Openvpn client weirdness

[gommm]

I'm trying to set up the openvpn client, I've setup openvpn on my ubuntu server with openvpn-install.sh https://github.com/angristan/openvpn-install
I've tested the ovpn file and it works in tunnelblick so the vpn configuration server side seems to be ok.

But when it connects, all routes except the route to the actual vpn server ip are unreachable. This is even when using setting Force Internet traffic through tunnel to "Policy Rules" with a policy that shouldn't even impact my traffic or to No. Here's what I see in syslog on my Asus router:

Jan  4 04:58:44 ovpn-client1[30451]: OpenVPN 2.4.9 arm-buildroot-linux-gnueabi [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Aug 14 2020
Jan  4 04:58:44 ovpn-client1[30451]: library versions: OpenSSL 1.1.1g  21 Apr 2020, LZO 2.08
Jan  4 04:58:44 ovpn-client1[30452]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Jan  4 04:58:44 ovpn-client1[30452]: TCP/UDP: Preserving recently used remote address: [AF_INET]71.19.144.216:1198
Jan  4 04:58:44 ovpn-client1[30452]: UDP link local: (not bound)
Jan  4 04:58:44 ovpn-client1[30452]: UDP link remote: [AF_INET]x.x.x.x:1198
Jan  4 04:58:45 ovpn-client1[30452]: [server_zQR18EzPaAJFVndS] Peer Connection Initiated with [AF_INET]71.19.144.216:1198
Jan  4 04:58:46 ovpn-client1[30452]: TUN/TAP device tun11 opened
Jan  4 04:58:46 ovpn-client1[30452]: /sbin/ifconfig tun11 10.8.0.2 netmask 255.255.255.0 mtu 1500 broadcast 10.8.0.255
Jan  4 04:58:46 lldpd[1392]: removal request for address of 10.8.0.2%49, but no knowledge of it
Jan  4 04:58:46 lldpd[1392]: removal request for address of 10.8.0.2%49, but no knowledge of it
Jan  4 04:58:46 ovpn-client1[30452]: ovpn-up 1 client tun11 1500 1552 10.8.0.2 255.255.255.0 init
Jan  4 04:58:46 dnsmasq[3590]: read /etc/host - 6 addresses
Jan  4 04:58:46 dnsmasq[3590]: read /etc/host.dnsmasq - 2 addresses
Jan  4 04:58:46 dnsmasq[3590]: using nameserver 84.200.70.40#53
Jan  4 04:58:46 dnsmasq[3590]: using nameserver 84.200.69.80#53
Jan  4 04:58:46 dnsmasq[3590]: using nameserver 84.200.70.40#53
Jan  4 04:58:46 dnsmasq[3590]: using nameserver 84.200.69.80#53
Jan  4 04:58:48 openvpn-routing: Configuring policy rules for client 1
Jan  4 04:58:48 ovpn-client1[30452]: Initialization Sequence Completed

I'm a bit at a loss where to go from there to troubleshoot this.

I'm using merlin 384.19 and Yazfi but I disabled Yazfi and the issue still appears and I don't think the issue would be purely related to Merlin.

 

[L&LD]

What model router are we talking about?

 

[gommm]

It's the ac86u.

 

[L&LD]

When you flashed RMerlin 384.19_0 onto it, did you at least format the JFFS partition on the next boot, hit 'Apply' at the bottom of that GUI page, and then rebooted it 3 times in 15 minutes, waiting 5 to 10 minutes between reboots?

Ideally, you would have performed a full reset to factory defaults in addition to the above.

New M&M 2020

Release - Asuswrt-Merlin 384.19 is now available

Did full wipe of JFFS, and complete factory settings prior to isntalling384.19b2 then dirty upgrade to 384.19 final. One error keeps coming back up Aug 15 08:28:06 kernel: bcm_i2c: bus 0: Failed to detect SFP: 100 retries exhausted Not an error, just Linux`s typical way of saying it tried to...

www.snbforums.com

Release - [Test] Asuswrt-Merlin 384.19 - OpenVPN test builds

If you replace ovpn-up, then you become responsible for doing everything it was previously doing. https://github.com/RMerl/asuswrt-merlin.ng/blob/master/release/src/router/libovpn/openvpn_control.c#L237 And also updating resolv.conf/dnsmasq's config...

www.snbforums.com