No connection on some wifi? DNS?

This forum is for general conversation and user-user networking.

Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech

Post Reply
tez1982
OpenVpn Newbie
Posts: 1
Joined: Sat May 13, 2023 10:59 am

No connection on some wifi? DNS?

Post by tez1982 » Sat May 13, 2023 11:12 am

I've enabled OpenVPN on my Asus RT-AX82U router.

I've then exported the setup files to my android phone. Everything works fine over mobile data and home wifi.

On certain other wifi points (work, tescos, morrisons, holiday cottage). Its unable to connect, just says waiting for server.

If I manually change the setup to replace Asus's redirection with the IP of my router it all works fine.

My config file on my phone

Code: Select all

remote****My redirection service*****
float
nobind
proto udp
dev tun
sndbuf 0
rcvbuf 0
keepalive 10 30

# for OpenVPN 2.4 or older
comp-lzo yes
# for OpenVPN 2.4 or newer
;compress lzo

auth-user-pass
client
auth SHA1
cipher AES-128-CBC
remote-cert-tls server
<ca>
When it's successful I get the following setup from the server:

Code: Select all

May 13, 2023, 10:59:34] EVENT: GET_CONFIG
[May 13, 2023, 10:59:34] OPTIONS:
0 [route] [*******] [*******]
[vpn gateway] [500] 1 [redirect-gateway] [def1]
2 [dhcp-option] [DNS] [*****My routers internal IP*****] 3 [route] [****My routers internal IP****]
4 [block-outside-dns]
5 [route] [********]
6 [topology] [net30] 7 [ping] [10]
8 [ping-restart] [30] 9 [ifconfig] [******] [******]
10 [peer-id] [1]
[May 13, 2023, 10:59:34] PROTOCOL OPTIONS: cipher: AES-128-CBC
digest: SHA1
key-derivation: OpenVPN PRF compress: LZO_STUB
peer ID: 1
[May 13, 2023, 10:59:34] EVENT: ASSIGN_IP
[May 13, 2023, 10:59:34] Connected via tun
[May 13, 2023, 10:59:34] LZO-ASYM init swap=0 asym=1
[May 13, 2023, 10:59:34] Comp-stub init swap=0
[May 13 2023 10:59:241 EVENT CONNECTED

Any ideas why it only works on some wifi points?

AndroidPain
OpenVpn Newbie
Posts: 6
Joined: Mon May 15, 2023 1:57 pm

Re: No connection on some wifi? DNS?

Post by AndroidPain » Thu May 18, 2023 12:28 pm

Have you tried disabling the "route all traffic through the VPN option?". If that works then it looks like android is blocking the dns request.

knox36
OpenVpn Newbie
Posts: 1
Joined: Sat Jul 13, 2024 1:07 am

Re: No connection on some wifi? DNS?

Post by knox36 » Sat Jul 13, 2024 1:47 am

I have the same router and I do not know how to open a topic. My router is built with Openvpn and the authentication failed. I have try many firmwares. Here is the system log :

