489
edits
Changes
L2 LAN bridging over internet using L2TPv2+EoIP (view source)
Revision as of 14:34, 18 April 2023
, 14:34, 18 April 2023no edit summary
# '''Save''' the configuration
# '''Save''' the configuration
----
===Firewall configuration===
===Firewall configuration===
In order for our configuration to work, we will need to update the Firewall. Navigate to the '''Network → Firewall → General Settings''' in the Zones section and change the '''L2TP''' zone settings to '''INPUT: Accept; OUTPUT: Accept; FORWARD: Accept;''' and disable the '''Masquerading'''. Upon changing these settings the configuration window should look like:
In order for our configuration to work, we will need to update the Firewall. Navigate to the '''Network → Firewall → General Settings''' in the Zones section and change the '''L2TP''' zone settings to '''INPUT: Accept; OUTPUT: Accept; FORWARD: Accept;''' and disable the '''Masquerading'''. Upon changing these settings the configuration window should look like this:
[[File:Networking rutxxx configuration examples l2tp rut firewall v1.png|border|class=tlt-border|1100px]]
[[File:Networking rutxxx configuration examples l2tp rut firewall v1.png|border|class=tlt-border|1100px]]
----
For the next part we will need access to the SSH/CLI of the device, we can reach device's CLI via '''System → CLI''' login with '''root''' username and password of your device.
Now we will add a new Firewall rule GRE Accept, for that you will need to execute these commands each one at a time(keep in mind that each command has to be executed in the order that has been provided below):
uci add firewall rule
uci set firewall.@rule[-1].name=GRE
uci set firewall.@rule[-1].target=ACCEPT
uci set firewall.@rule[-1].priority=14
uci set firewall.@rule[-1].src=l2tp
uci set firewall.@rule[-1].enabled=1
uci set firewall.@rule[-1].proto=47
uci set firewall.@rule[-1].utc_time=0
uci commit firewall && service firewall restart
