R7000, Kong 40270M, PureVPN and sploitworks link

Post new topic   Reply to topic    DD-WRT Forum Forum Index -> Advanced Networking
Author Message
poyntzj
DD-WRT Novice


Joined: 26 Dec 2012
Posts: 4

PostPosted: Thu Oct 15, 2020 12:34    Post subject: R7000, Kong 40270M, PureVPN and sploitworks link Reply with quote
Trying to get pureVPN installed onto my R7000 router running v3.0-r40270M kingat (07/11/19)

Tried to follow the article below
https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=307250&postdays=0&postorder=asc&highlight=purevpn&start=0

in Administration > commands
eval `wget -q -O - http://sploitworks.com/vpnsetups/purevpn-has-rotten-manuals.swi`
And nothing happens after "processing"
tried the above in telnet and get
"wget: not an http or ftp url:"

a quick check online and http://sploitworks.com/vpnsetups/purevpn-has-rotten-manuals.swi gives a "Not Found" error message
looking for sploitworks.com takes me to covertrouters.com and then using the http://covertrouters.com/vpnsetups/purevpn-has-rotten-manuals.swi downloads me a file to my desktop

back to telnet, and running
eval `wget -q -O - http://covertrouters.com/vpnsetups/purevpn-has-rotten-manuals.swi`
still gives me the "wget: error"

I eventually get the SWI file from my desktop into the /tmp folder on the router
I now run "eval /tmp/purevpn-has-rotten-manuals.swi" and get Permissions denied

So I look at the SWI file in a text editor and then back to Administration>Commands, I copy and paste the script and click on Run Commands.
I get a processing message and nothing happens at all

So I look at the SWI and based on what it is doing I make the same changes to the entries via the GUI
Clicking apply and it is trying to do something, but I am getting this in the Log

20201015 13:29:41 W WARNING: Using --management on a TCP port WITHOUT passwords is STRONGLY discouraged and considered insecure
20201015 13:29:41 W WARNING: file '/tmp/openvpncl/client.key' is group or others accessible
20201015 13:29:41 W WARNING: file '/tmp/openvpncl/ta.key' is group or others accessible
20201015 13:29:41 W WARNING: file '/tmp/openvpncl/credentials' is group or others accessible
20201015 13:29:41 I OpenVPN 2.4.7 arm-unknown-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Jul 11 2019
20201015 13:29:41 I library versions: OpenSSL 1.1.1c 28 May 2019 LZO 2.09
20201015 13:29:41 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:16
20201015 13:29:41 W NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
20201015 13:29:41 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
20201015 13:29:41 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
20201015 13:29:41 I TCP/UDP: Preserving recently used remote address: [AF_INET]aaa.bbb.ccc.ddd:53
20201015 13:29:41 Socket Buffers: R=[180224->360448] S=[180224->360448]
20201015 13:29:41 I UDPv4 link local: (not bound)
20201015 13:29:41 I UDPv4 link remote: [AF_INET]172.111.147.4:53
20201015 13:29:44 MANAGEMENT: Client disconnected
20201015 13:29:46 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:16
20201015 13:29:46 D MANAGEMENT: CMD 'state'
20201015 13:29:46 MANAGEMENT: Client disconnected
20201015 13:29:46 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:16
20201015 13:29:46 D MANAGEMENT: CMD 'state'
20201015 13:29:46 MANAGEMENT: Client disconnected
20201015 13:29:46 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:16
20201015 13:29:46 D MANAGEMENT: CMD 'state'
20201015 13:29:46 MANAGEMENT: Client disconnected
20201015 13:29:46 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:16
20201015 13:29:46 D MANAGEMENT: CMD 'status 2'
20201015 13:29:46 MANAGEMENT: Client disconnected
20201015 13:29:46 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:16
20201015 13:29:46 D MANAGEMENT: CMD 'log 500'
20201015 13:29:46 MANAGEMENT: Client disconnected
20201015 13:30:41 N TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
20201015 13:30:41 N TLS Error: TLS handshake failed
20201015 13:30:41 I SIGUSR1[soft tls-error] received process restarting
20201015 13:30:41 Restart pause 30 second(s)

Anyone got any ideas on the errors / TLS error
I did try with a bad password and the message is then a little different
Sponsor
blkt
DD-WRT Guru


Joined: 20 Jan 2019
Posts: 1623

PostPosted: Thu Oct 15, 2020 12:53    Post subject: Reply with quote
Here's another thread in case you haven't seen it. Problem with OpenVPN (PureVPN) client configuration

My opinion, but it's time to upgrade to r44538 and reconfigure from scratch.
poyntzj
DD-WRT Novice


Joined: 26 Dec 2012
Posts: 4

PostPosted: Thu Oct 15, 2020 14:02    Post subject: upgrade Reply with quote
I was thinking that, so I downloaded the build and applied to another R7000 and that is now bricked
Not sure if this is because it is going from Kong to Brainslayer
I'll get it working soonish and then try again
blkt
DD-WRT Guru


Joined: 20 Jan 2019
Posts: 1623

PostPosted: Thu Oct 15, 2020 16:19    Post subject: Re: upgrade Reply with quote
Please when you have time describe the process you went through that led to a brick.
poyntzj
DD-WRT Novice


Joined: 26 Dec 2012
Posts: 4

PostPosted: Thu Oct 15, 2020 19:17    Post subject: Reply with quote
Ignore the brick - that was pebcak
I thought the unit was a 7000, it isn't, it is a 7800 - doh
its back now but is a simple / switch WAP config

I have upgraded them to 44538, but I have to make a note of all the settings on the main router before I can reset and reapply (DHCP reservations and port forwarding rules)
that is planned for the weekend
blkt
DD-WRT Guru


Joined: 20 Jan 2019
Posts: 1623

PostPosted: Thu Oct 15, 2020 22:30    Post subject: Reply with quote
Maybe keep R7000 config as-is for now, then use R7800 for testing to eventually swap it and become the main.
poyntzj
DD-WRT Novice


Joined: 26 Dec 2012
Posts: 4

PostPosted: Sun Oct 18, 2020 19:41    Post subject: Reply with quote
So an upgrade, complete wipe and then download the script worked - I had a password issue where it looks like an extra space was added

i was then trying to setup PBR and that was failing, but on looking at the log I saw it was routing 0.0.0.0 which is added as part of the configuration script in the "additional configuration"
removed that, rebooted and now it is all working fine Smile
Display posts from previous:    Page 1 of 1
Post new topic   Reply to topic    DD-WRT Forum Forum Index -> Advanced Networking All times are GMT

Navigation

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You cannot download files in this forum