Menu
What's new
By:
Filters Better Search

RT-AC86U: run OpenVPN client when OpenVPN server is ON? (no active connections to it)

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

D

deadwing

New Around Here
Hi all

after years on official firmware, I decided to jump to Merlin and overall it seems better and more responsive (and definitely more updated!).

I do have a question though: I have on the router the OpenVPN server turned ON as sometimes I need to access my LAN and access internet through my home connection when I'm away (and it all works).

At the same time I have on the same router OpenVPN client configured with a couple of connections, as I need sometimes to connect the whole network via a couple of remote servers when I'm home.

Now...the problem is that if I have the OpenVPN server is turned ON (no connections to it) then the OpenVPN client on the same router doesn't work.

I can imagine there's some network routing getting mad...so I'm asking you guys: is there a solution to this? Any suggestion/help/link I can check to try and solve the problem? Or is basically impossible?
 
deadwing said:
Hi all

after years on official firmware, I decided to jump to Merlin and overall it seems better and more responsive (and definitely more updated!).

I do have a question though: I have on the router the OpenVPN server turned ON as sometimes I need to access my LAN and access internet through my home connection when I'm away (and it all works).

At the same time I have on the same router OpenVPN client configured with a couple of connections, as I need sometimes to connect the whole network via a couple of remote servers when I'm home.

Now...the problem is that if I have the OpenVPN server is turned ON (no connections to it) then the OpenVPN client on the same router doesn't work.

I can imagine there's some network routing getting mad...so I'm asking you guys: is there a solution to this? Any suggestion/help/link I can check to try and solve the problem? Or is basically impossible?
Click to expand...
Check the IP range used for said client and server. If you only see one of them on routing table page then that's probably the issue.
 
They can't be on the same subnet.
 
Obviously...I should have know that!

Actually on the same router both the OpenVPN client and server were configured with the default 10.8, I changed the server to 10.9 and now at least it can be turned ON and the client works, thanks.

I tried then (just as a test) connecting from outside to my router's OpenVPN (turned ON) while the same router was connected via the internal OpenVPN client to another server, and that didn't work: connection to my own router's OpenVPN server was refused. It worked again when I disconnected the router's OpenVPN client.

I don't need it, but out of curiosity: is that because on the router both server and client use (again!) the same default port 1194?
 
deadwing said:
Obviously...I should have know that!

Actually on the same router both the OpenVPN client and server were configured with the default 10.8, I changed the server to 10.9 and now at least it can be turned ON and the client works, thanks.

I tried then (just as a test) connecting from outside to my router's OpenVPN (turned ON) while the same router was connected via the internal OpenVPN client to another server, and that didn't work: connection to my own router's OpenVPN server was refused. It worked again when I disconnected the router's OpenVPN client.

I don't need it, but out of curiosity: is that because on the router both server and client use (again!) the same default port 1194?
Click to expand...

Yes, change the port number on one of them. 1195. ;)
 
Martineau said:
VPN Servers and VPN Clients can and do use the same ports- by default usually 1194/1195
Click to expand...

Yes I know that...but if in this case the router's openvpn server is actually connecting to another client on another machine, and the same router's openvpn client is connecting to the server on yet another machine..?

Will check that thread to see if I can find similarities and will test the port change asap so to report if that fixes it or not!
 
Last edited:
UPDATE: I can confirm that changing ports doesn't work...if the router has a server turned ON, and the same router has the client actually connected to another server, then router's server doesn't respond.
As soon as I close the router's client connection, then the router's server responds and works.
 
My router has an ovpn server and an ovpn client running, and both work as expected. I suspect the info Martineau posted above is relevant here. Have a peek at the logs on the ovpn client you are trying to connect to your router's server. You may find ddns errors. If so, verify your router client config (policy routing) using that link he posted.
 
deadwing said:
then router's server doesn't respond.
Click to expand...

Make sure you aren't using a policy that redirects your router trafic through the tunnel, cause that would make it impossible for your router to send trafic back to your connected client.
 
Add the following (but obviously with your IP info) to your OpenVPN client page.

See screenshot.
 

Attachments

  • Screen Shot 2019-04-05 at 6.06.16 AM.png
    Screen Shot 2019-04-05 at 6.06.16 AM.png
    96.9 KB · Views: 599
#TY said:
Add the following (but obviously with your IP info) to your OpenVPN client page.

See screenshot.
Click to expand...

Thanks a lot guys, again obvious solution but I didn’t think about it!

Makes perfect sense..and indeed solved the problem!

Now I can have the router’s openvpn client up and connected and running my lan through an external server, and at same time the router’s openvpn server up and accepting connections and running those through the original wan, so is all working!

I suppose if I add the router’s openvpn server subnet to the routes of the client, then if client is connected to an external server, any server connection will be routed via the client’s connection?
 
  • Like
Reactions: #TY
deadwing said:
I suppose if I add the router’s openvpn server subnet to the routes of the client, then if client is connected to an external server, any server connection will be routed via the client’s connection?
Click to expand...
You will have to wait for one of the big boys to answer this one :)
 
  • Like
Reactions: #TY
deadwing said:
I suppose if I add the router’s openvpn server subnet to the routes of the client, then if client is connected to an external server, any server connection will be routed via the client’s connection?
Click to expand...

I know this too … openvpn server and client question ….wow 2 years ago when I posted the original solution.
 
Last edited:
You must log in or register to reply here.

Similar threads

H
Extremely low speed on ac86u with openvpn client
Replies
7
Views
535
hassangh
H
N
Solved OpenVPN Server split tunnell config
Replies
5
Views
398
elorimer
E
P
Problem connecting to OpenVPN server on AX86U
Replies
4
Views
640
Patrick9876
P
N
OpenVPN - Local Access on a DDNS to forwarded ports.
Replies
1
Views
386
octopus
octopus
S
OpenVPN server fails after reboot
Replies
6
Views
654
L&LD
L&LD
Similar threads
Thread starter Title Forum Replies Date
M AC86U - SSH Disabled few seconds after boot - 386.14. Asuswrt-Merlin 0
B Unable to establish VPN connection to my PiVPN (ovpn) from my Asus RT-AC86U running Asuswrt-Merlin 386.14 Asuswrt-Merlin 1
C Need info on bringing AC86U back to life as AIMesh unit Asuswrt-Merlin 3
D VPN director issue on RT-AC86U (386.14 Merlin FW) Asuswrt-Merlin 9
nospamever Happy and sad for RT-AC86U Asuswrt-Merlin 10
H Extremely low speed on ac86u with openvpn client Asuswrt-Merlin 7
P EoL RT-AC86U replacement Asuswrt-Merlin 4
H GT-AC29000 and AC86U mesh together Asuswrt-Merlin 10
M RT-AC86U Errors after latest firmware update (386.14) Asuswrt-Merlin 3
criskoe Asus RT-AC86U Openvpn connected but not working Asuswrt-Merlin 9

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 963 (members: 43, guests: 920)
Top