Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


ForumsLAN (ethernet/Wifi/routers/Bluetooth)The router guide - what is best.
Filter this topic showing only the reply marked as answer View this topic in a long page with up to 500 replies per page Create new topic
1 | ... | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17
1228 posts

Uber Geek
+1 received by user: 246

Subscriber

  # 2027742 3-Jun-2018 09:57
Send private message quote this post

Tinkerisk:

 

rb99:

 

Does anyone know how to enter static routes into the GWN7000 (to block Google) ? I had them on my Asus but everything seems to have a different name

 

Asus -

 

 

 

Wot R U doing? You just have to replace the Google DNS servers 8.8.8.8 and 8.8.4.4 against an other DNS like 84.200.69.80 and 84.200.70.40. No static routing.

 

 

Think I got that from a How To from a certain DNS provider. As far as I know on most routers you can't redirect you have to block. And seeing as this new router I have apparently can redirect, thats why I'm asking for help.




rb99

BDFL - Memuneh
63338 posts

Uber Geek
+1 received by user: 13859

Administrator
Trusted
Geekzone
Lifetime subscriber

  # 2027772 3-Jun-2018 11:42
Send private message quote this post

@Batman: Sorry i don't under stand why block Google? Genuine question

 

 

For both @Tinkerisk and @Batman

 

Some apps (such as Netflix) will do a DNS request to Google DNS regardless of what is in your router, to make sure results aren't different - in case you use a DNS unblocking service to try and watch geoblocked content available in different regions. By blocking Google DNS (and in some case OpenDNS as well) some clients can be fooled to believe they are in the right region to access some content.

 

Some routers allow you to intercept all DNS traffic, some will not in which case you can use Static Routes to direct the traffic somewhere else, effectively blocking requests.




Backblaze cloud backup (personal and business) | Geekzone broadband switch | Amazon (Geekzone aff) | MightyApe (Geekzone aff)

 

My technology disclosure | Business Transformation | Enterprise Content Management | Customer Relationship Management | Sharesies investment fund

 
 
 
 


586 posts

Ultimate Geek
+1 received by user: 115


  # 2027818 3-Jun-2018 14:35
Send private message quote this post

freitasm:

 

Some apps (such as Netflix) will do a DNS request to Google DNS regardless of what is in your router, to make sure results aren't different - in case you use a DNS unblocking service to try and watch geoblocked content available in different regions.

 

Ok, understood. I don't use Netflix but in that case it makes sense. I was too much on the server fooling side ;-)




No backup, no pity. Anyway, RAID isn't one.



Mr Snotty
8602 posts

Uber Geek
+1 received by user: 4500

Moderator
Trusted
Lifetime subscriber

  # 2029640 5-Jun-2018 09:46
Send private message quote this post

@rb99 Sorry didn't see this until now. Did you manage to get the D-NAT rules sorted?

 

I don't have the router anymore but @Dratsab has this configured on his from memory can likely share some screenshots.




Michael Murphy | https://murfy.nz
A quick guide to picking the right ISP | The Router GuideCommunity UniFi Cloud Controller | Ubiquiti Edgerouter Tutorial

1228 posts

Uber Geek
+1 received by user: 246

Subscriber

  # 2029643 5-Jun-2018 09:52
Send private message quote this post

michaelmurfy:

 

@rb99 Sorry didn't see this until now. Did you manage to get the D-NAT rules sorted?

 

I don't have the router anymore but @Dratsab has this configured on his from memory can likely share some screenshots.

 

 

Thanks for your reply. Any help with settings would be appreciated if possible. Its not sorted yet but I've been using the old Asus over the long weekend as any fiddling wouldn't have been appreciated. Will also be using the Asus today as the midgets are still using it today but hopefully I can hook up the Grandstream tomorrow.

 

So yes, if there are any screenshots / suggestions lying about it would be really nice thanks.




rb99

3297 posts

Uber Geek
+1 received by user: 1081

Trusted
Lifetime subscriber

  # 2029937 5-Jun-2018 17:52
Send private message quote this post

@rb99 - I only have one DNAT rule set up. You do this under Firewall\Advanced. Easy rule to set up - simply replace the x's with the main IP address you use for your DNS provider.

