problems with PIA and openvpn

Post new topic   Reply to topic    DD-WRT Forum Forum Index -> Advanced Networking
Goto page 1, 2  Next
Author Message
johnday29
DD-WRT Novice


Joined: 17 Sep 2012
Posts: 18

PostPosted: Thu Jul 18, 2019 4:36    Post subject: problems with PIA and openvpn Reply with quote
I have been having problems ever since I did a firmware update recently and my openvpn is not working correctly. I use a Netgear R7800 with firmware v3.0-r40276. I didn't change any settings but after the update my openvpn client will no longer let me connect. According to PIA the problem is the last line of my log date is 12/31/1969. On the status screen of my router it does show the correct date and time for today so it isn't incorrect in the router but somehow the vpn is pulling the wrong date.

Anyone know how to fix this? I am guessing it is probably a setting somewhere? Please let me know if you need any other information. Thanks


Last edited by johnday29 on Thu Jul 18, 2019 19:23; edited 1 time in total
Sponsor
egc
DD-WRT Guru


Joined: 18 Mar 2014
Posts: 3781
Location: Netherlands

PostPosted: Thu Jul 18, 2019 6:38    Post subject: Reply with quote
Post a picture of your settings

Post a picture of the top of the status page
I.e. what is the connection status?

I am using PIA on 40352 on a R6400v2
Without major problems.

BS has been working on VPN, problems with PBR,SFE and UDP forwarding

I am currently testing all those

_________________
Routers:Netgear R7800, Netgear R6400v1, Netgear R6400v2, Linksys EA6900 (XvortexCFE), Linksys E2000 (converted WRT320N), WRT54GS v1.
Install guide Linksys EA6900: http://www.dd-wrt.com/phpBB2/viewtopic.php?t=291230
Simple PBR (Policy Based Routing) script: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=318662
Install guide R6400v2:http://forum.dd-wrt.com/phpBB2/viewtopic.php?t=316399
OpenVPN server setup guide:
https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=318795
Install guide R7800: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=320614
johnday29
DD-WRT Novice


Joined: 17 Sep 2012
Posts: 18

PostPosted: Thu Jul 18, 2019 15:27    Post subject: Reply with quote
When I revert back to Kongs build from 10/28/2018 everything on my vpn works fine. However some of my other equipment ie logitech harmony becomes unstable and can't hold an internet connection. When I switch back to the latest 40270M build vpn is broken but my logitech device works great. Is there a way to get any of the other older but not that old builds of Kongs work? Here are the screen shots.

Last edited by johnday29 on Thu Jul 18, 2019 19:25; edited 2 times in total
egc
DD-WRT Guru


Joined: 18 Mar 2014
Posts: 3781
Location: Netherlands

PostPosted: Thu Jul 18, 2019 16:02    Post subject: Reply with quote
Your pictures are too large resize please, no larger than 600 pixels wide.

erase username and password from picture !

You show connected, I am suspecting SFE problem as you are using PBR.
Disable Shortcut Forwarding Engine on setup page and reboot router.

Furthermore LZO compression is probably wrong, it should be set to No, but server will override so not a big problem.

_________________
Routers:Netgear R7800, Netgear R6400v1, Netgear R6400v2, Linksys EA6900 (XvortexCFE), Linksys E2000 (converted WRT320N), WRT54GS v1.
Install guide Linksys EA6900: http://www.dd-wrt.com/phpBB2/viewtopic.php?t=291230
Simple PBR (Policy Based Routing) script: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=318662
Install guide R6400v2:http://forum.dd-wrt.com/phpBB2/viewtopic.php?t=316399
OpenVPN server setup guide:
https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=318795
Install guide R7800: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=320614
bushant
DD-WRT Guru


Joined: 18 Nov 2015
Posts: 1139
Location: Indiana

PostPosted: Thu Jul 18, 2019 17:03    Post subject: Reply with quote
egc wrote:
Furthermore LZO compression is probably wrong, it should be set to No, but server will override so not a big problem.


