Menu
What's new
By:
Filters Better Search

[Release 384/NG] Asuswrt-Merlin 384.5 is now available

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

LHF said:
You are right! Used RAM memory just dropped from 77% to 68% and I did not do anything different .... Tks! :)
Click to expand...
You can also disable memory management at the bottom of the other tab under Tools menu. It lets Linux manage the memory totally. This is one of the best settings to disable to increase performance.
 
skeal said:
You can also disable memory management at the bottom of the other tab under Tools menu. It lets Linux manage the memory totally. This is one of the best settings to disable to increase performance.
Click to expand...
Could not find this option .... could you confirm? Tks!
 
What router do you have? On my AC3100 you go to Tools on the left of the webui and select the "Other" tab. Scroll down to the bottom and you should see this.
If you have an AC86U it may be different.
 

Attachments

  • ASUS Wireless Router RT AC3100 Other Settings.png
    ASUS Wireless Router RT AC3100 Other Settings.png
    144.9 KB · Views: 545
skeal said:
What router do you have? On my AC3100 you go to Tools on the left of the webui and select the "Other" tab. Scroll down to the bottom and you should see this.
If you have an AC86U it may be different.
Click to expand...
FYI That is one of the options that is missing with 86U, yet still available with 88U.
 
  • Like
Reactions: LHF
Clark Griswald said:
FYI That is one of the options that is missing with 86U, yet still available with 88U.
Click to expand...
Gotcha... maybe default on the AC86U is no additional memory management. That would explain the high memory readings that AC86U owners see. They become worried because of its high reading yet it is quite normal. My router gets up to about 80% and then recovers and rises again. Obviously Linux is handling things quite well...;)
 
skeal said:
Gotcha... maybe default on the AC86U is no additional memory management. That would explain the high memory readings that AC86U owners see. They become worried because of its high reading yet it is quite normal. My router gets up to about 80% and then recovers and rises again. Obviously Linux is handling things quite well...;)
Click to expand...
As a main router I have a AC 86U. And you are right, it does not have additional memory management. But, RAM usage increases and then get down again. It is quite all right! ;) Tks!
 
LHF said:
As a main router I have a AC 86U. And you are right, it does not have additional memory management. But, RAM usage increases and then get down again. It is quite all right! ;) Tks!
Click to expand...
I'm on an ac68u, with the memory management (flush caches) enabled... and while the cached/buffers numbers are relatively consistent, the memory usage (especially the httpd process) simply continues to rise and never goes back down to where it started... I know it will crash and it's because there's a leak somewhere.

If I turn off the memory management, then I'm sure I'd see growing memory use, mostly due to caching for a long time, but eventually that would be overwhelmed by the process size of what's running.

So, yes, linux can DTRT, but there can also be memory leaks which linux itself can't help fix. I think that's what I (and Morac) have been seeing.
 
hi all,

Just stumbled upon this... I have an RT-AC68U fw: 384.5. After installing Download Master and doing a power cycle reboot my System Log will get bloated with the below:

Jul 17 22:56:43 kernel: ERR[qos_start:3363] qos_wan or qos_lan is NULL, plz fix it!!!
Jul 17 22:56:43 kernel: ioctl_iqos_op_switch(1) fail!

And on the QOS Statics window the information will disappear until the Download Master gets disabled or unistalled

2h8aezq.jpg
 
Just moved to 384.5. Ran into an issue.

This one client is not showing any data moving and my app is not working. I am running a app on a Roku TV (vpn client side) against the VPN Server.

There is also an UNDEF shwoing up with a 189.xxx.xxx.123 IP showing up. This neither the client router or the server router. No idea , error log says "TLS handshake failed". Not sure two issues are related.

Something in my settings is not working right. I tried to match my settings prior to moving both vpn client router and vpn server router to new 384.5. Both are AC68's.

