Joined: 16 Nov 2015 Posts: 6436 Location: UK, London, just across the river..
Posted: Mon Apr 25, 2022 16:53 Post subject:
egc wrote:
So the xt_mac.ko is present in your build.
It is quite possible that the firewall rules are running before the module is insmodded.
Just insmod the module in the firewall before the rules, maybe add sleep 2 to let the module load properly
yep its xt_mac.ko is present in 3.18.xx but not loaded by default...
yep i ended up to this idea too, as i don't want to have sleep 5 in my firewall script... _________________ Atheros
TP-Link WR740Nv1 ---DD-WRT 55630 WAP
TP-Link WR1043NDv2 -DD-WRT 55723 Gateway/DoT,Forced DNS,Ad-Block,Firewall,x4VLAN,VPN
TP-Link WR1043NDv2 -Gargoyle OS 1.15.x AP,DNS,QoS,Quotas
Qualcomm-Atheros
Netgear XR500 --DD-WRT 55779 Gateway/DoH,Forced DNS,AP Isolation,4VLAN,Ad-Block,Firewall,Vanilla
Netgear R7800 --DD-WRT 55819 Gateway/DoT,AD-Block,Forced DNS,AP&Net Isolation,x3VLAN,Firewall,Vanilla
Netgear R9000 --DD-WRT 55779 Gateway/DoT,AD-Block,AP Isolation,Firewall,Forced DNS,x2VLAN,Vanilla
Broadcom
Netgear R7000 --DD-WRT 55460 Gateway/SmartDNS/DoH,AD-Block,Firewall,Forced DNS,x3VLAN,VPN
NOT USING 5Ghz ANYWHERE
------------------------------------------------------
Stubby DNS over TLS I DNSCrypt v2 by mac913
Joined: 15 Aug 2016 Posts: 223 Location: Melbourne, Australia
Posted: Wed May 11, 2022 23:51 Post subject:
Another flying flag for r48646!
Routers: Netgear R9000
Firmware: DD-WRT v3.0-r48646 std (04-12-2022)
Kernel: Linux 4.9.309 #622 SMP Thu Apr 7 14:26:47 +07 2022 armv7l
Previous/Upgrade: Netgear Stock Firmware
Reset: Yes
Mode & Uptime: Gateway running over 72hrs
Features:
- Gateway & DNSMasq;
- 5GHz, 2.4GHz (Vanilla) & vAPS (via bridges)
- Static Leases & DHCP
- CloudFare & WAN DNS ignored
- OpenVPN Client (with Kill Switch);
- OpenVPN Server disabled;
- VLANS (Six separate VLANS).<<<<<<<<<<<<<<<<<<<<<<<
Note: All VLANS are bridged to make them work.
- QoS (HFSC/SFC on MAC, netmask & i/faces priority);
- Port Forwarding to 2nd router;
- Connected to 3rd Router in lab (in separate VLAN of its own).
Issues/Errors: NO but took considerable time and efforts in taming the Dual-Swich BEAST for setting full VLANs on it.
P.S. R9000 is, out of my lab, now replacing my trusted R7800 in production. _________________ Life is a journey; travel alone makes it less enjoyable and lonely.
Coming from such an old build it is recommended to reset to defaults after upgrade and put settings in manually.
(You could opt not to and see how it goes )
You were right After a while it made sure to reset to the default by itself Since then it's been running for several days flawlessly again.
Joined: 31 Jul 2021 Posts: 2146 Location: All over YOUR webs
Posted: Fri Jun 03, 2022 12:50 Post subject:
DWCruiser wrote:
- VLANS (Six separate VLANS).<<<<<<<<<<<<<<<<<<<<<<<
Note: All VLANS are bridged to make them work.
They work unbridged with Net/AP isolation set and NAT masquerade enabled to give them internet. And subnets set in networking page, all isolated from LAN. I have that setup Broadcom side.