This is my first post but I have to say that I have been lurking here for sometime. I have found a ton of useful information and my current setup is largely due to the great information in these forums. So thank you already!
NOTE: this post is a little long, I know, but I like to be as thorough as possible in helping to diagnosis the problem.
I am having a slight problem though after examining some system logs. I am running a raspberry pi 3 with the latest raspbian OS. Here is my config file for my .ovpn connection that is called through crontab:
Code: Select all
client
dev tun
proto udp
script-security 2
route-up /etc/openvpn/route-up.sh
down /etc/openvpn/down.sh
remote chi.central.usa.torguardvpnaccess.com 1912
remote ny.east.usa.torguardvpnaccess.com 1912
remote la.west.usa.torguardvpnaccess.com 1912
remote lon.uk.torguardvpnaccess.com 1912
resolv-retry infinite
nobind
persist-key
persist-tun
ca ca.crt
tls-auth ta.key 1
auth SHA256
cipher AES-128-CBC
remote-cert-tls server
auth-user-pass user.txt
comp-lzo
verb 1
reneg-sec 0
fast-io
# Uncomment these directives if you have speed issues
;sndbuf 393216
;rcvbuf 393216
;push "sndbuf 393216"
;push "rcvbuf 393216"
Code: Select all
#!/bin/bash
sleep 5
sudo ip rule add from 192.168.0.134 table 10
sudo ip route add default via 192.168.0.1 table 10
sudo iptables -t nat -I POSTROUTING -o tun0 -j MASQUERADE
sudo iptables -A INPUT -d mydns.duckdns.org -p tcp --dport 22 -j ACCEPT
sudo iptables -A INPUT -d mydns.duckdns.org -j DROP
if ! pgrep -x "deluged" > /dev/null
then
sudo -u pi deluged
PID=$!
sleep 3
kill -2 $PID 2>/dev/null
fi
Code: Select all
Nov 12 18:41:02 raspberrypi openvpn[443]: WARNING: Failed running command (--route-up): external program exited with error status: 2
Nov 12 18:41:02 raspberrypi openvpn[443]: Initialization Sequence Completed
Code: Select all
pi@raspberrypi:~ $ sudo iptables -L
Chain INPUT (policy ACCEPT)
target prot opt source destination
Chain FORWARD (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
Code: Select all
pi@raspberrypi:~ $ sudo iptables -L
Chain INPUT (policy ACCEPT)
target prot opt source destination
ACCEPT tcp -- anywhere cpe-174-97-56-22.cinci.res.rr.com tcp dpt:ssh
DROP all -- anywhere cpe-174-97-56-22.cinci.res.rr.com
Chain FORWARD (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination