Rpi4 < $(community_build)

Community Builds, Projects & Packages
1471

hehehe... meesa-seena-deesa-before-ggggggghhhhhhhhh.....

updated that report with your info... cheers... sysupgrade to 21.02.0 / 'release' build probably best bet for now...
1 Like
1472

wow thanks,

noob question:
if i sysupgrade through luci using http://downloads.openwrt.org/releases/21.02.0/targets/bcm27xx/bcm2711/openwrt-21.02.0-bcm27xx-bcm2711-rpi-4-squashfs-sysupgrade.img.gz

will i have to reconfig everything, ?
i really love that sqm ctinfo_4layercake_rpi4.qos and dont know how to reinstall it.

thanks again !

1473

you can... but I mean't this build... see;

https://github.com/wulfy23/rpi4/blob/master/misc/guides/updatecheck.md

change UPGRADEsFLAVOUR to release and click [flash] in the updatecheck bar in luci then wait 5mins...

1 Like
1474

since being on r17674 (upgraded from r17530) syslog shows

Sat Oct  9 22:25:04 2021 kern.warn kernel: [  425.384920] ICMPv6: process `sysctl' is using deprecated sysctl (syscall) net.ipv6.neigh.bond0.base_reachable_time - use net.ipv6.neigh.bond0.base_reachable_time_ms insteadv

when i do sysctl -a | grep net.ipv6.neigh.bond0.base_reachable_time_ms
i get net.ipv6.neigh.bond0.base_reachable_time_ms = 30000

sysctl -a | grep net.ipv6.neigh.bond0.base_reachable_time

shows

net.ipv6.neigh.bond0.base_reachable_time = 30
net.ipv6.neigh.bond0.base_reachable_time_ms = 30000

is this some unwanted redunancy? or should i remove the the old one with seconds instead of milliseconds or just ignore the kernel warning at all?

it is probably very minor, but my log is usually clean...so i am used to it being pretty and now my eyes keep hanging on this stuff and my brain follows. /:

1 Like
1476

normally that would sound good... but

fgrep -r reachable_time /etc/sysctl*

comes up empty so option b ( ignore it ) sounds like a plan for now...

will keep an eye out for this in my travels... cheers...

1 Like
1477

cheers tried that and all went ok - wont leave it so long next time !

1 Like
1478

good to know... that was the first key rotation I was testing out...

the aim was/is to give at least 6 months spacing... but I think this time it was closer to less than 5 months...

but yeah... anything over 3-5 months starts to get long in the tooth :wink:

(3.1.35+ was a good vintage tho'... very well tuned... 5.10 is only starting to match those recently... so I think you've done well in maximising time-to-benefits)

1479

Hello! dumb question from newbie here: what's the correct way to setup vlans with the Rp4?

I have dual wan ISPs going into the Rp4 via usb adapters (ue330, same as ue300 but with extra usb inputs), and from there i go out the ethernet port into the first port of a TP-Link TL-SG2008, then i connect some devices directly to the switch and use some APs for wireless (using muti-SSID mostly, and MAC filtering for the APs that don't support this)

Now, the wan side on the Rp4 is working fine, i think, but i have doubts about the lan side

As i understand it, i need to create a eth0.x device for each "x" vlan, then create the corresponding vlan "x" interfaces, but do i need to keep a LAN interface with eth0 / br-lan? i just delete it?

I'm sorry if this is the wrong place to ask, but most information available for vlans correspond to devices with multiple ethernet ports, and the "switch" section in openWRT available, which naturally is not present in the Rp4

Thank you so much and excuse my ignorance

1 Like
1480

you'll need a new thread for this, however,

A guide without multiple ethernet inferfaces (router-on-a-stick): https://www.maroonmed.com/berry-on-a-bush-router-on-a-stick-raspberry-pi-4-inter-vlan-openwrt-router/

a guide without wan-vlan (but using a common firewall zone): https://www.youtube.com/watch?v=zOMr6Wd7e9o

both of which can be found here; https://github.com/wulfy23/rpi4/blob/master/HARDWARE.md#using-vlans

and probably a few threads linked from the top post here

when you create your new thread;

  • link to your post above
  • better describe what your goal is with the LAN side vlans ( how many? what for? single smartswitch? AP brands/OS? )
  • provide any existing /etc/config/network and /etc/config/firewall parts that relate to what you have attempted (and smartswitch vlan page screenshots) and/or AP vlan specific settings IF they are not purely ACCESS ports... (i.e. done on the switch)
2 Likes
1481

Getting errors on the login screen since updating, at the bottom of the main login page

