Skynet Skynet - Router Firewall & Security Enhancements

  • ATTENTION! You'll notice a Prefix dropdown when you create a thread. If your post applies to one of the topics listed, please use that Prefix for your post. When browsing the thread list you can use the Prefix to filter the view.
  • ATTENTION! As of November 1, 2020, you are not able to reply to threads 6 months after the thread is opened if there are more than 500 posts in the thread.
    Threads will not be locked, so posts may still be edited by their authors.
    Just start a new thread on the topic to post if you get an error message when trying to reply to a thread.

Adamm

Part of the Furniture
I've pushed v7.0.5

Code:
Add stat generation progress indicator
Save webui colapse/expand preferences
Removed tabs from various Whitelists, otherwise ipset restore will not work.
Removed lan_netmask from Whitelist_Shared because this is not an IP address.
Get correct lan CIDR address in Whitelist_Shared function with new LAN_CIDR_Lookup function.
POSIX compliance
Add Download_File() function
Fix WebUI regression
 

Marin

Very Senior Member
I've pushed v7.0.5

Code:
Add stat generation progress indicator
Save webui colapse/expand preferences
Removed tabs from various Whitelists, otherwise ipset restore will not work.
Removed lan_netmask from Whitelist_Shared because this is not an IP address.
Get correct lan CIDR address in Whitelist_Shared function with new LAN_CIDR_Lookup function.
POSIX compliance
Add Download_File() function
Fix WebUI regression
So far so good here after the update. It still takes a couple of minutes for the Skynet tab to appear in WebUI after a reboot.


Sent from my iPhone using Tapatalk
 

Adamm

Part of the Furniture
So far so good here after the update. It still takes a couple of minutes for the Skynet tab to appear in WebUI after a reboot.


Sent from my iPhone using Tapatalk
That's to-be expected, its one of the last steps in Skynet's startup procedure (with the firewall-start event being one of the last called during the router boot procedure).
 

Rhialto

Regular Contributor
Issue is to-do with your USB not JFFS. My suggestion is to nuke it and start over using something like MiniTool Partition Wizard, I'm guessing it wasn't formatted correctly.
That's what I did and just redid. First thing I did now is install Skynet but not much happen. I made a video to show you what's going on...

oops animated gif does not work :-( I'll PM you.
 

bluepoint

Very Senior Member
I've pushed v7.0.5

Code:
Add stat generation progress indicator
Save webui colapse/expand preferences
Removed tabs from various Whitelists, otherwise ipset restore will not work.
Removed lan_netmask from Whitelist_Shared because this is not an IP address.
Get correct lan CIDR address in Whitelist_Shared function with new LAN_CIDR_Lookup function.
POSIX compliance
Add Download_File() function
Fix WebUI regression
It works! Thanks.
Code:
Save webui colapse/expand preferences
 

skeal

Part of the Furniture
I've pushed v7.0.5

Code:
Add stat generation progress indicator
Save webui colapse/expand preferences
Removed tabs from various Whitelists, otherwise ipset restore will not work.
Removed lan_netmask from Whitelist_Shared because this is not an IP address.
Get correct lan CIDR address in Whitelist_Shared function with new LAN_CIDR_Lookup function.
POSIX compliance
Add Download_File() function
Fix WebUI regression
Very nice!!! Great work @Adamm !! :D
 

duceyaj

New Around Here
Did you change anything about your setup lately, plus what other scripts do you have installed?

Also what is the output of the following commands;

Code:
iptables --line -t raw -vnLi

cat /jffs/scripts/firewall-start
Finally have you tried a firewall restart (followed by waiting about 60 seconds);

Code:
sh /jffs/scripts/firewall restart
I currently have these scripts installed:
Code:
RT-AX88U (aarch64) FW-384.14 @ 192.168.50.1
 The SNBForum Asuswrt-Merlin Terminal Menu

 1  open     Diversion                 v4.1.8
 2  open     Skynet                    v7.0.5

 5  open     scribe                    v2.4.1

 j3 open     scMerlin                  v1.0.3

 j5 open     uiDivStats                v1.2.3
 j6 open     uiScribe                  v1.1.0

 di open     dnscrypt installer       v2.0.36
Code:
[email protected]:/tmp/home/root# iptables --line -t raw -
vnL
Chain PREROUTING (policy ACCEPT 12210 packets, 5232K bytes)
num   pkts bytes target     prot opt in     out     source

Chain OUTPUT (policy ACCEPT 5671 packets, 814K bytes)
num   pkts bytes target     prot opt in     out     source
Code:
[email protected]:/tmp/home/root# cat /jffs/scripts/firewa
ll-start
#!/bin/sh

sh /jffs/scripts/firewall start skynetloc=/tmp/mnt/yangdrive/n
I have also done multiple firewall restarts and router reboots. I've also uninstalled and reinstalled skynet to no avail. Last resort may be to do a full wipe and start over fresh.

Sent from my SM-G975U1 using Tapatalk
 

Rhialto

Regular Contributor
I have also done multiple firewall restarts and router reboots. I've also uninstalled and reinstalled skynet to no avail. Last resort may be to do a full wipe and start over fresh.
This may look a bit similar to the problem I had. Try this command then install Skynet again.
Code:
rm /jffs/scripts/firewall*
 

duceyaj

New Around Here
This may look a bit similar to the problem I had. Try this command then install Skynet again.
Code:
rm /jffs/scripts/firewall*
Thanks but it did not fix the issue. I'm still getting "IPTables Rules Failed"

Sent from my SM-G975U1 using Tapatalk
 

thelonelycoder

Part of the Furniture
sh /jffs/scripts/firewall start skynetloc=/tmp/mnt/yangdrive/n
That does not look right. The /n at the end should say /skynet
 

JaimeZX

Senior Member
I currently have these scripts installed:
I have also done multiple firewall restarts and router reboots. I've also uninstalled and reinstalled skynet to no avail. Last resort may be to do a full wipe and start over fresh.
If you wind up going that way, might as well do a full L&LD Reset.
 

Adamm

Part of the Furniture
Same here. The upgrade worked fine no errors. When I check out the tab, I get..

404 Not Found
File not found.
Did you do a force update a second time as per the release post to download the new webui files?
 

JemTheWire

Senior Member
Have you made the same mistake as me, I wonder?

It will only show tabs when using Merlin 384.15, which is currently in alpha.

HTH.

Update: Just seen your sig. Already running alpha. I blame TapaTalk - i can't see signatures!
 
Last edited:

Adamm

Part of the Furniture
No web ui here either.
Force updated several times, rebooted router, no go.
Otherwise, Skynet working fine though.
Do you happen to have any of Jack Yaz's ui* scripts installed? They need to be updated to comply with the new web page mounting method and will cause weirdness depending on which script activates first.

If no, post the output of the following;

Code:
sh /jffs/scripts/firewall settings webui enable

ls /www/user
 

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!
Top