 

 

EDIT: The things that's missing from the screen shot is setting your destination port to 53.

1228 posts

Uber Geek
+1 received by user: 246

Subscriber

  # 2030028 5-Jun-2018 19:17
Send private message quote this post

Dratsab:

 

@rb99 - I only have one DNAT rule set up. You do this under Firewall\Advanced. Easy rule to set up - simply replace the x's with the main IP address you use for your DNS provider.

 

 

EDIT: The things that's missing from the screen shot is setting your destination port to 53.

 

 

Thanks. So like you say xxx.... wouldn't be 192.168.... but DNS provider. Doesn't the DNS provider supply an IP and a second backup ?

 

Would you happen to know how to set destination port to 53. Maybe it'll be really obvious but unfortunately few things seem to be obvious to me...




rb99

1228 posts

Uber Geek
+1 received by user: 246

Subscriber

  # 2030814 6-Jun-2018 13:34
Send private message quote this post

Would you know if I use this port forwarding for the Port 53 thing ? If so, would you happen to know what to put where please ?

 

 

 




rb99

BDFL - Memuneh
63338 posts

Uber Geek
+1 received by user: 13859

Administrator
Trusted
Geekzone
Lifetime subscriber

  # 2030831 6-Jun-2018 13:52
One person supports this post
Send private message quote this post

You should never forward port 53 from WAN to anywhere inside your network.




Backblaze cloud backup (personal and business) | Geekzone broadband switch | Amazon (Geekzone aff) | MightyApe (Geekzone aff)

 

My technology disclosure | Business Transformation | Enterprise Content Management | Customer Relationship Management | Sharesies investment fund

3297 posts

Uber Geek
+1 received by user: 1081

Trusted
Lifetime subscriber

  # 2031016 6-Jun-2018 19:19
Send private message quote this post

rb99: Thanks. So like you say xxx.... wouldn't be 192.168.... but DNS provider. Doesn't the DNS provider supply an IP and a second backup ? 

 

Correct - not 192.168... In general, DNS providers have a series of DNS IP's. Just point at the main one you'd be using.

 

rb99: Would you happen to know how to set destination port to 53. Maybe it'll be really obvious but unfortunately few things seem to be obvious to me...

 

When you hit the Add button on the DNAT page, you'll see a number of onscreen boxes into which you will type various bits of information. Port number is one of those.

 

In relation to your other post regarding port forwarding, I have no need for it so have no port forwards at all set up.

1228 posts

Uber Geek
+1 received by user: 246

Subscriber

  # 2031073 6-Jun-2018 20:56
Send private message quote this post

Dratsab:

 

rb99: Thanks. So like you say xxx.... wouldn't be 192.168.... but DNS provider. Doesn't the DNS provider supply an IP and a second backup ? 

 

Correct - not 192.168... In general, DNS providers have a series of DNS IP's. Just point at the main one you'd be using.

 

rb99: Would you happen to know how to set destination port to 53. Maybe it'll be really obvious but unfortunately few things seem to be obvious to me...

 

When you hit the Add button on the DNAT page, you'll see a number of onscreen boxes into which you will type various bits of information. Port number is one of those.

 

In relation to your other post regarding port forwarding, I have no need for it so have no port forwards at all set up.

 

 

Thanks for the info. Hopefully will be able to have a go tomorrow. Sorry for being such a pest smile




rb99

1228 posts

Uber Geek
+1 received by user: 246

Subscriber

  # 2031353 7-Jun-2018 11:40
Send private message quote this post

Dratsab:

 

rb99: Thanks. So like you say xxx.... wouldn't be 192.168.... but DNS provider. Doesn't the DNS provider supply an IP and a second backup ? 

 

Correct - not 192.168... In general, DNS providers have a series of DNS IP's. Just point at the main one you'd be using.

 

rb99: Would you happen to know how to set destination port to 53. Maybe it'll be really obvious but unfortunately few things seem to be obvious to me...

 

When you hit the Add button on the DNAT page, you'll see a number of onscreen boxes into which you will type various bits of information. Port number is one of those.

 

In relation to your other post regarding port forwarding, I have no need for it so have no port forwards at all set up.

