Ubuntu client to Netgear router not working

Need help configuring your VPN? Just post here and you'll get that help.

Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech

Forum rules
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
Post Reply
JAlmaas
OpenVpn Newbie
Posts: 3
Joined: Thu Jun 22, 2017 7:22 am

Ubuntu client to Netgear router not working

Post by JAlmaas » Thu Jun 22, 2017 10:05 pm

Hi community,

I am trying to configure a VPN session from my small Atom computer running Lubuntu 16.04 (which will be sitting outside my home) to my Netgear R7500 router. Have been reading various forums and support sites for days now and still stuck. Any suggestion or link to solution is much appreciated.

The problem I see is the following:
Thu Jun 22 07:41:12 2017 us=329011 /sbin/ip route add 192.168.1.1/24 via 192.168.1.1
RTNETLINK answers: Invalid argument
Thu Jun 22 07:41:12 2017 us=335735 ERROR: Linux route add command failed: external program exited with error status: 2
Thu Jun 22 07:41:12 2017 us=336520 Initialization Sequence Completed
My server setup has limited tuning options. I can select TCP/UDP and define the port (I used 1194, which I believe is the standard OpenVPN port) and configured a DDNS service.

My client is using the standard Ubuntu package and the config file generated from the Netgear router. The only change I have made is to add the float option to prevent the client from discarding response from the local IP when requesting from global IP. Done mostly to test from my home.

