Search results

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

  1. canufrank

    Redirect Internet traffic misbehaving

    And now I'm flummoxed. I reinstated execution of script via openvpn-event trigger, so as to not clobber the route-up vnpnrouting.sh above. Table 111 appears quite different under 380.57 than 378.55 (eth0 has changed to vlan2); and the default entry remains in opposition to the prohibit that I...
  2. canufrank

    Redirect Internet traffic misbehaving

    I read the plural 'Removing route from routing tables' to imply multiple tables, especially as the untouched table 111 from earlier yesterday did not have those entries either. I don't know at what point they appeared in said table. I'm only using one VPN- client 1 I didn't after the factory...
  3. canufrank

    Redirect Internet traffic misbehaving

    What's NOT happening is that openvpn-routing is accomplishing what it is logging. Jan 8 23:35:55 openvpn-routing: Configuring policy rules for client 1 Jan 8 23:35:55 openvpn-routing: Creating VPN routing table *** Jan 8 23:35:55 openvpn-routing: Removing route for 10.125.1.1 to tun11 from...
  4. canufrank

    Redirect Internet traffic misbehaving

    Hi @john9527 , I seem to be getting different behavior than you. If the openvpn-event is called while the client is being started, NO args are being passed. If the client is shutting down, then a single arg is received where the interface is the first word. $(echo $1|cut -d" " -f1). I'm...
  5. canufrank

    Redirect Internet traffic misbehaving

    For now, I'm working around the issue by having openvpn-event invoke my script: #!/bin/sh myrouteup=/mnt/sda1/routeup.sh log(){ /usr/bin/logger -s -t " $(basename $0)[$$]" " " "$@"; } if [ -c /dev/net/tun ]; then if [ -s $myrouteup ]; then log "Running...
  6. canufrank

    Redirect Internet traffic misbehaving

    Well, I added 3 lines back to my config: auth-nocache script-security 2 #route-up /mnt/sda1/routeup.sh routeup.sh simply reads: #!/bin/sh dbg= logger -t " $(basename $0)[$$]" " Skipping $0" return 0 a whole bunch of other stuff With the route-up script disabled, syslog reads: Jan 8 19:12:49...
  7. canufrank

    Redirect Internet traffic misbehaving

    I also put in a url link which you can follow beside the broken picture. (Links to onedrive work, right? They do for me.) Explicitly http://1drv.ms/1K3Pwo4 Scrapped all settings and the problem went away. (I was essentially using these excepting the last 2...
  8. canufrank

    Redirect Internet traffic misbehaving

    This is the syslog after turning client1 on: Jan 8 16:33:14 rc_service: httpd 498:notify_rc start_vpnclient1 Jan 8 16:33:14 kernel: tun: Universal TUN/TAP device driver, 1.6 Jan 8 16:33:14 kernel: tun: (C) 1999-2004 Max Krasnyansky <maxk@qualcomm.com> Jan 8 16:33:14 openvpn[3054]: OpenVPN...
  9. canufrank

    Redirect Internet traffic misbehaving

    OK, if that rule works for others, is there another reason that my routed client is getting no connectivity with what I think it is a default config? Note: the tunnel is definitely up.
  10. canufrank

    Redirect Internet traffic misbehaving

    OK, I've added a rule and can see it (1201: from 192.168.0.46 lookup vpn1 [where vpn1=111]). I have no other modifications to rules or tables. Yet the machine has no connectivity at all. The table looks like: frank@AC68U:/tmp/home/root# ip route show table vpn1 104.175.4.1 dev eth0 scope link...
  11. canufrank

    Selective Routing with Asuswrt-Merlin

    So, 16 or >= 128?
  12. canufrank

    Selective Routing with Asuswrt-Merlin

    @Mikeyy, in that thread you keep posting links to, you variously say that you don't really understand what the script does and proceed to talk about how it intermittently stops working. I don't know why you're even endorsing it. You seem not to have read my last post and just iterated your...
  13. canufrank

    Selective Routing with Asuswrt-Merlin

    I only have 1 VPN client active. The use of table 10 and 12 is from the scripts in this thread (first posted by DJR747 and then continued throughout the thread, especially by @Martineau ). I didn't think the use of marks was 'default'.
  14. canufrank

    Selective Routing with Asuswrt-Merlin

    @Mikeyy et al I already have the code from post #6 (mangle/PREROUTING) in my route-up script as you can see above. (Using mark 12 for ISP.) This does not seem to be making a difference for issue 1 where port 32400 seems to be going over the VPN despite the inclusion of those rules. I've also...
  15. canufrank

    Selective Routing with Asuswrt-Merlin

    Wow, this thread was not a fun read, but very informative. Thanks to everyone who contributed, including the mysterious once-ever-poster DJR747. After fiddling around for a week, I finally have selective routing working. One machine can only communicate on the VPN except for those ports where I...
  16. canufrank

    Disable Internet for Guest Network

    Can you request a pull, or is there some official procedure in place to make change requests?
  17. canufrank

    Disable Internet for Guest Network

    Thank you very much for your continued help ASAT. Unfortunately, I'm not in a position to rebuild the kernel right now. Are those 2 settings changes innocuous enough that Merlin would consider a pull?
  18. canufrank

    Disable Internet for Guest Network

    As you suspected ASAT, I wanted to utilize the guest network so that I don't have to manage clients individually. I suspect that we're on the right track though. If guest SSID's can have 'Access Internet' set individually, one would assume they have individual table/chain/rules where the...
  19. canufrank

    Redirect Internet traffic misbehaving

    Thanks Eric. I thought that the GUI setting might be adding 'route-nopull' for me. Can you tell me what the GUI setting actually does, and how it differs from what 'Policy Rules' does? edit: Changing references to 'route no-pull'.
  20. canufrank

    Redirect Internet traffic misbehaving

    If I set 'Redirect Internet traffic' to No, all my devices are connecting through the VPN. As expected, when set to All Traffic, traffic also uses the VPN connection. Only when set to Policy Rules do my clients revert back to my ISP. Am I missing the meaning of this setting?
Top