Menu
What's new
By:
Filters Better Search

RT-AC86U ExpressVPN Problems

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

Skeptical.me

Skeptical.me

Very Senior Member
Hi,

In the past I've been using the solution found in this post https://www.snbforums.com/threads/cant-get-openvpn-using-expressvpn-to-run-on-rt-ac86u.48599/ in order to get ExpressVPN working in an OpenVPN Client on my RT-AC86U Merlin (Currently 384.8_2).

However, recently every time I use the OpenVPN Client with ExpressVPN rather than seeing 1 DNS server I am seeing 12. I do not have the DNSFilter enabled, nor do I have any DNS addresses input into LAN>DHCP SERVER>DNS & WIN SERVER SETTING>DNS 1>DNS 2

Furthermore, my internet connection frequently drops in and out, and when this occurs I'm unable to access the internet at times. This does not occur at all on Client number 3 using ProtonVPN .ovpn Config. ProtonVPN is working perfectly well.

Here are the settings for OpenVPN Client 2:

m7sVFXI.png

xfe1cPl.png

5s5kQF7.png



Here is the full Custom Configuration:

Code: 
fast-io
remote-random
pull
tls-client
verify-x509-name Server name-prefix
ns-cert-type server
route-method exe
route-delay 2
tun-mtu 1500
fragment 1300
mssfix 1450
keysize 256
sndbuf 524288
rcvbuf 524288
comp-lzo no
push "comp-lzo no"

And here are the logs:

