I have read several solutions on this forum, but nothing has worked. The issue relates to DHCP not working on the local network interface. It worked well before until after I added the WireGuard client configs, but it was also working even then. Out of the blue, DHCP is no longer handing out IP addresses. Here are the contents of the following commands:
ubus call system board
{
"kernel": "5.10.176",
"hostname": "OpenWrtUoAMICT",
"system": "MediaTek MT7621 ver:1 eco:3",
"model": "ASUS RT-AX53U",
"board_name": "asus,rt-ax53u",
"rootfs_type": "squashfs",
"release": {
"distribution": "OpenWrt",
"version": "22.03.5",
"revision": "r20134-5f15225c1e",
"target": "ramips/mt7621",
"description": "OpenWrt 22.03.5 r20134-5f15225c1e"
}
}
cat /etc/config/network
config interface 'loopback'
option device 'lo'
option proto 'static'
option ipaddr '127.0.0.1'
option netmask '255.0.0.0'
config globals 'globals'
option packet_steering '1'
option ula_prefix 'fdce:91dd:05f5::/48'
config device
option name 'br-lan'
option type 'bridge'
list ports 'lan1'
list ports 'lan2'
list ports 'lan3'
list ports 'wlan0'
list ports 'wlan1'
config interface 'lan'
option device 'br-lan'
option proto 'static'
option netmask '255.255.255.0'
option ip6assign '60'
option ipaddr '192.168.50.1'
option delegate '0'
option ipv6 'off'
config interface 'wan'
option device 'wan'
option proto 'static'
option ipaddr '10.0.0.4'
option netmask '255.255.255.0'
option gateway '10.0.0.1'
option ipv6 'off'
list dns '1.1.1.3'
list dns '1.0.0.3'
config interface 'wan6'
option device 'wan'
option proto 'dhcpv6'
option auto '0'
option reqaddress 'try'
option reqprefix 'auto'
config interface 'wg0_int'
option proto 'wireguard'
list addresses '10.10.10.2'
option private_key 'XXXXXXXXXXXXXXXXXXXX'
list dns '1.1.1.3'
list dns '1.0.0.3'
config wireguard_wg0_int
option description 'XXXX'
option public_key 'XXXXXXXX'
list allowed_ips '0.0.0.0/0'
option route_allowed_ips '1'
option endpoint_port 'XXXX'
option persistent_keepalive '15'
option endpoint_host 'XXX.XXX.XXX.XXX'
cat /etc/config/wireless
config wifi-device 'radio0'
option type 'mac80211'
option path '1e140000.pcie/pci0000:00/0000:00:01.0/0000:02:00.0'
option channel '1'
option band '2g'
option htmode 'HE20'
option cell_density '0'
config wifi-iface 'default_radio0'
option device 'radio0'
option network 'lan'
option mode 'ap'
option encryption 'none'
option ssid 'XXXXXXXX'
config wifi-device 'radio1'
option type 'mac80211'
option path '1e140000.pcie/pci0000:00/0000:00:01.0/0000:02:00.0+1'
option channel '36'
option band '5g'
option cell_density '0'
option htmode 'HE40'
config wifi-iface 'default_radio1'
option device 'radio1'
option network 'lan'
option mode 'ap'
option encryption 'none'
option ssid 'XXXXXXXX'
cat /etc/config/dhcp
config dnsmasq
option domainneeded '1'
option boguspriv '1'
option filterwin2k '0'
option localise_queries '1'
option rebind_protection '1'
option rebind_localhost '1'
option local '/lan/'
option domain 'lan'
option expandhosts '1'
option nonegcache '0'
option authoritative '1'
option readethers '1'
option leasefile '/tmp/dhcp.leases'
option resolvfile '/tmp/resolv.conf.d/resolv.conf.auto'
option nonwildcard '1'
option localservice '1'
option ednspacket_max '1232'
option logfacility '/tmp/log/dnsmasq.log'
option logdhcp '1'
option quietdhcp '1'
list address '/status.client/192.168.50.1'
config dhcp 'lan'
option interface 'lan'
option dhcpv4 'server'
list ra_flags 'managed-config'
list ra_flags 'other-config'
option start '50'
option limit '150'
option leasetime '3h'
list dhcp_option_force '114,http://status.client'
option force '1'
config dhcp 'wan'
option interface 'wan'
option ignore '1'
option start '100'
option limit '150'
option leasetime '12h'
config odhcpd 'odhcpd'
option maindhcp '0'
option leasefile '/tmp/hosts/odhcpd'
option leasetrigger '/usr/sbin/odhcpd-update'
option loglevel '4'
cat /etc/config/firewall
config defaults
option input 'ACCEPT'
option output 'ACCEPT'
option forward 'REJECT'