My Openwrt is at 192.168.1.1

I am trying to login on my iPad which is .1.50


Wed Oct 6 10:02:46] LUCI[succ] [root 192.168.1.50 /]
[Wed Oct 6 10:02:43] LUCI[fail] [denied page 192.168.1.50 /apple-touch-icon-152x152.png]
[Wed Oct 6 10:02:43] LUCI[fail] [denied page 192.168.1.50 /apple-touch-icon-152x152-precomposed.png]
[Wed Oct 6 10:02:43] LUCI[fail] [denied page 127.0.0.1 /HPImageArchive.aspx?format=js&idx=0&n=1&mkt=en-US]
[Wed Oct 13 20:01:38] LUCI[fail] [denied page 127.0.0.1 /HPImageArchive.aspx?format=js&idx=0&n=1&mkt=en-US]
[Wed Oct 13 19:55:22] LUCI[succ] [root 192.168.1.50 /]
[Wed Oct 13 19:54:31] LUCI[succ] [root 192.168.1.50 /]
[Wed Oct 13 19:54:12] LUCI[fail] [denied page 192.168.1.50 /apple-touch-icon-152x152.png]
[Wed Oct 13 19:54:12] LUCI[fail] [denied page 192.168.1.50 /apple-touch-icon-152x152-precomposed.png]
[Wed Oct 13 19:54:12] LUCI[fail] [denied page 127.0.0.1 /HPImageArchive.aspx?format=js&idx=0&n=1&mkt=en-US]
[Wed Oct 13 18:57:16] LUCI[succ] [root 192.168.1.50 /]
[Wed Oct 13 18:57:13] LUCI[fail] [denied page 192.168.1.50 /apple-touch-icon-152x152.png]
[Wed Oct 13 18:57:13] LUCI[fail] [denied page 192.168.1.50 /apple-touch-icon-152x152-precomposed.png]
[Wed Oct 13 18:57:13] LUCI[fail] [denied page 127.0.0.1 /HPImageArchive.aspx?format=js&idx=0&n=1&mkt=en-US]
[Tue Oct 5 21:58:17] LUCI[succ] [root 192.168.1.50 /]
[Tue Oct 5 21:58:06] LUCI[fail] [denied page 192.168.1.50 /apple-touch-icon-152x152.png]
[Tue Oct 5 21:58:05] LUCI[fail] [denied page 192.168.1.50 /apple-touch-icon-152x152-precomposed.png]
[Tue Oct 5 21:58:05] LUCI[fail] [denied page 127.0.0.1 /HPImageArchive.aspx?format=js&idx=0&n=1&mkt=en-US]
[Tue Oct 5 20:22:16] LUCI[fail] [denied page 192.168.1.50 /apple-touch-icon-152x152.png]
[Tue Oct 5 20:22:16] LUCI[fail] [denied page 192.168.1.50 /apple-touch-icon-152x152-precomposed.png]
[Tue Oct 5 20:22:16] LUCI[fail] [denied page 127.0.0.1 /HPImageArchive.aspx?format=js&idx=0&n=1&mkt=en-US]
[Tue Oct 12 18:57:46] LUCI[succ] [root 192.168.1.50 /]
[Tue Oct 12 18:57:42] LUCI[fail] [denied page 192.168.1.50 /apple-touch-icon-152x152.png]
[Tue Oct 12 18:57:42] LUCI[fail] [denied page 192.168.1.50 /apple-touch-icon-152x152-precomposed.png]
[Tue Oct 12 18:57:42] LUCI[fail] [denied page 127.0.0.1 /HPImageArchive.aspx?format=js&idx=0&n=1&mkt=en-US]
[Mon Oct 11 17:34:48] LUCI[fail] [denied page 192.168.1.50 /images/favicon.ico]
[Mon Oct 11 17:27:38] LUCI[fail] [denied page 192.168.1.50 /images/favicon.ico]
1 Like
1482

cool... you can still login and use luci right?

for a temporary workaround (while I digest what's going on/the best way to handle, the 127's look a little odd to me... are you running some sort of print server?)... you can try;

uci -q del uhttpd.main.error_page
uci commit uhttpd
/etc/init.d/uhttpd restart #actually reboot to clear your log

( this setting should also be in luci > services > uhttpd if you are unfamiliar with command line )

i've added a new ini variable for the next build that will skip these page(or any custom defined lookups) per user;


HARDENING_UHTTPD_NO_ERROR="/HPImageArchive.aspx /apple-touch-icon"

thanks!

1483

Not running anything else but Openwrt on that pi /wulfy23

And correct, I can login fine

That cleared it up. Thanks!

1 Like
1484 
version-not-set    [flash]  twicedaily[refresh]  [backup]  [ytdl]  [editor]  [tty]
1 Like
1485

seem to remember a state bug I also saw like this this recently... (have to track it down... )

  • try refresh and double check
grep '^UPGRADEs' /root/wrt.ini
1486 
 grep '^UPGRADEs' /root/wrt.ini
UPGRADEsFLAVOUR="stable"

but on luci it is still

version-not-set    [flash]  twicedaily[refresh]  [backup]  [ytdl]  [editor]  [tty]

fixed now

stable uptodate: 3.5.75-7  twicedaily[refresh]  [backup]  [ytdl]  [editor]  [tty]
1 Like
1487

sorry it is fixed

1488

there is an (intermittent/irregular) bug there... I just got it too... odd... because was fine for the last few days... maybe a timeout/timing thing...

i'll try to track it down... cheers!

it's related to wget/hosting provider... i'm missing github right now...

( don't click refresh seems to hang... will let you know once sorted )

may be (semi) sorted-ish;

  • clicked refresh on their letsencrypt page... and mine started working
  • added a timeout to the wget

still need to work on (medium term);

  • version-not-set [flash] remove/change these when there is future issues
1 Like
1489

what's openvpn performance on rpi4 ?

1490

not the best ~30MB/s maybe (50 with some overclocking and tweaking perhaps), cpu bound...

1491

Brand new pi4b owner here. The ovpn performance quoted above shocked me until I rememembered that ovpn only uses 1 core. In this day and age that's just crazy.
Anyways is there any way to overclock rpi4b on openwrt or must I still load up armbian or something else to do that? And did anyone ever figure out a way to assign the wifi chip a reg domain without needing to load armbian first?
I should be getting my pi in 2 days and in my excitement have already downloaded and dd if='d the current community build .img from this thread on a micro sd card. I can't wait LoL

1 Like