Hello,
So im using a self compiled image of OpenWrt, however i use a very simple configuration but for some reason pbr does not want to aknowledge wwan as default gateway when wan is not connected.
what could be wrong?
network
config interface 'loopback'
option device 'lo'
option proto 'static'
option ipaddr '127.0.0.1'
option netmask '255.0.0.0'
config globals 'globals'
option ula_prefix '<snip>'
config device
option name 'br-lan'
option type 'bridge'
option ipv6 '0'
list ports 'eth1'
list ports 'vx0'
config interface 'lan'
option device 'br-lan.1'
option proto 'static'
option ipaddr '192.168.8.1'
option netmask '255.255.255.0'
option delegate '0'
config interface 'wan'
option device 'eth0'
option proto 'dhcp'
config interface 'wan6'
option device 'eth0'
option proto 'dhcpv6'
config bridge-vlan
option device 'br-lan'
option vlan '1'
list ports 'eth1:u*'
config interface 'vx0'
option proto 'vxlan'
option peeraddr '10.6.7.1'
option defaultroute '0'
option delegate '0'
option vid '4921'
option ipaddr '10.6.7.2'
option port '4789'
option rxcsum '0'
option txcsum '0'
option tunlink 'wgclient'
config interface 'wgclient'
option proto 'wireguard'
option private_key 'snip'
option force_link '1'
option defaultroute '0'
option delegate '0'
list addresses '10.6.7.2/32'
option mtu '1428'
option metric '100'
config wireguard_wgclient
option description 'MT3000'
option public_key 'snip'
option endpoint_host 'snip'
option endpoint_port '4443'
option persistent_keepalive '25'
list allowed_ips '0.0.0.0/0'
config bridge-vlan
option device 'br-lan'
option vlan '50'
list ports 'vx0:t'
config bridge-vlan
option device 'br-lan'
option vlan '51'
list ports 'vx0:t'
config bridge-vlan
option device 'br-lan'
option vlan '90'
list ports 'vx0:t'
config interface 'wlan0'
option proto 'dhcp'
option device 'br-lan.50'
option defaultroute '0'
config device
option name 'vx0'
config interface 'wlan1'
option proto 'none'
option device 'br-lan.51'
option defaultroute '0'
option delegate '0'
config interface 'ayaneo'
option proto 'dhcp'
option device 'br-lan.90'
option defaultroute '0'
option delegate '0'
config interface 'wgbackup'
option proto 'wireguard'
option private_key 'snip'
list addresses '10.7.7.2/32'
option force_link '1'
option defaultroute '0'
config wireguard_wgbackup
option description 'backup'
option public_key 'snip'
option preshared_key 'snip'
list allowed_ips '0.0.0.0/0'
option endpoint_port '4445'
option persistent_keepalive '25'
option endpoint_host 'snip'
config interface 'wwan'
option proto 'dhcp'
option force_link '1'
option peerdns '0'
list dns '8.8.8.8'
pbr
config pbr 'config'
option enabled '1'
option verbosity '2'
option strict_enforcement '1'
option resolver_set 'dnsmasq.nftset'
list resolver_instance '*'
option ipv6_enabled '0'
list ignored_interface 'vpnserver'
option boot_timeout '30'
option rule_create_option 'add'
option procd_boot_delay '0'
option procd_reload_delay '1'
option webui_show_ignore_target '1'
option nft_rule_counter '0'
option nft_set_auto_merge '1'
option nft_set_counter '0'
option nft_set_flags_interval '1'
option nft_set_flags_timeout '0'
option nft_set_policy 'performance'
list webui_supported_protocol 'all'
list webui_supported_protocol 'tcp'
list webui_supported_protocol 'udp'
list webui_supported_protocol 'tcp udp'
list webui_supported_protocol 'icmp'
list supported_interface 'wgclient'
list supported_interface 'wgbackup'
config dns_policy
option name 'Redirect Local IP DNS'
option src_addr '192.168.1.5'
option dest_dns '1.1.1.1'
option enabled '0'
config policy
option name 'bypass wan'
option dest_addr '10.234.53.0/24'
option interface 'ignore'
option src_addr '192.168.8.0/24'
config policy
option name 'route-through-vpn'
option src_addr '192.168.8.0/24'
option interface 'wgclient'
config policy
option name 'route-through-backup'
option src_addr '192.168.8.0/24'
option interface 'wgbackup'
option enabled '0'
the log shows:
Thu Sep 26 11:00:42 2024 user.notice pbr [7447]: Using wan interface (on_start): wan
Thu Sep 26 11:00:42 2024 user.notice pbr [7447]: service waiting for wan gateway...
When i can see in my wireguard status i see it handshakes
Why is wwan not detected as gateway?
pbr version 1.1.7-r10
ubus board info:
root@MT3000:/etc/config# ubus call system board
{
"kernel": "6.6.52",
"hostname": "MT3000",
"system": "ARMv8 Processor rev 4",
"model": "GL.iNet GL-MT3000",
"board_name": "glinet,gl-mt3000",
"rootfs_type": "squashfs",
"release": {
"distribution": "OpenWrt",
"version": "SNAPSHOT",
"revision": "r27441+162-4ed209326b",
"target": "mediatek/filogic",
"description": "OpenWrt SNAPSHOT r27441+162-4ed209326b"
}
