DD-WRT OpenVPN Client to Raspberry PI OpenVPN Server error

Post new topic   Reply to topic    DD-WRT Forum Index -> Advanced Networking
Author Message
DaHai
DD-WRT Novice


Joined: 29 Sep 2014
Posts: 40

PostPosted: Mon Sep 29, 2014 9:52    Post subject: DD-WRT OpenVPN Client to Raspberry PI OpenVPN Server error Reply with quote
I have a Raspberry PI OpenVPN server built back in the US. I'm in China with a LinkSys E1550 wireless router running this build of DD-WRT

dd-wrt.v24-24118_NEWD-2_K2.6_big-nv60k

It is the newest build where wifi works.

The Raspberry PI OpenVPN Server is working properly as I have OpenVPN client for Windows and on Android connecting to it and working nicely.

However, through many trials and attempts I have yet to be able to get the DD-WRT OpenVPN client to connect to the Raspberry PI.

My set up is a little complex. The DD-WRT LinkSys E1550 configured with DHCP off and in Gateway mode. It is connected to port 4 of a LinkSys EA4500 and on the same sub-net of 10.254.22.xxx, both wireless routers have different IDs.

The reason I wish to do this is so that I can connect my Chromecast to the DD-wrt while other devices can connect to the EA4500 and all still be on the same network.

As I said, the Raspberry PI OpenVPN Server is the US is working properly as I can use it with OpenVPN Client on Android and Windows.

However, the DD-WRT OpenVPN client will not connect. The TLS negotiation times out.

Here is my client.opvn. Attached are the DD-WRT OpenVPN Client Log entries and configuration pages.

I just need some guidance on where to look for clues to the problem source. Thank you!

------------------------------------------------
Code:
client
dev tun
proto udp
remote xxx.xxx.xxx.xxx 1963
resolv-retry infinite
nobind
persist-key
persist-tun
mute-replay-warnings
ns-cert-type server
key-direction 1
cipher AES-128-CBC
comp-lzo
verb 1
mute 20

<ca>
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgIJAPrhZ4eGIzhNMA0GCSqGSIb3DQEBBQUAMIGfMQswCQYD
VQQGEwJVUzELMAkGA1UECBMCS1MxFTATBgNVBAcTDE92ZXJsYW5kUGFyazENMAsG
etc...
-----END CERTIFICATE-----
</ca>
<cert>
-----BEGIN CERTIFICATE-----
MIIFDTCCA/WgAwIBAgIBCTANBgkqhkiG9w0BAQUFADCBnzELMAkGA1UEBhMCVVMx
CzAJBgNVBAgTAktTMRUwEwYDVQQHEwxPdmVybGFuZFBhcmsxDTALBgNVBAoTBFRo
etc...
-----END CERTIFICATE-----
</cert>
<key>
-----BEGIN RSA PRIVATE KEY-----
Proc-Type: 4,ENCRYPTED
DEK-Info: DES-EDE3-CBC,EF220F15E0FC2823

Ek2mhACIx5SFvIEeDEOJqCIJk63tkzCjNh6A8HvX/vuOqQVf9M9FtlJOcDD2x/2G
1hw3dLOITO7/JkSvoyeuapkhBwOCsTv4Tonp8lk7IqGkMRhlxZ6KEXowhQ7Smpst
etc...
-----END RSA PRIVATE KEY-----
</key>
<tls-auth>
#
# 2048 bit OpenVPN static key
#
-----BEGIN OpenVPN Static key V1-----
37fa78178a09cfbaf2e124e8611e59c7
afd31259ee368a1a2319c2a8dc171c22
etc...
-----END OpenVPN Static key V1-----
</tls-auth>
------------------------------------------------------

I changed the port to 1963 to make it less obvious that its a VPN...

I can SSH to the Raspberry PI to look at logs and change things...if I just knew what to look for...
Sponsor
Per Yngve Berg
DD-WRT Guru


Joined: 13 Aug 2013
Posts: 6856
Location: Romerike, Norway

PostPosted: Mon Sep 29, 2014 19:32    Post subject: Reply with quote
Your Private Client Key is encrypted. Save it without a password.
DaHai
DD-WRT Novice


Joined: 29 Sep 2014
Posts: 40

PostPosted: Tue Sep 30, 2014 0:49    Post subject: Reply with quote
Note the "askpass" parameter in the config screen shot. This provides the password for the Private Key. This takes care of that concern.
DaHai
DD-WRT Novice


Joined: 29 Sep 2014
Posts: 40

PostPosted: Tue Sep 30, 2014 12:19    Post subject: Reply with quote
E1550 is BRICKED!!! HELP!!!

I loaded dd-wrt.v24-23204_NEWD-2_K2.6_big-nv60k.bin trying to find the latest version where WIFI worked and now my router is BRICKED!

Any way to unbrick it????

Help!
DaHai
DD-WRT Novice


Joined: 29 Sep 2014
Posts: 40

PostPosted: Tue Sep 30, 2014 14:19    Post subject: Reply with quote
I've tried re-flashing the e1550 dd-wrt version and the original Linksys rom using the instructions in the Peacock post. All I get is a power that flashes three times and then goes off.
Crap!!!
Sash
DD-WRT Guru


Joined: 20 Sep 2006
Posts: 17619
Location: Hesse/Germany

PostPosted: Mon Oct 13, 2014 21:52    Post subject: Reply with quote
1st upgrade

2nd china = GFW! no chance without scramble patch afaik

_________________
Forum Guidelines...How to get help
&
Forum Rules
&
RTFM/STFW
&
Throw some buzzwords into the WIKI search Exclamation
_________________
I'm NOT rude, just offer pure facts!
_________________
Atheros (TP-Link & Clones, etc ) debrick service in EU
_________________
Guide on HowTo be Safe, Secure and Protect Your Online Anonymity!
DaHai
DD-WRT Novice


Joined: 29 Sep 2014
Posts: 40

PostPosted: Fri Dec 19, 2014 1:45    Post subject: Upgraded - still doesn't work Reply with quote
I finally got the courage to brick my router (again) and installed the latest DD-WRT version:

dd-wrt.v24-25648_NEWD-2_K2.6_big-nv64k

Still does Not work. Same results as before.

BTW: I use OpenVPN to by Raspbian VPN Server in the U.S all the time through my Android phone and Windows PC. No problems in all - you don't need a 'scramble patch'
Display posts from previous:    Page 1 of 1
Post new topic   Reply to topic    DD-WRT Forum Index -> Advanced Networking All times are GMT

Navigation

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You cannot download files in this forum