Well that was illuminating and ultimately successful.
crda was installed and country code correctly set.
The last post in the thread suggested comparing with a known successful installation, which I did.
As a result I removed some of the services selected in firewalld and all of the explicitly configured ports. The firewall is now set up as in my working instance.
I then had to change the firewall zone for wlan0 and eth0 to be the same -previously eth0 had been public and wlan0 home.
Then pinging it with Angry ip (A_ip) reset it to working! Strangely, as before pinging it it was not connecting to the router.
Now it is showing as connected to the router, but still not connected to the internet.
AngryIP then returned
open ports 22,80
filtered ports 53,5004-5009
proxy 80 HTTP/1.1 200 OK
So 443 https was not set, despite https being set in the list of services.
I added 443 in firewalld via the system tray. No difference.
dns was not set, despite being selected in the list.
I added 53 explicitly, no difference.
So according to firewalld, 22,53,80 and 443 are all set, but according to A_ip only 22,80,5004-5009 are open.
I then tried adding 443 via the command line. It worked.
$ firewall-cmd --zone=home --list-ports
443/tcp
So i tried adding 53 via cli
…
$ firewall-cmd --permanent --zone=home --add-port=53/tcp
success
[richardh@richard-RPi ~]$ firewall-cmd --zone=home --list-ports
443/tcp
…
But it’s not listed.
Did I get that wrong?
…
[richardh@richard-RPi ~]$ firewall-cmd --permanent --zone=home --add-port=53/tcp
Warning: ALREADY_ENABLED: 53:tcp
success
…
No.
…
[richardh@richard-RPi ~]$ firewall-cmd --zone=home --list-ports
443/tcp
…
So it’s there but not listed. And still neithe 53 or 443 show in A_ip.
So I wondered whether wpa_supplicant could be interfering with this, and sure enough it was running. So I stopped it. But no change, Then I disabled it, but that just started it again. So I masked it.
And then, even though i have a wifi profile configured in Network Manager, I didn’t have a wifi connection at all. Even one which won’t connect to the internet.
So I have unmasked wpa_supplicant for now. And am back to where I started, with a working unable-to-connect-to-the-internet connection, ports 443 and 53 set in firewalld and not visible on A_ip.
I did notice on the way through that wpa_supplicant seemed to be configured with country code IE. I am GB.
So i set country=GB in /etc/wpa_supplicant/wpa_supplicant.conf.
You may recall that I had installed wpa_supplicant because NM was not giving me a connection.
I hadn’t set country=IE so it wasn’t a total surprise that setting country=GB didn’t make any difference.
For any of you still following this, what next? I have no idea.
In case anyone suggests removing wpa_supplicant, which seems to be taking control without adding any value (seen that before) can you confirm / advise whether
…
$ sudo pacman -R wpa_supplicant
…
is correct to remove just the installed package without removing required dependencies and without removing it from cache?
Tks
R