Jul 13 02:56:58 rc_service: httpd 5269:notify_rc stop_vpnc
Jul 13 02:57:03 rc_service: httpd 5269:notify_rc restart_vpnc
Jul 13 02:57:05 vpnclient5[10002]: WARNING: --keysize is DEPRECATED and will be removed in OpenVPN 2.6
Jul 13 02:57:05 vpnclient5[10002]: OpenVPN 2.4.12 arm-buildroot-linux-gnueabi [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Dec 13 2023
Jul 13 02:57:05 vpnclient5[10002]: library versions: OpenSSL 1.1.1t 7 Feb 2023, LZO 2.10
Jul 13 02:57:05 vpnclient5[10003]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Jul 13 02:57:05 vpnclient5[10003]: TCP/UDP: Preserving recently used remote address: [AF_INET]185.108.106.200:443
Jul 13 02:57:05 vpnclient5[10003]: Socket Buffers: R=[524288->524288] S=[524288->524288]
Jul 13 02:57:05 vpnclient5[10003]: UDP link local: (not bound)
Jul 13 02:57:05 vpnclient5[10003]: UDP link remote: [AF_INET]185.108.106.200:443
Jul 13 02:57:05 vpnclient5[10003]: TLS: Initial packet from [AF_INET]185.108.106.200:443, sid=16d99a0a fb1daf16
Jul 13 02:57:05 vpnclient5[10003]: VERIFY OK: depth=1, C=US, ST=FL, L=Winter Park, O=IPVanish, OU=IPVanish VPN, CN=IPVanish CA, emailAddress=support@ipvanish.com
Jul 13 02:57:05 vpnclient5[10003]: VERIFY X509NAME OK: C=US, ST=FL, L=Winter Park, O=IPVanish, OU=IPVanish VPN, CN=bod-c04.ipvanish.com, emailAddress=support@ipvanish.com
Jul 13 02:57:05 vpnclient5[10003]: VERIFY OK: depth=0, C=US, ST=FL, L=Winter Park, O=IPVanish, OU=IPVanish VPN, CN=bod-c04.ipvanish.com, emailAddress=support@ipvanish.com
Jul 13 02:57:06 vpnclient5[10003]: Control Channel: TLSv1.2, cipher SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA
Jul 13 02:57:06 vpnclient5[10003]: [bod-c04.ipvanish.com] Peer Connection Initiated with [AF_INET]185.108.106.200:443
Jul 13 02:57:07 vpnclient5[10003]: SENT CONTROL [bod-c04.ipvanish.com]: 'PUSH_REQUEST' (status=1)
Jul 13 02:57:07 vpnclient5[10003]: AUTH: Received control message: AUTH_FAILED
Jul 13 02:57:07 vpnclient5[10003]: SIGTERM[soft,auth-failure] received, process exiting
Jul 13 01:00:13 disk_monitor: Got SIGALRM...
Jul 13 03:18:08 rc_service: httpd 5269:notify_rc stop_vpnc
Jul 13 03:30:13 wlceventd: wlceventd_proc_event(685): eth5: Auth AC:74:B1:2B:1D:9E, status: Successful (0), rssi:0
Jul 13 03:30:13 wlceventd: wlceventd_proc_event(695): eth5: ReAssoc AC:74:B1:2B:1D:9E, status: Successful (0), rssi:-38
Jul 13 03:30:14 bsd: bsd: Sending act Frame to ac:74:b1:2b:1d:9e with transition target eth6 ssid c8:7f:54:12:22:ac
Jul 13 03:30:14 bsd: bsd: BSS Transit Response: ifname=eth5, event=156, token=2, status=5, mac=00:00:00:00:00:00
Jul 13 03:30:14 bsd: bsd: BSS Transit Response: STA reject
Jul 13 03:30:14 bsd: bsd: Skip STA:ac:74:b1:2b:1d:9e reject BSSID
Jul 13 03:31:35 wlceventd: wlceventd_proc_event(645): eth6: Deauth_ind AC:74:B1:2B:1D:9E, status: 0, reason: Disassociated due to inactivity (4), rssi:-29
Jul 13 03:33:16 wlceventd: wlceventd_proc_event(685): eth6: Auth AC:74:B1:2B:1D:9E, status: Successful (0), rssi:0
Jul 13 03:33:16 wlceventd: wlceventd_proc_event(695): eth6: ReAssoc AC:74:B1:2B:1D:9E, status: Successful (0), rssi:-29
Jul 13 03:33:16 wlceventd: wlceventd_proc_event(662): eth5: Disassoc AC:74:B1:2B:1D:9E, status: 0, reason: Disassociated because sending station is leaving (or has left) BSS (8), rssi:0
Jul 13 03:33:16 wlceventd: wlceventd_proc_event(662): eth5: Disassoc AC:74:B1:2B:1D:9E, status: 0, reason: Disassociated because sending station is leaving (or has left) BSS (8), rssi:0
Jul 13 03:39:58 rc_service: httpd 5269:notify_rc restart_vpnc
Jul 13 03:40:03 vpnclient5[16852]: WARNING: --keysize is DEPRECATED and will be removed in OpenVPN 2.6
Jul 13 03:40:03 vpnclient5[16852]: OpenVPN 2.4.12 arm-buildroot-linux-gnueabi [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Dec 13 2023
Jul 13 03:40:03 vpnclient5[16852]: library versions: OpenSSL 1.1.1t 7 Feb 2023, LZO 2.10
Jul 13 03:40:03 vpnclient5[16853]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Jul 13 03:40:03 vpnclient5[16853]: TCP/UDP: Preserving recently used remote address: [AF_INET]185.108.106.200:443
Jul 13 03:40:03 vpnclient5[16853]: Socket Buffers: R=[524288->524288] S=[524288->524288]
Jul 13 03:40:03 vpnclient5[16853]: UDP link local: (not bound)
Jul 13 03:40:03 vpnclient5[16853]: UDP link remote: [AF_INET]185.108.106.200:443
Jul 13 03:40:03 vpnclient5[16853]: TLS: Initial packet from [AF_INET]185.108.106.200:443, sid=bc15ec11 ce7ae79f
Jul 13 03:40:03 vpnclient5[16853]: VERIFY OK: depth=1, C=US, ST=FL, L=Winter Park, O=IPVanish, OU=IPVanish VPN, CN=IPVanish CA, emailAddress=support@ipvanish.com
Jul 13 03:40:03 vpnclient5[16853]: VERIFY X509NAME OK: C=US, ST=FL, L=Winter Park, O=IPVanish, OU=IPVanish VPN, CN=bod-c04.ipvanish.com, emailAddress=support@ipvanish.com
Jul 13 03:40:03 vpnclient5[16853]: VERIFY OK: depth=0, C=US, ST=FL, L=Winter Park, O=IPVanish, OU=IPVanish VPN, CN=bod-c04.ipvanish.com, emailAddress=support@ipvanish.com
Jul 13 03:40:05 vpnclient5[16853]: Control Channel: TLSv1.2, cipher SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA
Jul 13 03:40:05 vpnclient5[16853]: [bod-c04.ipvanish.com] Peer Connection Initiated with [AF_INET]185.108.106.200:443
Jul 13 03:40:06 vpnclient5[16853]: SENT CONTROL [bod-c04.ipvanish.com]: 'PUSH_REQUEST' (status=1)
Jul 13 03:40:06 vpnclient5[16853]: AUTH: Received control message: AUTH_FAILED
Jul 13 03:40:06 vpnclient5[16853]: SIGTERM[soft,auth-failure] received, process exiting

