What's new

[RT-AC66U] WPA 2 Enterprise + OPENVPN + RADIUS + NO WIFI

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

Jamyz

Occasional Visitor
Hi Everybody!!!
I use a RT-AC87U (VPN SERVER) and the RT-AC66U (VPN CLIENT) for the network(Works Great).
On VPN SERVER side i have a NAS With an RADIUS Server.
All the client from VPN CLIENT side use WPA 2 Enterprise to connect with the wifi (The Radius Server is on VPN SERVER side).
All works great.

But every time the router RT-AC66U reboot at scheduling 6:00AM, no more request to the radius server.
I need to put the wifi settings on OPEN SYSTEM and back to WPA2 Enterprise to the router request the Radius Server.

Some Logs:

Code:
Jun 20 06:01:15 openvpn[731]: [RT-AC87U] Inactivity timeout (--ping-restart), restarting
Jun 20 06:01:15 openvpn[731]: SIGUSR1[soft,ping-restart] received, process restarting
Jun 20 06:01:15 openvpn[731]: Restart pause, 5 second(s)
Jun 20 06:01:20 openvpn[731]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Jun 20 06:01:20 openvpn[731]: TCP/UDP: Preserving recently used remote address: [AF_INET]111.222.333.444:1194
Jun 20 06:01:20 openvpn[731]: Socket Buffers: R=[118784->118784] S=[118784->118784]
Jun 20 06:01:20 openvpn[731]: UDP link local: (not bound)
Jun 20 06:01:20 openvpn[731]: UDP link remote: [AF_INET]111.222.333.444:1194
Jun 20 06:02:21 openvpn[731]: [UNDEF] Inactivity timeout (--ping-restart), restarting
Jun 20 06:02:21 openvpn[731]: SIGUSR1[soft,ping-restart] received, process restarting
Jun 20 06:02:21 openvpn[731]: Restart pause, 5 second(s)
Jun 20 06:02:26 openvpn[731]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Jun 20 06:02:26 openvpn[731]: TCP/UDP: Preserving recently used remote address: [AF_INET]111.222.333.444:1194
Jun 20 06:02:26 openvpn[731]: Socket Buffers: R=[118784->118784] S=[118784->118784]
Jun 20 06:02:26 openvpn[731]: UDP link local: (not bound)
Jun 20 06:02:26 openvpn[731]: UDP link remote: [AF_INET]111.222.333.444:1194
Jun 20 06:03:26 openvpn[731]: [UNDEF] Inactivity timeout (--ping-restart), restarting
Jun 20 06:03:26 openvpn[731]: SIGUSR1[soft,ping-restart] received, process restarting
Jun 20 06:03:26 openvpn[731]: Restart pause, 5 second(s)
Jun 20 06:03:31 openvpn[731]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Jun 20 06:03:31 openvpn[731]: TCP/UDP: Preserving recently used remote address: [AF_INET]111.222.333.444:1194
Jun 20 06:03:31 openvpn[731]: Socket Buffers: R=[118784->118784] S=[118784->118784]
Jun 20 06:03:31 openvpn[731]: UDP link local: (not bound)
Jun 20 06:03:31 openvpn[731]: UDP link remote: [AF_INET]111.222.333.444:1194
Jun 20 06:03:31 openvpn[731]: TLS: Initial packet from [AF_INET]111.222.333.444:1194, sid=d22e180a 97baa065
Jun 20 06:03:32 openvpn[731]: VERIFY OK: depth=1, C=TW, ST=TW, L=Taipei, O=ASUS, CN=RT-AC87U, emailAddress=me@myhost.mydomain
Jun 20 06:03:32 openvpn[731]: VERIFY KU OK
Jun 20 06:03:32 openvpn[731]: Validating certificate extended key usage
Jun 20 06:03:32 openvpn[731]: ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
Jun 20 06:03:32 openvpn[731]: VERIFY EKU OK
Jun 20 06:03:32 openvpn[731]: VERIFY OK: depth=0, C=TW, ST=TW, L=Taipei, O=ASUS, CN=RT-AC87U, emailAddress=me@myhost.mydomain
Jun 20 06:03:32 openvpn[731]: Control Channel: TLSv1.2, cipher TLSv1/SSLv3 ECDHE-RSA-AES256-GCM-SHA384, 1024 bit RSA
Jun 20 06:03:32 openvpn[731]: [RT-AC87U] Peer Connection Initiated with [AF_INET]111.222.333.444:1194
Jun 20 06:03:33 openvpn[731]: SENT CONTROL [RT-AC87U]: 'PUSH_REQUEST' (status=1)
Jun 20 06:03:33 openvpn[731]: PUSH: Received control message: 'PUSH_REPLY,route 192.168.1.0 255.255.255.0 vpn_gateway 500,route-gateway 10.8.0.1,topology subnet,ping 15,ping-restart 60,ifconfig 10.8.0.2 255.255.255.0,peer-id 0,cipher AES-128-GCM'
Jun 20 06:03:33 openvpn[731]: OPTIONS IMPORT: timers and/or timeouts modified
Jun 20 06:03:33 openvpn[731]: OPTIONS IMPORT: --ifconfig/up options modified
Jun 20 06:03:33 openvpn[731]: OPTIONS IMPORT: route options modified
Jun 20 06:03:33 openvpn[731]: OPTIONS IMPORT: route-related options modified
Jun 20 06:03:33 openvpn[731]: OPTIONS IMPORT: peer-id set
Jun 20 06:03:33 openvpn[731]: OPTIONS IMPORT: adjusting link_mtu to 1625
Jun 20 06:03:33 openvpn[731]: OPTIONS IMPORT: data channel crypto options modified
Jun 20 06:03:33 openvpn[731]: Data Channel: using negotiated cipher 'AES-128-GCM'
Jun 20 06:03:33 openvpn[731]: Data Channel Encrypt: Cipher 'AES-128-GCM' initialized with 128 bit key
Jun 20 06:03:33 openvpn[731]: Data Channel Decrypt: Cipher 'AES-128-GCM' initialized with 128 bit key
Jun 20 06:03:33 openvpn[731]: Preserving previous TUN/TAP instance: tun11
Jun 20 06:03:33 openvpn[731]: Initialization Sequence Completed

