You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
@@ -18,7 +18,7 @@ If you use `adguardhome`, `mosdns` in `dns` section, refer to [external-dns](con
### Troubleshoot firewall
If you bind to wan, make sure firewall is stopped or `12345` is allowed by firewall. Don't worry about the security of this port because this port has its own firewall rule.
If you bind to wan, make sure firewall is stopped or mark `0x8000000` is allowed by firewall. Don't worry about the security of this port because this port has its own firewall rule.
Usual firewalls on Linux:
Expand All
@@ -27,6 +27,8 @@ ufw
firewalld
```
#### ufw
UFW users may need some extra steps to make sure `Binding to LAN` working.
Such as adding as follows to `/etc/ufw/before*.rules`:
Expand All
@@ -39,6 +41,14 @@ Such as adding as follows to `/etc/ufw/before*.rules`:
-A ufw6-before-input -m mark --mark 0x8000000 -j ACCEPT
```
#### firewalld
If you use firewalld, it is hard to add mark support. You have to execute following commands every time machine boot and firewall rule changes:
```bash
sudo nft 'insert rule inet firewalld filter_INPUT mark 0x8000000 accept'
```
### Troubleshoot PPPoE
dae does not support PPPoE due to it is too complexity for a ebpf program. Binding to LAN for other machines should work fine. If you want to proxy the machine itself, see <<https://github.com/daeuniverse/dae/discussions/304>.
