Hello,
I had some out of the blue router issues last week and I decided to update my AC68U from 384.5 to 384.7_2.
After restoring my configuration and testing my VPN client everything appeared fine until trying to connect to the VPN server on my mobile while out one day. I have the Asus DDNS service configured and connected to the Web portal and downloaded the server OpenVPN config file and made my connection but my internet access was gone. I have tried multiple settings, all with the same result. The only time the server client gets internet access is when they are removed from the "Rule for routing client traffic through the tunnel"
Below is the syslog from a recent connection, can anyone help me get this working again?
Nov 5 19:38:14 ovpn-server1[4857]: 209.58.135.72 TLS: Initial packet from [AF_INET6]::ffff:209.58.135.72:14610, sid=291dbcf7 23a34fa6
Nov 5 19:38:14 ovpn-server1[4857]: 209.58.135.72 peer info: IV_GUI_VER=OC30Android
Nov 5 19:38:14 ovpn-server1[4857]: 209.58.135.72 peer info: IV_VER=3.2
Nov 5 19:38:14 ovpn-server1[4857]: 209.58.135.72 peer info: IV_PLAT=android
Nov 5 19:38:14 ovpn-server1[4857]: 209.58.135.72 peer info: IV_NCP=2
Nov 5 19:38:14 ovpn-server1[4857]: 209.58.135.72 peer info: IV_TCPNL=1
Nov 5 19:38:14 ovpn-server1[4857]: 209.58.135.72 peer info: IV_PROTO=2
Nov 5 19:38:14 ovpn-server1[4857]: 209.58.135.72 peer info: IV_LZO=1
Nov 5 19:38:14 ovpn-server1[4857]: 209.58.135.72 PLUGIN_CALL: POST /usr/lib/openvpn-plugin-auth-pam.so/PLUGIN_AUTH_USER_PASS_VERIFY status=0
Nov 5 19:38:14 ovpn-server1[4857]: 209.58.135.72 TLS: Username/Password authentication succeeded for username 'vpnuser' [CN SET]
Nov 5 19:38:14 ovpn-server1[4857]: 209.58.135.72 Control Channel: TLSv1.2, cipher TLSv1/SSLv3 ECDHE-RSA-AES256-GCM-SHA384
Nov 5 19:38:14 ovpn-server1[4857]: 209.58.135.72 [vpnuser] Peer Connection Initiated with [AF_INET6]::ffff:209.58.135.72:14610
Nov 5 19:38:14 ovpn-server1[4857]: vpnuser/209.58.135.72 MULTI_sva: pool returned IPv4=10.8.0.2, IPv6=(Not enabled)
Nov 5 19:38:14 ovpn-server1[4857]: vpnuser/209.58.135.72 MULTI: Learn: 10.8.0.2 -> vpnuser/209.58.135.72
Nov 5 19:38:14 ovpn-server1[4857]: vpnuser/209.58.135.72 MULTI: primary virtual IP for vpnuser/209.58.135.72: 10.8.0.2
Nov 5 19:38:14 ovpn-server1[4857]: vpnuser/209.58.135.72 PUSH: Received control message: 'PUSH_REQUEST'
Nov 5 19:38:14 ovpn-server1[4857]: vpnuser/209.58.135.72 SENT CONTROL [vpnuser]: 'PUSH_REPLY,route 192.168.5.0 255.255.255.0 vpn_gateway 500,dhcp-option DNS 192.168.5.1,redirect-gateway def1,route-gateway 10.8.0.1,topology subnet,ping 15,ping-restart 60,ifconfig 10.8.0.2 255.255.255.248,peer-id 0,cipher AES-128-GCM' (status=1)
Nov 5 19:38:14 ovpn-server1[4857]: vpnuser/209.58.135.72 Data Channel: using negotiated cipher 'AES-128-GCM'
Nov 5 19:38:14 ovpn-server1[4857]: vpnuser/209.58.135.72 Outgoing Data Channel: Cipher 'AES-128-GCM' initialized with 128 bit key
Nov 5 19:38:14 ovpn-server1[4857]: vpnuser/209.58.135.72 Incoming Data Channel: Cipher 'AES-128-GCM' initialized with 128 bit key
Nov 5 19:40:14 ovpn-server1[4857]: vpnuser/209.58.135.72 [vpnuser] Inactivity timeout (--ping-restart), restarting
Nov 5 19:40:14 ovpn-server1[4857]: vpnuser/209.58.135.72 SIGUSR1[soft,ping-restart] received, client-instance restarting
Thanks.
