Howto cascading router hg536+

hiroshima5 · October 3, 2019, 3:25pm

Hi,

I want to create a simple configuration but although I've tried several times I've not been capable.

The schema of the network I want is two routers cascading with DMZ from the ISP to openwrt one (I need some opened ports from internet to the 192.168.2.2) :

I can access via ssh to router and know how modify /etc/network/config but I can't achieve it. Could somebody help me?

anon50098793 · October 3, 2019, 4:37pm

Not enough information;

what is failing / what are the symptoms?
what device ISP brand / version, have you enabled the DMZ on it?
what version of OpenWrt are you running?
what instructions or guide have you used? or explain the general areas you have made changes... and why...

P.S. Thanks for the clear diagram and welcome!

hiroshima5 · October 7, 2019, 12:36pm

Not able to get internet connection / communication between PCs.
If I get the PCs communicated, I'll try to get the ports opened to internet.
10.03.01, the last one for brcm63xx

This is one of the multiple test I've done with /etc/config/network

#-----------------------------------
#  /etc/config/network
#-----------------------------------

config interface loopback
    option ifname   lo
    option proto    static
    option ipaddr   127.0.0.1
    option netmask  255.0.0.0

config interface lan
    option type     bridge
    option ifname   eth0.1
    option proto    static
    option ipaddr   192.168.1.100
    option netmask  255.255.255.0
    option gateway  192.168.1.1
    option dns      192.168.1.1
   
config interface lan2
    option type     bridge
    option ifname   eth0.2
    option proto    static
    option ipaddr   192.168.2.1
    option netmask  255.255.255.0

config switch eth0
    option enable   1
    option reset    1
    option enable_vlan 1
   
config switch_vlan
    option device   eth0
    option vlan     1
    option ports    '0 5t'
   
config switch_vlan
    option device   eth0
    option vlan     2
    option ports    '1 2 3 5t'

My problem is I do something wrong with /etc/config/network ... but don't know what

anon50098793 · October 7, 2019, 12:49pm

can the hosts ping 2.1?
can the hosts ping 1.1?
have you added a route back on your edge router to the 192.168.2.0/24 network?
have you stopped the firewall to test? or added a "2" zone and enabled forwarding between "zones"?
can you run opkg update successfully?

hiroshima5 · October 9, 2019, 9:58pm

After change network config file and make a /etc/init.d/network reload, I can access router in 192.168.2.1 and 192.168.1.1 using every port, and using an ip for pc in 2.xx and 1.xx
After restart the router and disable firewall service i can't not even access using any combination.

Could you check if my config network file is correct? Is there something I have messed up?

anon50098793 · October 10, 2019, 2:26am

Do one thing between tests... so you'll know what the cause was

Difficult, without breaking the law or telepathy.

You would be safe to assume this.