OpenVPN Site-to-Site VPN between Asus Merlin And Ubnt EdgeRouter

前言 Network Topology RT-AC68U 使用PPPoE拨号上网,但是分配的IP是100.64.204.111, 看着像公网IP实际却是Carrier-grade NAT. 现在需要将RT-AC68U与一台在公网的EdgeRouter使用OpenVPN Site-to-Site连接起来,并在RT-AC68U端实现policy-based routing。 需要让RT-AC68U下的所有设备能访问EdgeRouter LAN的网络,并根据需求透过VPS访问指定互联网。 本实验参考下列文章: Set up OpenVPN Site-to-Site on UBNT EdgeRouter Lite EdgeRouter OpenVPN Connectivity Monitor EdgeRouter 策略路由实现分析 EdgeRouter Policy Based Routing Using DNSMASQ IPSET Incoming search terms:asus merlinmerlin openvpn policy basedunderkdfasus ac88 site to site openvpnofficesn8nosev67nervous8xdleft1i1leadp9hgolden2w5gettingpohdryu82Create NAT on tunnelcountryljycopyozjcontinued8x6boxz65been1nnasus openvpnasus open vpn site to siteLink … Continue reading “OpenVPN Site-to-Site VPN between Asus Merlin And Ubnt EdgeRouter”

Setup WPAD on EdgeRouter

Previously, I wrote Setup WPAD on Asus Merlin. Similar on EdgeRouter. 1 Configure Domain name. System

DHCP service

2 Prepare wpad.dat I don’t have wpad.dat deployed on my router, but an internal Ubuntu server with nginx as httpd, IP 192.168.36.20. wpad.dat is located to default server root, if you have your custom, make … Continue reading “Setup WPAD on EdgeRouter”

Hijack DnsPod HttpDNS

劫持DNS是个很简单的工作,家用路由器基本都自带dnsmasq,直接加解析就行。 之前某次尝试劫持某视频App的广告接口解析到一个空的本地服务器上,发现该App使用了DnsPod的HttpDNS服务,所以传统的DNS劫持方案不好用。而EdgeRouter的DPI功能也没有对外开放墙一般的高级接口,所以这次用NAT来实现。 Incoming search terms:bushasshomebhrraink7zseveralr87streetagyLink to this post!

抛开路由为局域网内机器启用IPv6

支持IPv6这事情不一定非得要路由上配,局域网内只要有Linux机器能用IPv6就行。 这种事情做之前,对于完全不会的人和会的人都很简单,但对我这种稍微懂一点的,还没做可能就先想多了。 测试环境 公司 路由:TP-Link某老旧企业路由,不支持IPv6 Linux:Debian Jessie, 服务主机,兼顾dns,dhcp等等服务,LAN接口eth0 网络:北京联通家庭光纤 PPPoE IPv6 服务:Tunnel Broker 其他软件:dnsmasq, dhcpd Incoming search terms:北京联通 ipv6维盟 ipv6blueuk3free ddnsipv6 局域网linux v4tunnelstoodwx7tp-link不支持ipv6tunnel brokerubnt ipv6北京联通 pppoe ipv6维盟路由启用ipv6维盟路由器 ipv6Link to this post!