I had some out of the blue router issues last week and I decided to update my AC68U from 384.5 to 384.7_2.
After restoring my configuration and testing my VPN client everything appeared fine until trying to connect to the VPN server on my mobile while out one day. I have the Asus DDNS service configured and connected to the Web portal and downloaded the server OpenVPN config file and made my connection but my internet access was gone. I have tried multiple settings, all with the same result. The only time the server client gets internet access is when they are removed from the "Rule for routing client traffic through the tunnel"
Below is the syslog from a recent connection, can anyone help me get this working again?
Nov 5 19:38:14 ovpn-server1[4857]: 209.58.135.72 TLS: Initial packet from [AF_INET6]::ffff:209.58.135.72:14610, sid=291dbcf7 23a34fa6
Nov 5 19:38:14 ovpn-server1[4857]: 209.58.135.72 peer info: IV_GUI_VER=OC30Android
Nov 5 19:38:14 ovpn-server1[4857]: 209.58.135.72 peer info: IV_VER=3.2
Nov 5 19:38:14 ovpn-server1[4857]: 209.58.135.72 peer info: IV_PLAT=android
Nov 5 19:38:14 ovpn-server1[4857]: 209.58.135.72 peer info: IV_NCP=2
Nov 5 19:38:14 ovpn-server1[4857]: 209.58.135.72 peer info: IV_TCPNL=1
Nov 5 19:38:14 ovpn-server1[4857]: 209.58.135.72 peer info: IV_PROTO=2
Nov 5 19:38:14 ovpn-server1[4857]: 209.58.135.72 peer info: IV_LZO=1
Nov 5 19:38:14 ovpn-server1[4857]: 209.58.135.72 PLUGIN_CALL: POST /usr/lib/openvpn-plugin-auth-pam.so/PLUGIN_AUTH_USER_PASS_VERIFY status=0
Nov 5 19:38:14 ovpn-server1[4857]: 209.58.135.72 TLS: Username/Password authentication succeeded for username 'vpnuser' [CN SET]
Nov 5 19:38:14 ovpn-server1[4857]: 209.58.135.72 Control Channel: TLSv1.2, cipher TLSv1/SSLv3 ECDHE-RSA-AES256-GCM-SHA384
Nov 5 19:38:14 ovpn-server1[4857]: 209.58.135.72 [vpnuser] Peer Connection Initiated with [AF_INET6]::ffff:209.58.135.72:14610
Nov 5 19:38:14 ovpn-server1[4857]: vpnuser/209.58.135.72 MULTI_sva: pool returned IPv4=10.8.0.2, IPv6=(Not enabled)
Nov 5 19:38:14 ovpn-server1[4857]: vpnuser/209.58.135.72 MULTI: Learn: 10.8.0.2 -> vpnuser/209.58.135.72
Nov 5 19:38:14 ovpn-server1[4857]: vpnuser/209.58.135.72 MULTI: primary virtual IP for vpnuser/209.58.135.72: 10.8.0.2
Nov 5 19:38:14 ovpn-server1[4857]: vpnuser/209.58.135.72 PUSH: Received control message: 'PUSH_REQUEST'
Nov 5 19:38:14 ovpn-server1[4857]: vpnuser/209.58.135.72 SENT CONTROL [vpnuser]: 'PUSH_REPLY,route 192.168.5.0 255.255.255.0 vpn_gateway 500,dhcp-option DNS 192.168.5.1,redirect-gateway def1,route-gateway 10.8.0.1,topology subnet,ping 15,ping-restart 60,ifconfig 10.8.0.2 255.255.255.248,peer-id 0,cipher AES-128-GCM' (status=1)
Nov 5 19:38:14 ovpn-server1[4857]: vpnuser/209.58.135.72 Data Channel: using negotiated cipher 'AES-128-GCM'
Nov 5 19:38:14 ovpn-server1[4857]: vpnuser/209.58.135.72 Outgoing Data Channel: Cipher 'AES-128-GCM' initialized with 128 bit key
Nov 5 19:38:14 ovpn-server1[4857]: vpnuser/209.58.135.72 Incoming Data Channel: Cipher 'AES-128-GCM' initialized with 128 bit key
Nov 5 19:40:14 ovpn-server1[4857]: vpnuser/209.58.135.72 [vpnuser] Inactivity timeout (--ping-restart), restarting
Nov 5 19:40:14 ovpn-server1[4857]: vpnuser/209.58.135.72 SIGUSR1[soft,ping-restart] received, client-instance restarting
Thanks.