I am on the latest DDWRT using Netgear R7000 and I need a kill switch for my VPN.
1. I have read this post https://forum.dd-wrt.com/phpBB2/viewtopic.php?p=957052 but that was written in 2015 and I am not sure if this is up to date.
2.Am told I can use the following command code
iptables -I FORWARD -i br0 -o `nvram get wan_iface` -j DROP
and save firewall.
3. I also found this one here code
which one should I use? _________________ Netgear R7000
DD-WRT DD-WRT v3.0-r50595 std (10/23/22)
Manchester
Enable dnsmasq- Yes
Encrypt DNS- NO
DNSCrypt Resolver- No Using Smart DNS
Cache DNSSEC Data- Yes
Validate DNS Replies (DNSSEC)- NO
Check Unsigned DNS Replies- NO
No DNS Rebind- Enable
Query DNS in Strict Order- Enable
Add Requestor MAC to DNS Query- Disable
RFC4039 Rapid Commit Support- Enable
Maximum Cached Entries- 1500
Joined: 04 Mar 2021 Posts: 65 Location: Manchester
Posted: Fri Apr 16, 2021 0:48 Post subject:
@kernel-panic69 I am new and I do apologise. I saw this topic on the same thread so added it but cheers for moving it.
I realise a new build is coming out with a kill switch but I have just upgraded and I may not upgrade again until six months. I just wanted to know which of the three listed kill switch I could use.
Again DDWRT bosses, my apologies. _________________ Netgear R7000
DD-WRT DD-WRT v3.0-r50595 std (10/23/22)
Manchester
Enable dnsmasq- Yes
Encrypt DNS- NO
DNSCrypt Resolver- No Using Smart DNS
Cache DNSSEC Data- Yes
Validate DNS Replies (DNSSEC)- NO
Check Unsigned DNS Replies- NO
No DNS Rebind- Enable
Query DNS in Strict Order- Enable
Add Requestor MAC to DNS Query- Disable
RFC4039 Rapid Commit Support- Enable
Maximum Cached Entries- 1500
Joined: 08 May 2018 Posts: 14125 Location: Texas, USA
Posted: Fri Apr 16, 2021 1:29 Post subject:
Sorry for being a little short, I just was trying to answer your question and get this topic where it would have better visibility so other people could answer. _________________ "Life is but a fleeting moment, a vapor that vanishes quickly; All is vanity"
Contribute To DD-WRT Pogo - A minimal level of ability is expected and needed... DD-WRT Releases 2023 (PolitePol)
DD-WRT Releases 2023 (RSS Everything)
----------------------
Linux User #377467 counter.li.org / linuxcounter.net
Joined: 04 Mar 2021 Posts: 65 Location: Manchester
Posted: Fri Apr 16, 2021 10:23 Post subject:
I will wait as you recommended because you are the only one who replied and I appreciate the assistance. _________________ Netgear R7000
DD-WRT DD-WRT v3.0-r50595 std (10/23/22)
Manchester
Enable dnsmasq- Yes
Encrypt DNS- NO
DNSCrypt Resolver- No Using Smart DNS
Cache DNSSEC Data- Yes
Validate DNS Replies (DNSSEC)- NO
Check Unsigned DNS Replies- NO
No DNS Rebind- Enable
Query DNS in Strict Order- Enable
Add Requestor MAC to DNS Query- Disable
RFC4039 Rapid Commit Support- Enable
Maximum Cached Entries- 1500