Hi there,
forgive me, i am relatively new to openwrt and lowlevel linux network commands. I use luci though.
I try to keep it simple and short: I setup 2 vlans in addition to my lan, changed all my DNS servers to my pihole DNS resolver via DHCP and "Use custom DNS servers" with my pihole address. Firewallzones should be correct, as the pihole is on vlan10 and generally not allowed to access lan.
Ever since i set this up, the router itself cannot find it's way to a DNS server. Updating or installing software fails, nslookup via ssh console does not work.
";; connection timed out; no servers could be reached"
I tried many things but i cannot get it to work after all. I will print you as much diagnostics as i can...
As far as i can see it, the router only has 127.0.0.1 as DNS in its resolver.conf file written, but there is no DNS server online on the localhost. It does not seem to use neither WAN DNS nor LAN DNS.
Thanks in advance!
[details="Summary"]
root@PP:~# nslookup google.com
;; connection timed out; no servers could be reached
root@PP:~# cat /etc/
TZ crontabs/ fstab inittab openwrt_release ppp/ rc.local sysctl.conf
banner device_info group iproute2/ openwrt_version preinit resolv.conf sysctl.d/
banner.failsafe diag.sh hosts localtime opkg.conf profile services sysupgrade.conf
board.d/ dnsmasq.conf hotplug-preinit.json luci-uploads/ opkg/ protocols shadow uci-defaults/
board.json dropbear/ hotplug.d/ modules-boot.d/ os-release rc.button/ shadow- urandom.seed
collectd.conf ethers hotplug.json modules.d/ passwd rc.common shells
config/ firewall.user init.d/ mtab passwd- rc.d/ sqm/
root@PP:~# cat /etc/dnsmasq.conf
# Change the following lines if you want dnsmasq to serve SRV
# records.
# You may add multiple srv-host lines.
# The fields are <name>,<target>,<port>,<priority>,<weight>
# A SRV record sending LDAP for the example.com domain to
# ldapserver.example.com port 289
#srv-host=_ldap._tcp.example.com,ldapserver.example.com,389
# Two SRV records for LDAP, each with different priorities
#srv-host=_ldap._tcp.example.com,ldapserver.example.com,389,1
#srv-host=_ldap._tcp.example.com,ldapserver.example.com,389,2
# A SRV record indicating that there is no LDAP server for the domain
# example.com
#srv-host=_ldap._tcp.example.com
# The following line shows how to make dnsmasq serve an arbitrary PTR
# record. This is useful for DNS-SD.
# The fields are <name>,<target>
#ptr-record=_http._tcp.dns-sd-services,"New Employee Page._http._tcp.dns-sd-services"
# Change the following lines to enable dnsmasq to serve TXT records.
# These are used for things like SPF and zeroconf.
# The fields are <name>,<text>,<text>...
#Example SPF.
#txt-record=example.com,"v=spf1 a -all"
#Example zeroconf
#txt-record=_http._tcp.example.com,name=value,paper=A4
# Provide an alias for a "local" DNS name. Note that this _only_ works
# for targets which are names from DHCP or /etc/hosts. Give host
# "bert" another name, bertrand
# The fields are <cname>,<target>
#cname=bertand,bert
root@PP:~# cat /etc/resolv.conf
search lan
nameserver 127.0.0.1
root@PP:~# cat /tmp/resolv.conf
search lan
