Домашний маршрутизатор режет HTTP
От:
cppguard
Дата: 15.04.21 11:25
Оценка:
Дано: ISP -> [WAN] Router1 [LAN] -> [WAN] Router2. На R1 настроен проброс [WAN] tcp/2300 -> R2:23 и [WAN] tcp/8081 -> R2:80. У [WAN] R1 статический белый IP. C третьей машины, через WAN пробую подключиться к R2. Telnet работает, HTTP не работает. При этом [WAN] R2:80 открывается (nmap рапортует открытый порт, nc подключается), но никакие данные обратно не идут. По сто раз проверил правила фильтрации на обоих маршрутизаторах — всё чисто. Я не профи в сетях, поэтому даже не знаю, куда дальше копать. Что-то низкоуровневое типа strace я не могу сделать, потому что на обоих устройствах прошивка Zyxel Keenetic.
Re: Домашний маршрутизатор режет HTTP
От:
lpd
Дата: 15.04.21 11:36
Оценка:
Проверь правила iptables на компе. Если своих настроек не делал, можно сбросить iptables -F. Также соединения может сбрасывать файрвол на компьютере(ufw на убунту, например).
У сложных вещей обычно есть и хорошие, и плохие аспекты.
Re: Домашний маршрутизатор режет HTTP
От:
vsb
Дата: 15.04.21 11:40
Оценка:
У роутера на этом порту свой веб-интерфейс висит, просто игнорирует подключения извне. Поэтому не получится этот порт использовать для проброса портов. Если в роутере есть такие настройки, попробуй поменять порт для веб-интерфейса роутера, может помочь.
Re: Домашний маршрутизатор режет HTTP
Здравствуйте, cppguard, Вы писали:
Я правильно понял, что ты пытаешься из внешнего мира попасть в веб-конфигуратор второго Zyxel через WAN интерфейс оного? Если да, то "По умолчанию доступ к управлению интернет-центром (к его веб-конфигуратору) возможен из локальной сети, т.к. доступ из внешней сети (из Интернета) заблокирован. Это реализовано с целью безопасности устройства и домашней сети.", разрешение доступа описано в
Доступ из Интернета к веб-интерфейсу .
P.S. Ну и лучше его все же через http
S сделать наверное.
Re[2]: Домашний маршрутизатор режет HTTP
От:
cppguard
Дата: 15.04.21 23:30
Оценка:
Здравствуйте, Anton Batenev, Вы писали:
AB>Я правильно понял, что ты пытаешься из внешнего мира попасть в веб-конфигуратор второго Zyxel через WAN интерфейс оного? Если да, то "По умолчанию доступ к управлению интернет-центром (к его веб-конфигуратору) возможен из локальной сети, т.к. доступ из внешней сети (из Интернета) заблокирован. Это реализовано с целью безопасности устройства и домашней сети.", разрешение доступа описано в Доступ из Интернета к веб-интерфейсу . KEENETIC LITE> sys manage access web ?
Now: access web is enabled, port 80# iptables -L -vn
--------------------------------------------------------------------------------
Chain INPUT (policy DROP 404 packets, 91071 bytes)
pkts bytes target prot opt in out source destination
0 0 ACCEPT all -- br0 * 0.0.0.0/0 0.0.0.0/0
6787 768K ACCEPT all -- eth2.2 * 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
0 0 ACCEPT 2 -- eth2.2 * 0.0.0.0/0 0.0.0.0/0
550 30288 ACCEPT tcp -- eth2.2 * 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:80
15 882 ACCEPT tcp -- eth2.2 * 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:23
0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmp type 255
Chain FORWARD (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
0 0 ACCEPT all -- br0 * 0.0.0.0/0 0.0.0.0/0 state NEW
0 0 ACCEPT all -- eth2.2 * 0.0.0.0/0 0.0.0.0/0 state NEW
0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
Chain OUTPUT (policy ACCEPT 4136 packets, 400K bytes)
pkts bytes target prot opt in out source destination
================================================================================
# iptables -t nat -L -vn
--------------------------------------------------------------------------------
Chain PREROUTING (policy ACCEPT 162K packets, 74M bytes)
pkts bytes target prot opt in out source destination
Chain POSTROUTING (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
565 53713 MASQUERADE all -- * eth2.2 0.0.0.0/0 0.0.0.0/0
Chain OUTPUT (policy ACCEPT 726 packets, 67418 bytes)
pkts bytes target prot opt in out source destination
================================================================================
# iptables -t mangle -L -vn
--------------------------------------------------------------------------------
Chain PREROUTING (policy ACCEPT 171K packets, 75M bytes)
pkts bytes target prot opt in out source destination
Chain INPUT (policy ACCEPT 15518 packets, 2270K bytes)
pkts bytes target prot opt in out source destination
Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
Chain OUTPUT (policy ACCEPT 6439 packets, 1245K bytes)
pkts bytes target prot opt in out source destination
Chain POSTROUTING (policy ACCEPT 6439 packets, 1245K bytes)
pkts bytes target prot opt in out source destination
eth2.2 это WAN, и если я правильно понимаю вывод iptables, доступ к 80-у порту через WAN разрешён.
Полный лог Escape character is '^]'.
Password :
KEENETIC LITE>
apply atsh commit delayed diag log manage mode nslookup password ping ports reboot reload status update
KEENETIC LITE> sys diag
================================================================================
# cat /etc/version
--------------------------------------------------------------------------------
FIRMWARE_VERSION="V1.00-AABL.1-D0"
DEVICE_NAME="KEENETIC-LITE"
BUILD_DATE="18.12.2011 18:15"
REVISION="2979"
================================================================================
# flash all
--------------------------------------------------------------------------------
DEVICE_BRAND="ZyXEL"
DEVICE_NAME="KEENETIC LITE"
MODEL_TYPE=""
HOST_NAME="KEENETIC_LITE"
SUPER_NAME="t0u34"
SUPER_PASSWORD="********"
ADMIN_NAME="admin"
ADMIN_PASSWORD="********"
OP_MODE="Ethernet Router"
WAN_MAC_ADDR="00:00:00:00:00:00"
WAN_WLAN_ID="0"
WAN_IP_ADDRESS_MODE="Auto"
WAN_IP_ADDR="172.16.1.1"
WAN_SUBNET_MASK="255.255.255.0"
WAN_DEFAULT_GATEWAY="172.16.1.254"
WAN_DNS_MODE="Enabled"
WAN_DNS1="0.0.0.0"
WAN_DNS2="0.0.0.0"
WAN_DNS3="0.0.0.0"
WAN_DOT1X_ENABLED="Disabled"
WAN_DOT1X_AUTH_TYPE="EAP_MD5"
WAN_DOT1X_USER_NAME=""
WAN_DOT1X_PASSWORD="********"
WAN_ALTAUTH_ENABLED="Disabled"
WAN_ALTAUTH_SERVER_IP="10.0.0.1"
WAN_ALTAUTH_PROTOCOL="2"
WAN_ALTAUTH_LEVEL="2"
WAN_ALTAUTH_PASSWORD="********"
WAN_PING_ENABLED="Enabled"
WAN_AUTO_QOS_ENABLED="Disabled"
WAN_NETBIOS_PASSTHRU="Disabled"
WAN_TTL_INC_ENABLED="Disabled"
WAN_PPPOE_PASSTHRU_ENABLED="Disabled"
WAN_IPV6_PASSTHRU_ENABLED="Disabled"
LAN_MAC_ADDR="00:00:00:00:00:00"
LAN_IP_ADDR="192.168.5.1"
LAN_SUBNET_MASK="255.255.255.0"
LAN_DEFAULT_GATEWAY="0.0.0.0"
LAN_DHCP_MODE="Server"
LAN_DHCP_POOL_START="192.168.5.33"
LAN_DHCP_POOL_END="192.168.5.62"
LAN_DHCP_LEASE_TIME="86400"
LAN_DHCP_SNOOPING_ENABLED="Disabled"
SWITCH_WAN_LINK_CHECK_ENABLED="Enabled"
SWITCH_WAN_SPEED="auto"
SWITCH_LAN1_SPEED="auto"
SWITCH_LAN2_SPEED="auto"
SWITCH_LAN3_SPEED="auto"
SWITCH_LAN4_SPEED="auto"
STATICLEASE_TBL_NUM="0"
VDSL_CPE_AUTO_MODE="8a,8b,8c,8d,12a,12b,17a,30a"
VDSL_CARRIER_SET="Auto"
PPP_TYPE="None"
PPP_SERVICE_NAME=""
PPP_AC_NAME=""
PPP_SERVER="172.16.1.1"
PPP_IP_AUTO="Auto"
PPP_IP_ADDR="172.16.1.2"
PPP_SUBNET_MASK="255.255.255.0"
PPP_REMOTE_IP_ADDR="172.16.1.3"
PPP_REMOTE_SUBNET_MASK="255.255.255.0"
PPP_AUTH_TYPE="Auto"
PPP_USER_NAME=""
PPP_PASSWORD="********"
PPP_MPPE_LEVEL="None"
PPP_MTU_SIZE="1400"
PPP_MRU_SIZE="1400"
PPP_ON_DEMAND_ENABLED="Disabled"
PPP_IDLE_TIME="1"
PPP_DEFAULT_ROUTE_ENABLED="Enabled"
PPP_REINIT_ENABLED="Disabled"
PPP_REINIT_SERVER=""
NTP_ENABLED="Enabled"
NTP_SERVER="ru.pool.ntp.org"
DDNS_ENABLED="Disabled"
DDNS_TYPE="DynDNS"
DDNS_NAME_TYPE="Domain"
DDNS_DOMAIN_NAME="host.dyndns.org"
DDNS_USER=""
DDNS_PASSWORD="********"
PORTFW_ENABLED="Disabled"
PORTFW_TBL_NUM="0"
IPFILTER_MODE="Disabled"
IPFILTER_TBL_NUM="0"
PORTFILTER_ENABLED="Disabled"
PORTFILTER_TBL_NUM="0"
MACFILTER_MODE="Disabled"
MACFILTER_TBL_NUM="0"
URLFILTER_ENABLED="Disabled"
URLFILTER_TBL_NUM="0"
DMZ_ENABLED="Disabled"
DMZ_HOST="0.0.0.0"
DMZ_ACCESS_MODE="All"
DMZ_ACCESS_LIST=""
DMZ_NAT_LOOPBACK_ENABLED="Disabled"
UPNP_ENABLED="Disabled"
VPN_PASSTHRU_IPSEC_ENABLED="Disabled"
VPN_PASSTHRU_PPTP_ENABLED="Disabled"
VPN_PASSTHRU_L2TP_ENABLED="Disabled"
HARDWARE_NAT_ENABLED="Enabled"
WEB_WAN_ACCESS_MODE="All"
WEB_ACCESS_PORT="80"
WEB_ACCESS_LIST=""
TELNET_WAN_ACCESS_MODE="All"
TELNET_ACCESS_PORT="23"
TELNET_ACCESS_LIST=""
WEB_TIMEOUT="10"
LOG_MODE="Local"
REMOTELOG_SERVER="0.0.0.0"
STATICROUTE_ENABLED="Disabled"
STATICROUTE_TBL_NUM="0"
IPTV_MODE="Disabled"
IPTV_PORT="LAN3+LAN4"
IPTV_VLAN_TV_TAG="1000"
IPTV_VLAN_TV2_ENABLED="Disabled"
IPTV_VLAN_TV2_TAG="1001"
IPTV_VLAN_WAN_TAG="1225"
VOIP_PORT_ENABLED="Disabled"
VOIP_PORT="LAN1"
VOIP_VLAN_TAG="4000"
IGMP_V3_PASS_ALL_ENABLED="Enabled"
IGMP_BR_FLOOD_PROTECT_ENABLED="Enabled"
DISKS_MOUNT_PREFIX="DISK_"
MODEM_ENABLED="Disabled"
MODEM_PROVIDER_COUNTRY="Russia"
MODEM_PROVIDER="Unknown"
MODEM_PIN=""
MODEM_AUTH_TYPE="Auto"
MODEM_PHONE_NUMBER="*99#"
MODEM_APN=""
MODEM_USERNAME=""
MODEM_PASSWORD="********"
MODEM_ON_DEMAND_ENABLED="Disabled"
MODEM_MTU_SIZE="1400"
MODEM_IDLE_TIME="10"
MODEM_INIT_ATCMDS_ENABLED="Disabled"
MODEM_INIT_ATCMDS1=""
MODEM_INIT_ATCMDS2=""
MODEM_INIT_ATCMDS3=""
MODEM_AUTOPING_ENABLED="Disabled"
MODEM_AUTOPING_ADDRESS=""
MODEM_AUTOPING_PERIOD="60"
MODEM_CUSTOM_DNS_ENABLED="Disabled"
MODEM_NOPEER_DNS_ENABLED="Disabled"
MODEM_DNS1="8.8.8.8"
MODEM_DNS2="8.8.4.4"
MODEM_DNS3="0.0.0.0"
FTP_ACCESS_ENABLED="Disabled"
FTP_WAN_ACCESS_MODE="Disabled"
FTP_WAN_ACCESS_LIST=""
FTP_ANONYMOUS_ENABLED="Disabled"
FTP_ANONYMOUS_FULLACCESS="Disabled"
FTP_PORT="21"
SMB_ACCESS_ENABLED="Disabled"
SMB_NAME="KEENETIC_LITE"
SMB_WORKGROUP="WORKGROUP"
SMB_ANONYMOUS_ENABLED="Disabled"
SMB_ANONYMOUS_FULLACCESS="Disabled"
PRINTSERVER_ENABLED="Disabled"
PRINTSERVER_WAN_ACCESS_ENABLED="Disabled"
PRINTSERVER_BIDIRECTIONAL_ENABLED="Enabled"
TRNT_ENABLED="Disabled"
TRNT_PORT="6881"
TRNT_RPC_PORT="9091"
TRNT_FOLDER="DISK_A1/transmission"
TRNT_USER_NAME="admin"
TRNT_USER_PASSWORD="********"
TRNT_WAN_ACCESS_MODE="Disabled"
TRNT_WAN_ACCESS_LIST=""
TRNT_USE_WEB_ACCOUNT_ENABLED="Enabled"
