OpenVPN (command line configuration)

K, finally managed to create de OpenVpn certificates, but now I am having a stupid problem where I cant simply open the port 1194 on the router, I can open other ports like the port 80 so I think this is strange, can anyone help me on this?
Thank you

I get this error, when I try to install Transmission

Collected errors:
 * satisfy_dependencies_for: Cannot satisfy the following dependencies for transmission-daemon:
 *      libcurl *       libevent2 *
 * opkg_install_cmd: Cannot install package transmission-daemon.

I guess it's missing libs or?

guys, can anyone confirm that the openvpn configuration works with the latest builds? I have done absolutely everything multiple times correctly(building the certificates, opening the ports etc ips everything) and still I cannot connect to the server, I have the config file correctly etc, 2 things I found they were a bit strange(but should work anyway I think) are:
I have the option 'dev' 'tap0' on the config of the openvpn but it does not show as an option on Lan interfaces for me to tick it, so I had to use custom interface, but do you know why tap0 doesnt start showing?
another strange thing is when I use the build-dh the generated file is dh2048.pem instead of dh1024.pem, I changed the config files to have 2048.pem, this are the only 2 differences that I did from tutorials like:
http://www.frogiswrong.com/blog/article … ore-detail
but still it doesnt work.

Pleas anyone have any ideas?
thank you

anyone please?

@durad
Can you post your OpenVPN config?

@LarsNorgaard
You have to use the --force-depends flag, like this:

opkg --force-depends install transmission-deamon

opkg --force-depends install 'transmission-deamon'
Unknown package 'transmission-deamon'.
Collected errors:
 * opkg_install_cmd: Cannot install package transmission-deamon.

list is updated and shown in the list

error shown at webinterface is the same as LarsNorgaard has.

I'm sorry, I spelled daemon wrong .
Try again:

opkg --force-depends install transmission-daemon

to solve the "transmission issue" it's only necessary to add all repositories...

see http://wiki.openwrt.org/doc/techref/opk … positories

src/gz base http://downloads.openwrt.org/snapshots/trunk/ar71xx/packages/base
src/gz luci http://downloads.openwrt.org/snapshots/trunk/ar71xx/packages/luci
src/gz management http://downloads.openwrt.org/snapshots/trunk/ar71xx/packages/management
src/gz packages http://downloads.openwrt.org/snapshots/trunk/ar71xx/packages/packages
src/gz routing http://downloads.openwrt.org/snapshots/trunk/ar71xx/packages/routing
src/gz telephony http://downloads.openwrt.org/snapshots/trunk/ar71xx/packages/telephony

I am going crazy here. How can I enable remote web Luci access over the internet (WAN)???

PS: I managed to do that like this

iptables -t nat -A prerouting_rule -p tcp --dport 8080 -j DNAT --to 192.168.1.1:80
iptables -A input_wan -p tcp -d 192.168.1.1 --dport 80 -j ACCEPT

But how come port forwarding for ports 80 and 443 does not enables remote web access?

(Last edited by doctor78 on 27 Oct 2014, 22:07)

Hi I've installed the latest BB r42943 build on my WNDR3800.  Facing a problem for which I just can't seem to find any solution or even where to start.  I have a CCTV DVR with a static IP connected by wire to the router.  With the original Netgear firmware (WNDR3800-V1.0.0.48) everything works OK.  But with this custom build the router does not see the DVR.  Have not made any changes in configuration other than setting up internet and some basic configuration.  What is strange is that my laptop with static IP and wired connection works.  WiFi clients all work OK.

All I can assume is that the DVR is connecting to the router in some different way which this custom build does not recognize but the original firmware does.  I see in the DVR some options for multicast.  Don't understand multicast much.  But could this have something to do with it?  If so, how do I enable multicast service in this custom build?

Maybe your ISP blocks incoming traffic to those ports?
Some ISPs block "the usual ports" for security reasons. (E.g. my own ISP "drops" all incoming traffic to 25, 135, 137, 138, 139, 445, 593)

No my ISP does not block any ports. On Gargoyle this worked. Please don't tell me to go back to Gargoyle because this FW works marvellous. I just need to learn some stuff.

WNDR3800User, I think you'd get this answered better by opening a thread in the general forum (and if you do, go ahead and reply there, I'll find it), but I wanted to ask exactly what you meant by static IP.

It could mean that on the device you're disabling DHCP and entering the IP information manually, or it could mean that DHCP is enabled on the device but that you're reserving an IP for it in the router by MAC (Network->DHCP and DNS->Static Leases).

If it's the former, try not doing that as a test; if it's the latter, double-check your MAC.

Updated: Because I originally included the name of the wrong user.

(Last edited by rseiler on 28 Oct 2014, 21:20)

@rseiler, Thanks.  Have posted on General forum with topic "Wired client in WNDR3800 not visible from LAN or from router".

I am trying with the former.  I.e., disabling DHCP on the device and entering the IP manually.  Have tried with enabling the DHCP also but no reservation of IP (i.e., letting any dynamic IP be allocated).  That doesn't work either.

You must create permanent tap device in order to bridge it with the outbound interface
Use the Openvpn - - mktun option, see
http://openvpn.net/index.php/open-sourc … npage.html
Of course you must create a dev tap0 device.
Otherwise you must configure a dynamic bridge, but I haven't done it by myself (I use static).
Another thing is to add Openvpn port accept from wan to all ip in lan in firewall.
On my setup I use a static tun and I have added a zone ad set accept from wan to tun and lan to tun, but I don't know if it's really needed

do either of your builds have the 5g wifi slowdown issue fixed or is that waiting on better ath10k support? thanks

Archer C7 update? Been a few patches sent in to fix some wifi issues

Hi mk13139,

I get 7zip extraction problems with Current build BB: r42943 (can not open output file: ....)
No problems with previous versions.

Would you please check if archive is correct ?

It's been there for about three weeks. The file is good. Just DL again, possibly with a different browser.

File is dated Nov, 4, so it has been around only a couple of days. Maybe it has been uploaded again.
I tried several browsers, error persists.

I tested it again before I posted. How long are you waiting for the dl to complete?  It takes a while for whatever reason, longer than you'd think for such a small file.

Testing the archive yields no errors, extracting gives 14 errors. I also tested with different 7zip versions and with 7zip running as Administrator with same results. Did you actually extract the contents ? My MD5 is a37951c5ebca9bfcb18f8d9a46905c5b , would you please compare ? Thanks for the assistance.

That's right. I never extract the entire thing, so have no basis for comparison, but I do see reference to the relatively obscure dir. Do you need it?  Normally only one file is needed from the main dir, and you'll have no problem with any of those.

OK, I was just cautious. So I will take the winding road back from dd-wrt to back to openwrt...