Probably not worth wasting the ink to post this but
being the obedient type as I am Cool I have LZO compression set to "Yes" like I am told here:
https://www.privateinternetaccess.com/helpdesk/guides/routers/dd-wrt-3/dd-wrt-openvpn-setup-2

PIA config wrote:
LZO Compression = Yes


PIA has always connected and worked fine with this setting but as egc said...
apparently it does not matter.

_________________
SUPPORTED DEVICES -- DON'T USE ROUTER DATABASE!
--IMPORTANT UPGRADE INFORMATION--Stubby DoT
Qualcomm-Atheros:
R7800 x2 kongat & BS WDS AP & Sta- R7500V2 kongat WDS STA- WNDR3700v4 BS std WDS STA- Nanostation M2 AirOS- LocoM2 AirOS
Broadcom:
R6200v2 kongac WLAN Repeater Archer C9 v1 OEM WAP
egc
DD-WRT Guru


Joined: 18 Mar 2014
Posts: 3781
Location: Netherlands

PostPosted: Thu Jul 18, 2019 17:20    Post subject: Reply with quote
Yeah, they should update their settings, but as said server side pushing will override, so not a big problem.

See: https://www.privateinternetaccess.com/helpdesk/news/posts/13th-august-2018-voracle-exploit

_________________
Routers:Netgear R7800, Netgear R6400v1, Netgear R6400v2, Linksys EA6900 (XvortexCFE), Linksys E2000 (converted WRT320N), WRT54GS v1.
Install guide Linksys EA6900: http://www.dd-wrt.com/phpBB2/viewtopic.php?t=291230
Simple PBR (Policy Based Routing) script: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=318662
Install guide R6400v2:http://forum.dd-wrt.com/phpBB2/viewtopic.php?t=316399
OpenVPN server setup guide:
https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=318795
Install guide R7800: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=320614
johnday29
DD-WRT Novice


Joined: 17 Sep 2012
Posts: 18

PostPosted: Thu Jul 18, 2019 19:30    Post subject: Reply with quote
corrected the LZO, not that it matters Smile I adjusted photos, sorry. Shortcut forwarding was already disabled. Still cant get this to work with the new firmware. Any other suggestions? Any links to older builds of Kong firmware?

Thanks
egc
DD-WRT Guru


Joined: 18 Mar 2014
Posts: 3781
Location: Netherlands

PostPosted: Thu Jul 18, 2019 19:57    Post subject: Reply with quote
Your log shows you are connected.

What happens when you delete the entry in the PBR field and reboot the router?

Do you have a functioning vpn?

_________________
Routers:Netgear R7800, Netgear R6400v1, Netgear R6400v2, Linksys EA6900 (XvortexCFE), Linksys E2000 (converted WRT320N), WRT54GS v1.
Install guide Linksys EA6900: http://www.dd-wrt.com/phpBB2/viewtopic.php?t=291230
Simple PBR (Policy Based Routing) script: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=318662
Install guide R6400v2:http://forum.dd-wrt.com/phpBB2/viewtopic.php?t=316399
OpenVPN server setup guide:
https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=318795
Install guide R7800: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=320614
bushant
DD-WRT Guru


Joined: 18 Nov 2015
Posts: 1139
Location: Indiana

PostPosted: Thu Jul 18, 2019 20:48    Post subject: Reply with quote
johnday29 wrote:
Any links to older builds of Kong firmware?Thanks


Here is 39855M-5-25-19. If you need it.
OVPN and PBR (and everything else) work great for me with this one.

Also the MD5 that was supplied with it.

_________________
SUPPORTED DEVICES -- DON'T USE ROUTER DATABASE!
--IMPORTANT UPGRADE INFORMATION--Stubby DoT
Qualcomm-Atheros:
R7800 x2 kongat & BS WDS AP & Sta- R7500V2 kongat WDS STA- WNDR3700v4 BS std WDS STA- Nanostation M2 AirOS- LocoM2 AirOS
Broadcom:
R6200v2 kongac WLAN Repeater Archer C9 v1 OEM WAP
mrjcd
DD-WRT Guru


Joined: 31 Jan 2015
Posts: 4704
Location: Texas

PostPosted: Thu Jul 18, 2019 22:46    Post subject: Reply with quote
johnday29 wrote:
Netgear R7800 ... Shortcut forwarding was already disabled.

