What's new

RT-AC66U and IPVanish VPN client

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

demeeder

New Around Here
Issue #1: I am a newbie

Issue #2: OpenVPN not working with IPVanish. Working separately with IPVanish.

Issue #3: L2TP will not stay connected. It does connect and authenticate and I have seen great throughput. However, I can't seem to keep it connected for very long.

Current configuration:

Asus set up as second "router" behind Fios Actiontec and MoCA Bridge.

My LAN/WAN settings are depicted below.

System Log:
Jul 20 19:55:31 rc_service: httpd 305:notify_rc restart_vpncall
Jul 20 19:55:35 pppd[5595]: Plugin pppol2tp.so loaded.
Jul 20 19:55:35 pppd[5595]: pppd 2.4.5 started by demeeder, uid 0
Jul 20 19:55:35 pppd[5595]: Using interface ppp5
Jul 20 19:55:35 pppd[5595]: Connect: ppp5 <--> l2tp (81.171.110.3)
Jul 20 19:55:35 pppd[5595]: Overriding mtu 1500 to 1400
Jul 20 19:55:35 pppd[5595]: Overriding mru 1500 to mtu value 1400
Jul 20 19:55:38 pppd[5595]: Overriding mru 1500 to mtu value 1400
Jul 20 19:55:38 pppd[5595]: CHAP authentication succeeded
Jul 20 19:55:38 pppd[5595]: local IP address 172.20.8.14
Jul 20 19:55:38 pppd[5595]: remote IP address 81.171.110.3
Jul 20 19:55:38 pppd[5595]: primary DNS address 198.18.0.1
Jul 20 19:55:38 pppd[5595]: secondary DNS address 198.18.0.2
Jul 20 19:55:38 dnsmasq[5406]: read /etc/hosts - 5 addresses
Jul 20 19:55:38 dnsmasq[5406]: using nameserver 198.18.0.1#53
Jul 20 19:55:38 dnsmasq[5406]: using nameserver 198.18.0.2#53
Jul 20 19:56:46 WAN Connection: Ethernet link up.
Jul 20 19:56:46 rc_service: wanduck 295:notify_rc restart_wan_if 0
Jul 20 19:56:46 dnsmasq[5406]: read /etc/hosts - 5 addresses
Jul 20 19:56:46 dnsmasq[5406]: using nameserver 8.8.8.8#53
Jul 20 19:56:46 dnsmasq[5406]: using nameserver 8.8.4.4#53
Jul 20 19:56:46 pppd[5595]: Terminating on signal 15
Jul 20 19:56:46 pppd[5595]: Modem hangup
Jul 20 19:56:46 pppd[5595]: Connect time 1.2 minutes.
Jul 20 19:56:46 pppd[5595]: Sent 326832 bytes, received 1897766 bytes.
Jul 20 19:56:46 pppd[5595]: Overriding mtu 1500 to 1400
Jul 20 19:56:46 pppd[5595]: Overriding mru 1500 to mtu value 1400
Jul 20 19:56:46 pppd[5595]: Couldn't set PPP MRU: Transport endpoint is not connected
Jul 20 19:56:46 pppd[5595]: Connection terminated.
Jul 20 19:56:46 dnsmasq[5406]: read /etc/hosts - 5 addresses
Jul 20 19:56:46 dnsmasq[5406]: using nameserver 8.8.8.8#53
Jul 20 19:56:46 dnsmasq[5406]: using nameserver 8.8.4.4#53
Jul 20 19:56:46 pppd[5595]: Exit.
Jul 20 19:56:46 stop_wan(): perform DHCP release
Jul 20 19:56:46 kernel: Attempt to kill tasklet from interrupt
Jul 20 19:56:46 kernel: br0: port 1(vlan1) entering disabled state
Jul 20 19:56:46 kernel: br0: port 1(vlan1) entering listening state
Jul 20 19:56:46 miniupnpd[5431]: ioctl(s, SIOCGIFADDR, ...): Cannot assign requested address
Jul 20 19:56:46 miniupnpd[5431]: Failed to get IP for interface eth0
Jul 20 19:56:46 miniupnpd[5431]: SendNATPMPPublicAddressChangeNotification: cannot get public IP address, stopping
Jul 20 19:56:46 kernel: br0: port 1(vlan1) entering learning state
Jul 20 19:56:46 kernel: br0: topology change detected, propagating
Jul 20 19:56:46 kernel: br0: port 1(vlan1) entering forwarding state
Jul 20 19:56:49 start_nat_rules: apply the nat_rules(/tmp/nat_rules_eth0_eth0)!
Jul 20 19:56:49 dnsmasq[5406]: read /etc/hosts - 5 addresses
Jul 20 19:56:49 dnsmasq[5406]: using nameserver 8.8.8.8#53
Jul 20 19:56:49 dnsmasq[5406]: using nameserver 8.8.4.4#53
Jul 20 19:56:49 dnsmasq[5406]: exiting on receipt of SIGTERM
Jul 20 19:56:49 dnsmasq[5638]: started, version 2.69 cachesize 1500
Jul 20 19:56:49 dnsmasq[5638]: asynchronous logging enabled, queue limit is 5 messages
Jul 20 19:56:49 dnsmasq-dhcp[5638]: DHCP, IP range 192.168.2.100 -- 192.168.2.119, lease time 1d
Jul 20 19:56:49 dnsmasq-dhcp[5638]: DHCP, sockets bound exclusively to interface br0
Jul 20 19:56:49 dnsmasq[5638]: read /etc/hosts - 5 addresses
Jul 20 19:56:49 dnsmasq[5638]: using nameserver 8.8.8.8#53
Jul 20 19:56:49 dnsmasq[5638]: using nameserver 8.8.4.4#53
Jul 20 19:56:49 miniupnpd[5431]: shutting down MiniUPnPd
Jul 20 19:56:49 miniupnpd[5659]: HTTP listening on port 41734
Jul 20 19:56:49 miniupnpd[5659]: Listening for NAT-PMP/PCP traffic on port 5351
Jul 20 19:56:49 openvpn[5489]: event_wait : Interrupted system call (code=4)
Jul 20 19:56:49 openvpn[5489]: /usr/sbin/ip route del 10.8.0.0/24
Jul 20 19:56:49 openvpn[5489]: Closing TUN/TAP interface
Jul 20 19:56:49 openvpn[5489]: /usr/sbin/ip addr del dev tun21 local 10.8.0.1 peer 10.8.0.2
Jul 20 19:56:49 openvpn[5489]: SIGTERM[hard,] received, process exiting
Jul 20 19:56:49 kernel: tun: Universal TUN/TAP device driver, 1.6
Jul 20 19:56:49 kernel: tun: (C) 1999-2004 Max Krasnyansky <maxk@qualcomm.com>
Jul 20 19:56:49 kernel: device tun21 entered promiscuous mode
 

