21.02.3 Locked out of SSH & LUCI on LAN

kgoerbig · May 18, 2022, 10:36pm

I just upgraded this unit from 19.07 to 21.02.3

I set the unit up as a Dumbap, all is working fine. The only issue I am having is that I cannot ssh or access luci from any other machine on the LAN, including my main openwrt router. I am getting "Connection refused" trying to SSH from another machine.

However, if I hardwire to the dumbap, or connect via wireless to the unit, I can access both ssh and luci. Is there something different with firewall config in 21.02.3 that would cause this?

psherman · May 18, 2022, 10:38pm

Did you keep settings when you ran the upgrade? How is this device connected to the upstream network?

kgoerbig · May 18, 2022, 10:41pm

I thought I did a clean upgrade without saving settings. It is connected via hardwire (cat6). My main openwrt router, and switch are in the basement.

psherman · May 18, 2022, 10:42pm

If you did a clean upgrade without saving settings, the device would obviously have been reset to defaults -- this is a good thing. But did you reconfigure everything including changing the LAN address on the dumb AP?

Is the dumb AP connected by the LAN or WAN port to the upstream network?

kgoerbig · May 18, 2022, 10:46pm

CAT6 wall termination ------> WAN port --------------> Local devices connect to LAN ports

The unit is given DHCP from my openwrt router downstairs.

psherman · May 18, 2022, 10:54pm

By default, the WAN port is assumed to be the WAN (i.e. the upstream and untrusted network) and is thus firewalled. Try connecting to your LAN port (or reassigning the physical WAN port to the lan). Be sure that you have changed the LAN IP address of this device such that it doesn't conflict with the upstream router and verify the DHCP server is disabled. This is all outlined in the dumb AP guide:

kgoerbig · May 19, 2022, 1:47am

Turns out that I didn't do a complete wipe.

Ended up doing: mtd -r erase rootfs_data

I actually have three of these:

I half bricked one of them doing this upgrade, it was in a bootloop. I discovered by accident trying everything I could think of, out of desperation, that pressing WPS + WiFi buttons simultaneously, power it up, puts the unit in bootloader mode. Giving access to "Breed Web" a Chinese bootloader web interface to change RAM freq settings, and force upgrade firmware. Brought it back to life.

Used the second post, to set it up as a dumbap:
Help setting up Dumb AP on OpenWrt 21.02 - #2 by trendy

system · May 29, 2022, 1:48am

This topic was automatically closed 10 days after the last reply. New replies are no longer allowed.