OpenVPN Server not start ARCHER-C7 r37961

Post new topic   Reply to topic    DD-WRT Forum Forum Index -> Advanced Networking
Author Message
spyfly
DD-WRT User


Joined: 26 Jun 2010
Posts: 70

PostPosted: Sun May 05, 2019 23:27    Post subject: OpenVPN Server not start ARCHER-C7 r37961 Reply with quote
I have a:

TP-Link ARCHER-C7 v5
DD-WRT v3.0-r37961 std (12/12/18 )

I have configure OpenVPN Server, and reboot. In the status of VPN i can´t see start the server... Whats the problem??

I have a:
TPLINK WR1043ND V2
DD-WRT v24-sp2 (03/19/15) std - build 26490
I have copy the OpenVPN configuration and in this show me the Server OpenVPN works...

I give you the configuration in my ARCHER-C7








Sponsor
eibgrad
DD-WRT Guru


Joined: 18 Sep 2010
Posts: 8034

PostPosted: Sun May 05, 2019 23:47    Post subject: Reply with quote
There might be some indication of the problem in the syslog (assuming you have the Syslogd service enabled).
egc
DD-WRT Guru


Joined: 18 Mar 2014
Posts: 3676
Location: Netherlands

PostPosted: Mon May 06, 2019 5:49    Post subject: Reply with quote
The minimum key length is increased in recent
Builds. Try to regenerate your keys.

See the open VPN server setup guide in my signature at the bottom of this page.

_________________
Routers:Netgear R7800, Netgear R6400v1, Netgear R6400v2, Linksys EA6900 (XvortexCFE), Linksys E2000 (converted WRT320N), WRT54GS v1.
Install guide Linksys EA6900: http://www.dd-wrt.com/phpBB2/viewtopic.php?t=291230
Simple PBR (Policy Based Routing) script: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=318662
Install guide R6400v2:http://forum.dd-wrt.com/phpBB2/viewtopic.php?t=316399
OpenVPN server setup guide:
https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=318795
Install guide R7800: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=320614
spyfly
DD-WRT User


Joined: 26 Jun 2010
Posts: 70

PostPosted: Wed May 08, 2019 23:17    Post subject: Reply with quote
egc wrote:
The minimum key length is increased in recent
Builds. Try to regenerate your keys.

See the open VPN server setup guide in my signature at the bottom of this page.


what is the minimun now??

thanks
spyfly
DD-WRT User


Joined: 26 Jun 2010
Posts: 70

PostPosted: Wed May 08, 2019 23:23    Post subject: Reply with quote
eibgrad wrote:
There might be some indication of the problem in the syslog (assuming you have the Syslogd service enabled).


eibgrad
DD-WRT Guru


Joined: 18 Sep 2010
Posts: 8034

PostPosted: Wed May 08, 2019 23:35    Post subject: Reply with quote
spyfly wrote:
eibgrad wrote:
There might be some indication of the problem in the syslog (assuming you have the Syslogd service enabled).




Those are common, harmless warnings. You can ignore them.

I don't recommend dumping the syslog using the GUI, since it only displays a page at a time. There's likely additional pages w/ more information.

What works better for debugging purposes is to use a shell (telnet/ssh).

https://wiki.dd-wrt.com/wiki/index.php/Telnet/SSH_and_the_Command_Line

Then issue the following command.

Code:
cat /var/log/messages | grep openvpn


And post the output to the forum.
egc
DD-WRT Guru


Joined: 18 Mar 2014
Posts: 3676
Location: Netherlands

PostPosted: Thu May 09, 2019 6:55    Post subject: Reply with quote
spyfly wrote:
egc wrote:
The minimum key length is increased in recent
Builds. Try to regenerate your keys.