nameserver 127.0.0.1
root@PP:~# cat /tmp/resolv.conf.auto
# Interface lan
nameserver 10.10.10.10
nameserver 1.1.1.1
# Interface vlan10
nameserver 10.10.10.10
# Interface vlan5
nameserver 10.10.10.10
# Interface wan
nameserver 212.xx.xx.xx
nameserver 195.xx.xx.xx
search xxx.at
root@PP:~# cat /var/dhcp.leases
root@PP:~# cat /var/resolv.conf
search lan
nameserver 127.0.0.1
root@PP:~# uci show
collectd.globals=globals
collectd.globals.alt_config_file='/etc/collectd.conf'
dhcp.@dnsmasq[0]=dnsmasq
dhcp.@dnsmasq[0].domainneeded='1'
dhcp.@dnsmasq[0].localise_queries='1'
dhcp.@dnsmasq[0].rebind_protection='1'
dhcp.@dnsmasq[0].rebind_localhost='1'
dhcp.@dnsmasq[0].local='/lan/'
dhcp.@dnsmasq[0].domain='lan'
dhcp.@dnsmasq[0].expandhosts='1'
dhcp.@dnsmasq[0].authoritative='1'
dhcp.@dnsmasq[0].readethers='1'
dhcp.@dnsmasq[0].leasefile='/tmp/dhcp.leases'
dhcp.@dnsmasq[0].resolvfile='/tmp/resolv.conf.auto'
dhcp.@dnsmasq[0].localservice='1'
dhcp.@dnsmasq[0].enable_tftp='1'
dhcp.@dnsmasq[0].cachesize='1000'
dhcp.@dnsmasq[0].allservers='1'
dhcp.@dnsmasq[0].logqueries='1'
dhcp.lan=dhcp
dhcp.lan.interface='lan'
dhcp.lan.start='100'
dhcp.lan.limit='150'
dhcp.lan.leasetime='12h'
dhcp.lan.force='1'
dhcp.lan.dhcp_option='6, 10.10.10.10'
dhcp.wan=dhcp
dhcp.wan.interface='wan'
dhcp.wan.ignore='1'
dhcp.odhcpd=odhcpd
dhcp.odhcpd.maindhcp='0'
dhcp.odhcpd.leasefile='/tmp/hosts/odhcpd'
dhcp.odhcpd.leasetrigger='/usr/sbin/odhcpd-update'
dhcp.odhcpd.loglevel='4'
dhcp.vlan10=dhcp
dhcp.vlan10.start='100'
dhcp.vlan10.leasetime='12h'
dhcp.vlan10.limit='150'
dhcp.vlan10.interface='vlan10'
dhcp.vlan10.force='1'
dhcp.vlan10.dhcp_option=' 6, 10.10.10.10'
dhcp.vlan5=dhcp
dhcp.vlan5.start='100'
dhcp.vlan5.leasetime='12h'
dhcp.vlan5.limit='150'
dhcp.vlan5.interface='vlan5'
dhcp.vlan5.force='1'
dhcp.vlan5.dhcp_option=' 6, 10.10.10.10'
dhcp-opkg.@dnsmasq[0]=dnsmasq
dhcp-opkg.@dnsmasq[0].domainneeded='1'
dhcp-opkg.@dnsmasq[0].boguspriv='1'
dhcp-opkg.@dnsmasq[0].filterwin2k='0'
dhcp-opkg.@dnsmasq[0].localise_queries='1'
dhcp-opkg.@dnsmasq[0].rebind_protection='1'
dhcp-opkg.@dnsmasq[0].rebind_localhost='1'
dhcp-opkg.@dnsmasq[0].local='/lan/'
dhcp-opkg.@dnsmasq[0].domain='lan'
dhcp-opkg.@dnsmasq[0].expandhosts='1'
dhcp-opkg.@dnsmasq[0].nonegcache='0'
dhcp-opkg.@dnsmasq[0].authoritative='1'
dhcp-opkg.@dnsmasq[0].readethers='1'
dhcp-opkg.@dnsmasq[0].leasefile='/tmp/dhcp.leases'
dhcp-opkg.@dnsmasq[0].resolvfile='/tmp/resolv.conf.auto'
dhcp-opkg.@dnsmasq[0].nonwildcard='1'
dhcp-opkg.@dnsmasq[0].localservice='1'
dhcp-opkg.lan=dhcp
dhcp-opkg.lan.interface='lan'
dhcp-opkg.lan.start='100'
dhcp-opkg.lan.limit='150'
dhcp-opkg.lan.leasetime='12h'
dhcp-opkg.wan=dhcp
dhcp-opkg.wan.interface='wan'
dhcp-opkg.wan.ignore='1'
dropbear.@dropbear[0]=dropbear
dropbear.@dropbear[0].PasswordAuth='on'
dropbear.@dropbear[0].Port='22'
dropbear.@dropbear[0].Interface='lan'
firewall.@defaults[0]=defaults
firewall.@defaults[0].syn_flood='1'
firewall.@defaults[0].input='ACCEPT'
firewall.@defaults[0].output='ACCEPT'
firewall.@defaults[0].forward='REJECT'
firewall.@defaults[0].flow_offloading='1'
firewall.@defaults[0].flow_offloading_hw='1'
