151
21.1 Legacy Series / Re: Initial setup / multiple dedicated IPs
« on: April 13, 2021, 04:59:57 pm »
Well you might be able to, but I can't help you with that. The normal way is to NAT.
Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
152
21.1 Legacy Series / Re: Initial setup / multiple dedicated IPs
« on: April 13, 2021, 04:48:48 pm »
No, it's NAT "To" the internal machine. i.e. server resides at 10.4.12.30
Like this:
You need to add the virtual IP of the WAN address you want natted.
![](https://i.ibb.co/zHcxPKC/Virtual-IP.png")
Ignore the gateway and virtual IP password, that's my browser doing odd things and pasting them in!
Like this:
You need to add the virtual IP of the WAN address you want natted.
Ignore the gateway and virtual IP password, that's my browser doing odd things and pasting them in!
153
21.1 Legacy Series / Re: Initial setup / multiple dedicated IPs
« on: April 13, 2021, 02:55:30 pm »
Yes, add the WAN IP as a virtual IP and then add a 1:1 NAT to the internal machine, that's how my mail gateway and web servers work. Don't forget to add the rules!
154
21.1 Legacy Series / Re: Info about business edition
« on: April 13, 2021, 01:38:06 pm »
You usually find that as the business edition is stability focussed it gets things after they have been released into the community edition... you are the guinea pig.
155
General Discussion / Re: Undeleteable User - You do not have the permission to perform this action.
« on: April 13, 2021, 08:48:33 am »
This is what I would do. If you have a windows PC, using WINSCP find a back up file that dates to a time before you added the new user. make a note of the name. Now SSH into the shell and issue the command:
cp /conf/backup/config-filename.xml /conf/config.xml
Then do a hard reboot.
If the shell will not let you do that, then try "sudo cp /conf/backup/config-filename.xml /conf/config.xml" and see if it accepts your credentials.
You might also want to backup your /conf directory to your PC. Mine auto backs up conf and a few other critical scripts every night.
cp /conf/backup/config-filename.xml /conf/config.xml
Then do a hard reboot.
If the shell will not let you do that, then try "sudo cp /conf/backup/config-filename.xml /conf/config.xml" and see if it accepts your credentials.
You might also want to backup your /conf directory to your PC. Mine auto backs up conf and a few other critical scripts every night.
156
21.1 Legacy Series / Re: Loose internal network when PPPOE connexion is down.
« on: April 12, 2021, 07:35:01 pm »
So let's break this down, from the LAN you cannot connect to any of the other VLANs when the PPPoE is down. Pick one device on a VLAN you cannot ping and post the rules for that VLAN, and if it has an alias name, tell us what that is.
157
General Discussion / Re: Undeleteable User - You do not have the permission to perform this action.
« on: April 12, 2021, 07:28:46 pm »
Two ways, either edit the config.xml file removing the user or grab one of the backups in /conf/backup and import it. Remember to pick one that was dated before you added the user. Reboot.. done.
158
21.1 Legacy Series / Re: Loose internal network when PPPOE connexion is down.
« on: April 12, 2021, 07:22:00 pm »
Erm. how many VLANs do you have? You appear to have rules for lots of individual devices. What have you got in floating rules?
159
21.1 Legacy Series / Re: Loose internal network when PPPOE connexion is down.
« on: April 12, 2021, 02:34:06 pm »
Haven't had any time to look at the rules yet... real work has intervened.
160
21.1 Legacy Series / Re: Loose internal network when PPPOE connexion is down.
« on: April 12, 2021, 09:57:13 am »
Odd.. I have a PPPoE connection and VLANs, when on the odd occasion my WAN goes down I can still ping the IOT VLAN devices from the primary LAN. Want to post some images of your rule setup?
161
21.1 Legacy Series / Re: Loose internal network when PPPOE connexion is down.
« on: April 12, 2021, 08:36:52 am »
Is this using IPv4 and v4 IP addresses or IPv6 or both?
I can see no reason why v4 should not continue to work, but IPv6 probably would not work if you are using GUA addresses.
I can see no reason why v4 should not continue to work, but IPv6 probably would not work if you are using GUA addresses.
162
Hardware and Performance / Re: Qotom vs Fitlet2 - What should I buy?
« on: April 07, 2021, 11:24:43 pm »
Well both use DDR3, both use Intel i211 NICs. So the main difference is the processor. i7s are superior to those available for the Fitlet, even though the i7s may not be the current generation; it is a pretty device though.
I've got two Qotom's one for test and one that runs live, one i5 and one i7, the i5 runs live; neither have ever given me a problem and I know of may others who have them and have had zero issues.
At the end of the day either one will work well, so really it's a question of personal taste.
I've got two Qotom's one for test and one that runs live, one i5 and one i7, the i5 runs live; neither have ever given me a problem and I know of may others who have them and have had zero issues.
At the end of the day either one will work well, so really it's a question of personal taste.
163
General Discussion / Re: UDP Broadcast Relay
« on: April 07, 2021, 06:23:39 pm »Subscribe
and hoping if I can find a solution for relaying DLNA windows10 server media through an IPSEC tunnel to a remote network
You might find help in the VPN section, UDPR only forwards multicast between LANs and VLANs, not VPNs.
164
General Discussion / Re: UDP Broadcast Relay
« on: April 07, 2021, 09:59:32 am »
This is not an issue, you cannot have both daemons using port 1900, if you read this entire thread ( not for the faint hearted ) from the beginning you'll find it is mentioned.
165
21.1 Legacy Series / Re: Lets Encrypt renewal and certificate synchornization
« on: April 06, 2021, 04:33:11 pm »
No, but as I said in my first message on this thread, it creates backups on my NAS using the same folder structure as Opnsense. If I goto the NAS, open the Opnsense folder, I have two directories, usr and conf, I just copy them both back to Opnsense, everything is restored... job done.