See the open VPN server setup guide in my signature at the bottom of this page.


what is the minimun now??

thanks


It is in the guide: 2048

_________________
Routers:Netgear R7800, Netgear R6400v1, Netgear R6400v2, Linksys EA6900 (XvortexCFE), Linksys E2000 (converted WRT320N), WRT54GS v1.
Install guide Linksys EA6900: http://www.dd-wrt.com/phpBB2/viewtopic.php?t=291230
Simple PBR (Policy Based Routing) script: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=318662
Install guide R6400v2:http://forum.dd-wrt.com/phpBB2/viewtopic.php?t=316399
OpenVPN server setup guide:
https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=318795
Install guide R7800: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=320614
spyfly
DD-WRT User


Joined: 26 Jun 2010
Posts: 70

PostPosted: Sun May 12, 2019 19:27    Post subject: Reply with quote
now i have aprox 1100 length, i try to use a bigger!
eibgrad
DD-WRT Guru


Joined: 18 Sep 2010
Posts: 8034

PostPosted: Sun May 12, 2019 19:57    Post subject: Reply with quote
egc wrote:
spyfly wrote:
egc wrote:
The minimum key length is increased in recent
Builds. Try to regenerate your keys.

See the open VPN server setup guide in my signature at the bottom of this page.


what is the minimun now??

thanks


It is in the guide: 2048


<rant>
Just as an aside, what business is it of OpenVPN to dictate my keysize?? I realize they may have their own feelings about what is and isn't safe, but I hate it when software developers tell you want you can and can't do. I can think of some situations in which using a small keysize is sufficient for the task at hand. Or I simply can't support anything bigger, like on the router, due to flash limitations! I could understand if a smaller keysize was risking their security, or a third-party, but for your own OpenVPN server?! They couldn't have simply issued a warning in the syslog? Geeesh.

That kind of stuff just annoys the heck out of me. I don't need OpenVPN to be a nanny.
</rant>

_________________
DD-WRT: DNS Leak Detection w/ VPNs (updated 6/5/19)
NEW SCRIPT!: ddwrt-mount-usb-drives.sh
NEW SCRIPT!: ddwrt-blacklist-domains.sh
NEW SCRIPT!: ddwrt-ovpn-remote-access.sh
NEW SCRIPT!: ddwrt-pptp-policy-based-routing.sh
spyfly
DD-WRT User


Joined: 26 Jun 2010
Posts: 70

PostPosted: Sun May 12, 2019 22:07    Post subject: Reply with quote
i have generate the new keys in 2048 and write in the router dd-wrt. OpenVPN not works...

I have used your guide and this is my configuration...






Code:

