https

Post new topic   Reply to topic    DD-WRT Forum Forum Index -> Atheros WiSOC based Hardware
Author Message
bc64
DD-WRT Novice


Joined: 01 Dec 2018
Posts: 14

PostPosted: Thu Dec 06, 2018 20:27    Post subject: https Reply with quote
Is there anyway to do a secure login to my FW. When I had my Asus router set up I could do this with pixelserv and a script that someone else had created, for the less tech savy like me. I know I don't really need this, but I would like to be able to.
Sponsor
d00zah
DD-WRT User


Joined: 06 Jun 2006
Posts: 189

PostPosted: Thu Dec 06, 2018 20:39    Post subject: Re: https Reply with quote
bc64 wrote:
Is there anyway to do a secure login to my FW. When I had my Asus router set up I could do this with pixelserv and a script that someone else had created, for the less tech savy like me. I know I don't really need this, but I would like to be able to.


LAN:

On Administration tab > Web access section > check 'HTTPS'

WAN:

On Administration tab > Remote access section > check 'Use HTTPS' (OR 'SSH management'?)

Either one of these do it for you?

_________________
DD-WRT v3.0-r37908 std (12/04/18) on NetGear WNDR4300 v1
bc64
DD-WRT Novice


Joined: 01 Dec 2018
Posts: 14

PostPosted: Thu Dec 06, 2018 20:50    Post subject: Re: https Reply with quote
d00zah wrote:
bc64 wrote:
Is there anyway to do a secure login to my FW. When I had my Asus router set up I could do this with pixelserv and a script that someone else had created, for the less tech savy like me. I know I don't really need this, but I would like to be able to.


LAN:

On Administration tab > Web access section > check 'HTTPS'

WAN:

On Administration tab > Remote access section > check 'Use HTTPS' (OR 'SSH management'?)

Either one of these do it for you?


I did this. While it let me login, it has a not secure in the address bar. I appreciate your reply.
d00zah
DD-WRT User


Joined: 06 Jun 2006
Posts: 189

PostPosted: Thu Dec 06, 2018 21:00    Post subject: Re: https Reply with quote
bc64 wrote:
I did this. While it let me login, it has a not secure in the address bar. I appreciate your reply.


LAN, or WAN? Did you uncheck 'HTTP', or use 'https://[routerIP]' as the URL?

Can't test right now...

_________________
DD-WRT v3.0-r37908 std (12/04/18) on NetGear WNDR4300 v1
bc64
DD-WRT Novice


Joined: 01 Dec 2018
Posts: 14

PostPosted: Thu Dec 06, 2018 21:28    Post subject: Re: https Reply with quote
d00zah wrote:
bc64 wrote:
I did this. While it let me login, it has a not secure in the address bar. I appreciate your reply.


LAN, or WAN? Did you uncheck 'HTTP', or use 'https://[routerIP]' as the URL?

Can't test right now...


Under Administration Web Access I unchecked http and checked https. I use https://[routerIP] as URL. It still says Not secure when I log in. There should be a padlock on the left side of the address bar?
d00zah
DD-WRT User


Joined: 06 Jun 2006
Posts: 189

PostPosted: Thu Dec 06, 2018 21:42    Post subject: Re: https Reply with quote
bc64 wrote:
Under Administration Web Access I unchecked http and checked https. I use https://[routerIP] as URL. It still says Not secure when I log in. There should be a padlock on the left side of the address bar?

Does the browser offer any explanation of what it's unhappy with? Firefox offers additional info when I left-click on the icon(s) to the left of the URL (padlock if secure). Might not like the cert?

Will look once I can interrupt my connection with a config change.

_________________
DD-WRT v3.0-r37908 std (12/04/18) on NetGear WNDR4300 v1
bc64
DD-WRT Novice


Joined: 01 Dec 2018
Posts: 14

PostPosted: Thu Dec 06, 2018 22:24    Post subject: Re: https Reply with quote
d00zah wrote:
bc64 wrote:
Under Administration Web Access I unchecked http and checked https. I use https://[routerIP] as URL. It still says Not secure when I log in. There should be a padlock on the left side of the address bar?

Does the browser offer any explanation of what it's unhappy with? Firefox offers additional info when I left-click on the icon(s) to the left of the URL (padlock if secure). Might not like the cert?

Will look once I can interrupt my connection with a config change.


You know, I rebooted my router and then I couldn't login at all. I had to reset and restore a backup I had just done earlier in the day.
d00zah
DD-WRT User


Joined: 06 Jun 2006
Posts: 189

PostPosted: Thu Dec 06, 2018 23:13    Post subject: Re: https Reply with quote
bc64 wrote:
You know, I rebooted my router and then I couldn't login at all. I had to reset and restore a backup I had just done earlier in the day.

Hmmm... haven't been following current issues closely... just passing through for an update... but I vaguely recall an issue w/ the httpsd crashing. Appears it might still be unresolved?

I know you noted it at the start, but https REALLY is overkill for LAN access.

At least you had the backup & knew to use it. Good luck.

_________________
DD-WRT v3.0-r37908 std (12/04/18) on NetGear WNDR4300 v1


Last edited by d00zah on Fri Dec 07, 2018 1:02; edited 1 time in total
bc64
DD-WRT Novice


Joined: 01 Dec 2018
Posts: 14

PostPosted: Thu Dec 06, 2018 23:28    Post subject: Re: https Reply with quote
d00zah wrote:
bc64 wrote:
You know, I rebooted my router and then I couldn't login at all. I had to reset and restore a backup I had just done earlier in the day.