option synflood_protect '1'
config zone
option name 'lan'
option input 'ACCEPT'
option output 'ACCEPT'
option forward 'ACCEPT'
list network 'lan'
config zone
option name 'wan'
option input 'REJECT'
option output 'ACCEPT'
option forward 'REJECT'
option masq '1'
option mtu_fix '1'
list network 'wan'
list network 'wan6'
config zone
option name 'wg0_zone'
option input 'DROP'
option forward 'DROP'
list network 'wg0_int'
option masq '1'
option output 'ACCEPT'
config forwarding
option src 'lan'
option dest 'wg0_zone'
config rule
option name 'Allow-DHCP-Renew'
option src 'wan'
option proto 'udp'
option dest_port '68'
option target 'ACCEPT'
option family 'ipv4'
config rule
option name 'Allow-Ping'
option src 'wan'
option proto 'icmp'
option icmp_type 'echo-request'
option family 'ipv4'
option target 'ACCEPT'
config rule
option name 'Allow-IGMP'
option src 'wan'
option proto 'igmp'
option family 'ipv4'
option target 'ACCEPT'
config rule
option name 'Allow-DHCPv6'
option src 'wan'
option proto 'udp'
option dest_port '546'
option family 'ipv6'
option target 'ACCEPT'
config rule
option name 'Allow-MLD'
option src 'wan'
option proto 'icmp'
option src_ip 'fe80::/10'
list icmp_type '130/0'
list icmp_type '131/0'
list icmp_type '132/0'
list icmp_type '143/0'
option family 'ipv6'
option target 'ACCEPT'
config rule
option name 'Allow-ICMPv6-Input'
option src 'wan'
option proto 'icmp'
list icmp_type 'echo-request'
list icmp_type 'echo-reply'
list icmp_type 'destination-unreachable'
list icmp_type 'packet-too-big'
list icmp_type 'time-exceeded'
list icmp_type 'bad-header'
list icmp_type 'unknown-header-type'
list icmp_type 'router-solicitation'
list icmp_type 'neighbour-solicitation'
list icmp_type 'router-advertisement'
list icmp_type 'neighbour-advertisement'
option limit '1000/sec'
option family 'ipv6'
option target 'ACCEPT'
config rule
option name 'Allow-ICMPv6-Forward'
option src 'wan'
option dest '*'
option proto 'icmp'
list icmp_type 'echo-request'
list icmp_type 'echo-reply'
list icmp_type 'destination-unreachable'
list icmp_type 'packet-too-big'
list icmp_type 'time-exceeded'
list icmp_type 'bad-header'
list icmp_type 'unknown-header-type'
option limit '1000/sec'
option family 'ipv6'
option target 'ACCEPT'
config rule
option name 'Allow-IPSec-ESP'
option src 'wan'
option dest 'lan'
option proto 'esp'
option target 'ACCEPT'
config rule
option name 'Allow-ISAKMP'
option src 'wan'
option dest 'lan'
option dest_port '500'
option proto 'udp'
option target 'ACCEPT'
config rule
option name 'Allow-SSH-Wan'
list proto 'tcp'
option src 'wan'
option dest_port 'XXXX'
option target 'ACCEPT'
config include 'opennds'
option type 'script'
option path '/usr/lib/opennds/restart.sh'
config rule
option name 'Allow-Lan-SSH'
list proto 'tcp'
option src 'lan'
option dest_port 'XXXX'
option target 'ACCEPT'
config rule
option name 'Allow_Wireguard_OUT'
option family 'ipv4'
list proto 'udp'
option dest 'wan'
list dest_ip 'XXX.XXX.XXX.XXX'
option dest_port 'XXXXX'
option target 'ACCEPT'
config rule
option name 'Allow_DHCP_IN'
option family 'ipv4'
list proto 'udp'
option dest_port '67'
option target 'ACCEPT'
option src 'lan'
config rule
option name 'Allow_DHCP_OUT'
option family 'ipv4'
list proto 'udp'
option dest_port '68'
option target 'ACCEPT'
option dest 'lan'
config rule
option family 'ipv4'
option dest 'wg0_zone'
option target 'ACCEPT'
option name 'Allow_DNS_OUT'
list proto 'tcp'
list proto 'udp'
option dest_port '53'
config rule
option name 'Allow_HTTP(S)_OUT'
option family 'ipv4'
list proto 'tcp'
option dest 'wg0_zone'
option dest_port '80 443'
option target 'ACCEPT'
config rule
option name 'Allow_NTP_OUT'
option family 'ipv4'
list proto 'udp'
option dest 'wg0_zone'
option dest_port '123'
option target 'ACCEPT'
config rule
option name 'Block-DNS-Internet'
option src 'lan'
option dest 'wg0_zone'
option dest_port '53'
option target 'REJECT'
config rule
option name 'Block-DNS-Internet2'
option src 'lan'
option dest 'wan'
option dest_port '53'
option target 'REJECT'