TRNT_AUTO_START_ENABLED="Disabled"
TRNT_UMOUNT_BY_WPS_BUTTON="Disabled"
USERS_TBL_NUM="0"
EZTUNE_ENABLED="Disabled"
SERVICE_MODE="Disabled"
EZTUNE_REDIRECT_URL=""
TRAP_GATE_IP="-"
SERVICE_TAG_ACTIVATED="Disabled"
WEBFACE_OPTIONS="0"
WEBFACE_THEME="keenetic"
DEBUG="Disabled"
DEBUG_PPPD="Disabled"
DHCP_O60_TBL_NUM="0"
TR069_ENABLED="Disabled"
TR069_ACS_URL=""
TR069_ACS_USERNAME=""
TR069_ACS_PASSWORD="********"
TR069_CRS_PORT="30005"
TR069_CRS_USERNAME=""
TR069_CRS_PASSWORD="********"
TR069_PERIODIC_ENABLED="Enabled"
TR069_PERIODIC_INTERVAL="30"
WLAN_REG_DOMAIN="ETSI"
WLAN_COUNTRY_CODE="TW"
WLAN_MAC_ADDR="00:00:00:00:00:00"
WLAN_ENABLED="Enabled"
WLAN_STA_SSID="ES_EVSE_02D5"
WLAN_STA_CHANNEL="0"
WLAN_STA_BAND="802.11b/g/n"
WLAN_STA_FIX_RATE=""
WLAN_STA_PREAMBLE_TYPE="Long"
WLAN_STA_TXPOWER="100"
WLAN_STA_AUTH_TYPE="WPA2-PSK"
WLAN_STA_ENCRYPT_TYPE="TKIP/AES"
WLAN_STA_WEP_KEY1=""
WLAN_STA_WEP_KEY2=""
WLAN_STA_WEP_KEY3=""
WLAN_STA_WEP_KEY4=""
WLAN_STA_WEP_KEY1_FORMAT="HEX"
WLAN_STA_WEP_KEY2_FORMAT="HEX"
WLAN_STA_WEP_KEY3_FORMAT="HEX"
WLAN_STA_WEP_KEY4_FORMAT="HEX"
WLAN_STA_WEP_KEY_INDEX="1"
WLAN_STA_WPA_PSK="es000725"
WLAN_STA_WPA_PSK_FORMAT="ASCII"
WLAN_AP_SSID="ZyXEL_KEENETIC_LITE_A07EAA"
WLAN_AP_HIDDEN_SSID="Disabled"
WLAN_AP_CHANNEL="0"
WLAN_AP_BAND="802.11b/g/n"
WLAN_AP_FIX_RATE="1M,2M,5.5M,11M,6M,9M,12M,18M,24M,36M,48M,54M"
WLAN_AP_PREAMBLE_TYPE="Long"
WLAN_AP_TXPOWER="100"
WLAN_AP_AUTH_TYPE="WPA-PSK/WPA2-PSK"
WLAN_AP_ENCRYPT_TYPE="TKIP/AES"
WLAN_AP_WEP_KEY1=""
WLAN_AP_WEP_KEY2=""
WLAN_AP_WEP_KEY3=""
WLAN_AP_WEP_KEY4=""
WLAN_AP_WEP_KEY1_FORMAT="HEX"
WLAN_AP_WEP_KEY2_FORMAT="HEX"
WLAN_AP_WEP_KEY3_FORMAT="HEX"
WLAN_AP_WEP_KEY4_FORMAT="HEX"
WLAN_AP_WEP_KEY_INDEX="1"
WLAN_AP_WPA_PSK="es000725"
WLAN_AP_WPA_PSK_FORMAT="ASCII"
WLAN_STA_MONITORING_ENABLED="Disabled"
WLAN_BEACON_INTERVAL="100"
WLAN_FRAG_THRESHOLD="2346"
WLAN_RTS_THRESHOLD="2347"
WLAN_DTIM_PERIOD="1"
WLAN_INACTIVITY_TIME="30000"
WLAN_WMM_ENABLED="Disabled"
WLAN_MODE="AP"
WLAN_NETWORK_TYPE="0"
WLAN_IAPP_ENABLED="Disabled"
WLAN_PROTECTION_DISABLED="No"
WLAN_DEFAULT_SSID=""
WLAN_WDS_ENABLED="Disabled"
WLAN_WDS_NUM="0"
WLAN_WDS_ENCRYPT="Disabled"
WLAN_WDS_WEP_FORMAT="HEX"
WLAN_WDS_WEP_KEY="1"
WLAN_WDS_PSK_FORMAT="ASCII"
WLAN_WDS_PSK=""
WLAN_MAC_ACL_MODE="Disabled"
WLAN_MAC_ACL_NUM="0"
WLAN_MACCLONE_ENABLED="Disabled"
WLAN_WPS__ENABLED="Disabled"
WLAN_WPS_CONFIGURED="Configured"
================================================================================
# switch dump
--------------------------------------------------------------------------------
hash port(0:6) vid age pxy in mac-address
05a: ----1 -- 1 1 n n 28285d874e80
094: 11111 11 0 7 n n 01005e7ffffa
16a: ----- -1 1 1 n n 000c43305077
17e: ----- -1 0 3 n n ccb255a07eaa
292: 11111 11 0 7 n n 01005e0000fb
found the last entry 5 (not ready)
================================================================================
# switch vlan dump
--------------------------------------------------------------------------------
idx vid portmap
0 1 1111-11
1 2 ----1-1
2 3 1111111
3 4 1111111
4 5 1111111
5 6 1111111
6 7 1111111
7 8 1111111
8 9 1111111
9 10 1111111
10 11 1111111
11 12 1111111
12 13 1111111
13 14 1111111
14 15 1111111
15 16 1111111
================================================================================
# switch vlantag dump
--------------------------------------------------------------------------------
VLAN tag remove portmap: 111111-
================================================================================
# switch vlanen dump
--------------------------------------------------------------------------------
VLAN enable portmap: ------1
================================================================================
# switch pvid dump
--------------------------------------------------------------------------------
PVID0 = 1
PVID1 = 1
PVID2 = 1
PVID3 = 1
PVID4 = 2
PVID5 = 1
PVID6 = 1
================================================================================
# cli sys status
--------------------------------------------------------------------------------
system :
mode Ethernet Router
uptime 9 days 19:59:43 (849583 sec)
RAM used 11984K (39%) free 18076K (60%)
version V1.00(AABL.1)D0
created at Dec 18 2011 18:15:04
Wireless LAN:
Sent : 15.1 KBytes ( 15489 Bytes )
Received : 49.7 MBytes ( 52098360 Bytes )
Ethernet LAN:
Sent : 758.8 KBytes ( 777035 Bytes )
Received : 7.7 KBytes ( 7928 Bytes )
Ethernet WAN:
Sent : 1.2 MBytes ( 1244649 Bytes )
Received : 72.5 MBytes ( 75998156 Bytes )
Address Resolution table :
IP address HW address Device
192.168.1.1 28:28:5D:87:4E:80 WAN
================================================================================
# cli sys ports
--------------------------------------------------------------------------------
WAN LAN1 LAN2 LAN3 LAN4
100/Full -- -- -- --
================================================================================
# arp -avn
--------------------------------------------------------------------------------
? (192.168.1.1) at 28:28:5D:87:4E:80 [ether] on eth2.2
================================================================================