Hmmm... haven't been following current issues closely... just passing through for an update... but I vaguely recall an issue w/ the httpd crashing. Appears it might still be unresolved?

I know you noted it at the start, but https REALLY is overkill for LAN access.

At least you had the backup & knew to use it. Good luck.


Yes, thanks for your help. I guess I'll just leave it the way it is.
jxm
DD-WRT Guru


Joined: 23 Jul 2017
Posts: 511
Location: Brisbane, Australia

PostPosted: Fri Dec 07, 2018 2:36    Post subject: Reply with quote
This is a well known problem with this unknown firmware on your unspecified modem. Perhaps you should upgrade to a specified model.
bc64
DD-WRT Novice


Joined: 01 Dec 2018
Posts: 14

PostPosted: Fri Dec 07, 2018 3:03    Post subject: Reply with quote
jxm wrote:
This is a well known problem with this unknown firmware on your unspecified modem. Perhaps you should upgrade to a specified model.


Got it. Smile I have a R9000 and running BS r37908.
Alozaros
DD-WRT Guru


Joined: 16 Nov 2015
Posts: 2338
Location: London,UK

PostPosted: Fri Dec 07, 2018 10:15    Post subject: Reply with quote
there is a Kong build for R9000 you should try it..
it suppose to be the better one http://www.desipro.de/ddwrt/K4-AC-ALPINE/

_________________
Atheros
TP-Link WR740Nv4 .......DD-WRT 33986 BS (AP,NAT,AD Blocking,Firewall)
TP-Link WR1043NDv2 ------DD-WRT 37908 BS (AP,PPPoE,NAT,AD Blocking,AP Isolation,Firewall,Forced DNS)
TP-Link WR1043NDv2 ------DD-WRT 37882 BS (AP,NAT,AD Blocking,Firewall,Wi-Fi OFF)
TP-Link WR1043NDv2.......... Gargoyle OS 1.10 (AP,NAT,QoS,Quotas)
Qualcomm/IPQ8065
Netgear R7800 ------------DD-WRT 37900M 4.9 Kong (AP,NAT,AD-Blocking,AP Isolation,Firewall,DNSCrypt x2)
Broadcom
Netgear R7000 ---------DD-WRT 37900M Kong (AP,NAT,AD-Blocking,Firewall,Forced DNS)
Others
Netgear ProSAFE-GS105Ev2 ....(LAN Switch)
bc64
DD-WRT Novice


Joined: 01 Dec 2018
Posts: 14

PostPosted: Fri Dec 07, 2018 18:51    Post subject: Reply with quote
Alozaros wrote:
there is a Kong build for R9000 you should try it..
it suppose to be the better one http://www.desipro.de/ddwrt/K4-AC-ALPINE/


Yes, I installed the latest Kong build and it's running great. Don't think I'm going to try to do a secure connection into my FW though. I really don't need it.
ian5142
DD-WRT Guru


Joined: 23 Oct 2013
Posts: 1769
Location: Canada

PostPosted: Fri Dec 07, 2018 20:52    Post subject: SSL Certificate Reply with quote
More than most likely you just need to generate a valid SSL certificate that the router can use. DD-WRT uses a self-signed certificate that would show up in most browsers as insecure. If you want a free SSL certificate looking into Let's Encrypt. You can even get one generated online here: https://gethttpsforfree.com/

You may need a working linux environment in order to generate the CSR though. I usually do it an Ubuntu VM. You may be able to do it on the router itself but it would be faster on something else.

_________________
Before asking a question on the forums, update dd-wrt: Where do I download firmware? I suggest reading it all.

Some dd-wrt wiki pages are up to date, others are not. PM me if you find an old one, I am trying to update them.

Atheros:
TP-Link Archer C7 v2 x2 - WDS AP, WDS Station
TP-Link TL-WDR3600 v1 - WDS Station
TP-Link 841nd v8 - WDS Station
Linksys WRT400N - bricked
D-Link 615 C1 x 4 - not used
D-Link 615 E3 x 2 - WDS Station
D-Link 825 B1 - WDS Station
D-Link 862L A1 - WDS Station (Entware 3X)
Netgear WNDR3700v2 - WDS Station
TP-Link 1043nd v1, inactive, unstable hardware
UBNT loco M2 x2 - airOS

Broadcom
Asus N66U - backup Gateway
Netgear r6300 v1 - AP
Linksys E2500 - not used
Linksys EA2700 - not used
Linksys 160N v3 x2 - not used
Netgear WNDR3700v3 - not used
MediaTek
UBNT EdgeRouter X - Gateway, DHCP, QoS
bc64
DD-WRT Novice


Joined: 01 Dec 2018
Posts: 14

PostPosted: Fri Dec 07, 2018 21:22    Post subject: Re: SSL Certificate Reply with quote
ian5142 wrote:
More than most likely you just need to generate a valid SSL certificate that the router can use. DD-WRT uses a self-signed certificate that would show up in most browsers as insecure. If you want a free SSL certificate looking into Let's Encrypt. You can even get one generated online here: https://gethttpsforfree.com/

You may need a working linux environment in order to generate the CSR though. I usually do it an Ubuntu VM. You may be able to do it on the router itself but it would be faster on something else.


I appreciate your reply. The thing is, I'm not that tech savy. I run Windows 10 and that's about as savy as I get. While I would like to be able to get a secure connection into my router, I know I don't really need it. It was just something nice to have. Thanks again for your reply. Very Happy
Display posts from previous:    Page 1 of 1
Post new topic   Reply to topic    DD-WRT Forum Forum Index -> Atheros WiSOC based Hardware All times are GMT

Navigation

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You cannot download files in this forum