Posted: Sun Mar 17, 2019 11:27 Post subject: Running OpenVPN server and client concurrently in one DDWRT
Hi,
I've got the DDWRT router up running as OpenVPN client to a commercial vpn.
All is working.
Then I enabled the OpenVPN Server and set it up accordingly with all the cert and keys.
After I hit save and reboot, in the status menu I get only the OpenVPN Server up and running status and logs. There is no status nor log for the OpenVPN client connection.
After checking my IP, it's obvious the OpenVPN client isn't working...
I read around and people say you can run server and client in one DDWRT router. Yet my experience doesn't seem so.
Joined: 18 Mar 2014 Posts: 12908 Location: Netherlands
Posted: Sun Mar 17, 2019 11:38 Post subject:
You can not connect to your OVPN server if you have a OVPN client on the same router without using Policy Based Routing but at least both should start.
So you must have made a major configuration error in setting up.
You can not connect to your OVPN server if you have a OVPN client on the same router without using Policy Based Routing but at least both should start.
So you must have made a major configuration error in setting up.
This forum is full with threads about this subject
Turns out, after I put in all the cert and key for OpenVPN Server, the bottom half of the OpenVPN client settings e.g. Public Client Cert and Private Client Cert got truncated... And even if I repaste the full string into the windows and hit save, they are still truncated...
I'm using a Netgear R7000 with Firmware: DD-WRT v3.0-r37015M kongac (09/23/1
Joined: 18 Mar 2014 Posts: 12908 Location: Netherlands
Posted: Sun Mar 17, 2019 13:24 Post subject:
Hhmm that is really odd.
Things I can come up with:
Check NVRAM (on status/info page or Status router, maybe it is filled up (unlikely but you never know)
Use another editor to copy and paste (I use Notepad++ and use unix style line endings (under Edit/EOL conversion), but I do not think that this is important.
Maybe DDWRT does not like large (4096) keysize certificates, all settings are retained n an NVRAM variable: openvpn_key, openvpn_ca, openvpn_crt, openvpn_dh
You can check by telnetting into your router and do i.e.:
nvram get openvpn_crt
If everything else fails telnet to your router and reset to defaults by doing: nvram erase && reboot
Thanks guys egc, eibgrad, D0ug
Indeed once i regen the server cert n keys to be 2048 bits (was 4096), the keys and cert combined are 4k bytes smaller. And this way the OpenVPN client cert keys are not truncated anymore. Both client and server are now running concurrently.