I have installed and activated the Yaz guest wifi on my router. I have all the traffic that passes through the VPN but I would like the network to be out of the VPN, I have adjusted as you can see in the picture but I do not have access to the internet, where am I wrong?
Yaz Guest wifi
- Thread starter MatteoPV
- Start date
slidermike
Regular Contributor
Probably need to replace the 2nd dns server ip with one of those used by your vpn provider.
Check the two boxes force dns and force all traffic out vpn.
Check the two boxes force dns and force all traffic out vpn.
Note that typically/generally if you enable Force DNS in YazFi, it forces the guest wireless client to use DNS 1. As such DNS 2 isn't typically used.
Jack Yaz
Part of the Furniture
can you share a screenshot of how you've configured VPN Director? on the affected client(s), can you ping IPs e.g. 8.8.8.8 ? (testing if its DNS or no traffic whatsoever)
I am using GNuton firmware 386.02_6, I have no VPN director. I would just like to use the guest network without going through the VPN tunnel
It should be noted from the YazFi instructions (YazFi v4.x and YazFi GitHub):
Supported firmware versions
Core YazFi features
You must be running firmware no older than:- Asuswrt-Merlin 384.5
- john9527 fork 374.43_32D6j9527
WebUI page for YazFi
You must be running firmware Merlin 384.15/384.13_4 or Fork 43E5 (or later) Asuswrt-MerlinBut I'm using one of the latest firmware, it should work
You are using firmware that isn't listed as supported by YazFi. So YazFi may or may not work as expected on that firmware fork. The fact that you don't see the VPN Director page in the GUI is one indicator that things are not the same between the current Asus-Merlin version and the GNuton firmware fork you are using.
Did you try pinging (example: 8.8.8.8) as requested by Jack above to test if its a no traffic issue or a DNS issue? Since you don't have VPN Director you will probably need to share a screenshot of your router's VPN settings for Jack to review to see if maybe there is a configuration issue in the VPN settings.
Jack Yaz
Part of the Furniture
i can't see why gnuton would be an issue, but did you try the ping test I asked about?
I pinged 8.8.8.8 with a device connected to the guest network and the ping fails. This below is my VPN configuration but I don't see what it does with the guest network, the host network has to go out of the VPN. In any case I cannot change the VPN settings, I am also using Unbound and this is the only configuration that allows me to have DNS not exposed
Attachments
Jack Yaz
Part of the Furniture
redirect: yes is likely the problem here. please share
Code:
ip route show
ip route show table ovpnc1ASUSWRT-Merlin DSL-AC68U 386.02_6-gnuton1 Tue Jun 22 15:03:51 UTC 2021
admin@DSL-AC68U-0A58:/tmp/home/root# ip route show
10.105.0.1 via 10.105.0.81 dev tun11
45.134.22.178 via 192.168.100.1 dev ppp0
192.168.100.1 dev ppp0 proto kernel scope link
10.105.0.81 dev tun11 proto kernel scope link src 10.105.0.82
169.254.0.1 dev vlan2 scope link
192.168.2.0/24 dev wl0.1 proto kernel scope link src 192.168.2.1
192.168.1.0/24 dev br0 proto kernel scope link src 192.168.1.1
169.254.0.0/16 dev vlan2 proto kernel scope link src 169.254.36.218
169.254.0.0/16 dev br1 proto kernel scope link src 169.254.24.136
169.254.0.0/16 dev vlan3880 proto kernel scope link src 169.254.140.211
127.0.0.0/8 dev lo scope link
0.0.0.0/1 via 10.105.0.81 dev tun11
128.0.0.0/1 via 10.105.0.81 dev tun11
default via 192.168.100.1 dev ppp0
admin@DSL-AC68U-0A58:/tmp/home/root# ip route show table ovpnc1
192.168.2.0/24 dev wl0.1 proto kernel scope link src 192.168.2.1
Jack Yaz
Part of the Furniture
Jack Yaz
Part of the Furniture
unexpected, i would have thought all would be looking up in the VPN table. at this point, please use option d in YazFi cli and pm me the passphrase and file output. if you need a dropbox link I can send one
L&LD
Part of the Furniture
I had a couple of customers that had issues crop up while on a dirty upgrade to RMerlin 386.3_2. I had them try rebooting the main router. the Main + AiMesh nodes, the entire network, etc., but it looked like a full reset may be needed. Before I did that step, I suggested to them to try the latest 386.4 Alpha 1 build. They did and their issues seem to be resolved now for a couple of weeks so far.
Worth a shot.
Be sure to read the changelogs (and search the forums) for how the new VPN director is built to act on the network (everything/lots has changed).
Worth a shot.
Be sure to read the changelogs (and search the forums) for how the new VPN director is built to act on the network (everything/lots has changed).
Even with the 386.02 I had the same problem ..... always the guest network without internet
Similar threads
Similar threads
Similar threads
-
sbnMerlin 1.2.1 - Network Isolation Tool based on Guest Networks, April 19 2024- Started by janico82
- Replies: 58
-
YazFi YazFi Guest Network unable to access Pi-Hole DNS server
- Started by buzzy
- Replies: 22
-
vpnmgr Can I route all Guest Wifi clients to VPN automatically? [SOLVED]
- Started by vango44
- Replies: 3
-
Yazfi: VPN Server for guest network access only
- Started by boomstick3289
- Replies: 10
-
Make IoT devices on one-way-to-guest YazFi VLANs discoverable on main LAN
- Started by treefrog
- Replies: 5
-
YazFi SOLVED : No Internet access for Guest (no VPN used)
- Started by o0larry0o
- Replies: 19
-
-
YazFi hostname and ip address UNKNOWN for all guest network devices
- Started by palo857
- Replies: 29
-
-
Latest threads
-
-
Intermittent problem with DHCP offering 10.x addresses when configured for 192.x- Started by Philip Bondi
- Replies: 2
-
Diversion Diversion 5.0 ad blocking sample; very happy with user experience
- Started by Philip Bondi
- Replies: 6
-
DDNS, AX86U-PRO, inadyn isn't called after wan IP change ?
- Started by JackJack
- Replies: 1
-
Sign Up For SNBForums Daily Digest
Get an update of what's new every day delivered to your mailbox. Sign up here!