My client config:
client
dev tap
proto udp
;dev-node NETGEAR-VPN
;push "route 192.168.1.0 255.255.255.0"
remote XXXXX.mynetgear.com 1194
resolv-retry infinite
nobind
persist-key
persist-tun
ca ca.crt
cert client.crt
key client.key
cipher AES-128-CBC
comp-lzo
verb 4
float
Output when running the command : sudo openvpn client.conf
Thu Jun 22 07:41:10 2017 us=467889 Current Parameter Settings:
Thu Jun 22 07:41:10 2017 us=468028 config = 'client.conf'
Thu Jun 22 07:41:10 2017 us=468077 mode = 0
Thu Jun 22 07:41:10 2017 us=468121 persist_config = DISABLED
Thu Jun 22 07:41:10 2017 us=468165 persist_mode = 1
Thu Jun 22 07:41:10 2017 us=468206 show_ciphers = DISABLED
Thu Jun 22 07:41:10 2017 us=468248 show_digests = DISABLED
Thu Jun 22 07:41:10 2017 us=468289 show_engines = DISABLED
Thu Jun 22 07:41:10 2017 us=468330 genkey = DISABLED
Thu Jun 22 07:41:10 2017 us=468372 key_pass_file = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=468430 show_tls_ciphers = DISABLED
Thu Jun 22 07:41:10 2017 us=468480 Connection profiles [default]:
Thu Jun 22 07:41:10 2017 us=468525 proto = udp
Thu Jun 22 07:41:10 2017 us=468568 local = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=468618 local_port = 0
Thu Jun 22 07:41:10 2017 us=468667 remote = 'XXXXXX.mynetgear.com'
Thu Jun 22 07:41:10 2017 us=468716 remote_port = 1194
Thu Jun 22 07:41:10 2017 us=468758 remote_float = ENABLED
Thu Jun 22 07:41:10 2017 us=468801 bind_defined = DISABLED
Thu Jun 22 07:41:10 2017 us=468848 bind_local = DISABLED
Thu Jun 22 07:41:10 2017 us=468892 connect_retry_seconds = 5
Thu Jun 22 07:41:10 2017 us=468939 connect_timeout = 10
Thu Jun 22 07:41:10 2017 us=468992 connect_retry_max = 0
Thu Jun 22 07:41:10 2017 us=469041 socks_proxy_server = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=469092 socks_proxy_port = 0
Thu Jun 22 07:41:10 2017 us=469140 socks_proxy_retry = DISABLED
Thu Jun 22 07:41:10 2017 us=469192 tun_mtu = 1500
Thu Jun 22 07:41:10 2017 us=469242 tun_mtu_defined = ENABLED
Thu Jun 22 07:41:10 2017 us=469296 link_mtu = 1500
Thu Jun 22 07:41:10 2017 us=469345 link_mtu_defined = DISABLED
Thu Jun 22 07:41:10 2017 us=469389 tun_mtu_extra = 32
Thu Jun 22 07:41:10 2017 us=469437 tun_mtu_extra_defined = ENABLED
Thu Jun 22 07:41:10 2017 us=469490 mtu_discover_type = -1
Thu Jun 22 07:41:10 2017 us=469540 fragment = 0
Thu Jun 22 07:41:10 2017 us=469591 mssfix = 1450
Thu Jun 22 07:41:10 2017 us=469641 explicit_exit_notification = 0
Thu Jun 22 07:41:10 2017 us=469691 Connection profiles END
Thu Jun 22 07:41:10 2017 us=469741 remote_random = DISABLED
Thu Jun 22 07:41:10 2017 us=469792 ipchange = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=469841 dev = 'tap'
Thu Jun 22 07:41:10 2017 us=469892 dev_type = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=469942 dev_node = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=469993 lladdr = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=470044 topology = 1
Thu Jun 22 07:41:10 2017 us=470093 tun_ipv6 = DISABLED
Thu Jun 22 07:41:10 2017 us=470143 ifconfig_local = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=470193 ifconfig_remote_netmask = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=470244 ifconfig_noexec = DISABLED
Thu Jun 22 07:41:10 2017 us=470294 ifconfig_nowarn = DISABLED
Thu Jun 22 07:41:10 2017 us=470344 ifconfig_ipv6_local = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=470396 ifconfig_ipv6_netbits = 0
Thu Jun 22 07:41:10 2017 us=470447 ifconfig_ipv6_remote = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=470521 shaper = 0
Thu Jun 22 07:41:10 2017 us=470572 mtu_test = 0
Thu Jun 22 07:41:10 2017 us=470622 mlock = DISABLED
Thu Jun 22 07:41:10 2017 us=470672 keepalive_ping = 0
Thu Jun 22 07:41:10 2017 us=470723 keepalive_timeout = 0
Thu Jun 22 07:41:10 2017 us=470774 inactivity_timeout = 0
Thu Jun 22 07:41:10 2017 us=470826 ping_send_timeout = 0
Thu Jun 22 07:41:10 2017 us=470877 ping_rec_timeout = 0
Thu Jun 22 07:41:10 2017 us=470927 ping_rec_timeout_action = 0
Thu Jun 22 07:41:10 2017 us=470977 ping_timer_remote = DISABLED
Thu Jun 22 07:41:10 2017 us=471028 remap_sigusr1 = 0
Thu Jun 22 07:41:10 2017 us=471078 persist_tun = ENABLED
Thu Jun 22 07:41:10 2017 us=471127 persist_local_ip = DISABLED
Thu Jun 22 07:41:10 2017 us=471176 persist_remote_ip = DISABLED
Thu Jun 22 07:41:10 2017 us=471228 persist_key = ENABLED
Thu Jun 22 07:41:10 2017 us=471277 passtos = DISABLED
Thu Jun 22 07:41:10 2017 us=471328 resolve_retry_seconds = 1000000000
