Posted: Tue May 14, 2013 15:10 Post subject: Help: Private Internet Access openVPN - D-Link - DIR-632
[Moved from main Atheros Thread - Sorry for mistake]
I have been trying for over a month to getting PIA openVPN to work. I have tried a couple DD-WRT builds. Router works fine as standard router. PIA tech support has been unsuccessful in working with me. I tried a custom script they sent me and their posted technique of filling in VPN fields via GUI- both unsuccessful. One technician told me that copy/paste doesn't work from Windows for entering the CA.CRT file. I have noticed that the CA.CRT has extra line breaks the original file does not have when I copy/paste. Running a configuration script via SSH did not yield a working VPN.
There was as recent post on the Atheros Thread about having success with "VPN" using a certain DD-WRT build but no details were revealed. Google has not revealed much to me about openVPN and my router.
Please post here if anybody has openVPN working on their DIR-632, particularly if they use the Private Internet Access VPN service. Perhaps you could post the EXACT technique and build that worked for you. A Configuration Backup file from the router would also be useful - please redact your login / password.
Thanks for reply. Unfortunately I can't get this to work. The first thing the support people told me was that the technique wouldn't work and I had to SSH into the router and that there was something wrong with copy/paste of ca.crt from windows environment.....nothing so far has worked for me.
Posted: Thu May 16, 2013 1:41 Post subject: very puzzled. images attached.
I followed the instructions you linked to above, reflashed to the r20548 firmware referred to in the wiki dir-632. I tried syslogd enabled and disabled in case it did anything. it didn't. I cannot see log. Can you find my error in the attached images?
mh why have you services > pptp > openvpn selected AND do start it in STARTUP ? telnet into router and look, if openvpn is running. put also ifconfig. _________________ RT-N66U @ Build 25697M K3.10.63
TL-WR842ND v1 @ BS-build 23919 WDS AP
TL-WR841ND @ BS-build 23919 WDS Client
TL-WR841ND @ BS-build 23919 Client Bridge ( Routed )
I started (I think) with default DD-WRT router settings, set IP and time server then followed the private internet access instructions below. Do you think there are other settings active than these? Did I make error or is there a bug? should I go back to factory firmware and reinstall DD-WRT?
Private Internet Access Instructions: DD-WRT: VPN OpenVPN Setup
Access the Administration area and then go to Commands and finally Startup.
Enter the following:
echo username >> /tmp/password.txt
echo password >> /tmp/password.txt
/usr/bin/killall openvpn
/usr/sbin/openvpn --config /tmp/openvpncl/openvpn.conf --route-up /tmp/openvpncl/route-up.sh --down-pre /tmp/openvpncl/route-down.sh --daemon
Access the VPN tab found under the Services section.
Enable the OpenVPN Client.
Set the Server IP/name to us-texas.privateinternetaccess.com [*].
Set the Port to 1194.
Set the Tunnel Device to TUN.
Set the Tunnel Protocol to UDP.
Set the Encryption Cipher to Blowfish CBC (Default).
Set the Hash Algorithm to SHA1.
Set the nsCertType to unchecked.
Set the Advanced Options to Enabled.
Set Use LZO Compression to Enable.
Set NAT to Enable.
In the Additional Config enter the following:
auth-user-pass /tmp/password.txt
persist-key
persist-tun
tls-client
remote-cert-tls server
Copy and paste the contents of ca.crt found in our OpenVPN Config Files, into the CA cert field.