Edgemax - Soho Example - Ubiquiti Networks Community 4b4dk
This document was ed by and they confirmed that they have the permission to share it. If you are author or own the copyright of this book, please report to us by using this report form. Report 3b7i
Overview 3e4r5l
& View Edgemax - Soho Example - Ubiquiti Networks Community as PDF for free.
More details w3441
- Words: 846
- Pages: 10
EdgeMAX - SOHO Example - Ubiquiti Networks Community
7/17/13 8:51 PM
COMMUNITY
Home
Forums
Knowledge Base
Subscriptions Ubiquiti Networks Community
SIGN IN
Blogs
Bookmarks
Unread Posts
Ubiquiti Networks Community Knowledge Base
Search
Mark As Read
SEARCH
Knowledge Base
Recent Posts
EdgeMAX Knowledge Base
Recent Topics
FAQ
EdgeMAX - Configuration Examples Knowledge Base
EdgeMAX - SOHO Example by
UBNT-James on 03-11-2013 12:19 PM - edited Monday by
UBNT-Matt
Article Options
This article is an example of how a small office might configure their EdgeRouter to connect the office with the Internet. Note: if you're not interested in learning how to do it and just want an example configuration, this forum thread mrjester's Basic SOHO/HOME Config There are three networks: 1. WAN - dh client (getting public address from ISP) 2. LAN - 172.16.0.1/24 3. WLAN - 172.16.1.1/24
Physical Network Diagram
Setup Interfaces From the dashboard tab we can configure the IP address on the interfaces and give optional descriptions.
http://community.ubnt.com/t5/EdgeMAX-Configuration-Examples/EdgeMAX-SOHO-Example/ta-p/413019
Page 1 of 10
EdgeMAX - SOHO Example - Ubiquiti Networks Community
7/17/13 8:51 PM
Note: this example is using DH client to request a addresss. If you have static IP addresses see adding static IP, gateway, name server
Create New One of the first things you'll want to do is get rid of the default 'ubnt' (or at least change it to a strong ). In these next 3 screenshots we'll first create a new .
We can't delete a that is still logged in, so we'll and back in as our new s.
http://community.ubnt.com/t5/EdgeMAX-Configuration-Examples/EdgeMAX-SOHO-Example/ta-p/413019
Page 2 of 10
EdgeMAX - SOHO Example - Ubiquiti Networks Community
7/17/13 8:51 PM
Now we can delete the default .
Setup DH servers We'll create 2 dh servers 1) for the LAN subnet and 2) for the wireless LAN subnet.
http://community.ubnt.com/t5/EdgeMAX-Configuration-Examples/EdgeMAX-SOHO-Example/ta-p/413019
Page 3 of 10
EdgeMAX - SOHO Example - Ubiquiti Networks Community
7/17/13 8:51 PM
Configure DNS forwarding In the previous DH server page we defined the dns server as the router's address, so we'll enable DNS forwarding to listen for DNS requests on both the LAN (eth0) and the WLAN (eth1).
Configure NAT We're using private address on our LAN and WLAN, so we'll need a NAT Masquerade rule for outbound interface eth0.
http://community.ubnt.com/t5/EdgeMAX-Configuration-Examples/EdgeMAX-SOHO-Example/ta-p/413019
Page 4 of 10
EdgeMAX - SOHO Example - Ubiquiti Networks Community
7/17/13 8:51 PM
Stateful Firewall The following example firewall is just very basic (and not necessarily recommended). Basically this allow any traffic from LAN, WLAN or the router to be initiated out to Internet, but drop all traffic initiated from Internet. Before we jump into the example we should first discuss the EdgeOS firewall terminology for IN, OUT, and LOCAL. Applying a firewall ruleset to the INfirewall of an interface affect traffic inbound on that interface but only the traffic forwarded through the router. OUT is traffic that has been forwarded through the router and about to leave exit out the interface. LOCAL is traffic destined for the router (for example if you wanted to use the web UI on the router you'd need to allow port 443 on LOCAL. In of using IN or OUT rules, some will say that IN is better because if you're going to drop a packet it's better to do it on input rather than go through the full packet processing path only to drop it before it leaves the router. First we'll use the 'Add Ruleset' to create the WAN_IN and WAN_LOCAL Rulesets
http://community.ubnt.com/t5/EdgeMAX-Configuration-Examples/EdgeMAX-SOHO-Example/ta-p/413019
Page 5 of 10
EdgeMAX - SOHO Example - Ubiquiti Networks Community
7/17/13 8:51 PM
Select to 'Edit Ruleset' on WAN_IN
Click 'Add a New Rule'
http://community.ubnt.com/t5/EdgeMAX-Configuration-Examples/EdgeMAX-SOHO-Example/ta-p/413019
Page 6 of 10
EdgeMAX - SOHO Example - Ubiquiti Networks Community
7/17/13 8:51 PM
The first rule will 'accept' any packet that has state established or related
Select those state on the 'Advanced' tab
http://community.ubnt.com/t5/EdgeMAX-Configuration-Examples/EdgeMAX-SOHO-Example/ta-p/413019
Page 7 of 10
EdgeMAX - SOHO Example - Ubiquiti Networks Community
7/17/13 8:51 PM
For the 2nd rule we'll drop packets that have state invalid set
Now apply this firewall ruleset to an interface/direction.