Thu Jun 22 07:41:10 2017 us=471377 username = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=471427 groupname = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=471477 chroot_dir = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=471527 cd_dir = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=471577 writepid = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=471628 up_script = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=471678 down_script = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=471728 down_pre = DISABLED
Thu Jun 22 07:41:10 2017 us=471778 up_restart = DISABLED
Thu Jun 22 07:41:10 2017 us=471829 up_delay = DISABLED
Thu Jun 22 07:41:10 2017 us=471879 daemon = DISABLED
Thu Jun 22 07:41:10 2017 us=471929 inetd = 0
Thu Jun 22 07:41:10 2017 us=471978 log = DISABLED
Thu Jun 22 07:41:10 2017 us=472029 suppress_timestamps = DISABLED
Thu Jun 22 07:41:10 2017 us=472080 nice = 0
Thu Jun 22 07:41:10 2017 us=472131 verbosity = 4
Thu Jun 22 07:41:10 2017 us=472181 mute = 0
Thu Jun 22 07:41:10 2017 us=472230 gremlin = 0
Thu Jun 22 07:41:10 2017 us=472279 status_file = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=472330 status_file_version = 1
Thu Jun 22 07:41:10 2017 us=472379 status_file_update_freq = 60
Thu Jun 22 07:41:10 2017 us=472430 occ = ENABLED
Thu Jun 22 07:41:10 2017 us=472480 rcvbuf = 0
Thu Jun 22 07:41:10 2017 us=472531 sndbuf = 0
Thu Jun 22 07:41:10 2017 us=472581 mark = 0
Thu Jun 22 07:41:10 2017 us=472631 sockflags = 0
Thu Jun 22 07:41:10 2017 us=472681 fast_io = DISABLED
Thu Jun 22 07:41:10 2017 us=472731 lzo = 7
Thu Jun 22 07:41:10 2017 us=472781 route_script = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=472832 route_default_gateway = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=472882 route_default_metric = 0
Thu Jun 22 07:41:10 2017 us=472933 route_noexec = DISABLED
Thu Jun 22 07:41:10 2017 us=472984 route_delay = 0
Thu Jun 22 07:41:10 2017 us=473035 route_delay_window = 30
Thu Jun 22 07:41:10 2017 us=473086 route_delay_defined = DISABLED
Thu Jun 22 07:41:10 2017 us=473137 route_nopull = DISABLED
Thu Jun 22 07:41:10 2017 us=473187 route_gateway_via_dhcp = DISABLED
Thu Jun 22 07:41:10 2017 us=473238 max_routes = 100
Thu Jun 22 07:41:10 2017 us=473289 allow_pull_fqdn = DISABLED
Thu Jun 22 07:41:10 2017 us=473339 management_addr = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=473391 management_port = 0
Thu Jun 22 07:41:10 2017 us=473441 management_user_pass = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=473493 management_log_history_cache = 250
Thu Jun 22 07:41:10 2017 us=473544 management_echo_buffer_size = 100
Thu Jun 22 07:41:10 2017 us=473594 management_write_peer_info_file = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=473646 management_client_user = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=473697 management_client_group = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=473749 management_flags = 0
Thu Jun 22 07:41:10 2017 us=473800 shared_secret_file = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=473852 key_direction = 0
Thu Jun 22 07:41:10 2017 us=473903 ciphername_defined = ENABLED
Thu Jun 22 07:41:10 2017 us=473954 ciphername = 'AES-128-CBC'
Thu Jun 22 07:41:10 2017 us=474004 authname_defined = ENABLED
Thu Jun 22 07:41:10 2017 us=474055 authname = 'SHA1'
Thu Jun 22 07:41:10 2017 us=474105 prng_hash = 'SHA1'
Thu Jun 22 07:41:10 2017 us=474158 prng_nonce_secret_len = 16
Thu Jun 22 07:41:10 2017 us=474209 keysize = 0
Thu Jun 22 07:41:10 2017 us=474259 engine = DISABLED
Thu Jun 22 07:41:10 2017 us=474309 replay = ENABLED
Thu Jun 22 07:41:10 2017 us=474359 mute_replay_warnings = DISABLED
Thu Jun 22 07:41:10 2017 us=474410 replay_window = 64
Thu Jun 22 07:41:10 2017 us=474630 replay_time = 15
Thu Jun 22 07:41:10 2017 us=474685 packet_id_file = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=474737 use_iv = ENABLED
Thu Jun 22 07:41:10 2017 us=474787 test_crypto = DISABLED
Thu Jun 22 07:41:10 2017 us=474837 tls_server = DISABLED
Thu Jun 22 07:41:10 2017 us=474887 tls_client = ENABLED
Thu Jun 22 07:41:10 2017 us=474939 key_method = 2
Thu Jun 22 07:41:10 2017 us=474988 ca_file = 'ca.crt'
Thu Jun 22 07:41:10 2017 us=475039 ca_path = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=475088 dh_file = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=475138 cert_file = 'client.crt'
