04-09-2019 12:54 AM - edited 04-09-2019 01:04 AM
Hi Community !
One of the networks we manage is being targeted by chinese hackers/spammers (tons of emails, brute force on every service possible, ...).
That network is equiped with a RV180W which is sufficient for day to day operations.
We decided to implement firewall rules to systematically block every connection originating from chinese networks (lists are available on sites such as : https://www.ip2location.com/free/visitor-blocker)
The list contains 7154 IP ranges to block which would be a real pain to add using the web interface.
I then decided to see if it wasn't possible to edit a exported .cfg file to inject the rules directly in a modified file and restore that file which works when .cfg checksum is set to '0'.
So I wrote a little script that converts the chinese ip ranges to the format used in the .cfg file and injected this into the file and then, imported the file (12Mo ...). The router got stuck and needed a manual poweroff-poweron cylce to restart.
My question is : What is the firewall rules quantity limit and/or .cfg file size limit ?
Thanks in advance !!!
BTW, I will be happy to make the script publicly available when those 'problems' will be fixed.
04-09-2019 01:03 AM
04-09-2019 08:12 AM - edited 04-09-2019 08:12 AM
Removing from the list networks with ranges smaller than 2048 nodes suppressed the 'out of memory' problem.
I now have 2586 Firewall rules :)
But I can't add any, using the web gui, I get a 'Can't add configuration to this table. Maximum limit reached.' error, what is that limit, is there something that can be done ?
04-09-2019 09:56 AM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide