VLAN source routing
I'm trying to understand how vlans can be used on my ERL and am using this as a reference: https://help.ubnt.com/hc/en-us/articles/204952274-EdgeMAX-Policy-based-routing-source-address-based- I don't...
View ArticleRe: Not able to get site to site VPN up
Please post config of 111.111.111.111 and 222.222.222.222 VPN endpoints
View ArticleRe: EdgeMax -> Toughswitch POE -> UVC G3 = speed problems
Tcpdump on the TS-POE doesn't seem to show the switched traffic on any of the ethernet interfaces? I assume because it is done in hardware and never makes it into the OS? I'm searching for a way to...
View ArticleRe: Not able to get site to site VPN up
Hi, Thanks for the follow up. I realized that i had changed the config of one ot the ISP box from bridge to router and i believe that the way i had/have configurer the end points was not compatible......
View ArticleRe: Not able to get site to site VPN up
Hi !I have the same issue, please see below:After reboot both routers VPN connection will restored, but after some time VPN connection will go to down.Please any advice for me to solve my issue. My...
View ArticleRe: VPN Tunnel Down
advdata wrote: ... How can i change from PSK to X509 or RSA on both ends?See RSA authentication tutorial here ->...
View ArticleFail-over config - dropping connection
I have a EdgeRouter Pro I use multi wan as follows: I have 2 ISP connections, one via Fiber (eth0) and one via Cable (eth1)I have configured to loadbalance all traffic except to our external servers...
View ArticleRe: L2TP VPN works fine via Windows 10 but will not work from iPhone or iPad...
When i see the config you've posted,The firewall is good, use should keep it like that.The invalid rule is well behind the established. it means that an invalid packed will be dropped sooner than if it...
View ArticleRe: Problems with L2TP - Client stays connected but can only load limited...
Hello, I tried to lower the MTU in my testing and I applied your commands as well.Seems to be the same problem, first time loading the internal firewall GUI I got just the backgrond, second time just...
View ArticleRe: Problems with L2TP - Client stays connected but can only load limited...
I would like to clarify few things:Which ER model do you use?Which firmware version is installed?Do you observe same issue with different you tried different L2TP clients (windows, linux, android)?Do...
View ArticleRe: Not able to get site to site VPN up
Log from 10.14149.4.9 pavelsmirnovspb@pavelsmirnovspb:~$ sudo swanctl --log07[JOB] deleting half open IKE_SA after timeout14[KNL] creating acquire job for policy 172.16.16.7/32[tcp/39730] ===...
View ArticleRe: NAT Hairpin not working - New EdgeRouter
This is correct. eth1 has a big switch attached to it.eth2 and 3 and 4 are accespoints for PoE.Also tried br0, didin't work.
View ArticleRe: NAT Hairpin not working - New EdgeRouter
Given the setup, looks like you've got an ER-X. Get rid of the bridge, use the hardware switch (switch0). Scratch that, more likely an ER-5. If it is the ER-5, assuming you need everything on the same...
View ArticleRe: Fail-over config - dropping connection
Other than rules 42 and 43 being identical (x.x.114.0/23 = 114.0 to 115.255), I don't see anything amiss in your config snippets. Post the whole thing, so we can take a look and verify there's not...
View ArticleRe: VLAN source routing
it's possible that the VPN server is pushing a route override to you (so that "everything" goes through the VPN). I do that with mine in many cases (but because I'm connecting individual clients back...
View ArticleISP Network over PPPoE - Client Configuration
Hello, a few days ago i ask on another thread here for an isp solution with a good backbone. Now i think i have solution: PPPoE is the answer. But this technique i new for me and actually i don't...
View ArticleJust a dumb newbee
OK folks. This is my first community question so please bare with me as I am VERY new to the use and configuration of the EdgeMAX product line. So let me start with what my intent is to do.I’m a member...
View ArticleRe: Traffic Analysis for number of packets not bytes
For CLI/curses interface, you can try iptraf or iftop. There's nothing built in (nor would I expect there will ever be). Rodney
View ArticleRe: Fail-over config - dropping connection
AS requested: firewall { all-ping enable broadcast-ping disable group { network-group PRIVATE_NETS { network 192.168.0.0/16 network 172.16.0.0/12 network 10.0.0.0/8 } } ipv6-receive-redirects disable...
View Article