[Solved] Archer C7 v5 and VPN configuration

Hi, I flashed the router with openwrt-19.07.3-ath79-generic-tplink_archer-c7-v5-squashfs-factory.bin, now I'm trying to connect the router to a VPN server (which I think works) so any device connected to the router on local network can access the Internet via the VPN connection configured on the router (which doesn't work). So far, I've done this:

  • configured wan interface (PPPoE), it works;
  • enabled one of wifi interfaces and connected to it from a laptop, also the laptop can connect to the Internet:
root@OpenWrt:~# route -n
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
0.0.0.0         213.81.233.155  0.0.0.0         UG    0      0        0 pppoe-wan
192.168.1.0     0.0.0.0         255.255.255.0   U     0      0        0 br-lan
213.81.233.155  0.0.0.0         255.255.255.255 UH    0      0        0 pppoe-wan
root@OpenWrt:~# ip addr
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN qlen 1000
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
    inet 127.0.0.1/8 scope host lo
       valid_lft forever preferred_lft forever
    inet6 ::1/128 scope host
       valid_lft forever preferred_lft forever
2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UP qlen 1000
    link/ether 74:da:88:ef:3c:35 brd ff:ff:ff:ff:ff:ff
    inet6 fe80::76da:88ff:feef:3c35/64 scope link
       valid_lft forever preferred_lft forever
5: wlan1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN qlen 1000
    link/ether 74:da:88:ef:3c:35 brd ff:ff:ff:ff:ff:ff
6: br-lan: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP qlen 1000
    link/ether 74:da:88:ef:3c:35 brd ff:ff:ff:ff:ff:ff
    inet 192.168.1.1/24 brd 192.168.1.255 scope global br-lan
       valid_lft forever preferred_lft forever
    inet6 fd8d:b9e2:a3f0::1/60 scope global
       valid_lft forever preferred_lft forever
    inet6 fe80::76da:88ff:feef:3c35/64 scope link
       valid_lft forever preferred_lft forever
7: eth0.1@eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master br-lan state UP qlen 1000
    link/ether 74:da:88:ef:3c:35 brd ff:ff:ff:ff:ff:ff
8: eth0.2@eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP qlen 1000
    link/ether 74:da:88:ef:3c:36 brd ff:ff:ff:ff:ff:ff
    inet6 fe80::76da:88ff:feef:3c36/64 scope link
       valid_lft forever preferred_lft forever
9: pppoe-wan: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1492 qdisc fq_codel state UNKNOWN qlen 3
    link/ppp
    inet 178.41.254.63 peer 213.81.233.155/32 scope global pppoe-wan
       valid_lft forever preferred_lft forever
10: wlan0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master br-lan state UP qlen 1000
    link/ether 74:da:88:ef:3c:34 brd ff:ff:ff:ff:ff:ff
    inet6 fe80::76da:88ff:feef:3c34/64 scope link
       valid_lft forever preferred_lft forever
  • installed openvpn-openssl and luci-app-openvpn, rebooted the router the web UI has VPN tab now
  • followed this video in order to make VPN connection work, and indeed there is now tun0 interface:
root@OpenWrt:~# route -n
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
0.0.0.0         10.16.0.1       128.0.0.0       UG    0      0        0 tun0
0.0.0.0         213.81.233.157  0.0.0.0         UG    0      0        0 pppoe-wan
10.16.0.0       0.0.0.0         255.255.0.0     U     0      0        0 tun0
128.0.0.0       10.16.0.1       128.0.0.0       UG    0      0        0 tun0
185.159.157.62  213.81.233.157  255.255.255.255 UGH   0      0        0 pppoe-wan
192.168.1.0     0.0.0.0         255.255.255.0   U     0      0        0 br-lan
213.81.233.157  0.0.0.0         255.255.255.255 UH    0      0        0 pppoe-wan
root@OpenWrt:~# ip addr
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN qlen 1000
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
    inet 127.0.0.1/8 scope host lo
       valid_lft forever preferred_lft forever
    inet6 ::1/128 scope host
       valid_lft forever preferred_lft forever
2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UP qlen 1000
    link/ether 74:da:88:ef:3c:35 brd ff:ff:ff:ff:ff:ff
    inet6 fe80::76da:88ff:feef:3c35/64 scope link
       valid_lft forever preferred_lft forever
5: wlan1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN qlen 1000
    link/ether 74:da:88:ef:3c:35 brd ff:ff:ff:ff:ff:ff
6: br-lan: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP qlen 1000
    link/ether 74:da:88:ef:3c:35 brd ff:ff:ff:ff:ff:ff
    inet 192.168.1.1/24 brd 192.168.1.255 scope global br-lan
       valid_lft forever preferred_lft forever
    inet6 fd8d:b9e2:a3f0::1/60 scope global
       valid_lft forever preferred_lft forever
    inet6 fe80::76da:88ff:feef:3c35/64 scope link
       valid_lft forever preferred_lft forever
7: eth0.1@eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master br-lan state UP qlen 1000
    link/ether 74:da:88:ef:3c:35 brd ff:ff:ff:ff:ff:ff
8: eth0.2@eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP qlen 1000
    link/ether 74:da:88:ef:3c:36 brd ff:ff:ff:ff:ff:ff
    inet6 fe80::76da:88ff:feef:3c36/64 scope link
       valid_lft forever preferred_lft forever
9: pppoe-wan: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1492 qdisc fq_codel state UNKNOWN qlen 3
    link/ppp
    inet 78.99.26.85 peer 213.81.233.157/32 scope global pppoe-wan
       valid_lft forever preferred_lft forever
10: wlan0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master br-lan state UP qlen 1000
    link/ether 74:da:88:ef:3c:34 brd ff:ff:ff:ff:ff:ff
    inet6 fe80::76da:88ff:feef:3c34/64 scope link
       valid_lft forever preferred_lft forever
11: tun0: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UNKNOWN qlen 100
    link/[65534]
    inet 10.16.0.6/16 brd 10.16.255.255 scope global tun0
       valid_lft forever preferred_lft forever
    inet6 fe80::ddef:ced5:7cd:bbfa/64 scope link
       valid_lft forever preferred_lft forever

However, when I try to access the Internet, it doesn't work. I can't ping any site from the router itself or a laptot connected to the router via wifi. When the VPN is turned off, the Internet is accessible again. Any ideas what could be wrong? Thanks!

1 Like
1 Like

Thanks! I had issues with DNS settings, had to use a custom DNS IP when connected via VPN. It works now.

1 Like

If your problem is solved, please consider marking this topic as [Solved]. See How to mark a topic as [Solved] for a short how-to.

1 Like

This topic was automatically closed 10 days after the last reply. New replies are no longer allowed.