Openvpn client connected to server but no internet (over Airvpn)

Need help configuring your VPN? Just post here and you'll get that help.
Forum rules
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
Post Reply
Brax84
OpenVpn Newbie
Posts: 3
Joined: Tue Feb 12, 2019 10:25 am

Openvpn client connected to server but no internet (over Airvpn)

Post by Brax84 » Tue Feb 12, 2019 11:17 am

Hi all,
Sorry for my English, i'am Italian...
I've this problem with my Asus Router (merlin-firmware) with this setup:
Start Openvpn server on router, and export client.ovpn
Start Openvpn client on router, and import Airvpn.ovpn
Configured client for connect by iPhone
Connection Work
But I can't surf
If I ping any device on my network over ISP LTE over Openvpn connection this response
But I can't surf on internet with my Openvpn connection

My situation is

MY NETWORK -----> ROUTER <--redirect internet ALL traffic --> AIRVPN -->ipleak.net see ip&dns by AIrvpn> INTERNET OK[/color]

ME OUT HOME---->>>MY IPHONE ---> LTE ISP----> OPENVPN TO HOME ---->CONNECTION OK--->PING LAN OK--->[/color] NO SURF INTERNET[/color]

With ssh to my router I see this in /etc/openvpn/server1
config.ovpn

Server

Automatically generated configuration
daemon ovpn-server1
topology subnet
server 10.8.0.0 255.255.255.0
proto udp
port 1194
dev tun21
ncp-ciphers AES-128-GCM:AES-256-GCM:AES-128-CBC:AES-256-CBC
cipher AES-128-CBC
keepalive 15 60
verb 3
push "route 192.168.1.0 255.255.255.0 vpn_gateway 500"
client-config-dir ccd
client-to-client
duplicate-cn
push "redirect-gateway def1"
plugin /usr/lib/openvpn-plugin-auth-pam.so openvpn
ca ca.crt
dh dh.pem
cert server.crt
key server.key
status-version 2
status status 5



i've edit client ,and import profile to iPhone

client

client
dev tun
proto udp
remote myairdns.airdns.org #xxxx port choice on airvpn
float
ncp-ciphers AES-128-GCM:AES-256-GCM:AES-128-CBC:AES-256-CBC
cipher AES-128-CBC
keepalive 15 60
auth-user-pass
remote-cert-tls server
<ca>
#myca
</ca>
<cert>
#mycert
</cert>
<key>
#mykey
</key>
resolv-retry infinite
nobind


I've port farwarding in my area choice port to internal 1194 (openvpnserver)

On iPhone test network with App Net Alayzer :

(Onedrive photo album) https://1drv.ms/a/s!AhgCbyEqsT3yuTDtXsPqkwJfnpZ6 ---> The image "information" report no GATEWAY no IP