firewall.@zone[0]=zone
firewall.@zone[0].name='lan'
firewall.@zone[0].input='ACCEPT'
firewall.@zone[0].output='ACCEPT'
firewall.@zone[0].forward='ACCEPT'
firewall.@zone[0].network='lan'
firewall.@zone[1]=zone
firewall.@zone[1].name='wan'
firewall.@zone[1].input='REJECT'
firewall.@zone[1].output='ACCEPT'
firewall.@zone[1].forward='REJECT'
firewall.@zone[1].masq='1'
firewall.@zone[1].mtu_fix='1'
firewall.@zone[1].network='wan wan6'
firewall.@forwarding[0]=forwarding
firewall.@forwarding[0].src='lan'
firewall.@forwarding[0].dest='wan'
firewall.@rule[0]=rule
firewall.@rule[0].name='Allow-DHCP-Renew'
firewall.@rule[0].src='wan'
firewall.@rule[0].proto='udp'
firewall.@rule[0].dest_port='68'
firewall.@rule[0].target='ACCEPT'
firewall.@rule[0].family='ipv4'
firewall.@rule[1]=rule
firewall.@rule[1].name='Allow-Ping'
firewall.@rule[1].src='wan'
firewall.@rule[1].proto='icmp'
firewall.@rule[1].icmp_type='echo-request'
firewall.@rule[1].family='ipv4'
firewall.@rule[1].target='ACCEPT'
firewall.@rule[2]=rule
firewall.@rule[2].name='Allow-IGMP'
firewall.@rule[2].src='wan'
firewall.@rule[2].proto='igmp'
firewall.@rule[2].family='ipv4'
firewall.@rule[2].target='ACCEPT'
firewall.@rule[3]=rule
firewall.@rule[3].name='Allow-DHCPv6'
firewall.@rule[3].src='wan'
firewall.@rule[3].proto='udp'
firewall.@rule[3].src_ip='fc00::/6'
firewall.@rule[3].dest_ip='fc00::/6'
firewall.@rule[3].dest_port='546'
firewall.@rule[3].family='ipv6'
firewall.@rule[3].target='ACCEPT'
firewall.@rule[4]=rule
firewall.@rule[4].name='Allow-MLD'
firewall.@rule[4].src='wan'
firewall.@rule[4].proto='icmp'
firewall.@rule[4].src_ip='fe80::/10'
firewall.@rule[4].icmp_type='130/0' '131/0' '132/0' '143/0'
firewall.@rule[4].family='ipv6'
firewall.@rule[4].target='ACCEPT'
firewall.@rule[5]=rule
firewall.@rule[5].name='Allow-ICMPv6-Input'
firewall.@rule[5].src='wan'
firewall.@rule[5].proto='icmp'
firewall.@rule[5].icmp_type='echo-request' 'echo-reply' 'destination-unreachable' 'packet-too-big' 'time-exceeded' 'bad-header' 'unknown-header-type' 'router-solicitation' 'neighbour-solicitation' 'router-advertisement' 'neighbour-advertisement'
firewall.@rule[5].limit='1000/sec'
firewall.@rule[5].family='ipv6'
firewall.@rule[5].target='ACCEPT'
firewall.@rule[6]=rule
firewall.@rule[6].name='Allow-ICMPv6-Forward'
firewall.@rule[6].src='wan'
firewall.@rule[6].dest='*'
firewall.@rule[6].proto='icmp'
firewall.@rule[6].icmp_type='echo-request' 'echo-reply' 'destination-unreachable' 'packet-too-big' 'time-exceeded' 'bad-header' 'unknown-header-type'
firewall.@rule[6].limit='1000/sec'
firewall.@rule[6].family='ipv6'
firewall.@rule[6].target='ACCEPT'
firewall.@rule[7]=rule
firewall.@rule[7].name='Allow-IPSec-ESP'
firewall.@rule[7].src='wan'
firewall.@rule[7].dest='lan'
firewall.@rule[7].proto='esp'
firewall.@rule[7].target='ACCEPT'
firewall.@rule[8]=rule
firewall.@rule[8].name='Allow-ISAKMP'
firewall.@rule[8].src='wan'
firewall.@rule[8].dest='lan'
firewall.@rule[8].dest_port='500'
firewall.@rule[8].proto='udp'
firewall.@rule[8].target='ACCEPT'
firewall.@include[0]=include
firewall.@include[0].path='/etc/firewall.user'
