Re: LAN to Lab subnet
Ok, well, that routing entry wouldn't really work192.168.3.0 with 255.255.255.0 needs a gateway on its own subnet, like 192.168.3.1 but certainly not 192.168.2.252, I think 3.1 was the Windows box's IP...
View ArticleRe: Edgemax Torrent blocking
So far so good....the uTorrent is bloking using DPI : 1) Enable DPI and create a custom Cattegory (Torrent)2) Block all ethernet (eth1 for me is the internet)configure set firewall name DROP_TORRENT...
View ArticleRe: OpenVPN Client Error
Post the output of "ip route show" on your edgerouter if you could. OpenVPN should be OpenVPN, as long as it's based on the same source code it should work between vendors.
View ArticleRe: Blown eth0 port
I agree, ordering one today. I'm going to try to get it working in the mean time.
View ArticleRe: Edgemax Torrent blocking
I would bet a dollar you need to apply the rules to those interfaces as well. ieset interfaces ethernet eth2.5 firewall in name DROP_TORRENTset interfaces ethernet eth2.6 firewall in name...
View ArticleRe: LAN to Lab subnet
I don't disagree since I'm totally a newbie in networking but if a route needs to have a gateway in its own subnet, how do we route different subnets ? Otherwise, the windows box does have a NIC in...
View ArticleRe: IPv6 DNS Server
As you have it now, it'll work just fine. DNS servers don't care whether an incoming request comes in via IPv4 or IPv6. They just do the requested lookup. If I request an AAAA record for...
View ArticleRe: PSA: Change your router password BEFORE connecting WAN.
There are so many port scanners out there now, I don't think moving to a different port will protect against anyone but 15 year old kids in their parents' basements. I have WAN SSH enabled on my...
View ArticleRe: OpenVPN Client Error
You appear to be trying to use a tap (bridged) interface with a tunnel (routed) device. This is a large problem, and likely why you can't add new routes. Or can someone say for certain whether vtunX...
View ArticlePriority QOS Per Port (edgerouter-x)
Hi all, I find myself being overwealmed by all the info in terms of QOS here. I have a setup as such:Port 1: LAN 1 (192.168.1.0/24)Port 2: LAN 2 (192.168.2.0/24)Port 3: LAN 3 (192.168.3.0/24)Port 4:...
View ArticleRe: PSA: Change your router password BEFORE connecting WAN.
I'll occasionally leave SSH open on the WAN side if my client is a significant distance away just in case there's an issue with the VPN link in an area where it's difficult/expensive to get someone to...
View ArticleRe: PSA: Change your router password BEFORE connecting WAN.
pcperfect wrote:I'll occasionally leave SSH open on the WAN side if my client is a significant distance away just in case there's an issue with the VPN link in an area where it's difficult/expensive to...
View ArticleRe: IPSEC Phase2 PFS group1 not available
Back in the Vyatta_VPN_R6.3_v01.pdf days, group1 was already unavailablePFS: enable: Enables Perfect Forward Secrecy using Diffie-Hellman group defined in the ike-group. dh-group2: Enables Perfect...
View ArticleRe: PSA: Change your router password BEFORE connecting WAN.
Here you go - adjust recent count/time to taste. Make sure you keep them in the same order! rule 5 {action dropdescription SSHdestination {port 22}log enableprotocol tcprecent {count 4time 60}state...
View ArticleRe: LAN to Lab subnet
hiko wrote:@vnoI don't disagree since I'm totally a newbie in networking but if a route needs to have a gateway in its own subnet, how do we route different subnets ?You have a router on each of those...
View ArticleRe: OpenVPN PBR using address-groups and WLAN clients
Everything on eth1-4 (switch0) can talk to each other including the host using the VPN. Its the WLAN AP on eth0 that is only able to communicate with the nodes on switch0 _NOT_ using the VPN.
View ArticleRe: LAN to Lab subnet
You're right, not sure what I was thinking when I posted that last one, but my main point, which isn't maybe coming across, stands, why do you want to mess with routing on a Windows box, which may or...
View ArticleNeed help picking a product
I need to replace a cisco 2900 router that is being used right now just to route between the internet and our MPLS traffic. It is the default gateway at our HQ and it can't keep up with the load any...
View ArticlePBR - 2 WAN, Failover, Exclude VLAN's on Failover and Unknown ISP IP's
Hello out there, im quiet a bit new to PBR and firewalls and so, i worked through many articels on this site. It would be really nice if someone could pls review my work, give me some hints and help me...
View Article