# route -n
--------------------------------------------------------------------------------
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
192.168.5.0 0.0.0.0 255.255.255.0 U 0 0 0 br0
192.168.1.0 0.0.0.0 255.255.255.0 U 0 0 0 eth2.2
0.0.0.0 192.168.1.1 0.0.0.0 UG 0 0 0 eth2.2
================================================================================
# ifconfig -a
--------------------------------------------------------------------------------
br0 Link encap:Ethernet HWaddr CC:B2:55:A0:7E:AA
inet addr:192.168.5.1 Bcast:192.168.5.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:55 errors:0 dropped:0 overruns:0 frame:0
TX packets:12840 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:7928 (7.7 KiB) TX bytes:777035 (758.8 KiB)
eth2 Link encap:Ethernet HWaddr CC:B2:55:A0:7E:AA
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:186146 errors:0 dropped:0 overruns:0 frame:0
TX packets:21056 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:78680025 (75.0 MiB) TX bytes:2344242 (2.2 MiB)
Interrupt:3
eth2.1 Link encap:Ethernet HWaddr CC:B2:55:A0:7E:AA
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:12874 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:0 (0.0 B) TX bytes:835262 (815.6 KiB)
eth2.2 Link encap:Ethernet HWaddr 00:0C:43:30:50:77
inet addr:192.168.1.48 Bcast:192.168.1.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:185609 errors:0 dropped:0 overruns:0 frame:0
TX packets:7750 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:75999108 (72.4 MiB) TX bytes:1247456 (1.1 MiB)
lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
UP LOOPBACK RUNNING MTU:16436 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:0 (0.0 B) TX bytes:0 (0.0 B)
ra0 Link encap:Ethernet HWaddr CC:B2:55:A0:7E:AA
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:233225 errors:0 dropped:0 overruns:0 frame:0
TX packets:7478 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:52098360 (49.6 MiB) TX bytes:15489 (15.1 KiB)
Interrupt:4
================================================================================
# iwconfig
--------------------------------------------------------------------------------
Warning: Driver for device eth2 has been compiled with an ancient version
of Wireless Extension, while this program support version 11 and later.
Some things may be broken...
eth2 ESSID:off/any Nickname:""
NWID:0 Mode:Unknown/bug Channel:0
Access Point: Not-Associated Bit Rate:0 kb/s Sensitivity=2142791232/0
RTS thr=2142791232 B Fragment thr=2142791232 B
Encryption key:<too big>
Power Management:on
lo no wireless extensions.
ra0 RTWIFI SoftAP ESSID:"ZyXEL_KEENETIC_LITE_A07EAA"
Mode:Managed Channel=10 Access Point: CC:B2:55:A0:7E:AA
Bit Rate=150 Mb/s
eth2.1 no wireless extensions.
eth2.2 no wireless extensions.
br0 no wireless extensions.
================================================================================
# netstat -aenW
--------------------------------------------------------------------------------
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address State
tcp 129 0 0.0.0.0:80 0.0.0.0:* LISTEN
tcp 0 0 0.0.0.0:53 0.0.0.0:* LISTEN
tcp 0 0 0.0.0.0:23 0.0.0.0:* LISTEN
tcp 290 0 192.168.1.48:80 39.106.89.208:51962 CLOSE_WAIT
tcp 288 0 192.168.1.48:80 45.155.205.211:36652 CLOSE_WAIT
tcp 290 0 192.168.1.48:80 101.32.190.157:60634 CLOSE_WAIT
tcp 281 0 192.168.1.48:80 89.248.165.52:49473 CLOSE_WAIT
tcp 389 0 192.168.1.48:80 46.37.158.21:46298 CLOSE_WAIT
tcp 1 0 192.168.1.48:80 79.9.32.50:34478 CLOSE_WAIT
tcp 111 0 192.168.1.48:80 111.7.96.160:49618 CLOSE_WAIT
tcp 224 0 192.168.1.48:80 111.7.96.160:12380 CLOSE_WAIT
tcp 253 0 192.168.1.48:80 45.155.205.211:36630 CLOSE_WAIT
tcp 281 0 192.168.1.48:80 89.248.165.52:64483 CLOSE_WAIT
tcp 18 0 192.168.1.48:80 46.37.158.21:51310 CLOSE_WAIT
tcp 1 0 192.168.1.48:80 89.248.165.52:64727 CLOSE_WAIT
tcp 470 0 192.168.1.48:80 46.37.158.21:60572 CLOSE_WAIT
tcp 231 0 192.168.1.48:80 47.101.172.97:50622 CLOSE_WAIT
tcp 236 0 192.168.1.48:80 8.141.51.166:51210 CLOSE_WAIT
tcp 253 0 192.168.1.48:80 45.155.205.211:56932 CLOSE_WAIT
tcp 19 0 192.168.1.48:80 111.7.96.160:58518 CLOSE_WAIT
tcp 0 0 192.168.1.48:23 46.37.152.122:38394 TIME_WAIT
tcp 236 0 192.168.1.48:80 47.93.23.61:42282 CLOSE_WAIT
tcp 1 0 192.168.1.48:80 46.37.158.21:52374 CLOSE_WAIT
tcp 231 0 192.168.1.48:80 114.55.254.6:56826 CLOSE_WAIT
tcp 224 0 192.168.1.48:80 46.37.158.21:51308 CLOSE_WAIT
tcp 1 0 192.168.1.48:80 79.9.32.50:42835 CLOSE_WAIT
tcp 518 0 192.168.1.48:80 183.136.225.42:1910 CLOSE_WAIT
tcp 1 0 192.168.1.48:80 78.85.138.188:60065 CLOSE_WAIT
tcp 290 0 192.168.1.48:80 47.101.172.97:50926 CLOSE_WAIT
tcp 5 0 192.168.1.48:80 46.37.158.21:60220 CLOSE_WAIT
tcp 54 0 192.168.1.48:80 111.7.96.160:27332 CLOSE_WAIT
tcp 45 0 192.168.1.48:80 46.37.158.21:51318 CLOSE_WAIT
tcp 253 0 192.168.1.48:80 45.155.205.211:54832 CLOSE_WAIT
tcp 1 0 192.168.1.48:80 89.248.165.52:55474 CLOSE_WAIT
tcp 389 0 192.168.1.48:80 46.37.158.21:52296 CLOSE_WAIT
tcp 86 0 192.168.1.48:80 46.37.158.21:52188 CLOSE_WAIT
tcp 470 0 192.168.1.48:80 46.37.158.21:60200 CLOSE_WAIT
tcp 290 0 192.168.1.48:80 114.55.254.6:57230 CLOSE_WAIT
