Search found 81 matches
| Author | Message |
|---|---|
 Topic: Router lockdown, stuck |
|
| RjG Replies: 17 Views: 5885 |
 Forum: Broadcom SoC based Hardware Posted: Fri Oct 11, 2019 3:16 Subject: Router lockdown, stuck |
| yes, stuff did show in dmsg, SRC DEST and MAC. That did not show in dd-wrt syslog, or external syslog server.
I already changed it to logdrop... then you get a drop message in the outbound securit ... |
|
 |
|
| Topic: Router lockdown, stuck |
|
| RjG Replies: 17 Views: 5885 |
Forum: Broadcom SoC based Hardware Posted: Wed Oct 09, 2019 7:28 Subject: Router lockdown, stuck |
|
#MAC Filter #insmod ipt_mac iptables -N CMACFILTER #drop link local without logging iptables -A CMACFILTER -s 169.254.0.0/16 -j DROP iptables -A CMACFILTER -m mac --mac-source (allowed mac& ... |
|
|
|
| Topic: Router lockdown, stuck |
|
| RjG Replies: 17 Views: 5885 |
Forum: Broadcom SoC based Hardware Posted: Tue Oct 08, 2019 21:27 Subject: Router lockdown, stuck |
I will try both these tonight and post back how it went. (without "insmod ipt_mac" ?)
 Thank you |
|
|
|
| Topic: Router lockdown, stuck |
|
| RjG Replies: 17 Views: 5885 |
Forum: Broadcom SoC based Hardware Posted: Tue Oct 08, 2019 21:23 Subject: Router lockdown, stuck |
| ..
You can try the following: iptables -I FORWARD -o $(nvram get wan_ifname) -m mac --mac-source 94:6A:B0:11:47:22 -m state --state NEW -j REJECT ... I have not tested it so curious to see if it ... |
|
|
|
| Topic: Router lockdown, stuck |
|
| RjG Replies: 17 Views: 5885 |
Forum: Broadcom SoC based Hardware Posted: Tue Oct 08, 2019 21:18 Subject: Router lockdown, stuck |
| Here is the format I have used before
#MAC Filter insmod ipt_mac iptables -N CMACFILTER #drop link local without logging iptables -A CMACFILTER -s 169.254.0.0/16 -j DROP iptables -A CMACFILT ... |
|
|
|
| Topic: Router lockdown, stuck |
|
| RjG Replies: 17 Views: 5885 |
Forum: Broadcom SoC based Hardware Posted: Mon Oct 07, 2019 20:03 Subject: Router lockdown, stuck |
| Authentication server would be nice, too complicated, thanks though:)
Learning as I go, I can answer my own last question now, the drop at the top matches all, so no internet. The drop can't be ... |
|
|
|
| Topic: Router lockdown, stuck |
|
| RjG Replies: 17 Views: 5885 |
Forum: Broadcom SoC based Hardware Posted: Mon Oct 07, 2019 16:03 Subject: Re: Router lockdown, stuck |
|
try this way... iptables -I FORWARD 1 -i vlan2 -j REJECT iptables -I FORWARD 2 -i vlan2 -m mac --mac-source 94:6A:B0:11:47:22 -j ACCEPT iptables -I FORWARD 3 -i vlan2 -m mac --mac-source 94:6A:B0 ... |
|
|
|
| Topic: Router lockdown, stuck |
|
| RjG Replies: 17 Views: 5885 |
Forum: Broadcom SoC based Hardware Posted: Mon Oct 07, 2019 15:42 Subject: Router lockdown, stuck |
| I already used the Access restrictions, every legit IP is static , all the rest blocked. That doesn't do anything for somebody manually setting an IP (even though it's static assigned to a different ... | |
|
|
| Topic: Router lockdown, stuck |
|
| RjG Replies: 17 Views: 5885 |
Forum: Broadcom SoC based Hardware Posted: Mon Oct 07, 2019 6:10 Subject: Router lockdown, stuck |
| I have a situation where I need to lock down internet access for everything, wired and wifi connections, except a small select list of MAC addresses.
I found a few references in the forum that s ... |
|
|
|
| Topic: new KONG DD-WRT test build v3.0-r39345M (3 April 2019) |
|
| RjG Replies: 42 Views: 17186 |
Forum: Broadcom SoC based Hardware Posted: Sat May 11, 2019 21:46 Subject: new KONG DD-WRT test build v3.0-r39345M (3 April 2019) |
| ... It would appear ...
No, wrong conclusion, I'm not like that. I spent an hour of my evening responding to your post that we have similar environments, starting a dialog, to try be helpful to yo ... |
|
|
|
| Topic: new KONG DD-WRT test build v3.0-r39345M (3 April 2019) |
|
| RjG Replies: 42 Views: 17186 |
Forum: Broadcom SoC based Hardware Posted: Fri May 10, 2019 5:13 Subject: new KONG DD-WRT test build v3.0-r39345M (3 April 2019) |
| Just an update...
With 7 1/2 days uptime, 2 different Winddows10 laptops lost connectivity to internet & gui, on 2.4G & 2.4G VAP. While router showed them as connected. .....I'm sure it wa ... |
|
|
|
| Topic: Port forwarding not working on Kong's latest build? |
|
| RjG Replies: 11 Views: 2931 |
Forum: Broadcom SoC based Hardware Posted: Fri May 03, 2019 14:45 Subject: Port forwarding not working on Kong's latest build? |
| PS Just looking at my config again seeing egc's post, and my port forwarding source Net is blank on all items, no zeros, for whatever that's worth. | |
|
|
| Topic: Port forwarding not working on Kong's latest build? |
|
| RjG Replies: 11 Views: 2931 |
Forum: Broadcom SoC based Hardware Posted: Fri May 03, 2019 14:42 Subject: Port forwarding not working on Kong's latest build? |
| I am running r39345M kongac (04/03/19) with lots of port forwarding, 5 xbox things on port triggering, plus several items on regular port forwarding including some that swap ports, similar to your ex ... | |
|
|
| Topic: R7000 nvram backup script |
|
| RjG Replies: 52 Views: 58481 |
Forum: Broadcom SoC based Hardware Posted: Sat Dec 09, 2017 3:42 Subject: R7000 nvram backup script |
| Hi RjG,
I think I never had the occasion to thank you for the change you made. Well, in fact, this is the first time since then that I try to backup my R8000. It seems to work (I have not tried ... |
|
|
|
| Topic: R7000 nvram backup script |
|
| RjG Replies: 52 Views: 58481 |
Forum: Broadcom SoC based Hardware Posted: Sun Jun 11, 2017 4:45 Subject: R7000 nvram backup script |
| The only changes here was for egrep and grep -E.
It's posted for those not comfortable editing the script themselves. There isn't any erase nvram, or even write nvram in the scripts... nothing at a ... |
|
|
|
| All times are GMT |