1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.
Dismiss Notice

Welcome To SNBForums

SNBForums is a community for anyone who wants to learn about or discuss the latest in wireless routers, network storage and the ins and outs of building and maintaining a small network.

If you'd like to post a question, simply register and have at it!

While you're at it, please check out SmallNetBuilder for product reviews and our famous Router Charts, Ranker and plenty more!

RT-AC-86U OpenVpn problems, 384.8_0

Discussion in 'Asuswrt-Merlin' started by Jörgen Hyckenberg, Dec 8, 2018 at 4:39 PM.

  1. Jörgen Hyckenberg

    Jörgen Hyckenberg New Around Here

    Joined:
    Saturday
    Messages:
    4
    Hi.
    Trying to get the OpenVPN to work on 384.8_0 but one profile works if I add another one it just says "public ip unknown" and get no internet access. The first profile I install works, doesn't matter which one.

    If I restore the GW to the original firmware (3.0.0.4.384_32799-gfe72567) everything works as it should!

    I'm using Integrity Vpn and ExpressVpn

    Anyone else has this problem and solved it?


    Dec 9 06:06:24 ovpn-client3[1407]: WARNING: --ns-cert-type is DEPRECATED. Use --remote-cert-tls instead.
    Dec 9 06:06:24 ovpn-client3[1407]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
    Dec 9 06:06:24 ovpn-client3[1407]: TCP/UDP: Preserving recently used remote address: [AF_INET]82.103.130.13:1195
    Dec 9 06:06:24 ovpn-client3[1407]: Socket Buffers: R=[524288->1048576] S=[524288->1048576]
    Dec 9 06:06:24 ovpn-client3[1407]: UDP link local: (not bound)
    Dec 9 06:06:24 ovpn-client3[1407]: UDP link remote: [AF_INET]82.103.130.13:1195
    Dec 9 06:06:24 ovpn-client3[1407]: TLS: Initial packet from [AF_INET]82.103.130.13:1195, sid=65640a48 4e0fed39
    Dec 9 06:06:24 ovpn-client3[1407]: VERIFY OK: depth=1, C=VG, ST=BVI, O=ExpressVPN, OU=ExpressVPN, CN=ExpressVPN CA, [email protected]
    Dec 9 06:06:24 ovpn-client3[1407]: VERIFY OK: nsCertType=SERVER
    Dec 9 06:06:24 ovpn-client3[1407]: VERIFY X509NAME OK: C=VG, ST=BVI, O=ExpressVPN, OU=ExpressVPN, CN=Server-2510-5a, [email protected]
    Dec 9 06:06:24 ovpn-client3[1407]: VERIFY OK: depth=0, C=VG, ST=BVI, O=ExpressVPN, OU=ExpressVPN, CN=Server-2510-5a, [email protected]
    Dec 9 06:06:24 ovpn-client3[1407]: Control Channel: TLSv1.2, cipher TLSv1/SSLv3 ECDHE-RSA-AES256-GCM-SHA384, 2048 bit RSA
    Dec 9 06:06:24 ovpn-client3[1407]: [Server-2510-5a] Peer Connection Initiated with [AF_INET]82.103.130.13:1195
    Dec 9 06:06:25 ovpn-client3[1407]: SENT CONTROL [Server-2510-5a]: 'PUSH_REQUEST' (status=1)
    Dec 9 06:06:25 ovpn-client3[1407]: PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1,dhcp-option DNS 10.198.0.1,route 10.198.0.1,topology net30,ping 10,ping-restart 60,ifconfig 10.198.0.154 10.198.0.153,peer-id 32,cipher AES-256-GCM'
    Dec 9 06:06:25 ovpn-client3[1407]: OPTIONS IMPORT: timers and/or timeouts modified
    Dec 9 06:06:25 ovpn-client3[1407]: OPTIONS IMPORT: --ifconfig/up options modified
    Dec 9 06:06:25 ovpn-client3[1407]: OPTIONS IMPORT: route options modified
    Dec 9 06:06:25 ovpn-client3[1407]: OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
    Dec 9 06:06:25 ovpn-client3[1407]: OPTIONS IMPORT: peer-id set
    Dec 9 06:06:25 ovpn-client3[1407]: OPTIONS IMPORT: adjusting link_mtu to 1629
    Dec 9 06:06:25 ovpn-client3[1407]: OPTIONS IMPORT: data channel crypto options modified
    Dec 9 06:06:25 ovpn-client3[1407]: Data Channel: using negotiated cipher 'AES-256-GCM'
    Dec 9 06:06:25 ovpn-client3[1407]: NCP: overriding user-set keysize with default
    Dec 9 06:06:25 ovpn-client3[1407]: Outgoing Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
    Dec 9 06:06:25 ovpn-client3[1407]: Incoming Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
    Dec 9 06:06:25 ovpn-client3[1407]: Preserving previous TUN/TAP instance: tun13
    Dec 9 06:06:25 ovpn-client3[1407]: NOTE: Pulled options changed on restart, will need to close and reopen TUN/TAP device.
    Dec 9 06:06:25 ovpn-client3[1407]: vpnrouting.sh tun13 1500 1557 10.198.0.130 10.198.0.129 init
    Dec 9 06:06:25 openvpn-routing: Configuring policy rules for client 3
    Dec 9 06:06:25 ovpn-client3[1407]: /bin/ip route del 10.198.0.1/32
    Dec 9 06:06:25 ovpn-client3[1407]: /bin/ip route del 82.103.130.13/32
    Dec 9 06:06:25 ovpn-client3[1407]: /bin/ip route del 0.0.0.0/1
    Dec 9 06:06:25 ovpn-client3[1407]: /bin/ip route del 128.0.0.0/1
    Dec 9 06:06:25 ovpn-client3[1407]: Closing TUN/TAP interface
    Dec 9 06:06:25 ovpn-client3[1407]: /bin/ip addr del dev tun13 local 10.198.0.130 peer 10.198.0.129
    Dec 9 06:06:25 ovpn-client3[1407]: updown.sh tun13 1500 1557 10.198.0.130 10.198.0.129 init
    Dec 9 06:06:25 rc_service: service 1673:notify_rc updateresolv
    Dec 9 06:06:26 ovpn-client3[1407]: TUN/TAP device tun13 opened
    Dec 9 06:06:26 ovpn-client3[1407]: TUN/TAP TX queue length set to 100
    Dec 9 06:06:26 ovpn-client3[1407]: do_ifconfig, tt->did_ifconfig_ipv6_setup=0
    Dec 9 06:06:26 ovpn-client3[1407]: /bin/ip link set dev tun13 up mtu 1500
    Dec 9 06:06:26 ovpn-client3[1407]: /bin/ip addr add dev tun13 local 10.198.0.154 peer 10.198.0.153
    Dec 9 06:06:26 ovpn-client3[1407]: updown.sh tun13 1500 1557 10.198.0.154 10.198.0.153 init
    Dec 9 06:06:26 rc_service: service 1735:notify_rc updateresolv
    Dec 9 06:06:28 ovpn-client3[1407]: /bin/ip route add 82.103.130.13/32 via 100.70.92.1
    Dec 9 06:06:28 ovpn-client3[1407]: /bin/ip route add 0.0.0.0/1 via 10.198.0.153
    Dec 9 06:06:28 ovpn-client3[1407]: /bin/ip route add 128.0.0.0/1 via 10.198.0.153
    Dec 9 06:06:28 ovpn-client3[1407]: /bin/ip route add 10.198.0.1/32 via 10.198.0.153
    Dec 9 06:06:28 ovpn-client3[1407]: Initialization Sequence Completed
     
