Well, as I previously said, I finally know why it doesn't worked as expected for me, since lines like "listen-on vti0 and listen-on vti1" were missing, for requests incoming from tunneled networks.
However, it seems to be strange that requests are sometimes still forwarded, as we can expect that none are forwarded, or all are forwarded, but why sometimes only some request are forwarded ? This seems to be a bug, however this ticket can be closed since for my needs it's ok...
- Queries
- All Stories
- Search
- Advanced Search
- Transactions
- Transaction Logs
Feed Advanced Search
Advanced Search
Advanced Search
Mar 12 2018
Mar 12 2018
Mar 9 2018
Mar 9 2018
(By the way, it would be interesting to be able to add more than only one inbound-interface to a NAT rule...)
(And I guess that it's the same reason for NAT rule : the inbound-interface should not only be eth0...)
- There are no firewall rules set, and no firewall rulset set to the interface on the affected VyOS instances
- The problems seems to occur whatever the name resolution request is
- Yes, see below
Mar 8 2018
Mar 8 2018
Yes, I thought about that too, but with or without setting the dns
cache-size to 0, I have the same result !
Mar 7 2018
Mar 7 2018
Smiley added a comment to Q134: In state related mode, does the OUT rules-set of an interface are the same that the IN rules-set of the others interfaces ? (and vice versa) (Answer 185).
Ok, thank you for all these details !...
Mar 5 2018
Mar 5 2018
Feb 28 2018
Feb 28 2018