Quantcast
Channel: All EdgeRouter posts
Viewing all 60861 articles
Browse latest View live

Re: overwhelmed to say the least

October 9, 2016, 8:04 pm
$
0
0

Sorry, again I mispoke.  I was referring to the actual port forwarding I had forwarded ports 1-65535 from WAN eth2 to LAN eth5 now I have corrected it to be only the ports I need to gain OPEN nat on several PS4's behind the 192.168.98.2 Netduma R1 router.  

 Under NAT tab I do have SNAT and DNAT rules but they are but address and interface, no ports involved. 

 

The only reason I chose to use the QoS is to define a bandwidth limit, I have a 100/10Mbps service that I get form 1 cable modem and to split equally I define the eth0 to max of 50/5 and in the past using bufferbloat testing I find the eth1 performs at A+ levels with a little off the topend.  TDS is a VDSL 50/10 and will max out at 56/13 but it's buffer is higher. At 48/9.5 its zero added buffer. 
  Also, I do see it make a difference.  This is my home, we have 7 people living here and always online.  Youtube streamers, gamers, streaming from netflix, hulu, download server constantly running etc.  The main priority is to seperate and conquer everyway possible.  Great equipment. seperate IPs for LAN specific, VLANS to shrink broadcast domains.  ALL OF IT TO INSRE those udp packets get where they are going while everything else is going on.  My benchmark is the latency of my deicated gaming server.  If I can have everything else going on around me and latency doesn't budge games are smooth as butter and everyoneis happy. So we config, load it down and game to test.  

Search

Re: ATT IPv6 6rd with Pace 5268AC and ER X: Help needed for 6rd IPv6 setup

October 9, 2016, 8:16 pm
$
0
0

From what I've read after some research, it should be possible! 

Other people with cisco hardware and even manually were able to establish the 6rd tunnel.

 

I honestly spend well over 3 days on this with almost all combinations I can think of, it's sad that due to the lack of documentation and/or better error messages I will have to drop the Edgerouter. (It's also definitely partially my fault as not being on top of that)

 

If you @kevinm825 or anybody else still have ideas, let me know. But I also found another thread where someone had a similar problem as I had and gave up as the edgerouter couldn't handle the config while his other stuff could ...

 

Thanks for everyones help! It's been much appreciated

Re: Monthly Data Usage Chart?

October 9, 2016, 9:10 pm
$
0
0

Great, I will give this a shot. Thanks for the detailed explanation!

Re: Monthly Data Usage Chart?

October 9, 2016, 9:17 pm
$
0
0

I failed to initially provide the configuration stanza for the scheduled task to back up the database every 8 hours - edited appropriately (it's near the end).

 

Rodney

Re: Access to Draytek Vigor 130 from EdgeRouter Lite 3

October 9, 2016, 9:23 pm

Re: Port forward did not work when IP is behind PIA OpenVPN

October 9, 2016, 10:18 pm
$
0
0

You created port-group "everything except 5000" .

Your alternative idea seems to be apply it on existing firewall modify rule.

And that is also fine for not modifying port5000 traffic

 

But the port group you made isn't used in the modify rule!  Apply it there.

 modify OPENVPN_ROUTE   rule 10 source port port-group SynologyPorts

btw:  haven't my ER up and running to test,  but maybe port command also accepts something like port ! 5000

 

 

Re: Routing to dual WAN connections with 2 VLANs on LAN with an EdgeRouter Lite

October 9, 2016, 10:21 pm
$
0
0

You need to enter the CLI for this .  (or feel comfortable using config tree in GUI, which is basically the same)

Check out KB PBR

Re: upgrade fails from GUI and CLI

October 9, 2016, 10:28 pm
$
0
0



Seems like you deleted all images!  Whatever you do, don't reboot before installing an image. 

Only delete an image if you got both active and backup image installed

 

Try downloading the image with your browser first, and upload it from GUI

Search

Re: DHCP Lease table not updating after enabling dns-masq

October 9, 2016, 10:28 pm

Re: upgrade fails from GUI and CLI

October 9, 2016, 10:41 pm
$
0
0
Oh great so now what I got a brick? I had an edgemax before this and it fried after working for a few years and this one I can't even get to take an update should I return it to amazon for a replacement?

