DD-WRT Needs easier vpn config

Post new topic   Reply to topic    DD-WRT Forum Index -> Advanced Networking
Goto page 1, 2  Next
Author Message
mng519
DD-WRT Novice


Joined: 04 Apr 2022
Posts: 24

PostPosted: Mon Apr 25, 2022 3:39    Post subject: DD-WRT Needs easier vpn config Reply with quote
Future builds need an easy way to just load a .ovpn config file and it automatically runs and connects just like Openvpn does. No more need to do all that tedious copying and pasting. Hope to see it. Thanks.
Sponsor
Alozaros
DD-WRT Guru


Joined: 16 Nov 2015
Posts: 6410
Location: UK, London, just across the river..

PostPosted: Mon Apr 25, 2022 9:46    Post subject: Reply with quote
hmm i guess you can do that and have your config at USB and point to it via start up commands...but....if there are any changes and with default advanced VPN rules, it could get messy...so i do like the idea to use GUI and do the tedious copy pasting instead... Rolling Eyes
_________________
Atheros
TP-Link WR740Nv1 ---DD-WRT 55179 WAP
TP-Link WR1043NDv2 -DD-WRT 55303 Gateway/DoT,Forced DNS,Ad-Block,Firewall,x4VLAN,VPN
TP-Link WR1043NDv2 -Gargoyle OS 1.15.x AP,DNS,QoS,Quotas
Qualcomm-Atheros
Netgear XR500 --DD-WRT 55460 Gateway/DoH,Forced DNS,AP Isolation,4VLAN,Ad-Block,Firewall,Vanilla
Netgear R7800 --DD-WRT 55460 Gateway/DoT,AD-Block,Forced DNS,AP&Net Isolation,x3VLAN,Firewall,Vanilla
Netgear R9000 --DD-WRT 55363 Gateway/DoT,AD-Block,AP Isolation,Firewall,Forced DNS,x2VLAN,Vanilla
Broadcom
Netgear R7000 --DD-WRT 55460 Gateway/SmartDNS/DoH,AD-Block,Firewall,Forced DNS,x3VLAN,VPN
NOT USING 5Ghz ANYWHERE
------------------------------------------------------
Stubby DNS over TLS I DNSCrypt v2 by mac913
mng519
DD-WRT Novice


Joined: 04 Apr 2022
Posts: 24

PostPosted: Mon Apr 25, 2022 12:13    Post subject: Vpn Reply with quote
I only suggest this because I can't get the vpn in open vpn client to connect at all no matter what I do. I've read the guides and copy and paste all the appropriate info where it needs to be, but nothing. I got it to generate a log once in the status area. It's always blank now though.

Wish I could find a nice organized how to on what you mentioned about the usb drive and a command pointing to it. Or nice organized how to's on anything, really. So difficult to search and find these things.
egc
DD-WRT Guru


Joined: 18 Mar 2014
Posts: 12837
Location: Netherlands

PostPosted: Mon Apr 25, 2022 12:27    Post subject: Re: Vpn Reply with quote
mng519 wrote:
I only suggest this because I can't get the vpn in open vpn client to connect at all no matter what I do. I've read the guides and copy and paste all the appropriate info where it needs to be, but nothing. I got it to generate a log once in the status area. It's always blank now though.

Wish I could find a nice organized how to on what you mentioned about the usb drive and a command pointing to it. Or nice organized how to's on anything, really. So difficult to search and find these things.


I already pointed you to the guides how to setup and that if you did not succeed you had to post the necessary information for us to troubleshoot:
https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=331974
Sad

_________________
Routers:Netgear R7000, R6400v1, R6400v2, EA6900 (XvortexCFE), E2000, E1200v1, WRT54GS v1.
Install guide R6400v2, R6700v3,XR300:https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=316399
Install guide R7800/XR500: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=320614
Forum Guide Lines (important read):https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=324087
mng519
DD-WRT Novice


Joined: 04 Apr 2022
Posts: 24

PostPosted: Mon Apr 25, 2022 12:39    Post subject: vpn Reply with quote
Thanks for the reply. Only thing is, I can't get it to generate a log anymore though. I don't have any info to post. Is that the info you are referring to?

The .ovpn I have works though. In Openvpn for windows. I can load it and connect no problem through that. I want to do it on the router though, so all devices can have the vpn.
egc
DD-WRT Guru


Joined: 18 Mar 2014
Posts: 12837
Location: Netherlands

PostPosted: Mon Apr 25, 2022 12:58    Post subject: Reply with quote
We need to know router model, build number and network setup to start with
What VPN provider or server you are wanting to setup to, what instructions you followed.
If you have an .ovpn config file post the contents
A screenshot of your OpenVPN settings page and especially the content of the Additional config (as that is what is causing the most problems)
A screenshot of the OpenVPN status page
Output of (assuming syslog is enabled):
Code:
grep -i openvpn /var/log/messages


I am pretty sure that the Guide I pointed to has a troubleshooting section with what information to post

_________________
Routers:Netgear R7000, R6400v1, R6400v2, EA6900 (XvortexCFE), E2000, E1200v1, WRT54GS v1.
Install guide R6400v2, R6700v3,XR300:https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=316399
Install guide R7800/XR500: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=320614
Forum Guide Lines (important read):https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=324087
mng519
DD-WRT Novice


Joined: 04 Apr 2022
Posts: 24

PostPosted: Mon Apr 25, 2022 14:17    Post subject: Vpn Reply with quote
Thank you for your reply egc. I never put anything in the additional config area. Don't know of any additional config.
Here is the contents of the .ovpn file that works no problem in OpenVpn.

script-security 2
#Connection Settings
client
dev tun
proto udp
nobind
persist-key

#Security Settings
auth sha512
cipher AES-256-CBC
tls-cipher TLS-DHE-RSA-WITH-AES-128-CBC-SHA256
verify-x509-name bviserver name

#Canada
remote 1yul.bolehvpn.net 443
remote 192.99.44.200 4443
remote-random

# Set log file verbosity.
verb 1

# Silence repeating messages
mute 20

#User Info

key-direction 1
#redwolf1
<tls-auth>
#
# 2048 bit OpenVPN static key
#
-----BEGIN OpenVPN Static key V1-----
2347e477ebe9b4b9758e40ab8a111cb7
242da234f0f5cab43f9203d0b7d69ce7
179ebf168105ee06f1a546bbcc62773a
834d9f96559d9bf671ab38760497e243
7b508ddfcd64d69a0759be08cc8b7c45



1bb09dc4cce2f5c289fdde2c27b8cc2c
8310e3a4a60cff643cf003d18f06de32
08d3c6fc15f565cb3151d7e31810fb9e
419af34024e046319538b99e3c46d262
6117dae83c7fa3e89f4ff241aa9a1d0c
-----END OpenVPN Static key V1-----
</tls-auth>
<ca>
-----BEGIN CERTIFICATE-----
MIIFVzCCAz+gAwIBAgIBAjANBgkqhkiG9w0BAQ0FADAhMR8wHQYDVQQDExZCVklu
dGVybmV0IFJTQSBST09UIENBMB4XDTE2MDUxNzE3MTYzOVoXDTI2MDUxNTE3MTYz
OVowKjEoMCYGA1UEAxMfQlZJbnRlcm5ldCBTZWN1cmUtVlBOLVNlcnZlciBDQTCC
AiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAJi29GHEDquo1fD0fRgnKlKI
wZoXtxiWwlDEnlrusA+c7rH8/ixDwvWycshPcI7duN9Qs6+vy369Uec5eQA0WeaG
FMff/hl88M29IwtHuTBSj8horCeebhWybpzHpQ36tWL0zzTzVWQ1pL8Ve6ATvnuD
XgweuDCNwtNXI5JR+WW7U55yvqqkXhkHsxjqKZMyaLr1kXvUQGFsBDzZK7lOCuuV
0lxI1jaNenCE8cQKOhHaDriU0KNUA/N8K0bTwWOZjBit8W7RkRAS8HavcQscnQQW
eh7t+1NGWoK4bef4CS0KNp3t+fbDXwItqC666y/fTfq5DtAWuPDYkTWTutXhs+N5
4flZZWRF6sq1wRtlBwzbF5+Zk51slzxkc74s9u03BGY35iRwdZ1S9O6Q2QzCCl6N
nUz4qygIRL2hOKQm12oRuPFP3wElQJ5NavxJi0wxEps2wXlSyzpc/pDatuaBfvAS


