Menu
What's new
By:
Filters Better Search

Open VPN files generated by 380.65+ no longer work with Tunnelblick

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

M

Michael W

New Around Here
Dear Merlin,

thank you for your excellent firmware.

Until before version 380.65, Tunnelblick handled .ovpn files generated by your firmware without any problems (it was possible to use various options settings).

Starting with version 380.65, Tunnelblick cannot open connections based on .ovpn files generated by your firmware anymore.

The following error is generated:

"Options error: Unrecognized option or missing parameter(s) in /Library/Application Support/Tunnelblick/Shared/XXXXXX.tblk/Contents/Resources/config.ovpn:6: ncp-ciphers (2.3.14)"

I have verified the issue with another Open VPN client, Viscosity. Viscosity is also unable to open a connection based on .ovpn files generated by AsusWrt 380.65 or later.

Is there a way around this issue apart from changing back to a version prior to 380.65?

Thanks again for your amazing work,
Best regards,

Michael
 
What encryption ciphers are you setting, and what do they want? The new firmware has openvpn 2.4.0, so there are some changes that have happened. You may need to do some adjustments by hand (I would have assumed you have already tried that...).
 
Last edited:
Disable any setting that reports as requiring OpenVPN 2.4 - it's displayed on the webui, or upgrade your clients to 2.4.1.
 
Thank you, problem solved :)

VPN / Open VPN Servers / Advanced Settings / Cipher negotiation disabled does the trick...

I am however using the latest beta version of Tunnelblick, it seems they have not implemented some features yet...
 
Michael W said:
Thank you, problem solved :)

VPN / Open VPN Servers / Advanced Settings / Cipher negotiation disabled does the trick...

I am however using the latest beta version of Tunnelblick, it seems they have not implemented some features yet...
Click to expand...

According to the log you posted, your Tunnelblick was using OpenVPN 2.3.14.
 
Tunnelblick 3.7.1beta02 gives the user a few options though the default is still OpenVPN 2.3.14 with openSSL 1.0.2k. I configured it with OpenVPN 2.4.1 with LibreSSL 2.5.0 and it works well.
 
Indeed, the Tunnelblick Release Notes of the latest beta (3.7.1 beta 02 build 4810) state that it "includes OpenVPN 2.4.1 and OpenVPN 2.3.14" but unless one manually changes the settings, it defaults to OpenVPN 2.3.14.

The latest regular Tunnelblick Release (3.7.0 build 4790) does not include OpenVPN 2.4.1 yet.

The latest version of Viscosity (1.6.8) only includes OpenVPN 2.3.14.

I don't know what the situation is for Windows users - but for Mac users it would appear that the current default settings of the OpenVPN server (as introduced with version 380.65) might make it quite hard for non tech-savvy users to use OpenVPN.

Thanks again to everyone here!
 
Since we're talking about vpn's. Would somebody be kind enough to make recommendations for a openvpn client provider? I need to install on my rt-ac5300 to protect all in the home. Thanks!
 
bobiii said:
Since we're talking about vpn's. Would somebody be kind enough to make recommendations for a openvpn client provider? I need to install on my rt-ac5300 to protect all in the home. Thanks!
Click to expand...

Maybe better to create your own thread for this instead of asking in someones topic which isn't related to VPN recommendations?
 
You must log in or register to reply here.

Similar threads

lewtrocki
Problem with routing only specific IP with OpenVPN client on Asuswrt router
Replies
3
Views
1K
IvanSB
I
A
Devices connect to my openvpn server correctly but no traffic from server to client
Replies
6
Views
866
ragtap
R
P
RT-AX88U - 388.2_2 - Previously Working VPN Client (NordVPN) no longer functions - Suggestions for NordVPN Working Settings July 2023
Replies
2
Views
1K
PC Pilot
P
A
RT-AС86U OpenVPN Trouble
Replies
4
Views
1K
ColinTaylor
C
G
Working Setup ASUS RT-AC86U as Secondary/Client VPN Router with Primary Netgear Router (Conflicts Result)
Replies
6
Views
5K
Geoff Wiki Inquiry
G
Similar threads
Thread starter Title Forum Replies Date
D Open VPN App No Longer Working Asuswrt-Merlin 3
S Open ports query on AX88U Asuswrt-Merlin 6
John Tetreault How to open ipv6 firewall to a port on the router? Asuswrt-Merlin 4
M Solved aaews open two port random Asuswrt-Merlin 2
G Solved aicloud ports open Asuswrt-Merlin 1
J Why does my RT-AX88u show ports 80,443 & 21 open from WAN? Asuswrt-Merlin 0
O Assigned IP address to the WAN interface via VPN director: no internet connection - why? Asuswrt-Merlin 1
A Asus Merlin 388.6_2 VPN-Director Asuswrt-Merlin 5
M VPN FUSION & VPN DIRECTOR Merlin Firmware Asuswrt-Merlin 34
B VPN + Diversion Asuswrt-Merlin 5

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 635 (members: 25, guests: 610)
Top