Re: Modified script for showing dnsmasq's DHCP leases

October 9, 2016, 11:10 pm
$
0
0

Sorry to ask but do you know why it isnt working in 1.9? Man Wink

Re: upgrade fails from GUI and CLI

October 9, 2016, 11:17 pm
$
0
0

Try downloading the image with your browser first (to your downloads folder), and on ER system tab use "upload system image"

Re: Instructions for updating DynamicDNS for ChangeIP.com

October 10, 2016, 1:24 am
$
0
0

Thanks for the detailed answer.

I've setup a basic firewall for now and move forward with the other parts of my configuration. Will get back to a more solid Firewall later.


As for ChangeIP all has been working well in the last couple of days.

NAT bypassing Firewall rules

October 10, 2016, 1:39 am
$
0
0

I noticed that NAT rules seem to bypass any firewall (in) rules. I wanted to restrict access to a forwarding to a certain IP set, but even a drop all for the specific port doesn't seem to do anything. I assume this was implemented to make NAT easy to use (not having to build an exception into drop all by default rules), but is there any way to undo this?

Edge Router Lite on PPPoE 1Gb

October 10, 2016, 2:00 am
$
0
0

Hi,

I'm not yet a user of an Edge Router but I want to purchase one soon, but before that I have a few questions:

1. Can I have 1Gb/sec troughtpout  (WAN > LAN) using hardware offload with the router if my WAN connection is PPPoE? considering NAT, firewall rules (not many) etc

2. If I enable hardware offload on the router how many functions will I have then? QOS, packet inspection etc...because I gues not many of them will remain active.

 

Thanks,

     Adrian

Search

Re: dnsmasq and CNAME

October 10, 2016, 2:19 am
$
0
0

options CNAME in Dnsmasq is kinda restrictive in use. You have to satisfy one of the following conditions for a CNAME record to be valid:

 

cname=<cname>,<target>[,<TTL>]
There are significant limitations on the target; it must be a DNS name which is known to dnsmasq from /etc/hosts (or additional hosts files), from DHCP, from --interface-name or from another --cname. If the target does not satisfy this criteria, the whole cname is ignored. The cname must be unique, but it is permissable to have more than one cname pointing to the same target.

 

By default EdgeOS uses a different daemon (Wide-DHCPD ?) to manage DHCP. It's possible to roll DHCP function into Dnsamsq. Then CNAME will work as you've attempted.

 

Alternatively, you can try redefining "<ip address> router.hika1" in a text file and save in /config/user-data. Pass the file to Dnsmasq as option "addn-hosts" with

 

set service dns forwarding options addn-hosts=/config/user-data/hosts.dnsmasq

 

Let us know if this works. Personally I run a dedicate DNS forwarder outside EdgeOS.

Re: [ER-X] random internet dropouts - 1 ER-x + 1 Unifi ACAP-pro

October 10, 2016, 2:31 am
$
0
0

I would take Unifi Pro out of the picture in your problem description unless you meant to say the issue happens over wireless link.

 

When the issue happens next time, plug a PC throught UTP cable into one of the ports that you configured as part of the switch in ER-X. Then try to ping an external host. If it doesn't work, very likely an issue between your ISP and ER-X. If ping works, then move to next.

 

Now, switch your laptop to WiFi in which your laptop connects to ER-X through Unifi Pro. Ping the same external host. If it doesn't work (most likely), it's an issue between ER-X and Unifi Pro. I'm pretty sure many Unifi users in the other sub-forums can help you further from there on.

Re: NAT bypassing Firewall rules

October 10, 2016, 2:44 am
$
0
0

Portforwardings configured in the GUI tab set up firewall rules automatically. If you want to change the behaviour of a portforward remove it and set up a destination NAT in the NAT tab. Afterwards add firewall rules as desired.

Re: NAT bypassing Firewall rules

October 10, 2016, 2:50 am
$
0
0

Actually this is completely unnecessary, I just figured out (again) that the advanced options include "Auto firewall", so you just need to remove that checkbox and you're set.

Re: Routing with pseudo-ethernet

October 10, 2016, 3:35 am
Viewing all 60861 articles
Browse latest View live
Search