Thu Jun 22 07:41:10 2017 us=475190 extra_certs_file = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=475242 priv_key_file = 'client.key'
Thu Jun 22 07:41:10 2017 us=475292 pkcs12_file = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=475344 cipher_list = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=475377 tls_verify = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=475410 tls_export_cert = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=475444 verify_x509_type = 0
Thu Jun 22 07:41:10 2017 us=475477 verify_x509_name = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=475510 crl_file = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=475544 ns_cert_type = 0
Thu Jun 22 07:41:10 2017 us=475578 remote_cert_ku = 0
Thu Jun 22 07:41:10 2017 us=475611 remote_cert_ku = 0
Thu Jun 22 07:41:10 2017 us=475645 remote_cert_ku = 0
Thu Jun 22 07:41:10 2017 us=475678 remote_cert_ku = 0
Thu Jun 22 07:41:10 2017 us=475711 remote_cert_ku = 0
Thu Jun 22 07:41:10 2017 us=475744 remote_cert_ku = 0
Thu Jun 22 07:41:10 2017 us=475777 remote_cert_ku = 0
Thu Jun 22 07:41:10 2017 us=475810 remote_cert_ku = 0
Thu Jun 22 07:41:10 2017 us=475843 remote_cert_ku = 0
Thu Jun 22 07:41:10 2017 us=475876 remote_cert_ku = 0
Thu Jun 22 07:41:10 2017 us=475909 remote_cert_ku[i] = 0
Thu Jun 22 07:41:10 2017 us=475942 remote_cert_ku[i] = 0
Thu Jun 22 07:41:10 2017 us=475974 remote_cert_ku[i] = 0
Thu Jun 22 07:41:10 2017 us=476008 remote_cert_ku[i] = 0
Thu Jun 22 07:41:10 2017 us=476041 remote_cert_ku[i] = 0
Thu Jun 22 07:41:10 2017 us=476074 remote_cert_ku[i] = 0
Thu Jun 22 07:41:10 2017 us=476106 remote_cert_eku = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=476139 ssl_flags = 0
Thu Jun 22 07:41:10 2017 us=476172 tls_timeout = 2
Thu Jun 22 07:41:10 2017 us=476205 renegotiate_bytes = 0
Thu Jun 22 07:41:10 2017 us=476238 renegotiate_packets = 0
Thu Jun 22 07:41:10 2017 us=476271 renegotiate_seconds = 3600
Thu Jun 22 07:41:10 2017 us=476304 handshake_window = 60
Thu Jun 22 07:41:10 2017 us=476338 transition_window = 3600
Thu Jun 22 07:41:10 2017 us=476371 single_session = DISABLED
Thu Jun 22 07:41:10 2017 us=476404 push_peer_info = DISABLED
Thu Jun 22 07:41:10 2017 us=476437 tls_exit = DISABLED
Thu Jun 22 07:41:10 2017 us=476469 tls_auth_file = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=476502 pkcs11_protected_authentication = DISABLED
Thu Jun 22 07:41:10 2017 us=476535 pkcs11_protected_authentication = DISABLED
Thu Jun 22 07:41:10 2017 us=476568 pkcs11_protected_authentication = DISABLED
Thu Jun 22 07:41:10 2017 us=476601 pkcs11_protected_authentication = DISABLED
Thu Jun 22 07:41:10 2017 us=476634 pkcs11_protected_authentication = DISABLED
Thu Jun 22 07:41:10 2017 us=476668 pkcs11_protected_authentication = DISABLED
Thu Jun 22 07:41:10 2017 us=476701 pkcs11_protected_authentication = DISABLED
Thu Jun 22 07:41:10 2017 us=476735 pkcs11_protected_authentication = DISABLED
Thu Jun 22 07:41:10 2017 us=476768 pkcs11_protected_authentication = DISABLED
Thu Jun 22 07:41:10 2017 us=476802 pkcs11_protected_authentication = DISABLED
Thu Jun 22 07:41:10 2017 us=476835 pkcs11_protected_authentication = DISABLED
Thu Jun 22 07:41:10 2017 us=476868 pkcs11_protected_authentication = DISABLED
Thu Jun 22 07:41:10 2017 us=476901 pkcs11_protected_authentication = DISABLED
Thu Jun 22 07:41:10 2017 us=476935 pkcs11_protected_authentication = DISABLED
Thu Jun 22 07:41:10 2017 us=476968 pkcs11_protected_authentication = DISABLED
Thu Jun 22 07:41:10 2017 us=477001 pkcs11_protected_authentication = DISABLED
Thu Jun 22 07:41:10 2017 us=477036 pkcs11_private_mode = 00000000
Thu Jun 22 07:41:10 2017 us=477070 pkcs11_private_mode = 00000000
Thu Jun 22 07:41:10 2017 us=477104 pkcs11_private_mode = 00000000
Thu Jun 22 07:41:10 2017 us=477138 pkcs11_private_mode = 00000000
Thu Jun 22 07:41:10 2017 us=477171 pkcs11_private_mode = 00000000
Thu Jun 22 07:41:10 2017 us=477205 pkcs11_private_mode = 00000000
Thu Jun 22 07:41:10 2017 us=477239 pkcs11_private_mode = 00000000
Thu Jun 22 07:41:10 2017 us=477273 pkcs11_private_mode = 00000000
Thu Jun 22 07:41:10 2017 us=477306 pkcs11_private_mode = 00000000
Thu Jun 22 07:41:10 2017 us=477340 pkcs11_private_mode = 00000000
Thu Jun 22 07:41:10 2017 us=477374 pkcs11_private_mode = 00000000
Thu Jun 22 07:41:10 2017 us=477408 pkcs11_private_mode = 00000000
Thu Jun 22 07:41:10 2017 us=477442 pkcs11_private_mode = 00000000
Thu Jun 22 07:41:10 2017 us=477476 pkcs11_private_mode = 00000000
