Comments (4)
Ysurac
commented on July 18, 2024
You can add the interface to VPN firewall, but do not delete it.
I don't understand what you mean by "combine omrvps and omr into one network"
from openmptcprouter.
GermanAizek
commented on July 18, 2024
I don't understand what you mean by "combine omrvps and omr into one network"
You understood everything correctly, they see each other as VPN clients and can connect without dedicated IPv4, Zerotier also provides possibility P2P using Moon intermediary. But most likely speed will be limited by width channel ZT servers, and earlier you wrote that I cannot keep omr and omrvps on same ISP. I have different ISP IP for OMR and OMRVPS, but in VPN they will be from same provider ZT, right?
from openmptcprouter.
GermanAizek
commented on July 18, 2024
@Ysurac, I tried not to delete vpn zone and left it without the first command. He writes the same thing.
root@OpenMPTCProuter:~# uci -q delete firewall.vpn
root@OpenMPTCProuter:~# uci set firewall.vpn="zone"
root@OpenMPTCProuter:~# uci set firewall.vpn.name="vpn"
root@OpenMPTCProuter:~# uci set firewall.vpn.input="REJECT"
root@OpenMPTCProuter:~# uci set firewall.vpn.output="ACCEPT"
root@OpenMPTCProuter:~# uci set firewall.vpn.forward="REJECT"
root@OpenMPTCProuter:~# uci set firewall.vpn.masq="1"
root@OpenMPTCProuter:~# uci set firewall.vpn.mtu_fix="1"
root@OpenMPTCProuter:~# uci add_list firewall.vpn.device="zt+"
root@OpenMPTCProuter:~# uci -q delete firewall.lan_vpn
root@OpenMPTCProuter:~# uci set firewall.lan_vpn="forwarding"
root@OpenMPTCProuter:~# uci set firewall.lan_vpn.src="lan"
root@OpenMPTCProuter:~# uci set firewall.lan_vpn.dest="vpn"
root@OpenMPTCProuter:~# uci -q delete firewall.ssh
root@OpenMPTCProuter:~# uci set firewall.ssh="rule"
root@OpenMPTCProuter:~# uci set firewall.ssh.name="Allow-SSH"
root@OpenMPTCProuter:~# uci set firewall.ssh.src="vpn"
root@OpenMPTCProuter:~# uci set firewall.ssh.dest_port="22"
root@OpenMPTCProuter:~# uci set firewall.ssh.proto="tcp"
root@OpenMPTCProuter:~# uci set firewall.ssh.target="ACCEPT"
root@OpenMPTCProuter:~# uci commit firewall
root@OpenMPTCProuter:~# service firewall restart
/dev/stdin:195:9-19: Error: redefinition of symbol 'vpn_devices'
define vpn_devices = { "zt*" }
^^^^^^^^^^^
The rendered ruleset contains errors, not doing firewall restart.
from openmptcprouter.
GermanAizek
commented on July 18, 2024
Im sorry i forgot remove copy zone 'vpn'
root@OpenMPTCProuter:~# uci -q delete firewall.vpn
root@OpenMPTCProuter:~# uci set firewall.vpn="zone"
root@OpenMPTCProuter:~# uci set firewall.vpn.name="vpn"
root@OpenMPTCProuter:~# uci set firewall.vpn.input="REJECT"
root@OpenMPTCProuter:~# uci set firewall.vpn.output="ACCEPT"
root@OpenMPTCProuter:~# uci set firewall.vpn.forward="REJECT"
root@OpenMPTCProuter:~# uci set firewall.vpn.masq="1"
root@OpenMPTCProuter:~# uci set firewall.vpn.mtu_fix="1"
root@OpenMPTCProuter:~# uci add_list firewall.vpn.device="zt+"
root@OpenMPTCProuter:~# uci -q delete firewall.lan_vpn
root@OpenMPTCProuter:~# uci set firewall.lan_vpn="forwarding"
root@OpenMPTCProuter:~# uci set firewall.lan_vpn.src="lan"
root@OpenMPTCProuter:~# uci set firewall.lan_vpn.dest="vpn"
root@OpenMPTCProuter:~# uci -q delete firewall.ssh
root@OpenMPTCProuter:~# uci set firewall.ssh="rule"
root@OpenMPTCProuter:~# uci set firewall.ssh.name="Allow-SSH"
root@OpenMPTCProuter:~# uci set firewall.ssh.src="vpn"
root@OpenMPTCProuter:~# uci set firewall.ssh.dest_port="22"
root@OpenMPTCProuter:~# uci set firewall.ssh.proto="tcp"
root@OpenMPTCProuter:~# uci set firewall.ssh.target="ACCEPT"
root@OpenMPTCProuter:~# uci commit firewall
root@OpenMPTCProuter:~# service firewall restart
Section zone_lan (lan) fullcone in defaults not enabled, ignore zone fullcone settings
Section zone_wan (wan) fullcone in defaults not enabled, ignore zone fullcone settings
Section vpn (vpn) fullcone in defaults not enabled, ignore zone fullcone settings
Section omr_server option 'reload' is not supported by fw4
Section gre_tunnel option 'reload' is not supported by fw4
Section ttl option 'reload' is not supported by fw4
Section omr_bypass option 'reload' is not supported by fw4
Section omr_bypass is disabled, ignoring section
Automatically including '/usr/share/nftables.d/table-post/20-miniupnpd.nft'
Automatically including '/usr/share/nftables.d/chain-post/dstnat/20-miniupnpd.nft'
Automatically including '/usr/share/nftables.d/chain-post/forward/20-miniupnpd.nft'
Automatically including '/usr/share/nftables.d/chain-post/srcnat/20-miniupnpd.nft'
root@OpenMPTCProuter:~#
from openmptcprouter.
Related Issues (20)
- Can't get public IP from ShadowSocks Rust HOT 3
- Irregular Timeout HOT 8
- openmptcprouter v0.60rc1-6.1 running perfect! HOT 2
- OMR disconnects from the backup VPS if the master comes online later.
- Interface metric assingnment is wrong HOT 5
- VPN tunnel down, Cant get public ip address from shadowsocks, cant contact server admin (no token yet available) HOT 15
- OMR Congestion Detection Mechanisms HOT 1
- install openmptcprouter on a mini PC hard drive ? HOT 5
- OMR is trafficing a large amount of data just to connect to the VPS. HOT 5
- StarLink compatibility ? HOT 18
- opkg update error in RC1 HOT 20
- Lots of ss-server connection reset errors on VPS HOT 2
- Addressing MPTCP Tunnel Challenges: Raspberry Pi to Google Cloud VM Connectivity HOT 10
- Kernel panic - not syncing HOT 12
- vnstat backup db resets on restart HOT 1
- MPTCP kernel fails to build v0.60RC1 Kernel 6.1 HOT 4
- VPS Install Script Fails at Install "omr-vps-admin". HOT 5
- No more internet after wan3 ! Please HELP HOT 3
- OMR cannot fetch the keys from the new VPS. HOT 18
- Tethering with rpi3 HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from openmptcprouter.