PIA through merlin

[MattHoff]

Would anyone have any recent instructions for getting a router to work through private internet access (PIA) VPN? The tutorial on howtogeek.com doesnt exactly apply since it's discussing a 'keys' tab which merlin FW doesn't have. Any help would be appreciated!

thanks in advance

 

[Zirescu]

http://www.snbforums.com/threads/ho...ia-and-other-vpn-providers-10-15-fixed.30851/

 

[MattHoff]

http://www.snbforums.com/threads/ho...ia-and-other-vpn-providers-10-15-fixed.30851/

Thank you, that article was helpful. I am still unable to turn the VPN client on with the follow errors in the log:

Dec 2 11:53:24 rc_service: httpd 478:notify_rc start_vpnclient1
Dec 2 11:53:25 openvpn[10577]: Options error: Unrecognized option or missing parameter(s) in config.ovpn:33: auth-nacache (2.3.12)
Dec 2 11:53:25 openvpn[10577]: Use --help for more information.

When I delete the 'auth-nacache' line in custom configurations, it does work though. The article advises 'this command doesn't cache the password otherwise you may have a security issue'. Is there a way I can still turn on while not caching the passwords?

thank you again!

 

[john9527]

It's

auth-nocache, not auth-nacache

 

[RMerlin]

Is there a way I can still turn on while not caching the passwords?

You can't. That only applies to a computer where you are at the keyboard to enter the password when you connect. The router has to be able to connect automatically, so it has to already have the password stored.

 

[MattHoff]

It's

auth-nocache, not auth-nacache

ahhhh!!! good catch, that worked. thanks!

 

[MattHoff]

You can't. That only applies to a computer where you are at the keyboard to enter the password when you connect. The router has to be able to connect automatically, so it has to already have the password stored.

So when using the router as a VPN client, does that make the command auth-nocache moot? Or will it still not cache any password when typing on a PC still?

 

[RMerlin]

So when using the router as a VPN client, does that make the command auth-nocache moot? Or will it still not cache any password when typing on a PC still?

That option simply makes little sense in a router's environment, as the password is already stored in a file on the router. This option is mostly useful on a computer where you manually type in the password at the keyboard, in which case it ensures that there is no trace of the password anywhere on the computer.

--auth-nocache
Don't cache --askpass or --auth-user-pass username/passwords in virtual memory.

If specified, this directive will cause OpenVPN to immediately forget username/password inputs after they are used. As a result, when OpenVPN needs a username/password, it will prompt for input from stdin, which may be multiple times during the duration of an OpenVPN session.

When using --auth-nocache in combination with a user/password file and --chroot or --daemon, make sure to use an absolute path.

This directive does not affect the --http-proxy username/password. It is always cached.