Forum Replies Created
-
Posts
-
If you figure this out, please respond here. I believe you can’t use TAP devices on Android either, so I am also looking for a way to set ZeroShell to use TUN.
How are you connected to the internet router? It should be connected to one of the LAN ports, assuming it is a consumer router, not the WAN (Internet) port.
NOIP is built into ZeroShell. Just go to DNS|Dynamic DNS and enter the information. I use it as well, and it works great.
yeah, that was the first thing I tried, but it appears that the forwarder doesn’t work, or I configured it wrong.
I set the domain to MyDomain.com and server to 10.1.10.10, but it still didn’t work (10.1.10.10 is our internal DNS server).
It works if I set up a SOA for MyDomain.com in ZS, however, our website isn’t hosted local, so it seems to break that…is there a way to forward that request onto the ISP DNS servers, or even our local DNS server?
Are you accessing your server by DNS or by IP? I managed to get ZS to use my DNS (at least temporarily), but it still didn’t work. I have no idea where to go from here.
You will need the following:
{Cable Modem} <---> {Zero Shell Router Ethernet 1}
Then you will also need:
{Zero Shell Router Ethernet 2} <---> {Switch}
Then connect all of your devices (PC’s) to the switch via ethernet cables.
You will need to configure NAT to work on the Ethernet interface connected to your Cable modem. You will also need to configure that interface to get it’s IP address via DHCP (Most likely…it is possible that you have a static IP, but doubtful).
On the interface that is connected to the switch, you will need to put a static IP. I would suggest the following:
IP: 192.168.25.1
Mask: 255.255.255.0You will also need to configure DHCP for that network.
You MAY need to configure a default gateway as well on the router, I don’t remember in this configuration if ZS will figure it out on it’s own or not. Either way, hopefully this will get you started. There are plenty of things on the internet to help out as well. Just know, that at a minimum, you will need DHCP, and NAT configured. You will also need a minimum of 2 ethernet interfaces on your ZS router.
Internal traffic will go through ZS if it is on a different subnet/VLAN, which it is. In my case, I have 5 interfaces, and 17 VLANs (and yes, there are reasons why I have 17 VLANs).
I am trying to access from 10.1.2.0/24, and the servers are on 10.1.10.0/24.
I believe if I could get ZS to use our internal DNS server that this would probably work just fine, but I don’t know where ZS gets it DNS info from (or how to change it to point to a different DNS server). I tried changing /etc/resolv.conf, but it didn’t seem to work.
I have something similar. Create a firewall forward rule. in Input, choose your open network interface (and VLAN if appropriate). In output, choose your WAN network (I assume you only want them to be able to get out to the internet). Check the ‘Not’ checkbox on the Output side.
Under ACTION, choose reject. I have with icmp host unreachable, but you can select whatever you want there, I think.
What this will do, is block any traffic coming in on the open WLAN and if it isn’t destined for the outside world (IE: the Internet), then it will be dropped.
Hope that helps.