Thu Jun 22 07:41:10 2017 us=477509 pkcs11_private_mode = 00000000
Thu Jun 22 07:41:10 2017 us=477543 pkcs11_private_mode = 00000000
Thu Jun 22 07:41:10 2017 us=477576 pkcs11_cert_private = DISABLED
Thu Jun 22 07:41:10 2017 us=477610 pkcs11_cert_private = DISABLED
Thu Jun 22 07:41:10 2017 us=477643 pkcs11_cert_private = DISABLED
Thu Jun 22 07:41:10 2017 us=477676 pkcs11_cert_private = DISABLED
Thu Jun 22 07:41:10 2017 us=477709 pkcs11_cert_private = DISABLED
Thu Jun 22 07:41:10 2017 us=477742 pkcs11_cert_private = DISABLED
Thu Jun 22 07:41:10 2017 us=477775 pkcs11_cert_private = DISABLED
Thu Jun 22 07:41:10 2017 us=477808 pkcs11_cert_private = DISABLED
Thu Jun 22 07:41:10 2017 us=477841 pkcs11_cert_private = DISABLED
Thu Jun 22 07:41:10 2017 us=477875 pkcs11_cert_private = DISABLED
Thu Jun 22 07:41:10 2017 us=477908 pkcs11_cert_private = DISABLED
Thu Jun 22 07:41:10 2017 us=477941 pkcs11_cert_private = DISABLED
Thu Jun 22 07:41:10 2017 us=477974 pkcs11_cert_private = DISABLED
Thu Jun 22 07:41:10 2017 us=478007 pkcs11_cert_private = DISABLED
Thu Jun 22 07:41:10 2017 us=478039 pkcs11_cert_private = DISABLED
Thu Jun 22 07:41:10 2017 us=478073 pkcs11_cert_private = DISABLED
Thu Jun 22 07:41:10 2017 us=478107 pkcs11_pin_cache_period = -1
Thu Jun 22 07:41:10 2017 us=478140 pkcs11_id = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=478173 pkcs11_id_management = DISABLED
Thu Jun 22 07:41:10 2017 us=478210 server_network = 0.0.0.0
Thu Jun 22 07:41:10 2017 us=478246 server_netmask = 0.0.0.0
Thu Jun 22 07:41:10 2017 us=478294 server_network_ipv6 = ::
Thu Jun 22 07:41:10 2017 us=478329 server_netbits_ipv6 = 0
Thu Jun 22 07:41:10 2017 us=478365 server_bridge_ip = 0.0.0.0
Thu Jun 22 07:41:10 2017 us=478401 server_bridge_netmask = 0.0.0.0
Thu Jun 22 07:41:10 2017 us=478436 server_bridge_pool_start = 0.0.0.0
Thu Jun 22 07:41:10 2017 us=478491 server_bridge_pool_end = 0.0.0.0
Thu Jun 22 07:41:10 2017 us=478526 ifconfig_pool_defined = DISABLED
Thu Jun 22 07:41:10 2017 us=478562 ifconfig_pool_start = 0.0.0.0
Thu Jun 22 07:41:10 2017 us=478599 ifconfig_pool_end = 0.0.0.0
Thu Jun 22 07:41:10 2017 us=478634 ifconfig_pool_netmask = 0.0.0.0
Thu Jun 22 07:41:10 2017 us=478667 ifconfig_pool_persist_filename = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=478701 ifconfig_pool_persist_refresh_freq = 600
Thu Jun 22 07:41:10 2017 us=478735 ifconfig_ipv6_pool_defined = DISABLED
Thu Jun 22 07:41:10 2017 us=478770 ifconfig_ipv6_pool_base = ::
Thu Jun 22 07:41:10 2017 us=478805 ifconfig_ipv6_pool_netbits = 0
Thu Jun 22 07:41:10 2017 us=478839 n_bcast_buf = 256
Thu Jun 22 07:41:10 2017 us=478874 tcp_queue_limit = 64
Thu Jun 22 07:41:10 2017 us=478907 real_hash_size = 256
Thu Jun 22 07:41:10 2017 us=478940 virtual_hash_size = 256
Thu Jun 22 07:41:10 2017 us=478973 client_connect_script = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=479007 learn_address_script = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=479041 client_disconnect_script = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=479075 client_config_dir = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=479108 ccd_exclusive = DISABLED
Thu Jun 22 07:41:10 2017 us=479142 tmp_dir = '/tmp'
Thu Jun 22 07:41:10 2017 us=479175 push_ifconfig_defined = DISABLED
Thu Jun 22 07:41:10 2017 us=479212 push_ifconfig_local = 0.0.0.0
Thu Jun 22 07:41:10 2017 us=479248 push_ifconfig_remote_netmask = 0.0.0.0
Thu Jun 22 07:41:10 2017 us=479282 push_ifconfig_ipv6_defined = DISABLED
Thu Jun 22 07:41:10 2017 us=479318 push_ifconfig_ipv6_local = ::/0
Thu Jun 22 07:41:10 2017 us=479354 push_ifconfig_ipv6_remote = ::
Thu Jun 22 07:41:10 2017 us=479387 enable_c2c = DISABLED
Thu Jun 22 07:41:10 2017 us=479420 duplicate_cn = DISABLED
Thu Jun 22 07:41:10 2017 us=479453 cf_max = 0
Thu Jun 22 07:41:10 2017 us=479486 cf_per = 0
Thu Jun 22 07:41:10 2017 us=479520 max_clients = 1024
Thu Jun 22 07:41:10 2017 us=479554 max_routes_per_client = 256
Thu Jun 22 07:41:10 2017 us=479588 auth_user_pass_verify_script = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=479623 auth_user_pass_verify_script_via_file = DISABLED
Thu Jun 22 07:41:10 2017 us=479656 port_share_host = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=479690 port_share_port = 0
Thu Jun 22 07:41:10 2017 us=479722 client = ENABLED
Thu Jun 22 07:41:10 2017 us=479755 pull = ENABLED
Thu Jun 22 07:41:10 2017 us=479787 auth_user_pass_file = '[UNDEF]'