Anyone mind taking a look at my pics of my VPN client to see what the heck I am missing?? Pulling my hair out. Keep in mind, I am not an expert but I have fun playing with Merlin stuff.
thx!! In meantime I will keep trying everything.
nobytest.PNG
 

Attachments

  • pic1.PNG
    pic1.PNG
    316.9 KB · Views: 378
  • pic2.PNG
    pic2.PNG
    118.3 KB · Views: 606
  • pic3.PNG
    pic3.PNG
    243.1 KB · Views: 419
Update, just figured out that UNDEF 189.xxx.xxx.123 IP address. Still haven't figure out why that one Asus VPN Client isn't working.
 
CLIENT AND SERVER SIDE LOGS. NO ERRORS THAT I SEE. ONLY THING I SEE WHICH I DON'T UNDERSTAND IS ON CLIENT I SET "Legacy/fallback cipher" AS AES 256 CBC" BUT ON SERVER LOG IT SAYS "Cipher 'AES-128-GCM' initialized with 128 bit key". I would expect that to be AES 256....maybe not though.


CLIENT LOG
Jul 19 22:43:18 rc_service: httpd 287:notify_rc start_vpnclient2
Jul 19 22:43:20 ovpn-client2[7195]: OpenVPN 2.4.6 arm-unknown-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on May 12 2018
Jul 19 22:43:20 ovpn-client2[7195]: library versions: OpenSSL 1.0.2o 27 Mar 2018, LZO 2.08
Jul 19 22:43:20 ovpn-client2[7196]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Jul 19 22:43:20 ovpn-client2[7196]: TCP/UDP: Preserving recently used remote address: [AF_INET]73.XXX.XXX.158:443
Jul 19 22:43:20 ovpn-client2[7196]: Socket Buffers: R=[122880->122880] S=[122880->122880]
Jul 19 22:43:20 ovpn-client2[7196]: UDP link local: (not bound)
Jul 19 22:43:20 ovpn-client2[7196]: UDP link remote: [AF_INET]73.XXX.XXX.158:443
Jul 19 22:43:20 ovpn-client2[7196]: TLS: Initial packet from [AF_INET]73.XXX.XXX.158:443, sid=51c55cb4 a1141dc0
Jul 19 22:43:21 ovpn-client2[7196]: VERIFY OK: depth=1, C=TW, ST=TW, L=Taipei, O=ASUS, CN=RT-AC68U, emailAddress=me@myhost.mydomain
Jul 19 22:43:21 ovpn-client2[7196]: VERIFY KU OK
Jul 19 22:43:21 ovpn-client2[7196]: Validating certificate extended key usage
Jul 19 22:43:21 ovpn-client2[7196]: ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
Jul 19 22:43:21 ovpn-client2[7196]: VERIFY EKU OK
Jul 19 22:43:21 ovpn-client2[7196]: VERIFY OK: depth=0, C=TW, ST=TW, L=Taipei, O=ASUS, CN=RT-AC68U, emailAddress=me@myhost.mydomain
Jul 19 22:43:21 ovpn-client2[7196]: Control Channel: TLSv1.2, cipher TLSv1/SSLv3 ECDHE-RSA-AES256-GCM-SHA384, 1024 bit RSA
Jul 19 22:43:21 ovpn-client2[7196]: [RT-AC68U] Peer Connection Initiated with [AF_INET]73.XXX.XXX.158:443
Jul 19 22:43:22 ovpn-client2[7196]: SENT CONTROL [RT-AC68U]: 'PUSH_REQUEST' (status=1)
Jul 19 22:43:22 ovpn-client2[7196]: PUSH: Received control message: 'PUSH_REPLY,route 192.168.2.0 255.255.255.0 vpn_gateway 500,dhcp-option DNS 192.168.2.1,redirect-gateway def1,route-gateway 10.8.0.1,topology subnet,ping 15,ping-restart 60,ifconfig 10.8.0.3 255.255.255.0,peer-id 1,cipher AES-128-GCM'
Jul 19 22:43:22 ovpn-client2[7196]: OPTIONS IMPORT: timers and/or timeouts modified
Jul 19 22:43:22 ovpn-client2[7196]: OPTIONS IMPORT: --ifconfig/up options modified
Jul 19 22:43:22 ovpn-client2[7196]: OPTIONS IMPORT: route options modified
Jul 19 22:43:22 ovpn-client2[7196]: OPTIONS IMPORT: route-related options modified
Jul 19 22:43:22 ovpn-client2[7196]: OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Jul 19 22:43:22 ovpn-client2[7196]: OPTIONS IMPORT: peer-id set
Jul 19 22:43:22 ovpn-client2[7196]: OPTIONS IMPORT: adjusting link_mtu to 1625
Jul 19 22:43:22 ovpn-client2[7196]: OPTIONS IMPORT: data channel crypto options modified
Jul 19 22:43:22 ovpn-client2[7196]: Data Channel: using negotiated cipher 'AES-128-GCM'
Jul 19 22:43:22 ovpn-client2[7196]: Outgoing Data Channel: Cipher 'AES-128-GCM' initialized with 128 bit key
Jul 19 22:43:22 ovpn-client2[7196]: Incoming Data Channel: Cipher 'AES-128-GCM' initialized with 128 bit key
Jul 19 22:43:22 ovpn-client2[7196]: TUN/TAP device tun12 opened
Jul 19 22:43:22 ovpn-client2[7196]: TUN/TAP TX queue length set to 100
Jul 19 22:43:22 ovpn-client2[7196]: do_ifconfig, tt->did_ifconfig_ipv6_setup=0
Jul 19 22:43:22 ovpn-client2[7196]: /usr/sbin/ip link set dev tun12 up mtu 1500
Jul 19 22:43:22 ovpn-client2[7196]: /usr/sbin/ip addr add dev tun12 10.8.0.3/24 broadcast 10.8.0.255
Jul 19 22:43:24 ovpn-client2[7196]: /usr/sbin/ip route add 73.XXX.XXX.158/32 via 73.202.166.1
Jul 19 22:43:24 ovpn-client2[7196]: /usr/sbin/ip route add 0.0.0.0/1 via 10.8.0.1
Jul 19 22:43:24 ovpn-client2[7196]: /usr/sbin/ip route add 128.0.0.0/1 via 10.8.0.1
Jul 19 22:43:24 ovpn-client2[7196]: /usr/sbin/ip route add 192.168.2.0/24 metric 500 via 10.8.0.1
Jul 19 22:43:24 openvpn-routing: Configuring policy rules for client 2
Jul 19 22:43:25 ovpn-client2[7196]: Initialization Sequence Completed

