Posted: Thu Aug 16, 2018 1:35 Post subject: Created guest access, can connect, but webpages don't load
Hi all,
I'm using a Linksys E1000 v2.1 with DD-WRT v24-sp2 (03/25/13) mini - build 21061.
I followed the steps in this tutorial to enable a guest access point.
This is my second go-round at trying to enable guest wifi access. The first time around, guests who tried to connect to the network would get an incorrect password message, even though they typed the right password.
After following that tutorial today, I can successfully connect my iPhone to the guest wifi. I get an IP address assigned. Everything looks great.
But if I try to visit a website, the browser stalls and eventually errors with "Safari could not open the page because the server stopped responding." My daughters' Chromebook gave similar errors.
However, I *can* successfully get to websites I host on my local network: the router gui (192.168.1.1) as well as a telnet BBS.
I can't figure out what I'm doing wrong. My best guess is that it's DNS-related. I am using OpenDNS on the main wifi to filter objectionable websites. I'd like to do the same on the guest wifi.
Here are my configuration screen shots. Does anything obvious look amiss?
Joined: 08 May 2018 Posts: 14221 Location: Texas, USA
Posted: Thu Aug 16, 2018 3:01 Post subject:
Would probably also be beneficial to do some researching through build threads for a stable newer build as well. Router database update is (still!) incorrect as it defaults to more recent builds (which *may* have broken VAPs).
• Install build 05-13-2018-r35927 or 11-16-2017-r33772.
• Use WPA2 Personal with AES for Wireless Security.
• Do bridging as you already did: create VAP bridged, new bridge br1, assign wl0.1 to it, add DHCP to br1.
• Remove all lines from DNSMasq Options.
• Add to Firewall:
Joined: 18 Mar 2014 Posts: 12884 Location: Netherlands
Posted: Fri Aug 17, 2018 8:14 Post subject:
Modern builds take care of the firewall rules, so you do not need any for a simple setup on a primary router.
Attached my notes how I set up a simple guest VAP on a modern build. There are however more ways to do it (yes you can create br1, and yes you can use DNSMAsq options to configure )
The problems with a VAP on recent builds however is real, the latest firmware build can probably work with some extra tweaking, in the build thread also alternative earlier firmwares are discussed, see: https://forum.dd-wrt.com/phpBB2/viewtopic.php?p=1138176#1138176
• Install build 05-13-2018-r35927 or 11-16-2017-r33772.
I'm trying build 05-13-2018-r35927 right now.
I managed to resurrect all my settings (port forwarding and such for my BBS), but I cannot get the guest wifi to appear in my list of available networks on the iPhone.
So far I've tried several tutorials using bridged and unbridged techniques.
• Install build 05-13-2018-r35927 or 11-16-2017-r33772.
I'm trying build 05-13-2018-r35927 right now.
I managed to resurrect all my settings (port forwarding and such for my BBS), but I cannot get the guest wifi to appear in my list of available networks on the iPhone.
So far I've tried several tutorials using bridged and unbridged techniques.
Do not restore config, do manual setup after resetting first to Default.
Add VAP bridged and separate after. Follow the guide exactly.
• Install build 05-13-2018-r35927 or 11-16-2017-r33772.
I'm trying build 05-13-2018-r35927 right now.
I managed to resurrect all my settings (port forwarding and such for my BBS), but I cannot get the guest wifi to appear in my list of available networks on the iPhone
Turns out there were many other problems besides the guest VAP. WiFi was intermittent, and connections were constantly being lost and reopened. None of my port forwarding rules were working.
So I have ditched this build and I'm now trying 11-16-2017-33772. So far it seems much more stable. In fact, since upgrading this morning I have not had a single instance of the browser timing out while saving settings, which has always been a problem for me with DD-WRT.
Fingers crossed that this is an ideal version for me. I'll try the VAP stuff later on.
Just to let the community know that I lost 1 day in researching many different topics related to the DD-WRT (lack of functional) VAP issue and then lost another 1 day testing the builds below on my Lynksys WRT54GL 1.1 without any success.
33772
34311
35927
36527
37932
I am extremely disappointed and cannot understand:
1. How come this VAP issue (guest networks have no internet) persists for more than 1 year now and there is no one to fix it
2. How come there is not a single member of this large DD-WRT community to drop a single line on this forum, something like ‘Hey buddy, I am running build XXXXX and the guest networks are functioning properly’
2 days lost, still no working guest networks, big disappointment. At least I hope that I will help someone with the information I shared.
2 days lost, still no working guest networks, big disappointment. At least I hope that I will help someone with the information I shared.
The workaround to fix it is in my build threads, and many others regarding the VAP issue. Brainslayer has been told many times, but his device(s) works fine...so here we are; I gave up reporting it. :-/
I heard Kong has it fixed in his M builds, but I don't have a capable device.
As I recall, 33772 shouldn't have an issue with VAPs. Which method did you use? I presume you followed the wiki... _________________ #NAT/SFE/CTF: limited speed w/ DD#Repeater issues#DD-WRT info: FAQ, Builds, Types, Modes, Changes, Demo#
OPNsense x64 5050e ITX|DD: DIR-810L, 2*EA6900@1GHz, R6300v1, RT-N66U@663, WNDR4000@533, E1500@353,
WRT54G{Lv1.1,Sv6}@250|FreshTomato: F7D8302@532|OpenWRT: F9K1119v1, RT-ACRH13, R6220, WNDR3700v4
So would you please post a link to a working solution or a build number?
I do a 30-30-30, flash different build, then 30-30-30 again, then set up VAPs and other settings. I don't paste any code and have no experience with this.
So would you please post a link to a working solution or a build number?
There is a link to the wiki in my previous post; I personally use the dnsmasq method. Unless there is something w/ that model or hardware (mrjcd recently tested a VAP on a WRT54*), the latest build with the workaround should be fine; it's build thread also has the workaround listed. For testing w/o the workaround: after you set it up, reboot again then click 'apply' at the bottom of the wireless section. The workaround is to restart services post-reboot.
Is this a gateway or access point, or what? For an AP, you also need the "VAP with no WAN" iptables additions from the wiki.
Also, you don't need to 30-30-30. If you're updating from an old build, changing modes, or had previously setup VPN or VLANs, then a GUI reset is sufficient. _________________ #NAT/SFE/CTF: limited speed w/ DD#Repeater issues#DD-WRT info: FAQ, Builds, Types, Modes, Changes, Demo#
OPNsense x64 5050e ITX|DD: DIR-810L, 2*EA6900@1GHz, R6300v1, RT-N66U@663, WNDR4000@533, E1500@353,
WRT54G{Lv1.1,Sv6}@250|FreshTomato: F7D8302@532|OpenWRT: F9K1119v1, RT-ACRH13, R6220, WNDR3700v4
)