When i use open system and back to WPA2 Enterprise :

Code:
Jun 20 06:33:49 rc_service: httpds 290:notify_rc restart_wireless
Jun 20 06:33:51 kernel: br0: port 2(eth1) entering disabled state
Jun 20 06:33:51 kernel: device eth1 left promiscuous mode
Jun 20 06:33:51 kernel: br0: port 2(eth1) entering disabled state
Jun 20 06:33:51 kernel: br0: port 3(eth2) entering disabled state
Jun 20 06:33:51 kernel: device eth2 left promiscuous mode
Jun 20 06:33:51 kernel: br0: port 3(eth2) entering disabled state
Jun 20 06:33:55 kernel: wl_module_init: passivemode set to 0x0
Jun 20 06:33:55 kernel: eth1: Broadcom BCM4331 802.11 Wireless Controller 6.30.163.2002 (r382208)
Jun 20 06:33:55 kernel: eth2: Broadcom BCM4360 802.11 Wireless Controller 6.30.163.2002 (r382208)
Jun 20 06:33:55 kernel: device eth1 entered promiscuous mode
Jun 20 06:33:55 kernel: br0: port 2(eth1) entering listening state
Jun 20 06:33:55 kernel: wlc_phy_cal_init_acphy: NOT Implemented
Jun 20 06:33:55 kernel: br0: port 2(eth1) entering learning state
Jun 20 06:33:55 kernel: br0: topology change detected, propagating
Jun 20 06:33:55 kernel: br0: port 2(eth1) entering forwarding state
Jun 20 06:33:55 kernel: device eth2 entered promiscuous mode
Jun 20 06:33:55 kernel: br0: port 3(eth2) entering listening state
Jun 20 06:33:55 kernel: br0: port 3(eth2) entering learning state
Jun 20 06:33:55 kernel: br0: topology change detected, propagating
Jun 20 06:33:55 kernel: br0: port 3(eth2) entering forwarding state
Jun 20 06:34:03 dnsmasq-dhcp[289]: DHCPREQUEST(br0) 192.168.0.123 a4:51:6f:24:84:d8
Jun 20 06:34:03 dnsmasq-dhcp[289]: DHCPACK(br0) 192.168.0.123 a4:51:6f:24:84:d8 Windows-Phone
Jun 20 06:34:26 rc_service: httpds 290:notify_rc restart_wireless
Jun 20 06:34:28 kernel: br0: port 2(eth1) entering disabled state
Jun 20 06:34:28 kernel: device eth1 left promiscuous mode
Jun 20 06:34:28 kernel: br0: port 2(eth1) entering disabled state
Jun 20 06:34:28 kernel: br0: port 3(eth2) entering disabled state
Jun 20 06:34:28 kernel: device eth2 left promiscuous mode
Jun 20 06:34:28 kernel: br0: port 3(eth2) entering disabled state
Jun 20 06:34:31 kernel: wl_module_init: passivemode set to 0x0
Jun 20 06:34:32 kernel: eth1: Broadcom BCM4331 802.11 Wireless Controller 6.30.163.2002 (r382208)
Jun 20 06:34:32 kernel: eth2: Broadcom BCM4360 802.11 Wireless Controller 6.30.163.2002 (r382208)

Works because Windows Phone is connected

Any ideas ?
 

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!
Top