Hi
Should my OpenWrt router look like this?
Seems like a lot of connections when only my phone, wife's phone and TV are on the network..
Scheduled Maintenance: We are aware of an issue with Google, AOL, and Yahoo services as email providers which are blocking new registrations. We are trying to fix the issue and we have several internal and external support tickets in process to resolve the issue. Please see: viewtopic.php?t=158230
Many connections on my OpenWrt router
-
- Posts: 2
- Joined: 2022-11-26 08:41
-
- df -h | grep > 20TiB
- Posts: 1418
- Joined: 2012-10-06 05:31
- Location: /dev/chair
- Has thanked: 80 times
- Been thanked: 191 times
Re: Many connections on my OpenWrt router
In today's internet obesity epidemic, where what appears to be a single web page often pulls content from hundreds of other domains, then runs a bunch of javascript connecting to even more, this is (infortunately IMO) completely normal.DebbieMebbie wrote: ↑2023-01-26 19:44Seems like a lot of connections when only my phone, wife's phone and TV are on the network..
Even without any browsers open, unless you have been extremely diligent with your application selection those devices will all be phoning-home, preloading ads, checking for updates, and holding connections open for things like messaging, notifications and the like.
Once is happenstance. Twice is coincidence. Three times is enemy action. Four times is Official GNOME Policy.
- canci
- Global Moderator
- Posts: 2502
- Joined: 2006-09-24 11:28
- Has thanked: 136 times
- Been thanked: 136 times
Re: Many connections on my OpenWrt router
What steve said...
Less is of course more. Opting for fewer services used is always a good decision. Using a rooted custom image like LineageOS instead of Android, using as few apps as possible, using a dumb TV instead of a smart one and watching more content from public broadcasters rather than commercial ones that have an incentive to let your TV phone home all the time.
But since you're using OpenWRT, you could look into blocking unnecessary connections with Pi-Hole:
https://forum.openwrt.org/t/running-pih ... ces/108144
Of course, according to this link, this might be a bit more difficult:
https://labzilla.io/blog/force-dns-pihole
Less is of course more. Opting for fewer services used is always a good decision. Using a rooted custom image like LineageOS instead of Android, using as few apps as possible, using a dumb TV instead of a smart one and watching more content from public broadcasters rather than commercial ones that have an incentive to let your TV phone home all the time.
But since you're using OpenWRT, you could look into blocking unnecessary connections with Pi-Hole:
https://forum.openwrt.org/t/running-pih ... ces/108144
Of course, according to this link, this might be a bit more difficult:
https://labzilla.io/blog/force-dns-pihole
Nearly 70% of smart TVs and 46% of game consoles were found to contain hardcoded DNS settings - allowing them to simply ignore your local network’s DNS server entirely. On average, Smart TVs generate an average of 60 megabytes of outgoing Internet traffic per day, all the while bypassing tools like PiHole.
Stable / Asus VivoBook X421DA / AMD Ryzen 7 3700U / Radeon Vega Mobile Gfx (Picasso) / 8 GB RAM / 512GB NVMe
READ THIS:
* How to Post a Thread Here
* Other Tips and Great Resources
READ THIS:
* How to Post a Thread Here
* Other Tips and Great Resources
- kent_dorfman766
- Posts: 540
- Joined: 2022-12-16 06:34
- Location: socialist states of america
- Has thanked: 59 times
- Been thanked: 70 times
Re: Many connections on my OpenWrt router
these "phone home" and spyware in apps are why it's a good idea to add a group/owner drop rule to iptables and run suspect apps under that group.
something like a command no-internet my_suspect_program that simply runs the app under a group that doesn't have internet permissions (actually done thru the sg command), via iptable rules such as
-A OUTPUT -d 10.0.0.0/8 -m owner --gid-owner 500 -j ACCEPT
-A OUTPUT -m owner --gid-owner 500 -j DROP
something like a command no-internet my_suspect_program that simply runs the app under a group that doesn't have internet permissions (actually done thru the sg command), via iptable rules such as
-A OUTPUT -d 10.0.0.0/8 -m owner --gid-owner 500 -j ACCEPT
-A OUTPUT -m owner --gid-owner 500 -j DROP
-
- df -h | grep > 20TiB
- Posts: 1418
- Joined: 2012-10-06 05:31
- Location: /dev/chair
- Has thanked: 80 times
- Been thanked: 191 times
Re: Many connections on my OpenWrt router
Nothing a good perimeter firewall and/or vlans can't solve. Personally, I drop all outgoing DNS not originating from my local DNS server and all connections to known DoH (apt name IMO) servers, and anything I don't trust goes in an isolated "IoT garbage" VLAN.
If this BS gets any worse DNS blacklists will have to become become firewall drop rules, but for now the above works pretty well.
Once is happenstance. Twice is coincidence. Three times is enemy action. Four times is Official GNOME Policy.