[az1441]

Hi guys - been gone for quite a while and a lot of my searches have turned up ambiguous.

My question is - does iptables compiled witb DDWRT out of the box work with string matching?

for the life of me i can ngrep a pattern and see its output with it or tcpdump - but every iptables rule i build will not match it

this is one of my rules

iptables -I FORWARD -m string --string "scratch"’ --algo bm -j DROP


which in the tables list is:

Chain FORWARD (policy ACCEPT)
num target prot opt source destination
2 DROP all -- anywhere anywhere STRING match "|e2809c73637261746368e2809d|" ALGO name bm TO 65535

i hit a non secure site over 80 like i said - ngrep sees it...

iptables doesnt match it

is this typical?

[Wildlion]

Have you tried it on the command line? But I do not think it works.

You may also have to provide what build and model you are on, because obviously a 4mb build will have less things than the full build. I know that on the X86 build it seems to have a much fuller iptables than on the routers.

You could also install entware and the full iptables.

[az1441]

I am an idiot and was pasting from another app that was jacking up my syntax.. it DOES in fact work...

thanks Wild for the reply sir

[egc]

You do know it does not work on https as that is encrypted?

So in real life it is of less use nowadays

[az1441]

Yeah im stupid but not that stupid

its a udp random port packet

[Per Yngve Berg]

Vanlig navn (CN) forum.dd-wrt.com
Organisasjon (O) <Ikke del av sertifikat>
Organisasjonsenhet (OU) <Ikke del av sertifikat>
Vanlig navn (CN) R3
Organisasjon (O) Let's Encrypt
Organisasjonsenhet (OU) <Ikke del av sertifikat>


Let's Encrypt is known to hand out free certificates.