This is a known bug myself and a few others have experienced on certain hardware. Something with the crypto is failing in the bandwidth credential claiming process.
I get this same error on my GL.inet SFT1200. Iāll dive into it this weekend, need to add debug logging so we can get a more specific error than failed to claim ecash bandwidth with the gateway.
@code-zm thank you in advance, looking forward for your response
Could you recommend a Router which is already tested for NYM openWRT and is powerful enough, not too hard to configure? Ideally 2-3 options. Thanks.
Please add an option to disable routing on the vpn interface so that I could use pbr to route certain domains to the nymvpn mixnet
UPDATES:
Instead of relying on Wireguard kernel modules, Iām changing the backend to use Mullvadās user space implementation, GotaTun.
Putting together a site for documentation, install process, recommended routers etc.
Bug fixes on the way
Thank you to everyone who has been testing it out!
Just ordered your make and model of gl.inet router (AX1800).
Also was wondering if you are running standard OpenWrt or the GL.inet version?
Made a new repo, stripped down to only what we need for OpenWrt:
Hi,
I am trying to install nym-vpn_1.23.2_x86_64.ipk on the latest OpenWrt, but I encountered two problems:
Iām skipping the fact that we canāt install from webgui by televersing the package from a browser. We just have to wget the package from the router.
Package requires a key for installation
Running:
apk add --allow-untrusted ./nym-vpn_1.23.2_x86_64.ipk
gives an error about a signature, even with --allow-untrusted. It seems the package is signed in a way that the OpenWrt package manager cannot bypass.
V2 package format error
The same command outputs:
ERROR: ./nym-vpn_1.23.2_x86_64.ipk: v2 package format error
This suggests the .ipk is not fully compatible with the new apk OpenWrt package manager.
Suggestions / Requests:
.ipk package or instructions to generate a key so that installation works without errors.--allow-untrusted to let users install custom packages.Environment:
Thank you.
PS: I just saw the new repo. It will still bring the same issues of the key, and the .ipk.
Also I donāt know if itās normal, but there is no package on the release page of the new github page.
Thanks for the feedback!
Just added a step in the build workflow to package for apk.
Regarding the new repo, Iām still making changes and fixes until I put out a release. Check here again over the weekend, should have a new release up soon.
If you canāt wait, download the pkg-* file from the workflow run artifacts: Release musl binaries Ā· dial0ut/nym-vpn-openwrt@73a2003 Ā· GitHub
stock Gl.inet
Found the cause of the bug. Issue was ecash serialization on 32 bit platforms producing a different hash than what 64 bit platforms (gateways) expect.
Putting out a new release today.
Thanks for your patience!
I have it running on GL.inet AX1800. Iād recommend something with at least 256MB disk and 256MB RAM.
You can fit it onto weaker devices like GL.inet SFT1200 with some workarounds. Using zram and overlayfs works for me.
Will be purchasing more routers soon for testing. Also, once I get the website up and running Iāll put out an official minimum spec.
New release is ready! Release Nym VPN v1.25.0 Ā· dial0ut/nym-vpn-openwrt Ā· GitHub
.apk files for newer OpenWrt versions