Openwrt LuCI web interface SSL management on the WAN interface.

facebooktwittergoogle_plusredditpinterestlinkedinmailby feather

Openwrt is a Linux firmware that can transform your home wifi router in a powerful network device, with more than 2000 software packages you can have out of the box a firewall, a voip gateway, a VPN server along with many other functionalities. In this short post I’m going to explain how to enable the SSL and the SSH management on the WAN port with the latest OpenWRT firmware (Backfire 10.03.1-RC6).

Assuming your OpenWRT box have a local ip address 192.168.1.1, you can ssh into it with ssh 192.168.1.1 -l root .

Once you’ve logged in run the following commands to install the SSL support for the LuCI web interface.

opkg update
opkg install luci-ssl
/etc/init.d/uhttpd restart

In the /etc/firewall.user file add the following line

[sourcecode language=”bash”]
iptables –append input_wan –protocol tcp –dport 443 –jump ACCEPT
[/sourcecode]

Please restart the firewall, otherwise the new rule won’t take effect.

/etc/init.d/firewall restart

Now you are ready to log into your OpenWRT router using the htts://wanaddress .

Enjoy.


Comments

  1. I’m running Backfire 10.03.1 and I get this error when I restart the firewall:

    Bad argument `–-append’

    It looks like it doesn’t like the — options anymore, but I don’t know the right format.

  2. Ah when I copied it, it didn’t like your — format.

  3. Hello Matt B,

    I just corrected the –append format, thanks for notice that.

    Phillip

  4. Hey, i just found this forum and i wanted to ask you all, if you have any idea of how can i change the Luci web interface?? i need help with that, the thing is that i don’t know to which folder go to in backfire 10.031.
    in order to do this.

  5. Hi,

    I did exactly what it says and it works, but I can access web service from http://… and https://… how can I edit configuration that accessing web service only from https://

    thanks

  6. I followed your instructions to the T, but when I restarted the firewall I got the following: bad argument 443

    do you know what happened?

    root@bouncer:~# /etc/init.d/firewall restart
    Loading defaults
    Loading synflood protection
    Adding custom chains
    Loading zones
    Loading forwardings
    Loading rules
    Loading redirects
    Loading includes
    Bad argument 443'
    Try
    iptables -h’ or ‘iptables –help’ for more information.
    Optimizing conntrack
    Loading interfaces

Leave a Reply

Your email address will not be published / Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code class="" title="" data-url=""> <del datetime=""> <em> <i> <q cite=""> <strike> <strong> <pre class="" title="" data-url=""> <span class="" title="" data-url="">