1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.
Dismiss Notice

Welcome To SNBForums

SNBForums is a community for anyone who wants to learn about or discuss the latest in wireless routers, network storage and the ins and outs of building and maintaining a small network.

If you'd like to post a question, simply register and have at it!

While you're at it, please check out SmallNetBuilder for product reviews and our famous Router Charts, Ranker and plenty more!

Vpn Client connection goes down for no reason

Discussion in 'Asuswrt-Merlin' started by kalu, Apr 17, 2018.

  1. kalu

    kalu New Around Here

    Joined:
    Apr 14, 2018
    Messages:
    4
    I have configured OpenVpn client for my router, but it connects and keep for awhile and goes down for no reason. do I need some more configuration to be done?

    following are in custom configuration

    tls-client
    remote-cert-tls server
    reneg-sec 0
    disable-occ
    cipher aes-128-cbc
    auth sha1
    auth-nocache
    nobind
    persist-key
    persist-tun

    Logs are follows

    Apr 17 07:43:20 ovpn-client1[9272]: OpenVPN 2.4.4 arm-unknown-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Mar 24 2018
    Apr 17 07:43:20 ovpn-client1[9272]: library versions: OpenSSL 1.0.2n 7 Dec 2017, LZO 2.08
    Apr 17 07:43:20 ovpn-client1[9273]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
    Apr 17 07:43:21 ovpn-client1[9273]: TCP/UDP: Preserving recently used remote address: [AF_INET]45.55.5.64:1194
    Apr 17 07:43:21 ovpn-client1[9273]: Socket Buffers: R=[122880->122880] S=[122880->122880]
    Apr 17 07:43:21 ovpn-client1[9273]: UDP link local: (not bound)
    Apr 17 07:43:21 ovpn-client1[9273]: UDP link remote: [AF_INET]45.55.5.64:1194
    Apr 17 07:43:21 ovpn-client1[9273]: TLS: Initial packet from [AF_INET]45.55.5.64:1194, sid=028602fb cf9a50f3
    Apr 17 07:43:21 ovpn-client1[9273]: VERIFY OK: depth=1, C=US, ST=NY, L=New York, O=Simplex Solutions Inc., OU=Vpn Unlimited, CN=server.vpnunlimitedapp.com, name=server.vpnunlimitedapp.com, [email protected]
    Apr 17 07:43:21 ovpn-client1[9273]: VERIFY KU OK
    Apr 17 07:43:21 ovpn-client1[9273]: Validating certificate extended key usage
    Apr 17 07:43:21 ovpn-client1[9273]: ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
    Apr 17 07:43:21 ovpn-client1[9273]: VERIFY EKU OK
    Apr 17 07:43:21 ovpn-client1[9273]: VERIFY OK: depth=0, CN=openvpn2.vpnunlimitedapp.com
    Apr 17 07:43:22 ovpn-client1[9273]: Control Channel: TLSv1.2, cipher TLSv1/SSLv3 ECDHE-RSA-AES256-GCM-SHA384, 4096 bit RSA
    Apr 17 07:43:22 ovpn-client1[9273]: [openvpn2.vpnunlimitedapp.com] Peer Connection Initiated with [AF_INET]45.55.5.64:1194
    Apr 17 07:43:23 ovpn-client1[9273]: SENT CONTROL [openvpn2.vpnunlimitedapp.com]: 'PUSH_REQUEST' (status=1)
    Apr 17 07:43:28 ovpn-client1[9273]: SENT CONTROL [openvpn2.vpnunlimitedapp.com]: 'PUSH_REQUEST' (status=1)
    Apr 17 07:43:28 ovpn-client1[9273]: PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1,dhcp-option DNS 10.200.0.1,reneg-sec 0,rcvbuf 262144,sndbuf 262144,ping 5,ping-exit 30,route 10.200.0.1,topology net30,ifconfig 10.200.0.94 10.200.0.93,peer-id 24,cipher AES-256-GCM'
    Apr 17 07:43:28 ovpn-client1[9273]: Options error: option 'reneg-sec' cannot be used in this context ([PUSH-OPTIONS])
    Apr 17 07:43:28 ovpn-client1[9273]: OPTIONS IMPORT: timers and/or timeouts modified
    Apr 17 07:43:28 ovpn-client1[9273]: OPTIONS IMPORT: --sndbuf/--rcvbuf options modified