 

 

Would you (or anyone) happen to know if these are correct please -

 

 

 

especially should that blank stuff be blank ? Thanks again.




rb99

1228 posts

Uber Geek
+1 received by user: 246

Subscriber

  # 2031459 7-Jun-2018 15:13
Send private message quote this post

Also, If I wanted to do static routes, so that I can put the DNS into the device (PC, Fire TV, etc) instead of the router, would anyone know if this might be correct

 

 

Am particularly wondering about next hop - on this website https://dns4me.net/guides/routers/static-routes/netgear

 

it seems some of the routers mentioned want it to be the router itself, and others say anything but the router. Confused (again).




rb99



Mr Snotty
8602 posts

Uber Geek
+1 received by user: 4500

Moderator
Trusted
Lifetime subscriber

  # 2031469 7-Jun-2018 15:30
Send private message quote this post

@rb99 You don't need static routes if you've got the D-NAT rule configured. Basically the idea behind D-NAT is it redirects all DNS traffic either back to your router (192.168.x.x) or to your DNS provider.

 

Under "Rewrite IP" in your D-NAT rule put your routers IP. Click enabled, save, restart services and done. Don't mess around with static routes.




Michael Murphy | https://murfy.nz
A quick guide to picking the right ISP | The Router GuideCommunity UniFi Cloud Controller | Ubiquiti Edgerouter Tutorial

1228 posts

Uber Geek
+1 received by user: 246

Subscriber

  # 2031484 7-Jun-2018 15:42
Send private message quote this post

michaelmurfy:

 

@rb99 You don't need static routes if you've got the D-NAT rule configured. Basically the idea behind D-NAT is it redirects all DNS traffic either back to your router (192.168.x.x) or to your DNS provider.

 

Under "Rewrite IP" in your D-NAT rule put your routers IP. Click enabled, save, restart services and done. Don't mess around with static routes.

 

 

Well not sure if I've got D-NAT configured correctly yet but anyway, am just trying to have options. Far as I can tell doing this D-NAT thing sets up everything on the router, which is easy and quick (well if you know what you're doing). OTOH the static routes thing on the router means I can block using Google something on the router but I can set up say the upstairs Fire TV to access 'something overseas that streams' but leave the downstairs Fire TV to access the same 'something that streams but local'.

 

I'm (hopefully) not asking for advice from you guys and then ignoring it, but like I say, would like to be able to have both setup correctly (though not at the same time) so I have the option to swap, and having it written down might help others as well.

 

Edit: also am confused as you said put the routers IP (192.whatever I presume) under 'Rewrite IP' but Dratsab to put the DNS services IP (101.etc) under 'Rewrite IP'




rb99

1 | ... | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17
Filter this topic showing only the reply marked as answer View this topic in a long page with up to 500 replies per page Create new topic



Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Video game market in New Zealand passes half billion dollar mark
Posted 24-May-2019 16:15

WLG-X festival to celebrate creativity and innovation
Posted 22-May-2019 17:53

HPE to acquire supercomputing leader Cray
Posted 20-May-2019 11:07

Techweek starting around NZ today
Posted 20-May-2019 09:52

Porirua City Council first to adopt new council software solution Datascape
Posted 15-May-2019 12:00

New survey provides insight into schools' technology challenges and plans
Posted 15-May-2019 09:30

Apple Music now available on Alexa devices in Australia and New Zealand
Posted 15-May-2019 09:11

Make a stand against cyberbullying this Pink Shirt Day
Posted 14-May-2019 20:23

Samsung first TV manufacturer to launch the Apple TV App and Airplay 2
Posted 14-May-2019 20:11

Vodafone New Zealand sold
Posted 14-May-2019 07:25

Kordia boosts cloud performance with locally-hosted Microsoft Azure ExpressRoute
Posted 8-May-2019 10:25

Microsoft Azure ExpressRoute in New Zealand opens up faster, more secure internet for Kiwi businesses
Posted 8-May-2019 09:39

Vocus Communications to deliver Microsoft Azure Cloud Solutions through Azure ExpressRoute
Posted 8-May-2019 09:25

Independent NZ feature film #statusPending to premiere during WLG-X
Posted 6-May-2019 22:13

The ultimate dog photoshoot with Nokia 9 PureView #ForgottenDogsofInstagram
Posted 6-May-2019 09:41


Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron


Updates »

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.