Joined: 18 Mar 2014 Posts: 12887 Location: Netherlands
Posted: Thu Jul 16, 2020 6:20 Post subject:
Their instructions do not look too bad.
the main problem is:
Code:
20200715 19:03:36 N TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Which indicates a network error, you cannot reach the server so try another server and or port, preferably use TCP instead of UDP (TCP has fewer connections problems but can be a bit slower)
Always reboot after changing anything.
You are using an old build, SlickVPN actually points to the one and only place where you can find proper updates, but it should work anyway.
Now it looks like the error is related to a connect reset.
I've tried a few of the ports that SlickVPN says should work (8888, 443) - all with no luck.
I might try a firmware update... but I was hoping to avoid that if I could - as I have a number of statically assigned DHCP entries that I'd need to copy and paste back in :-/
Thanks again
Clientlog:
20200716 07:43:17 W WARNING: Using --management on a TCP port WITHOUT passwords is STRONGLY discouraged and considered insecure
20200716 07:43:17 W WARNING: file '/tmp/openvpncl/client.key' is group or others accessible
20200716 07:43:17 W WARNING: file '/tmp/openvpncl/credentials' is group or others accessible
20200716 07:43:17 I OpenVPN 2.4.6 arm-unknown-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on May 31 2018
20200716 07:43:17 I library versions: OpenSSL 1.1.0h 27 Mar 2018 LZO 2.09
20200716 07:43:17 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:16
20200716 07:43:17 W NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
20200716 07:43:17 I TCP/UDP: Preserving recently used remote address: [AF_INET]185.151.12.218:8888
20200716 07:43:17 Socket Buffers: R=[87380->87380] S=[16384->16384]
20200716 07:43:17 I Attempting to establish TCP connection with [AF_INET]185.151.12.218:8888 [nonblock]
20200716 07:43:18 I TCP connection established with [AF_INET]185.151.12.218:8888
20200716 07:43:18 I TCPv4_CLIENT link local: (not bound)
20200716 07:43:18 I TCPv4_CLIENT link remote: [AF_INET]185.151.12.218:8888
20200716 07:43:18 TLS: Initial packet from [AF_INET]185.151.12.218:8888 sid=3b9a4050 5dcc85d0
20200716 07:43:18 W WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
20200716 07:43:18 VERIFY OK: depth=1 C=US ST=CA L=VPN O=VPN OU=VPN CN=VPN name=VPN emailAddress=VPN
20200716 07:43:18 VERIFY KU OK
20200716 07:43:18 Validating certificate extended key usage
20200716 07:43:18 NOTE: --mute triggered...
20200716 07:43:39 3 variation(s) on previous 3 message(s) suppressed by --mute
20200716 07:43:39 N Connection reset restarting [-1]
20200716 07:43:39 I SIGUSR1[soft connection-reset] received process restarting
20200716 07:43:39 Restart pause 5 second(s)
20200716 07:43:44 W NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
20200716 07:43:44 I TCP/UDP: Preserving recently used remote address: [AF_INET]185.151.12.218:8888
20200716 07:43:44 Socket Buffers: R=[87380->87380] S=[16384->16384]
20200716 07:43:44 I Attempting to establish TCP connection with [AF_INET]185.151.12.218:8888 [nonblock]
20200716 07:43:45 I TCP connection established with [AF_INET]185.151.12.218:8888
20200716 07:43:45 I TCPv4_CLIENT link local: (not bound)
20200716 07:43:45 I TCPv4_CLIENT link remote: [AF_INET]185.151.12.218:8888
20200716 07:43:46 TLS: Initial packet from [AF_INET]185.151.12.218:8888 sid=8269b129 0201e5ba
20200716 07:43:46 VERIFY OK: depth=1 C=US ST=CA L=VPN O=VPN OU=VPN CN=VPN name=VPN emailAddress=VPN
20200716 07:43:46 VERIFY KU OK
20200716 07:43:46 NOTE: --mute triggered...