    Apr 17 07:43:28 ovpn-client1[9273]: Socket Buffers: R=[122880->245760] S=[122880->245760]
    Apr 17 07:43:28 ovpn-client1[9273]: OPTIONS IMPORT: --ifconfig/up options modified
    Apr 17 07:43:28 ovpn-client1[9273]: OPTIONS IMPORT: route options modified
    Apr 17 07:43:28 ovpn-client1[9273]: OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
    Apr 17 07:43:28 ovpn-client1[9273]: OPTIONS IMPORT: peer-id set
    Apr 17 07:43:28 ovpn-client1[9273]: OPTIONS IMPORT: adjusting link_mtu to 1625
    Apr 17 07:43:28 ovpn-client1[9273]: OPTIONS IMPORT: data channel crypto options modified
    Apr 17 07:43:28 ovpn-client1[9273]: Data Channel: using negotiated cipher 'AES-256-GCM'
    Apr 17 07:43:28 ovpn-client1[9273]: Outgoing Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
    Apr 17 07:43:28 ovpn-client1[9273]: Incoming Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
    Apr 17 07:43:28 ovpn-client1[9273]: TUN/TAP device tun11 opened
    Apr 17 07:43:28 ovpn-client1[9273]: TUN/TAP TX queue length set to 100
    Apr 17 07:43:28 ovpn-client1[9273]: do_ifconfig, tt->did_ifconfig_ipv6_setup=0
    Apr 17 07:43:28 ovpn-client1[9273]: /usr/sbin/ip link set dev tun11 up mtu 1500
    Apr 17 07:43:28 ovpn-client1[9273]: /usr/sbin/ip addr add dev tun11 local 10.200.0.94 peer 10.200.0.93
    Apr 17 07:43:30 ovpn-client1[9273]: /usr/sbin/ip route add 45.55.5.64/32 via 192.168.0.1
    Apr 17 07:43:30 ovpn-client1[9273]: /usr/sbin/ip route add 0.0.0.0/1 via 10.200.0.93
    Apr 17 07:43:30 ovpn-client1[9273]: /usr/sbin/ip route add 128.0.0.0/1 via 10.200.0.93
    Apr 17 07:43:30 ovpn-client1[9273]: /usr/sbin/ip route add 10.200.0.1/32 via 10.200.0.93
    Apr 17 07:43:30 openvpn-routing: Configuring policy rules for client 1
    Apr 17 07:43:31 ovpn-client1[9273]: Initialization Sequence Completed
    Apr 17 08:00:00 syslog: VPN_LOG_NOTE: 90: VPN Client 1 already running...
    Apr 17 08:03:52 ovpn-client1[9273]: [openvpn2.vpnunlimitedapp.com] Inactivity timeout (--ping-exit), exiting
    Apr 17 08:03:53 ovpn-client1[9273]: vpnrouting.sh tun11 1500 1553 10.200.0.94 10.200.0.93 init
    Apr 17 08:03:53 openvpn-routing: Configuring policy rules for client 1
    Apr 17 08:03:53 ovpn-client1[9273]: /usr/sbin/ip route del 10.200.0.1/32
    Apr 17 08:03:53 ovpn-client1[9273]: ERROR: Linux route delete command failed: external program exited with error status: 2
    Apr 17 08:03:53 ovpn-client1[9273]: /usr/sbin/ip route del 45.55.5.64/32
    Apr 17 08:03:53 ovpn-client1[9273]: /usr/sbin/ip route del 0.0.0.0/1
    Apr 17 08:03:53 ovpn-client1[9273]: ERROR: Linux route delete command failed: external program exited with error status: 2
    Apr 17 08:03:53 ovpn-client1[9273]: /usr/sbin/ip route del 128.0.0.0/1
    Apr 17 08:03:53 ovpn-client1[9273]: ERROR: Linux route delete command failed: external program exited with error status: 2
    Apr 17 08:03:53 ovpn-client1[9273]: Closing TUN/TAP interface
    Apr 17 08:03:53 ovpn-client1[9273]: /usr/sbin/ip addr del dev tun11 local 10.200.0.94 peer 10.200.0.93
    Apr 17 08:03:53 ovpn-client1[9273]: SIGTERM[soft,ping-exit] received, process exiting
     
  2. Please support SNBForums! Just click on this link before you buy something from Amazon and we'll get a small commission on anything you buy. Thanks!
Please support SNBForums! Just click on this link before you buy something from Amazon and we'll get a small commission on anything you buy. Thanks!