firewall.@zone[2]=zone
firewall.@zone[2].input='ACCEPT'
firewall.@zone[2].name='iot'
firewall.@zone[2].output='ACCEPT'
firewall.@zone[2].device='eth0.10'
firewall.@zone[2].family='ipv4'
firewall.@zone[2].network='vlan10'
firewall.@zone[2].forward='ACCEPT'
firewall.@forwarding[1]=forwarding
firewall.@forwarding[1].dest='wan'
firewall.@forwarding[1].src='iot'
firewall.@forwarding[2]=forwarding
firewall.@forwarding[2].dest='iot'
firewall.@forwarding[2].src='lan'
firewall.@zone[3]=zone
firewall.@zone[3].network='vlan5'
firewall.@zone[3].input='ACCEPT'
firewall.@zone[3].name='vlan5'
firewall.@zone[3].output='ACCEPT'
firewall.@zone[3].device='eth0.5' 'wlan0-1'
firewall.@zone[3].forward='ACCEPT'
firewall.@forwarding[3]=forwarding
firewall.@forwarding[3].dest='vlan5'
firewall.@forwarding[3].src='lan'
firewall.@forwarding[4]=forwarding
firewall.@forwarding[4].dest='wan'
firewall.@forwarding[4].src='vlan5'
network.loopback=interface
network.loopback.ifname='lo'
network.loopback.proto='static'
network.loopback.ipaddr='127.0.0.1'
network.loopback.netmask='255.0.0.0'
network.globals=globals
network.globals.ula_prefix=''
network.lan=interface
network.lan.type='bridge'
network.lan.ifname='eth0.1'
network.lan.proto='static'
network.lan.netmask='255.255.255.0'
network.lan.ipaddr='10.10.0.1'
network.lan.delegate='0'
network.lan.dns='10.10.10.10' '1.1.1.1'
network.wan=interface
network.wan.ifname='eth0.2'
network.wan.proto='dhcp'
network.wan6=interface
network.wan6.ifname='eth0.2'
network.wan6.proto='dhcpv6'
network.@switch[0]=switch
network.@switch[0].name='switch0'
network.@switch[0].reset='1'
network.@switch[0].enable_vlan='1'
network.@switch_vlan[0]=switch_vlan
network.@switch_vlan[0].device='switch0'
network.@switch_vlan[0].vlan='1'
network.@switch_vlan[0].vid='1'
network.@switch_vlan[0].ports='0t 2 3 4'
network.@switch_vlan[1]=switch_vlan
network.@switch_vlan[1].device='switch0'
network.@switch_vlan[1].vlan='2'
network.@switch_vlan[1].ports='0t 1'
network.@switch_vlan[1].vid='2'
network.@switch_vlan[2]=switch_vlan
network.@switch_vlan[2].device='switch0'
network.@switch_vlan[2].vlan='3'
network.@switch_vlan[2].vid='10'
network.@switch_vlan[2].ports='0t 5'
network.vlan10=interface
network.vlan10.proto='static'
network.vlan10.ipaddr='10.10.10.1'
network.vlan10.netmask='255.255.255.0'
network.vlan10.delegate='0'
network.vlan10.ifname='eth0.10'
network.vlan10.type='bridge'
network.vlan10.dns='10.10.10.10'
network.@switch_vlan[3]=switch_vlan
network.@switch_vlan[3].device='switch0'
network.@switch_vlan[3].vlan='4'
network.@switch_vlan[3].ports='0t'
network.@switch_vlan[3].vid='5'
network.vlan5=interface
network.vlan5.proto='static'
network.vlan5.type='bridge'
network.vlan5.netmask='255.255.255.0'
network.vlan5.delegate='0'
network.vlan5.ipaddr='10.10.5.1'
network.vlan5.ifname='eth0.5'
network.vlan5.dns='10.10.10.10'
rpcd.@rpcd[0]=rpcd
rpcd.@rpcd[0].socket='/var/run/ubus.sock'
rpcd.@rpcd[0].timeout='30'
rpcd.@login[0]=login
rpcd.@login[0].username='root'
rpcd.@login[0].password='$p$root'
rpcd.@login[0].read='*'
rpcd.@login[0].write='*'
sqm.eth1=queue
sqm.eth1.qdisc_advanced='0'
