Re: ErLite-3 IPsec site-to-site slow speeds
did you ever get better IPSec performance from your setup? I've seen people post 50M/bps around the forums over IPSec but NEVER two ERLite-3 facing each other; one or the other is always a...
View ArticleRe: Firewall Cloudkey Portal issue
In that case I think that I can also delete the rules: rule 30 { action accept description HTTPS destination { port 443 } log disable protocol tcp_udp } rule 40 { action accept description HTTP...
View ArticleRe: Need to allow traffic through switch ONLY if initiated from one side but...
Which Ubiquiti product are you talking about?
View ArticleUPNP on load balance / multiple wan
Hi, how do you enable UPNP (or UPNP2) on a load balance / multiple wans network setup? I just want the UPNP requests to be sent to both WAN networks. Thanks
View ArticleRe: Temporary load-balance fix (VPN and L2TP) to add connected routes
You could call /usr/sbin/ubnt-add-connected.pl every 5 minutes directly, but that script is quite CPU heavy to be executed so often (even when not needed). To execute the script on ER-L takes 2.7...
View ArticleClik here to view.
Re: ERLite-3 IPSec VPN throughput issues
bubba198 wrote:@UBNT-stig I've been monitoring this discussion with great interest; if one wants to see near-interface speeds over IPSec what would be the router of choice, barring breaking the bank...
View ArticleRe: Need to allow traffic through switch ONLY if initiated from one side but...
given he's talking about port 52, I'd say an ES-48
View ArticleRe: ERLite-3 IPSec VPN throughput issues
Without breaking the budget ER-L is for now as good as it gets.Some ER-X tests here. If you need better VPN speed you need to consider higher UBNT models. If you need near interface speeds you need to...
View ArticleRe: 1.9 OSPF-4: Detected router with duplicate router ID
Could you please provide your interfaces and OSPF config with IPs modified accordingly?
View ArticleRe: MPLS & BGP VPLS
rebelwireless wrote:Before there was a shortcoming in doing BGP VPLS in that you had to do full-mesh BGP. Has this changed? ie. does edgeos do BGP route reflect? If not, can it peer with a different...
View ArticleRe: [Bug!Bug!!Bug!!!] L2TP VPN connection can't access internal LAN address...
Thanks very much BranoB!
View ArticleRe: VPN between USG and ERL won't stand up due to INVALID_MESSAGE_ID
Awesome thanks for that. Got that to work after a bit of trial and erorr.
View ArticleRe: [Bug!Bug!!Bug!!!] L2TP VPN connection can't access internal LAN address...
Actually, better and more reliable (temporary) solution is HERE.
View ArticleClik here to view.
Re: EdgeRouter setup for Swiss FTTH providers
HiOk sorry I will try to make the thing clear to me better understand Test 1 : Result : Everything is working Test 2 : firewall { all-ping enable broadcast-ping disable group { address-group...
View ArticleRe: EdgeRouter stop working when using IPSEC VPN
I have tried many many times but cannot figure out how to setup a VTI on Fortigate, the only example that I have found about point to point vpn with fortigate using VTI is regarrding Cisco. The...
View Article2 Wan Failover + 2 LAN
hi all, need hel to setup my er-8 for 2 Wan failover + 2 LAN, please help me to config my router Thanks
View ArticleRe: Need to allow traffic through switch ONLY if initiated from one side but...
If you can create an ACL to match the traffic, that can be applied on the switch to control traffic as described. ACLs are applied to a port, but not exactly in the way described. e.g. you can't...
View ArticleRe: Child policy (Different DNS) based on Mac address
You could set a static dhcp address for the phone based on the mac and then setup a nat policy that translates all dns requests (outbound port 53) from that IP to the opendns IP.
View Article