    Last edited: Dec 9, 2018 at 1:09 AM
  2. Striker317

    Striker317 Regular Contributor

    Joined:
    Dec 18, 2015
    Messages:
    100
    Try 384.8_2
     
  3. skeal

    skeal Part of the Furniture

    Joined:
    Apr 30, 2016
    Messages:
    2,119
    Location:
    /etc
    Try factory reset as well. Going back and forth between stock and merlin begs the need for it.
     
  4. Jörgen Hyckenberg

    Jörgen Hyckenberg New Around Here

    Joined:
    Saturday
    Messages:
    4
    have you been having the same problems?
     
  5. Jörgen Hyckenberg

    Jörgen Hyckenberg New Around Here

    Joined:
    Saturday
    Messages:
    4
    Have done it, but always gets back to the same problem
     
  6. skeal

    skeal Part of the Furniture

    Joined:
    Apr 30, 2016
    Messages:
    2,119
    Location:
    /etc
    I have a couple VPN configs running at the same time and I cannot replicate your issue.
     
  7. Striker317

    Striker317 Regular Contributor

    Joined:
    Dec 18, 2015
    Messages:
    100
    No problems.

    You don’t list the settings of your other VPN clients. Do they share the same port?
     
  8. Jörgen Hyckenberg

    Jörgen Hyckenberg New Around Here

    Joined:
    Saturday
    Messages:
    4
    Same port on the diffrent profiles (same provider) but does it matter when only one is active at the time!?