May 17 15:13:35 bns-wrt user.info : openvpn : OpenVPN daemon (Server) starting/restarting...
May 17 15:13:35 bns-wrt daemon.err openvpn[8897]: Options error: --server and --secret cannot be used together (you must use SSL/TLS keys)
So it looks like I need to dive into TLS again to run this next test.
The gist of all of them is "The server isn't responding, something's up with the network side of things." With possible solutions from iptables to using the 'local' config word on the server to bind to a specific address. I toyed around with a few of them until finally just forwarding the port specifically, and was able to connect.
My current config:
Thank you all for the help! It took a few months, but we got it!
Great that it is working, but I assume that the OVPN server is running on a secondary router?
If it is running on your primary router (connected to the internet a port forward is not necessary (DDWRT opens up the corresponding port on the INPUT chain)
Thanks egc. This is the main/only router for the network, its upstream IP is the WAN from my ISP.
The VPN didn't work at the coffee shop, but does at my office. It appears to be working OK, except that I cannot query the dd-wrt router for DNS names of local machines. I have dnsmasq set up as the DHCP host and also have local name resolution enabled.
Just in case it was a bug, last night I upgraded the router to v3.0-r39827 std (05/20/19)
But I still cannot resolve names:
Code:
$ route -n
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
[...]
192.168.13.0 192.168.14.1 255.255.255.0 UG 50 0 0 tun0
192.168.14.0 0.0.0.0 255.255.255.0 U 50 0 0 tun0
$ drill bns-wrt.bns @192.168.13.1
Error: error sending query: Could not send or receive, because of network error
*Edit: I also cannot resolve DNS from inside the network, with a local machine. So this isn't a openvpn issue, but dnsmasq one instead.