[Cerowrt-devel] vpn fw question
Joel Wirāmu Pauling
joel at aenertia.net
Thu Oct 2 22:21:03 EDT 2014
In Cerowrt the various net devices have been relabeled; as per here :
http://www.bufferbloat.net/projects/cerowrt/wiki/Device_naming_scheme
I usually add a new device via Luci (call it somethingvpn) and select
custom device (tap0 or tun0).
Than add a new Firewall zone (VPN)
I tend to edit the /etc/config/openvpn and just point it at a custom
config (and set that entry to enabled).
Reboot and then fiddle the firewall zone forwarding mappings as appropriate.
Remember that unless you are going to be advertising routes on cerowrt
to your internet clients you will actually want to set the vpn zone as
masqueraded.
-Joel
On 3 October 2014 15:16, Eric S. Johansson <esj at eggo.org> wrote:
>
> On 10/2/2014 10:02 PM, Dave Taht wrote:
>>
>> You just add the appropriate commands to /etc/config/openvpn, or so I
>> thought.
>
> one would think. I'll have to try backfitting my .ovpn config into uci. see
> of that changes anything
>
>> logread dmesg
>
> Thu Oct 2 21:58:59 2014 daemon.notice netifd: wan6 (12721): Command failed:
> Unknown error
>
> not what I'm looking for but if you can give me a hint of where to start
> looking, I'll take a stab at fixing it. yes, I'm reading up on netifd. :-)
> still haven't found an explanation for the @ge00.
>
>
>
>
> _______________________________________________
> Cerowrt-devel mailing list
> Cerowrt-devel at lists.bufferbloat.net
> https://lists.bufferbloat.net/listinfo/cerowrt-devel
More information about the Cerowrt-devel
mailing list