OpenVPN | No access while SPI Firewall enabled

Post new topic   Reply to topic    DD-WRT Forum Forum Index -> Advanced Networking
Author Message
rocKay
DD-WRT Novice


Joined: 15 Jan 2014
Posts: 11
Location: Detmold | Germany

PostPosted: Tue Mar 24, 2020 10:41    Post subject: OpenVPN | No access while SPI Firewall enabled Reply with quote
Hi Guys,

I'm using a Netgear R7000 with Kong's latest build 40270.
I have configured OpenVPN server in deamon mode (checkbox for firewall disabled) to get tunneled access over the WAN interface.
The VPN connection gets connected like a charm in every case. But unfortunately every other traffic over the VPN tunnel isn't possible while the SPI Firewall is enabled. Is it possible just to disable the SPI only for the tunnel.
Does anyone know this behavior? Any Idea to get that working also with SPI Firewall enabled?
Every hint is appreciated. Thanks in advance guys...

Greets Kay

_________________
Netgear R7000 | Kong's latest 40270 build


Last edited by rocKay on Tue Mar 24, 2020 16:46; edited 1 time in total
Sponsor
egc
DD-WRT Guru


Joined: 18 Mar 2014
Posts: 5161
Location: Netherlands

PostPosted: Tue Mar 24, 2020 12:39    Post subject: Reply with quote
Never disable the firewall!

I assume you are talking about setting up an OpenVPN server?

You should use Server mode to set it up (it is confusing because it always runs as a daemon, it is a left over from days long gone)

Have a look at my signature at the bottom of this post for the OpenVPN server setup guide

_________________
Routers:Netgear R7800, Netgear R6400v1, Netgear R6400v2, Linksys EA6900 (XvortexCFE), Linksys E2000 (converted WRT320N), WRT54GS v1.
Install guide Linksys EA6900: http://www.dd-wrt.com/phpBB2/viewtopic.php?t=291230
OpenVPN Policy Based Routing guide: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=321686
Install guide R6400v2:http://forum.dd-wrt.com/phpBB2/viewtopic.php?t=316399
OpenVPN Server Setup:https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=318795
Install guide R7800: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=320614
Wireguard Setup guide:https://forum.dd-wrt.com/phpBB2/viewtopic.php?p=1183135
rocKay
DD-WRT Novice


Joined: 15 Jan 2014
Posts: 11
Location: Detmold | Germany

PostPosted: Tue Mar 24, 2020 16:49    Post subject: Reply with quote
ah, alright. Maybe the deamon mode feature should be removed XD

Thanks for your manual. Looks great.
I'll reconfigure from deamon to server and mode and try that again.
Thanks a lot for your reply.

_________________
Netgear R7000 | Kong's latest 40270 build
egc
DD-WRT Guru


Joined: 18 Mar 2014
Posts: 5161
Location: Netherlands

PostPosted: Tue Mar 24, 2020 17:31    Post subject: Reply with quote
rocKay wrote:
ah, alright. Maybe the deamon mode feature should be removed XD

Thanks for your manual. Looks great.
I'll reconfigure from deamon to server and mode and try that again.
Thanks a lot for your reply.


Yes it is a bit counter intuitive, maybe the phrasing should be adapted to "GUI mode" and "Text mode"?

Although the "Text mode" is not much used I think not many users really know what that is and how to use (it only uses the Additional config, so you place all settings there).

_________________
Routers:Netgear R7800, Netgear R6400v1, Netgear R6400v2, Linksys EA6900 (XvortexCFE), Linksys E2000 (converted WRT320N), WRT54GS v1.
Install guide Linksys EA6900: http://www.dd-wrt.com/phpBB2/viewtopic.php?t=291230
OpenVPN Policy Based Routing guide: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=321686
Install guide R6400v2:http://forum.dd-wrt.com/phpBB2/viewtopic.php?t=316399
OpenVPN Server Setup:https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=318795
Install guide R7800: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=320614
Wireguard Setup guide:https://forum.dd-wrt.com/phpBB2/viewtopic.php?p=1183135
rocKay
DD-WRT Novice


Joined: 15 Jan 2014
Posts: 11
Location: Detmold | Germany

PostPosted: Thu Mar 26, 2020 20:20    Post subject: Reply with quote
oh, no. i think the naming is understandable, but I didn't know that the server mode also configures the firewall automatically.
I just know the deamon mode from my normally used embedded linux plc's, so it was easier to me to configure OpenVPN text based.
Anyway, I'm using the server mode now and everything works like a charm, including jffs and ccd usage.
So, thanks again for your fast help. Much appreaciated

_________________
Netgear R7000 | Kong's latest 40270 build
Display posts from previous:    Page 1 of 1
Post new topic   Reply to topic    DD-WRT Forum Forum Index -> Advanced Networking All times are GMT

Navigation

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You cannot download files in this forum