Sorry for my English, i'am Italian...
I've this problem with my Asus Router (merlin-firmware) with this setup:
Start Openvpn server on router, and export client.ovpn
Start Openvpn client on router, and import Airvpn.ovpn
Configured client for connect by iPhone
Connection Work
But I can't surf
If I ping any device on my network over ISP LTE over Openvpn connection this response
But I can't surf on internet with my Openvpn connection
My situation is
MY NETWORK -----> ROUTER <--redirect internet ALL traffic --> AIRVPN -->ipleak.net see ip&dns by AIrvpn> INTERNET OK[/color]
ME OUT HOME---->>>MY IPHONE ---> LTE ISP----> OPENVPN TO HOME ---->CONNECTION OK--->PING LAN OK--->[/color] NO SURF INTERNET[/color]
With ssh to my router I see this in /etc/openvpn/server1
config.ovpn
Server
Automatically generated configuration
daemon ovpn-server1
topology subnet
server 10.8.0.0 255.255.255.0
proto udp
port 1194
dev tun21
ncp-ciphers AES-128-GCM:AES-256-GCM:AES-128-CBC:AES-256-CBC
cipher AES-128-CBC
keepalive 15 60
verb 3
push "route 192.168.1.0 255.255.255.0 vpn_gateway 500"
client-config-dir ccd
client-to-client
duplicate-cn
push "redirect-gateway def1"
plugin /usr/lib/openvpn-plugin-auth-pam.so openvpn
ca ca.crt
dh dh.pem
cert server.crt
key server.key
status-version 2
status status 5
i've edit client ,and import profile to iPhone
client
client
dev tun
proto udp
remote myairdns.airdns.org #xxxx port choice on airvpn
float
ncp-ciphers AES-128-GCM:AES-256-GCM:AES-128-CBC:AES-256-CBC
cipher AES-128-CBC
keepalive 15 60
auth-user-pass
remote-cert-tls server
<ca>
#myca
</ca>
<cert>
#mycert
</cert>
<key>
#mykey
</key>
resolv-retry infinite
nobind
I've port farwarding in my area choice port to internal 1194 (openvpnserver)
On iPhone test network with App Net Alayzer :
(Onedrive photo album) https://1drv.ms/a/s!AhgCbyEqsT3yuTDtXsPqkwJfnpZ6 ---> The image "information" report no GATEWAY no IP
This is Openvpn client logs
Code: Select all
2019-02-12 10:39:34 ----- OpenVPN Start -----
OpenVPN core 3.2 ios arm64 64-bit PT_PROXY built on Oct 3 2018 06:35:04
2019-02-12 10:39:34 Frame=512/2048/512 mssfix-ctrl=1250
2019-02-12 10:39:34 UNUSED OPTIONS
6 [ncp-ciphers] [AES-128-GCM:AES-256-GCM:AES-128-CBC:AES-256-CBC]
14 [resolv-retry] [infinite]
15 [nobind]
2019-02-12 10:39:34 EVENT: RESOLVE
2019-02-12 10:39:35 Contacting [185.XXX.XXX.XX]:XXXXX/UDP via UDP
2019-02-12 10:39:35 EVENT: WAIT
2019-02-12 10:39:35 Connecting to [myairdnsname.airdns.org]:XXXXX (185.XXX.XXX.XX) via UDPv4
2019-02-12 10:39:35 EVENT: CONNECTING
2019-02-12 10:39:35 Tunnel Options:V4,dev-type tun,link-mtu 1557,tun-mtu 1500,proto UDPv4,cipher AES-128-CBC,auth SHA1,keysize 128,key-method 2,tls-client
2019-02-12 10:39:35 Creds: Username/Password
2019-02-12 10:39:35 Peer Info:
IV_GUI_VER=net.openvpn.connect.ios 3.0.2-894
IV_VER=3.2
IV_PLAT=ios
IV_NCP=2
IV_TCPNL=1
IV_PROTO=2
2019-02-12 10:39:35 VERIFY OK : depth=0
cert. version : 3
serial number : 01
issuer name : C=TW, ST=TW, L=Taipei, O=ASUS, CN=RT-AC68U, emailAddress=me@myhost.mydomain
subject name : C=TW, ST=TW, L=Taipei, O=ASUS, CN=RT-AC68U, emailAddress=me@myhost.mydomain
issued on : 2019-02-11 21:07:42
expires on : 2029-02-08 21:07:42
signed using : RSA with SHA-256
RSA key size : 1024 bits
basic constraints : CA=false
cert. type : SSL Server
key usage : Digital Signature, Key Encipherment
ext key usage : TLS Web Server Authentication
2019-02-12 10:39:36 SSL Handshake: TLSv1.2/TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384
2019-02-12 10:39:36 Session is ACTIVE
2019-02-12 10:39:36 EVENT: GET_CONFIG
2019-02-12 10:39:36 Sending PUSH_REQUEST to server...
2019-02-12 10:39:36 OPTIONS:
0 [route] [192.168.1.0] [255.255.255.0] [vpn_gateway] [500]
1 [redirect-gateway] [def1]
2 [route-gateway] [10.8.0.1]
3 [topology] [subnet]
4 [ping] [15]
5 [ping-restart] [60]
6 [ifconfig] [10.8.0.2] [255.255.255.0]
7 [peer-id] [0]
8 [cipher] [AES-128-GCM]
2019-02-12 10:39:36 PROTOCOL OPTIONS:
cipher: AES-128-GCM
digest: SHA1
compress: NONE
peer ID: 0
2019-02-12 10:39:36 EVENT: ASSIGN_IP
2019-02-12 10:39:36 NIP: preparing TUN network settings
2019-02-12 10:39:36 NIP: init TUN network settings with endpoint: 185.XXX.XXX.XX
2019-02-12 10:39:36 NIP: adding IPv4 address to network settings 10.8.0.2/255.255.255.0
2019-02-12 10:39:36 NIP: adding (included) IPv4 route 10.8.0.0/24
2019-02-12 10:39:36 NIP: adding (included) IPv4 route 192.168.1.0/24
2019-02-12 10:39:36 NIP: redirecting all IPv4 traffic to TUN interface
2019-02-12 10:39:36 NIP: adding DNS 8.8.8.8
2019-02-12 10:39:36 NIP: adding DNS 8.8.4.4
2019-02-12 10:39:36 Connected via NetworkExtensionTUN
2019-02-12 10:39:36 EVENT: CONNECTED username@myairdnsname.airdns.org:XXXX (185.XXX.XXX.XX) via /UDPv4 on NetworkExtensionTUN/10.8.0.2/ gw=[/]