SERVER LOG
Jul 19 22:43:06 ovpn-server1[6586]: client/73.XXX.XXX.147 [client] Inactivity timeout (--ping-restart), restarting
Jul 19 22:43:06 ovpn-server1[6586]: client/73.XXX.XXX.147 SIGUSR1[soft,ping-restart] received, client-instance restarting
Jul 19 22:43:20 ovpn-server1[6586]: 73.XXX.XXX.147 TLS: Initial packet from [AF_INET6]::ffff:73.XXX.XXX.147:56159, sid=f4450c46 f3e53733
Jul 19 22:43:21 ovpn-server1[6586]: 73.XXX.XXX.147 VERIFY OK: depth=1, C=TW, ST=TW, L=Taipei, O=ASUS, CN=RT-AC68U, emailAddress=me@myhost.mydomain
Jul 19 22:43:21 ovpn-server1[6586]: 73.XXX.XXX.147 VERIFY OK: depth=0, C=TW, ST=TW, L=Taipei, O=ASUS, CN=client, emailAddress=me@myhost.mydomain
Jul 19 22:43:21 ovpn-server1[6586]: 73.XXX.XXX.147 peer info: IV_VER=2.4.6
Jul 19 22:43:21 ovpn-server1[6586]: 73.XXX.XXX.147 peer info: IV_PLAT=linux
Jul 19 22:43:21 ovpn-server1[6586]: 73.XXX.XXX.147 peer info: IV_PROTO=2
Jul 19 22:43:21 ovpn-server1[6586]: 73.XXX.XXX.147 peer info: IV_NCP=2
Jul 19 22:43:21 ovpn-server1[6586]: 73.XXX.XXX.147 peer info: IV_LZ4=1
Jul 19 22:43:21 ovpn-server1[6586]: 73.XXX.XXX.147 peer info: IV_LZ4v2=1
Jul 19 22:43:21 ovpn-server1[6586]: 73.XXX.XXX.147 peer info: IV_LZO=1
Jul 19 22:43:21 ovpn-server1[6586]: 73.XXX.XXX.147 peer info: IV_COMP_STUB=1
Jul 19 22:43:21 ovpn-server1[6586]: 73.XXX.XXX.147 peer info: IV_COMP_STUBv2=1
Jul 19 22:43:21 ovpn-server1[6586]: 73.XXX.XXX.147 peer info: IV_TCPNL=1
Jul 19 22:43:21 ovpn-server1[6586]: 73.XXX.XXX.147 PLUGIN_CALL: POST /usr/lib/openvpn-plugin-auth-pam.so/PLUGIN_AUTH_USER_PASS_VERIFY status=0
Jul 19 22:43:21 ovpn-server1[6586]: 73.XXX.XXX.147 TLS: Username/Password authentication succeeded for username 'jXXX_TV'
Jul 19 22:43:21 ovpn-server1[6586]: 73.XXX.XXX.147 Control Channel: TLSv1.2, cipher TLSv1/SSLv3 ECDHE-RSA-AES256-GCM-SHA384, 1024 bit RSA
Jul 19 22:43:21 ovpn-server1[6586]: 73.XXX.XXX.147 [client] Peer Connection Initiated with [AF_INET6]::ffff:73.XXX.XXX.147:56159
Jul 19 22:43:21 ovpn-server1[6586]: client/73.XXX.XXX.147 MULTI_sva: pool returned IPv4=10.8.0.3, IPv6=(Not enabled)
Jul 19 22:43:21 ovpn-server1[6586]: client/73.XXX.XXX.147 MULTI: Learn: 10.8.0.3 -> client/73.XXX.XXX.147
Jul 19 22:43:21 ovpn-server1[6586]: client/73.XXX.XXX.147 MULTI: primary virtual IP for client/73.XXX.XXX.147: 10.8.0.3
Jul 19 22:43:22 ovpn-server1[6586]: client/73.XXX.XXX.147 PUSH: Received control message: 'PUSH_REQUEST'
Jul 19 22:43:22 ovpn-server1[6586]: client/73.XXX.XXX.147 SENT CONTROL [client]: 'PUSH_REPLY,route 192.168.2.0 255.255.255.0 vpn_gateway 500,dhcp-option DNS 192.168.2.1,redirect-gateway def1,route-gateway 10.8.0.1,topology subnet,ping 15,ping-restart 60,ifconfig 10.8.0.3 255.255.255.0,peer-id 1,cipher AES-128-GCM' (status=1)
Jul 19 22:43:22 ovpn-server1[6586]: client/73.XXX.XXX.147 Data Channel: using negotiated cipher 'AES-128-GCM'
Jul 19 22:43:22 ovpn-server1[6586]: client/73.XXX.XXX.147 Outgoing Data Channel: Cipher 'AES-128-GCM' initialized with 128 bit key
Jul 19 22:43:22 ovpn-server1[6586]: client/73.XXX.XXX.147 Incoming Data Channel: Cipher 'AES-128-GCM' initialized with 128 bit key
 
