Re: Mac address filtering
Nime wrote:...what i want to achieve is to allow known Mac addresses and deny all MAC address that are not known.In this case you should create firewall rule with default-action drop and rules that...
View ArticleClik here to view.
Re: Issues with edgerouter erpoe-5
blackslash wrote:well I narrowed down and found that it was due to my stupid ISP locking the mac address of the router to the one which they supplied and they are refusing to provision a new address...
View ArticleEdgeRouter X - Egress Filtering
After being recommended to the EdgeRouter X from the Security Now podcast I have finally got around to getting the device setup after moving ISP. The new ISP router is acting as a modem and has the WAN...
View ArticleQoS shaper and class bandwidth
I was hoping to get a clarification on how the QoS shaper works. I'm starting from the example provided in this document....
View ArticleRe: DHCP on lease script
Old thread, I know. But I came across this and it helped me figure out (thanks!) how to get notified of any time a new device (MAC) gets added to my network. I didn't really see any other comprehensive...
View ArticleCannot open port 9 on ERPOe5
Hi,I am trying to open port 9 to implement WakeOnLan in my network. I use Firewall/NAT>>>porforwarding to the main computer in the LAN (192.168.1.6), However I cannot manage to open it. I...
View ArticleRe: VLAN with an unmanaged switch
So I've got everything set up to test the VLAN functionality. I have a VLAN set up on Eth0 with tag 102. Eth0 is then plugged in to a Netgear GS305 dumb switch which it then plugged into my laptop with...
View ArticleRe: EdgeRouter X - Egress Filtering
Create a LAN_IN firewall ruleset default accept, drop state invalid, drop destination group incorrect addresses.
View ArticleRe: Edgemax with Google Fiber and TV
Hi Atlantisman, I have successfully swapped my Google box for an ERL thanks to your initial drafts. Thank you for paving the way. I remember last year when I was scouring through message boards I came...
View ArticleRe: Default static next-hop-interface route not added after interface change
Thanks, sounds like a nice solution. I'm going to test it soon. I'll post the results.
View ArticleRe: VLAN with an unmanaged switch
for some value of "working", anyway. Using a dumb switch with VLANs is generally a recipe for things breaking horribly -- also, ALL devices you plan on using MUST be able to handle VLANs now, since the...
View ArticleRe: OpenVPN - can't ping subnet at one ER-X 1.9.1
Tried a few things with no luck still: On server (Site A):set interfaces openvpn vtun0 openvpn-option --client-to-client On Client (Site B): set interfaces openvpn vtun0 firewall in name vtun0_IN set...
View ArticleRe: Support for BGP Large communities
FYI: https://twitter.com/JobSnijders/status/817027396440391680
View ArticleRe: How To: Install BIND DNS Server on EdgeRouter
Well you can wait..... I think that you may be waiting for some time! But you could compile 9.11.0 and install from source. Since Debian version 9.9.5 works in VyOS albeit with INSIST assertion...
View ArticleRe: Load Balance, Fail over Dual WAN same gateway / subnet
Hi, What i ended up doing (i couldve just go back to PFsense) was putting a small router infront of the second WANhttps://www.gl-inet.com/so my config is WAN1 = -> WAN1 ModemWAN2 = Mini router...
View ArticleRe: VLAN with an unmanaged switch
I do understand that all devices downstream need to support VLANs, but I believe that should be fine. Thank you for your help, everyone, I'm just going to try things out and see if they don't break...
View ArticleDynamic DNS using DNYDNS not updating - Solved
I have three different hosts at DYNDNS that recently stopped updating via my ERLs. I couldn't trace back exactly when they stopped. It might have been with the 1.9.1 alphas or before. Anyway, I...
View ArticleRe: OpenVPN - can't ping subnet at one ER-X 1.9.1
Tried configuring a different ER-X as a client as well (this one has no LB and using DHCP single WAN). Is this the default behavior of the openvpn client? Site to Site isn't an option since the...
View Article