Hey,
I tried a while back and attempted some of the solutions on the forum regarding the use of the switch to turn on / off the VPN and just wanted to check if anyone has successfully managed to get a VPN switch function on the MT300N and how one would go about this?
Many thanks (:
Hey Zimo,
I have a MT300A
I do using the following script
Obviously change the location of your OpenVPN config
#!/bin/sh
logger “Button: $BUTTON ; State: ${ACTION}”;
if [ “${ACTION}” == “pressed” ]; then
uci set glconfig.openvpn.enable=0;/etc/init.d/openvpn stop;killall openvpn;
else
uci set glconfig.openvpn.enable=1;/usr/sbin/openvpn --config /etc/openvpn/BRO-RTR-01-UDP-1194.ovpn #/etc/init.d/openvpn start
fi
echo “$BUTTON ${ACTION}” > /dev/console
I should probably say this is BTN_1 script. I then have the middle LED (green) on when the tun interface is up ( as I have my vpn connect on boot/Internet connection) and off when the tun interface is down.
Thanks @Jimlad, I’ve tried putting this in BTN_1 but it’s not having the desired effect on MT300N (I’ve got an MT300A somewhere so will try it with that device also).
Is there documentation showing how to configure the LED? or is it pretty simple?
Hi wifird,
It definitely works on MT300A.
If you want the middle LED to work do the following.
In the LuCI Web Interface (Advanced Settings)
System > LED Configuration
Click the Add button
Fields:
Name: OpenVPN
LED Name: gl-mt300a:wan
Default State: unticked
Trigger: netdev
Device: tun0 (the OpenVPN needs to be up otherwise it will not show)
Trigger Mode: Tick all (or atleast Link On)
Hope that helps
JAmes
Thanks @Jimlad, the LED worked great.
I feel that the VPN script is almost working for me, when I look at the OpenVPN section in the GLI UI I can see the switch checks the ‘Enable’ and ‘Force VPN’ options but OpenVPN remains not connected with the Last Log showing ‘/usr/sbin/ip route del 0.0.0.0/1 /usr/sbin/ip route del 128.0.0.0/1 Closing TUN/TAP interface /usr/sbin/ip addr del dev tun0 10.3.0.10/24 SIGTERM[hard,] received, process exiting’
The internet also gets disabled at this point showing that Force VPN has been applied successfully. Do you have any idea what the issue may be?
Change a little bit. If still cannot, post your full log
if [ “${ACTION}” == “pressed” ]; then
uci set glconfig.openvpn.enable=0; uci commit glconfig; /etc/init.d/startvpn stop;killall openvpn;
else
uci set glconfig.openvpn.enable=1; uci commit glconfig; /etc/init.d/startvpn start
fi
Thanks @alzhao although I’m having the same issue.
Also when I connect the VPN manually, the switch turns off the VPN (but I think force VPN stays connected as there is still no connection until manually disabling).
Where would I find the full log?
OK. Add this: /usr/bin/setvpnfirewall --disable
uci set glconfig.openvpn.enable=0; uci commit glconfig; /etc/init.d/startvpn stop;killall openvpn; /usr/bin/setvpnfirewall --disable
uci set glconfig.openvpn.enable=1; uci commit glconfig; /etc/init.d/startvpn start; /usr/bin/setvpnfirewall --force
I’m still having no luck and tested on two MT300N devices on v2.25 and tested with different profiles in case that’s a factor.
Not sure what I’m doing wrong 
@wifird I also wasn’t having any luck but above is discussing the MT300A not MT300N, which uses BTN_0
I’m also having an issue with this on a AR300M
I have the script in BTN_1 and it works great for turning the VPN on. But when I turn the VPN off, I loose all internet access. It seems like the default route is gone or screwed up…
This is in my script:
#!/bin/sh
logger “Button: $BUTTON ; State: ${ACTION}”;
if [ “${ACTION}” == “pressed” ]; then
uci set glconfig.openvpn.enable=0;uci commit glconfig; /etc/init.d/startvpn stop;killall openvpn;/usr/bin/setvpnfirewall –disable;
else
uci set glconfig.openvpn.enable=1; uci commit glconfig; /etc/init.d/startvpn start;/usr/bin/setvpnfirewall –force
fi
echo “$BUTTON ${ACTION}” > /dev/console
If I use setvpnfirewall –enable instead of force it works fine… So it’s not unsetting the force connection through VPN when setting it to disabled…
@Msan2000 do you have a working VPN Switch now?
I’m struggling having tried all options above, it seems very hit and miss.
Sometimes it works, then when I have connected from the GLI UI it seems to break the switch function.
It also seems not to recognise each switch action and I have to toggle it forward and back again, would be such a cool feature to enable / disable with just the switch.
I am using the switch to enable/disable the VPN, set custom DNS servers, and update the status of the LED configuration. My solution works exactly how I want it to. I will post instructions in the next day or two. My functionality is as follows:
When the router is already powered on and running
I will provide the full configuration soon for anyone who needs it.
Sure thing. I’m going to make a .tar.gz with an extract script that will copy everything to the correct locations. You’ll just need to copy the tar file to the router and chmod the .sh script and run it. Give me til tonight and I’ll put it up for you.
Using the switch to also set custom DNS servers and update the LED would be a big improvement, would be great if you could post instructions for this moonspore.
I’m also excited by this when you get chance to upload…