Thu Jun 22 07:41:10 2017 us=479824 OpenVPN 2.3.10 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [PKCS11] [MH] [IPv6] built on Feb 2 2016
Thu Jun 22 07:41:10 2017 us=479869 library versions: OpenSSL 1.0.2g 1 Mar 2016, LZO 2.08
Thu Jun 22 07:41:10 2017 us=480084 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Thu Jun 22 07:41:10 2017 us=481002 WARNING: file 'client.key' is group or others accessible
Thu Jun 22 07:41:10 2017 us=481387 LZO compression initialized
Thu Jun 22 07:41:10 2017 us=481549 Control Channel MTU parms [ L:1590 D:1212 EF:38 EB:0 ET:0 EL:3 ]
Thu Jun 22 07:41:10 2017 us=481638 Socket Buffers: R=[212992->212992] S=[212992->212992]
Thu Jun 22 07:41:10 2017 us=675904 Data Channel MTU parms [ L:1590 D:1450 EF:58 EB:143 ET:32 EL:3 AF:3/1 ]
Thu Jun 22 07:41:10 2017 us=676099 Local Options String: 'V4,dev-type tap,link-mtu 1590,tun-mtu 1532,proto UDPv4,comp-lzo,cipher AES-128-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Thu Jun 22 07:41:10 2017 us=676186 Expected Remote Options String: 'V4,dev-type tap,link-mtu 1590,tun-mtu 1532,proto UDPv4,comp-lzo,cipher AES-128-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Thu Jun 22 07:41:10 2017 us=676322 Local Options hash (VER=V4): 'b498be7c'
Thu Jun 22 07:41:10 2017 us=676468 Expected Remote Options hash (VER=V4): '26e19fc0'
Thu Jun 22 07:41:10 2017 us=676570 UDPv4 link local: [undef]
Thu Jun 22 07:41:10 2017 us=676672 UDPv4 link remote: [AF_INET]79.160.216.66:1194
Thu Jun 22 07:41:10 2017 us=680910 TLS: Initial packet from [AF_INET]192.168.1.1:1194, sid=c09abbd0 8ff333d7
Thu Jun 22 07:41:10 2017 us=740249 VERIFY OK: depth=1, C=TW, ST=TW, L=Taipei, O=netgear, OU=netgear, CN=netgear, name=changeme, emailAddress=mail@netgear.com
Thu Jun 22 07:41:10 2017 us=741823 VERIFY OK: depth=0, C=TW, ST=TW, L=Taipei, O=netgear, OU=netgear, CN=netgear, name=changeme, emailAddress=mail@netgear.com
Thu Jun 22 07:41:10 2017 us=801375 NOTE: Options consistency check may be skewed by version differences
Thu Jun 22 07:41:10 2017 us=801545 WARNING: 'version' is used inconsistently, local='version V4', remote='version V0 UNDEF'
Thu Jun 22 07:41:10 2017 us=801659 WARNING: 'dev-type' is present in local config but missing in remote config, local='dev-type tap'
Thu Jun 22 07:41:10 2017 us=801751 WARNING: 'link-mtu' is present in local config but missing in remote config, local='link-mtu 1590'
Thu Jun 22 07:41:10 2017 us=801852 WARNING: 'tun-mtu' is present in local config but missing in remote config, local='tun-mtu 1532'
Thu Jun 22 07:41:10 2017 us=801969 WARNING: 'comp-lzo' is present in local config but missing in remote config, local='comp-lzo'
Thu Jun 22 07:41:10 2017 us=802096 WARNING: 'cipher' is present in local config but missing in remote config, local='cipher AES-128-CBC'
Thu Jun 22 07:41:10 2017 us=802195 WARNING: 'auth' is present in local config but missing in remote config, local='auth SHA1'
Thu Jun 22 07:41:10 2017 us=802297 WARNING: 'keysize' is present in local config but missing in remote config, local='keysize 128'
Thu Jun 22 07:41:10 2017 us=802405 WARNING: 'key-method' is present in local config but missing in remote config, local='key-method 2'
Thu Jun 22 07:41:10 2017 us=802630 WARNING: 'tls-server' is present in local config but missing in remote config, local='tls-server'
Thu Jun 22 07:41:10 2017 us=803352 Data Channel Encrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
Thu Jun 22 07:41:10 2017 us=803454 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Thu Jun 22 07:41:10 2017 us=803535 Data Channel Decrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
Thu Jun 22 07:41:10 2017 us=803623 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Thu Jun 22 07:41:10 2017 us=803919 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
Thu Jun 22 07:41:10 2017 us=804061 [netgear] Peer Connection Initiated with [AF_INET]192.168.1.1:1194
Thu Jun 22 07:41:12 2017 us=320728 SENT CONTROL [netgear]: 'PUSH_REQUEST' (status=1)
Thu Jun 22 07:41:12 2017 us=323428 PUSH: Received control message: 'PUSH_REPLY,route-gateway dhcp,ping 10,ping-restart 120,route 192.168.1.1 255.255.255.0 192.168.1.1'
Thu Jun 22 07:41:12 2017 us=323703 OPTIONS IMPORT: timers and/or timeouts modified
Thu Jun 22 07:41:12 2017 us=323788 OPTIONS IMPORT: route options modified
Thu Jun 22 07:41:12 2017 us=323880 OPTIONS IMPORT: route-related options modified
Thu Jun 22 07:41:12 2017 us=324458 ROUTE_GATEWAY 192.168.1.1/255.255.255.0 IFACE=enxa01e0b011019 HWADDR=xx:xx:xx:xx:xx:xx [i](real adr replaced)

