Network came back up as normal. Router can received WAN IP from fiber modem and seems alright. From the main router I go to a 8 port gigabit POE switch (HP) then from there the unifi WAP and other assorted machines.
However after this all clients cannot connect to the internet, weirdly they receive dhcp addresses fine but cannot connect or communicate with the router (192.168.1.1). I suspend something wonky with the br-lan interface but everything SEEMS normal and nothing out of place.
Strangely if I connect externally via the wireguard VPN I CAN access LuCI web interface normally, not sure what is broken here tbh.
Any obvious things I'm missing to check would be greatly appreciated
The main router is a Fitlet1 x86 fanless SFF machine with openwrt 21.02.01
Switch is a HP OfficeConnect 1920S with POE
WAP is a unifi 6 lite reflashed with openwrt
Not much to go on here. How about some configs? A topology diagram? Test methods? Does the problem exist on WiFi and Ethernet? What about if you plug a device directly into the router (bypassing the switch)?
Please copy the output of the following commands and post it here using the "Preformatted text </> " button:
Remember to redact passwords, MAC addresses and any public IP addresses you may have:
Allowed ips has to do with the traffic that should go though the tunnel — basically the destination addresses. By setting that on this side, you created a routing conflict where the traffic that should have gone to the actual lan devices couldn’t be properly routed because of a conflict about where it the traffic should go (local or though the tunnel).
You should delete the line so that it can’t be accidentally uncommented and cause problems in the future.
that makes perfect sense upon further explanation.
I sincerely thank you for the help, I was feeling really frustrated by this time and wasn't making any progress fixing it all last night, I definitely should have asked for help sooner. I'll delete the line now that I understand better what it does.