OOo said:
CLIENT AND SERVER SIDE LOGS. NO ERRORS THAT I SEE. ONLY THING I SEE WHICH I DON'T UNDERSTAND IS ON CLIENT I SET "Legacy/fallback cipher" AS AES 256 CBC" BUT ON SERVER LOG IT SAYS "Cipher 'AES-128-GCM' initialized with 128 bit key". I would expect that to be AES 256....maybe not though.


CLIENT LOG
Jul 19 22:43:18 rc_service: httpd 287:notify_rc start_vpnclient2
Jul 19 22:43:20 ovpn-client2[7195]: OpenVPN 2.4.6 arm-unknown-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on May 12 2018
Jul 19 22:43:20 ovpn-client2[7195]: library versions: OpenSSL 1.0.2o 27 Mar 2018, LZO 2.08
Jul 19 22:43:20 ovpn-client2[7196]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Jul 19 22:43:20 ovpn-client2[7196]: TCP/UDP: Preserving recently used remote address: [AF_INET]73.XXX.XXX.158:443
Jul 19 22:43:20 ovpn-client2[7196]: Socket Buffers: R=[122880->122880] S=[122880->122880]
Jul 19 22:43:20 ovpn-client2[7196]: UDP link local: (not bound)
Jul 19 22:43:20 ovpn-client2[7196]: UDP link remote: [AF_INET]73.XXX.XXX.158:443
Jul 19 22:43:20 ovpn-client2[7196]: TLS: Initial packet from [AF_INET]73.XXX.XXX.158:443, sid=51c55cb4 a1141dc0
Jul 19 22:43:21 ovpn-client2[7196]: VERIFY OK: depth=1, C=TW, ST=TW, L=Taipei, O=ASUS, CN=RT-AC68U, emailAddress=me@myhost.mydomain
Jul 19 22:43:21 ovpn-client2[7196]: VERIFY KU OK
Jul 19 22:43:21 ovpn-client2[7196]: Validating certificate extended key usage
Jul 19 22:43:21 ovpn-client2[7196]: ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
Jul 19 22:43:21 ovpn-client2[7196]: VERIFY EKU OK
Jul 19 22:43:21 ovpn-client2[7196]: VERIFY OK: depth=0, C=TW, ST=TW, L=Taipei, O=ASUS, CN=RT-AC68U, emailAddress=me@myhost.mydomain
Jul 19 22:43:21 ovpn-client2[7196]: Control Channel: TLSv1.2, cipher TLSv1/SSLv3 ECDHE-RSA-AES256-GCM-SHA384, 1024 bit RSA
Jul 19 22:43:21 ovpn-client2[7196]: [RT-AC68U] Peer Connection Initiated with [AF_INET]73.XXX.XXX.158:443
Jul 19 22:43:22 ovpn-client2[7196]: SENT CONTROL [RT-AC68U]: 'PUSH_REQUEST' (status=1)
Jul 19 22:43:22 ovpn-client2[7196]: PUSH: Received control message: 'PUSH_REPLY,route 192.168.2.0 255.255.255.0 vpn_gateway 500,dhcp-option DNS 192.168.2.1,redirect-gateway def1,route-gateway 10.8.0.1,topology subnet,ping 15,ping-restart 60,ifconfig 10.8.0.3 255.255.255.0,peer-id 1,cipher AES-128-GCM'
Jul 19 22:43:22 ovpn-client2[7196]: OPTIONS IMPORT: timers and/or timeouts modified
Jul 19 22:43:22 ovpn-client2[7196]: OPTIONS IMPORT: --ifconfig/up options modified
Jul 19 22:43:22 ovpn-client2[7196]: OPTIONS IMPORT: route options modified
Jul 19 22:43:22 ovpn-client2[7196]: OPTIONS IMPORT: route-related options modified
Jul 19 22:43:22 ovpn-client2[7196]: OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Jul 19 22:43:22 ovpn-client2[7196]: OPTIONS IMPORT: peer-id set
Jul 19 22:43:22 ovpn-client2[7196]: OPTIONS IMPORT: adjusting link_mtu to 1625
Jul 19 22:43:22 ovpn-client2[7196]: OPTIONS IMPORT: data channel crypto options modified
Jul 19 22:43:22 ovpn-client2[7196]: Data Channel: using negotiated cipher 'AES-128-GCM'
Jul 19 22:43:22 ovpn-client2[7196]: Outgoing Data Channel: Cipher 'AES-128-GCM' initialized with 128 bit key
Jul 19 22:43:22 ovpn-client2[7196]: Incoming Data Channel: Cipher 'AES-128-GCM' initialized with 128 bit key
Jul 19 22:43:22 ovpn-client2[7196]: TUN/TAP device tun12 opened
Jul 19 22:43:22 ovpn-client2[7196]: TUN/TAP TX queue length set to 100
Jul 19 22:43:22 ovpn-client2[7196]: do_ifconfig, tt->did_ifconfig_ipv6_setup=0
Jul 19 22:43:22 ovpn-client2[7196]: /usr/sbin/ip link set dev tun12 up mtu 1500
Jul 19 22:43:22 ovpn-client2[7196]: /usr/sbin/ip addr add dev tun12 10.8.0.3/24 broadcast 10.8.0.255
Jul 19 22:43:24 ovpn-client2[7196]: /usr/sbin/ip route add 73.XXX.XXX.158/32 via 73.202.166.1
Jul 19 22:43:24 ovpn-client2[7196]: /usr/sbin/ip route add 0.0.0.0/1 via 10.8.0.1
Jul 19 22:43:24 ovpn-client2[7196]: /usr/sbin/ip route add 128.0.0.0/1 via 10.8.0.1
Jul 19 22:43:24 ovpn-client2[7196]: /usr/sbin/ip route add 192.168.2.0/24 metric 500 via 10.8.0.1
Jul 19 22:43:24 openvpn-routing: Configuring policy rules for client 2
Jul 19 22:43:25 ovpn-client2[7196]: Initialization Sequence Completed