Thu Jun 22 07:41:12 2017 us=328498 TUN/TAP device tap1 opened
Thu Jun 22 07:41:12 2017 us=328682 TUN/TAP TX queue length set to 100
Thu Jun 22 07:41:12 2017 us=329011 /sbin/ip route add 192.168.1.1/24 via 192.168.1.1
RTNETLINK answers: Invalid argument
Thu Jun 22 07:41:12 2017 us=335735 ERROR: Linux route add command failed: external program exited with error status: 2
Thu Jun 22 07:41:12 2017 us=336520 Initialization Sequence Completed
Thu Jun 22 07:41:13 2017 us=320771 write to TUN/TAP : Input/output error (code=5)
Thu Jun 22 07:41:14 2017 us=320392 write to TUN/TAP : Input/output error (code=5)
Thu Jun 22 07:41:15 2017 us=262341 write to TUN/TAP : Input/output error (code=5)
Thu Jun 22 07:41:15 2017 us=262659 write to TUN/TAP : Input/output error (code=5)
Thu Jun 22 07:41:15 2017 us=319876 write to TUN/TAP : Input/output error (code=5)
Thu Jun 22 07:41:15 2017 us=881377 write to TUN/TAP : Input/output error (code=5)
Thu Jun 22 07:41:15 2017 us=911440 write to TUN/TAP : Input/output error (code=5)
Thu Jun 22 07:41:15 2017 us=911667 write to TUN/TAP : Input/output error (code=5)
Thu Jun 22 07:41:16 2017 us=320819 write to TUN/TAP : Input/output error (code=5)
Thu Jun 22 07:41:16 2017 us=760532 write to TUN/TAP : Input/output error (code=5)
Thu Jun 22 07:41:16 2017 us=761660 write to TUN/TAP : Input/output error (code=5)
Thu Jun 22 07:41:16 2017 us=761867 write to TUN/TAP : Input/output error (code=5)
Thu Jun 22 07:41:17 2017 us=310966 write to TUN/TAP : Input/output error (code=5)
Thu Jun 22 07:41:17 2017 us=320492 write to TUN/TAP : Input/output error (code=5)
Thu Jun 22 07:41:18 2017 us=320232 write to TUN/TAP : Input/output error (code=5)
Thu Jun 22 07:41:19 2017 us=319926 write to TUN/TAP : Input/output error (code=5)
^CThu Jun 22 07:41:19 2017 us=512459 event_wait : Interrupted system call (code=4)
Thu Jun 22 07:41:19 2017 us=513670 TCP/UDP: Closing socket
Thu Jun 22 07:41:19 2017 us=513899 Closing TUN/TAP interface
Thu Jun 22 07:41:19 2017 us=535385 SIGINT[hard,] received, process exiting

