A bit frustrated, I have been using openwrt and openvpn for years. New router and with that, its time to deploy 21.02. Previous was Openwrt 19.07, Openvpn config worked flawlessly for tunneling in to the LAN and touching all of the hosts. VPN authenticates and allows me in, but only to the router. Now, the route appears not to be pushed, or the subnet for the tun is blocked.
config openvpn HartfordKnox
option enabled 1
option port 1194
option proto udp
option dev tun
option server '192.168.100.0 255.255.255.0'
option ca '/etc/openvpn/ca.crt'
option cert '/etc/openvpn/1780PREM.crt'
option key '/etc/openvpn/1780PREM.key'
option dh '/etc/openvpn/dh2048.pem'
option ifconfig_pool_persist /tmp/ipp.txt
option push 'route 192.168.1.0 255.255.255.0'
option push 'redirect-gateway def1'
option status '/var/log/openvpn-status.log'
option client_to_client 1
option keepalive '10 60'
option compress lzo
option persist_key 1
option persist_tun 1
option verb 3
option mute 20
uci show firewall
firewall.Allow_OpenVPN_Inbound=rule
firewall.Allow_OpenVPN_Inbound.target='ACCEPT'
firewall.Allow_OpenVPN_Inbound.src='*'
firewall.Allow_OpenVPN_Inbound.proto='udp'
firewall.Allow_OpenVPN_Inbound.dest_port='1194'
firewall.vpn=zone
firewall.vpn.name='vpn'
firewall.vpn.network='vpn0'
firewall.vpn.input='ACCEPT'
firewall.vpn.forward='REJECT'
firewall.vpn.output='ACCEPT'
firewall.vpn.masq='1'
firewall.vpn_forwarding_lan_in=forwarding
firewall.vpn_forwarding_lan_in.src='vpn'
firewall.vpn_forwarding_lan_in.dest='lan'
firewall.vpn_forwarding_lan_out=forwarding
firewall.vpn_forwarding_lan_out.src='lan'
firewall.vpn_forwarding_lan_out.dest='vpn'
firewall.vpn_forwarding_wan=forwarding
firewall.vpn_forwarding_wan.src='vpn'
firewall.vpn_forwarding_wan.dest='wan'
Can anyone see the error of my ways?
Thanks