tcp 231 0 192.168.1.48:80 8.141.51.166:56796 CLOSE_WAIT
tcp 231 0 192.168.1.48:80 104.131.33.4:43794 CLOSE_WAIT
tcp 166 0 192.168.1.48:80 162.142.125.55:34038 CLOSE_WAIT
tcp 236 0 192.168.1.48:80 47.101.172.97:49674 CLOSE_WAIT
tcp 1 0 192.168.1.48:80 89.248.165.52:56015 CLOSE_WAIT
tcp 1 0 192.168.1.48:80 124.227.31.79:33348 CLOSE_WAIT
tcp 33 0 192.168.1.48:80 46.37.158.21:51320 CLOSE_WAIT
tcp 89 0 192.168.1.48:80 111.7.96.160:54428 CLOSE_WAIT
tcp 231 0 192.168.1.48:80 143.110.253.31:44352 CLOSE_WAIT
tcp 389 0 192.168.1.48:80 46.37.158.21:45600 CLOSE_WAIT
tcp 470 0 192.168.1.48:80 46.37.158.21:60232 CLOSE_WAIT
tcp 288 0 192.168.1.48:80 45.155.205.211:54838 CLOSE_WAIT
tcp 281 0 192.168.1.48:80 89.248.165.52:56765 CLOSE_WAIT
tcp 290 0 192.168.1.48:80 143.110.253.31:45016 CLOSE_WAIT
tcp 389 0 192.168.1.48:80 46.37.158.21:46304 CLOSE_WAIT
tcp 54 0 192.168.1.48:80 46.37.158.21:51268 CLOSE_WAIT
tcp 70 0 192.168.1.48:80 192.3.146.243:63740 CLOSE_WAIT
tcp 1 0 192.168.1.48:80 46.37.158.21:60216 CLOSE_WAIT
tcp 14 0 192.168.1.48:80 111.7.96.160:35804 CLOSE_WAIT
tcp 0 0 192.168.1.48:80 79.9.32.50:34462 CLOSE_WAIT
tcp 253 0 192.168.1.48:80 45.155.205.211:41010 CLOSE_WAIT
tcp 23 0 192.168.1.48:80 46.37.158.21:51316 CLOSE_WAIT
tcp 261 0 192.168.1.48:80 178.32.197.84:39917 CLOSE_WAIT
tcp 450 0 192.168.1.48:80 182.242.254.242:60626 CLOSE_WAIT
tcp 389 0 192.168.1.48:80 46.37.158.21:46282 CLOSE_WAIT
tcp 389 0 192.168.1.48:80 46.37.158.21:46286 CLOSE_WAIT
tcp 122 0 192.168.1.48:80 183.83.24.160:36487 CLOSE_WAIT
tcp 581 0 192.168.1.48:80 45.155.205.211:41014 CLOSE_WAIT
tcp 779 0 192.168.1.48:80 79.9.32.50:42735 CLOSE_WAIT
tcp 231 0 192.168.1.48:80 47.93.23.61:42778 CLOSE_WAIT
tcp 90 0 192.168.1.48:80 78.56.11.186:33684 CLOSE_WAIT
tcp 1 0 192.168.1.48:80 104.131.33.4:58606 CLOSE_WAIT
tcp 89 0 192.168.1.48:80 46.37.158.21:51328 CLOSE_WAIT
tcp 236 0 192.168.1.48:80 39.106.89.208:50828 CLOSE_WAIT
tcp 166 0 192.168.1.48:80 167.248.133.39:33548 CLOSE_WAIT
tcp 107 0 192.168.1.48:80 93.174.89.34:47650 CLOSE_WAIT
tcp 0 552 192.168.1.48:23 46.37.152.122:41574 ESTABLISHED
tcp 15 0 192.168.1.48:80 46.37.158.21:51322 CLOSE_WAIT
tcp 111 0 192.168.1.48:80 46.37.158.21:51332 CLOSE_WAIT
tcp 231 0 192.168.1.48:80 101.32.190.157:59598 CLOSE_WAIT
tcp 18 0 192.168.1.48:80 111.7.96.160:31720 CLOSE_WAIT
tcp 23 0 192.168.1.48:80 46.37.158.21:51314 CLOSE_WAIT
tcp 179 0 192.168.1.48:80 183.136.225.42:46927 CLOSE_WAIT
tcp 1 0 192.168.1.48:80 103.225.101.242:38484 CLOSE_WAIT
tcp 236 0 192.168.1.48:80 143.110.253.31:43762 CLOSE_WAIT
tcp 236 0 192.168.1.48:80 104.131.33.4:43218 CLOSE_WAIT
tcp 802 0 192.168.1.48:80 103.225.101.242:38450 CLOSE_WAIT
tcp 470 0 192.168.1.48:80 46.37.158.21:60270 CLOSE_WAIT
tcp 236 0 192.168.1.48:80 114.55.254.6:55640 CLOSE_WAIT
tcp 117 0 192.168.1.48:80 192.35.168.128:36260 CLOSE_WAIT
tcp 236 0 192.168.1.48:80 101.32.190.157:59148 CLOSE_WAIT
tcp 290 0 192.168.1.48:80 47.93.23.61:43074 CLOSE_WAIT
tcp 19 0 192.168.1.48:80 46.37.158.21:51244 CLOSE_WAIT
tcp 162 0 192.168.1.48:80 193.46.254.169:61338 CLOSE_WAIT
tcp 123 0 192.168.1.48:80 185.220.205.196:54180 CLOSE_WAIT
tcp 802 0 192.168.1.48:80 78.85.138.188:60064 CLOSE_WAIT
tcp 290 0 192.168.1.48:80 8.141.51.166:59798 CLOSE_WAIT
tcp 575 0 192.168.1.48:80 49.113.102.159:33928 CLOSE_WAIT
tcp 1 0 192.168.1.48:80 8.141.51.166:39476 CLOSE_WAIT
tcp 469 0 192.168.1.48:80 106.45.10.128:48196 CLOSE_WAIT
tcp 166 0 192.168.1.48:80 74.120.14.54:52186 CLOSE_WAIT
tcp 241 0 192.168.1.48:80 47.93.23.61:41350 CLOSE_WAIT
tcp 162 0 192.168.1.48:80 193.46.254.169:60239 CLOSE_WAIT
tcp 7 0 192.168.1.48:80 46.37.158.21:51324 CLOSE_WAIT
tcp 290 0 192.168.1.48:80 104.131.33.4:43968 CLOSE_WAIT
tcp 1 0 192.168.1.48:80 89.248.165.52:57012 CLOSE_WAIT
tcp 1 0 192.168.1.48:80 119.39.47.158:48142 CLOSE_WAIT
tcp 5 0 192.168.1.48:80 46.37.158.21:51312 CLOSE_WAIT
tcp 1 0 192.168.1.48:80 182.242.254.242:60416 CLOSE_WAIT
tcp 231 0 192.168.1.48:80 39.106.89.208:51312 CLOSE_WAIT
tcp 389 0 192.168.1.48:80 46.37.158.21:46314 CLOSE_WAIT
tcp 1 0 192.168.1.48:80 111.7.96.160:35072 CLOSE_WAIT
tcp 288 0 192.168.1.48:80 45.155.205.211:56938 CLOSE_WAIT
netstat: no support for 'AF INET6 (tcp)' on this system
udp 0 0 0.0.0.0:53 0.0.0.0:*
udp 0 0 0.0.0.0:67 0.0.0.0:*
netstat: no support for 'AF INET6 (udp)' on this system
netstat: no support for 'AF INET6 (raw)' on this system
Active UNIX domain sockets (servers and established)
Proto RefCnt Flags Type State I-Node Path
unix 9 [ ] DGRAM 1742 /dev/log
unix 2 [ ACC ] STREAM LISTENING 186 /tmp/superd.socket
unix 2 [ ] DGRAM 5921
unix 2 [ ] DGRAM 3335
unix 2 [ ] DGRAM 3070
unix 2 [ ] DGRAM 2246
unix 2 [ ] DGRAM 1955
unix 2 [ ] DGRAM 1748
unix 2 [ ] DGRAM 1746
================================================================================
# iptables -L -vn
--------------------------------------------------------------------------------
Chain INPUT (policy DROP 404 packets, 91071 bytes)
pkts bytes target prot opt in out source destination
0 0 ACCEPT all -- br0 * 0.0.0.0/0 0.0.0.0/0
7153 787K ACCEPT all -- eth2.2 * 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
