Posted: Wed Jun 06, 2018 21:45 Post subject: Guest network with DNSMasq and second router
I have a R7000 build 35030M set up as the gateway using DNSMasq and a working guest network. I followed the instructions, but I'm having trouble with the section "VAP with no WAN."
I'm using an E3000 build 33772 as a secondary AP and when I set the firewall rules, nothing would connect to it, not even the wireless physical interfaces or through ethernet. I had to do a hard reset to restore it.
How can I get the 2nd guest network to work?
I have the routers IP set to 192.168.1.1 and 192.168.1.2 and the VAP IPs set to 192.168.0.1 and 192.168.0.2 if that matters.
Posted: Wed Jun 06, 2018 23:17 Post subject: Re: Guest network with DNSMasq and second router
gavsiu wrote:
I have a R7000 build 35030M set up as the gateway using DNSMasq and a working guest network. I followed the instructions, but I'm having trouble with the section "VAP with no WAN."
Weren't firewall rules not working in some of those older builds? Hard to keep track... :-/ Try the latest build (or nothing older than 35927).
So you:
Wireless->Basic Setup: 'Add' Virtual Interface
Wireless->Wireless Security: set up encryption for the new interface
Additional DNSMasq Options:
Posted: Thu Jun 07, 2018 1:26 Post subject: Re: Guest network with DNSMasq and second router
Build 35030M was the latest Kong build from a few days ago for the R7000, unless it has since been updated.
The instructions you posted seem to be the same as the instructions I linked and followed earlier.
I did not put the firewall rules for "VAP with no WAN" into my R7000 because I thought it was supposed to go into the E3000. How is my R7000 going to access wl1.1 on my E3000?
I don't think I'm running out of NVRAM on my E3000. It says 31 KB / 256 KB without the VAP (I removed it for the time being.)
Does my E3000 need it's own DNSMasq options? I have it disabled at the moment. If so, is it supposed to point to the R7000 or to itself on the second line?
Also the E3000 is actually a WRT610N v2 flashed to E3000.
Posted: Thu Jun 07, 2018 2:31 Post subject: Re: Guest network with DNSMasq and second router
gavsiu wrote:
The instructions you posted seem to be the same as the instructions I linked and followed earlier.
I did not put the firewall rules for "VAP with no WAN" into my R7000 because I thought it was supposed to go into the E3000. How is my R7000 going to access wl1.1 on my E3000?
[...]
Does my E3000 need it's own DNSMasq options? I have it disabled at the moment. If so, is it supposed to point to the R7000 or to itself on the second line?
What I posted was entirely regarding the E3000 and it's not-working 2nd VAP (and old 33772 build), as that was the title of your post. And yes, the 'VAP with no WAN' does not apply to the gateway, because it has a WAN.
For the 2nd VAP on the E3000, follow my post (the wiki instructions), including the dnsmasq section (which sounds like all you're missing). _________________ #NAT/SFE/CTF: limited speed w/ DD#Repeater issues#DD-WRT info: FAQ, Builds, Types, Modes, Changes, Demo#
OPNsense x64 5050e ITX|DD: DIR-810L, 2*EA6900@1GHz, R6300v1, RT-N66U@663, WNDR4000@533, E1500@353,
WRT54G{Lv1.1,Sv6}@250|FreshTomato: F7D8302@532|OpenWRT: F9K1119v1, RT-ACRH13, R6220, WNDR3700v4
And yes, the 'VAP with no WAN' does not apply to the gateway, because it has a WAN.