Topics

1

17.7 Legacy Series / anyone have ipsec vpn passthru working?

« on: August 18, 2017, 03:42:09 am »

somewhere around 16.7 I lost the ability to use my at&t network client which uses ipsec. do I need to declare that only one IP can do ipsec passthru and forward port(s) there? seems even many cheap routers have checkboxes for enabling ipsec passthru, lt2p passthru, etc....
any advice welcome. thanks in advance!
nrf

2

17.7 Legacy Series / so why no detailed doc on firewall/nat settings?

« on: August 16, 2017, 08:20:18 pm »

As a reference manual, the online document doesn't really satisfy my appetite for understanding and mastering the firewall and its NAT settings. there are even no main sections on this, nor how-to topics. I am trying to understand how it is blocking my work vpn client from getting thru even though port 500 appears to be open, but  I am really asking this question in a more general vein. It seems a great manual would have full reference for every point on the menu tree as all the little 'info' buttons don't qualify as reference material in my mind.

Maybe we are just supposed to know this stuff or refer to documents for the underlying open source components, in which case what would that be for the firewall/nat part?

3

17.1 Legacy Series / ipsec vpn passthru?

« on: February 28, 2017, 02:57:29 am »

I am happy to now be able to use suricata on my n40L with this release. but in exchange for that benefit, now I cannot use my ipsec vpn client which was working fine on previous release - a daily driver for me. I thought there might be some plugin needed but didn't find any related to passthru. puttering around in the forums I found some comments about nat rules for port 500, and I do have one that seems to come from setting up my openvpn server.

did I miss something in the release notes that I need to enable for ipsec passthru?

thanks in advance for your help.

and as I tweeted, the major upgrade went so well!!!! impressive!!!!

4

16.7 Legacy Series / so ids is periodically dying with a core dump

« on: August 01, 2016, 03:32:47 pm »

anyone following this? seems I bumped up to 16.7 too soon, should have let others soak it

5

16.7 Legacy Series / diagnosing slowness issues...

« on: July 30, 2016, 03:43:21 am »

so I've had a couple cases of this since stepping up, rebooting didn't help, after the reboot I had to drop and restore the wan interface before it was 'ok'. Unfortunately, I"m not seeing anything on the dashboard turning red to tell me I can't get to the dns servers or there is high latency. And I'm not seeing any troubleshooting guide in the doc.

Ideally I'd like to be able to see response time for dns requests on a per server basis, with something turning red when that stops being timely, I am sure there are other things that could be read out given the router is in a position to observe everything...barring that, troubleshooting tips beyond 'reboot the modem reboot the router hope and pray'?