Hi,
I am using my openwrt router as a wifi repeater with relayd. I followed this guide: https://openwrt.org/docs/guide-user/network/wifi/relay_configuration . I also followed the extras to get ipv6 on the repeater. It works perfectly.
Here is my current configuration:
root@OpenWrt:~# uci show network
network.loopback=interface
network.loopback.device='lo'
network.loopback.proto='static'
network.loopback.ipaddr='127.0.0.1'
network.loopback.netmask='255.0.0.0'
network.globals=globals
network.globals.ula_prefix='fdae:e252:4e27::/48'
network.globals.packet_steering='1'
network.@device[0]=device
network.@device[0].name='br-lan'
network.@device[0].type='bridge'
network.@device[0].ports='lan1' 'lan2' 'lan3'
network.lan=interface
network.lan.device='br-lan'
network.lan.proto='static'
network.lan.ipaddr='192.168.2.1'
network.lan.netmask='255.255.255.0'
network.lan.ip6assign='60'
network.wwan=interface
network.wwan.proto='static'
network.wwan.ipaddr='192.168.1.30'
network.wwan.netmask='255.255.255.0'
network.wwan.gateway='192.168.1.1'
network.wwan.dns='192.168.1.1' '2a02:168:5439::1'
network.repeater_bridge=interface
network.repeater_bridge.proto='relay'
network.repeater_bridge.ipaddr='192.168.1.30'
network.repeater_bridge.network='lan' 'wwan'
network.wwan6=interface
network.wwan6.proto='dhcpv6'
network.wwan6.device='@wwan'
network.wwan6.reqaddress='none'
network.wwan6.reqprefix='auto'
network.wwan6.norelease='1'
root@OpenWrt:~# uci show firewall
firewall.@defaults[0]=defaults
firewall.@defaults[0].input='REJECT'
firewall.@defaults[0].output='ACCEPT'
firewall.@defaults[0].forward='REJECT'
firewall.@defaults[0].synflood_protect='1'
firewall.@zone[0]=zone
firewall.@zone[0].name='lan'
firewall.@zone[0].input='ACCEPT'
firewall.@zone[0].output='ACCEPT'
firewall.@zone[0].forward='ACCEPT'
firewall.@zone[0].network='lan' 'wwan' 'wwan6'
root@OpenWrt:~# uci show wireless
wireless.radio0=wifi-device
wireless.radio0.type='mac80211'
wireless.radio0.path='1e140000.pcie/pci0000:00/0000:00:01.0/0000:02:00.0'
wireless.radio0.band='2g'
wireless.radio0.channel='1'
wireless.radio0.htmode='HE20'
wireless.radio0.cell_density='0'
wireless.radio1=wifi-device
wireless.radio1.type='mac80211'
wireless.radio1.path='1e140000.pcie/pci0000:00/0000:00:01.0/0000:02:00.0+1'
wireless.radio1.band='5g'
wireless.radio1.channel='40'
wireless.radio1.htmode='VHT40'
wireless.radio1.cell_density='0'
wireless.wifinet0=wifi-iface
wireless.wifinet0.device='radio1'
wireless.wifinet0.mode='sta'
wireless.wifinet0.network='wwan'
wireless.wifinet0.ssid='ValentinWifi'
wireless.wifinet0.encryption='sae'
wireless.wifinet0.key=''
wireless.wifinet0.ocv='0'
wireless.wifinet1=wifi-iface
wireless.wifinet1.device='radio1'
wireless.wifinet1.mode='ap'
wireless.wifinet1.ssid='ValentinWifi'
wireless.wifinet1.encryption='sae-mixed'
wireless.wifinet1.key=''
wireless.wifinet1.ocv='0'
wireless.wifinet1.network='lan'
wireless.wifinet2=wifi-iface
wireless.wifinet2.device='radio0'
wireless.wifinet2.mode='ap'
wireless.wifinet2.ssid='ValentinWifi'
wireless.wifinet2.encryption='sae-mixed'
wireless.wifinet2.key=''
wireless.wifinet2.ocv='0'
wireless.wifinet2.network='lan'
wireless.wifinet3=wifi-iface
wireless.wifinet3.device='radio0'
wireless.wifinet3.mode='ap'
wireless.wifinet3.ssid='ValentinGuests'
wireless.wifinet3.encryption='none'
wireless.wifinet3.isolate='1'
wireless.wifinet4=wifi-iface
wireless.wifinet4.device='radio1'
wireless.wifinet4.mode='ap'
wireless.wifinet4.ssid='ValentinGuests'
wireless.wifinet4.encryption='none'
wireless.wifinet4.isolate='1'
Now, I want to add a guest network. My main router already has one but I want the repeater to have one too. But I can’t get it to work. I followed this guide, without success: https://openwrt.org/docs/guide-user/network/wifi/guestwifi/configuration_webinterface
I created a `guest → lan` firewall rule instead of guest → wan, but otherwise I followed it to the letter.
I doesn’t work, the guests do not have internet access.
Could someone help me to create a guest network that works with relayd repeating, where guests are all isolated and can’t access devices on lan but with still internet access, and also get an ipv6?
Thanks in advance for your help.