Cannot access internet when connected via VPN client Tomato router

Discussion in 'Tomato Firmware' started by cmeth, Jul 25, 2013.

  1. cmeth

    cmeth Reformed Router Member

    I have installed OpenVpn Access Server 1.8.5 on my OpenVz Vps. When using the AS login page to download the windows connection client everything works fine - I connect successfully and can browse the internet using my VPS IP address.

    My issue is I have no internet access when trying to use the Open VPN client mode on my Linksys 2500 running Tomato 1.28 by Shibby. My ultimate goal is to be able to access US Tv shows (Netflix/Hulu perhaps) using my Apple TV. I think it is a router issue rather than the openvpn AS because I can ping and trace using the network tools in the router but not from my Win7 machine using CMD prompt (times out)

    I hope someone can point me in the right direction here, I think it's something simple I'm missing; this is all quite new to me but can learn fairly quickly.

    Below is some information which may or may not be useful.

    Client Config (downloaded from AS)
    server-poll-timeout 4
    remote <vps IP> 1194 udp
    remote <vps IP> 1194 udp
    remote <vps IP> 1194 tcp
    remote <vps IP> 1194 udp
    remote <vps IP> 1194 udp
    remote <vps IP> 1194 udp
    remote <vps IP> 1194 udp
    remote <vps IP> 1194 udp
    dev tun
    dev-type tun
    ns-cert-type server
    reneg-sec 604800
    sndbuf 100000
    rcvbuf 100000
    # NOTE: LZO commands are pushed by the Access Server at connect time.
    # NOTE: The below line doesn't disable LZO.
    comp-lzo no
    verb 3
    setenv PUSH_PEER_INFO
    Router Client Config Screens

    OpenVpn AS GUI Log (showing successful connection)

    Router status

    Trace Route from router

    Trace Route from Cmd Prompt on Win7 machine connected to router

    So above when running trace from cmd it hops to router address and times out. My understanding would be that the router is connected successfully as client to vpn but not routing the connected machines through. I would think this should be easy to fix and honestly I feel I should know what’s wrong but I’m not sure what to do next, any help would be appreciated. I have output from iptables on the server and can get any information requested if it will help but it seems to me not to be a server issue and rather an incorrect setup on the router.

    Any help would be greatly appreciated, thanks for taking the time to read my post.

  2. cmeth

    cmeth Reformed Router Member


    Seems when I was tinkering around with advanced settings trying to get the client operational I added unnecessary settings from various tutorials. When I looked at the advanced options today I decided to remove some of the settings I had enabled and removed the customer configuration - voila everything is working now! Below is the screenshot of the settings which work. (seems to me that when using access server you can skip the advanced settings all together.)


    The next step for me is to only route specific IP addresses through the VPN (such as Apple TV).. I suppose that will be for a different thread.
  3. kmartburrito

    kmartburrito LI Guru Member

    thank you very much for this! I've been pulling my hair out with a similar issue on my Bytesized hosting VPS server. I am not using OpenVPN AS, but just regular openvpn with TLS auth. My status page was showing numbers, so I knew I was close, but I wasn't able to get any internet on any device connected to my tomato router.

    After clearing out the advanced page like you suggested worked for you, it's now working for me as well. Thank you! This is on tomato shibby 121 on an Asus RT-N16
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice