Advancedtomato, NAT and Nintendo Switch

April 8, 2019, 11:22 am

≫ Next: Odd problem RT-N66U

≪ Previous: What is the most powerful router for tomato?

$

0

0

So I've been trying to get the NAT setting on the router for the switch to change from C to A so we can play online. I have tried to set up the DMZ, as many of the online tutorials suggest, I've also tried port forwarding, as the other online tutorials have suggested. I've set up a dedicated ip address for the switch as all the tutorials have instructed. I get no love from the router.

Does anyone know how to configure an advancedtomato firmware router so that my nintendo switch NAT...

Advancedtomato, NAT and Nintendo Switch

---

Odd problem RT-N66U

April 8, 2019, 2:19 pm

≫ Next: Looking for commands or scripts Tomato

≪ Previous: Advancedtomato, NAT and Nintendo Switch

$

0

0

This is an odd problem with the RT-N66U router
running shibby 140. A RT-N16 with pretty much the
exact same setup doesn't exhibit this problem.

The DNS entry shows the 2 Open NIC entrys I put in manually,
followed by the 2 ISP entries.

A simple test to see which DNS is resolving is to use an OpenNIC
domain ( e.g. -- register.bbs ) except, it is not found. Normal
tlds are resolved, but not OpenNIC ones, which leads me to
believe the first 2 DNS servers are bypassed.

Any ideas why this...

Odd problem RT-N66U

Looking for commands or scripts Tomato

April 8, 2019, 3:07 pm

≫ Next: How to allow subnet communication for my guest network?

≪ Previous: Odd problem RT-N66U

$

0

0

I am looking for a solution for my router. firmware works fine. Sometimes my provider does work not fine, and the router loses connection. I have to manually update the connection and then everything works. I need a command or script to automatically update the connection. Suppose a router pings the site every 30 seconds (does not matter which one), and if the ping fails, the router should automatically refresh the connection. Internet works through dynamic address(just DHCP ip). I would be...

Looking for commands or scripts Tomato

How to allow subnet communication for my guest network?

April 8, 2019, 7:55 pm

≫ Next: Building FreshTomato

≪ Previous: Looking for commands or scripts Tomato

$

0

0

Hi there,

I have two subnets on my Tomato router:

• br0: 192.168.0.0/24 (VLAN: 1, VID: 1)
  
• br1: 172.16.0.0/24 (VLAN: 3, VID: 3)

The first one is my main network where all my devices are connected to and the second one is my guest Wi-Fi network.

Now, I have an AdGuard based DNS server running on 192.168.0.253:53, which I push to LAN clients with:

• [FONT=Courier...[/LIST]
  
  How to allow subnet communication for my guest network?

Building FreshTomato

April 9, 2019, 1:51 pm

≫ Next: Absolute Tomato vs. Fresh Tomato

≪ Previous: How to allow subnet communication for my guest network?

$

0

0

At the risk of seeming dense, I'm looking at the git repo
and wondering where the top level makefile is situated.

I'm studying the process to see if this can be built under
an Arch Linux system... just for the challenge.

Is there a more detailed build process doc somewhere?

Absolute Tomato vs. Fresh Tomato

April 9, 2019, 4:08 pm

≫ Next: To IPv6 or not? That's my question!

≪ Previous: Building FreshTomato

$

0

0

I am enjoying Absolute Tomato on my Netgear R8000 but the fact that it hasn't been updated in quite some time is sitting in the back of my mind. Fresh Tomato is clearly the most active version in constant development and I am considering migrating over. Am I missing out on anything by sticking with Absolute Tomato? The threads I've been going through seem to indicate it is quite stable and most of things that people gripe about are bells and whistles they'd like to have added on. Thanks.

To IPv6 or not? That's my question!

April 10, 2019, 5:26 am

≫ Next: Shibby Tomato-ARM: Need help compiling ntopng

≪ Previous: Absolute Tomato vs. Fresh Tomato

$

0

0

As you may have noticed I've been posting a few questions about some problems I was having while setting up a custom DNS Server (using AdGuard Home for ads and trackers blocking) and now I reached to another problem related to IPv6.

A bit of context of my whole setup for this:

• I have a Synology NAS running Docker.
• I have a Docker container running AdGuard Home (the DNS Server).
• I have two subnets, one is the main network the other is the guest network.
• The guest network...

To IPv6 or not? That's my question!

Shibby Tomato-ARM: Need help compiling ntopng

April 10, 2019, 2:16 pm

≫ Next: Troubleshooting encrypted Wireless Client on MIPS routers

≪ Previous: To IPv6 or not? That's my question!

$

0

0

I have Shibby's TomatoARM installed on my Netgear RV6300v2 ( converted from AC1450 ). Back then, there is ntop from the Optware repo. However, I use Entware-NG now, and there is no ntop.
So, i'm trying to compile ntopng from source. I cloned the tomato-arm source from git, and updated my PATH:

Code:

:/tmp/home/root# echo $PATH...

Shibby Tomato-ARM: Need help compiling ntopng

---

Troubleshooting encrypted Wireless Client on MIPS routers

April 10, 2019, 9:46 pm

≫ Next: Need help configuring my Tomato router dnsmasq server with IPv6

≪ Previous: Shibby Tomato-ARM: Need help compiling ntopng

$

0

0

I've been doing some troubleshooting of the Wireless Client Modes (Wireless Client and Wireless Ethernet Bridge) in the MIPS version(s) of FreshTomato. I've posted on a couple of other threads, and to keep from taking over another thread, it's time to start my own.

I'm working with a small group of Asus RT-AC66U routers, all of which have been running one version or another of Tomato for several years. I'd like to figure out what's going on with the encrypted modes for Wireless Client (and...

Troubleshooting encrypted Wireless Client on MIPS routers

Need help configuring my Tomato router dnsmasq server with IPv6

April 11, 2019, 3:57 pm

≫ Next: Help configuring MultiWAN Routing in FreshTomato

≪ Previous: Troubleshooting encrypted Wireless Client on MIPS routers

$

0

0

Following this topic I decided to review my network related to IPv6 and now I'm trying to configure the same thing I currently have for IPv4 but for IPv6 enabled clients.

Ok, first things first... I currently have static IPs defined for each known client on my network, one of those is a custom DNS server, which is pushed to all IPv4 clients with a custom dnsmasq configuration ([FONT=Courier...

[url='https://www.linksysinfo.org/index.php?threads/need-help-configuring-my-tomato-router-dnsmasq-server-with-ipv6.74543/']Need help configuring my Tomato router dnsmasq server with IPv6[/url]

Help configuring MultiWAN Routing in FreshTomato

April 12, 2019, 8:22 am

≫ Next: Bug in mkfs.ext4 implementation in Tomato?

≪ Previous: Need help configuring my Tomato router dnsmasq server with IPv6

$

0

0

FreshTomato Version: 2019.1 K26ARM USB AIO-64K

I have a VPN device for work and I use a Desktop computer to share this connection with other computers on my LAN. I mainly do this currently with the following configuration

CURRENT CONFIG:

LANs:
br0 (LAN) - 192.168.1.1/24
br2 (LAN2) - 192.168.25.1/24
br3 (LAN3) - 192.168.75.1/24

VLANs:


Network flow:
WAN--->ROUTER (LAN...

Help configuring MultiWAN Routing in FreshTomato

Bug in mkfs.ext4 implementation in Tomato?

April 12, 2019, 5:07 pm

≫ Next: Help firewalling WAN2 traffic in FreshTomato with iptables

≪ Previous: Help configuring MultiWAN Routing in FreshTomato

$

0

0

{a polite, preemptive request to please not just tell me to use ext3 instead of ext4, thank you}

After repeated attempts to use fdisk, mkfs.ext4 and mount together on FT ARM 19.1, I have come to the conclusion that there is a bug in the implemenation (or a mismatch of versions?) that is causing these errors:

Code:

root@AP1:/tmp# mkfs.ext4 /dev/sda1
mke2fs 1.44.5 (15-Dec-2018)
/dev/sda1 contains a vfat file system
Proceed anyway? (y,N) y
Suggestion: Use Linux kernel >= 3.18...

Bug in mkfs.ext4 implementation in Tomato?

Help firewalling WAN2 traffic in FreshTomato with iptables

April 13, 2019, 12:54 pm

≫ Next: iptables module recent: how to get the --mask parameter working

≪ Previous: Bug in mkfs.ext4 implementation in Tomato?

$

0

0

I need help setting up iptables to limit traffic for a single IP to go through WAN2 on my LAN. This started here but now that I got it working - I have no idea how to do iptables.

So first my configuration:

LAN: br0 (LAN) - 192.168.1.1/24

WAN - Comcast IP
Load balanced weight: 256

WAN2: 10.1.1.110 (it's getting a DHCP IP from my work through a VPN device...

