OpenDNS parental control w/ Tomato

Discussion in 'Tomato Firmware' started by bilu, Sep 13, 2007.

  1. bilu

    bilu LI Guru Member


    First post on the forum, small intro:

    I bought a Buffalo WHR-G54S, loaded it with Tomato 1.07 based on user feedback (stability, speed, user-friendly, pretty, QoS, handles P2P well and changes max connections easily).

    So far I love both the router and Tomato. Had another wireless router before, a Gigabyte GN-BR01G, cheap router with radio problems (if someone was much closer to the router than you your connection would drop, even if he/she is not in line of sight between you and the router). But the Gigabyte supported DDNS while the default Buffalo firmware (latest version) didn't :eyebrow:

    I'm sharing wireless with my neighbour who's been unemployed for a while and got a job recently. He only knows enough about computers to get into trouble (like installing little spyware-full games) that I end up fixing.

    The Auto DL Hosts File and Install made my life easier by removing popups and spyware. It works so nicely that I even removed Adblock from Firefox (got a lot faster).

    My neighbour has a couple of kids like I do. His are pre-teen, mine are still babies. After finding out how much faster net access I got using OpenDNS (read about it in Tomato's Wikibook) I also found it can provide very effective parental control.
    All it takes is creating an account in OpenDNS, setting up preferences, and updating IP address the same way as for DDNS. If you don't update IP, you loose parental control as soon as your IP changes.

    Read about it here if you're interested:

    To avoid clear-text passing of your OpenDNS account data (any smart kid could change restriction then) they only accept DDNS updates in HTTPS. More info on OpenDNS DDNS usage here. Updates could be done like this:
    Usually no parameter is needed, they don't support the myip parameter and the only require hostname if you use multiple dynamic IP networks. You can also update directly in their page. They're not a DDNS provider, the only use is to keep OpenDNS preferences.

    Right now what's bugging me and stopping this from becoming an effective parental control solution is a way to access HTTPS from within Tomato. It didn't even add to be through ez-ipupdate, wget or curl with SSL support would be enough for a cru job.

    I tried to get them through ipkgs from openwrt and nslug2 repositories, installed on a samba share (just to try, JFFS2 was allways too small for all the required libs) and add the share to PATH and LD_LIBRARY_PATH. Never got past the segmentation fault :frown:

    I don't have the guts to do a Tomato Mod myself, and I want to be able to keep up with updates. I don't want to change DD-WRT ou X-WRT, I'm pretty satisfied with Tomato.

    So, does anyone know how to access HTTPS from CLI on Tomato? I just need to "touch" the URL, don't even need to parse results. This is keeping my Buffalo/Tomato/hosts/OpenDNS solution from becoming perfect :wink:

    Sorry for all the formatting (bold/underline/whatever), it was to make a long post bearable.

    Cheers from Portugal,

    DISCLAIMER: Although this seemed like a commercial, I don't work for OpenDNS. Just want to benefit from the parental control feature :cool:
  2. u3gyxap

    u3gyxap Network Guru Member

    edit: Please disregard my entire post, this is not working with Tomato.
  3. roadkill

    roadkill Super Moderator Staff Member Member

    wget in Tomato 1.07 is a part of BusyBox and doesn't have SSL support
  4. u3gyxap

    u3gyxap Network Guru Member

    Yes, that is why I put the "edit" line in my post :(
    The only work-around that I can think of, is to use a computer to do the job. Add it in the startup and the scheduler, and that should do it.
  5. bilu

    bilu LI Guru Member

    Guess I should have added this to my already large intro: I sold my home computers, me and my wife run dual-boot corporate Windows/ personal Linux on our work laptops. With 2 kids I didn't had much time to maintain them anyway, and selling them made more room for the kids too. I spent most of my time, even at work, in Linux, rarely needing to access my Virtualbox image since I have a lot of Windows apps available through Citrix at work.

    My neighbour has a desktop, it could be possible to add something to his Windows startup. After all, right now parental control is more needed for his kids than mine.

    I'll try this approach until someone gets curl w/ SSL in Tomato. Thank you both.

    EDIT: got curl to work on Windows, requires openssl. Sends cleartext account info in the URL but his kids aren't that smart yet, so I guess It'll do. Thanks again.

    EDIT2: I only have my work laptops, sold my desktops, the only permanent computer on my WLAN is my neighbour's desktop.

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice