Menu
What's new
By:
Filters Better Search

OpenVPN needs a gateway parameter for a --route option

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

H

halex4u

Regular Contributor
Hello!

I have configured an OpenVPN server on RT-N66U (FW:374.43) which has worked flawless for over a year. But now, from Android client I have to wait for around 30s or more to connect without changing anything on server site.

I would appreciate any help.

Here is my config information:

Server.config file

server1
dev tun
proto udp
remote all.dnsomatic.com 1194
float
cipher AES-128-CBC
comp-lzo adaptive
keepalive 15 60
key-direction 1
ns-cert-type server
resolv-retry infinite
nobind

RT-N66u log


Code: 
Jul 27 21:49:27 openvpn[988]: 192.168.0.101:1194 TLS: Initial packet from [AF_INET]192.168.0.101:1194, sid=5f1384af cf8eda55
Jul 27 21:49:37 openvpn[988]: zz.yyy.211.162:13316 TLS: Initial packet from [AF_INET]zz.yyy.211.162:13316, sid=725d885e 65cb6680
Jul 27 21:49:39 openvpn[988]: zz.yyy.211.162:13316 VERIFY OK: depth=1, C=xzy, ST=xz, L=yyyy, O=OpenVPN, CN=xxxxasus, emailAddress=xxxxxxxxx@gmail.com
Jul 27 21:49:39 openvpn[988]: zz.yyy.211.162:13316 VERIFY OK: depth=0, C=xzy, ST=xz, O=OpenVPN, CN=client1, emailAddress=xxxxxxxxxxx@gmail.com
Jul 27 21:49:39 openvpn[988]: zz.yyy.211.162:13316 Data Channel Encrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
Jul 27 21:49:39 openvpn[988]: zz.yyy.211.162:13316 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Jul 27 21:49:39 openvpn[988]: zz.yyy.211.162:13316 Data Channel Decrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
Jul 27 21:49:39 openvpn[988]: zz.yyy.211.162:13316 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Jul 27 21:49:39 openvpn[988]: zz.yyy.211.162:13316 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
Jul 27 21:49:39 openvpn[988]: zz.yyy.211.162:13316 [client1] Peer Connection Initiated with [AF_INET]zz.yyy.211.162:13316
Jul 27 21:49:39 openvpn[988]: client1/zz.yyy.211.162:13316 MULTI_sva: pool returned IPv4=dd.ff.0.6, IPv6=(Not enabled)
Jul 27 21:50:33 openvpn[988]: client1/zz.yyy.211.162:13316 OPTIONS IMPORT: reading client specific options from: /tmp/openvpn_cc_344b0881c7ad292d8981c34fa6e53eb4.tmp
Jul 27 21:50:33 openvpn[988]: client1/xx.yyy.211.162:13316 MULTI: Learn: dd.ff.0.6 -> client1/xx.yyy.211.162:13316
Jul 27 21:50:33 openvpn[988]: client1/xx.yyy.211.162:13316 MULTI: primary virtual IP for client1/zz.yyy.211.162:13316: dd.ff.0.6
Jul 27 21:50:33 openvpn[988]: client1/zz.yyy.211.162:13316 PUSH: Received control message: 'PUSH_REQUEST'
Jul 27 21:50:33 openvpn[988]: client1/zz.yyy.211.162:13316 send_push_reply(): safe_cap=940
Jul 27 21:50:33 openvpn[988]: client1/zz.yyy.211.162:13316 SENT CONTROL [client1]: 'PUSH_REPLY,route 192.168.0.0 255.255.255.0,dhcp-option DNS 192.168.0.1,redirect-gateway def1,route dd.ff.0.0 255.255.255.0,topology net30,ping 15,ping-restart 60,ifconfig dd.ff.0.6 10.66.0.5' (status=1)
Jul 27 21:50:33 openvpn[988]: client1/zz.yyy.211.162:13316 PUSH: Received control message: 'PUSH_REQUEST'
Jul 27 21:50:33 openvpn[988]: client1/zz.yyy.211.162:13316 PUSH: Received control message: 'PUSH_REQUEST'
Jul 27 21:50:33 openvpn[988]: client1/zz.yyy.211.162:13316 PUSH: Received control message: 'PUSH_REQUEST'
Jul 27 21:50:33 openvpn[988]: 192.168.0.101:1194 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Jul 27 21:50:33 openvpn[988]: 192.168.0.101:1194 TLS Error: TLS handshake failed
Jul 27 21:50:33 openvpn[988]: 192.168.0.101:1194 SIGUSR1[soft,tls-error] received, client-instance restarting
Jul 27 21:50:33 openvpn[988]: client1/zz.yyy.211.162:13316 PUSH: Received control message: 'PUSH_REQUEST'
Jul 27 21:50:33 openvpn[988]: client1/zz.yyy.211.162:13316 PUSH: Received control message: 'PUSH_REQUEST'
Jul 27 21:50:33 openvpn[988]: client1/zz.yyy.211.162:13316 PUSH: Received control message: 'PUSH_REQUEST'
Jul 27 21:50:33 openvpn[988]: client1/zz.yyy.211.162:13316 PUSH: Received control message: 'PUSH_REQUEST'
Jul 27 21:50:33 openvpn[988]: client1/zz.yyy.211.162:13316 PUSH: Received control message: 'PUSH_REQUEST'
Jul 27 21:50:33 openvpn[988]: client1/zz.yyy.211.162:13316 PUSH: Received control message: 'PUSH_REQUEST'
Jul 27 21:50:33 openvpn[988]: client1/zz.yyy.211.162:13316 PUSH: Received control message: 'PUSH_REQUEST'
Jul 27 21:51:56 openvpn[988]: client1/zz.yyy.211.162:13316 TLS: new session incoming connection from [AF_INET]zz.yyy.211.162:13316
Jul 27 21:51:57 openvpn[988]: client1/zz.yyy.211.162:13316 VERIFY OK: depth=1, C=xyz, ST=xz, L=yyy, O=OpenVPN, CN=asus, emailAddress=xxxxxxxxxxxx@gmail.com
Jul 27 21:51:57 openvpn[988]: client1/zz.yyy.211.162:13316 VERIFY OK: depth=0, C=xyz, ST=xz, O=OpenVPN, CN=client1, emailAddress=xxxxxxxxxx@gmail.com
Jul 27 21:51:57 openvpn[988]: client1/zz.yyy.211.162:13316 Data Channel Encrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
Jul 27 21:51:57 openvpn[988]: client1/zz.yyy.211.162:13316 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Jul 27 21:51:57 openvpn[988]: client1/zz.yyy.211.162:13316 Data Channel Decrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
Jul 27 21:51:57 openvpn[988]: client1/zz.yyy.211.162:13316 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Jul 27 21:51:57 openvpn[988]: client1/zz.yyy.211.162:13316 TLS: move_session: dest=TM_ACTIVE src=TM_UNTRUSTED reinit_src=1
Jul 27 21:51:57 openvpn[988]: client1/zz.yyy.211.162:13316 TLS: tls_multi_process: untrusted session promoted to semi-trusted
Jul 27 21:51:57 openvpn[988]: client1/zz.yyy.211.162:13316 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
Jul 27 21:52:00 openvpn[988]: client1/zz.yyy.211.162:13316 PUSH: Received control message: 'PUSH_REQUEST'
Jul 27 21:52:00 openvpn[988]: client1/zz.yyy.211.162:13316 send_push_reply(): safe_cap=940
Jul 27 21:52:00 openvpn[988]: client1/zz.yyy.211.162:13316 SENT CONTROL [client1]: 'PUSH_REPLY,route 192.168.0.0 255.255.255.0,dhcp-option DNS 192.168.0.1,redirect-gateway def1,route dd.ff.0.0 255.255.255.0,topology net30,ping 15,ping-restart 60,ifconfig dd.ff.0.6 dd.ff.0.5' (status=1)


