Howto setup a IPSec VPN connection to a edgerouter

VPN setup I setup an VPN with PSK for host authentication. set vpn l2tp remote-access ipsec-settings authentication mode pre-shared-secret set vpn l2tp remote-access ipsec-settings authentication pre-shared-secret PSK Configure a network range remote clients. set vpn l2tp remote-access client-ip-pool start 192.168.200.100 set vpn l2tp remote-access client-ip-pool stop 192.168.200.199 I have a PPPOE internet connection so my IP changes sometimes, because of the I configured the IPSec Interface listen to all IPs. [Read More]

how to setup dynDNS on a edgerouter with cloudflare

I use the free cloudflare DNS service for my private domain. I also want to use this for my dynDNS setup. I the last year ubnt have updated the ddclient on the edgeOS for the cloudflareV4 API. Now the setup work easy out of the box. Just you the following snippet: set service dns dynamic interface pppoe0 service custom-cloudflare protocol cloudflare set service dns dynamic interface pppoe0 service custom-cloudflare host-name FQDN_to_update set service dns dynamic interface pppoe0 service custom-cloudflare login CLOUDFLARE_USER set service dns dynamic interface pppoe0 service custom-cloudflare password API_KEY set service dns dynamic interface pppoe0 service custom-cloudflare options "zone=YOUR_ZONE use=web ssl=yes" At the end save the configuration and you are done. [Read More]

how to base setup a edgerouter

I use since some year the edgerouter lite from ubnt. I am total happy with this device it have a solid performace and is really feature rich. The core OS is OpenSource. Today I will you some of the basic configuration for an edgerouter. I did my configuration mostly over the CLI. So simple login to your router via ssh. To go in the configuration mode you need to typ: [Read More]

how to setup edgerouter with telekom vdsl

My ISP is the Telekom in Germany. I use a drytek modem in front of my edgerouter. prepare the Interfaces First of all I preapre all interfaces on my edgerouter. My Interfaces: eth0 => to modem eth0.7 => internet connection eth0.8 => TV streaming eth1 => managment eth2 => wifi AP eth2.37 => private LAN eth2.50 => guest LAN eth2.101 => Internet of things LAN set interfaces ethernet eth0 vif 7 description 'DSL' set interfaces ethernet eth0 vif 7 mtu 1500 set interfaces ethernet eth0 vif 7 pppoe 0 default-route auto set interfaces ethernet eth0 vif 7 pppoe 0 mtu 1492 set interfaces ethernet eth0 vif 7 pppoe 0 name-server none set interfaces ethernet eth0 vif 7 pppoe 0 user-id 'XXXXXXXXXXXXXXXXXXXXXXXXXXXX@t-online. [Read More]

Fortinet CheatSheet

Hi, this is my fortinet CheatSheet created for version 5.6: General Information NTP Status diagnose sys ntp status ARP table diagnose ip arp list routing table show active routing table get router info routing-table all show all configured routes get router info routing-table database show NAT table get system session list VPN Phase1 show phase1 diag vpn ike gateway list name <name_of_phase1> clear phase1 diag vpn ike gateway clear name <name_of_phase1> Phase2 show phase2 diag vpn tunnel list name <name_of_phase1> bring phase2 up/down diag vpn tunnel up <name_of_phase2> diag vpn tunnel down <name_of_phase2> reset phase2 diag vpn tunnel reset <name_of_phase1> show vpn logs diagnose debug reset # reset the debug settings diagnose vpn ike log-filter clear # clear the logfilter diagnose vpn ike log-filter dst-addr4 <REMOTE_VPN_GATEWAY_IP> # set a filter to only show logs to the given gateway diagnose debug app ike 255 # set the IKE log level to 255 (loglevel below) diagnose debug enable # enable the debug log diagnose debug disable # disable the debug log IKE log level -1 or 255 means all message of debug in Phase1/2. [Read More]