Clik here to view.
Re: IPSec Certificate VPN "Road Warrior" config examples?
Thanks, I think I get whats required now. Kinda new to all these. I thought some address group was required, but really it's just the ip subnet that assigned for ipsec and my lan subnet.
View ArticleRe: EdgeOS (ER-X) IPsec & IKEv2 Feature Requests
I am not using the WebUI to setup site-to-site tunnels as it does not handle certificates and requires things like the pre-shared key, the local-address to be set to an IP or any (while "default" is a...
View ArticleRe: ER-8 with 1.8.5: Hairpin with Isolated VLANs - Help Please!
16again wrote:Ditch the red rules.For each portmapping , add a rule allowing it to <IFACE>_IN ruleset.Note: destination address/port are local addresses, even when client is connecting to WAN IP....
View ArticleRe: EdgeOS (ER-X) IPsec & IKEv2 Feature Requests
psi-jack wrote:This is two tunnels, not one tunnel. set vpn ipsec site-to-site peer a.b.c.d tunnel 1 local prefix 0.0.0.0/0 This is one tunnel, but potentially can make the other endpoint route all...
View ArticleRe: Help turning VLANs into true "silos?"
I watched your videos, , thanks! After setting up your VLAN isolation, have you done anything with NAT hairpinning/loopback? I'm having an issue with devices on the isolated VLANs accessing some...
View ArticleRe: Add VLAN tagging to Load-balance wizard?
Awesome, looking forward to it =). As a stop-gap measure, I looked at the configuration generated from the Basic Wizard (with VLAN), and add it to the Dual-WAN wizard myself. The...
View ArticlePPPoE Connection (with VLAN Tag) - Dynamic DNS returns "noconnect" on pppoe,...
I have a EdgeRouter, and I used the "Basic Setup" wizard to configure a PPPoE connection on eth0. I'm trying to setup a Dynamic DNS service using DynDNS, via the GUI. This is the output: ubnt@ubnt#...
View ArticleTwo EdgeMAX PoE5s, one DNAT works , the other one DNAT does not work.
Have two PoE5s, identical configurations, router A and router B. configured router A firewall/NAT to forward port to internal server using DNAT and firewall rules. It works, I have Internet...
View ArticleRe: ERLite-3 Forwarding port 8443 on router but only to certain subnet
Config for GUI should work. From remote host, there's no redirect from port 80, so you have to type entire URL yourself:https://<ER-WAN-IP>:8443GUI is only TCP, so specifying TCP instead of...
View ArticleRe: EdgeOS (ER-X) IPsec & IKEv2 Feature Requests
psi-jack wrote:set vpn ipsec site-to-site peer a.b.c.d tunnel 1 local prefix 172.17.0.0/16 set vpn ipsec site-to-site peer a.b.c.d tunnel 2 local prefix 10.240.0.0/24 This is two tunnels, not one...
View ArticleRe: IPv6 without messing up config
Sefirosu wrote: Mine only gives out a /56 prefix that the router assigns to interfaces and then devices. I believe this is currently the standard with ISPs but yours may be doing things differently…To...
View ArticleRe: ER-8 with 1.8.5: Hairpin with Isolated VLANs - Help Please!
,Your ISOLATE_GUEST_VLAN_IN rule 20 looks fine. But your NAT setup isn'tYou're using the portmap "wizard"It only places dNAT rules on WAN interface, they only work for packets entering WAN...
View ArticleCan Traffic Analysis work when setting up ER-X as a simple layer-2 switch?
I tried setting up ER-X as switch via Setup Wizards, using firmware 1.9.0, but could get Traffic Analysis function working. By using WAN+LAN configuration it works. Is it a limitation or did I miss...
View ArticleRe: Can Traffic Analysis work when setting up ER-X as a simple layer-2 switch?
My assumption is, traffic analysis only monitors layer3 interfaces. (=interfaces having an IP address, traffic through them is routed instead of switched)
View ArticleWill this work? 3 WANS
I want to send 3 WANs from one location to another then disperse them between customers evenly. This is how my setup will work and I'm wondering if I need to change anything and would really appreciate...
View ArticleClik here to view.
Re: Will this work? 3 WANS
Sort of a rough uncompleted diagra, If anyone has any good software for drawing diagrams that would be great
View ArticleRe: Not getting local DNS to work properly
I'm thinking it's maybe a firewall rule. I'm not sure. It's just strange that all my network traffic goes through the router and can resolve anything, but nothing from the router itself can except for...
View ArticleRe: Slow WAN gigabit speeds on ER-X
Actually, I have a 1G FTTH WAN (to ISP modem-ethernet-er-x-sfp). With ERX firmware 1.9.0, on a LAN computer,this is the speed that I got..... Simple config with few generic firewall rules. Seems the...
View ArticleAndroid Device cannot connect to internet?
My setup is anEdgemax router -> My PCport 0 -> modemport 1 -> wifi router 1port 2 -> wifi vpn routerport 3 -> My PCport 4 -> N/A So i get internet on my pc from all ports/routers. I...
View Article
