Opkg update error (wget returned 4)

Post your configuration:

uci show network; uci show firewall; uci show dhcp; \
ip address show; ip route show table all; ip rule show; \
head -n -0 /etc/resolv.* /tmp/resolv.*
network.loopback=interface
network.loopback.ifname='lo'
network.loopback.proto='static'
network.loopback.ipaddr='127.0.0.1'
network.loopback.netmask='255.0.0.0'
network.globals=globals
network.globals.ula_prefix='fde3:895f:4fda::/48'
network.globals.packet_steering='1'
network.lan=interface
network.lan.type='bridge'
network.lan.ifname='eth0.1'
network.lan.proto='static'
network.lan.netmask='255.255.255.0'
network.lan.ip6assign='60'
network.lan.ipaddr='192.168.0.11'
network.lan.gateway='192.168.0.254'
network.lan.igmp_snooping='1'
network.lan.stp='1'
network.lan.dns='192.168.0.10' '2a01:e0a:20:3d70::f0a4:a1e0'
network.lan_eth0_1_dev=device
network.lan_eth0_1_dev.name='eth0.1'
network.lan_eth0_1_dev.macaddr='f2:b4:29:fb:31:5d'
network.wan_eth0_2_dev=device
network.wan_eth0_2_dev.name='eth0.2'
network.wan_eth0_2_dev.macaddr='f0:b4:29:fb:31:5d'
network.wan6=interface
network.wan6.ifname='eth0.2'
network.wan6.proto='dhcpv6'
network.wan6.dns='2a01:e0a:20:3d70::f0a4:a1e0'
network.wan6.peerdns='0'
network.@switch[0]=switch
network.@switch[0].name='switch0'
network.@switch[0].reset='1'
network.@switch[0].enable_vlan='1'
network.@switch_vlan[0]=switch_vlan
network.@switch_vlan[0].device='switch0'
network.@switch_vlan[0].vlan='1'
network.@switch_vlan[0].ports='1 4 6t'
network.@switch_vlan[1]=switch_vlan
network.@switch_vlan[1].device='switch0'
network.@switch_vlan[1].vlan='2'
network.@switch_vlan[1].ports='0 6t'
network.usbwan=interface
network.usbwan.proto='dhcp'
network.usbwan.ifname='usb0'
network.usbwan.metric='800'
network.wan=interface
network.wan.ifname='eth0.2'
network.wan.proto='dhcp'
network.wan.metric='40'
network.wan.dns='192.168.0.10'
network.wan.peerdns='0'
firewall.@defaults[0]=defaults
firewall.@defaults[0].syn_flood='1'
firewall.@defaults[0].input='ACCEPT'
firewall.@defaults[0].output='ACCEPT'
firewall.@defaults[0].forward='REJECT'
firewall.@zone[0]=zone
firewall.@zone[0].name='lan'
firewall.@zone[0].input='ACCEPT'
firewall.@zone[0].output='ACCEPT'
firewall.@zone[0].forward='ACCEPT'
firewall.@zone[0].mtu_fix='1'
firewall.@zone[1]=zone
firewall.@zone[1].name='wan'
firewall.@zone[1].input='REJECT'
firewall.@zone[1].output='ACCEPT'
firewall.@zone[1].forward='REJECT'
firewall.@zone[1].masq='1'
firewall.@zone[1].mtu_fix='1'
firewall.@zone[1].network='usbwan wan wan6'
firewall.@forwarding[0]=forwarding
firewall.@forwarding[0].src='lan'
firewall.@forwarding[0].dest='wan'
firewall.@rule[0]=rule
firewall.@rule[0].name='Allow-DHCP-Renew'
firewall.@rule[0].src='wan'
firewall.@rule[0].proto='udp'
firewall.@rule[0].dest_port='68'
firewall.@rule[0].target='ACCEPT'
firewall.@rule[0].family='ipv4'
firewall.@rule[1]=rule
firewall.@rule[1].name='Allow-Ping'
firewall.@rule[1].src='wan'
firewall.@rule[1].proto='icmp'
firewall.@rule[1].icmp_type='echo-request'
firewall.@rule[1].family='ipv4'
firewall.@rule[1].target='ACCEPT'
firewall.@rule[2]=rule
firewall.@rule[2].name='Allow-IGMP'
firewall.@rule[2].src='wan'
firewall.@rule[2].proto='igmp'
firewall.@rule[2].family='ipv4'
firewall.@rule[2].target='ACCEPT'
firewall.@rule[3]=rule
firewall.@rule[3].name='Allow-DHCPv6'
firewall.@rule[3].src='wan'
firewall.@rule[3].proto='udp'
firewall.@rule[3].src_ip='fc00::/6'
firewall.@rule[3].dest_ip='fc00::/6'
firewall.@rule[3].dest_port='546'
firewall.@rule[3].family='ipv6'
firewall.@rule[3].target='ACCEPT'
firewall.@rule[4]=rule
firewall.@rule[4].name='Allow-MLD'
firewall.@rule[4].src='wan'
firewall.@rule[4].proto='icmp'
firewall.@rule[4].src_ip='fe80::/10'
firewall.@rule[4].icmp_type='130/0' '131/0' '132/0' '143/0'
firewall.@rule[4].family='ipv6'
firewall.@rule[4].target='ACCEPT'
firewall.@rule[5]=rule
firewall.@rule[5].name='Allow-ICMPv6-Input'
firewall.@rule[5].src='wan'
firewall.@rule[5].proto='icmp'
firewall.@rule[5].icmp_type='echo-request' 'echo-reply' 'destination-unreachable                                                                                        ' 'packet-too-big' 'time-exceeded' 'bad-header' 'unknown-header-type' 'router-so                                                                                        licitation' 'neighbour-solicitation' 'router-advertisement' 'neighbour-advertise                                                                                        ment'
firewall.@rule[5].limit='1000/sec'
firewall.@rule[5].family='ipv6'
firewall.@rule[5].target='ACCEPT'
firewall.@rule[6]=rule
firewall.@rule[6].name='Allow-ICMPv6-Forward'
firewall.@rule[6].src='wan'
firewall.@rule[6].dest='*'
firewall.@rule[6].proto='icmp'