GrimaudJD
OpenVpn Newbie
Posts: 1
Joined: Tue Jul 30, 2024 3:11 pm

Re: No connection on some wifi? DNS?

Post by GrimaudJD » Tue Jul 30, 2024 3:57 pm

Bonjour,
J'ai configure OpenVPN sur un poste Windows 10. Je peux accéder a mes données via le tunnel VPN mais, je perd la connexion internet.
Merci de m'aider.

---------- server.ovpn ----------------

# Specify a port, a protocol and a device type
port 1194
proto udp
dev tun
# Specify paths to server certificates
ca "C:\\Program Files\\OpenVPN\\easy-rsa\\pki\\ca.crt"
cert "C:\\Program Files\\OpenVPN\\easy-rsa\\pki\\issued\\server.crt"
key "C:\\Program Files\\OpenVPN\\easy-rsa\\pki\\private\\server.key"
dh "C:\\Program Files\\OpenVPN\\easy-rsa\\pki\\dh.pem"
# Specify the settings of the IP network your VPN clients will get their IP addresses from
server 10.24.1.0 255.255.255.0
push "redirect-gateway def1"
# If you want to allow your clients to connect using the same key, enable the duplicate-cn option (not recommended)
# duplicate-cn
# TLS protection
tls-auth "C:\\Program Files\\OpenVPN\\easy-rsa\\pki\\ta.key" 0
cipher AES-256-GCM
# Other options
keepalive 20 60
persist-key
persist-tun
status "C:\\Program Files\\OpenVPN\\log\\status.log"
log "C:\\Program Files\\OpenVPN\\log\\openvpn.log"
verb 3

------------ client.ovpn --------------

client
dev tun
proto udp
remote your_vpn_server_public_ip 1194
resolv-retry infinite
nobind
persist-key
persist-tun
ca ca.crt
cert client1.crt
key client1.key
remote-cert-tls server
tls-auth ta.key 1
cipher AES-256-GCM
connect-retry-max 25
verb 3

Post Reply