Just a NOTE about SFE & QCA-IPQ806X routers:
The SFE will NOT turn itself off if you 'Disable' Save & Apply Settings in the webif but it then should after a reboot.
Not positive about r40276, don't remember, but it is for sure broken in r40370. AFAIK BS has fixed that today.

Also AFAIK Kong builds SFE has always been off by default so shouldn't be same problem unless maybe you enable it and then disble it.
you can, of course thru ssh/telnet check lsmod and see if he is on or not
bushant
DD-WRT Guru


Joined: 18 Nov 2015
Posts: 1139
Location: Indiana

PostPosted: Thu Jul 18, 2019 23:27    Post subject: Reply with quote
mrjcd wrote:

The SFE will NOT turn itself off if you 'Disable' Save & Apply Settings in the webif but it then should after a reboot.


Just reinstalled 40270M on R7800 and used these instructions.
OVPN + PBR works as expected now. I have had SFE enabled since PBR + SFE was fixed some time ago.

It broke some time after 39855M May 25th.

_________________
SUPPORTED DEVICES -- DON'T USE ROUTER DATABASE!
--IMPORTANT UPGRADE INFORMATION--Stubby DoT
Qualcomm-Atheros:
R7800 x2 kongat & BS WDS AP & Sta- R7500V2 kongat WDS STA- WNDR3700v4 BS std WDS STA- Nanostation M2 AirOS- LocoM2 AirOS
Broadcom:
R6200v2 kongac WLAN Repeater Archer C9 v1 OEM WAP
johnday29
DD-WRT Novice


Joined: 17 Sep 2012
Posts: 18

PostPosted: Thu Jul 18, 2019 23:50    Post subject: Reply with quote
egc wrote:
Your log shows you are connected.

What happens when you delete the entry in the PBR field and reboot the router?

Do you have a functioning vpn?



Then I dont get internet access on any of my computers. Tried that already. It says connected but I still get no access to internet. when I go back on firmware the TUN/TAP write bytes is no longer 0 does that mean anything?
johnday29
DD-WRT Novice


Joined: 17 Sep 2012
Posts: 18

PostPosted: Thu Jul 18, 2019 23:52    Post subject: Reply with quote
bushant wrote:
johnday29 wrote:
Any links to older builds of Kong firmware?Thanks


Here is 39855M-5-25-19. If you need it.
OVPN and PBR (and everything else) work great for me with this one.

Also the MD5 that was supplied with it.


Thanks I will try that.
johnday29
DD-WRT Novice


Joined: 17 Sep 2012
Posts: 18

PostPosted: Thu Jul 18, 2019 23:54    Post subject: Reply with quote
mrjcd wrote:
johnday29 wrote:
Netgear R7800 ... Shortcut forwarding was already disabled.

Just a NOTE about SFE & QCA-IPQ806X routers:
The SFE will NOT turn itself off if you 'Disable' Save & Apply Settings in the webif but it then should after a reboot.
Not positive about r40276, don't remember, but it is for sure broken in r40370. AFAIK BS has fixed that today.

Also AFAIK Kong builds SFE has always been off by default so shouldn't be same problem unless maybe you enable it and then disble it.
you can, of course thru ssh/telnet check lsmod and see if he is on or not


Thanks for the tip, but I already had this off by default with multiple reboots in between.
johnday29
DD-WRT Novice


Joined: 17 Sep 2012
Posts: 18

PostPosted: Fri Jul 19, 2019 0:05    Post subject: Reply with quote
bushant wrote:
johnday29 wrote:
Any links to older builds of Kong firmware?Thanks


Here is 39855M-5-25-19. If you need it.
OVPN and PBR (and everything else) work great for me with this one.

Also the MD5 that was supplied with it.



Not changing my settings and just changing to this firmware the openvpn works perfect????
Goto page 1, 2  Next Display posts from previous:    Page 1 of 2
Post new topic   Reply to topic    DD-WRT Forum Forum Index -> Advanced Networking All times are GMT

Navigation

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You cannot download files in this forum