Hello, as the title suggests I'm looking for the correct firewall rules to allow the router to perform DNS requests on behalf of the LAN. So basically, all systems on my LAN use the default gateway (my router) for DNS lookup. Currently I have UDP port 53 allowed from LAN address list on INPUT and OU...
Blue lines are inactive so they have no influence on routing decision. Only active routes do. Ah I see. Good. You do not need a DCHP client address from your modem... I assume it is only needed for maintenance tasks on the modem. Yes, I do need it. For firmware updates, etc. It is useful to have th...
I have an error in my routing table. Let me explain my home set-up: I use an ADSL/ADSL2+ modem. This modem is connected to ether1-gateway port of my [http://routerboard.com/]RB2011UiAS-2HnD-IN router. My RB2011UiAS-2HnD-IN obtains a LAN IP from the DHCP server configured on the modem (192.168.2.0/24...
Grazie. This fixed things. One more question: I have a route for anything going to 192.168.2.0/24 to exit via ether1-gateway which is where my Draytek is. But I cannot reach the Draytek from my LAN. Why? # DST-ADDRESS PREF-SRC GATEWAY DISTANCE 0 ADS 0.0.0.0/0 [WAN_IP] 1 1 ADC [ISP_WAN_NW] [WAN_IP] p...
2) remove all not dynamic route, all address and dhcp client assigned to ether1 (adsl modem on bridge mode do not need both) So in short you mean remove the DHCP client from ether1, and set statically? Why would this be a fix? The V120 has a DHCP server auto-configured. It seems to me that the V120...
Today I received a Draytek Vigor V120 ADSL/ADSL2+ modem to use together with my RB2011UiAS-2HnD-IN. As I am sure many of you already know all I have to do is set up a PPPoE client on the RB2011. However I am experiencing some issues: Which interface do I set the NAT masquerade rule, ether1-gateway o...
I have no experience with that IPTV provider, but also IGMP Proxy should work ok and would be more dynamic than static switch rules, i.e. if you move your STB to different ports. Oh, well, you might never move it! This comment doesn't add any value, but I'll be happy to review your edit should you ...
I... used switch rules to forward anything coming from STB port to ISP port, and to direct returning traffic back into the STB port. I'm using the RB2011UiAS-2HnD-IN. I do currently use the switch chip for four of the Ethernet ports. I could modify the config indeed. Could you explain your set up a...
Does anybody on here use the YouView IPTV set-top box here in the UK? I'm having some difficulties setting up IGMP and would like to discuss your progress/experience in setting it up. The closest resource I have found on the net, but it is not detailed enough of a guide is here: https://community.bt...
You can add firewall rule with logging action in case of data transfer according to your criteria. If you want to be sure, switch it really off. I'm going to give this a go. But how can I take a copy of the traffic? Where do you see the phantom communication? Remember that not all devices are reall...
What is the best way to trigger a message to my Syslog-ng server on my LAN when an interface is Tx/Rx data? I have a device on my LAN which although I turn off, still seems to be communicating and I want to know when it is doing this. Ideally I'd also like to take a copy of all the traffic passing t...
obviously you skipped reading "Manual:Tools/Packet Sniffer" part of Wiki too early. hardly im can explain things better than Wiki, in that point, just conclude. unconfigured and not started, yet, sniffer - will behave just like you depicted, respectively. I have no idea what you are sayin...
...its to reduce necessary configuration amounts/steps, at expense of security and manageability [and] to mimic notorious SOHO devices, configuration and thus - reduce culture shock of new customers... [In] short: bridging sucks. NEVER use it... I'm assuming the alternative L2 approach is to config...
Hello. I have several questions. I'm not following what bridging is all about. I get that it is a L2 concept and allows the L2 connection between (often geographically separated) LANs, but I'm missing "the whole point" completely. If you want to pick and choose which questions to answer th...
Hello. I'm trying to capture and view traffic on ether2. I know there is traffic TX and RX on the Ethernet interface as I have verified this with: /interface monitor-traffic interface=ether2 rx-packets-per-second: 7 rx-drops-per-second: 0 rx-errors-per-second: 0 rx-bits-per-second: 30.8kbps tx-packe...