AjXX+c6jHn6xjRGIHtDb630KXMAPOy2WEvkcISVaK5bxWsqcpt0ddgQwvwJyHktY
NliVyx6FtFELFTsr84FQtikd5xm8dCmYMCsHAt6QZBsxD31rYUq13MdQpC2yypSr
oY+T58ePtCFhNSrlnW/+IEZdZ1LcAt/4XFHbwAqlH+alLQgjIyzp3o1ocLM4iwmu
UgeqMp+LcDEBbQe6iaO50hftNKEnySwiVAIw/SToj4r0Q7BchQWidzlAL0bVYEXU
O3L6CGdcAtup4o22Cb9v8jPnaiX/SDl3MLRaqKjFCzsarz0+wzO280C6nWDKlC1o
trwK0xpYKLBJhWnaUWNmfJMltZlzgH0+Y5Zz7Ss8z8WrW3pCVelRLl5KCLGGCPBF
eFEDzgxpbxmulyd3U3H3UYB4E1jxiEPrq7R9GPZKN084c+rw8x5F7VJs7S3GSaHT
nRJR3jwn0f7sGVB0s1oFgGoS5nc1r0DUj66a
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----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DRSA0eDho8FsoHCiOhnKbOq9wExihvZsa3IlBlpQyG54hv3U4GEVAPimmpW1WIjN
SRanHxD7OH2vLGnXvUwZzikq36ZTZtAXo6iae4yY7TogF1egreJ/WUYkKtUOfHM7
l1tpEpvDGP4CLpqVQC4eV3l0Nb6UIzPBP5U4ynIfDaqIAPCw/QplcIJ5zIfWHEYc
o2y/oURIqJu7kfbz9Bi+OBBjQxEZPg33ewUoYfCGOEKNe8G28atJWTlaC1ljP0L0
SUCVkyGIzF/pIds/diFn0DUeIllordu+WMDAq/55YGGsl1mTebK6wH5gheCNAPCv
QmG2LGHz44NA5h10GwXigoKclc5QxCgBClvt58GryxWUoI881EJe9OI6E/IAERTq
nPOz775O/p8Dnk/cs7l7LYVp691Tq6AmnOg=
-----END CERTIFICATE-----
</ca>
<cert>
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 504914175 (0x1e1860ff)
Signature Algorithm: sha512WithRSAEncryption
Issuer: CN=BVInternet Secure-VPN-User CA
Validity
Not Before: Apr 25 03:10:52 2022 GMT
Not After : Apr 27 03:10:52 2022 GMT
Subject: C=MY, ST=KL, L=KualaLumpur, O=BOLEHVPN-Service0001, OU=VPNUsers, CN=redwolf1/emailAddress=redwolf1@rheiop.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (4096 bit)
Modulus:
00:cc:39:d7:d2:f9:86:2c:90:d2:ab:f7:9e:c3:87:
50:0f:18:7e:c2:47:7d:85:49:69:57:9f:22:af:01:
09:21:9a:5a:95:04:96:78:4c:ca:da:d1:10:f5:a5:
ff:fc:f1:b7:51:a0:a6:bc:5c:ae:47:fe:e4:ae:2a:
a4:12:00:b4:76:8e:90:47:58:13:c6:11:d7:39:91:
34:dc:72:38:c6:ba:64:c2:75:0e:30:a2:2d:4d:94:
b6:d2:ec:b9:3f:16:e8:23:f4:5d:44:67:0f:65:19:
91:13:fb:94:13:b4:99:93:a8:65:da:57:8f:6b:16:
38:0a:8c:a7:85:ac:08:4f:36:0c:07:24:e9:6a:e5:
da:ae:d1:fe:78:64:fd:0d:9e:02:a1:66:8e:c0:2b:
57:06:cd:f2:4b:9c:b2:e6:c9:47:24:78:43:48:eb:
b2:4e:d6:e6:d9:15:a3:75:99:20:79:72:47:09:01:
17:a1:dd:df:59:fc:1e:47:72:13:d5:be:9e:72:72:
f5:51:0c:dd:dd:4e:b4:82:fa:a0:d2:24:86:4a:f4:
51:1e:ed:49:cd:e7:16:86:5a:14:d9:12:59:97:27:
cb:c9:8f:62:43:20:bf:06:43:77:43:bc:96:e6:73:
bd:77:c1:6d:3e:24:0d:0b:94:b8:47:db:8b:1c:3e:
a2:7d:30:d0:9c:b7:73:d2:6c:63:8a:5c:93:ac:92:
53:60:00:1b:71:f8:2c:6b:2d:af:54:73:03:f9:f5:
71:98:0d:a7:8c:25:97:e8:ce:53:7c:4f:0a:b7:ac:
97:a3:22:e1:49:24:99:8e:b6:12:43:99:69:42:bf:
4f:67:25:32:b9:8f:e6:46:92:9f:fd:62:fe:1a:61:
f1:57:7d:e4:e8:a0:42:ec:3d:db:e2:73:76:3c:77:
33:af:5d:6a:57:90:52:42:f6:97:4c:4c:ad:fc:12:
cc:70:51:7e:d4:43:c6:22:82:3d:95:85:82:c4:cd:
1c:b3:b4:91:1b:34:89:97:e8:0d:97:12:20:ce:5e:
ec:47:a2:77:1a:a9:50:eb:72:71:5c:ea:da:ae:f4:
10:59:7f:a4:4f:8d:b2:6a:ff:90:20:fa:04:31:03:
59:e6:9a:87:f2:11:79:d8:f5:ce:d4:03:c8:c6:e9:
59:d5:f5:2c:45:f6:ef:e4:90:31:25:9d:9a:1f:c6:
cc:6c:65:b0:88:a5:8c:7d:05:8a:70:bf:e9:46:a3:
06:f3:98:a9:bd:73:fa:dc:9f:5c:86:00:51:10:3f:
b2:69:5f:ab:f1:e7:e8:ab:42:9d:2c:7c:d0:1d:28:
c9:39:e5:40:a7:bc:cc:cc:93:08:31:7e:21:be:70:
4a:14:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:9E:C5:BF:18:8E:9D:95:D7:84:BB:4E:66:39:1E:DF:23:E7:88:6B
X509v3 Authority Key Identifier:
keyid:F3:44:AD:EB:A3:78:AC:CD:28:4B:34:BF:D0:8E:63:37:EF:9C:AC:F0
DirName:/CN=BVInternet RSA ROOT CA
serial:01

