Hello Nikos, >> * Bringing the VPN interface down again doesn't restore regular >> internet access. It seems the routes (and DNS?) that came with the VPN >> stay also after running ifdown. > I don't seem to have this issue, please provide more information if it > persists with the latest packages.
Those are the routes on a pretty recent OpenWrt snapshot (w/ openconnect 7.00-4). Please let me now if I can help with anything else, or update to an even more recent system. Before connecting to the VPN, during, and after (the VPN IP remains as destination): root@OpenWrt:~# route Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface default 192.168.1.1 0.0.0.0 UG 0 0 0 eth0.2 192.168.0.0 * 255.255.255.0 U 0 0 0 br-lan 192.168.1.0 * 255.255.255.0 U 0 0 0 eth0.2 root@OpenWrt:~# route Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface default * 0.0.0.0 U 0 0 0 vpn-MYVPN (VPN IP) 192.168.1.1 255.255.255.255 UGH 0 0 0 eth0.2 192.168.0.0 * 255.255.255.0 U 0 0 0 br-lan 192.168.1.0 * 255.255.255.0 U 0 0 0 eth0.2 192.168.3.0 * 255.255.255.0 U 0 0 0 vpn-MYVPN root@OpenWrt:~# route Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface (VPN IP) 192.168.1.1 255.255.255.255 UGH 0 0 0 eth0.2 192.168.0.0 * 255.255.255.0 U 0 0 0 br-lan 192.168.1.0 * 255.255.255.0 U 0 0 0 eth0.2 >> * The interface in /etc/config/network needed an option authgroup to >> work for me. Sending a patch. > Do you mean that the AuthGroup option in luci didn't get written down to > the file? That pertained just to the README file that needed this option in order for it to work, patch already send out! Best Gottfried _______________________________________________ openwrt-users mailing list [email protected] https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-users
