У меня маршрутизатор TP-Link WR842NDv2. На нем установлена OpenWrt barrier_breaker, 14.07-rc2 (ar71xx).
br-wan (eth0) - кабель от провайдера (beeline).
br-lan (eth1)- кабель локальной сети
wan6 - wifi?
Не могу настроить подключение к провайдеру через xl2tpd.
xl2tpd с зависимостями установил.
xl2tpd запускается при старте системы.
xl2tpd в лог не пишет.
Подскажите в чем моя ошибка?
/etc/config/network:
Код:
config interface 'loopback'
option ifname 'lo'
option proto 'static'
option ipaddr '127.0.0.1'
option netmask '255.0.0.0'
config globals 'globals'
option ula_prefix 'fd27:f016:1c45::/48'
config interface 'lan'
option ifname 'eth1'
option force_link '1'
option type 'bridge'
option proto 'static'
option ipaddr '192.168.1.1'
option netmask '255.255.255.0'
option ip6assign '60'
config interface 'wan'
option proto 'dhcp'
option broadcast '1'
option type 'bridge'
option _orig_ifname 'eth0'
option _orig_bridge 'true'
option ifname 'eth0 vpn'
config interface 'wan6'
option ifname '@wan'
option proto 'dhcpv6'
config switch
option name 'switch0'
option reset '1'
option enable_vlan '1'
config switch_vlan
option device 'switch0'
option vlan '1'
option ports '0 1 2 3 4'
config interface 'vpn'
option proto 'l2tp'
option server '78.107.38.7'
option username '0893916402'
option password 'password'
config interface 'ppp0'
option _orig_ifname 'eth0'
option _orig_bridge 'false'
option proto 'l2tp'
option server 'tp.internet.beeline.ru'
option username '0893916402'
option password 'password'
ifconfig
Код:
# ifconfig
br-lan Link encap:Ethernet HWaddr E8:94:F6:87:D0:A4
inet addr:192.168.1.1 Bcast:192.168.1.255 Mask:255.255.255.0
inet6 addr: fe80::ea94:f6ff:fe87:d0a4/64 Scope:Link
inet6 addr: fd27:f016:1c45::1/60 Scope:Global
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:17549 errors:0 dropped:0 overruns:0 frame:0
TX packets:14717 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:2640665 (2.5 MiB) TX bytes:4408574 (4.2 MiB)
br-wan Link encap:Ethernet HWaddr E8:94:F6:87:D0:A3
inet addr:10.174.161.47 Bcast:10.174.167.255 Mask:255.255.248.0
inet6 addr: fe80::ea94:f6ff:fe87:d0a3/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:9243 errors:0 dropped:3152 overruns:0 frame:0
TX packets:5988 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:525859 (513.5 KiB) TX bytes:663373 (647.8 KiB)
eth0 Link encap:Ethernet HWaddr E8:94:F6:87:D0:A3
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:13193 errors:0 dropped:0 overruns:0 frame:0
TX packets:7905 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:963476 (940.8 KiB) TX bytes:871886 (851.4 KiB)
Interrupt:4
eth1 Link encap:Ethernet HWaddr E8:94:F6:87:D0:A4
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:17553 errors:0 dropped:0 overruns:0 frame:0
TX packets:14716 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:2886609 (2.7 MiB) TX bytes:4408438 (4.2 MiB)
Interrupt:5
lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
inet6 addr: ::1/128 Scope:Host
UP LOOPBACK RUNNING MTU:65536 Metric:1
RX packets:780 errors:0 dropped:0 overruns:0 frame:0
TX packets:780 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:59436 (58.0 KiB) TX bytes:59436 (58.0 KiB)
/etc/config/firewall
Код:
config defaults
option syn_flood '1'
option input 'ACCEPT'
option output 'ACCEPT'
option forward 'REJECT'
config zone
option name 'lan'
option input 'ACCEPT'
option output 'ACCEPT'
option forward 'ACCEPT'
option network 'lan'
config zone
option name 'wan'
option input 'REJECT'
option output 'ACCEPT'
option forward 'REJECT'
option masq '1'
option mtu_fix '1'
option network 'wan6'
config forwarding
option src 'lan'
option dest 'wan'
config rule
option name 'Allow-DHCP-Renew'
option src 'wan'
option proto 'udp'
option dest_port '68'
option target 'ACCEPT'
option family 'ipv4'
config rule
option name 'Allow-Ping'
option src 'wan'
option proto 'icmp'
option icmp_type 'echo-request'
option family 'ipv4'
option target 'ACCEPT'
config rule
option name 'Allow-DHCPv6'
option src 'wan'
option proto 'udp'
option src_ip 'fe80::/10'
option src_port '547'
option dest_ip 'fe80::/10'
option dest_port '546'
option family 'ipv6'
option target 'ACCEPT'
config rule
option name 'Allow-ICMPv6-Input'
option src 'wan'
option proto 'icmp'
list icmp_type 'echo-request'
list icmp_type 'echo-reply'
list icmp_type 'destination-unreachable'
list icmp_type 'packet-too-big'
list icmp_type 'time-exceeded'
list icmp_type 'bad-header'
list icmp_type 'unknown-header-type'
list icmp_type 'router-solicitation'
list icmp_type 'neighbour-solicitation'
list icmp_type 'router-advertisement'
list icmp_type 'neighbour-advertisement'
option limit '1000/sec'
option family 'ipv6'
option target 'ACCEPT'
config rule
option name 'Allow-ICMPv6-Forward'
option src 'wan'
option dest '*'
option proto 'icmp'
list icmp_type 'echo-request'
list icmp_type 'echo-reply'
list icmp_type 'destination-unreachable'
list icmp_type 'packet-too-big'
list icmp_type 'time-exceeded'
list icmp_type 'bad-header'
list icmp_type 'unknown-header-type'
option limit '1000/sec'
option family 'ipv6'
option target 'ACCEPT'
config include
option path '/etc/firewall.user'
/etc/xl2tpd/xl2tpd.conf
Код:
[global]
port = 1701
auth file = /etc/xl2tpd/xl2tp-secrets
access control = no
[lac vpn]
lns = tp.internet.beeline.ru
name = 0893916402
redial = yes
redial timeout = 5
ppp debug = yes
pppoptfile = /etc/ppp/options.xl2tp
autodial = yes
flow bit = no
require chap = yes
require pap = no
refuse chap = no
refuse pap = yes
tx bps = 1000000000
/etc/ppp/options.xl2tpd
Код:
name 0893916402
remotename br-wan
mru 1460
mtu 1460
ipparam eth0
ifname vpn
logfile /tmp/log/xl2tpd.log
noaccomp
nopcomp
novj
novjccomp
nobsdcomp
nodeflate
noipx
nomp
defaultroute
unit 0
