From DD-WRT Wiki

Jump to: navigation, search

How many OpenVPN clients can connect to the OpenVPN server on the WRT? I guess that OpenVPN uses a lot of CPU.


[edit] logging of openVPN

How can i see openvpn is working or see where its breaking up??

and does someone know how i can mount a samba share and where can i see that it is mounted??

[edit] I am getting an error that says Options error: Bad --mode parameter: server

When I run:

/tmp/myvpn --dev tap0 --tls-server --ca /tmp/ca.crt --cert /tmp/server.c rt --key /tmp/server.key --dh /tmp/dh1024.pem --comp-lzo --port 1194 --proto tcp -server --mode server --client-to-client --keepalive 15 60 --verb 3 --daemon

I get the following error: Options error: Bad --mode parameter: server Use --help for more information.

Thoughts? Thanks, Viper

[edit] OpenVPN w/new built 7/22

BS and developers has "....gimme a response if it works now. there is a brctl replacement inside with limited features like addif, addbr etc..."

Could someone else verify that OpenVPN server is working with the latest buit 07/22? I've upgraded but can't test from WAN.

History of OpenVPN - couldn't get OpenVPN working with any built after 06/15. Reported in the bugtracker.


[edit] Bad "--mode parameter: server"...

Dateline: 3-sept-2006 - All looks fine but on startup vpn won't start as server. Manually entering rcstartup info reveals the error being thrown is "bad --mode parameter: server". Per the OpenVPN site 2.0.x should support the "server" option. Running v23_sp1_vpn. in /tmp, if running "./myvpn --version" response indicates 2.0.x (I think it was 2.0.3 or 2.0.6 - not sure which at this pt.) Any ideas? Can email me at: bstack.ddwrt(at) Tnx!

(Edit on 5-sept-2006) - I got OpenVPN to work by removing "--mode server client-to-client" from the startup script. JStrauss then updated the config file. This new config file works for me in it's current form and includes the lines formerly offending. Thanks! Your efforts have resolved the issue. B.

(November 28, 2009) Working Routed Configuration. I have vpn routed between two clients and the server. Mode server is assumed and expanded to include tls-server same as server SUBNET NETMASK expand the same. Best to use tls-server with a ta.key for tls-auth. Client's use tls-client with both tls-remote SERVER NAME and tls-auth /tmp/ta.p em. For Static config you should use jffs and use !#/bin/sh to make the tunnels+ifconfig and route add with a sleep 5 mando fallowed by the call to the .conf.

[edit] vpnc

Many organizations use Cisco VPN and distribute their VPN setting in Cisco VPN .PCF files. There should be an easy way to use DD-WRT to access a VPN that is specified in a .PCF file

The Host key in PCF is the Server IP in the GUI but what about all the other settings? The kvpnc frontend for VPN clients allows to import PCF-files, maybe this helps, but as far as I understand OpenVPN is a completely different system then Cisco VPN?

Well, then probably vpnc should be used - has anyone tried to use vpnc at DD-WRT?

See for vpnc support in OpenWRT - looks like I have to switch to OpenWRT :-( -- Hendrik 02:50, 30 Nov 2006 (CET)

openvpn is different von vpnc. completelly different. but also much more flexible and more secure. the cisco vpn has several lacks and troubles with many routers. openvpn can simply tunnel through everything including http proxies