I have Wireguard blocked, so I use ShadowSocks in UDP tunnel mode for it. I installed it from the OpenWRT packages
That is, the endpoint looks something like this:
Endpoint = 127.0.0.1:12000 (ss-tunnel local client address)
And for this configuration to work it is necessary to specify correctly the AllowedIPs in the configuration (the whole Internet 0.0.0.0/0 except the ip-address of the VPN-server). There are special calculators
for this, because WG does not have the DisallowedIPs parameter
But this configuration I can not add through the management interface, there is an error (see screenshot).
Yes, I switched to that mode. So you imported the configuration without errors? Where can I get this firmware version for my model?
This is the endpoint of the local ShadowSocks ss-tunnel daemon in udp-mode. It tunnels WG traffic to my WG server. This is necessary because my ISP blocks the WG protocol, so I have to pass his traffic through ShadowSocks. This works fine, the only problem is that for some reason I don’t have the WG configuration imported, which will automatically assign all the necessary routes for this to work.
Unfortunately, it didn’t help. In 4.2 I have the same error However, I am glad to see in 4.2 support for Zerotier, but for some reason it has no “Allow default override” option yet, so it cannot be used as a replacement for Wireguard