dbell
Regular Contributor
I have devices that can't run the NordVPN client like TV's and Apple TV so I was hoping to do a simple guest SSID mapping to OVPNx using VPN Director policy rules. Then if I want to use VPN on those devices I can simply connect to the specific guest network and not have to change router configs.
I'm running Merlin 386.4 on a pair of AX86U's and I want to use 5G guest slot 1 so that I can connect via either my router or aimesh node.
I set up the 5G wireless guest network, no intranet access, all works fine. I set up the NordVPN config on OVPN1 and it works fine. I created a vpn director rule and used the specific IP address of my iPhone as source with the OVPN1 interface. My iPhone connects to the wireless, gets that IP address but cannot connect to the Internet.
I have searched the forums and I see similar posts, and have tried the manual option here https://github.com/RMerl/asuswrt-me...or-VPN-and-SSID-for-Regular-ISP-using-OpenVPN but can't seem to get this working. When I run that script using wl1.1 and the 102.x network range I get errors like this:
RTNETLINK answers: File exists
RTNETLINK answers: No such process
I tried walking through the various parts of it doing the manual equivalent and commands were accepted but didn't work overall.
Have not tried YazFi yet.
Connectivity does work if I enable the guest intranet access, my iPhone gets a lan dhcp address instead of the 102.x address from the guest network, and if I use that IP as the source then the iPhone connects over the VPN as confirmed using iplocation.net.
Seems like the intranet access off is the blocking problem here but I'm not familiar enough with the bridges, interfaces, routes and firewall rules to fix it.
Any advice or assistance much appreciated.
UPDATE: I tried YazFi and after misreading the "allow internet access" for "allow intranet access" and thus needing to allow it, it seems to work !
I'm running Merlin 386.4 on a pair of AX86U's and I want to use 5G guest slot 1 so that I can connect via either my router or aimesh node.
I set up the 5G wireless guest network, no intranet access, all works fine. I set up the NordVPN config on OVPN1 and it works fine. I created a vpn director rule and used the specific IP address of my iPhone as source with the OVPN1 interface. My iPhone connects to the wireless, gets that IP address but cannot connect to the Internet.
I have searched the forums and I see similar posts, and have tried the manual option here https://github.com/RMerl/asuswrt-me...or-VPN-and-SSID-for-Regular-ISP-using-OpenVPN but can't seem to get this working. When I run that script using wl1.1 and the 102.x network range I get errors like this:
RTNETLINK answers: File exists
RTNETLINK answers: No such process
I tried walking through the various parts of it doing the manual equivalent and commands were accepted but didn't work overall.
Have not tried YazFi yet.
Connectivity does work if I enable the guest intranet access, my iPhone gets a lan dhcp address instead of the 102.x address from the guest network, and if I use that IP as the source then the iPhone connects over the VPN as confirmed using iplocation.net.
Seems like the intranet access off is the blocking problem here but I'm not familiar enough with the bridges, interfaces, routes and firewall rules to fix it.
Any advice or assistance much appreciated.
UPDATE: I tried YazFi and after misreading the "allow internet access" for "allow intranet access" and thus needing to allow it, it seems to work !
Last edited:
