Re: IPSEC Traffic and Firewall
VTI is a virtual tunnel interface. You need to define one under the interfaces section giving it an address in a subnet that's not in your LAN. Then you add the interface to the LAN security zone....
View ArticleRe: IPSEC Traffic and Firewall
Okay i will try this one. hope this will do. this will work also if Site A is static public ip and site b is dynamic ip right?
View ArticleRe: IPSEC Traffic and Firewall
so the peer , i will leave them on both sites since they are communicating already. and on the vpn - ipsec site to site peers i will leave those local subnet and remote subnet ips right , coz i dont...
View ArticleRe: IPSEC Traffic and Firewall
Unfortunately no, you need static IP addresses for a vti tunnel using the ER cli. In theory you could do it with a custom StrongSwan config you include in the vpn section but I'm not an expert and...
View ArticlePPTP connects but WAN is lost once it does
Just got an ERL and I've setup PPTP using local users instead of radius.My PPTP IP range is 192.168.0.240 to 192.158.0.250Can connect from a remote Windows 10 PC via PPTP perfectly.Once connected, I...
View ArticleRe: IPSEC Traffic and Firewall
If I understand you correctly, you are asking what needs to change under a working 'vpn ipsec' config, right?You delete the tunnel section, which I believe holds the remote and local subnet info, and...
View ArticleRe: Load Balancing with different down/up speeds
I think you can only do a percentage per interface, not direction. Also I think you want your weights to add up to 100.20/80 instead of 1/4. I'm not using LB right now but I thought I'd get a warning...
View ArticleRe: PPTP connects but WAN is lost once it does
Have you tried any other PPTP clients? I used to use PPTP on EdgeOS with OS X and Android and could forward through the EdgeRouter's WAN but I don't recall the particulars of how I set it up. I've long...
View ArticleRe: PPTP connects but WAN is lost once it does
I've only tried the default clients built in to Windows 7 and Windows 10. Both connect without issue just can't access anything outside of 192.168.0.0/24 once connected. I can go the openvpn route if...
View ArticleRe: PPTP connects but WAN is lost once it does
I didn't need to setup any additional routes or firewall rules but I never tried the windows client. Honestly, OpenVPN is worth learning. It's difficult to master but once it's working the pain is...
View ArticleClik here to view.
Network level ad blocking!
I have a really slow Comcast connection at home, 10Mbps or slower, so I knew that this wouldn't really show much of the ER-X router's potential... but just for kicks, I decided to run speedtest.com on...
View ArticleRe: PPTP connects but WAN is lost once it does
I will see if I can get this figured out in the next few days. If not I guess I'll have to learn OpenVPN.
View ArticleRe: Can't seem to get L2TP VPN working over PPPoE (the server did not respond)
Right, seem to have sorted it. simonk83@ubnt# show vpn l2tp remote-access { authentication { local-users { username simonk83 { password **** } } mode local } client-ip-pool { start 192.168.12.191 stop...
View ArticleRe: 1.9.0 broke dashboard for me (using Firefox)
I'd like to get a copy of the patch to fix this for FF 49.0.1 Thanks. - SB
View ArticleUnable to get two IPSEC VPNs up at the same time.
The goal is to get two IPSEC VPN sites operational simultaneously from one Edge-lite router. I can get one or the other, but not both up at the same time. All configuration has been done via the CLI....
View ArticleQoS HFQ problem with download
Hello, i have a problem with my Edgerouter X SFP. I have a PPPoE connection with a Public IP and a /27 Public Subnet that is routet to the PPPoE IP.The Routing is without NAT.The Routing and Firewall...
View ArticleClik here to view.
Re: Basic setup
sorry for this late respond but I've been in chock since Bob Dylan won the Nobelprice think I've had to explain a little more about this problem, on my network i have an old Netgear WNR2000 router...
View ArticleRe: QoS HFQ problem with download
The Basic is missing I lot of things from the Advanced like the interface its for but I think what you need to do is not use the reverse rate so that you add one Queue leave source and destination...
View ArticleEdgerouter X SFP dead after upgrade
Hi, I have just gotten a Edgerouter X SFP and the first I did was to upgrade it to version 1.9 using the ER-e50.v1.9.0.4901118.tar file. But after the router rebooted is it not possible for me to get...
View Article
