Quantcast
Channel: All EdgeRouter posts
Browsing all 60861 articles
Browse latest View live

Re: Hairpin NAT from VLAN1 to VLAN2 (I cannot access my webserver on VLAN2...

 The "missing hairpin masquerade rule" is normally required, to make sure the return packet is also sent to the router.Here you don't need it, because source of the request already is on another VLAN...

View Article



Re: Hairpin NAT from VLAN1 to VLAN2 (I cannot access my webserver on VLAN2...

16again wrote:WAN_IN:  For optimum speed, keep the established/related rule at the top. Change modify rule so it captures entire eth0 address space: rule 20 { action modify description "do NOT load...

View Article

Re: Hairpin NAT from VLAN1 to VLAN2 (I cannot access my webserver on VLAN2...

16again wrote:@dpurgert The "missing hairpin masquerade rule" is normally required, to make sure the return packet is also sent to the router.Here you don't need it, because source of the request...

View Article

ERL Namecheap DDNS Config with PPPoE WAN Interface

I recently configured my ERL WAN Interface as a PPPoE and connected it to the carrier modem (Fiber to Ethernet) directly. Here is a config to update the DDNS for Namecheap Replace including < >...

View Article

Slow ipsec troughput with offload enabled

Hello, I did some very simple tests between my edgerouter lite and a mikrotik x86 server on the other side. My edgerouter lite has a 500/500 fiber link. Mikrotik is gigabit connection. I have...

View Article


Re: Can't access Edgerouter X after WAN + 2LAN2 setup wizard

Hello. I am having the same problem. I am using Windows 10 and I have Verizon Fios as my ISP. I first connected eth0 to my computer Ethernet port and set my computer IP to 192.168.1.4. I was able to...

View Article

Re: Hairpin NAT from VLAN1 to VLAN2 (I cannot access my webserver on VLAN2...

I just added the "hairpin" NAT rules for the Domain Server and the Exchange server to the VLAN2 interface. I can access the Exchange server web page and the essential experience web page through public...

View Article

Re: Hairpin NAT from VLAN1 to VLAN2 (I cannot access my webserver on VLAN2...

 Note, in the modify rule I posted , your ADDRv4_eth0 was replaced by my suggested NETv4_eth0

View Article


Re: Slow ipsec troughput with offload enabled

What's packet size your testing with?  IpSEC can't handle 1500 bytes mtu,  and fragmenting packets needs additional CPU. On live link setting MTU on VTI interface and/or mss-clamp might avoid...

View Article


Re: SNMP monitoring - counter update frequency and value wrapping

Definately using SNMP v2:def getSNMPVal(OID): session = netsnmp.Session( DestHost=snmpTarget, Version=2, Community=snmpCommunity ) vars = netsnmp.VarList( netsnmp.Varbind(OID) )...

View Article

Re: Slow ipsec troughput with offload enabled

My MTU on pppoe0 is 1500 as my ISP supports RFC 4638.  I was using a default tcp iperf:$ iperf -p 5002 -c 1.1.1.1------------------------------------------------------------Client connecting to...

View Article

Re: Hairpin NAT from VLAN1 to VLAN2 (I cannot access my webserver on VLAN2...

16again wrote:@ricklp Note, in the modify rule I posted , your ADDRv4_eth0 was replaced by my suggested NETv4_eth0Can that be set in the gui? if so where? Thanks,

View Article

Re: Slow ipsec troughput with offload enabled

I added:# show firewall options mss-clamp { interface-type tun mss 1380 }I can't use VTI as mikrotik don't support it. After commit and sudo ipsec restart, I didn't see any difference on my current...

View Article


Re: Alert:iptables: Index of deletion too big.

I ran into this same issue today also. What I did was created all my NAT rules hitting save after each new NAT rule I created. Then I went to reorder my DNATs as they were not in the order I wanted...

View Article

How to achieve this with EdgeRouter X and Pro ?

Lets say, you have 10 wireless towers in a city connected over L2 network path converging to your central office EdgeSwitch and then to EdgeRouter PRO which is currently acting as a central PPPoE...

View Article


Re: Can't get traffic on site to site VPN

ok, I'll add the first 2 rules. For the second 2 rules, I'm surprised that this is needed. The two ERs are replacing 2 Peplink routers with a VPN between them and i never needed any change on any PC....

View Article

Re: Can't get traffic on site to site VPN

Well, maybe I should have read better the last sentence : If the gateway on the PC is the .1 router then all good, and it is the case for all connections I use, so I should be good to go. Right now I...

View Article


Re: Slow ipsec troughput with offload enabled

I don't see your entire config, but doubt you're using TUN interface.test with mss-clamp on all interface types, or on iperf , specify lower MTU

View Article

Re: Slow ipsec troughput with offload enabled

I have a GRE tunnel inside IPSec, that should be a TUN interface. Using --print_mss option on iperf, it shows this:[ 3] MSS size 1354 bytes (MTU 1394 bytes, unknown interface) My GRE tunnel, has MTU of...

View Article

edgepoe -5 with ac pro and outdoor +

setup was done on :off the grid farm. -power is by solar or generator. -Internet souce is by satillite. There is no cell reception or spotty.edge router poe 5, ac pro, outdoor + set it up edge poe is...

View Article
Browsing all 60861 articles
Browse latest View live




Latest Images