Another VPN client setup request for help thread

[biscuits]

Hi All,

I'm running 3.0.0.4.374.34_2 (Merlin build) and have a VPN account which has always been pretty simple for me to setup using provided instructions. I bought an RTN66U to hopefully cut out all the clients and maybe get the TV using it too since I discover that LG send details up to and including HDD attached file names back to base. I have the settings in place and the connection seems to handshake but the attached devices haven't been routing through the VPN and are exposed as normal.

I've made a few more (pretty random pokey pokey) changes and now I just lose connection with the client enabled, the log reflects this new setup which 'seems' so close!

these are the custom lines

persist-key
persist-tun
dev tun
tls-client
ca ca.crt
comp-lzo
verb 4
mute 10
reneg-sec 0

Here's the relevant section from the log I think. I'm non to informed on all this so apologies if I need a bit of hand holding.

----snip----

Dec 2 16:12:16 kernel: tun: Universal TUN/TAP device driver, 1.6
Dec 2 16:12:16 kernel: tun: (C) 1999-2004 Max Krasnyansky <maxk@qualcomm.com>
Dec 2 16:12:16 openvpn[5956]: OpenVPN 2.3.2 mipsel-unknown-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [MH] [IPv6] built on Nov 1 2013
Dec 2 16:12:16 openvpn[5956]: WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Dec 2 16:12:16 openvpn[5956]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Dec 2 16:12:16 openvpn[5956]: Control Channel Authentication: using 'static.key' as a OpenVPN static key file
Dec 2 16:12:16 openvpn[5956]: Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Dec 2 16:12:16 openvpn[5956]: Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Dec 2 16:12:16 openvpn[5956]: LZO compression initialized
Dec 2 16:12:16 openvpn[5956]: Control Channel MTU parms [ L:1542 D:166 EF:66 EB:0 ET:0 EL:0 ]
Dec 2 16:12:16 openvpn[5956]: Socket Buffers: R=[116736->131072] S=[116736->131072]
Dec 2 16:12:16 openvpn[5956]: Data Channel MTU parms [ L:1542 D:1450 EF:42 EB:135 ET:0 EL:0 AF:3/1 ]
Dec 2 16:12:16 openvpn[5961]: UDPv4 link local: [undef]
Dec 2 16:12:16 openvpn[5961]: UDPv4 link remote: [AF_INET][redacted]:1194
Dec 2 16:12:16 openvpn[5961]: TLS: Initial packet from [AF_INET][redacted]:1194, sid=[redacted]
Dec 2 16:12:16 openvpn[5961]: WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Dec 2 16:12:22 openvpn[5961]: VERIFY OK: depth=1, C=US, ST=MA, L=, O= LLC, CN=[redacted vpn server address], emailAddress=[redacted]
Dec 2 16:12:22 openvpn[5961]: VERIFY OK: depth=0, C=US, ST=MA, O=[redacted], OU=[redacted], CN=[redacted], emailAddress=[redacted]
Dec 2 16:12:22 openvpn[5961]: Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
Dec 2 16:12:22 openvpn[5961]: Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Dec 2 16:12:22 openvpn[5961]: Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
Dec 2 16:12:22 openvpn[5961]: Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Dec 2 16:12:22 openvpn[5961]: Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
Dec 2 16:12:22 openvpn[5961]: [redacted] Peer Connection Initiated with [AF_INET][redacted]:1194
Dec 2 16:12:24 openvpn[5961]: SENT CONTROL [redacted]: 'PUSH_REQUEST' (status=1)
Dec 2 16:12:24 openvpn[5961]: PUSH: Received control message: 'PUSH_REPLY,route 10.10.19.0 255.255.255.0,dhcp-option DNS [redacted VPN dns server],dhcp-option DNS [redacted vpn dns server],redirect-gateway def1,route-gateway 10.10.19.1,topology subnet,ping 10,ping-restart 120,ifconfig 10.10.19.7 255.255.255.0'
Dec 2 16:12:24 openvpn[5961]: OPTIONS IMPORT: timers and/or timeouts modified
Dec 2 16:12:24 openvpn[5961]: OPTIONS IMPORT: --ifconfig/up options modified
Dec 2 16:12:24 openvpn[5961]: OPTIONS IMPORT: route options modified
Dec 2 16:12:24 openvpn[5961]: OPTIONS IMPORT: route-related options modified
Dec 2 16:12:24 openvpn[5961]: OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Dec 2 16:12:24 openvpn[5961]: TUN/TAP device tun0 opened
Dec 2 16:12:24 openvpn[5961]: TUN/TAP TX queue length set to 100
Dec 2 16:12:24 openvpn[5961]: do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
Dec 2 16:12:24 openvpn[5961]: /usr/sbin/ip link set dev tun0 up mtu 1500
Dec 2 16:12:24 openvpn[5961]: /usr/sbin/ip addr add dev tun0 10.10.19.7/24 broadcast 10.10.19.255
Dec 2 16:12:24 openvpn[5961]: updown.sh tun0 1500 1542 10.10.19.7 255.255.255.0 init
Dec 2 16:12:25 rc_service: service 6001:notify_rc updateresolv
Dec 2 16:12:25 dnsmasq[5415]: read /etc/hosts - 5 addresses
Dec 2 16:12:25 dnsmasq[5415]: using nameserver [isp redacted]#53
Dec 2 16:12:25 dnsmasq[5415]: using nameserver [isp redacted]#53
Dec 2 16:12:25 openvpn[5961]: /usr/sbin/ip route add [vpn redacted]/32 via [isp stuff redacted]
Dec 2 16:12:25 openvpn[5961]: /usr/sbin/ip route add 0.0.0.0/1 via 10.10.19.1
Dec 2 16:12:25 openvpn[5961]: /usr/sbin/ip route add 128.0.0.0/1 via 10.10.19.1
Dec 2 16:12:25 openvpn[5961]: /usr/sbin/ip route add 10.10.19.0/24 via 10.10.19.1
Dec 2 16:12:25 openvpn[5961]: ERROR: Linux route add command failed: external program exited with error status: 2
Dec 2 16:12:25 openvpn[5961]: Initialization Sequence Completed
Dec 2 16:12:26 miniupnpd[5430]: Unknown udp packet received from [client i'm using redacted]:61046

 

[biscuits]

Is there any more information that I can provide that might help get advice on this?

Thanks