Android Client log

Code: 
OpenVPN ROUTE6: OpenVPN needs a gateway parameter for a --route-ipv6 option and no default was specified by either --route-ipv6-gateway or --ifconfig options-ipv6 options
OpenVPN ROUTE: failed to parse/resolve route for host/network: ::/0


Edit: Solved
 
Last edited:
You must log in or register to reply here.

Similar threads

P
RT-AX88U - 388.2_2 - Previously Working VPN Client (NordVPN) no longer functions - Suggestions for NordVPN Working Settings July 2023
Replies
2
Views
1K
PC Pilot
P
P
OVPN Problem. Asus rt ax56u (latest merlin firmware
Replies
9
Views
1K
pattox
P
G
ASUS Merlin 388.2.2 Authentication Error / Timeout Issue
Replies
2
Views
1K
ColinTaylor
C
A
Setting up OpenVPN client
Replies
10
Views
1K
ColinTaylor
C
G
TLS error with OpenVPN client
Replies
4
Views
2K
eibgrad
eibgrad
Similar threads
Thread starter Title Forum Replies Date
P Openvpn internet access Asuswrt-Merlin 0
E OpenVPN TAP internet access problem Asuswrt-Merlin 0
M OpenVPN clients cannot connect to LAN computers. Asuswrt-Merlin 0
M OpenVPN / site to site with special security/routing constraints Asuswrt-Merlin 7
R OpenVPN keeps on turning itself off Asuswrt-Merlin 40
M Best router for wireguard or openVPN Asuswrt-Merlin 1
W OpenVPN Server set to LAN only allows browsing Asuswrt-Merlin 14
A Upgraded my ASUS, issues with NordVPN via OpenVPN Asuswrt-Merlin 4
G openvpn server: can not change/select data cipher Asuswrt-Merlin 1
Blankedy AC86U OpenVPN server whilst in AP mode Asuswrt-Merlin 3

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 714 (members: 14, guests: 700)
Top