System Log
Jan 01 01:00:17 kumount.info: umounting all usb drives
Jan 1 01:00:22 DD-WRT syslog.info syslogd started: BusyBox v1.29.3
Jan 1 00:00:22 DD-WRT user.info : syslogd : daemon successfully started
Jan 1 00:00:23 DD-WRT user.info : telnetd : daemon successfully started
Jan 1 01:00:23 DD-WRT syslog.info syslogd started: BusyBox v1.29.3
Jan 1 00:00:23 DD-WRT user.info : hwmon : successfully started
Jan 1 00:00:23 DD-WRT user.info : wland : daemon successfully started
Jan 1 00:00:23 DD-WRT user.info : dropbear : ssh daemon successfully started
Jan 1 00:00:23 DD-WRT authpriv.info dropbear[1025]: Running in background
Jan 1 00:00:23 DD-WRT user.info : dnsmasq : daemon successfully started
Jan 1 00:00:23 DD-WRT user.info : cron : daemon successfully started
Jan 1 00:00:23 DD-WRT cron.info cron[1037]: (CRON) STARTUP (fork ok)
Jan 1 00:00:23 DD-WRT user.info : upnp : daemon successfully started
Jan 1 00:00:24 DD-WRT user.info : udhcpd : udhcp daemon successfully started
Jan 1 00:00:24 DD-WRT user.info : vpn modules : vpn modules successfully unloaded
Jan 1 00:00:24 DD-WRT user.info : vpn modules : nf_conntrack_proto_gre successfully loaded
Jan 1 00:00:24 DD-WRT user.info : vpn modules : nf_nat_proto_gre successfully loaded
Jan 1 00:00:24 DD-WRT user.info : vpn modules : nf_conntrack_pptp successfully loaded
Jan 1 00:00:24 DD-WRT user.info : vpn modules : nf_nat_pptp successfully loaded
Jan 1 00:00:25 DD-WRT daemon.info httpd[1164]: httpd : httpd server started at port 80
Jan 1 00:00:25 DD-WRT user.info : udhcpd : daemon successfully stopped
Jan 1 00:00:25 DD-WRT user.info : udhcpd : udhcp daemon successfully started
Jan 1 00:00:25 DD-WRT user.info : dnsmasq : daemon successfully stopped
Jan 1 00:00:25 DD-WRT user.info : dnsmasq : daemon successfully started
Jan 1 00:00:26 DD-WRT user.info : vpn modules : vpn modules successfully unloaded
Jan 1 00:00:26 DD-WRT user.info : vpn modules : nf_conntrack_proto_gre successfully loaded
Jan 1 00:00:26 DD-WRT user.info : vpn modules : nf_nat_proto_gre successfully loaded
Jan 1 00:00:26 DD-WRT user.info : vpn modules : nf_conntrack_pptp successfully loaded
Jan 1 00:00:26 DD-WRT user.info : vpn modules : nf_nat_pptp successfully loaded
Jan 1 00:00:26 DD-WRT user.info : upnp : daemon successfully stopped
Jan 1 00:00:26 DD-WRT user.info : upnp : daemon successfully started
Jan 1 00:00:26 DD-WRT user.info : wland : daemon successfully stopped
Jan 1 00:00:26 DD-WRT user.info : wland : daemon successfully started
Jan 1 00:00:26 DD-WRT user.info : wan : WAN is up. IP: 172.17.0.2
Jan 1 00:00:26 DD-WRT user.info : openvpn : OpenVPN daemon (Server) starting/restarting...
Jan 1 00:00:27 DD-WRT daemon.warn openvpn[1404]: WARNING: Using --management on a TCP port WITHOUT passwords is STRONGLY discouraged and considered insecure
Jan 1 00:00:27 DD-WRT daemon.notice openvpn[1404]: OpenVPN 2.4.6 mips-unknown-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Dec 12 2018
Jan 1 00:00:27 DD-WRT daemon.notice openvpn[1404]: library versions: OpenSSL 1.1.1a 20 Nov 2018, LZO 2.09
Jan 1 00:00:27 DD-WRT daemon.notice openvpn[1406]: MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:14
Jan 1 00:00:27 DD-WRT daemon.warn openvpn[1406]: WARNING: using --duplicate-cn and --client-config-dir together is probably not what you want
Jan 1 00:00:27 DD-WRT daemon.warn openvpn[1406]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Jan 1 00:00:27 DD-WRT user.info : igmprt : successfully started
Jan 1 00:00:27 DD-WRT user.info : process_monitor : successfully started
Jan 1 00:00:27 DD-WRT user.info : ddns : inadyn daemon successfully started
Jan 1 00:00:27 DD-WRT user.info : ttraff : traffic counter daemon successfully started
Jan 1 00:00:27 DD-WRT daemon.debug ntpclient[1410]: Connecting to 2.pool.ntp.org [147.156.7.18] ...
Jan 1 00:00:27 DD-WRT user.info : httpd : daemon successfully stopped
May 12 22:35:29 DD-WRT daemon.info ntpclient[1410]: Time set from 2.pool.ntp.org [147.156.7.18].
May 12 22:35:29 DD-WRT daemon.info process_monitor[1408]: cyclic NTP Update success (servers 2.pool.ntp.org 212.18.3.19 88.99.174.22)
egc
DD-WRT Guru


Joined: 18 Mar 2014
Posts: 3676
Location: Netherlands

PostPosted: Mon May 13, 2019 5:57    Post subject: Reply with quote
The private server key starts with begin DH parameter. That does not look right.
_________________
Routers:Netgear R7800, Netgear R6400v1, Netgear R6400v2, Linksys EA6900 (XvortexCFE), Linksys E2000 (converted WRT320N), WRT54GS v1.
Install guide Linksys EA6900: http://www.dd-wrt.com/phpBB2/viewtopic.php?t=291230
Simple PBR (Policy Based Routing) script: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=318662
Install guide R6400v2:http://forum.dd-wrt.com/phpBB2/viewtopic.php?t=316399
OpenVPN server setup guide:
https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=318795
Install guide R7800: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=320614
spyfly
DD-WRT User


Joined: 26 Jun 2010
Posts: 70

PostPosted: Mon May 13, 2019 18:03    Post subject: Reply with quote
thanks, i have change my key and VPN server not starts!

can you give to me a photo of status -> openvpn??? i think that if openvpn server is working i must see in this screen.
Display posts from previous:    Page 1 of 1
Post new topic   Reply to topic    DD-WRT Forum Forum Index -> Advanced Networking All times are GMT

Navigation

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You cannot download files in this forum