X509v3 Basic Constraints:
CA:TRUE
Signature Algorithm: sha512WithRSAEncryption
14:50:4f:23:ef:79:f4:48:24:04:4e:8f:71:33:a6:db:d8:f1:
b5:f3:e0:02:ea:45:13:0a:70:b6:86:a8:fc:41:25:45:b7:bf:
c9:f5:1d:41:3f:76:f9:1f:6f:01:85:14:53:6e:48:bc:9e:de:
96:12:1d:db:dd:38:20:e9:7d:92:ee:68:95:de:fd:d1:9f:85:
09:7a:71:fa:2c:e5:46:60:56:95:2d:08:cb:37:6f:98:15:c9:
47:a1:c8:cf:d6:cc:e8:fb:47:f7:b7:eb:c2:44:05:04:e3:5c:
f9:bb:bb:63:78:6a:b5:c4:4c:ab:f3:e8:ba:c0:a9:d6:2f:f9:
63:55:1f:95:a5:45:27:80:44:8f:69:ef:39:d3:15:c4:3f:6f:
34:2a:a5:3b:a9:ff:60:03:5c:09:13:28:84:5a:b6:8e:ab:98:
42:ed:81:12:73:d2:d1:f9:ea:3f:70:7d:40:f6:5c:15:aa:87:
63:c4:ac:8d:b3:5e:79:33:85:a5:89:e4:f6:02:7c:16:86:48:
82:4f:9f:46:c3:ff:e5:ff:89:89:b2:74:ec:77:13:70:71:af:
6a:f5:29:88:a1:27:76:86:b4:86:ac:db:71:d5:f5:78:41:f3:
51:26:0c:fa:18:d4:d4:18:56:1a:e3:54:70:af:9d:92:50:91:
db:bb:59:fc:40:39:5c:c2:6c:b8:ea:e4:e5:a6:3e:b5:58:dc:
b5:6b:a7:ce:8d:b1:f6:25:d1:95:5e:38:a4:57:ff:4c:97:da:
df:ad:0c:95:82:13:99:e9:c4:a4:6b:48:da:3a:e9:4f:c7:38:
a4:5f:0b:37:8d:03:f5:97:7e:cd:bf:51:56:0a:11:02:fd:ad:
e1:0a:3c:3d:3a:54:66:ce:17:04:39:0b:da:db:3e:dd:9f:5d:
35:5d:e8:85:01:1a:89:00:78:f8:23:e7:b7:00:0c:d1:35:9b:
e5:bc:99:44:d4:c0:0e:09:b0:b8:de:5a:52:f0:d9:e7:06:a8:
c2:4c:67:d5:f2:08:7d:ab:59:58:7b:39:e7:fd:8a:6d:dd:d3:
12:ac:39:0d:a5:f2:4f:8d:81:12:7e:57:61:f7:55:b5:91:fc:
b5:51:43:f4:23:90:16:69:89:59:2c:8e:cd:07:36:62:ef:af:
31:63:50:a0:77:e9:14:47:94:26:16:e9:81:9d:23:55:00:70:
11:a6:83:ad:d3:2d:4a:85:e2:2d:f1:97:11:24:15:b7:c2:ec:
d6:88:9d:71:9a:3f:78:d9:eb:07:80:07:96:36:55:1b:db:27:
11:9a:6c:04:8c:1f:bf:3a:d4:9f:17:97:9a:fd:50:6c:dd:3f:
ba:35:43:bd:7b:83:65:70
-----BEGIN CERTIFICATE-----
MIIFujCCA6KgAwIBAgIEHhhg/zANBgkqhkiG9w0BAQ0FADAoMSYwJAYDVQQDEx1C
VkludGVybmV0IFNlY3VyZS1WUE4tVXNlciBDQTAeFw0yMjA0MjUwMzEwNTJaFw0y
MjA0MjcwMzEwNTJaMIGZMQswCQYDVQQGEwJNWTELMAkGA1UECBMCS0wxFDASBgNV
BAcTC0t1YWxhTHVtcHVyMR0wGwYDVQQKExRCT0xFSFZQTi1TZXJ2aWNlMDAwMTER
MA8GA1UECxMIVlBOVXNlcnMxETAPBgNVBAMTCHJlZHdvbGYxMSIwIAYJKoZIhvcN
AQkBFhNyZWR3b2xmMUByaGVpb3AuY29tMIICIjANBgkqhkiG9w0BAQEFAAOCAg8A
MIICCgKCAgEAzDnX0vmGLJDSq/eew4dQDxh+wkd9hUlpV58irwEJIZpalQSWeEzK


