AdGuardHome [RELEASE] Asuswrt-Merlin-AdGuardHome-Installer (AMAGHI)

[SomeWhereOverTheRainBow]

As requested. The only change to the yaml file is the web portal bind port

From the earlier shared info, this is the line that is causing all the restarts

Feb 13 16:31:12 RT-AC86U-7510 S99AdGuardHome[15012]: Warning: AdGuardHome is not responding; S99AdGuardHome[15012] will re-start it!

Every thing seems okay but that check is saying your dns is not working properly, that is why it is performing a restart. Maybe try another server than cloudflare dot. See if the issue changes.

One option you could try with DoT servers is listing them by ip instead of domain, for example, regular cloudflare would be

tls://1.1.1.1:853

Which is also an acceptable format. Maybe their is a resolving bug with adguardhome that needs to be addressed, this is speculation since that it pretty much all I can do since I am unable to reproduce the same issue.

 

[pattiri]

with v1.3.0, this happens in every 10 seconds and I couldn't stop this. Is that normal?

 

[SomeWhereOverTheRainBow]

with v1.3.0, this happens in every 10 seconds and I couldn't stop this. Is that normal?

View attachment 39446

yes, it is confirming your internet dns thru adguardhome is active. it should now be every 5 minutes, if you run update.

 

[pattiri]

yes, it is confirming your internet dns thru adguardhome is active. it should now be every 5 minutes, if you run update.

updated but it still does it in every 10 seconds

I've tried to update 3 times via amtm and used

sh /opt/etc/AdGuardHome/installer update

but no luck. Am I doing something wrong?

 

[SomeWhereOverTheRainBow]

updated but it still does it in every 10 seconds

View attachment 39447

I've tried to update 3 times via amtm and used

sh /opt/etc/AdGuardHome/installer update

but no luck. Am I doing something wrong?

resolved it. pushed v1.3.1

 

[StreiF]

Hello, there is a small problem after the crash of version 1.3.0 and the upgrade to 1.3.1, localhost.localdomain (127.0.0.1) appeared in private clients. In version 1.2.0, this was not the case, now it gets in the way. How to remove this client ?

 

[SomeWhereOverTheRainBow]

Hello, there is a small problem after the crash of version 1.3.0 and the upgrade to 1.3.1, localhost.localdomain (127.0.0.1) appeared in private clients. In version 1.2.0, this was not the case, now it gets in the way. How to remove this client ?

That appears in private clients because it is local router traffic being performed to access whether your adguardhome is active(intended behavior). Otherwise Adguardhome is vulnerable to random system calls with no real way to mitigate the crashes. I am not sure if adguardhome has a feature that allows you to "ignore" a clients traffic inside statistics or not. This may be a feature request you bring up to Adguardhome devs or a quick check in their wiki to see if it is already available. Or maybe someone here can persuade them to fix their unintended (intentional) system call issues.

Issue with syscall.SIGINT, syscall.SIGTERM, syscall.SIGHUP, syscall.SIGQUIT making invalid judgement on syscall. AdGuardHome does not properly Fork off to form its own process. · Issue #4257 · AdguardTeam/AdGuardHome

If I enable logging using -l "/path_to_some/log_file" if I want to view the end log file with tail -f "/path_to_some/log_file" once I ctrl+c in the terminal to get out of the log_file AdGuardHome t...

github.com

 

[pattiri]

with v1.3.2 this time it asks for dns.msftncsi.com in 15 secs.

 

[SomeWhereOverTheRainBow]

with v1.3.2 this time it asks for dns.msftncsi.com in 15 secs.

View attachment 39540

That is because you have your router setup to detect if internet is active. Strange world we live in when we see our routers local traffic.

 

[pattiri]

That is because you have your router setup to detect if internet is active. Strange world we live in when we see our routers local traffic.

I'm not using this feature and I've applied it as disabled before posting it to this thread. Also checked logs, it seems router started to ask for dns.msftncsi.com just after I've updated to v1.3.2.

Is there any configuration or command I can check to be sure or shall I reboot the my router?

 

[SomeWhereOverTheRainBow]

I'm not using this feature and I've applied it as disabled before posting it to this thread. Also checked logs, it seems router started to ask for dns.msftncsi.com just after I've updated to v1.3.2.

View attachment 39541

Is there any configuration or command I can check to be sure or shall I reboot the my router?

To be honest, this sounds like your router is doing this behind your back. Even though you have unchecked it in the gui, it is probably still set within your nvram as some other users have reported lately being the case. You are just now able to see the logs reflected in AGH. You need to search the forum for the latest methods of disabling this.

