ifconfig br0
br0       Link encap:Ethernet  HWaddr BC:AE:C5:C4:F5:6E
          inet addr:192.168.17.1  Bcast:192.168.17.255  Mask:255.255.255.0
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:1513625 errors:0 dropped:0 overruns:0 frame:0
          TX packets:655424 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0
          RX bytes:177799033 (169.5 MiB)  TX bytes:122794847 (117.1 MiB)
So the error rate is 0.07 %. I have no idea of what is "normal" in any case it's quite low IMHO.
Thanks!!!

Is the RT-N16U in router mode or AP mode? If you're in AP mode the interface to look at is br0. If you're in router mode you need to look the interface shown by nvram get wan0_ifname.

Code:
# ifconfig br0
br0       Link encap:Ethernet  HWaddr 30:5A:3A:C7:8A:20
          inet addr:192.168.1.1  Bcast:192.168.1.255  Mask:255.255.255.0
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:5908839 errors:0 dropped:0 overruns:0 frame:0
          TX packets:16983105 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0
          RX bytes:888364441 (847.2 MiB)  TX bytes:21723650483 (20.2 GiB)
Look at the "errors" and "dropped" numbers.
 

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!
Top