meta data for this page
  •  

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
linux:openwrt [2018/10/18 13:00] niziaklinux:openwrt [2021/03/05 14:09] (current) niziak
Line 1: Line 1:
 +====== OpenWRT ======
 +
 ====== First steps ====== ====== First steps ======
 To use SSH, first telnet to router and set root password. To use SSH, first telnet to router and set root password.
Line 48: Line 50:
 </file> </file>
  
-====== OpenVPN ====== 
  
-<code bash>opkg install openvpn-openssl luci-app-openvpn openvpn-easy-rsa</code> 
  
-Enable incoming OpenVPN connections: 
  
-<code bash> +====== Backup ====== 
-uci add firewall rule +[[https://wiki.openwrt.org/doc/howto/generic.backup]]
-uci set firewall.@rule[-1]._name=openvpn +
-uci set firewall.@rule[-1].src=wan +
-uci set firewall.@rule[-1].target=ACCEPT +
-uci set firewall.@rule[-1].proto=udp +
-uci set firewall.@rule[-1].dest_port=1194 +
-uci commit firewall+
  
-echo "iptables -I OUTPUT -o tap+ -j ACCEPT" >> /etc/firewall.user +====== Periodic reboot ======
-echo "iptables -I INPUT -i tap+ -j ACCEPT" >> /etc/firewall.user +
-echo "iptables -I FORWARD -o tap+ -j ACCEPT" >> /etc/firewall.user +
-echo "iptables -I FORWARD -i tap+ -j ACCEPT" >> /etc/firewall.user +
-</code>+
  
-<code bash+===== cron job ===== 
-mkdir -o /etc/openvpn +<code> 
-uci set openvpn.uservpn=openvpn +# Reboot at 4:30am every day 
-uci set openvpn.uservpn.config=/etc/openvpn/user-vpn.conf +# Note: To avoid infinite reboot loop, wait 70 seconds 
-uci set openvpn.uservpn.enable=1 +# and touch a file in /etc so clock will be set 
-uci commit openvpn+# properly to 4:31 on reboot before cron starts
 +30 4 * * * sleep 70 && touch /etc/banner && reboot
 </code> </code>
  
-cat > /etc/openvpn/user-vpn.conf +or independent on system time 
- +<code> 
-   port 1194 +30 4 * * *  [ $( cat /proc/uptime | cut -'.-f 1 ) -gt 3600 ] && reboot
-   proto udp +
-   dev tap0 +
-   keepalive 10 120 +
-   status /tmp/openvpn-status.log +
-   verb 3 +
-   secret /etc/openvpn/secret.key +
- +
-Add VPN to local LAN bridge: +
- +
-<code bash+
-cat /etc/init.d/openvpn-bridge +
-#!/bin/sh /etc/rc.common +
-     +
-    START=94 +
-     +
-    start() { +
-        openvpn --mktun --dev tap0 +
-        brctl addif br-lan tap0 +
-        ifconfig tap0 0.0.0.0 promisc up +
-    } +
-                                                                                                         +
-    stop(+
-        ifconfig tap0 0.0.0.0 down +
-        brctl delif br-lan tap0 +
-        openvpn --rmtun --dev tap0 +
-    } +
- +
- +
-chmod 755 /etc/init.d/openvpn-bridge  +
-/etc/init.d/openvpn-bridge enable +
-/etc/init.d/openvpn-bridge start+
 </code> </code>
  
 +===== watchcat =====
 <code bash> <code bash>
-openvpn --genkey --secret /etc/openvpn/secret.key+opkg install watchcat luci-app-watchcat
 </code> </code>
  
-Start VPN: +And ''luci'' menu will be available under ''Services''
-<code bash> +
-/etc/init.d/openvpn enable +
-/etc/init.d/openvpn start +
-</code> +
- +
- +
-====== Backup ====== +
-[[https://wiki.openwrt.org/doc/howto/generic.backup]] +
  
 ====== Issues ====== ====== Issues ======