Debian Split Tunneling - Issues in "*.ovpn" files

[VR-Punk]

hey,

i setup a PIA VPN split tunneling on a debian NAS and a ubuntu Notebook, and i have created a *.ovpn file with the official scripts of PIA VPN to create a manual connection on my ubuntu Notebook and the result is file called "standard.ovpn", which i like to use on my debian NAS with a software called Vopono which creates a PIA split tunnel via Openvpn, but the file "standard.ovpn" of the official PIA scripts is not compatible with *.ovpn files of Vopono.

I get this Error: Failed to extract remotes from "standard.ovpn" !!!

The official PIA "standard.ovpn"

client
dev tun06
resolv-retry infinite
nobind
persist-key
persist-tun
cipher aes-128-cbc
auth sha1
tls-client
remote-cert-tls server

auth-user-pass /opt/piavpn-manual/credentials
compress
verb 1
reneg-sec 0

<ca>
-----BEGIN CERTIFICATE-----
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
-----END CERTIFICATE-----
</ca>

disable-occ
script-security 2
up /opt/piavpn-manual/openvpn_up.sh
down /opt/piavpn-manual/openvpn_down.sh


The bash scripts called in the "standard.ovpn":

openvpn_up.sh:

#!/bin/bash
# Write gateway IP for reference
echo $route_vpn_gateway > /opt/piavpn-manual/route_info

openvpn_down.sh:

#!/bin/bash
# Remove process and route information when connection closes
rm -rf /opt/piavpn-manual/pia_pid /opt/pia-manual/route_info


The Vopono *.ovpn files:

client
dev tun
proto udp
remote swiss.privacy.network 1198
resolv-retry infinite
nobind
persist-key
persist-tun
cipher aes-128-cbc
auth sha1
tls-client
remote-cert-tls server

auth-user-pass
compress
verb 1
reneg-sec 0
<crl-verify>
-----BEGIN X509 CRL-----
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
58A==
-----END X509 CRL-----
</crl-verify>

<ca>
-----BEGIN CERTIFICATE-----
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
-----END CERTIFICATE-----
</ca>

disable-occ


The links to the Vopono and PIA scipts:

https://github.com/pia-foss/manual-connections

https://github.com/jamesmcm/vopono

[VR-Punk]

Update:

I was able to create a manuell connection to PIA VPN with their official scripts on my debian NAS, too ! But the result file "standard.ovpn" is also not compatible with the App Vopono, it is a pity !