BUMP
I am on the latest snapshot. Entropy now seems good.
Traffic from server (openwrt-turris) to the peer is fine.
The http problem from peer to server persists
OpenWrt SNAPSHOT, r8614-78ca6a5
-----------------------------------------------------
root@Turris:~# sysctl kernel.random.entropy_avail
kernel.random.entropy_avail = 2079`.
here is the response that I get from turris (server) when i try to connect to luci from the peer:
192.168.10.4.50214 > Turris.lan.80: Flags [P.], cksum 0xa26f (correct), seq 525:979, ack 187, win 237, options [nop,nop,TS val 1146513774 ecr 1676346658], length 454: HTTP, length: 454
GET /cgi-bin/luci/ HTTP/1.1
Host: 10.0.10.1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
DNT: 1
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) snap Chromium/70.0.3538.110 Chrome/70.0.3538.110 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8
Referer: http://10.0.10.1/
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9,el;q=0.8
03:18:14.927215 IP (tos 0x0, ttl 64, id 31922, offset 0, flags [DF], proto TCP (6), length 128)
Turris.lan.80 > 192.168.10.4.50214: Flags [P.], cksum 0xdf1f (incorrect -> 0x41a2), seq 187:263, ack 979, win 231, options [nop,nop,TS val 1676346872 ecr 1146513774], length 76: HTTP, length: 76
HTTP/1.1 403 Forbidden
Connection: Keep-Alive
Transfer-Encoding: chunked
03:18:14.928116 IP (tos 0x0, ttl 64, id 31923, offset 0, flags [DF], proto TCP (6), length 1420)
Turris.lan.80 > 192.168.10.4.50214: Flags [.], cksum 0xe42b (incorrect -> 0xeb14), seq 263:1631, ack 979, win 231, options [nop,nop,TS val 1676346873 ecr 1146513774], length 1368: HTTP
Any idea how to debug this?
I am certain that there is no problem with the peer. I have two other networks connected on the same wireguard interface (one using openwrt) and everything works fine.