Hi,
I am using DD-WRT on this device since 2-3 years.
I have a very custom script that among all the other things runs 2 OpenVPN processes.
The first to become a TUN client of another net.
The second to run a TAP based server.
Everything is ok up to version r42819.
I can use all versions older that r42819.
After that version, the firmware file is marked "GIGA" instead of "MEGA".
And from that version, if I have the 1st client openVPN active, as soon as another node connects to the second Openvpn, this process ends reporting "illegal instruction".
True for all versions after r42819.
Suggestions?
Is this a memory related problem? Should I open a bug?
Thank you
Francesco
Joined: 16 Nov 2015 Posts: 6446 Location: UK, London, just across the river..
Posted: Wed Sep 07, 2022 9:08 Post subject:
42819 this build is very old and full of security issues, since than lots of changes regarding VPN...
and its security/compatibility/use...as well lots of other security fixes and updated binaries...
I don't think anyone will discuss/support such an older build...with old VPN binaries...
on the newer builds you can use multiple client servers choice via GUI as well you can run server along with it...but in general OpenVPN needs router CPU power, to deliver decent performance...so dual core CPU is preferred/must...
if you update to a newer build, reset and manually configure your unit...do not load/use save files form a different builds...
than post your config here, either pic or scripts...all the details possible, so other Guru's will be able to see/understand your config and help you out...better _________________ Atheros
TP-Link WR740Nv1 ---DD-WRT 55630 WAP
TP-Link WR1043NDv2 -DD-WRT 55723 Gateway/DoT,Forced DNS,Ad-Block,Firewall,x4VLAN,VPN
TP-Link WR1043NDv2 -Gargoyle OS 1.15.x AP,DNS,QoS,Quotas
Qualcomm-Atheros
Netgear XR500 --DD-WRT 55779 Gateway/DoH,Forced DNS,AP Isolation,4VLAN,Ad-Block,Firewall,Vanilla
Netgear R7800 --DD-WRT 55819 Gateway/DoT,AD-Block,Forced DNS,AP&Net Isolation,x3VLAN,Firewall,Vanilla
Netgear R9000 --DD-WRT 55779 Gateway/DoT,AD-Block,AP Isolation,Firewall,Forced DNS,x2VLAN,Vanilla
Broadcom
Netgear R7000 --DD-WRT 55460 Gateway/SmartDNS/DoH,AD-Block,Firewall,Forced DNS,x3VLAN,VPN
NOT USING 5Ghz ANYWHERE
------------------------------------------------------
Stubby DNS over TLS I DNSCrypt v2 by mac913
Joined: 18 Mar 2014 Posts: 12915 Location: Netherlands
Posted: Wed Sep 07, 2022 10:55 Post subject:
Running an Openvpn client and Openvpn server should be possible by using the Gui on recent builds.
Although I never tried it with an Openvpn tap setup.
Issues, bugs, and patches cannot be retroactively applied to older builds. Please consider upgrading to the current release so that we know the current release works or what issues are in the current release. Thank you.
Hi,
as I wrote, I cannot use newer builds because all of them fail!
I am used to use recent software, I do not like to stay on old builds.
Yesterday, to be sure, I installed r50146: same behaviour!
I confirm any build generated after the one I use is named as "giga" and probably there is a memory problem.
Result: OpenVPN crashes, without any logs apart the message "Illegal instruction" in the standard output.
Any way to get out of this situation?
Thx Francesco
It would be helpful to have full system logs / dmesg output; it would also be helpful to have properly redacted / sanitized OpenVPN configurations to see if that is part of the issue. With changes in OpenVPN, there have been changes to configuration and usable options... _________________ "The woods are lovely, dark and deep,
But I have promises to keep,
And miles to go before I sleep,
And miles to go before I sleep." - Robert Frost
"I am one of the noticeable ones - notice me" - Dale Frances McKenzie Bozzio
The OP specifically mentions that he's running two OpenVPN instances. Since the GUI only suppprts *one*, I have to assume either a) one is running w/ the GUI, the other via a script, or b) both are running w/ scripts (perhaps the same script).
It would help to know the details here. There's a big difference between something changing wrt the GUI and affecting his script(s), vs. something confined exclusively to his scripts.
For all we know, the OP's scripts *always* had a problem, but due to changes in how OpenVPN is supported by the router over time, those problems have more recently become exposed.