http://community.ubnt.com/t5/EdgeMAX-Configuration-Examples/EdgeMAX-SOHO-Example/ta-p/413019
Page 8 of 10
EdgeMAX - SOHO Example - Ubiquiti Networks Community
7/17/13 8:51 PM
Now we'll basically add the same 2 rules to WAN_LOCAL and then apply it to eth0/local.
System Settings Lastly we'll use the 'system' tab from the bottom of the page to configure our hostname, nameserver, domain name, time-zone and various other system settings. Notice that if you're ISP assigned you a static public address instead of using DH, then you would configure your gateway here.
http://community.ubnt.com/t5/EdgeMAX-Configuration-Examples/EdgeMAX-SOHO-Example/ta-p/413019
Page 9 of 10
EdgeMAX - SOHO Example - Ubiquiti Networks Community
7/17/13 8:51 PM
The resulting config from this example can be seen at SOHO_Edgemax_Example_Config_Boot.
6 Kudos
Contributors
FCC Compliance Information For information on compliance with FCC rules and requirements, please read this: FCC Compliance Information
Platforms
Company
EdgeMax
airMax
s
Us
airFiber
Training
Marketing
airVision
Investors
UniFi mFi
© 2013 Ubiquiti Networks. All rights reserved. of Service and
http://community.ubnt.com/t5/EdgeMAX-Configuration-Examples/EdgeMAX-SOHO-Example/ta-p/413019
Page 10 of 10
7/17/13 8:51 PM
COMMUNITY
Home
Forums
Knowledge Base
Subscriptions Ubiquiti Networks Community
SIGN IN
Blogs
Bookmarks
Unread Posts
Ubiquiti Networks Community Knowledge Base
Search
Mark As Read
SEARCH
Knowledge Base
Recent Posts
EdgeMAX Knowledge Base
Recent Topics
FAQ
EdgeMAX - Configuration Examples Knowledge Base
EdgeMAX - SOHO Example by
UBNT-James on 03-11-2013 12:19 PM - edited Monday by
UBNT-Matt
Article Options
This article is an example of how a small office might configure their EdgeRouter to connect the office with the Internet. Note: if you're not interested in learning how to do it and just want an example configuration, this forum thread mrjester's Basic SOHO/HOME Config There are three networks: 1. WAN - dh client (getting public address from ISP) 2. LAN - 172.16.0.1/24 3. WLAN - 172.16.1.1/24
Physical Network Diagram
Setup Interfaces From the dashboard tab we can configure the IP address on the interfaces and give optional descriptions.
http://community.ubnt.com/t5/EdgeMAX-Configuration-Examples/EdgeMAX-SOHO-Example/ta-p/413019
Page 1 of 10
EdgeMAX - SOHO Example - Ubiquiti Networks Community
7/17/13 8:51 PM
Note: this example is using DH client to request a addresss. If you have static IP addresses see adding static IP, gateway, name server
Create New One of the first things you'll want to do is get rid of the default 'ubnt' (or at least change it to a strong ). In these next 3 screenshots we'll first create a new .
We can't delete a that is still logged in, so we'll and back in as our new s.
http://community.ubnt.com/t5/EdgeMAX-Configuration-Examples/EdgeMAX-SOHO-Example/ta-p/413019
Page 2 of 10
EdgeMAX - SOHO Example - Ubiquiti Networks Community
7/17/13 8:51 PM
Now we can delete the default .
Setup DH servers We'll create 2 dh servers 1) for the LAN subnet and 2) for the wireless LAN subnet.
http://community.ubnt.com/t5/EdgeMAX-Configuration-Examples/EdgeMAX-SOHO-Example/ta-p/413019
Page 3 of 10
EdgeMAX - SOHO Example - Ubiquiti Networks Community
7/17/13 8:51 PM
Configure DNS forwarding In the previous DH server page we defined the dns server as the router's address, so we'll enable DNS forwarding to listen for DNS requests on both the LAN (eth0) and the WLAN (eth1).