Help firewalling WAN2 traffic in FreshTomato with iptables

iptables module recent: how to get the --mask parameter working

April 16, 2019, 1:10 pm

≫ Next: OpenVPN Client Security Enhancement

≪ Previous: Help firewalling WAN2 traffic in FreshTomato with iptables

$

0

0

i am trying to get --mask working in the module xt_recent. the manual states: --mask netmask but does not state howto.
i tried 255.255.255.248, 29 and /29, non of these worked, error: iptables v1.6.2: unknown option "--mask"

according to the history of commit 55cf7be by @Edrikk the mask parameter was implemented on 2012-Jul-31 in iptables-1.4.15.

has anyone succeeded in using the mask parameter?

OpenVPN Client Security Enhancement

April 16, 2019, 3:47 pm

≫ Next: IPv6 Tunnel from HE and need Open Ports for Web Server: Please Advise

≪ Previous: iptables module recent: how to get the --mask parameter working

$

0

0

I'd like to see the following security enhancement (fix frankly) in FreshTomato. By default, the OpenVPN client adds the following firewall rules.

Code:

iptables -I INPUT -i tun11 -j ACCEPT
iptables -I FORWARD -i tun11 -j ACCEPT

For unidirectional tunnels (typical seen w/ a commercial OpenVPN provider), this is unnecessary. By default, all local networks (br0, br1, etc.) are allowed to initiate outbound connections to the internet, whatever the network interface (vlan2 (wan),...

OpenVPN Client Security Enhancement

---

IPv6 Tunnel from HE and need Open Ports for Web Server: Please Advise

April 17, 2019, 3:36 am

≫ Next: Tomato for ARM routers

≪ Previous: OpenVPN Client Security Enhancement

$

0

0

I am on FreshTomato 2019-1 on AC-68U (TM-AC1900) connecting fine to a Hurricane Electric 6in4 static tunnel. I can get 19/20 on ipv6-test website (with the 1 short for no PTR record). However, the IPv6 firewall seems to be an issue.

I need port 80 and 443 to be open, and I am not sure why they're not. I am not sure what default routes are supposed to look like or maybe the firewall has a weird rule (by default on my setup). Yet, clearing all rules on ip6tables (ACCEPT all) doesn't help. I...

IPv6 Tunnel from HE and need Open Ports for Web Server: Please Advise

Tomato for ARM routers

April 17, 2019, 5:03 am

≫ Next: SOLVED: IPv6 Tunnel from HE and need Open Ports for Web Server

≪ Previous: IPv6 Tunnel from HE and need Open Ports for Web Server: Please Advise

$

0

0

All software seems to work pretty well now, (version 1.27 and foreward). Use and report any observed Buggs

SOLVED: IPv6 Tunnel from HE and need Open Ports for Web Server

April 19, 2019, 9:47 am

≫ Next: A question about Static DHCP assignment on tomato

≪ Previous: Tomato for ARM routers

$

0

0

EDIT: I feel like something is failing intermittently because it was working (reachable on multiple tests) for a little then stopped, and I don't think I changed anything even though I was in the admin web interface for the router.

I am on FreshTomato 2019-1 on AC-68U (TM-AC1900) connecting fine to a Hurricane Electric 6in4 static tunnel. I can get 19/20 on ipv6-test website (with the 1 short for no PTR record). However, the IPv6 firewall seems to be an issue.

I need port 80 and 443 to be...

SOLVED: IPv6 Tunnel from HE and need Open Ports for Web Server

A question about Static DHCP assignment on tomato

April 19, 2019, 10:44 am

≫ Next: Dual WAN, second WAN as WIFI Client to Hotspot

≪ Previous: SOLVED: IPv6 Tunnel from HE and need Open Ports for Web Server

$

0

0

When I assign Static IPs I've noticed that there are two fields in the MAC address section.

Does that mean that I can assign two MAC addresses in that section?

That doesn't make sense since wouldn't it assign both devices the same IP address?

Or is the router smart enough add another 'layer' of routing to differentiate the two devices on the same IP address?

If there is the possibility of conflict, could I just still assign two MAC addresses to an IP if its the case where I know that the...

A question about Static DHCP assignment on tomato

Dual WAN, second WAN as WIFI Client to Hotspot

April 19, 2019, 1:34 pm

≫ Next: Virtual Wireless broken?

≪ Previous: A question about Static DHCP assignment on tomato

$

0

0

I have EA6900 router with latest tomato by kille72.
WAN1 is set as normal WAN port on the router.
WAN2 is supposed to be a Wireless client but I cant get it to work.

I set to Wireless client mode, SSID and WPA2 Key are all correct.
I set WAN2 to DHCP and and Wireless Client mode to eth1.
I see the connection for a brief second on Device list, but there is no connection and no speed and it dissapears on next refresh and then reappears.

I only managed to get it working by setting eth1 to...

Dual WAN, second WAN as WIFI Client to Hotspot