JAlmaas
OpenVpn Newbie
Posts: 3
Joined: Thu Jun 22, 2017 7:22 am

Re: Ubuntu client to Netgear router not working

Post by JAlmaas » Mon Jun 26, 2017 10:10 pm

Not a single idea? Somebody, please point me in the right direction.

TinCanTech
OpenVPN Protagonist
Posts: 11137
Joined: Fri Jun 03, 2016 1:17 pm

Re: Ubuntu client to Netgear router not working

Post by TinCanTech » Tue Jun 27, 2017 9:41 am

JAlmaas wrote:please point me in the right direction
JAlmaas wrote:Thu Jun 22 07:41:12 2017 us=329011 /sbin/ip route add 192.168.1.1/24 via 192.168.1.1
RTNETLINK answers: Invalid argument
Thu Jun 22 07:41:12 2017 us=335735 ERROR: Linux route add command failed: external program exited with error status: 2
The invalid argument is route 192.168.1.1 1 255.255.255.0 .. try 192.168.1.0

JAlmaas
OpenVpn Newbie
Posts: 3
Joined: Thu Jun 22, 2017 7:22 am

Re: Ubuntu client to Netgear router not working

Post by JAlmaas » Tue Jun 27, 2017 11:11 pm

Thanks TinCanTech, I read several forum posts and picked up on this as well. I first tried the other advise I picked up. Stay away from 192.168.0.0 networks as they may result in a conflict between client and server as they often are the same. So I reconfigured to use a 10.66.77.0 subnet instead. Still no luck.

I cannot understand where the statement
/sbin/ip route add 192.168.1.1/24 via 192.168.1.1
is coming from. Is the route passed from the server or is it picked up from the client config? It is not in the client.conf file. Can I override this and ignore this address and push the 192.168.1.0 instead?

Hope for more ideas.

TinCanTech
OpenVPN Protagonist
Posts: 11137
Joined: Fri Jun 03, 2016 1:17 pm

Re: Ubuntu client to Netgear router not working

Post by TinCanTech » Wed Jun 28, 2017 12:07 am


Post Reply