Hi,
I want to access my (and only that) AC87U (FW 378.54_2) from my Android phone.
But I have the strange problem that the internal VPN Servers (PPTP, OPenVPN) doesnt start at all, even after rebooting The router. I can't even ps -w | grep vpn it. So it's really not there....
So I decided to use Entware openvpn-openssl openvpn-easy-rsa packages.
If I switch off my AC87U firewall I can access the router from "ouside". So the OpenVPN server (also DDNS) and the corresponding client works correct.
But like to switch on the firewall
Tried several things (with firewall on). No combination (ORed and ANDs) works
(means:
that OpenVPN Connect-app runs into timeout, but with DDNS recognised; also pining with DDNS adress works)
- UDP port 1194 or TCP port 443 (both simultanously configured on router / phone)
- Activation of WhiteList Definition (under Firewall/Network Services Filter) -> UDP 1194, TCP 443 and others
- Portforwarding (under WAN/Port Forwarding) -> 1194 to AC87U_IP 1194
- jffs/scripts/firewall-start or nat-start with following entries
iptables -A INPUT -i tun+ -j ACCEPT
iptables -A FORWARD -i tun+ -j ACCEPT
I'm searching for the right firewall settings. But I can not find it...
Can you help me?
I want to access my (and only that) AC87U (FW 378.54_2) from my Android phone.
But I have the strange problem that the internal VPN Servers (PPTP, OPenVPN) doesnt start at all, even after rebooting The router. I can't even ps -w | grep vpn it. So it's really not there....
So I decided to use Entware openvpn-openssl openvpn-easy-rsa packages.
If I switch off my AC87U firewall I can access the router from "ouside". So the OpenVPN server (also DDNS) and the corresponding client works correct.
But like to switch on the firewall
Tried several things (with firewall on). No combination (ORed and ANDs) works
(means:
that OpenVPN Connect-app runs into timeout, but with DDNS recognised; also pining with DDNS adress works)
- UDP port 1194 or TCP port 443 (both simultanously configured on router / phone)
- Activation of WhiteList Definition (under Firewall/Network Services Filter) -> UDP 1194, TCP 443 and others
- Portforwarding (under WAN/Port Forwarding) -> 1194 to AC87U_IP 1194
- jffs/scripts/firewall-start or nat-start with following entries
iptables -A INPUT -i tun+ -j ACCEPT
iptables -A FORWARD -i tun+ -j ACCEPT
I'm searching for the right firewall settings. But I can not find it...
Can you help me?