firewall.@rule[6].icmp_type='echo-request' 'echo-reply' 'destination-unreachable                                                                                        ' 'packet-too-big' 'time-exceeded' 'bad-header' 'unknown-header-type'
firewall.@rule[6].limit='1000/sec'
firewall.@rule[6].family='ipv6'
firewall.@rule[6].target='ACCEPT'
firewall.@rule[7]=rule
firewall.@rule[7].name='Allow-IPSec-ESP'
firewall.@rule[7].src='wan'
firewall.@rule[7].dest='lan'
firewall.@rule[7].proto='esp'
firewall.@rule[7].target='ACCEPT'
firewall.@rule[8]=rule
firewall.@rule[8].name='Allow-ISAKMP'
firewall.@rule[8].src='wan'
firewall.@rule[8].dest='lan'
firewall.@rule[8].dest_port='500'
firewall.@rule[8].proto='udp'
firewall.@rule[8].target='ACCEPT'
firewall.@rule[9]=rule
firewall.@rule[9].name='Support-UDP-Traceroute'
firewall.@rule[9].src='wan'
firewall.@rule[9].dest_port='33434:33689'
firewall.@rule[9].proto='udp'
firewall.@rule[9].family='ipv4'
firewall.@rule[9].target='REJECT'
firewall.@rule[9].enabled='false'
firewall.@include[0]=include
firewall.@include[0].path='/etc/firewall.user'
firewall.natcap_dns1=rule
firewall.natcap_dns1.enabled='1'
firewall.natcap_dns1.name='IPV6 DNS OUTPUT'
firewall.natcap_dns1.family='ipv6'
firewall.natcap_dns1.dest_port='53'
firewall.natcap_dns1.target='DROP'
firewall.natcap_dns1.dest='wan'
firewall.natcap_dns2=rule
firewall.natcap_dns2.enabled='1'
firewall.natcap_dns2.name='IPV6 DNS FORWARD'
firewall.natcap_dns2.family='ipv6'
firewall.natcap_dns2.src='lan'
firewall.natcap_dns2.dest='wan'
firewall.natcap_dns2.dest_port='53'
firewall.natcap_dns2.target='DROP'
firewall.natcapd=include
firewall.natcapd.type='script'
firewall.natcapd.path='/usr/share/natcapd/firewall.include'
firewall.natcapd.family='any'
firewall.natcapd.reload='1'
firewall.miniupnpd=include
firewall.miniupnpd.type='script'
firewall.miniupnpd.path='/usr/share/miniupnpd/firewall.include'
firewall.miniupnpd.family='any'
firewall.miniupnpd.reload='1'
firewall.mwan3_ipv6_masq=include
firewall.mwan3_ipv6_masq.type='script'
firewall.mwan3_ipv6_masq.path='/lib/mwan3/mwan3_ipv6_masq.sh'
firewall.mwan3_ipv6_masq.family='ipv6'
firewall.mwan3_ipv6_masq.reload='0'
dhcp.@dnsmasq[0]=dnsmasq
dhcp.@dnsmasq[0].domainneeded='1'
dhcp.@dnsmasq[0].localise_queries='1'
dhcp.@dnsmasq[0].local='/lan/'
dhcp.@dnsmasq[0].domain='lan'
dhcp.@dnsmasq[0].expandhosts='1'
dhcp.@dnsmasq[0].authoritative='1'
dhcp.@dnsmasq[0].readethers='1'
dhcp.@dnsmasq[0].leasefile='/tmp/dhcp.leases'
dhcp.@dnsmasq[0].resolvfile='/tmp/resolv.conf.d/resolv.conf.auto'
dhcp.@dnsmasq[0].cachesize='2048'
dhcp.@dnsmasq[0].dnsforwardmax='2048'
dhcp.@dnsmasq[0].localservice='0'
dhcp.@dnsmasq[0].rebind_protection='0'
dhcp.lan=dhcp
dhcp.lan.interface='lan'
dhcp.lan.ra_slaac='1'
dhcp.lan.ra_flags='managed-config' 'other-config'
dhcp.lan.ignore='1'
dhcp.wan=dhcp
dhcp.wan.interface='wan'
dhcp.wan.ignore='1'
dhcp.odhcpd=odhcpd
dhcp.odhcpd.maindhcp='0'
dhcp.odhcpd.leasefile='/tmp/hosts/odhcpd'
dhcp.odhcpd.leasetrigger='/usr/sbin/odhcpd-update'
dhcp.odhcpd.loglevel='4'
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group defaul                                                                                        t qlen 1000
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
    inet 127.0.0.1/8 scope host lo
       valid_lft forever preferred_lft forever
    inet6 ::1/128 scope host
       valid_lft forever preferred_lft forever
2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UNKNOWN                                                                                         group default qlen 1000
    link/ether f0:b4:29:fb:31:5d brd ff:ff:ff:ff:ff:ff
    inet6 fe80::f2b4:29ff:fefb:315d/64 scope link
       valid_lft forever preferred_lft forever
4: ip6tnl0@NONE: <NOARP> mtu 1452 qdisc noop state DOWN group default qlen 1000
    link/tunnel6 :: brd ::
5: sit0@NONE: <NOARP> mtu 1480 qdisc noop state DOWN group default qlen 1000
    link/sit 0.0.0.0 brd 0.0.0.0
6: gre0@NONE: <NOARP> mtu 1476 qdisc noop state DOWN group default qlen 1000
    link/gre 0.0.0.0 brd 0.0.0.0
7: gretap0@NONE: <BROADCAST,MULTICAST> mtu 1462 qdisc noop state DOWN group defa                                                                                        ult qlen 1000
    link/ether 00:00:00:00:00:00 brd ff:ff:ff:ff:ff:ff
8: erspan0@NONE: <BROADCAST,MULTICAST> mtu 1450 qdisc noop state DOWN group defa                                                                                        ult qlen 1000
    link/ether 00:00:00:00:00:00 brd ff:ff:ff:ff:ff:ff
9: ip6gre0@NONE: <NOARP> mtu 1448 qdisc noop state DOWN group default qlen 1000
    link/gre6 :: brd ::
20: wlan0: <NO-CARRIER,BROADCAST,MULTICAST,UP> mtu 1500 qdisc noqueue master br-                                                                                        lan state DOWN group default qlen 1000