 

[Jack Yaz]

honestly, why does it matter if it appears in your DNS logs? how much time do you spend watching the logs? AGH lets you filter by client and only for blocked domains (which is the main reason the query log is useful, for unblocking)

the DNS lookup is so that the Asus router can determine if WAN is up or not - integral to the function of an internet router, i might add!

 

[pattiri]

honestly, why does it matter if it appears in your DNS logs? how much time do you spend watching the logs? AGH lets you filter by client and only for blocked domains (which is the main reason the query log is useful, for unblocking)

the DNS lookup is so that the Asus router can determine if WAN is up or not - integral to the function of an internet router, i might add!

you are right, suddenly it became the top queried domain, that's why I would like to ask. If I can't find anything related I'll leave it be

 

[SomeWhereOverTheRainBow]

honestly, why does it matter if it appears in your DNS logs? how much time do you spend watching the logs? AGH lets you filter by client and only for blocked domains (which is the main reason the query log is useful, for unblocking)

the DNS lookup is so that the Asus router can determine if WAN is up or not - integral to the function of an internet router, i might add!

What would be a nice feature request for AGH devs is the ability to ignore traffic in logs from certain domains, or the ability to not log the statistics for certain request/ addresses/ or clients.

 

[cptnoblivious]

What would be a nice feature request for AGH devs is the ability to ignore traffic in logs from certain domains, or the ability to not log the statistics for certain request/ addresses/ or clients.

Very true. Also, "competitors" have this.

Is it fair to call free software competitors? Anyway, if this is critically important, pihole can do this.

I totally agree with Jack, people spend too much time worrying about 'system lookups' that are normally just there, unseen, to make certain features work behind the scenes

 

[Jack Yaz]

Very true. Also, "competitors" have this.

Is it fair to call free software competitors? Anyway, if this is critically important, pihole can do this.

I totally agree with Jack, people spend too much time worrying about 'system lookups' that are normally just there, unseen, to make certain features work behind the scenes

free software like uiDivStats you mean? we have an "exclude domains from stats" that even accepts wildcards

 

[technofox01]

Hi everyone,

So I just setup AGH on my AX-58U router and I just realized that I forgot to enable and setup IPv6 on my router. Is there anyway to add/setup IPv6 on AGH?


I tried to do a reinstall of AGH but it does not appear to modify or add IPv6. I appreciate any advice or help on this.

 

[gspannu]

@SomeWhereOverTheRainBow
How do I allow access to port 14711 so that I can access the AGH Web portal from the internet?

I have DDNS enabled and am able to access the Router WebGUI.
I would also like to be able to access the AGH portal - when out of the home.

Thanks...

 

[SomeWhereOverTheRainBow]

@SomeWhereOverTheRainBow
How do I allow access to port 14711 so that I can access the AGH Web portal from the internet?

I have DDNS enabled and am able to access the Router WebGUI.
I would also like to be able to access the AGH portal - when out of the home.

Thanks...

open up that port over tcp on the firewall.

iptables -t nat -I PREROUTING -d $(nvram get wan_ipaddr)/32 -p tcp -m tcp --dport 14711 -j DNAT --to-destination $(nvram get lan_ipaddr):14711
iptables -I INPUT -d $(nvram get lan_ipaddr)/32 -p tcp -m conntrack --ctstate DNAT -m tcp --dport 14711 -j ACCEPT

while simple

iptables -I INPUT -p tcp -m tcp --dport 14711 -j ACCEPT

would open the whole 14711 port.

If you prefer HTTPS, the turn on HTTPS option on adguardhome, but first make sure you have nothing using port 443 (or port 8443 if you want 8443). And point adguardhome to the location of your letsencrypt certificates in /jffs/.le

adjust the firewall rules to the https port chosen.

The better option would be to remotely access your router from its built in VPN site tunnel.

With all this being said, I would encourage anyone to use the Openvpn server provided by the asusrouter, before attempting to set up remote access like this. Also, I would encourage using the openvpn server over setting up a remotely accessible DNS server. OpenVPN is far more safer and more encrypted.

 

[SomeWhereOverTheRainBow]

Hi everyone,

So I just setup AGH on my AX-58U router and I just realized that I forgot to enable and setup IPv6 on my router. Is there anyway to add/setup IPv6 on AGH?


I tried to do a reinstall of AGH but it does not appear to modify or add IPv6. I appreciate any advice or help on this.

uninstall and reinstall should allow you to reset it up. or simply delete your .yaml with

rm -rf /opt/etc/AdGuardHome/AdGuardHome.yaml

and run the installer option 1 which will make you a new file.