Code: 
Dec 27 04:44:42 rc_service: httpds 825:notify_rc stop_vpnclient2
Dec 27 04:44:42 ovpn-client2[3306]: event_wait : Interrupted system call (code=4)
Dec 27 04:44:42 ovpn-client2[3306]: vpnrouting.sh tun12 1500 1557 10.165.0.66 10.165.0.65 init
Dec 27 05:44:42 openvpn-routing: Configuring policy rules for client 2
Dec 27 05:44:42 openvpn-routing: Tunnel down - VPN client access blocked
Dec 27 04:44:42 ovpn-client2[3306]: /bin/ip route del 10.165.0.1/32
Dec 27 04:44:42 ovpn-client2[3306]: ERROR: Linux route delete command failed: external program exited with error status: 2
Dec 27 04:44:42 ovpn-client2[3306]: /bin/ip route del 45.56.XXX.XX/32
Dec 27 04:44:42 ovpn-client2[3306]: /bin/ip route del 0.0.0.0/1
Dec 27 04:44:42 ovpn-client2[3306]: ERROR: Linux route delete command failed: external program exited with error status: 2
Dec 27 04:44:42 ovpn-client2[3306]: /bin/ip route del 128.0.0.0/1
Dec 27 04:44:42 ovpn-client2[3306]: ERROR: Linux route delete command failed: external program exited with error status: 2
Dec 27 04:44:42 ovpn-client2[3306]: Closing TUN/TAP interface
Dec 27 04:44:42 ovpn-client2[3306]: /bin/ip addr del dev tun12 local 10.165.0.66 peer 10.165.0.65
Dec 27 04:44:42 ovpn-client2[3306]: updown.sh tun12 1500 1557 10.165.0.66 10.165.0.65 init
Dec 27 05:44:42 rc_service: service 7320:notify_rc updateresolv
Dec 27 05:44:42 rc_service: waitting "stop_vpnclient2" via httpds ...
Dec 27 04:45:02 rc_service: httpds 825:notify_rc start_vpnclient2
Dec 27 04:45:02 ovpn-client2[7452]: WARNING: --keysize is DEPRECATED and will be removed in OpenVPN 2.6
Dec 27 04:45:02 ovpn-client2[7452]: OpenVPN 2.4.6 arm-buildroot-linux-gnueabi [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Dec  8 2018
Dec 27 04:45:02 ovpn-client2[7452]: library versions: OpenSSL 1.0.2q  20 Nov 2018, LZO 2.08
Dec 27 04:45:02 ovpn-client2[7453]: WARNING: --ns-cert-type is DEPRECATED.  Use --remote-cert-tls instead.
Dec 27 04:45:02 ovpn-client2[7453]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Dec 27 04:45:02 ovpn-client2[7453]: Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
Dec 27 04:45:02 ovpn-client2[7453]: Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
Dec 27 04:45:04 ovpn-client2[7453]: TCP/UDP: Preserving recently used remote address: [AF_INET]45.56.XXX.XX:1195
Dec 27 04:45:04 ovpn-client2[7453]: Socket Buffers: R=[524288->1048576] S=[524288->1048576]
Dec 27 04:45:04 ovpn-client2[7453]: UDP link local: (not bound)
Dec 27 04:45:04 ovpn-client2[7453]: UDP link remote: [AF_INET]45.56.XXX.XX:1195
Dec 27 04:45:04 ovpn-client2[7453]: TLS: Initial packet from [AF_INET]45.56.XXX.XX:1195, sid=72a1e662 18048126
Dec 27 04:45:04 ovpn-client2[7453]: WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Dec 27 04:45:04 ovpn-client2[7453]: VERIFY OK: depth=1, C=VG, ST=BVI, O=ExpressVPN, OU=ExpressVPN, CN=ExpressVPN CA, emailAddress=support@expressvpn.com
Dec 27 04:45:04 ovpn-client2[7453]: VERIFY OK: nsCertType=SERVER
Dec 27 04:45:04 ovpn-client2[7453]: VERIFY X509NAME OK: C=VG, ST=BVI, O=ExpressVPN, OU=ExpressVPN, CN=Server-CCC-CC, emailAddress=support@expressvpn.com
Dec 27 04:45:04 ovpn-client2[7453]: VERIFY OK: depth=0, C=VG, ST=BVI, O=ExpressVPN, OU=ExpressVPN, CN=Server-CCC-CC, emailAddress=support@expressvpn.com
Dec 27 04:45:05 ovpn-client2[7453]: Control Channel: TLSv1.2, cipher TLSv1/SSLv3 ECDHE-RSA-AES256-GCM-SHA384, 2048 bit RSA
Dec 27 04:45:05 ovpn-client2[7453]: [Server-CCC-CC] Peer Connection Initiated with [AF_INET]45.56.XXX.XX:1195
Dec 27 04:45:06 ovpn-client2[7453]: SENT CONTROL [Server-CCC-CC]: 'PUSH_REQUEST' (status=1)
Dec 27 04:45:06 ovpn-client2[7453]: PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1,dhcp-option DNS 10.114.0.1,route 10.114.0.1,topology net30,ping 10,ping-restart 60,ifconfig 10.114.0.XXX 10.114.0.XXX,peer-id 59,cipher AES-256-GCM'
Dec 27 04:45:06 ovpn-client2[7453]: OPTIONS IMPORT: timers and/or timeouts modified
Dec 27 04:45:06 ovpn-client2[7453]: OPTIONS IMPORT: --ifconfig/up options modified
Dec 27 04:45:06 ovpn-client2[7453]: OPTIONS IMPORT: route options modified
Dec 27 04:45:06 ovpn-client2[7453]: OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Dec 27 04:45:06 ovpn-client2[7453]: OPTIONS IMPORT: peer-id set
Dec 27 04:45:06 ovpn-client2[7453]: OPTIONS IMPORT: adjusting link_mtu to 1629
Dec 27 04:45:06 ovpn-client2[7453]: OPTIONS IMPORT: data channel crypto options modified
Dec 27 04:45:06 ovpn-client2[7453]: Data Channel: using negotiated cipher 'AES-256-GCM'
Dec 27 04:45:06 ovpn-client2[7453]: NCP: overriding user-set keysize with default
Dec 27 04:45:06 ovpn-client2[7453]: Outgoing Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
Dec 27 04:45:06 ovpn-client2[7453]: Incoming Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
Dec 27 04:45:06 ovpn-client2[7453]: TUN/TAP device tun12 opened
Dec 27 04:45:06 ovpn-client2[7453]: TUN/TAP TX queue length set to 100
Dec 27 04:45:06 ovpn-client2[7453]: do_ifconfig, tt->did_ifconfig_ipv6_setup=0
Dec 27 04:45:06 ovpn-client2[7453]: /bin/ip link set dev tun12 up mtu 1500
Dec 27 04:45:06 ovpn-client2[7453]: /bin/ip addr add dev tun12 local 10.114.0.242 peer 10.114.0.241
Dec 27 04:45:06 ovpn-client2[7453]: updown.sh tun12 1500 1557 10.114.0.242 10.114.0.241 init
Dec 27 05:45:06 openvpn-updown: Forcing 192.168.1.150 to use DNS server 10.114.0.1
Dec 27 05:45:06 openvpn-updown: Forcing 192.168.1.196 to use DNS server 10.114.0.1
Dec 27 05:45:06 openvpn-updown: Forcing 192.168.1.85 to use DNS server 10.114.0.1
Dec 27 05:45:06 openvpn-updown: Forcing 192.168.1.112 to use DNS server 10.114.0.1
Dec 27 05:45:06 openvpn-updown: Forcing 192.168.1.248 to use DNS server 10.114.0.1
Dec 27 05:45:06 openvpn-updown: Forcing 192.168.1.151 to use DNS server 10.114.0.1
Dec 27 05:45:06 openvpn-updown: Forcing 192.168.1.219 to use DNS server 10.114.0.1
Dec 27 05:45:06 openvpn-updown: Forcing 192.168.1.227 to use DNS server 10.114.0.1
Dec 27 05:45:06 openvpn-updown: Forcing 192.168.1.234 to use DNS server 10.114.0.1
Dec 27 05:45:06 openvpn-updown: Forcing 192.168.1.247 to use DNS server 10.114.0.1
Dec 27 05:45:06 rc_service: service 7669:notify_rc updateresolv
Dec 27 04:45:08 ovpn-client2[7453]: /bin/ip route add 45.56.XXX.XX/32 via 203.40.255.XXX
Dec 27 04:45:08 ovpn-client2[7453]: /bin/ip route add 0.0.0.0/1 via 10.114.0.241
Dec 27 04:45:08 ovpn-client2[7453]: /bin/ip route add 128.0.0.0/1 via 10.114.0.XXX
Dec 27 04:45:08 ovpn-client2[7453]: /bin/ip route add 10.114.0.1/32 via 10.114.0.XXX
Dec 27 05:45:08 openvpn-routing: Configuring policy rules for client 2
Dec 27 05:45:08 openvpn-routing: Tunnel re-established, restoring WAN access to clients
Dec 27 04:45:08 ovpn-client2[7453]: Initialization Sequence Completed

I hope someone has the time to have a quick look and give some advice about how to resolve this issue. I appreciate every one who takes a look, thank you.
 
You must log in or register to reply here.

Similar threads

T
[Help] Problems setting up OpenVPN
Replies
7
Views
254
Thookie
T
P
RT-AX88U - 388.2_2 - Previously Working VPN Client (NordVPN) no longer functions - Suggestions for NordVPN Working Settings July 2023
Replies
2
Views
2K
PC Pilot
P
G
TLS error with OpenVPN client
Replies
4
Views
3K
eibgrad
eibgrad
P
OVPN Problem. Asus rt ax56u (latest merlin firmware
Replies
9
Views
2K
pattox
P
Yota
Solved How to check the DNS IP address pushed by the OpenVPN?
Replies
1
Views
1K
Yota
Yota
Similar threads
Thread starter Title Forum Replies Date
B Unable to establish VPN connection to my PiVPN (ovpn) from my Asus RT-AC86U running Asuswrt-Merlin 386.14 Asuswrt-Merlin 1
C Need info on bringing AC86U back to life as AIMesh unit Asuswrt-Merlin 3
D VPN director issue on RT-AC86U (386.14 Merlin FW) Asuswrt-Merlin 9
nospamever Happy and sad for RT-AC86U Asuswrt-Merlin 10
H Extremely low speed on ac86u with openvpn client Asuswrt-Merlin 7
P EoL RT-AC86U replacement Asuswrt-Merlin 4
H GT-AC29000 and AC86U mesh together Asuswrt-Merlin 10
M RT-AC86U Errors after latest firmware update (386.14) Asuswrt-Merlin 3
criskoe Asus RT-AC86U Openvpn connected but not working Asuswrt-Merlin 9
B AC86U: boot the prior "bootfs_update" mtd as is? Asuswrt-Merlin 6

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Staff online

Members online

Total: 837 (members: 31, guests: 806)
Top