Openvpn Setup

Discussion in 'Asuswrt-Merlin' started by Shayne, Feb 21, 2013.

  1. Shayne

    Shayne Occasional Visitor

    Joined:
    Feb 9, 2013
    Messages:
    32
    Hi

    Since it was not posted and was a bit of searching I thought I would post my openvpn setup in hopes it may help others and to get comments from people that know better so I can tweak it.

    Insert keys and apply
    Config client settings and apply
    Check status and ensure running

    Once setup up

    go to router, tools, run cmd, and paste the below command and refresh

    cat /tmp/hmavpn.log

    The log near start should look something like below.

    Hint: Once commands are entered to the router run cmd it remembers and left click brings down title bar.

    Begin Log:

    Thu Feb 7 10:38:16 2013 OpenVPN 2.2.2 mipsel-linux [SSL] [LZO2] [EPOLL] built on Dec 31 2012
    Thu Feb 7 10:38:16 2013 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
    Thu Feb 7 10:38:16 2013 Control Channel MTU parms [ L:1541 D:138 EF:38 EB:0 ET:0 EL:0 ]
    Thu Feb 7 10:38:16 2013 Socket Buffers: R=[114688->131072] S=[114688->131072]
    Thu Feb 7 10:38:16 2013 Data Channel MTU parms [ L:1541 D:1450 EF:41 EB:4 ET:0 EL:0 ]
    Thu Feb 7 10:38:16 2013 UDPv4 link local: [undef]
    Thu Feb 7 10:38:16 2013 UDPv4 link remote: 184.75.210.162:53
    Thu Feb 7 10:38:16 2013 TLS: Initial packet from 184.75.210.162:53, sid=869c91b4 29c79ba9
    Thu Feb 7 10:38:16 2013 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
    Thu Feb 7 10:38:16 2013 VERIFY OK: depth=1, /C=UK/ST=NR/L=Attleborough/O=Hide_My_Ass__Pro/OU=VPN/CN=vpn.hidemyass.com/emailAddress=ca@hidemyass.com
    Thu Feb 7 10:38:16 2013 VERIFY OK: nsCertType=SERVER
    Thu Feb 7 10:38:16 2013 VERIFY OK: depth=0, /C=UK/ST=NR/L=Attleborough/O=Hide_My_Ass__Pro/OU=VPN/CN=server/emailAddress=vpn@hidemyass.com
    Thu Feb 7 10:38:18 2013 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
    Thu Feb 7 10:38:18 2013 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
    Thu Feb 7 10:38:18 2013 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
    Thu Feb 7 10:38:18 2013 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
    Thu Feb 7 10:38:18 2013 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
    Thu Feb 7 10:38:18 2013 [server] Peer Connection Initiated with 184.75.210.162:53
    Thu Feb 7 10:38:20 2013 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
    Thu Feb 7 10:38:20 2013 PUSH: Received control message: 'PUSH_REPLY,topology subnet,route-gateway 10.200.4.1,dhcp-option DNS 208.67.222.222,dhcp-option DNS 208.67.220.220,ping 10,ping-restart 90,redirect-gateway def1,ifconfig 10.200.5.30 255.255.252.0'
    Thu Feb 7 10:38:20 2013 OPTIONS IMPORT: timers and/or timeouts modified
    Thu Feb 7 10:38:20 2013 OPTIONS IMPORT: --ifconfig/up options modified
    Thu Feb 7 10:38:20 2013 OPTIONS IMPORT: route options modified
    Thu Feb 7 10:38:20 2013 OPTIONS IMPORT: route-related options modified
    Thu Feb 7 10:38:20 2013 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
    Thu Feb 7 10:38:20 2013 TUN/TAP device tun11 opened
    Thu Feb 7 10:38:20 2013 TUN/TAP TX queue length set to 100
    Thu Feb 7 10:38:20 2013 /sbin/ifconfig tun11 10.200.5.30 netmask 255.255.252.0 mtu 1500 broadcast 10.200.7.255
    Thu Feb 7 10:38:20 2013 /sbin/route add -net 184.75.210.162 netmask 255.255.255.255 gw 64.230.200.150
    Thu Feb 7 10:38:20 2013 /sbin/route add -net 0.0.0.0 netmask 128.0.0.0 gw 10.200.4.1
    Thu Feb 7 10:38:20 2013 /sbin/route add -net 128.0.0.0 netmask 128.0.0.0 gw 10.200.4.1
    Thu Feb 7 10:38:20 2013 Initialization Sequence Completed
     

    Attached Files:

    • 01.jpg
      01.jpg
      File size:
      60.3 KB
      Views:
      30
    • 02.jpg
      02.jpg
      File size:
      77.5 KB
      Views:
      14
    • 03.jpg
      03.jpg
      File size:
      59.3 KB
      Views:
      14
  2. Log in / Register to remove this ad

Share This Page