0 0 ACCEPT 2 -- eth2.2 * 0.0.0.0/0 0.0.0.0/0
550 30288 ACCEPT tcp -- eth2.2 * 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:80
16 942 ACCEPT tcp -- eth2.2 * 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:23
0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmp type 255
Chain FORWARD (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
0 0 ACCEPT all -- br0 * 0.0.0.0/0 0.0.0.0/0 state NEW
0 0 ACCEPT all -- eth2.2 * 0.0.0.0/0 0.0.0.0/0 state NEW
0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
Chain OUTPUT (policy ACCEPT 4481 packets, 469K bytes)
pkts bytes target prot opt in out source destination
================================================================================
# iptables -t nat -L -vn
--------------------------------------------------------------------------------
Chain PREROUTING (policy ACCEPT 162K packets, 74M bytes)
pkts bytes target prot opt in out source destination
Chain POSTROUTING (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
565 53713 MASQUERADE all -- * eth2.2 0.0.0.0/0 0.0.0.0/0
Chain OUTPUT (policy ACCEPT 726 packets, 67418 bytes)
pkts bytes target prot opt in out source destination
================================================================================
# iptables -t mangle -L -vn
--------------------------------------------------------------------------------
Chain PREROUTING (policy ACCEPT 172K packets, 75M bytes)
pkts bytes target prot opt in out source destination
Chain INPUT (policy ACCEPT 15890 packets, 2290K bytes)
pkts bytes target prot opt in out source destination
Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
Chain OUTPUT (policy ACCEPT 6789 packets, 1314K bytes)
pkts bytes target prot opt in out source destination
Chain POSTROUTING (policy ACCEPT 6789 packets, 1314K bytes)
pkts bytes target prot opt in out source destination
================================================================================
# cat /etc/resolv.conf
--------------------------------------------------------------------------------
nameserver 192.168.1.1
================================================================================
# cat /var/udhcpc/resolv.conf
--------------------------------------------------------------------------------
nameserver 192.168.1.1
================================================================================
# cat /etc/hosts
--------------------------------------------------------------------------------
127.0.0.1 localhost
192.168.5.1 KEENETIC_LITE
================================================================================
# cat /proc/interrupts
--------------------------------------------------------------------------------
CPU0
3: 204083 Surfboard eth2
4: 16829822 Surfboard ra0
5: 849582314 Surfboard timer
6: 0 Surfboard ralink_gpio
12: 111 Surfboard serial
ERR: 0
================================================================================
# top -b -n 1
--------------------------------------------------------------------------------
Mem: 13148K used, 16912K free, 0K shrd, 1272K buff, 3988K cached
CPU: 70.0% usr 30.0% sys 0.0% nice 0.0% idle 0.0% io 0.0% irq 0.0% softir
Load average: 1.00 1.00 1.00
PID PPID USER STAT VSZ %MEM %CPU COMMAND
1623 677 root R 1524 5.0 91.5 httpd -p 80
481 458 root R 1012 3.3 8.3 top -b -n 1
456 1627 root S 1496 4.9 0.0 /bin/cli
2658 1 root S 1028 3.4 0.0 udhcpc -S -i eth2.2 -p /etc/udhcpc/ud
458 457 root S 1024 3.4 0.0 /bin/sh /bin/dump-all.sh
1627 677 root S 1012 3.3 0.0 telnetd -F -l /bin/cli -p 23
1 0 root S 1012 3.3 0.0 init
970 1 root S 1012 3.3 0.0 init
1613 677 root S 1008 3.3 0.0 syslogd -n -s 100 -b 0 -S -L
1615 677 root S 1008 3.3 0.0 klogd -n
457 456 root S 1008 3.3 0.0 sh -c dump-all.sh
2571 1 root S 848 2.8 0.0 dnsmasq -u root --all-servers -k
677 1 root S 764 2.5 0.0 superd
1990 677 root S 724 2.4 0.0 btnreset
1785 1 root S 664 2.2 0.0 udhcpd -S /var/udhcpd.conf
557 2 root SW< 0 0.0 0.0 [mtdblockd]
5 2 root SW< 0 0.0 0.0 [khelper]
27 2 root SW< 0 0.0 0.0 [kswapd0]
2 0 root SW< 0 0.0 0.0 [kthreadd]
3 2 root SW< 0 0.0 0.0 [ksoftirqd/0]
4 2 root SW< 0 0.0 0.0 [events/0]
28 2 root SW< 0 0.0 0.0 [aio/0]
10 2 root SW< 0 0.0 0.0 [kblockd/0]
25 2 root SW 0 0.0 0.0 [pdflush]
26 2 root SW 0 0.0 0.0 [pdflush]
1758 2 root SW 0 0.0 0.0 [RtmpCmdQTask]
1759 2 root SW 0 0.0 0.0 [RtmpWscTask]
================================================================================
# ps
--------------------------------------------------------------------------------
PID Uid VSZ Stat Command
1 root 1012 S init
2 root SW< [kthreadd]
3 root SW< [ksoftirqd/0]
4 root SW< [events/0]
5 root SW< [khelper]
10 root SW< [kblockd/0]
25 root SW [pdflush]
26 root SW [pdflush]
27 root SW< [kswapd0]
28 root SW< [aio/0]
456 root 1496 S /bin/cli
457 root 1008 S sh -c dump-all.sh
458 root 1024 S /bin/sh /bin/dump-all.sh
482 root 1012 R ps
557 root SW< [mtdblockd]
677 root 764 S superd
970 root 1012 S init
1613 root 1008 S syslogd -n -s 100 -b 0 -S -L
1615 root 1008 S klogd -n
1623 root 1524 R httpd -p 80
1627 root 1012 S telnetd -F -l /bin/cli -p 23
1758 root SW [RtmpCmdQTask]
1759 root SW [RtmpWscTask]