SERVER LOG
Jul 19 22:43:06 ovpn-server1[6586]: client/73.XXX.XXX.147 [client] Inactivity timeout (--ping-restart), restarting
Jul 19 22:43:06 ovpn-server1[6586]: client/73.XXX.XXX.147 SIGUSR1[soft,ping-restart] received, client-instance restarting
Jul 19 22:43:20 ovpn-server1[6586]: 73.XXX.XXX.147 TLS: Initial packet from [AF_INET6]::ffff:73.XXX.XXX.147:56159, sid=f4450c46 f3e53733
Jul 19 22:43:21 ovpn-server1[6586]: 73.XXX.XXX.147 VERIFY OK: depth=1, C=TW, ST=TW, L=Taipei, O=ASUS, CN=RT-AC68U, emailAddress=me@myhost.mydomain
Jul 19 22:43:21 ovpn-server1[6586]: 73.XXX.XXX.147 VERIFY OK: depth=0, C=TW, ST=TW, L=Taipei, O=ASUS, CN=client, emailAddress=me@myhost.mydomain
Jul 19 22:43:21 ovpn-server1[6586]: 73.XXX.XXX.147 peer info: IV_VER=2.4.6
Jul 19 22:43:21 ovpn-server1[6586]: 73.XXX.XXX.147 peer info: IV_PLAT=linux
Jul 19 22:43:21 ovpn-server1[6586]: 73.XXX.XXX.147 peer info: IV_PROTO=2
Jul 19 22:43:21 ovpn-server1[6586]: 73.XXX.XXX.147 peer info: IV_NCP=2
Jul 19 22:43:21 ovpn-server1[6586]: 73.XXX.XXX.147 peer info: IV_LZ4=1
Jul 19 22:43:21 ovpn-server1[6586]: 73.XXX.XXX.147 peer info: IV_LZ4v2=1
Jul 19 22:43:21 ovpn-server1[6586]: 73.XXX.XXX.147 peer info: IV_LZO=1
Jul 19 22:43:21 ovpn-server1[6586]: 73.XXX.XXX.147 peer info: IV_COMP_STUB=1
Jul 19 22:43:21 ovpn-server1[6586]: 73.XXX.XXX.147 peer info: IV_COMP_STUBv2=1
Jul 19 22:43:21 ovpn-server1[6586]: 73.XXX.XXX.147 peer info: IV_TCPNL=1
Jul 19 22:43:21 ovpn-server1[6586]: 73.XXX.XXX.147 PLUGIN_CALL: POST /usr/lib/openvpn-plugin-auth-pam.so/PLUGIN_AUTH_USER_PASS_VERIFY status=0
Jul 19 22:43:21 ovpn-server1[6586]: 73.XXX.XXX.147 TLS: Username/Password authentication succeeded for username 'jXXX_TV'
Jul 19 22:43:21 ovpn-server1[6586]: 73.XXX.XXX.147 Control Channel: TLSv1.2, cipher TLSv1/SSLv3 ECDHE-RSA-AES256-GCM-SHA384, 1024 bit RSA
Jul 19 22:43:21 ovpn-server1[6586]: 73.XXX.XXX.147 [client] Peer Connection Initiated with [AF_INET6]::ffff:73.XXX.XXX.147:56159
Jul 19 22:43:21 ovpn-server1[6586]: client/73.XXX.XXX.147 MULTI_sva: pool returned IPv4=10.8.0.3, IPv6=(Not enabled)
Jul 19 22:43:21 ovpn-server1[6586]: client/73.XXX.XXX.147 MULTI: Learn: 10.8.0.3 -> client/73.XXX.XXX.147
Jul 19 22:43:21 ovpn-server1[6586]: client/73.XXX.XXX.147 MULTI: primary virtual IP for client/73.XXX.XXX.147: 10.8.0.3
Jul 19 22:43:22 ovpn-server1[6586]: client/73.XXX.XXX.147 PUSH: Received control message: 'PUSH_REQUEST'
Jul 19 22:43:22 ovpn-server1[6586]: client/73.XXX.XXX.147 SENT CONTROL [client]: 'PUSH_REPLY,route 192.168.2.0 255.255.255.0 vpn_gateway 500,dhcp-option DNS 192.168.2.1,redirect-gateway def1,route-gateway 10.8.0.1,topology subnet,ping 15,ping-restart 60,ifconfig 10.8.0.3 255.255.255.0,peer-id 1,cipher AES-128-GCM' (status=1)
Jul 19 22:43:22 ovpn-server1[6586]: client/73.XXX.XXX.147 Data Channel: using negotiated cipher 'AES-128-GCM'
Jul 19 22:43:22 ovpn-server1[6586]: client/73.XXX.XXX.147 Outgoing Data Channel: Cipher 'AES-128-GCM' initialized with 128 bit key
Jul 19 22:43:22 ovpn-server1[6586]: client/73.XXX.XXX.147 Incoming Data Channel: Cipher 'AES-128-GCM' initialized with 128 bit key
Click to expand...

