is it possible on an Openwrt One 24.10.0 + luci
to install openvpn to organise different WLANs in different vpn?
is there a manual?
WLANs or VLANs ?
Doesn't really matter though, answer is yes to both.
but no package with openvpn is displayed for installation under luci
Did you click update 1st ?
no, but now
OpenWrt 24.10.0-rc2, r28161-ea17e958b9
-----------------------------------------------------
root@OpenWrt:~# opkg update
Downloading https://downloads.openwrt.org/releases/24.10.0-rc2/targets/mediatek/filogic/packages/Packages.gz
Failed to send request: Operation not permitted
*** Failed to download the package list from https://downloads.openwrt.org/releases/24.10.0-rc2/targets/mediatek/filogic/packages/Packages.gz
Downloading https://downloads.openwrt.org/releases/24.10.0-rc2/packages/aarch64_cortex-a53/base/Packages.gz
Failed to send request: Operation not permitted
*** Failed to download the package list from https://downloads.openwrt.org/releases/24.10.0-rc2/packages/aarch64_cortex-a53/base/Packages.gz
Collected errors:
* opkg_download: Failed to download https://downloads.openwrt.org/releases/24.10.0-rc2/targets/mediatek/filogic/packages/Packages.gz, wget returned 4.
* opkg_download: Check your network settings and connectivity.
* opkg_download: Failed to download https://downloads.openwrt.org/releases/24.10.0-rc2/packages/aarch64_cortex-a53/base/Packages.gz, wget returned 4.
* opkg_download: Check your network settings and connectivity.
Well...now we need to verify your device's Internet connectivity, firewall, etc.
and install a stable version of OpenWRT
https://firmware-selector.openwrt.org/?version=24.10.0&target=mediatek%2Ffilogic&id=openwrt_one
1 Like
downloads.openwrt.org
and
openwrt.org
at pihole in whitelist
but ping to openwork.org not possible
Is this device an AP?
- Not sure why you configured a [invalid] gateway on LAN
- You configured a DNS too?
Whitelist?
PiHole?
(We can't guess parameters and configurations you never mentioned.)
1 Like
gw and own IP needs to be on the same subnet ?
or use WAN port.
1 Like
now the network settings are completely mixed up
I have to completely reset the device once and find it again on the network
If you connect to the router via LAN after reset, the parameters will be displayed.
There's also serial console, if network's unreachable.
1 Like
nor / nand have helped, it is running again
the internet was only accessible after configuring the wan port
opkg update worked
and
opkg install openvpn-openssl luci-app-openvpn kmod-ipt-nat6
but no vpn entry ? reboot? -> yes!! 
Custom and then add tun0
What is that supposed to tell me?
Look at the picture you posted, last line: custom
Add tun0 and press enter
1 Like
Those are old instructions. New versions of the firewall allow adding Devices directly to a zone without needing a "stub" unmanaged Interface. That only existed to associate an Interface name with the tun Device, since the old firewall only accepted Interfaces.
In any case the kernel device tun0 is created by the OpenVPN client program only after starting up and successfully connecting to the server. It won't exist in the list of devices before that, but as noted you can type in the box at the bottom of the list to pre-configure the firewall for a device that will exist later.
The OP wrote
It looks like needing Policy Based Routing (PBR), for that creating an interface might still be handy.
1 Like