sqm.eth1.linklayer='none'
sqm.eth1.enabled='1'
sqm.eth1.interface='eth0.2'
sqm.eth1.debug_logging='0'
sqm.eth1.verbosity='5'
sqm.eth1.qdisc='cake'
sqm.eth1.script='piece_of_cake.qos'
sqm.eth1.upload='25000'
sqm.eth1.download='0'
system.@system[0]=system
system.@system[0].ttylogin='0'
system.@system[0].log_size='64'
system.@system[0].urandom_seed='0'
system.@system[0].zonename='Europe/Vienna'
system.@system[0].cronloglevel='5'
system.@system[0].log_proto='udp'
system.@system[0].conloglevel='8'
system.@system[0].timezone='CET-1CEST,M3.5.0,M10.5.0/3'
system.@system[0].hostname='PP'
system.ntp=timeserver
system.ntp.server='0.openwrt.pool.ntp.org' '1.openwrt.pool.ntp.org' '2.openwrt.pool.ntp.org' '3.openwrt.pool.ntp.org'
system.ntp.enable_server='1'
system.led_lan=led
system.led_lan.name='LAN'
system.led_lan.sysfs='tp-link:green:lan'
system.led_lan.trigger='switch0'
system.led_lan.port_mask='0x3C'
system.led_wan=led
system.led_wan.name='WAN'
system.led_wan.sysfs='tp-link:green:wan'
system.led_wan.trigger='switch0'
system.led_wan.port_mask='0x02'
ucitrack.@network[0]=network
ucitrack.@network[0].init='network'
ucitrack.@network[0].affects='dhcp' 'radvd'
ucitrack.@wireless[0]=wireless
ucitrack.@wireless[0].affects='network'
ucitrack.@firewall[0]=firewall
ucitrack.@firewall[0].init='firewall'
ucitrack.@firewall[0].affects='luci-splash' 'qos' 'miniupnpd' 'sqm'
ucitrack.@olsr[0]=olsr
ucitrack.@olsr[0].init='olsrd'
ucitrack.@dhcp[0]=dhcp
ucitrack.@dhcp[0].init='dnsmasq'
ucitrack.@dhcp[0].affects='odhcpd'
ucitrack.@odhcpd[0]=odhcpd
ucitrack.@odhcpd[0].init='odhcpd'
ucitrack.@dropbear[0]=dropbear
ucitrack.@dropbear[0].init='dropbear'
ucitrack.@httpd[0]=httpd
ucitrack.@httpd[0].init='httpd'
ucitrack.@fstab[0]=fstab
ucitrack.@fstab[0].exec='/sbin/block mount'
ucitrack.@qos[0]=qos
ucitrack.@qos[0].init='qos'
ucitrack.@system[0]=system
ucitrack.@system[0].init='led'
ucitrack.@system[0].exec='/etc/init.d/log reload'
ucitrack.@system[0].affects='luci_statistics' 'dhcp'
ucitrack.@luci_splash[0]=luci_splash
ucitrack.@luci_splash[0].init='luci_splash'
ucitrack.@upnpd[0]=upnpd
ucitrack.@upnpd[0].init='miniupnpd'
ucitrack.@ntpclient[0]=ntpclient
ucitrack.@ntpclient[0].init='ntpclient'
ucitrack.@samba[0]=samba
ucitrack.@samba[0].init='samba'
ucitrack.@tinyproxy[0]=tinyproxy
ucitrack.@tinyproxy[0].init='tinyproxy'
ucitrack.@luci_statistics[0]=luci_statistics
ucitrack.@luci_statistics[0].init='luci_statistics'
ucitrack.@sqm[0]=sqm
ucitrack.@sqm[0].init='sqm'
ucitrack-opkg.@network[0]=network
ucitrack-opkg.@network[0].init='network'
ucitrack-opkg.@network[0].affects='dhcp' 'radvd'
ucitrack-opkg.@wireless[0]=wireless
ucitrack-opkg.@wireless[0].affects='network'
ucitrack-opkg.@firewall[0]=firewall
ucitrack-opkg.@firewall[0].init='firewall'
ucitrack-opkg.@firewall[0].affects='luci-splash' 'qos' 'miniupnpd'
ucitrack-opkg.@olsr[0]=olsr
ucitrack-opkg.@olsr[0].init='olsrd'
ucitrack-opkg.@dhcp[0]=dhcp
ucitrack-opkg.@dhcp[0].init='dnsmasq'
ucitrack-opkg.@dhcp[0].affects='odhcpd'
ucitrack-opkg.@odhcpd[0]=odhcpd
ucitrack-opkg.@odhcpd[0].init='odhcpd'
ucitrack-opkg.@dropbear[0]=dropbear