This is Openvpn client logs

Code: Select all

2019-02-12 10:39:34 ----- OpenVPN Start -----
OpenVPN core 3.2 ios arm64 64-bit PT_PROXY built on Oct  3 2018 06:35:04
2019-02-12 10:39:34 Frame=512/2048/512 mssfix-ctrl=1250
2019-02-12 10:39:34 UNUSED OPTIONS
6 [ncp-ciphers] [AES-128-GCM:AES-256-GCM:AES-128-CBC:AES-256-CBC] 
14 [resolv-retry] [infinite] 
15 [nobind] 
2019-02-12 10:39:34 EVENT: RESOLVE
2019-02-12 10:39:35 Contacting [185.XXX.XXX.XX]:XXXXX/UDP via UDP
2019-02-12 10:39:35 EVENT: WAIT
2019-02-12 10:39:35 Connecting to [myairdnsname.airdns.org]:XXXXX (185.XXX.XXX.XX) via UDPv4
2019-02-12 10:39:35 EVENT: CONNECTING
2019-02-12 10:39:35 Tunnel Options:V4,dev-type tun,link-mtu 1557,tun-mtu 1500,proto UDPv4,cipher AES-128-CBC,auth SHA1,keysize 128,key-method 2,tls-client
2019-02-12 10:39:35 Creds: Username/Password
2019-02-12 10:39:35 Peer Info:
IV_GUI_VER=net.openvpn.connect.ios 3.0.2-894
IV_VER=3.2
IV_PLAT=ios
IV_NCP=2
IV_TCPNL=1
IV_PROTO=2
2019-02-12 10:39:35 VERIFY OK : depth=0
cert. version    : 3
serial number    : 01
issuer name      : C=TW, ST=TW, L=Taipei, O=ASUS, CN=RT-AC68U, emailAddress=me@myhost.mydomain
subject name      : C=TW, ST=TW, L=Taipei, O=ASUS, CN=RT-AC68U, emailAddress=me@myhost.mydomain
issued  on        : 2019-02-11 21:07:42
expires on        : 2029-02-08 21:07:42
signed using      : RSA with SHA-256
RSA key size      : 1024 bits
basic constraints : CA=false
cert. type        : SSL Server
key usage        : Digital Signature, Key Encipherment
ext key usage    : TLS Web Server Authentication
2019-02-12 10:39:36 SSL Handshake: TLSv1.2/TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384
2019-02-12 10:39:36 Session is ACTIVE
2019-02-12 10:39:36 EVENT: GET_CONFIG
2019-02-12 10:39:36 Sending PUSH_REQUEST to server...
2019-02-12 10:39:36 OPTIONS:
0 [route] [192.168.1.0] [255.255.255.0] [vpn_gateway] [500] 
1 [redirect-gateway] [def1] 
2 [route-gateway] [10.8.0.1] 
3 [topology] [subnet] 
4 [ping] [15] 
5 [ping-restart] [60] 
6 [ifconfig] [10.8.0.2] [255.255.255.0] 
7 [peer-id] [0] 
8 [cipher] [AES-128-GCM] 
2019-02-12 10:39:36 PROTOCOL OPTIONS:
 cipher: AES-128-GCM
 digest: SHA1
 compress: NONE
 peer ID: 0
2019-02-12 10:39:36 EVENT: ASSIGN_IP
2019-02-12 10:39:36 NIP: preparing TUN network settings
2019-02-12 10:39:36 NIP: init TUN network settings with endpoint: 185.XXX.XXX.XX
2019-02-12 10:39:36 NIP: adding IPv4 address to network settings 10.8.0.2/255.255.255.0
2019-02-12 10:39:36 NIP: adding (included) IPv4 route 10.8.0.0/24
2019-02-12 10:39:36 NIP: adding (included) IPv4 route 192.168.1.0/24
2019-02-12 10:39:36 NIP: redirecting all IPv4 traffic to TUN interface
2019-02-12 10:39:36 NIP: adding DNS 8.8.8.8
2019-02-12 10:39:36 NIP: adding DNS 8.8.4.4
2019-02-12 10:39:36 Connected via NetworkExtensionTUN
2019-02-12 10:39:36 EVENT: CONNECTED username@myairdnsname.airdns.org:XXXX (185.XXX.XXX.XX) via /UDPv4 on NetworkExtensionTUN/10.8.0.2/ gw=[/]
Can you help me to configure the server ?
Last edited by Brax84 on Tue Feb 12, 2019 3:32 pm, edited 1 time in total.

User avatar
TinCanTech
OpenVPN Protagonist
Posts: 5571
Joined: Fri Jun 03, 2016 1:17 pm

Re: Openvpn client connected to server bu ton internet (over Airvpn)

Post by TinCanTech » Tue Feb 12, 2019 2:25 pm

Disable your connection to Airvpn and see what happens ..

Brax84
OpenVpn Newbie
Posts: 3
Joined: Tue Feb 12, 2019 10:25 am

Re: Openvpn client connected to server but no internet (over Airvpn)

Post by Brax84 » Tue Feb 12, 2019 3:40 pm

if I turn off air vpn everything works
if airvpn is on but is in restricted mode works
if air vpn is turned on in redirect ALL to vpn does not work internet
I only know the Openvpn server on router use 10.8.0.0
Airvpn in client on router see 10.4.5.X ..That’s the problem????(Airvpn use server 10.4...)?? Ideas?

User avatar
TinCanTech
OpenVPN Protagonist
Posts: 5571
Joined: Fri Jun 03, 2016 1:17 pm

Re: Openvpn client connected to server but no internet (over Airvpn)

Post by TinCanTech » Tue Feb 12, 2019 5:02 pm

What you need cannot be done with openvpn alone, you must use policy based routing under linux.

Brax84
OpenVpn Newbie
Posts: 3
Joined: Tue Feb 12, 2019 10:25 am

Re: Openvpn client connected to server but no internet (over Airvpn)

Post by Brax84 » Tue Feb 12, 2019 7:06 pm

Thanks for answer!
Can help me with setting?

With ssh session to my router see this:

Code: Select all

Brax84@DSL-AC68U-A608:/tmp/home/root# ip rule list
0:	from all lookup local 
32766:	from all lookup main 
32767:	from all lookup default 

Code: Select all

Brax84@DSL-AC68U-A608:/tmp/home/root# ip route
81.XXX.X.XX dev ppp0  proto kernel  scope link 
185.XXX.XXX.XX via 81.XXX.X.XX dev ppp0 
10.8.0.0/24 dev tun21  proto kernel  scope link  src 10.8.0.1 
192.168.1.0/24 dev br0  proto kernel  scope link  src 192.168.1.1 
10.4.136.0/24 dev tun11  proto kernel  scope link  src 10.4.136.224 
169.XXX.0.0/16 dev vlan3  proto kernel  scope link  src 169.XXX.XXX.XX 
127.0.0.0/8 dev lo  scope link 
0.0.0.0/1 via 10.4.136.1 dev tun11 
128.0.0.0/1 via 10.4.136.1 dev tun11 
default via 81.XXX.X.XX dev ppp0 

Post Reply