Re: VLAN Routing on EdgeRouter
Camera switch ports should be untagged 100 , instead of tagged 100. As soon as you can ping the cameras, firewall rules enter the picture.Generic solution:Add a network address-group RFC1918, add...
View ArticleRe: 100% CPU with GRE tunnel L3
Someone could help me to define correct values? i'm not really friendly with that, maybe any hint? Thank you in advance !
View ArticleWhy isn't destination MAC address an option in Rule Configuration?
I set up a LAN_IN ruleset which by default accepts everything. Then, to block defiant teen from accessing the internet, I added two rules which blocks based on the source MAC of his phone and his PC....
View ArticleRe: edgerouter er-8 sends ip over wan from DHCP server
I wish that was a possibility, but it ain't. Besides that, the problem still remains. It just shouldn't be possible in the first place.
View ArticleRe: How to make IPv6 DNS requests to use my preferred IPv6 DNS servers on...
Thanks for your suggestion. I think it is working the way I wanted now. My ultimate goal is actually have all IPv4 and IPv6 DNS requests directed to pi-hole, an ad blocker/DNS forwarder. ubnt@ubnt:~$...
View ArticleRe: No IPv6 GUI Support
Not sure I follow. That entire post is about older versions of EdgeOS. As I noted above you do not need to use the CLI. The BUI has a tab called 'Config Tree' where you can configure everything you...
View ArticleRe: Comcast IPv6 issues when hwnat enabled on ER-X
I am on firmware 1.9.1.1 and enabled hwnat for the first time yesterday. So far so good, I have 3 VLANs, all devices are getting IPv6 addresses and pass the Comcast's IPv6 test. Just let me know if you...
View ArticleForum BUG: attaching config file silently failed, post gone?
Hi! I tried to attach my sanitized config file to a post I created, which silently failed. When a poster made me notice the attachment was missing, I tried to edit my post to attach it. Now, the post...
View ArticleRe: Forum BUG: attaching config file silently failed, post gone?
OK, it attached with .txt, let's try without. Nope, filename config.boot_sanitized won't attach... The form just reloads instead of posting :-/
View ArticleRe: Why isn't destination MAC address an option in Rule Configuration?
You would only know the destination MAC address if it is in the same LAN. And if it is in the same LAN, it won't go through the firewall rules.
View ArticleRe: Do posts get deleted if no one resoponds?
Generally no. There was a big update to the forum software recently which did not go well so they reverted to the prior version. Some threads were inadvertently lost in the process. Maybe that is what...
View ArticleRe: NAT setup for 2WAN+2LAN
In the screenshot with the error:Use sNAT instead of dNAT. Put outgoing public IP in translation address. Select outbound interface. Protocol=all. In src address, put internal LAN like 10.93.254.0/24
View ArticleRe: Why isn't destination MAC address an option in Rule Configuration?
OK, I was thinking this might be the case. So, would interface/local traffic handle cases where the source was that particular MAC and the destination was another machine on the local LAN or is that...
View ArticleRe: Hopefully Simple DNS Question
Use whatever you can use: Don't use dns from DHCPset interfaces ethernet eth0 dhcp-options name-server no-updateTell dnsmasq to use opendns servers.set service dns forwarding name-server 208.67.222.222...
View ArticleRe: VPN IP sec won't establish
For "local-address 188.118.46.BBB" to work, you must have an interface having that address configured on it, and you need to be able to ping the remote ipsec peer using the 188.118.46.y addresses
View ArticleRe: How to make IPv6 DNS requests to use my preferred IPv6 DNS servers on...
double your cache size, it's overflowing:DNS entries removed from cache before expiry: 2815
View ArticleRe: Why isn't destination MAC address an option in Rule Configuration?
see:https://community.ubnt.com/t5/EdgeMAX/Layman-s-firewall-explanation/td-p/1436103 The LAN_IN firewall rule takes place before the routing decision. Since the routing decision isn't done yet, the...
View ArticleRe: edgerouter er-8 sends ip over wan from DHCP server
What is your DHCP configuration? Do something like "show configuration commands | egrep dhcp" and paste it here, minus any private info.
View ArticleRe: Why isn't destination MAC address an option in Rule Configuration?
Thanks for the link. That does make more sense. However, even if I create a LAN_OUT ruleset and associated it with eth0/out, it only supports a source MAC.So, this would seem to cover the case of...
View ArticleRe: Beta access not working
Hi Jordan,I'm getting the Access Denied screen as well for EdgeMax beta.cheers,Jani
View Article