1785 root 664 S udhcpd -S /var/udhcpd.conf
1990 root 724 S btnreset
2571 root 848 S dnsmasq -u root --all-servers -k
2658 root 1028 S udhcpc -S -i eth2.2 -p /etc/udhcpc/udhcpc-eth2.2.pid
================================================================================
# super list
--------------------------------------------------------------------------------
Scheduler list:
id pid delay period opts command
ntp -/0 49m 47s 0s q ntp.sh
Watch list:
id pid delay opts command
syslogd 1613 - - syslogd -n -s 100 -b 0 -S -L
klogd 1615 - - klogd -n
httpd 1623 - - httpd -p 80
telnetd 1627 - - telnetd -F -l /bin/cli -p 23
btnreset 1990 - q btnreset
================================================================================
# lsmod
--------------------------------------------------------------------------------
Module Size Used by Tainted: P
igmpsn 53040 0
rt2860v2_ap 819744 1
rtled 3216 1 rt2860v2_ap
swlink 1360 0
fastnat 2784 0
powerstat 1920 0
ralink_wdt 896 0
xt_mark 736 0
xt_mac 928 0
ipt_webstr 3200 0
ipt_ipp2p 7648 0
nf_nat_pptp 1568 0
nf_nat_proto_gre 1168 1 nf_nat_pptp
nf_conntrack_pptp 3728 1 nf_nat_pptp
nf_conntrack_proto_gre 2656 1 nf_conntrack_pptp
nf_nat_h323 5792 0
nf_conntrack_h323 36160 1 nf_nat_h323
================================================================================
# cat /proc/modules
--------------------------------------------------------------------------------
igmpsn 53040 0 - Live 0x81930000
rt2860v2_ap 819744 1 - Live 0x81b00000 (P)
rtled 3216 1 rt2860v2_ap, Live 0x8138f000
swlink 1360 0 - Live 0x81f3d000
fastnat 2784 0 - Live 0x81e4a000
powerstat 1920 0 - Live 0x8120e000
ralink_wdt 896 0 - Live 0x8120a000
xt_mark 736 0 - Live 0x803ef000
xt_mac 928 0 - Live 0x80391000
ipt_webstr 3200 0 - Live 0x81202000
ipt_ipp2p 7648 0 - Live 0x81204000
nf_nat_pptp 1568 0 - Live 0x803cf000
nf_nat_proto_gre 1168 1 nf_nat_pptp, Live 0x8039f000
nf_conntrack_pptp 3728 1 nf_nat_pptp, Live 0x803cc000
nf_conntrack_proto_gre 2656 1 nf_conntrack_pptp, Live 0x803b6000
nf_nat_h323 5792 0 - Live 0x803b8000
nf_conntrack_h323 36160 1 nf_nat_h323, Live 0x803e0000
================================================================================
# cat /proc/uptime
--------------------------------------------------------------------------------
849583.45 60551.75
================================================================================
# cat /proc/meminfo
--------------------------------------------------------------------------------
total: used: free: shared: buffers: cached:
Mem: 30781440 13451264 17330176 0 1302528 4083712
Swap: 0 0 0
MemTotal: 30060 kB
MemFree: 16924 kB
MemShared: 0 kB
Buffers: 1272 kB
Cached: 3988 kB
SwapCached: 0 kB
Active: 1246 kB
Inactive: 360 kB
HighTotal: 0 kB
HighFree: 0 kB
LowTotal: 30060 kB
LowFree: 16924 kB
SwapTotal: 0 kB
SwapFree: 0 kB
Dirty: 0 kB
Writeback: 0 kB
Mapped: 244 kB
Slab: 76 kB
CommitLimit: 15028 kB
Committed_AS: 2804 kB
PageTables: 1315 kB
VmallocTotal: 1048404 kB
VmallocUsed: 608 kB
VmallocChunk: 1047796 kB
================================================================================
# cat /proc/cpuinfo
--------------------------------------------------------------------------------
system type : Ralink SoC
processor : 0
cpu model : MIPS 24K V4.12
BogoMIPS : 238.59
wait instruction : yes
microsecond timers : yes
tlb_entries : 32
extra interrupt vector : yes
hardware watchpoint : yes
ASEs implemented : mips16 dsp
VCED exceptions : not available
VCEI exceptions : not available
================================================================================
# cat /proc/version
--------------------------------------------------------------------------------
Linux version 2.6.23.17 (developers@ndmsystems.com) (gcc version 4.1.2) #1 Sun Dec 18 18:18:26 MSK 2011
================================================================================
# mount
--------------------------------------------------------------------------------
rootfs on / type rootfs (rw)
/dev/root on / type squashfs (ro)
none on /dev type devfs (rw)
none on /proc type proc (rw)
none on /var type tmpfs (rw)
================================================================================
# ls /media
--------------------------------------------------------------------------------
ls: /media: No such file or directory
================================================================================
# ls -l /var/tmp
--------------------------------------------------------------------------------
-rw-r--r-- 1 root root 1414 Dec 16 2025 �[0;0mRT2860.dat�[0m
drwxr-xr-x 2 root root 60 Apr 16 10:27 �[1;34mmib�[0m
-rw-r--r-- 1 root root 178 Apr 16 10:17 �[0;0msuperd.queue�[0m
srwxr-xr-x 1 root root 0 Nov 16 2011 �[1;35msuperd.socket�[0m
drwxr-xr-x 2 root root 40 Nov 16 2011 �[1;34mwarm�[0m
-rw-r--r-- 1 root root 41616 Dec 16 2025 �[0;0mzymib.bin�[0m
-rw-r--r-- 1 root root 63 Apr 16 10:17 �[0;0mzyntp.log�[0m
================================================================================
# ls -l /var/lib/misc/
--------------------------------------------------------------------------------
-rw-r--r-- 1 root root 44 Apr 16 08:36 �[0;0mudhcpd.leases�[0m
