and i am built an openvpn between op3 and op5,i create interface tap0 on both op3 and op5 ,but i can not up the port by command /etc/openvpn/tap0.sh,and i get follow error
#!/bin/sh
#/etc/openvpn/startupscript
# OpenVPN Bridge Config File
# Creates TAP devices for use by OpenVPN and bridges them into OpenWRT Bridge
# Taken from http://openvpn.net/bridge.html
# Define Bridge Interface
# Preexisting on OpenWRT
br="br-lan"
# Define list of TAP interfaces to be bridged,
# for example tap="tap0 tap1 tap2".
tap="tap0"
case "$1" in
up)
# Make sure module is loaded
insmod tun
# Build tap devices
for t in $tap; do
openvpn --mktun --dev $t
done
# Add TAP interfaces to OpenWRT bridge
for t in $tap; do
brctl addif $br $t
done
#Configure bridged interfaces
for t in $tap; do
ifconfig $t 0.0.0.0 promisc up
done
;;
down)
for t in $tap; do
ifconfig $t 0.0.0.0 down
done
for t in $tap; do
brctl delif $br $t
done
for t in $tap; do
openvpn --rmtun --dev $t
done
rmmod tun
;;
*)
echo "$0 {up|down}"
;;
esac
and here is my config file on op3
vi /etc/openvpn/my-vpn.conf
dev tap0
port 443
proto tcp-server
comp-lzo yes
keepalive 10 60
verb 3
secret /etc/openvpn/static.key
#ca /etc/openvpn/ca.crt
#dh /etc/openvpn/dh1024.pem
#cert /etc/openvpn/server.crt
#key /etc/openvpn/server.key
#status-version 2
log /etc/openvpn/openvpn0.log
status /etc/openvpn/server.status
#tls-auth /etc/openvpn/ta.key 0
# Custom Configuration
#auth-user-pass-verify /etc/openvpn/checkpsw.sh via-env
#client-cert-not-required
#username-as-common-name
Also, why are you setting up a vpn between two routers that are connected through the same switch (albeit on different subnets)? Is this for educational purposes?
Why would you choose port 443 if you already have uhttpd running on it? That surely would conflict.
Have you started the openvpn server? What is the log file saying /etc/openvpn/openvpn0.log?
Also I don't think it is recommended to write log file to /etc/!
First it would be appreciate (by the forum owners) and myself if you would post logs and config snippets as text instead of pictures.
Secondly I would recommend to either change the uhttpd for HTTPS to something else than 443 or the one from openvpn (recommended) to avoid the conflict. After that again check the log and if it is started check with netstat.
You would like to see something like (here it is running on port 14443