    link/ether f0:b4:29:fb:31:5f brd ff:ff:ff:ff:ff:ff
21: wlan1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq master br-lan sta                                                                                        te UP group default qlen 1000
    link/ether f0:b4:29:fb:31:5e brd ff:ff:ff:ff:ff:ff
    inet6 fe80::f2b4:29ff:fefb:315e/64 scope link
       valid_lft forever preferred_lft forever
22: br-lan: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP gr                                                                                        oup default qlen 1000
    link/ether f2:b4:29:fb:31:5d brd ff:ff:ff:ff:ff:ff
    inet 192.168.0.11/24 brd 192.168.0.255 scope global br-lan
       valid_lft forever preferred_lft forever
    inet6 fde3:895f:4fda::1/60 scope global noprefixroute
       valid_lft forever preferred_lft forever
    inet6 fe80::f0b4:29ff:fefb:315d/64 scope link
       valid_lft forever preferred_lft forever
23: eth0.1@eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master                                                                                         br-lan state UP group default qlen 1000
    link/ether f2:b4:29:fb:31:5d brd ff:ff:ff:ff:ff:ff
24: eth0.2@eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state                                                                                         UP group default qlen 1000
    link/ether f0:b4:29:fb:31:5d brd ff:ff:ff:ff:ff:ff
    inet6 fe80::f2b4:29ff:fefb:315d/64 scope link
       valid_lft forever preferred_lft forever
default via 192.168.0.254 dev br-lan proto static
192.168.0.0/24 dev br-lan proto kernel scope link src 192.168.0.11
broadcast 127.0.0.0 dev lo table local proto kernel scope link src 127.0.0.1
local 127.0.0.0/8 dev lo table local proto kernel scope host src 127.0.0.1
local 127.0.0.1 dev lo table local proto kernel scope host src 127.0.0.1
broadcast 127.255.255.255 dev lo table local proto kernel scope link src 127.0.0                                                                                        .1
broadcast 192.168.0.0 dev br-lan table local proto kernel scope link src 192.168                                                                                        .0.11
local 192.168.0.11 dev br-lan table local proto kernel scope host src 192.168.0.                                                                                        11
broadcast 192.168.0.255 dev br-lan table local proto kernel scope link src 192.1                                                                                        68.0.11
fde3:895f:4fda::/64 dev br-lan proto static metric 1024 pref medium
unreachable fde3:895f:4fda::/48 dev lo proto static metric 2147483647 pref mediu                                                                                        m
fe80::/64 dev eth0 proto kernel metric 256 pref medium
fe80::/64 dev eth0.2 proto kernel metric 256 pref medium
fe80::/64 dev br-lan proto kernel metric 256 pref medium
fe80::/64 dev wlan1 proto kernel metric 256 pref medium
local ::1 dev lo table local proto kernel metric 0 pref medium
anycast fde3:895f:4fda:: dev br-lan table local proto kernel metric 0 pref mediu                                                                                        m
local fde3:895f:4fda::1 dev br-lan table local proto kernel metric 0 pref medium
anycast fe80:: dev eth0 table local proto kernel metric 0 pref medium
anycast fe80:: dev eth0.2 table local proto kernel metric 0 pref medium
anycast fe80:: dev br-lan table local proto kernel metric 0 pref medium
anycast fe80:: dev wlan1 table local proto kernel metric 0 pref medium
local fe80::f0b4:29ff:fefb:315d dev br-lan table local proto kernel metric 0 pre                                                                                        f medium
local fe80::f2b4:29ff:fefb:315d dev eth0 table local proto kernel metric 0 pref                                                                                         medium
local fe80::f2b4:29ff:fefb:315d dev eth0.2 table local proto kernel metric 0 pre                                                                                        f medium
local fe80::f2b4:29ff:fefb:315e dev wlan1 table local proto kernel metric 0 pref                                                                                         medium
ff00::/8 dev eth0 table local metric 256 pref medium
ff00::/8 dev br-lan table local metric 256 pref medium
ff00::/8 dev eth0.2 table local metric 256 pref medium
ff00::/8 dev wlan1 table local metric 256 pref medium
0:      from all lookup local
32766:  from all lookup main
32767:  from all lookup default
==> /etc/resolv.conf <==
search lan
nameserver 127.0.0.1

