LasLabs Blog

Tag: EdgeRouter

  • NAT Reflection – Ubiquiti EdgeRouter Lite (V>=1.3.0) & Dynamic IP

    NAT Loopback/hairpin/reflection allows internal clients to access internal resources using an external IP/hostname. This is useful when you run a server inside of a local network, and would like to access it using your domain name/external IP. This tutorial will walk you through creating a NAT hairpin for a Ubiquiti EdgeRouter Lite running at least […]

  • OpenVPN Server Configuration Script – Ubiquiti EdgeRouter Lite

    =The lazy way to configure OpenVPN Server on a Ubiquiti EdgeRouter Lite= I have a Ubiquiti EdgeRouter Lite that I use as a staging platform for systems in production. Because I have had to reconfigure the VPN so many times on this device, I created a simple Python tool to run through the entire process […]

  • Dynamic DNS Using LibCloud – EdgeRouter

    This tutorial is aimed for users with a dynamic IP, and a DNS host that does not support DynDNS. Basically, we will push our new IP every time that it changes. The steps outlined in this tutorial will work with the providers listed in [[https://ci.apache.org/projects/libcloud/docs/dns/supported_providers.html#provider-matrix|Apache’s documentation]], but I have only actually tested with Rackspace. === […]

  • Active Directory Auth – Ubiquiti EdgeRouter

    In this tutorial, we will configure EdgeRouter Active Directory Authentication. This will allow you to login to your EdgeRouter using your Active Directory accounts. There are a few different methods to go about this, we will use `sssd` because it is recommended by [[https://access.redhat.com/site/documentation/en-US/Red_Hat_Enterprise_Linux/6/html/Deployment_Guide/SSSD-Introduction.html|Red Hat]] # [[http://community.ubnt.com/t5/EdgeMAX-CLI-Basics-Knowledge/Add-Other-Debian-Packages-to-EdgeOS/ta-p/413071|Add Debian Repos]] # Escalate to root {{{ sudo […]

  • Configure OpenVPN with X.509 – Ubiquiti EdgeRouter Lite

    In this tutorial, we will be configuring an OpenVPN server with X.509 certs on a Ubiquiti EdgeRouter Lite. We will also go through how to connect a remote Linux client to the VPN. Below is a physical network diagram: {{{ +——————————–+ | Ubiquiti ERL | (Public IP)| |192.168.69.254 =============={eth2 eth0}============= | \ / | | […]

  • NAT Reflection – Ubiquiti EdgeRouter Lite & Dynamic IP

    [[[TOC]]] = Intro = NAT Loopback/hairpin/reflection allows internal clients to access internal resources using an external IP/hostname. This is useful when you run a server inside of a local network, and would like to access it using your domain name/external IP. NAT reflection is fairly simple to accomplish, but becomes a manual process if you […]

  • Initial Configuration – Ubiquiti EdgeRouter Lite

    [[[TOC]]] This tutorial will walk you through setting up a Ubiquiti EdgeRouter Lite for use in a SOHO environment using CLI commands. Below physical architecture diagram of the network we will be creating: [[image:erl_soho.png|medium|link=source]] # Login to ERL via SSH, go to configure mode {{{ configure }}} —— =Interfaces= In this section, we will setup […]

  • PXE booting with Ubiquiti EdgeRouter

    This tutorial will walk you through setting up a Ubiquiti EdgeRouter to allow PXE booting. This tutorial assumes that you have a TFTP & NFS Server running on `192.168.69.100`. [[pxe-server-ubuntu|A complete PXE setup guide is located here]]. # Login to router via ssh, enter configure mode {{{ lang=bash configure }}} # Add `bootfile-server` option to […]

  • Dynamic DNS with Ubiquiti EdgeRouter (Vyatta)

    This tutorial will walk you through the process of setting up Dynamic DNS on an EdgeRouter. In my network topology, the WAN is connected to `eth2`; change that to whatever interface you would like. Create an account with a supported service provider. If you do not want to use one of the below providers, I […]

  • Change WebUI Port – Ubiquiti EdgeRouter Lite

    The below tutorial will walk you through altering the Web UI port on a Ubiquiti Edge Router Lite. # Log into router via ssh/console # Enter configure mode {{{ lang=bash configure }}} # Set the Web UI port; change `8443` to whatever you would like {{{ lang=bash set service gui https-port 8443 }}} # Commit […]