Attachments

  • WAN.jpg
    WAN.jpg
    63.8 KB · Views: 348
  • LAN.jpg
    LAN.jpg
    16.9 KB · Views: 338
Is the static IP you are assigning to the ASUS router outside of the automatic IP range on the Actiontec?

What is the range of LAN IPs being automatically assigned on the ASUS?
 
I was able to get the OpenVPN to work (was just a login name error). That said, Both the OpenVPN and L2TP connections will not last more than a few minutes.

I have tested two different VPN providers (IPVanish and HideMyAss) with the same results.

Thoughts?
 
For simplicity try installing the Astrill app on your ASUS. Lots of nice features, great support from Astrill and decent speed. Use it on one of my N66Us for my wife's connection to Sweden.

Sent from my WM-8880-MID using Tapatalk
 
I was able to get the OpenVPN to work (was just a login name error). That said, Both the OpenVPN and L2TP connections will not last more than a few minutes.

I have tested two different VPN providers (IPVanish and HideMyAss) with the same results.

Thoughts?

In the custom config of openvpn set your verbosity high for debug. "verb 4" maybe "verb 5" and you might get some indication as to why you're being disconnected.

That said, I wouldn't trust either of those VPN providers. I can recommend PIA (private internet access) and AirVPN.
 
Thanks all.

I tell you what, I have been pulling my hair out over this. Here is what I have learned.

1. Lots to learn on networking (and I thought I had some clue).

2. The MoCA bridge I was using on the second floor may have been the culprit. I think it was dropping my WAN connection frequently and not allowing the router to work (especially when VPNing). I don't think it likes being connected to the cable box at the same time (despite the design). The cable box has previously got dumb and wouldn't show the guide. Makes me think either the bridge is bad or that it doesn't like all the connections.

3. Moved the router upstairs and connected off of a LAN connection on my Airport Extreme. It is also connected via MoCA, but no cable box.

That was the ticket. I have successfully connected via Open and L2TP. Connection has held for a while now and I am enjoying wide open Netflix (take that Verizon!!!).

Now, I am sure there are some tweaks I still need to do, but at least after 72 hours of beating my head against a wall I can at least sit back and watch an episode of The Office.

OpenVPN is quite slow at the moment. L2TP is pegging the meter at 80Mbps.

As for the VPN providers, thanks for the tip. Much appreciation.

Dave
 
Thanks all.

I tell you what, I have been pulling my hair out over this. Here is what I have learned.

1. Lots to learn on networking (and I thought I had some clue).

2. The MoCA bridge I was using on the second floor may have been the culprit. I think it was dropping my WAN connection frequently and not allowing the router to work (especially when VPNing). I don't think it likes being connected to the cable box at the same time (despite the design). The cable box has previously got dumb and wouldn't show the guide. Makes me think either the bridge is bad or that it doesn't like all the connections.

3. Moved the router upstairs and connected off of a LAN connection on my Airport Extreme. It is also connected via MoCA, but no cable box.

That was the ticket. I have successfully connected via Open and L2TP. Connection has held for a while now and I am enjoying wide open Netflix (take that Verizon!!!).

Now, I am sure there are some tweaks I still need to do, but at least after 72 hours of beating my head against a wall I can at least sit back and watch an episode of The Office.

OpenVPN is quite slow at the moment. L2TP is pegging the meter at 80Mbps.

As for the VPN providers, thanks for the tip. Much appreciation.

Dave

yeah, the L2TP/ipsec implementation in this firmware rocks. super fast.

have you tried anything in your openvpn config to fix MTU problems? Of course, I don't think the AC66 is able to really do openvpn that fast due to CPU constraints.
 
Thanks all.


2. The MoCA bridge I was using on the second floor may have been the culprit. I think it was dropping my WAN connection frequently and not allowing the router to work (especially when VPNing). I don't think it likes being connected to the cable box at the same time (despite the design). The cable box has previously got dumb and wouldn't show the guide. Makes me think either the bridge is bad or that it doesn't like all the connections.


Dave

In case others are having similar issues with MoCA bridge setups... I discovered myissue. Bottom line, FIOS STBs can not be connected to the RF output of the Actiontec MoCA bridge. You must split the coax prior to the bridge to avoid conflicts with the STB and it causing the WAN connection to fail every minute or so. Once I reconfigured, router has stayed online and connected to the VPN with no issue.
 

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!
Top