Re: Suspicious ssh activity
Yeah, moving ports is not as good as it seems at first glance, even though it is often recommended even by IT security. The most common argument why to move the ports is "less attacks in log". Well, I...
View ArticleRe: ERlite-3 can't login
Did you update the OS or change the config before it died? Maybe your device is kind of bricked.. You might want to check these Links: HowTo_Reinstall_EdgeOSLastResortRecovery Do it on your own risk...
View ArticleRe: ER-X v1.9.0 Some devices get IP others don't
DJMartin wrote:I do not understand where you feel I was disrespectful to employees or others.I'm guessing the comments along the lines of "Please reread my post and understand what it says.", and...
View ArticleRe: Unable to use IPsec over IPv6 [Bug]
I discovered the cause. /opt/vyatta/sbin/vpn-config.pl:534-539This code causes,if (!defined($leftsubnet_proto)) { $leftsubnet_proto = 0; } if (!defined($remotesubnet_proto)) { $remotesubnet_proto = 0;...
View ArticleRe: Help needed setting up an ERL firewall
Done. Still no change. I can still access the login page via my public IP. Does the order of the rules in the ruleset matter? Also what bearing would ticking the 'new' box in an inbound have?
View ArticleRe: Dual WAN failback not working on ER-X with v1.9.0
Adding conntrack -Fto my existing transition script solved the problem for me, but a more obvious way of toggling it would be nice.
View ArticleRe: Help needed setting up an ERL firewall
How are you testing the firewalls? From inside, or from outside (e.g. a phone connected to cell coverage)? If from inside, and you're just typing in your public IP address (or dyndns hostname), your...
View ArticleRe: ERX poe watchdog
It could be the IP address of the device that's being powered, or some other IP address, actually.When the pings fail, the port will be power cycled. Here's some information from the EdgeOS User Guide...
View ArticleRe: how do i import configuration commands?
Compare the output of commands:show configuration show configuration commandsBasically, they're the same, in different format. Now you have a clue how to transform partial config rules in {} format...
View ArticleRe: ERX Slow Download
Thanks, I tried that last night. I also tried setting eth1 & eth2 to 100-full just in case any of them weren't auto negotiating correctly. I saw log-martians was enabled, so I tried disabling it...
View ArticleRe: how do i import configuration commands?
commands aside... lets say i already have a firewall {} configuration preconfigured and stored in a file. without turning this into commands, is it possible to import it apart from copy pasting the...
View ArticleRe: ERX poe watchdog
can i assume that its useful of the poe device is an internet gateway but if the poe powered device is an ap, not too useful, right?
View ArticleRe: ERX poe watchdog
Well, if the UAP has locked up for some reason (which should ultimately be investigated and resolved), a quick 'fix' might be to reboot that AP.Put the IP address of the AP in Ping Watchdog...if the AP...
View ArticleRe: ERX Slow Download
check the output of "show ubnt offload" ... it should show that "hwnat" is enabled (if it's not --> configure / set system offload hwnat enable / commit / save / exit). In addition, same device is...
View ArticleCant connect to edgerouter
Hi all,This is my first post with my new Edgerouter Lite that couldnt be able to access it using 192.168.1.1 on port 0. Reset it twice and no successfull. one of the things I found looking into Network...
View ArticleRe: ERX Slow Download
HWNAT was not loaded, but loading it didn't change my download speed. Yes, I'm using the same device for both speedtests. Another interesting thing is that my ping times are unaffected. Speedtest...
View ArticleRe: Cant connect to edgerouter
Configure your computer with a static IP like 192.168.1.10 mask 255.255.255.0Now your PC is set to use DHCP, but without a DHCP server present, the PC automatically generates address in 169.254.x.x...
View ArticleClik here to view.
Re: Help needed setting up an ERL firewall
See I knew I was doing something wrong When my free pentests credits ran out I was doing it internally. I have access now to a PC outside of my house and indeed 15 miles away over Teamviewer. A port...
View ArticleRe: ERX Slow Download
HWNAT disabled shouldn't turn a 35Mb/s link down to 2Mb/s. Don't touch eth1...4 speed/duplex settings, they should automatically negotiate 1G full to your computer Can you try different speedtest sites?
View ArticleRe: how do i import configuration commands?
You can restore the YAML formatted configuration by copying the configuration file to your router, ssh to your router and enter configure mode, then type load /path/to/configurationFile. That will load...
View Article