Would you consider changing your “Accept DNS configuration” from DISABLE to Exclusive and see if that makes a difference. This would allow you to strictly use your VPN provider’s DNS servers.


Sent from my iPhone using Tapatalk
 
Marin said:
Would you consider changing your “Accept DNS configuration” from DISABLE to Exclusive and see if that makes a difference. This would allow you to strictly use your VPN provider’s DNS servers.


Sent from my iPhone using Tapatalk
Click to expand...

I actually tried that. But, so last night I decided to Factory Reset my router AT THE ROUTER (Reset button 5 sec while router running). Previously, after firmware upgrade, I did Factory Reset using the GUI. After the Factory Reset, all of a sudden my client started working!! Good. I am not sure if it was that or going to the DEFAULT Client settings.
DEFAULT Client Settings:
float
keepalive 15 60
remote-cert-tls server
resolv-retry infinite

Previously I had and have always used this in previous firmwares so not sure if I should have or not:
float
keepalive 15 60
remote-cert-tls server
auth-nocache
pull-filter ignore "ifconfig-ipv6" (not sure these 2 entries to use this since I don't use ipv6)
pull-filter ignore "route-ipv6"

Side note: I live in Marin County, CA. "Marin"where you live? thanks for response.
 
I am in Iowa but I have been in Marin county quite a few times when I lived not too far from where you are (in Vacaville[emoji6])


Sent from my iPhone using Tapatalk
 
Ah, smart man! You got out!! I take it those tornado's out there spared you. Tornado's out here are called "traffic congestion"...

If you have any thoughts on my settings let me know. thanks, and be safe.
 
