Line 32: |
Line 32: |
| # '''Save''' the configuration | | # '''Save''' the configuration |
| | | |
| + | ---- |
| ===Firewall configuration=== | | ===Firewall configuration=== |
| | | |
− | In order for our configuration to work, we will need to update the Firewall. Navigate to the '''Network → Firewall → General Settings''' in the Zones section and change the '''L2TP''' zone settings to '''INPUT: Accept; OUTPUT: Accept; FORWARD: Accept;''' and disable the '''Masquerading'''. Upon changing these settings the configuration window should look like: | + | In order for our configuration to work, we will need to update the Firewall. Navigate to the '''Network → Firewall → General Settings''' in the Zones section and change the '''L2TP''' zone settings to '''INPUT: Accept; OUTPUT: Accept; FORWARD: Accept;''' and disable the '''Masquerading'''. Upon changing these settings the configuration window should look like this: |
| | | |
| [[File:Networking rutxxx configuration examples l2tp rut firewall v1.png|border|class=tlt-border|1100px]] | | [[File:Networking rutxxx configuration examples l2tp rut firewall v1.png|border|class=tlt-border|1100px]] |
| + | |
| + | ---- |
| + | For the next part we will need access to the SSH/CLI of the device, we can reach device's CLI via '''System → CLI''' login with '''root''' username and password of your device. |
| + | |
| + | Now we will add a new Firewall rule GRE Accept, for that you will need to execute these commands each one at a time(keep in mind that each command has to be executed in the order that has been provided below): |
| + | |
| + | uci add firewall rule |
| + | uci set firewall.@rule[-1].name=GRE |
| + | uci set firewall.@rule[-1].target=ACCEPT |
| + | uci set firewall.@rule[-1].priority=14 |
| + | uci set firewall.@rule[-1].src=l2tp |
| + | uci set firewall.@rule[-1].enabled=1 |
| + | uci set firewall.@rule[-1].proto=47 |
| + | uci set firewall.@rule[-1].utc_time=0 |
| + | uci commit firewall && service firewall restart |