ok strange. its the direct .ovpn file for asus merlin routers from perfect privacy. curious it doesnt work out of the box.Sometimes certain directives in the config file aren't truly necessary. They may either be superflous, irrelevant, represent default values, something the server side will set for itself, etc. But without seeing *all* the directives, it's hard to say which are the best candidates for exclusion.
For example, tls-timoeut defaults to '2' when not specified, so it's not *vital* to have it specified just to change it to '5'. Or remote-crt-tls; it's *nice* to verify the remote cert, but it's not as if you *have* to, esp. if it forces you to exceed the maximum size of the openvpn config file.
ok strange. its the direct .ovpn file for asus merlin routers from perfect privacy. curious it doesnt work out of the box.
Biggest problem is, if you are not fully aware of what you need and which lines are optional its very hard to get it running.
i have to assign one location to client 1 and another to client 2. i dont think they rotate. 1 went down and it didnt hop to client 2. i think its just for multiple vpn servers and not for redundancy. but it would be interesting if this would be possibleIf the config has more than one destination specified, it rotates through them.
I don't use it and didn't try it so I should shut up and listen to someone who has. I had read this:i dont think they rotate.
–remote host [port] [proto]
Remote host name or IP address. On the client, multiple –remote options may be specified
for redundancy, each referring to a different OpenVPN server. Specifying
multiple –remote options for this purpose is a special case of the more general
connection-profile feature. See the <connection> documentation below.
The OpenVPN client will try to connect to a server at host:port in the order
specified by the list of –remote options.
I was too, in a less common context: which of server1 or server2 on the router to connect to. I use four configs but I thought I could boil it into 1 or 2.I'm talking about using a *single* OpenVPN client w/ multiple servers.
The Selective Routing (RPDB) GUI rules are applied in the following order...(but may be overridden by using the 'openvpn-event' trigger scripts)i have to assign one location to client 1 and another to client 2. i dont think they rotate. 1 went down and it didnt hop to client 2. i think its just for multiple vpn servers and not for redundancy. but it would be interesting if this would be possible
GUI: Selective Routing Source/Destination (Client 1 WAN) <-HIGHEST priority
GUI: Selective Routing Source/Destination (Client 1 VPN)
etc.
GUI: Selective Routing Source/Destination (Client 5 WAN)
GUI: Selective Routing Source/Destination (Client 5 VPN) <-LOWEST priority
192.168.55.111/32 0.0.0.0 VPN
from VPN Client 1 to VPN Client 2 NOTE: (Do NOT enable Kill-switch for VPN Client 1) VPN Client 1
192.168.55.111/32 0.0.0.0 VPN Selective routing for a single LAN device
VPN Client 2
192.168.55.222/31 0.0.0.0 VPN Selective routing for two LAN devices
192.168.55.111/32 0.0.0.0 VPN Failover Selective routing for a single LAN device normally routed via VPN Client 1
VPN Client 3
192.168.55.0/24 0.0.0.0 VPN (default) Selective routing for ALL LAN devices
192.168.55.99/32 0.0.0.0 WAN except for this single LAN device which always uses the WAN
192.168.55.111/32 0.0.0.0 VPN
permanently defined in the Selective Routing VPN Client 2 GUI, you could use the scripts to insert 192.168.55.111/32 0.0.0.0 VPN
only when VPN Client 1 goes DOWN.YesView attachment 30348
if i set client 1 (Block routed clients if tunnel goes down) to no then it will fall back to client 2 when there are same ips routed and client 1 cannot connect?
ip rule
ip route flush cache
Anyone experience problems in VPN if I have 2 ou more OpenVPNClients is ON all traffic goes to SAME vpn server!
ISP Fiber 500Mbps
AX88U (Wireless router - 386.1 : Diversion + skynet behind ISP router - Local IP)
Vpn Service Surf Shark (suport varius vpnserver to same client)
OPENVPNCLIENT1->TV
OPENVPNCLIENT2-> Smartphone
Force Internet traffic through tunnel Policy Rules (Strict)
Block routed clients if tunnel goes down YES
OpenVPNClient1 - Public IP 91.205.230.141 Local IP 10.8.8.6
OpenVPNClient2 - Public IP 66.115.166.148 Local IP 10.8.8.3
My solution:
changing the server protocol of VPNClient2 has it changed de port of server! it works
OpenVPNClient1 UDP port 11xx
OpenVPNClient1 TCP port 14xx
SpeedTest
RJ45
TV + VPN1 .PT - 70Mbps
Notebook i7 2gen NOVPN - 474Mbps
Wifi 5Ghz - far from router
Galaxy S5 + VPN2 .US - 9Mbps
Galaxy A70 NOVPN - 120Mbps
Not Bad 2 VPN Clients 4 devices testing at sometime, what do you think?
1 QUESTION HOW COME SOME USER HAVE MORE THAN 2?
change server port or port forward to another port i think
Right,
I real use i only use 1 VPNClient for the SmarTv to hide iptv from ISP. But I was trying to see if AX88U creates a new sub net or VLAN for the new VPNClient.
The phone or desktop can connect directly by APP or OpenVPN
Thanks, i was considering de UDM-Pro because I could run de radius server in there instead of the nas and vlan configuration for isolation of wired and wireless devices to guests clan and sister IoT devices but the AX88U is really a great peace of hardware and software thank to RMerlin
Welcome To SNBForums
SNBForums is a community for anyone who wants to learn about or discuss the latest in wireless routers, network storage and the ins and outs of building and maintaining a small network.
If you'd like to post a question, simply register and have at it!
While you're at it, please check out SmallNetBuilder for product reviews and our famous Router Charts, Ranker and plenty more!