From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mail-qg0-x236.google.com (mail-qg0-x236.google.com [IPv6:2607:f8b0:400d:c04::236]) (using TLSv1 with cipher RC4-SHA (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by huchra.bufferbloat.net (Postfix) with ESMTPS id BB66121F3F7 for ; Thu, 2 Oct 2014 19:02:26 -0700 (PDT) Received: by mail-qg0-f54.google.com with SMTP id z107so306981qgd.27 for ; Thu, 02 Oct 2014 19:02:24 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; bh=aYDF+DcJL4nYs2jAciZu+njWciGFr73w2TuCf1EmIJw=; b=ju6mlgjezpCo6XGZBBVKLWLjXk9qB8K8FIPK4Tx6PETs8Samv0Rv+MoalgKJcv5Zw0 gsBGjJSn1E5XF2s5zuXW3D+3JDFMjZ/ZltGdjxjvB6VDhhiXJw3oyz0dSg4rqNgrPv9F TxRQIb0L1h7TcmjtFR6Zikv6f185JTR2OqyWUPnYJso24M3OGA+UjdPSWVP9TJKbTioo uGI73oobEIdHtFTSr2c7tx71j62vXbv2IAYR1APCohsqE7G4hYVIRDr4BoOZ+r2Usku+ FLXO3B0aTINWAgD50EWjMgImdKDcJMFOMT5ciDC8XHUhOt2ezRU2IYuyvVkfbLORA3bE WXjg== MIME-Version: 1.0 X-Received: by 10.140.106.130 with SMTP id e2mr1254393qgf.21.1412301742789; Thu, 02 Oct 2014 19:02:22 -0700 (PDT) Received: by 10.202.227.76 with HTTP; Thu, 2 Oct 2014 19:02:22 -0700 (PDT) In-Reply-To: <542DFCCA.7080708@eggo.org> References: <542DFCCA.7080708@eggo.org> Date: Thu, 2 Oct 2014 19:02:22 -0700 Message-ID: From: Dave Taht To: "Eric S. Johansson" Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable Cc: cerowrt-devel Subject: Re: [Cerowrt-devel] vpn fw question X-BeenThere: cerowrt-devel@lists.bufferbloat.net X-Mailman-Version: 2.1.13 Precedence: list List-Id: Development issues regarding the cerowrt test router project List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 03 Oct 2014 02:02:55 -0000 On Thu, Oct 2, 2014 at 6:32 PM, Eric S. Johansson wrote: > I was trying to setup my cerowrt box as an openvpn client. everything see= ms > to be working. The VPN link comes up, tun0 is created. I can access machi= nes > on the far end of the link from the AP and vice versa. the openwrt > incantation for the vpn says to create an interface called vpn0 > > network.vpn0=3Dinterface > network.vpn0.proto=3Dnone > network.vpn0.ifname=3Dtun0 You just add the appropriate commands to /etc/config/openvpn, or so I thought. > > ifconfig says tun0 exists but no vpn0. fw3 reload says: > > Warning: Section @zone[1] (lan) cannot resolve device of network 'lan' > Warning: Section @zone[2] (guest) cannot resolve device of network 'guest= ' Not a problem, I think. > sometimes it says: Warning: Section @zone[1] (lan) cannot resolve device = of > network 'vpn0' > > tcpdump sees the ICMP request at se00 and tun0 but not at the remote targ= et. > this leads me to believe that it's probably a firewall problem but I don'= t > know where the logs are. logread. > This brings me to one of the problem with had making changes in cerowrt, > namely, how the $##$& do you debug this thing? I've had to reflash this b= ox > way too many times because I did something that effectively bricked it. > right now, I would settle for knowing where to find where logs are put. logread dmesg They are not written to flash or ram by default so as to never run you out of either. > > thanks > --- eric > > > > > > > _______________________________________________ > Cerowrt-devel mailing list > Cerowrt-devel@lists.bufferbloat.net > https://lists.bufferbloat.net/listinfo/cerowrt-devel --=20 Dave T=C3=A4ht https://www.bufferbloat.net/projects/make-wifi-fast