1
20.1 Legacy Series / Re: webrtc Reflexive connectivity fails (NAT traversal)
« on: May 29, 2020, 01:58:09 am »
Well it isn't only the test that fails. I can't webrtc without a TURN server... and in my mind STUN should work.
Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages: [1]
2
20.1 Legacy Series / webrtc Reflexive connectivity fails (NAT traversal)
« on: May 21, 2020, 07:57:26 am »
I noticed that I had some issues establishing webrtc peer connections via my upnsense firewall.
I ran the connectivity test at https://test.webrtc.org/
And got:
Reflexive connectivity (failed)
[ INFO ] Gathered candidate of Type: srflx Protocol: udp Address: x.x.x.x
[ INFO ] Gathered candidate of Type: srflx Protocol: udp Address: x.x.x.x
[ WARN ] Could not connect using reflexive candidates, likely due to the network environment/configuration.
(x.x.x.x = my external WAN ip)
I did check the box "Automatic outbound NAT for reflection".
I ran the connectivity test at https://test.webrtc.org/
And got:
Reflexive connectivity (failed)
[ INFO ] Gathered candidate of Type: srflx Protocol: udp Address: x.x.x.x
[ INFO ] Gathered candidate of Type: srflx Protocol: udp Address: x.x.x.x
[ WARN ] Could not connect using reflexive candidates, likely due to the network environment/configuration.
(x.x.x.x = my external WAN ip)
I did check the box "Automatic outbound NAT for reflection".
3
20.1 Legacy Series / Re: two dns servers ? one for parents and one for kids?
« on: April 04, 2020, 09:55:48 pm »
Unbound currently does not support different forwarders based on source IP address:
https://github.com/NLnetLabs/unbound/issues/210
That would be clearly the nicest way to do it.
Bind is a little bit overkill and the way it is integrated in opnsense doesn't seem to be easy for this (it would be great instead of opendns though) and also got this notice:
I guess I stick with the proxy solution for now
https://github.com/NLnetLabs/unbound/issues/210
That would be clearly the nicest way to do it.
Bind is a little bit overkill and the way it is integrated in opnsense doesn't seem to be easy for this (it would be great instead of opendns though) and also got this notice:
Code: [Select]
This port is deprecated; you may wish to reconsider installing it:
End of life, please migrate to a newer version of BIND9.
I guess I stick with the proxy solution for now
4
20.1 Legacy Series / two dns servers ? one for parents and one for kids?
« on: April 03, 2020, 08:28:13 pm »
I am trying to implement parental controls using opnsense (which works great in general) and opendns.
I have two relevant VLAN:
Each has their own DHCP & network range - so that works fine.
Both point to unbound where I can add openDNS as upstream DNS. I need unbound so we get local resolution (local minecraft server, plex, ...).
I tried to point one to unbound and one to dnsmasq but that didn't work properly - I could only run one at a time.
I wish there was a way to split DNS for both networks and preserve local DNS? Any ideas? Thank you!
I have two relevant VLAN:
- kids
- parents
Each has their own DHCP & network range - so that works fine.
Both point to unbound where I can add openDNS as upstream DNS. I need unbound so we get local resolution (local minecraft server, plex, ...).
I tried to point one to unbound and one to dnsmasq but that didn't work properly - I could only run one at a time.
I wish there was a way to split DNS for both networks and preserve local DNS? Any ideas? Thank you!
Pages: [1]