Joined: 16 Mar 2019 Posts: 353 Location: Szczecin, Poland EU
Posted: Tue Dec 13, 2022 9:11 Post subject: New Build - 12/12/2022 - r51011
Router/Version: TP-Link TL-WDR3600 v1.5
Kernel: Linux 3.10.108-d11 #121994 Mon Dec 12 05:19:44 +06 2022 mips
Reset: No
Mode: Internet gateway, WIFI 5GHz AP, dnsmasq, firewall
Issues: Some yellow marked events in logs. That's nothing significant
Status: Working
Uptime: more than 16 h
One thing I noticed there appear to be new DROP rules so using -I instead of -A might be necessary?
I do not know enough about how the rules work to answer that. I did wonder about -A and not -I, but thought I needed to learn. _________________ Netgear R9000
DD-WRT v3.0-r55819 std (04/17/24)
Linux 4.9.337 #722 SMP Wed Apr 17 04:16:49 +07 2024 armv7l
Gateway, AP, DNSMasq, Clock 2000MHz
VAP on wlan1 for internet devices
IPv4 & IPv6 (Prefix Delegation)
Static Leases & DHCP
CloudFlare, no SFE, SmartDNS, no QoS
2.4GHz: Vanilla, Airtime Fairness, NG-Mixed, ACK Timing 3150, WPA2 w/AES & WPA3
5GHz: Vanilla, Airtime Fairness, AC/N Mixed, ACK Timing 3150, WPA2 w/AES & WPA3
2 Netgear AX1800 WiFi Mesh Extenders
Xfinity 1.2Gbps/35Mbps
Joined: 18 Mar 2014 Posts: 12884 Location: Netherlands
Posted: Tue Dec 13, 2022 14:52 Post subject:
MLandi wrote:
egc wrote:
One thing I noticed there appear to be new DROP rules so using -I instead of -A might be necessary?
I do not know enough about how the rules work to answer that. I did wonder about -A and not -I, but thought I needed to learn.
As IPv6 is supposed to work like IPv4 I would use -I otherwise the rule will end up below the DROP rule and it will not work.
I got some links from @Mile-Lile see:
https://www.sixxs.net/wiki/IPv6_Firewalling
Note here -A is used because a default DROP POLICY is used, DDWRT uses a DROP all rule as last rule so anything added -A instead of inserted -I could end up below the DROP rule and thus will not work.
As IPv6 is supposed to work like IPv4 I would use -I otherwise the rule will end up below the DROP rule and it will not work.
I got some links from @Mile-Lile see:
https://www.sixxs.net/wiki/IPv6_Firewalling
Note here -A is used because a default DROP POLICY is used, DDWRT uses a DROP all rule as last rule so anything added -A instead of inserted -I could end up below the DROP rule and thus will not work.
I honestly don't understand how you managed to make it work, I can't get ipv6 to work on the wdr3600,I followed all the instructions here on the forum and I can't get it to work either on cable or wifi... _________________ Internet provider https://en.wikipedia.org/wiki/RCS_%26_RDS 1Gbps
WDR3600 rev.1.5 - DD-Wrt
Linksys WRT1900ACS v.2 DD-Wrt/-OpenWrt
Recent build seems to have too restrictive firewall rules which should be corrected in the next build, so for this build add to Administration/Commands Save Firewall:
I have attached all the messages with the system logs next to the images, at first I passed the commands via putty ssh, now I passed them as you said, but it still doesn't work ipv6 _________________ Internet provider https://en.wikipedia.org/wiki/RCS_%26_RDS 1Gbps
WDR3600 rev.1.5 - DD-Wrt
Linksys WRT1900ACS v.2 DD-Wrt/-OpenWrt
it's strange, wrt1900acs v2 works perfectly ipv6 both on wire and wifi, without making any changes!
Dec 14 14:01:23 DD-WRT kern.info kernel: [ 776.900000] Atheros AR8216/AR8236/AR8316 ag71xx-mdio.0:00: Port 1 is down
Dec 14 14:01:27 DD-WRT kern.info kernel: [ 780.900000] Atheros AR8216/AR8236/AR8316 ag71xx-mdio.0:00: Port 1 is up
Dec 14 14:01:29 DD-WRT kern.info kernel: [ 782.900000] Atheros AR8216/AR8236/AR8316 ag71xx-mdio.0:00: Port 1 is down
Dec 14 14:01:33 DD-WRT kern.info kernel: [ 786.900000] Atheros AR8216/AR8236/AR8316 ag71xx-mdio.0:00: Port 1 is up _________________ Internet provider https://en.wikipedia.org/wiki/RCS_%26_RDS 1Gbps
WDR3600 rev.1.5 - DD-Wrt
Linksys WRT1900ACS v.2 DD-Wrt/-OpenWrt
