Openvpn Setup

[Shayne]

Hi

Since it was not posted and was a bit of searching I thought I would post my openvpn setup in hopes it may help others and to get comments from people that know better so I can tweak it.

Insert keys and apply
Config client settings and apply
Check status and ensure running

Once setup up

go to router, tools, run cmd, and paste the below command and refresh

cat /tmp/hmavpn.log

The log near start should look something like below.

Hint: Once commands are entered to the router run cmd it remembers and left click brings down title bar.

Begin Log:

Thu Feb 7 10:38:16 2013 OpenVPN 2.2.2 mipsel-linux [SSL] [LZO2] [EPOLL] built on Dec 31 2012
Thu Feb 7 10:38:16 2013 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Thu Feb 7 10:38:16 2013 Control Channel MTU parms [ L:1541 D:138 EF:38 EB:0 ET:0 EL:0 ]
Thu Feb 7 10:38:16 2013 Socket Buffers: R=[114688->131072] S=[114688->131072]
Thu Feb 7 10:38:16 2013 Data Channel MTU parms [ L:1541 D:1450 EF:41 EB:4 ET:0 EL:0 ]
Thu Feb 7 10:38:16 2013 UDPv4 link local: [undef]
Thu Feb 7 10:38:16 2013 UDPv4 link remote: 184.75.210.162:53
Thu Feb 7 10:38:16 2013 TLS: Initial packet from 184.75.210.162:53, sid=869c91b4 29c79ba9
Thu Feb 7 10:38:16 2013 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Thu Feb 7 10:38:16 2013 VERIFY OK: depth=1, /C=UK/ST=NR/L=Attleborough/O=Hide_My_Ass__Pro/OU=VPN/CN=vpn.hidemyass.com/emailAddress=ca@hidemyass.com
Thu Feb 7 10:38:16 2013 VERIFY OK: nsCertType=SERVER
Thu Feb 7 10:38:16 2013 VERIFY OK: depth=0, /C=UK/ST=NR/L=Attleborough/O=Hide_My_Ass__Pro/OU=VPN/CN=server/emailAddress=vpn@hidemyass.com
Thu Feb 7 10:38:18 2013 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
Thu Feb 7 10:38:18 2013 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Thu Feb 7 10:38:18 2013 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
Thu Feb 7 10:38:18 2013 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Thu Feb 7 10:38:18 2013 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
Thu Feb 7 10:38:18 2013 [server] Peer Connection Initiated with 184.75.210.162:53
Thu Feb 7 10:38:20 2013 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
Thu Feb 7 10:38:20 2013 PUSH: Received control message: 'PUSH_REPLY,topology subnet,route-gateway 10.200.4.1,dhcp-option DNS 208.67.222.222,dhcp-option DNS 208.67.220.220,ping 10,ping-restart 90,redirect-gateway def1,ifconfig 10.200.5.30 255.255.252.0'
Thu Feb 7 10:38:20 2013 OPTIONS IMPORT: timers and/or timeouts modified
Thu Feb 7 10:38:20 2013 OPTIONS IMPORT: --ifconfig/up options modified
Thu Feb 7 10:38:20 2013 OPTIONS IMPORT: route options modified
Thu Feb 7 10:38:20 2013 OPTIONS IMPORT: route-related options modified
Thu Feb 7 10:38:20 2013 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Thu Feb 7 10:38:20 2013 TUN/TAP device tun11 opened
Thu Feb 7 10:38:20 2013 TUN/TAP TX queue length set to 100
Thu Feb 7 10:38:20 2013 /sbin/ifconfig tun11 10.200.5.30 netmask 255.255.252.0 mtu 1500 broadcast 10.200.7.255
Thu Feb 7 10:38:20 2013 /sbin/route add -net 184.75.210.162 netmask 255.255.255.255 gw 64.230.200.150
Thu Feb 7 10:38:20 2013 /sbin/route add -net 0.0.0.0 netmask 128.0.0.0 gw 10.200.4.1
Thu Feb 7 10:38:20 2013 /sbin/route add -net 128.0.0.0 netmask 128.0.0.0 gw 10.200.4.1
Thu Feb 7 10:38:20 2013 Initialization Sequence Completed