DD-WRT :: View topic - OpenVPN server not started

OpenVPN server not started

DD-WRT Forum Index -> Advanced Networking

View previous topic :: View next topic

Author

Message

SuperYago
DD-WRT Novice

Joined: 20 Sep 2009
Posts: 36

Posted: Mon Feb 10, 2014 9:45 Post subject: OpenVPN server not started

Hi!
I need to use openvpn server. After reading wiki I've made some settings but can't start openvpn server at all. Logs are empty, no openvpn process in memory, no tun interface created. Can anybody help me?
My router ASUS RT-N13U B1 running DD-WRT v24-sp2 (02/04/14) std - build 23503 (doesn't matter. tryed older builds and recommended release with the same result)

GUI VPN config page
[img]http://yadi.sk/d/82ZyzCiwHd2xJ[/img]
http://yadi.sk/d/82ZyzCiwHd2xJ

config file

Code:

secret /tmp/openvpn/static.key
keepalive 10 120
verb 11
syslog
writepid /var/run/openvpnd.pid
management 127.0.0.1 14
management-log-cache 100
topology subnet
script-security 2
port 1194
proto tcp-server
cipher bf-cbc
auth sha1
client-config-dir /tmp/openvpn/ccd
comp-lzo no
tls-server
duplicate-cn
client-to-client
push t-to-credirect-gateway def1cd
tcp-nodelay
tun-mtu 1400
mtu-disc yes
server 192.168.60.1 255.255.255.252
dev tun2

VPN status page

Code:

State Server: : Local Address: Remote Address: Client: : Local Address: Remote Address:

Status

Log Serverlog Clientlog

ifconfig

Code:

br0 Link encap:Ethernet HWaddr xxxxx
inet addr:192.168.50.1 Bcast:192.168.50.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:46874525 errors:0 dropped:83 overruns:0 frame:0
TX packets:35647537 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:37270723594 (34.7 GiB) TX bytes:13650336635 (12.7 GiB)
br0:0 Link encap:Ethernet HWaddr xxxxx
inet addr:169.254.255.1 Bcast:169.254.255.255 Mask:255.255.0.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
eth2 Link encap:Ethernet HWaddr xxxxx
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:92630569 errors:0 dropped:0 overruns:0 frame:0
TX packets:88309345 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:2683367321 (2.4 GiB) TX bytes:139423043 (132.9 MiB)
Interrupt:5
lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
UP LOOPBACK RUNNING MULTICAST MTU:16436 Metric:1
RX packets:474 errors:0 dropped:0 overruns:0 frame:0
TX packets:474 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:53996 (52.7 KiB) TX bytes:53996 (52.7 KiB)
ra0 Link encap:Ethernet HWaddr xxxxx 0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:4771504 errors:0 dropped:0 overruns:117 frame:117
TX packets:8491737 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:442086696 (421.6 MiB) TX bytes:3376415313 (3.1 GiB)
Interrupt:6
vlan1 Link encap:Ethernet HWaddr xxxxx
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:44264952 errors:0 dropped:0 overruns:0 frame:0
TX packets:29363041 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:38708749180 (36.0 GiB) TX bytes:3784368117 (3.5 GiB)
vlan2 Link encap:Ethernet HWaddr xxxxx
inet addr:109.60.244.29 Bcast:109.60.244.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:48365611 errors:0 dropped:32009 overruns:0 frame:0
TX packets:58946304 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:13846875139 (12.8 GiB) TX bytes:38886639802 (36.2 GiB)

dmesg fragment

Code:

<6>tun: Universal TUN/TAP device driver, 1.6
<6>tun: (C) 1999-2004 Max Krasnyansky

Sponsor

Sash
DD-WRT Guru

Joined: 20 Sep 2006
Posts: 17619
Location: Hesse/Germany

Posted: Mon Feb 10, 2014 22:40 Post subject:
log? _________________ Forum Guidelines...How to get help & Forum Rules & RTFM/STFW & Throw some buzzwords into the WIKI search _________________ I'm NOT rude, just offer pure facts! _________________ Atheros (TP-Link & Clones, etc ) debrick service in EU _________________ Guide on HowTo be Safe, Secure and Protect Your Online Anonymity!

SuperYago
DD-WRT Novice

Joined: 20 Sep 2009
Posts: 36

Posted: Tue Feb 11, 2014 5:39 Post subject:

Sash wrote:

log?

There is log file. It is empty.

Code:

#ls -l /var/log
drwx------ 4 root root 0 Jan 1 1970 cores
-rw-r--r-- 1 root root 0 Jan 1 1970 log.nmbd
-rw-r--r-- 1 root root 0 Jan 1 1970 log.smbd
-rw-r--r-- 1 root root 0 Jan 1 1970 messages
#cat /var/log/messages
#

All settings are made after "reset to factory defaults". No custom scripts, no optware installed.

Manual start has no effect too.

Code:

#openvpn --config /tmp/openvpn/openvpn.conf
#ls -l /var/log
drwx------ 4 root root 0 Jan 1 1970 cores
-rw-r--r-- 1 root root 0 Jan 1 1970 log.nmbd
-rw-r--r-- 1 root root 0 Jan 1 1970 log.smbd
-rw-r--r-- 1 root root 0 Jan 1 1970 messages
#cat /var/log/messages
#
#

Last try

Code:

#openvpn --how_can_i_run_it
Options error: Unrecognized option or missing parameter(s) in [CMD-LINE]:1: how_can_i_run_it (2.3.2)
Use --help for more information.
#cat /var/log/messages
#

At least openvpn is able to parse commands.

Code:

#openvpn --config /tmp/openvpn/openvpn.conf --log /tmp/openvpn/loglog
#ls -l /tmp/openvpn/loglog
-rw------- 1 root root 122 Feb 11 10:01 /tmp/openvpn/loglog
#cat /tmp/openvpn/loglog
Options error: --server and --secret cannot be used together (you must use SSL/TLS keys)
Use --help for more information.

There are problems
a) syslog is not working
b) GUI produces incompatible config options

Sash
DD-WRT Guru

Joined: 20 Sep 2006
Posts: 17619
Location: Hesse/Germany

Posted: Tue Feb 11, 2014 12:14 Post subject:
ntp problem. set your timeserver! _________________ Forum Guidelines...How to get help & Forum Rules & RTFM/STFW & Throw some buzzwords into the WIKI search _________________ I'm NOT rude, just offer pure facts! _________________ Atheros (TP-Link & Clones, etc ) debrick service in EU _________________ Guide on HowTo be Safe, Secure and Protect Your Online Anonymity!

SuperYago
DD-WRT Novice

Joined: 20 Sep 2009
Posts: 36

Posted: Tue Feb 11, 2014 15:55 Post subject:

Sash wrote:

ntp problem. set your timeserver!

It is set by default to enabled to use swisstime.ethz.ch and adjusted to my timezone. GUI header status "Time: 19:40:57 up 6:42," is as precise as possible.
Did you read?

Quote:

Options error: --server and --secret cannot be used together (you must use SSL/TLS keys)

dd-wrt is unable:
a. build right config file using static key. OpenVPN p2p mode option is not assumed by dd-wrt developers. Only OpenVPN server mode allowed by GUI configuration. So I wonder - why GUI Static key field is enabled?
b. If OpenVPN server failed to start then no OpenVPN logs saved using syslog option. It is explained by openvpn man pages - error messages will be directed to stderr and will not be logged.

Display posts from previous:

Page 1 of 1

DD-WRT Forum Index -> Advanced Networking

All times are GMT

Navigation

Jump to:

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You cannot download files in this forum

Log in

OpenVPN server not started

Quick Links

Log in