Hi all,

the WLAN config seems buggy to me since 384.XX.
I use a RT-AC87U for a long time now and with merlin from the start. Thanks for all the effort providing it.
With 384.5 (after hard reset and factory default) it is not possible for me to make a 5G guestnetwork working.
I've configured "normal WLAN" 2,4G and 5G - no prob. I've configured a 2,4G Guest WLAN - no prob.
I configure a 5G guest WLAN - it is displayed on the configpage and the nvram entries seem to be correct, but none of my devices displays the ssid of the 5G guestnetwork.
It's the same with more than one 5G guest-WLANs configured.

Any ideas?
 
WRT_Fan said:
Hi all,

the WLAN config seems buggy to me since 384.XX.
I use a RT-AC87U for a long time now and with merlin from the start. Thanks for all the effort providing it.
With 384.5 (after hard reset and factory default) it is not possible for me to make a 5G guestnetwork working.
I've configured "normal WLAN" 2,4G and 5G - no prob. I've configured a 2,4G Guest WLAN - no prob.
I configure a 5G guest WLAN - it is displayed on the configpage and the nvram entries seem to be correct, but none of my devices displays the ssid of the 5G guestnetwork.
It's the same with more than one 5G guest-WLANs configured.

Any ideas?
Click to expand...
Asus broke it, I can recreate on stock.
 
Running 384.5 and all has been amazing now for a few weeks. I have one small question tho and im not sure how to go about it. I set up a vpn client thru policy rules and all is great. I then wanted to run a few other items thru a vpn client but on a different address as to not congest a single devices and have the router differ them all ... i do believe all was working great until today i realized all my devices in the house was running off of one of the clients even tho i only had 3 specified.. this is in no way a flaw in the build and an obvious setting error on my part but i figure someone has done something similar to this in here before or hoping so... appreciate all advice and help in this matter thank you .. and also great job merlin .. i wish i would have switched over to your firmware before ... oh btw im running it on an ac88u router.. ipvanish and wanting to run multiple vpn clients instead of all on one.
 
You must log in or register to reply here.

Similar threads

RMerlin
Release Asuswrt-Merlin 3006.102.2 is now available for Wifi 7 devices
2 3 4
Replies
62
Views
7K
RMerlin
RMerlin
RMerlin
  • Locked
Release Asuswrt-Merlin 3004.388.8_2 is now available
22 23 24
Replies
469
Views
59K
aitor_mtb
A
RMerlin
Release Asuswrt-Merlin 3006.102.1 is now available for Wifi 7 devices
4 5 6
Replies
106
Views
17K
jksmurf
J
RMerlin
  • Locked
Beta Asuswrt-Merlin 3004.388.8 beta is now available
6 7 8
Replies
155
Views
30K
RMerlin
RMerlin
RMerlin
  • Locked
Release Asuswrt-Merlin 3004.388.7 is now available
20 21 22
Replies
435
Views
65K
KronFace
K
Similar threads
Thread starter Title Forum Replies Date
D Release GNUton [Official Fork] 388.8_2 Release Asuswrt-Merlin 31
D Release GNUTON- 388.7_1 release [Official FORK] Asuswrt-Merlin 4
H Suggestion/Idea: AI scan of release threads/forum Asuswrt-Merlin 5
W Tera Term can't SSH connect to router running Merlin 384, but works when flash back to ASUS stock FW Asuswrt-Merlin 6
Chichi [AC 68U] Recommend FW upgrade path from 384.9 Asuswrt-Merlin 8
I RT-AC3200 Merlin 384.13.10 - e2fsck abort with 'Memory Allocation failed' (10 GB swapfile!) Asuswrt-Merlin 14
RMerlin Release Asuswrt-Merlin 3004.388.8_4 is now available Asuswrt-Merlin 72
RMerlin Release Asuswrt-Merlin 3006.102.2 is now available for Wifi 7 devices Asuswrt-Merlin 62
B Unable to establish VPN connection to my PiVPN (ovpn) from my Asus RT-AC86U running Asuswrt-Merlin 386.14 Asuswrt-Merlin 1
F Several Questions Re:Asuswrt-Merlin Feature Implementation Asuswrt-Merlin 2

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 885 (members: 26, guests: 859)
Top