Home
Help
Search
Login
Register
OPNsense Forum
»
Archive
»
20.7 Legacy Series
»
Guest wifi VLAN and Openwrt dumb AP
« previous
next »
Print
Pages: [
1
]
Author
Topic: Guest wifi VLAN and Openwrt dumb AP (Read 5161 times)
TheToto318
Newbie
Posts: 18
Karma: 0
Guest wifi VLAN and Openwrt dumb AP
«
on:
August 31, 2020, 12:11:22 am »
Hi everyone,
I just followed the opnsense guide to set a guest wifi, I made a VLAN and configured all the dhcp and firewall rules on opn sense.
I use a openwrt as AP only, I created an interface with a bridge between the guest SSID and the eth0.10 VLAN (VLAN ID is 10 for me).
The DHCP server work and I get an acces to opnsense (didnt made a rule to block that yet). But the DNS is not working, "time out" on each nslookup command.
I think I'm close to the goal, did I miss something ?
Logged
TheToto318
Newbie
Posts: 18
Karma: 0
Re: Guest wifi VLAN and Openwrt dumb AP
«
Reply #1 on:
August 31, 2020, 03:55:31 pm »
I change my VLAN ID to 20
My guest network rules :
I can't ping the VLAN 20 gateway when from a host on this VLAN.
My Openwrt configuration :
Logged
TheToto318
Newbie
Posts: 18
Karma: 0
Re: Guest wifi VLAN and Openwrt dumb AP
«
Reply #2 on:
August 31, 2020, 08:56:07 pm »
I see that in my firewall logs, the traffic between my host and the gateway is blocked. But I don't know why its on the LAN interface and not on my VLAN interface
Logged
TheToto318
Newbie
Posts: 18
Karma: 0
Re: Guest wifi VLAN and Openwrt dumb AP
«
Reply #3 on:
September 01, 2020, 09:06:25 pm »
I really don't understand why it is not working, I followed several tutorials and it should be working
Logged
wondercow
Newbie
Posts: 10
Karma: 0
Re: Guest wifi VLAN and Openwrt dumb AP
«
Reply #4 on:
September 02, 2020, 11:00:27 pm »
I suspect this is a problem on your Openwrt unit and not on OPNSense then if it's showing up on the wrong interface and you're sure it's being tagged correctly. On Asus routers set to access point mode, you have to make sure to turn off hardware acceleration or else cut-through-forwarding will put traffic on the wrong VLANs. I don't use Openwrt so can't comment on it, but it's similar to Asuswrt, right?
You might need to ssh into the Openwrt unit. Check the output of robocfg show, brctl show, and ifconfig. Make sure that you know what all your interfaces are.
You're also going to need to provide more information about your network topology. You don't have any non-managed switches in there that might be stripping off the VLAN tags do you?
Logged
TheToto318
Newbie
Posts: 18
Karma: 0
Re: Guest wifi VLAN and Openwrt dumb AP
«
Reply #5 on:
September 05, 2020, 04:27:27 pm »
Problem fixed with an OpenWRT reset and using the same config.
Strange things happend...
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
Archive
»
20.7 Legacy Series
»
Guest wifi VLAN and Openwrt dumb AP