VhrjVHCvnZJQkdu7WfxAOVzCbLjq5OWmPrVY3LVrp86NsfYl0ZVeOKRX/0yX2t+t
DJWCE5npxKRrSNo66U/HOKRfCzeNA/WXfs2/UVYKEQL9reEKPD06VGbOFwQ5C9rb
Pt2fXTVd6IUBGokAePgj57cADNE1m+W8mUTUwA4JsLjeWlLw2ecGqMJMZ9XyCH2r
WVh7Oef9im3d0xKsOQ2l8k+NgRJ+V2H3VbWR/LVRQ/QjkBZpiVksjs0HNmLvrzFj
UKB36RRHlCYW6YGdI1UAcBGmg63TLUqF4i3xlxEkFbfC7NaInXGaP3jZ6weAB5Y2
VRvbJxGabASMH7861J8Xl5r9UGzdP7o1Q717g2Vw
-----END CERTIFICATE-----
</cert>
<key>
-----BEGIN PRIVATE KEY-----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pSysjgDLnyV+3Ce+LaAElzDN2oQw23EevtvJAcsZoQfPJO9/x7T0gZYBxOi+l8/F
z64SKoyLQD5qzdUVuAwlQ2IIEPUZHF8=
-----END PRIVATE KEY-----
</key>

Here's a screenshot of settings in dd-wrt and router model, build number, openvpn status. Like I said, status is blank all the time now. No info. Not sure which guide I followed. It was info saying where to paste the different keys and certs and settings from the .ovpn config file. Hopefully this helps. Thanks.
egc
DD-WRT Guru


Joined: 18 Mar 2014
Posts: 12837
Location: Netherlands

PostPosted: Mon Apr 25, 2022 14:41    Post subject: Reply with quote
Public client Certificate only set the text between and including:

-----BEGIN CERTIFICATE-----

-----END CERTIFICATE-----


It might even work then but I will have a closer look

I removed the larger parts of your keys Smile

_________________
Routers:Netgear R7000, R6400v1, R6400v2, EA6900 (XvortexCFE), E2000, E1200v1, WRT54GS v1.
Install guide R6400v2, R6700v3,XR300:https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=316399
Install guide R7800/XR500: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=320614
Forum Guide Lines (important read):https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=324087
egc
DD-WRT Guru


Joined: 18 Mar 2014
Posts: 12837
Location: Netherlands

PostPosted: Mon Apr 25, 2022 15:05    Post subject: Reply with quote
Settings below should work, the CA cert has a dual key you need to paste both keys so from the -----BEGIN CERTIFICATE----- of the first key until and including the -----END CERTIFICATE----- of the second key.

