Re: IPSEC v1.9.0 wont come up
You need to change your peer (Sophos) to send another ID i.e. FQDN. You probably have multiple peers. The PSKs are stored in /etc/ipsec.secrets and this file is evaluated from top to bottom. First ID...
View ArticleRe: all BGP routes become inactive afrer about 12-14 hours period
here is how log looks after reboot.bgp routs are still inactive.(just note. I can delete bgp protocol and configure it again and it will work for 12-14 hours... but i need solution. i cant delete and...
View ArticleRe: IPSEC v1.9.0 wont come up
Yeah the sophos holds me to an IP value only if I say IP it won't let me enter a fqdn.It does have settings for hostname or email also. I tried the "any" on the edge router which couldn't get to work...
View ArticleRe: vlans no internet
firewall { all-ping enable broadcast-ping disable group { network-group fwgroup { description "" network 192.168.2.0/24 network 192.168.30.0/24 network 192.168.40.0/24 } } ipv6-name allow-all-6 {...
View ArticleRe: IPSEC v1.9.0 wont come up
Hostname or e-mail is fine. Both are just a string. You can match it on your ER side. The config with x509 looks something like this site-to-site { peer peer1.mydomain.com { authentication { mode x509...
View ArticleClik here to view.
Re: Affected by "Dirty COW" vulnerability?
sxpert wrote:you guys are all wrong.this vulnerability affects any machine with an open port, including web servers... What make you to believe that you are right? The following article only? sxpert...
View ArticleRe: vlans no internet
meta4 wrote:attached is configThe config you uploaded probably needs to be copied correctly, you can just copy and paste from the "show" command into the forum box that says insert code. Currently...
View ArticleRouter Recommendation
The old D-link router that was around for ten+ years finally died and looking for a new one for the shop. Previously had a Bullet M2 Bridge setup to beam internet from one building to another, and...
View ArticleRe: vlans no internet
meta4 wrote:so ive been pouring through the forums and vyatta documentation and cant seem to find what im doing wrong. i have three vlans VLAN1 (LAN) VLAN2 (visitor wifi) and VLAN3 (IOT wifi). my...
View ArticleRe: vlans no internet
thanks, after reviewing, some of the rules seem to be repeating for whatever reason
View ArticleRe: vlans no internet
created a fw group and added the 3 networks. added the fw group to the source per your recommend. no change. should i reboot after a change like this?
View ArticleRe: vlans no internet
No a reboot is not needed, just the commit. Looking at your config again now.
View ArticleRe: vlans no internet
Also in your masquerade rule, go ahead an explicitly add: protocol allI'm just trying to match a known working config as much as possible, otherwise, I will grab one of the spare ERLs and try loading...
View ArticleRe: vlans no internet
Got it, ignore the other note, looks like you already did that. Make sure if you specify networks in the fwgroup, that you add the .20.0/24 network as well, otherwise the rule will no longer apply.
View ArticleRe: vlans no internet
i should mention my 20. network is on interface eth2 and has been functional (connectivity wise). my two vlans are the networks with issues getting wan connectivity. added .20 to the fw group either...
View ArticleRe: vlans no internet
Yeah no worries, I'll load up a spare tomorrow and see what I can come up with.
View ArticleRe: Antivirus solutions?
What else needs to be added to the stock ER to get antivirus scans working on it? Like Dansguardian relies on Squid proxy for webfiltering. Does any AV solution rely on a blind proxy as well? And if...
View Article