Configure NAT We're using private address on our LAN and WLAN, so we'll need a NAT Masquerade rule for outbound interface eth0.
http://community.ubnt.com/t5/EdgeMAX-Configuration-Examples/EdgeMAX-SOHO-Example/ta-p/413019
Page 4 of 10
EdgeMAX - SOHO Example - Ubiquiti Networks Community
7/17/13 8:51 PM
Stateful Firewall The following example firewall is just very basic (and not necessarily recommended). Basically this allow any traffic from LAN, WLAN or the router to be initiated out to Internet, but drop all traffic initiated from Internet. Before we jump into the example we should first discuss the EdgeOS firewall terminology for IN, OUT, and LOCAL. Applying a firewall ruleset to the INfirewall of an interface affect traffic inbound on that interface but only the traffic forwarded through the router. OUT is traffic that has been forwarded through the router and about to leave exit out the interface. LOCAL is traffic destined for the router (for example if you wanted to use the web UI on the router you'd need to allow port 443 on LOCAL. In of using IN or OUT rules, some will say that IN is better because if you're going to drop a packet it's better to do it on input rather than go through the full packet processing path only to drop it before it leaves the router. First we'll use the 'Add Ruleset' to create the WAN_IN and WAN_LOCAL Rulesets
http://community.ubnt.com/t5/EdgeMAX-Configuration-Examples/EdgeMAX-SOHO-Example/ta-p/413019
Page 5 of 10
EdgeMAX - SOHO Example - Ubiquiti Networks Community
7/17/13 8:51 PM
Select to 'Edit Ruleset' on WAN_IN
Click 'Add a New Rule'
http://community.ubnt.com/t5/EdgeMAX-Configuration-Examples/EdgeMAX-SOHO-Example/ta-p/413019
Page 6 of 10
EdgeMAX - SOHO Example - Ubiquiti Networks Community
7/17/13 8:51 PM
The first rule will 'accept' any packet that has state established or related
Select those state on the 'Advanced' tab
http://community.ubnt.com/t5/EdgeMAX-Configuration-Examples/EdgeMAX-SOHO-Example/ta-p/413019
Page 7 of 10
EdgeMAX - SOHO Example - Ubiquiti Networks Community
7/17/13 8:51 PM
For the 2nd rule we'll drop packets that have state invalid set
Now apply this firewall ruleset to an interface/direction.
http://community.ubnt.com/t5/EdgeMAX-Configuration-Examples/EdgeMAX-SOHO-Example/ta-p/413019
Page 8 of 10
EdgeMAX - SOHO Example - Ubiquiti Networks Community
7/17/13 8:51 PM
Now we'll basically add the same 2 rules to WAN_LOCAL and then apply it to eth0/local.
System Settings Lastly we'll use the 'system' tab from the bottom of the page to configure our hostname, nameserver, domain name, time-zone and various other system settings. Notice that if you're ISP assigned you a static public address instead of using DH, then you would configure your gateway here.
http://community.ubnt.com/t5/EdgeMAX-Configuration-Examples/EdgeMAX-SOHO-Example/ta-p/413019
Page 9 of 10
EdgeMAX - SOHO Example - Ubiquiti Networks Community
7/17/13 8:51 PM
The resulting config from this example can be seen at SOHO_Edgemax_Example_Config_Boot.
6 Kudos
Contributors
FCC Compliance Information For information on compliance with FCC rules and requirements, please read this: FCC Compliance Information
Platforms
Company
EdgeMax
airMax
s
Us
airFiber
Training
Marketing
airVision
Investors
UniFi mFi
© 2013 Ubiquiti Networks. All rights reserved. of Service and
http://community.ubnt.com/t5/EdgeMAX-Configuration-Examples/EdgeMAX-SOHO-Example/ta-p/413019
Page 10 of 10
Related Documents 3m3m1z
Edgemax - Soho Example - Ubiquiti Networks Community 4b4dk
December 2021 0
Soho 4l2n6d
June 2021 0
Soho Si 42584m
April 2021 0
Purl Soho - The Purl Soho Pullover 1t6733
December 2019 34
Curso Ubiquiti 6h5x1n
December 2019 53
Configurar Antena Ubiquiti (cualquiera) 1q5c2a
November 2019 53More Documents from "Luiz Camp" 541d3v
Edgemax - Soho Example - Ubiquiti Networks Community 4b4dk
December 2021 0
Bloqueando O Teamviewer 26281r
November 2019 41
The Patriot Pastor, Garrett Lear's Biography 4b2qg
November 2019 58
Camp Amichai 2017 Brochure - English 63c4d
December 2019 45
A True Short Story About Weather Prediction 22683d
November 2019 50