==> /tmp/resolv.conf <==
search lan
nameserver 127.0.0.1

==> /tmp/resolv.conf.d <==
head: /tmp/resolv.conf.d: I/O error

You have NOT set DNS for a fixed IP in LAN, which is wrong.

But you also have set DNS for WAN although it uses DHCP to fetch info from upstream. That address belongs to LAN address space 192.168.0.x, so also that looks wrong.

Likely you have tried to set DNS for LAN, but have accidentally set it for WAN...

1 Like

Sorry but it's too complicated for me... I just follow this from the tutorial:

## Configuration via OpenWrt Web Interface LUCI

Of course you can achieve this with using the web interface:
Once you have configured your wireless network with LUCI you can start configuring your dumb AP.

1. Disconnect the (soon-to-be) Dumb AP from your network, and connect your computer to it with an Ethernet cable.

2. Use the web interface to go to Network → Interfaces and select the LAN interface.

3. Enter an IP address “next to” your main router on the field “IPv4 address”. (If your main router has IP [192.168.1.1](http://192.168.1.1/), enter [192.168.1.2](http://192.168.1.2/)). Set DNS and gateway to point into your main router to enable internet access for the dumb AP itself

4. Then scroll down and select the checkbox “Ignore interface: Disable DHCP for this interface.”

5. Click “IPv6 Settings” tab and set everything to “disabled”.

6. In the top menu go to System → Startup, and disable firewall, dnsmasq and odhcpd in the list of startup scripts.

7. Click the Save and Apply button. Hard-Restart your router if you're not able to connect anymore.

8. Go to [http://192.168.1.2](http://192.168.1.2/) (or whatever address you specified) and check if the settings for the LAN interface are the same.

9. Use an Ethernet to connect one of the LAN ports on your main router to one of the LAN/switch ports of your “new” dumb AP. (There's no need to connect the WAN port of the Dumb AP.)

10. You are done.

Yes... I tried so many things that I forget to set again DNS for LAN... I set them now, thanks... and it works !!!!!!
But I never touch WAN configuration because WAN isn't connected and used.

This topic was automatically closed 10 days after the last reply. New replies are no longer allowed.