20200716 07:44:07 4 variation(s) on previous 3 message(s) suppressed by --mute
20200716 07:44:07 N Connection reset restarting [-1]
20200716 07:44:07 I SIGUSR1[soft connection-reset] received process restarting
20200716 07:44:07 Restart pause 5 second(s)
20200716 07:44:12 W NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
20200716 07:44:12 I TCP/UDP: Preserving recently used remote address: [AF_INET]185.151.12.218:8888
20200716 07:44:12 Socket Buffers: R=[87380->87380] S=[16384->16384]
20200716 07:44:12 I Attempting to establish TCP connection with [AF_INET]185.151.12.218:8888 [nonblock]
20200716 07:44:13 I TCP connection established with [AF_INET]185.151.12.218:8888
20200716 07:44:13 I TCPv4_CLIENT link local: (not bound)
20200716 07:44:13 I TCPv4_CLIENT link remote: [AF_INET]185.151.12.218:8888
20200716 07:44:13 TLS: Initial packet from [AF_INET]185.151.12.218:8888 sid=9fff5759 72c6989e
20200716 07:44:13 VERIFY OK: depth=1 C=US ST=CA L=VPN O=VPN OU=VPN CN=VPN name=VPN emailAddress=VPN
20200716 07:44:13 VERIFY KU OK
20200716 07:44:13 NOTE: --mute triggered...
20200716 07:44:35 4 variation(s) on previous 3 message(s) suppressed by --mute
20200716 07:44:35 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:16
20200716 07:44:35 D MANAGEMENT: CMD 'state'
20200716 07:44:35 MANAGEMENT: Client disconnected
20200716 07:44:35 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:16
20200716 07:44:35 D MANAGEMENT: CMD 'state'
20200716 07:44:35 MANAGEMENT: Client disconnected
20200716 07:44:35 N Connection reset restarting [-1]
20200716 07:44:35 I SIGUSR1[soft connection-reset] received process restarting
20200716 07:44:35 Restart pause 5 second(s)
20200716 07:44:35 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:16
20200716 07:44:35 D MANAGEMENT: CMD 'state'
20200716 07:44:35 MANAGEMENT: Client disconnected
20200716 07:44:35 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:16
20200716 07:44:35 D MANAGEMENT: CMD 'status 2'
20200716 07:44:35 MANAGEMENT: Client disconnected
20200716 07:44:35 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:16
20200716 07:44:35 D MANAGEMENT: CMD 'log 500'
20200716 07:44:35 4 variation(s) on previous 3 message(s) suppressed by --mute
20200716 07:44:35 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:16
20200716 07:44:35 D MANAGEMENT: CMD 'state'
20200716 07:44:35 MANAGEMENT: Client disconnected
20200716 07:44:35 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:16
20200716 07:44:35 D MANAGEMENT: CMD 'state'
20200716 07:44:35 MANAGEMENT: Client disconnected
20200716 07:44:35 N Connection reset restarting [-1]
20200716 07:44:35 I SIGUSR1[soft connection-reset] received process restarting
20200716 07:44:35 Restart pause 5 second(s)
20200716 07:44:35 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:16
20200716 07:44:35 D MANAGEMENT: CMD 'state'
20200716 07:44:35 MANAGEMENT: Client disconnected
20200716 07:44:35 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:16
20200716 07:44:35 D MANAGEMENT: CMD 'status 2'
20200716 07:44:35 MANAGEMENT: Client disconnected
20200716 07:44:35 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:16
20200716 07:44:35 D MANAGEMENT: CMD 'log 500'
20200716 07:44:35 MANAGEMENT: Client disconnected
20200716 07:44:40 W NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
20200716 07:44:40 I TCP/UDP: Preserving recently used remote address: [AF_INET]185.151.12.218:8888
20200716 07:44:40 Socket Buffers: R=[87380->87380] S=[16384->16384]
20200716 07:44:40 I Attempting to establish TCP connection with [AF_INET]185.151.12.218:8888 [nonblock]
20200716 07:44:41 I TCP connection established with [AF_INET]185.151.12.218:8888
20200716 07:44:41 I TCPv4_CLIENT link local: (not bound)
20200716 07:44:41 I TCPv4_CLIENT link remote: [AF_INET]185.151.12.218:8888
20200716 07:44:41 TLS: Initial packet from [AF_INET]185.151.12.218:8888 sid=7200c491 2461cdeb
20200716 07:44:41 VERIFY OK: depth=1 C=US ST=CA L=VPN O=VPN OU=VPN CN=VPN name=VPN emailAddress=VPN
20200716 07:44:41 VERIFY KU OK
20200716 07:44:41 NOTE: --mute triggered...
