Yeah, I would also appreciate a bit more documentation on the syntax of the routing-policy file.Hi, this has been super helpful!
What would the policy be if I wanted to exclude an IP rather than include a specific IP?
Yeah, I would also appreciate a bit more documentation on the syntax of the routing-policy file.Hi, this has been super helpful!
What would the policy be if I wanted to exclude an IP rather than include a specific IP?
I believe it's kernel related. Merlin stays with the base ASUS code which is using the 2.6.36.4 linux kernel. Wireguard needs at least 3.10. If you install OpenWRT then you can use wireguard but on the ASUS codebase the kernel version is too old.
Off topic, but even the Raspberry Pi 3B+ is limited to about 300Mb/s over Ethernet - is that fast enough?I suspect it would likely be better to set up a RasPi as router
It's strange we have desktops with similar processing power running kernel 4.xx, yet the routers we connect thru are back, what, a decade? in the code dep't.
What would the policy be if I wanted to exclude an IP rather than include a specific IP?
Are you suggesting that informed, aware consumers should share their desires with the manufacturers more often? (I agree)Main reason is driver support for your desktop is mainlined in the kernel, while for embedded devices it's done by the hardware manufacturer.
For me, yes, and I suspect for most home users as well.Off topic, but even the Raspberry Pi 3B+ is limited to about 300Mb/s over Ethernet - is that fast enough?
Are you suggesting that informed, aware consumers should share their desires with the manufacturers more often? (I agree)
Thanks for all the help with this. With the routing policies this is amazing.
One thing I've noticed is that with the router running wireguard as a client, it seems like the router OpenVPN server can no longer route any traffic (even locally).
Specifically, cell phone can connect to the router that's behind wireguard, but can't route traffic either locally within the intranet, or through the internet, even when the OpenVPN IP range (10.9.x.x) is included or excluded from the policy.
disable compression and try againI did, and it didn't seem to help.
Maybe there's a problem with my OpenServer config?
https://imgur.com/a/mO8fKxb
sorry, I don't route client to wg server.Tried that as well. No joy.
Here's the openvpn.conf and wg-policy if it helps:
ip rule del prio 11000 2>/dev/null
ip rule del prio 11111 2>/dev/null
ip rule del prio 11112 2>/dev/null
ip rule add from 192.168.71.125 lookup main prio 11000
ip rule add from 192.168.71.0/24 lookup 117 prio 11111
ip rule add from 10.9.0.0/24 lookup 117 prio 11112
updatedHello
I was woundering if it was possible
to get a some help on how to setup wireguard as a server on the router so I can connect client to my home net.
Much appreciated.
PS network is unfortunately not my strong point.
Now client default route mode supports DNS configuration.Could it have to do with the DNS settings? Since we don't enter any DNS settings in the WireGuard config, so the routering stopps working after some hours?
# libmnl, maybe a bit wrong cause I lost the record
CFLAGS="-I/home/sylphia/dists/aarch64-linux/include" LDFLAGS="-L/home/sylphia/dists/aarch64-linux/lib -lmnl" make ARCH=arm64 LD=aarch64-buildroot-linux-gnu-ld CROSS_COMPILE=aarch64-buildroot-linux-gnu- KERNELDIR=/home/sylphia/asuswrt-merlin.ng/release/src-rt-5.02hnd/kernel/linux-4.1 PREFIX=/home/sylphia/dists
CPU_V7=y CFLAGS="-I/home/sylphia/dists/aarch64-linux/include -O3 -mcpu=cortex-a53+crypto -march=armv8-a+crypto+crc+simd" LDFLAGS="-L/home/sylphia/dists/aarch64-linux/lib -lmnl" make ARCH=arm64 CROSS_COMPILE=aarch64-buildroot-linux-gnu- KERNELDIR=/home/sylphia/asuswrt-merlin.ng/release/src-rt-5.02hnd/kernel/linux-4.1 PREFIX=/home/sylphia/dists clean
CPU_V7=y CFLAGS="-I/home/sylphia/dists/aarch64-linux/include -O3 -mcpu=cortex-a53+crypto -march=armv8-a+crypto+crc+simd" LDFLAGS="-L/home/sylphia/dists/aarch64-linux/lib -lmnl" make ARCH=arm64 CROSS_COMPILE=aarch64-buildroot-linux-gnu- KERNELDIR=/home/sylphia/asuswrt-merlin.ng/release/src-rt-5.02hnd/kernel/linux-4.1 PREFIX=/home/sylphia/dists module
cd tools/
CC=arm-buildroot-linux-gnueabi-gcc CFLAGS="-I/home/sylphia/asuswrt-merlin.ng/release/src-rt-5.02hnd/router/libmnl/staged/usr/include" LDFLAGS="-L/home/sylphia/asuswrt-merlin.ng/release/src-rt-5.02hnd/router/libmnl/staged/usr/lib" make WITH_BASHCOMPLETION=no WITH_SYSTEMDUNITS=no
Welcome To SNBForums
SNBForums is a community for anyone who wants to learn about or discuss the latest in wireless routers, network storage and the ins and outs of building and maintaining a small network.
If you'd like to post a question, simply register and have at it!
While you're at it, please check out SmallNetBuilder for product reviews and our famous Router Charts, Ranker and plenty more!