my setup:
I have a wireless bridge connected to a marinas WiFi, 2PCs and a Raspberry Pi4b connected to the bridge via Ethernet.
im using OpenWRT 21.02.0
ultimately I want to replace the china spec wireless bridge with the Pi/OpenWRT
I can connect to the Pi's WiFi AP and access the internet no problem, I can access the Pi from PC via the http interface (luci) but I cant get access to the internet from the Pi (Im directly using the pi with keyboard and screen).
From the Pi, nslookup works fine but ping, traceroute, opkg all fail (ping and traceroute will resolve the www to IP but)..also cant ping the gateway on the Bridge!!!
im guessing ive got a routing issue from 127.. to the bridge??? WLAN to LAN is fine but not consol to LAN
im kind of a newby, its been many, many,many years since I dabbled with linux.....like think redhat5, so please be kind and spell it out lol
na, i can ping/tracert of the PCs OK. from the Pi i cant even ping the wireless bridges IP despite having my phone and tablet connected to the Pis AP ==> wireless bridge ==> marina wifi..they both do ping/traceroute. its only from the pi itself
Please run the following commands (copy-paste the whole block) and paste the output here, using the "Preformatted text </> " button:
Remember to redact passwords, MAC addresses and any public IP addresses you may have
ubus call system board; \
uci export network; uci export wireless; \
uci export dhcp; uci export firewall; \
head -n -0 /etc/firewall.user; \
ip -4 addr ; ip -4 ro li tab all ; ip -4 ru; \
ip -6 addr ; ip -6 ro li tab all ; ip -6 ru; \
ls -l /etc/resolv.* /tmp/resolv.* /tmp/resolv.*/* ; head -n -0 /etc/resolv.* /tmp/resolv.* /tmp/resolv.*/*
I'm guessing your Chinese "bridge" is actually routing*, and all of your devices are on its LAN. If you've static IP the Pi you need to set the gateway properly. Usually one would run a DHCP client on the interface and let it pull settings from upstream.
since you can only have one IP and one MAC on the marina network, you have to route somewhere.
didnt know dhcp could go upstream, so the china wireless bridge gets its ip from the marinas DHCP and in turn runs ips own DHCP server for an machine connecting to it.
marina seems to only block wares sites,porn sites, torrrent sites, vpn servers etc. theres probably many ports closed but everything ive needed so far has been open. they run a mesh network, everyone uses the same password (so often you get random people accidentally casting to your TV etc). ATM I have about 30 IOT devices + PCs, phones etc. Id like to get them all on a system to give me some isolation from other marina clients, the china bridge only supports 6 connections across LAN and WAN
One thing is that you connect to the upstream bridge from the lan port, which is part of the lan bridge. Lan interface is setup for dhcp protocol, but you are also running dhcp server on the lan interface. You might be blocked for that.
Also in the firewall you are using the defaults for the lan zone which connects you to the internet and this might be dangerous.
If you are going to use the Raspi as a dumbAP only, make sure that the bridge you have is providing a good level of security, otherwise split the eth and wifi interfaces into separate ones and use for lan only the wifi and for wan the eth.