The client certificate only the Certificate as described in my previous post

Let me know if it works and if not a screenshot of the Status page

_________________
Routers:Netgear R7000, R6400v1, R6400v2, EA6900 (XvortexCFE), E2000, E1200v1, WRT54GS v1.
Install guide R6400v2, R6700v3,XR300:https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=316399
Install guide R7800/XR500: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=320614
Forum Guide Lines (important read):https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=324087
mng519
DD-WRT Novice


Joined: 04 Apr 2022
Posts: 24

PostPosted: Mon Apr 25, 2022 19:20    Post subject: Vpn Reply with quote
Here's the latest screenshot. Maybe it's because I didn't erase nvram before I flashed to dd-wrt from factory. That's when you set the factory stock firmware back to defaults, right? Could that cause the bugs I'm experiencing? How can I back track and correctly flash if that is what the problem is? Thanks.
egc
DD-WRT Guru


Joined: 18 Mar 2014
Posts: 12837
Location: Netherlands

PostPosted: Mon Apr 25, 2022 19:27    Post subject: Reply with quote
The static key must go in the TLS key box NOT in the static key box
_________________
Routers:Netgear R7000, R6400v1, R6400v2, EA6900 (XvortexCFE), E2000, E1200v1, WRT54GS v1.
Install guide R6400v2, R6700v3,XR300:https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=316399
Install guide R7800/XR500: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=320614
Forum Guide Lines (important read):https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=324087
mng519
DD-WRT Novice


Joined: 04 Apr 2022
Posts: 24

PostPosted: Mon Apr 25, 2022 19:39    Post subject: Vpn Reply with quote
Thanks egc. Finally got a status log. Here it is.
egc
DD-WRT Guru


Joined: 18 Mar 2014
Posts: 12837
Location: Netherlands

PostPosted: Tue Apr 26, 2022 8:35    Post subject: Reply with quote
The client is authenticating this can take a while so just reboot and see what is happening, you can send the output of:
Code:
grep -i openvpn /var/log/messages

If it stops there maybe you are already authenticated from your windows PC or another appliance?

The newest Client setup guide has instructions how to translate a conf file (I used yours as an example of course while rendering the keys useless)

_________________
Routers:Netgear R7000, R6400v1, R6400v2, EA6900 (XvortexCFE), E2000, E1200v1, WRT54GS v1.
Install guide R6400v2, R6700v3,XR300:https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=316399
Install guide R7800/XR500: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=320614
Forum Guide Lines (important read):https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=324087
mng519
DD-WRT Novice


Joined: 04 Apr 2022
Posts: 24

PostPosted: Tue Apr 26, 2022 15:30    Post subject: vpn Reply with quote
Thanks egc. It stayed in AUTH forever. I rebooted, then the status was blank again. It's either stuck in AUTH or it shows nothing. Not sure why the config works no problem in the OpenVPN GUI, but not at all in dd-wrt. That's why I was suggesting there be a way for dd-wrt to just load the file the way OpenVPN GUI does. Oh well, guess it won't ever work.

Also, I don't know where to put that grep command. I tried in cmd and it said it was not a recognized command.
egc
DD-WRT Guru


Joined: 18 Mar 2014
Posts: 12837
Location: Netherlands

PostPosted: Tue Apr 26, 2022 15:36    Post subject: Reply with quote
No it actually works I personally tested it (I connected to Canada M247 good speed Smile

So you might look at the new Client setup guide and carefully redo your settings.

Cannot do it any more as I deleted your keys, so maybe it does not work any more but at least how it is described is the way to go.

_________________
Routers:Netgear R7000, R6400v1, R6400v2, EA6900 (XvortexCFE), E2000, E1200v1, WRT54GS v1.
Install guide R6400v2, R6700v3,XR300:https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=316399
Install guide R7800/XR500: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=320614
Forum Guide Lines (important read):https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=324087
Goto page 1, 2  Next Display posts from previous:    Page 1 of 2
Post new topic   Reply to topic    DD-WRT Forum Index -> Advanced Networking All times are GMT

Navigation

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You cannot download files in this forum