sorry, I gave up on the openvpn bridge because I don't seems to be able to keep the routers up and stable.
I have been running fine without the openvpn bridge, so I have to assume that the instability was caused by the openVPN connection. ... probably with the combination of QOS, GUI management ... and a slow uplink (128Kbps).
JN wrote:
slgta, or anyone else, have you made any headway with this?
Joined: 03 Jan 2007 Posts: 76 Location: Sweden, Stockholm
Posted: Tue Dec 23, 2008 20:12 Post subject:
I'v been running two dd-wrt routers in bridged openvpn mode (one server and one client) through the internet for a couple of years now, but I haven't solved the DHCP issue yet...
Please someone make my day and solve this issue! _________________ WRT320N
I'v been running two dd-wrt routers in bridged openvpn mode (one server and one client) through the internet for a couple of years now, but I haven't solved the DHCP issue yet...
Please someone make my day and solve this issue!
Glad to hear there is somebody else interested in this.
Hopefully someone here can advise on how we might use either iptables or ebtables or find some other way to correct the DHCP issue so that computers always get DHCP from the nearest router and never the far side of the bridge.
I don't know how I did it, but my client router(at my inlaws place)always issues the IP to the computers they own. I have it set where my ip range from 192.168.1.200 to 192.168.1.249. And a maximum of 50 clients, as it is in the default config.
I don't know how I did it, but my client router(at my inlaws place)always issues the IP to the computers they own. I have it set where my ip range from 192.168.1.200 to 192.168.1.249. And a maximum of 50 clients, as it is in the default config.
I don't know how it's doing it either, but that's is what is being done on my client router. _________________
Routers:
E2000 latest BIG
whr-g54s client vpn
wr850g lastest mini
I tried the commands:
ebtables -I INPUT -i tap0 -p IPv4 --ip-protocol udp --ip-destination-port 67:68 -j DROP
ebtables -I OUTPUT -o tap0 -p IPv4 --ip-protocol udp --ip-destination-port 67:68 -j DROP
first in the firewall script, it didn't work.
ebtables -L gave empty table.
I put the commands
ebtables -I INPUT -i tap0 -p IPv4 --ip-protocol udp --ip-destination-port 67:68 -j DROP
ebtables -I OUTPUT -o tap0 -p IPv4 --ip-protocol udp --ip-destination-port 67:68 -j DROP
in the startupsection after the insmod commands
Posted: Wed Jan 28, 2009 16:56 Post subject: Re: My working solution
knzsys wrote:
I put the commands
ebtables -I INPUT -i tap0 -p IPv4 --ip-protocol udp --ip-destination-port 67:68 -j DROP
ebtables -I OUTPUT -o tap0 -p IPv4 --ip-protocol udp --ip-destination-port 67:68 -j DROP
in the startupsection after the insmod commands
and it worked!
So, then you are saying that all of this goes in the startup script in this order?
Back on page 1 of this topic, I had the rules in the firewall and the insmods in the startup script. I guess that's why it didn't work. I will try it this way when I get a chance.
Posted: Thu Jan 29, 2009 8:15 Post subject: Re: My working solution
knzsys wrote:
...
knzsys, I'm curious, have you reset power to your router and confirm that ebtables is still running correctly? If so, what version of the firmware are you using?
In my thread ( http://www.dd-wrt.com/phpBB2/viewtopic.php?t=45292&postdays=0&postorder=asc&start=0 ) I am trying to solve the exact same problem and ebtables does precisely what I want, but we've found due to a rather severe bug in DD-WRT that ebtables won't load correctly from the startup script. More specifically, ebtable_filter won't load, and without that module ebtables doesn't work.
So if your router is successfully loading ebtables from the startup script I'd be very interested in knowing which version you're using.
Posted: Thu Jan 29, 2009 14:04 Post subject: Re: My working solution
Firov wrote:
knzsys wrote:
...
knzsys, I'm curious, have you reset power to your router and confirm that ebtables is still running correctly? If so, what version of the firmware are you using?
In my thread ( http://www.dd-wrt.com/phpBB2/viewtopic.php?t=45292&postdays=0&postorder=asc&start=0 ) I am trying to solve the exact same problem and ebtables does precisely what I want, but we've found due to a rather severe bug in DD-WRT that ebtables won't load correctly from the startup script. More specifically, ebtable_filter won't load, and without that module ebtables doesn't work.
So if your router is successfully loading ebtables from the startup script I'd be very interested in knowing which version you're using.
Firov, did you have a chance to try the knzsys method yet, with all the commands in the startup script? I have not had time to do it yet. You might go ahead and try it with a recent version of the firmware and report back which version and whether it works. Thanks.