Re: Firewall policies and rules tuto ?
First - for both, thank you for the link & explanations I understand, I won't need to use all. Only WAN_IN (WANtoLAN in my side) and WAN_LOCAL(WANtoLOCAL).But to the future: - I'll wish to forbid...
View ArticleRe: your experience with OSPF in a production environment
We have been running our ISP using OSPF internally since 1999... It definitely works. And will continue to in future. It's an industry standard.JIm
View ArticleClik here to view.
Got my own AS number and IP-adresses. How to configure EdgeMax routers ?
Hi! I have just got my own AS number from RIPE and a /22 IPv4 address range (Also an IPv6 address range that I will enable later). I will start with 1 upstream provider but need to make sure my setup...
View ArticleClik here to view.
Re: Got my own AS number and IP-adresses. How to configure EdgeMax routers ?
My recommendation is that you read up a bit by Googling and also check some YouTube videos out. If you then have any specific questions come back here. Forums are never great for askiing how to start...
View ArticleClik here to view.
Re: Got my own AS number and IP-adresses. How to configure EdgeMax routers ?
My first question is how many IP-addresses I need from my upstream provider to be able to configure this setup: Is a /29 enough ?Virtual Router IP: 1 IP-addressPsysical Router 1 IP: 1...
View ArticleRe: Firewall policies and rules tuto ?
Pascal94 wrote:- I'll wish to forbid some application like "topsites-adult" or P2P connexion - I thought the WAN_OUT (LANtoWAN) needs to be configured.- And blocked, all traffics from my LAN (allowed...
View ArticleRe: ERL Lan to Lan Access
Yea nat on both lan1 and lan2, no dhcp service on lan1, all static on lan1. I don't and didn't put an implicit firewall rules in to do that, unless it put a hidden one in, I don't see any.
View ArticleRe: I believe I have discovered a bug in the Policy-Based Routing engine
So, something fishy definetely going on.This morning, I'm trying to correct some PPTP routing, as shown in my other thread. Didn't work, so I reverted to last night's backup that I took after verifying...
View ArticleRe: I believe I have discovered a bug in the Policy-Based Routing engine
Ok, figured out the ...bug? Maybe? If I change the router configuration, I have to completely rebuild the OpenVPN tunnel. Rebooting the firewall doesn't work. Restoring the backup doesn't work. Have to...
View ArticleClik here to view.
Re: Firewall policies and rules tuto ?
To block P2P using DPI put these rules on both your WAN_in and WAN_out ruleset.
View ArticleRe: Affected by "Dirty COW" vulnerability?
elgo, you don't understand this vulnerability then. This is a privilege escalation bug that requires code to be executed. If you can exploit a different bug to execute code, this bug won't help you in...
View ArticleClik here to view.
Re: Affected by "Dirty COW" vulnerability?
danmero wrote:elgo wrote:eejimm wrote:What he means is this is a priveledge escallation atack - someone already logged into the machine as a non-root user can (if done right) get root priveledges....
View ArticleRe: Transparent mode
I tried that link, and tried the script that was available and it didn't work.I want to do this:ISP Port -> ETH0 (Public IP) -> ETH1-ETH4 (Public IP)I want to manage / filter incoming and...
View ArticleRe: can i configure an EdgeRouter Lite into a transparent firewall for...
I downloaded that script and it does work.I want to do is this:ISP In -> ETH0 (Public Static IP) -> ETH1-ETH4 (Public Static IP)Need to filter incoming and outgoing ports to the devices on...
View ArticleRe: DHCP Issues
Well, you're missing an IP address on eth2. That may cause you issues, depending on what switch you're using (it may be expecting to talk to the router via VLAN1, and since there is nothing there ... )
View ArticleRe: I believe I have discovered a bug in the Policy-Based Routing engine
Update:Any reboot resets the OpenVPN configuration, and I must rebuild the tunnel to get any traffic to go through. Is this a configuration or firmware issue?
View ArticleRe: DHCP Issues
well just adding the ip address did not work but just for giggles I configured my switch with 2 untagged ports ran one to my router and one to my computer and it worked. not sure why it would not pull...
View ArticleRe: DHCP Issues
Well, the "access" port needs to be untagged / PVID 10 (or whatever VLAN ID) ... should also be untagged VLAN1 / tagged VLAN10 (or whatever VLAN ID) on the port that's plugged into the router.
View ArticleInter LAN communication with ER-X-SFP
Hi to allI'm facing a strange problem regarding lan traffic. My setup is as follows:lan0 - 192.168.182.0/26 (switch0)lan1 - 192.168.182.64/26 (switch0.10)lan2 - 192.168.182.128/26 (switch0.20)...
View Article