I have my Asus router setup to use openVPN and the client.ovpn file works when loaded into my Android phone or tablet. When I load the same file into a GLinet GL-AR300M16-Ext pocket router it fails to work. I would like the pocket router to act as the VPN client. I have an app that won't run if it detects a VPN operating on my phone.
The pocket router VPN client will successfully connect to the server on the Asus but won't pass traffic. I know next to nothing about how this works. I've tried changing the advanced VPN settings in the router without success. My client.ovpn is attached. I removed what I believe to be any identifiable information. Anyone have any ideas?
I think it's 2.5.2 if I'm reading the syslog file correctly.
Removing LZO didn't fix it.
I tried the original file again and captured the logs from the asus. I see no errors. I'm going to remove identifiable information and post the log. Maybe it will help.
not true. i can connect to my OpenVPN server on the same subnet. my OpenVPN server just gives IP addresses in a different scope, but bridges back to my main network
Your client OVPN looks okay - There are a few settings extra on mine that probably don't matter. It depends on how your server is configured of course.
resolv-retry infinite
persist-key
persist-tun
comp-lzo no
# Set log file verbosity.
verb 3
# If a tls-auth key is used on the server
# then every client must also have the key.
tls-auth "[your cert directory]\ta.key" 1
Yeah I use Wireguard as well - I run both OpenVPN and Wireguard currently on/through my OPNSense firewall. Both work great but I am slowly getting off of OpenVPN as I think WG is simpler and faster.
Found this if anyone is interested.. from last year and you need a supported router.
Thanks everyone. I'm thinking it has to be something with the client in the GLinet router. I compared the syslogs from when my Android connects to the server and when the GLinet connects. There are some differences, including in the cipher. It also looks like the Android version is 3 something where the GLinet is at 2.5.2 (if I'm reading the logs correctly).
I looked at wireguard but I don't have anything left around here to run the server unless I leave the Linux laptop or my wife's old small palmtop (is that what is called?) Windows 8 machine. I really do like the low overhead of wireguard.
Oh well. I'll look at some of the differences from @erktrek . I was hoping it was something obvious.
You mentioned an Asus router - Is your router compatible with the AsusWRT firmware? If so then you can likely install that and try Wireguard OR maybe it will have some updated OpenVPN stuff.
It's on the latest version of the stock Asus firmware. The AC66U is no longer supported by WRT. That probably means I should replace the router but the thing is working (other than this) and is still being supported by Asus.
Maybe, for fun, I'll set up wireguard on one of these laptops to see how well it works. This whole project is only going to be a temporary need so I hate to invest a bunch of time or money into it.
Yeah I've never used it myself - I actually have 2 versions of WG running right now. One on my OPNsense Firewall and the other as a test on an oDroid N2 running Ubuntu Linux.
If you ever decide to incorporate a Raspberry PI then this works great:
If the chip shortage/supply chain ever gets sorted out i would take a look at a Pi. The prices I saw the other day seemed unreal from what I've seen in the past.
As for utilizing the NAS, I'm running a WD My cloud which was given to me as a gift. I don't utilize the WD software at all and access it using the VPN when in away. I don't think I could utilize it for a VPN or at least I don't recall reading about anyone using it. Everything I'm running is "consumer grade" stuff.
The instant guard feature that is part of the Asus firmware also wirks as a vpn. I use it with my RT-Ax3300. That's really probably the easiest as it baked in.
. I cheated and moved to wireguard. It's easier for noob like me.