20200716 07:45:00 4 variation(s) on previous 3 message(s) suppressed by --mute
20200716 07:45:00 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:16
20200716 07:45:00 D MANAGEMENT: CMD 'state'
20200716 07:45:00 MANAGEMENT: Client disconnected
20200716 07:45:00 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:16
20200716 07:45:00 D MANAGEMENT: CMD 'state'
20200716 07:45:00 MANAGEMENT: Client disconnected
20200716 07:45:00 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:16
20200716 07:45:00 D MANAGEMENT: CMD 'state'
20200716 07:45:00 MANAGEMENT: Client disconnected
20200716 07:45:01 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:16
20200716 07:45:01 D MANAGEMENT: CMD 'status 2'
20200716 07:45:01 MANAGEMENT: Client disconnected
20200716 07:45:01 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:16
20200716 07:45:01 D MANAGEMENT: CMD 'log 500'
19691231 16:00:00
Joined: 08 May 2018 Posts: 14221 Location: Texas, USA
Posted: Thu Jul 16, 2020 21:24 Post subject:
No, you are confusing it with Broadcom MIPSR1 (WRT54* series and similar), MIPSR2 (Linksys E-Series, not EA-Series/ARM). Although, the latter I really do not think it requires it, I think that is just old philosophy carrying over without proper verification. I've reset several MIPSR2 Broadcom routers without doing a 30/30/30 on stock, FreshTomato, and DD-WRT using the reset button. You don't 30/30/30 any other router but those old things. Some routers will wind up bricking good if you do. _________________ "Life is but a fleeting moment, a vapor that vanishes quickly; All is vanity"
Contribute To DD-WRT Pogo - A minimal level of ability is expected and needed... DD-WRT Releases 2023 (PolitePol)
DD-WRT Releases 2023 (RSS Everything)
----------------------
Linux User #377467 counter.li.org / linuxcounter.net
Truth be told, most of my dd-wrt experience comes from the old WRT54 series. The firmware "just worked" for me, and was amazing. I even had the PPTP server going on it before it seemed like it got too sketchy to use.
It's only now that I'm trying to do more with these newer routers that things are getting a bit muddled for me.
Hopefully, the OpenVPN client in a newer build will fix my issue here.
The main issue is determining what host to use, as the write up on the slickvpn site is a little vague (at least IMHO)
I ended up installing the SlickVPN Windows client and mirroring its config over into DD-WRT.
I have this running on a test router (Atheros based), and it's basically double nat'ed (a router behind a router) - but I see no reason why this won't work. Unfortunately, I need to coordinate this config change with the rest of the household so I don't interrupt their COVID lockdown induced internet binge.
The main issue is determining what host to use, as the write up on the slickvpn site is a little vague (at least IMHO)
I ended up installing the SlickVPN Windows client and mirroring its config over into DD-WRT.
I have this running on a test router (Atheros based), and it's basically double nat'ed (a router behind a router) - but I see no reason why this won't work. Unfortunately, I need to coordinate this config change with the rest of the household so I don't interrupt their COVID lockdown induced internet binge.
I am doing something similar, what was it you did to resolve it?