Menu
What's new
By:
Filters Better Search

OpenVPN Client block all connections

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

M

Mightyous

Occasional Visitor
Hi guys,
my new Asus RT-AC68U with Merlin-Image, block all internet connections.
Without VPN all is working. Open .ca file in a unix editor and paste it under "Certificate Authority". Was it the right place?

Here´s my log file

Oct 11 13:55:46 rc_service: httpd 478:notify_rc start_vpnclient2
Oct 11 13:55:46 kernel: tun: Universal TUN/TAP device driver, 1.6
Oct 11 13:55:46 kernel: tun: (C) 1999-2004 Max Krasnyansky <maxk@qualcomm.com>
Oct 11 13:55:46 openvpn[2674]: OpenVPN 2.3.7 arm-unknown-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [MH] [IPv6] built on Jul 16 2015
Oct 11 13:55:46 openvpn[2674]: library versions: OpenSSL 1.0.2d 9 Jul 2015, LZO 2.08
Oct 11 13:55:46 openvpn[2675]: WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Oct 11 13:55:46 openvpn[2675]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Oct 11 13:55:46 openvpn[2675]: Socket Buffers: R=[122880->131072] S=[122880->131072]
Oct 11 13:55:46 openvpn[2675]: UDPv4 link local: [undef]
Oct 11 13:55:46 openvpn[2675]: UDPv4 link remote: [AF_INET]176.10.100.2:1194
Oct 11 13:55:46 openvpn[2675]: TLS: Initial packet from [AF_INET]176.10.100.2:1194, sid=a98df10b 8c30cbb8
Oct 11 13:55:46 openvpn[2675]: WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Oct 11 13:55:47 openvpn[2675]: VERIFY OK: depth=1, C=ZZ, ST=ZZ, L=ZZ, O=n/a, OU=MyOrganizationalUnit, CN=NA, name=EasyRSA, emailAddress=example@example.com
Oct 11 13:55:47 openvpn[2675]: VERIFY OK: depth=0, C=ZZ, ST=ZZ, L=ZZ, O=n/a, OU=MyOrganizationalUnit, CN=pmvpn3, name=EasyRSA, emailAddress=example@example.com
Oct 11 13:55:47 openvpn[2675]: Data Channel Encrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
Oct 11 13:55:47 openvpn[2675]: Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Oct 11 13:55:47 openvpn[2675]: Data Channel Decrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
Oct 11 13:55:47 openvpn[2675]: Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Oct 11 13:55:47 openvpn[2675]: Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA
Oct 11 13:55:47 openvpn[2675]: [pmvpn3] Peer Connection Initiated with [AF_INET]176.10.100.2:1194
Oct 11 13:55:50 openvpn[2675]: SENT CONTROL [pmvpn3]: 'PUSH_REQUEST' (status=1)
Oct 11 13:55:50 openvpn[2675]: PUSH: Received control message: 'PUSH_REPLY,redirect-gateway,dhcp-option DNS 8.8.4.4,dhcp-option DNS 8.8.8.8,dhcp-option WINS 8.8.8.8,dhcp-option WINS 8.8.4.4,route 10.8.0.1,topology net30,ping 10,ping-restart 60,ifconfig 10.8.0.102 10.8.0.101'
Oct 11 13:55:50 openvpn[2675]: OPTIONS IMPORT: timers and/or timeouts modified
Oct 11 13:55:50 openvpn[2675]: OPTIONS IMPORT: --ifconfig/up options modified
Oct 11 13:55:50 openvpn[2675]: OPTIONS IMPORT: route options modified
Oct 11 13:55:50 openvpn[2675]: OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Oct 11 13:55:50 openvpn[2675]: TUN/TAP device tun12 opened
Oct 11 13:55:50 openvpn[2675]: TUN/TAP TX queue length set to 100
Oct 11 13:55:50 openvpn[2675]: do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
Oct 11 13:55:50 openvpn[2675]: /usr/sbin/ip link set dev tun12 up mtu 1500
Oct 11 13:55:50 openvpn[2675]: /usr/sbin/ip addr add dev tun12 local 10.8.0.102 peer 10.8.0.101
Oct 11 13:55:53 openvpn[2675]: /usr/sbin/ip route add 176.10.100.2/32 via 192.168.0.1
Oct 11 13:55:53 openvpn[2675]: /usr/sbin/ip route del 0.0.0.0/0
Oct 11 13:55:53 openvpn[2675]: /usr/sbin/ip route add 0.0.0.0/0 via 10.8.0.101
Oct 11 13:55:53 openvpn[2675]: /usr/sbin/ip route add 10.8.0.1/32 via 10.8.0.101
Oct 11 13:55:53 openvpn-routing: Skipping, client 2 not in routing policy mode
Oct 11 13:55:53 openvpn[2675]: Initialization Sequence Completed
 
Many tunnel providers force you to use specific DNS servers, in an attempt to prevent leakage. Set DNS setting to Strict on your OpenVPN client page.
 
that doesn´t help
 

Attachments

  • asus2.jpg
    asus2.jpg
    83.9 KB · Views: 353
Once connected are you able to ping 8.8.8.8?
 
Is the Redirect internet traffic option set to no or something else?
 
You must log in or register to reply here.

Similar threads

T
[Help] Problems setting up OpenVPN
Replies
7
Views
343
Thookie
T
N
RT-AX86U-Pro, WAN disconnect every 36 hours
2
Replies
25
Views
2K
Nick24
N
P
OVPN Problem. Asus rt ax56u (latest merlin firmware
Replies
9
Views
2K
pattox
P
K
WPS connection issues to IoT device with GT-AXE16000 GT-AXE11000
Replies
3
Views
1K
glens
G
A
Devices connect to my openvpn server correctly but no traffic from server to client
Replies
6
Views
1K
ragtap
R
Similar threads
Thread starter Title Forum Replies Date
D Solved Openvpn client dns Asuswrt-Merlin 2
H Extremely low speed on ac86u with openvpn client Asuswrt-Merlin 7
eibgrad OpenVPN Client: mishandled route directives Asuswrt-Merlin 7
B No internet after turn on OpenVPN client Asuswrt-Merlin 4
PR3MIUM WireGuard removing OpenVPN on ASUS Routers ? Asuswrt-Merlin 2
T [Help] Problems setting up OpenVPN Asuswrt-Merlin 7
N dedicated router for OpenVPN Asuswrt-Merlin 4
N Solved OpenVPN Server split tunnell config Asuswrt-Merlin 5
C Connection to router by ip fails while remote over OpenVPN Asuswrt-Merlin 17
S OpenVPN LAN access + one external IP Asuswrt-Merlin 3

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 694 (members: 35, guests: 659)
Top