================================================================================
# ls -l /var/run
--------------------------------------------------------------------------------
-rw-r--r-- 1 root root 5 Apr 8 07:40 �[0;0mdnsmasq.pid�[0m
drwxr-xr-x 2 root root 40 Nov 16 2011 �[1;34mftpd�[0m
-rw-r--r-- 1 root root 5 Dec 16 2025 �[0;0mudhcpd.pid�[0m
================================================================================
# ls -l /storage
--------------------------------------------------------------------------------
ls: /storage: No such file or directory
================================================================================
# ls -l /lib/modules/2.6.23-rt/
--------------------------------------------------------------------------------
-rw-r--r-- 1 root root 6016 Dec 19 2011 �[0;0mfastnat.ko�[0m
-rw-r--r-- 1 root root 29996 Dec 19 2011 �[0;0migmpsn.ko�[0m
-rw-r--r-- 1 root root 14768 Dec 19 2011 �[0;0mipt_ipp2p.ko�[0m
-rw-r--r-- 1 root root 6376 Dec 19 2011 �[0;0mipt_webstr.ko�[0m
-rw-r--r-- 1 root root 46132 Dec 19 2011 �[0;0mnf_conntrack_h323.ko�[0m
-rw-r--r-- 1 root root 8376 Dec 19 2011 �[0;0mnf_conntrack_pptp.ko�[0m
-rw-r--r-- 1 root root 6576 Dec 19 2011 �[0;0mnf_conntrack_proto_gre.ko�[0m
-rw-r--r-- 1 root root 10728 Dec 19 2011 �[0;0mnf_nat_h323.ko�[0m
-rw-r--r-- 1 root root 4476 Dec 19 2011 �[0;0mnf_nat_pptp.ko�[0m
-rw-r--r-- 1 root root 3956 Dec 19 2011 �[0;0mnf_nat_proto_gre.ko�[0m
-rw-r--r-- 1 root root 5292 Dec 19 2011 �[0;0mpowerstat.ko�[0m
-rw-r--r-- 1 root root 3848 Dec 19 2011 �[0;0mralink_wdt.ko�[0m
-rw-r--r-- 1 root root 1151984 Dec 19 2011 �[0;0mrt2860v2_ap.ko�[0m
-rw-r--r-- 1 root root 1095956 Dec 19 2011 �[0;0mrt2860v2_sta.ko�[0m
-rw-r--r-- 1 root root 7424 Dec 19 2011 �[0;0mrtled.ko�[0m
-rw-r--r-- 1 root root 5048 Dec 19 2011 �[0;0mswlink.ko�[0m
-rw-r--r-- 1 root root 4696 Dec 19 2011 �[0;0mwilink.ko�[0m
-rw-r--r-- 1 root root 3016 Dec 19 2011 �[0;0mxt_mac.ko�[0m
-rw-r--r-- 1 root root 2824 Dec 19 2011 �[0;0mxt_mark.ko�[0m
================================================================================
# cat /var/tmp/RT2860.dat
--------------------------------------------------------------------------------
#The word of "Default" must not be removed
Default
CountryRegion=1
CountryRegionABand=0
CountryCode=TW
BssidNum=1
SSID=ZyXEL_KEENETIC_LITE_A07EAA
WirelessMode=9
TxRate=0
Channel=0
BasicRate=4095
BeaconPeriod=100
DtimPeriod=1
TxPower=100
DisableOLBC=0
BGProtection=0
TxAntenna=
RxAntenna=
TxPreamble=0
RTSThreshold=2347
FragThreshold=2346
TxBurst=1
PktAggregate=0
TurboRate=0
WmmCapable=0
APAifsn=3;7;1;1
APCwmin=4;4;3;2
APCwmax=6;10;4;3
APTxop=0;0;94;47
APACM=0;0;0;0
BSSAifsn=3;7;2;2
BSSCwmin=4;4;3;2
BSSCwmax=10;10;4;3
BSSTxop=0;0;94;47
BSSACM=0;0;0;0
AckPolicy=0;0;0;0
NoForwarding=0
NoForwardingBTNBSSID=0
HideSSID=0
ShortSlot=1
AutoChannelSelect=1
IEEE8021X=0
IEEE80211H=0
CSPeriod=10
WirelessEvent=0
PreAuth=0
AuthMode=WPAPSKWPA2PSK
EncrypType=TKIPAES
RekeyInterval=0
RekeyMethod=DISABLE
PMKCachePeriod=10
WPAPSK=es000725
DefaultKeyID=1
Key1Type=0
Key1Str=empty
Key2Type=0
Key2Str=empty
Key3Type=0
Key3Str=empty
Key4Type=0
Key4Str=empty
HSCounter=0
AccessPolicy0=0
AccessControlList0=
AccessPolicy1=0
AccessControlList1=
AccessPolicy2=0
AccessControlList2=
AccessPolicy3=0
AccessControlList3=
WdsEnable=0
WdsEncrypType=NONE
WdsList=
WdsKey=
RADIUS_Server=192.168.1.1
RADIUS_Port=1812
RADIUS_Key=ralink
own_ip_addr=192.168.1.2
EAPifname=br0
PreAuthifname=br0
HT_HTC=0
HT_RDG=1
HT_EXTCHA=0
HT_LinkAdapt=0
HT_OpMode=0
HT_MpduDensity=5
HT_BW=1
HT_AutoBA=1
HT_AMSDU=0
HT_BAWinSize=64
HT_GI=1
HT_STBC=1
HT_MCS=33
================================================================================
# cat /var/usbstatus/wimax_connect_status
--------------------------------------------------------------------------------
0
================================================================================
# cat /var/udhcpd.conf
--------------------------------------------------------------------------------
interface br0
start 192.168.5.33
end 192.168.5.62
opt lease 86400
opt subnet 255.255.255.0
opt router 192.168.5.1
opt dns 192.168.5.1
================================================================================
-- END --
Re[3]: Домашний маршрутизатор режет HTTP
Здравствуйте, cppguard, Вы писали:
А помимо разрешений iptables само веб-приложение вообще на этом интерфейсе слушает? Т.е. если тупо воткнуть один конец шнура в WAN R2 а второй в комп и постучаться в роутер по 80-у порту (т.е. исключить всю дополнительную связку), веб-приложение открывается? И если не открывается, то увеличивается ли какой-нибудь счетчик "policy DROP" в iptables (если нет, то дело может быть и не в iptables)? Т.е. с компа запустить что-нибудь типа:
$ curl -v 'http://r2-wan-ip/'
и посмотреть на то, что происходит, а то может быть там возвращается редирект на HTTPS, а после редиректа в браузере получаем DROP на iptables.
Re[4]: Домашний маршрутизатор режет HTTP
От:
cppguard
Дата: 19.04.21 20:46
Оценка:
Здравствуйте, Anton Batenev, Вы писали:
Пока на собственное сообщение не было ответов, его можно удалить.
Удалить
