One of the networks we manage is being targeted by chinese hackers/spammers (tons of emails, brute force on every service possible, ...). That network is equiped with a RV180W which is sufficient for day to day operations. We decided to implement firewall rules to systematically block every connection originating from chinese networks (lists are available on sites such as : https://www.ip2location.com/free/visitor-blocker) The list contains 7154 IP ranges to block which would be a real pain to add using the web interface.
I then decided to see if it wasn't possible to edit a exported .cfg file to inject the rules directly in a modified file and restore that file which works when .cfg checksum is set to '0'.
So I wrote a little script that converts the chinese ip ranges to the format used in the .cfg file and injected this into the file and then, imported the file (12Mo ...). The router got stuck and needed a manual poweroff-poweron cylce to restart.
My question is : What is the firewall rules quantity limit and/or .cfg file size limit ?
Thanks in advance !!!
BTW, I will be happy to make the script publicly available when those 'problems' will be fixed.
here's what is logged : Tue Apr 9 09:02:13 2019(GMT+0100) [rv180w][Kernel][KERNEL] [ 4542.990000] Out of memory: kill process 6923 (cgi) score 2042 or a child Tue Apr 9 09:02:14 2019(GMT+0100) [rv180w][Kernel][KERNEL] [ 4542.990000] Killed process 6923 (cgi)
Small businesses are facing the realities of the new normal and wondering what are the best ways to monitor, protect, manage and grow. Cisco understands the unique needs of small businesses and is committed to help overcome their top IT challenges. The fi...
What does the new normal mean for small business? Join this CiscoChat to learn how Cisco Designed, the portfolio curated for small business, can help small businesses adapt and thrive through the new normal and beyond.
We'll take your questions live...
Hi, i have an RV130W Wireless VPN router on which contrary to all advertisements i do not have gigabit LAN.The port links state 1000 full duplex however any LAN transfer is capped at about 20MBps, primarily because the router CPU reaches 100%. So this giv...
Join us in an exclusive Cisco Customer Connection briefing for a demonstration on the management capabilities within the Cisco Business Wireless product line for small businesses. For the lone-IT-superman, it is critical that the network products are easy...
This may be a simple question so I hope someone can help. We have several Cisco SG300\500 switches in L2 mode. Each switch has 8 VLANS and VLAN 1 is still native (For now). We do all routing between VLAN's on our firewall. After reading several ...