/YazFi

Feature expansion of guest WiFi networks on AsusWRT, including, but not limited to, SSID -> VPN and separate subnets per network

Primary LanguageShellGNU General Public License v3.0GPL-3.0

YazFi - enhanced AsusWRT-Merlin Guest WiFi Networks

Codacy Badge Build Status

v3.1.0

Updated on 2019-02-24

About

Feature expansion of guest WiFi networks on AsusWRT-Merlin, including, but not limited to:

  • Dedicated VPN WiFi networks
  • Separate subnets for organisation of devices
  • Restrict guests to only contact router for ICMP, DHCP, DNS, NTP and NetBIOS
  • Allow guest networks to make use of pixelserv-tls (if installed)
  • Allow guests to use a local DNS server
  • Extend DNS Filter to guest networks

YazFi is free to use under the GNU General Public License version 3 (GPL 3.0).

Menu UI

Donations

Love the script and want to support future development? Any and all donations gratefully received!

PayPal donation

Supported Models

Models

All modes supported by Asuswrt-Merlin. Models confirmed to work are below:

  • RT-AC56U
  • RT-AC66U
  • RT-AC68U
  • RT-AC86U
  • RT-AC87U (2.4GHz guests only)
  • RT-AC88U
  • RT-AC3100
  • RT-AC3200
  • RT-AC5300
  • RT-AX88U (clientisolation=false may be required)

Firmware versions

You must be running firmware no older than:

Installation

Using your preferred SSH client/terminal, copy and paste the following command, then press Enter:

/usr/sbin/curl --retry 3 "https://raw.githubusercontent.com/jackyaz/YazFi/master/YazFi.sh" -o "/jffs/scripts/YazFi" && chmod 0755 /jffs/scripts/YazFi && /jffs/scripts/YazFi install

Please then follow instructions shown on-screen. An explanation of the settings is provided in the FAQs

Usage

To launch the YazFi menu after installation, use:

YazFi

If you do not have Entware installed, you will need to use the full path:

/jffs/scripts/YazFi

Updating

Launch YazFi and select option 3

Help

Please post about any issues and problems here: YazFi on SNBForums

FAQs

I haven't used scripts before on AsusWRT-Merlin

If this is the first time you are using scripts, don't panic! In your router's WebUI, go to the Administration area of the left menu, and then the System tab. Set Enable JFFS custom scripts and configs to Yes.

Further reading about scripts is available here: AsusWRT-Merlin User-scripts

WebUI enable scripts

Explanation of YazFi settings

wl01_ENABLED

Enable YazFi for this Guest Network (true/false)

wl01_IPADDR

IP address/subnet to use for Guest Network

wl01_DHCPSTART

Start of DHCP pool (2-253)

wl01_DHCPEND

End of DHCP pool (3-254)

wl01_DNS1

IP address for primary DNS resolver

wl01_DNS2

IP address for secondary DNS resolver

wl01_FORCEDNS

Should Guest Network DNS requests be forced/redirected to DNS1? (true/false) N.B. This setting is ignored if sending to VPN, and VPN Client's DNS configuration is Exclusive

wl01_REDIRECTALLTOVPN

Should Guest Network traffic be sent via VPN? (true/false)

wl01_VPNCLIENTNUMBER

The number of the VPN Client to send traffic through (1-5)

wl01_LANACCESS

Should Guest Network traffic have unrestricted access to the LAN? (true/false)

wl01_CLIENTISOLATION

Should Guest Network radio prevent clients from talking to each other? (true/false)