ucitrack-opkg.@dropbear[0].init='dropbear'
ucitrack-opkg.@httpd[0]=httpd
ucitrack-opkg.@httpd[0].init='httpd'
ucitrack-opkg.@fstab[0]=fstab
ucitrack-opkg.@fstab[0].exec='/sbin/block mount'
ucitrack-opkg.@qos[0]=qos
ucitrack-opkg.@qos[0].init='qos'
ucitrack-opkg.@system[0]=system
ucitrack-opkg.@system[0].init='led'
ucitrack-opkg.@system[0].exec='/etc/init.d/log reload'
ucitrack-opkg.@system[0].affects='luci_statistics' 'dhcp'
ucitrack-opkg.@luci_splash[0]=luci_splash
ucitrack-opkg.@luci_splash[0].init='luci_splash'
ucitrack-opkg.@upnpd[0]=upnpd
ucitrack-opkg.@upnpd[0].init='miniupnpd'
ucitrack-opkg.@ntpclient[0]=ntpclient
ucitrack-opkg.@ntpclient[0].init='ntpclient'
ucitrack-opkg.@samba[0]=samba
ucitrack-opkg.@samba[0].init='samba'
ucitrack-opkg.@tinyproxy[0]=tinyproxy
ucitrack-opkg.@tinyproxy[0].init='tinyproxy'
uhttpd.main=uhttpd
uhttpd.main.listen_http='0.0.0.0:80' '[::]:80'
uhttpd.main.listen_https='0.0.0.0:443' '[::]:443'
uhttpd.main.redirect_https='1'
uhttpd.main.home='/www'
uhttpd.main.rfc1918_filter='1'
uhttpd.main.max_requests='3'
uhttpd.main.max_connections='100'
uhttpd.main.cert='/etc/uhttpd.crt'
uhttpd.main.key='/etc/uhttpd.key'
uhttpd.main.cgi_prefix='/cgi-bin'
uhttpd.main.lua_prefix='/cgi-bin/luci=/usr/lib/lua/luci/sgi/uhttpd.lua'
uhttpd.main.script_timeout='60'
uhttpd.main.network_timeout='30'
uhttpd.main.http_keepalive='20'
uhttpd.main.tcp_keepalive='1'
uhttpd.defaults=cert
uhttpd.defaults.days='730'
uhttpd.defaults.key_type='rsa'
uhttpd.defaults.bits='2048'
uhttpd.defaults.ec_curve='P-256'
uhttpd.defaults.country='ZZ'
uhttpd.defaults.state='Somewhere'
uhttpd.defaults.location='Unknown'
uhttpd.defaults.commonname='OpenWrt'
wireless.radio0=wifi-device
wireless.radio0.type='mac80211'
wireless.radio0.hwmode='11a'
wireless.radio0.path='pci0000:00/0000:00:00.0'
wireless.radio0.country='AT'
wireless.radio0.htmode='VHT40'
wireless.radio0.txpower='14'
wireless.radio0.channel='auto'
wireless.radio1=wifi-device
wireless.radio1.type='mac80211'
wireless.radio1.hwmode='11g'
wireless.radio1.path='platform/ahb/18100000.wmac'
wireless.radio1.htmode='HT20'
wireless.radio1.txpower='12'
wireless.radio1.channel='auto'
wireless.radio1.country='AT'
wireless.default_radio1=wifi-iface
wireless.default_radio1.device='radio1'
wireless.default_radio1.mode='ap'
wireless.default_radio1.ssid='-NN'
wireless.default_radio1.encryption='psk2'
wireless.default_radio1.network='vlan10'
wireless.default_radio1.isolate='1'
wireless.default_radio1.key=''
wireless.default_radio1.ifname='wlan24-iot'
wireless.wifinet1=wifi-iface
wireless.wifinet1.ssid=''
wireless.wifinet1.encryption='psk2'
wireless.wifinet1.device='radio0'
wireless.wifinet1.mode='ap'
wireless.wifinet1.key=''
wireless.wifinet1.network='vlan5'
wireless.wifinet1.isolate='1'
wireless.wifinet2=wifi-iface
wireless.wifinet2.ssid=''
wireless.wifinet2.encryption='psk2'
wireless.wifinet2.device='radio0'
wireless.wifinet2.mode='ap'
wireless.wifinet2.network='lan'
wireless.wifinet2.key=''
wireless.wifinet2.ieee80211w='1'
[/details]
edit btw the Diagnostics panel in luci always gives me "permission denied" error messages