Re: ERL Hairpin configuration for HTTPS
Since you have an MS AD DNS:add a zone named owncloud.abc.net, and add a single empty-named A record to this zone, pointing to your internal IP. This way, you only overrule the owncloud entry of...
View ArticleRe: Help : Policy based routing for PPTP
In your NAT5000 masquerade rule, remove the 192.168.99.0/x destination.If you do want to specify that subnet on the rule, it should go under source address instead
View ArticleRe: please help convert mikrotik fw rules to edge firewall rules
It's really rare that you have to use blacklists alongside whitelist.Normally you do one of them, and the rules default action will take care of the others.
View ArticleClik here to view.
Re: Help : Policy based routing for PPTP
Thank you!!! It is working once i removed the destination part from the nat-masq rule.
View ArticleRe: please help convert mikrotik fw rules to edge firewall rules
are you able to tell me then how to guest_in:default-dropaccept 10.1.1.1/24allow 0.0.0.0 internetdrop everything else from what i see here, i must specify rfc1918 LAN blacklist. before 0.0.0.0
View ArticleRe: Getting wrong ip dhcp
I suspect you have another device (router) somewhere that's handing out DHCP reservations. Common causes of this is using a home router as a switch without turning DHCP off on the home router.
View ArticleRe: please help convert mikrotik fw rules to edge firewall rules
I'd go for:guest_in: default-acceptallow estab/relateddrop invalid accept dest 10.1.1.1/24 drop dest rfc1918
View ArticleRe: Getting wrong ip dhcp
https://www.youtube.com/watch?v=uyvEa7Nh80A or http://www.majorgeeks.com/files/details/microsoft_rogue_dhcp_server_detection.html
View ArticleRe: please help convert mikrotik fw rules to edge firewall rules
yeah guess i'll have to settle with that for now. is this not whitelisting and blacklisting btw?
View ArticleRe: Is a static route the solution?
All good now, it's working! It was my local firewall that blocked traffic... cheers anyway!
View ArticleRe: Edgerouter POE high CPU usage
Yeah, offload gets killed no matter what the status shows (because the CPU needs to make decisions about the packets) ... although, newer versions may be a bit better at handling the traffic.
View ArticleRe: please help convert mikrotik fw rules to edge firewall rules
a question about the rule you quoted and in fact in the guide here: https://help.ubnt.com/hc/en-us/articles/218889067-EdgeMAX-How-to-Protect-a-Guest-Network-on-EdgeRouter if guest_in default rule is...
View ArticleRe: NetFlow using nfacctd
Can't help with nfacctd but note enabling accounting will significantly degrade the router performance as it effectively disables offload.
View ArticleRe: DHCPv6 how-to for idiots?
What are you using to obtain an IP from your ISP? (slaac, dhcpv6, dhcpv6-pd?) Can you post your config? jericsmith wrote:My provider has finally upgraded to IPv6, yay! My edgerouter running 1.9.0...
View ArticleRe: NetFlow using nfacctd
nfacctd is a flow exporter, not a flow collector. As such, EdgeRouter devices allow you to export flow data to an external collector (in your case 192.168.2.12), but there you'll need something like...
View ArticleRe: IPV6 dhcpv6-pd Service Slaac Config Validation?
did you assign the firewall rules to your WAN interface? # set interfaces ethernet eth0 firewall in ipv6-name WANv6_IN # set interfaces ethernet eth0 firewall local ipv6-name WANv6_LOCAL# commit#...
View Articlea question about configure prompt
you know how it is when youre in configure mode, it would look like htis: user@hostname# command[edit] why not just make it: user@hostname [edit]# command its really messy to have 2 lines for every...
View ArticleRe: NetFlow using nfacctd
Same outcome if I try nfcapd: no flows are being received. Additional information: If I run the following command on the router it is full of information, so it is collecting data: sudo pmacct -s -p...
View ArticleRe: Getting wrong ip dhcp
Thanks.It was a VPN server on my server..Now everything works.
View Article