1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Question about VPN with WRT54GL 1.1

Discussion in 'Cisco/Linksys Wireless Routers' started by ralle123, Feb 3, 2012.

  1. ralle123

    ralle123 Networkin' Nut Member

    Hello,
    i have a question about configuring the WRT54GL as OVPN Client.
    I have installed the v1.27vpn3 and want to connect to the vpn vendor ovpn.to.

    The Vendor offers 5 files.

    clientxxx.key
    oVPNstatic.key
    ru2.ovpn.to.ovpn (configuration file)
    ovpnca.crt
    clientxxx.crt

    The configuration file:

    client
    proto udp
    auth SHA1
    dev tap
    remote 193.107.16.170 443
    remote-cert-tls server
    ns-cert-type server
    ca "oVPNca.crt"
    cert "client22292.crt"
    key "client22292.key"
    tls-auth "oVPNstatic.key" 1
    resolv-retry infinite
    nobind
    ping 5
    ping-restart 120
    comp-lzo
    cipher AES-256-CBC
    persist-key
    persist-tun
    mssfix 1450
    verb 4
    route-method exe
    route-delay 2
    script-security 2
    win-sys env

    My setttings:

    Basic:

    Interface Type: Tap
    Protocol: UDP
    Seradresse/Port: as shown in file
    Firewall: Automatic
    tls-auth: Bidirectional
    Server is on the same subnet: Yes

    Advanced:

    Pollintervall: 0
    Redirect internet traffic: no
    Accept DNS Configuration: Disabled
    Encryption cipher: AES-256CBC
    Compression: Enabled
    TLS Time: -1
    Connection Retry: 30

    Keys:

    Static Key: clientxxx.key
    Certificate Authority: ovpnca.crt (Text before Beginning of key removed?)
    Client Certificate: clientxxx.crt
    Clientkey: clientxxx.key

    I hit start server, but it doesn't work.

    Please help, i can not find my misstake.

    Thanks...
     
  2. ralle123

    ralle123 Networkin' Nut Member

    Feb 2 17:09:31 unknown user.warn kernel: nvram_commit(): end Feb 2 17:09:34 unknown user.info kernel: Universal TUN/TAP device driver 1.5 (C)1999-2002 Maxim Krasnyansky Feb 2 17:09:34 unknown user.info kernel: device tap11 entered promiscuous mode Feb 2 17:09:34 unknown user.info kernel: br0: port 3(tap11) entering learning state Feb 2 17:09:34 unknown user.info kernel: br0: port 3(tap11) entering forwarding state Feb 2 17:09:34 unknown user.info kernel: br0: topology change detected, propagating Feb 2 17:09:34 unknown daemon.err openvpn[559]: Options error: Unrecognized option or missing parameter(s) in config.ovpn:26: remote-cert-tls (2.1.1) Feb 2 17:09:34 unknown daemon.warn openvpn[559]: Use --help for more information. Feb 2 17:09:34 unknown user.info init[1]: VPN_LOG_ERROR: 311: Starting OpenVPN failed... Feb 2 17:09:35 unknown user.info kernel: br0: port 3(tap11) entering disabled state Feb 2 17:09:35 unknown user.info kernel: br0: port 3(tap11) entering disabled state Feb 2 17:09:47 unknown user.warn kernel: nvram_commit(): init Feb 2 17:09:49 unknown user.warn kernel: nvram_commit(): end Feb 2 17:09:56 unknown user.info kernel: Universal TUN/TAP device driver 1.5 (C)1999-2002 Maxim Krasnyansky Feb 2 17:09:56 unknown user.info kernel: device tap11 entered promiscuous mode Feb 2 17:09:56 unknown user.info kernel: br0: port 3(tap11) entering learning state Feb 2 17:09:56 unknown user.info kernel: br0: port 3(tap11) entering forwarding state Feb 2 17:09:56 unknown user.info kernel: br0: topology change detected, propagating Feb 2 17:09:56 unknown daemon.err openvpn[586]: Options error: If you use one of --cert or --key, you must use them both Feb 2 17:09:56 unknown daemon.warn openvpn[586]: Use --help for more information. Feb 2 17:09:56 unknown user.info init[1]: VPN_LOG_ERROR: 311: Starting OpenVPN failed... Feb 2 17:09:57 unknown user.info kernel: br0: port 3(tap11) entering disabled state Feb 2 17:09:57 unknown user.info kernel: br0: port 3(tap11) entering disabled state Feb 2 17:10:14 unknown user.warn kernel: nvram_commit(): init Feb 2 17:10:16 unknown user.warn kernel: nvram_commit(): end Feb 2 17:10:21 unknown user.info kernel: Universal TUN/TAP device driver 1.5 (C)1999-2002 Maxim Krasnyansky Feb 2 17:10:21 unknown user.info kernel: device tap11 entered promiscuous mode Feb 2 17:10:21 unknown user.info kernel: br0: port 3(tap11) entering learning state Feb 2 17:10:21 unknown user.info kernel: br0: port 3(tap11) entering forwarding state Feb 2 17:10:21 unknown user.info kernel: br0: topology change detected, propagating Feb 2 17:10:21 unknown daemon.err openvpn[613]: Options error: If you use one of --cert or --key, you must use them both Feb 2 17:10:21 unknown daemon.warn openvpn[613]: Use --help for more information. Feb 2 17:10:21 unknown user.info init[1]: VPN_LOG_ERROR: 311: Starting OpenVPN failed... Feb 2 17:10:22 unknown user.info kernel: br0: port 3(tap11) entering disabled state Feb 2 17:10:22 unknown user.info kernel: br0: port 3(tap11) entering disabled state Feb 2 17:11:01 unknown user.warn kernel: nvram_commit(): init Feb 2 17:11:02 unknown user.warn kernel: nvram_commit(): end Feb 2 17:11:07 unknown user.info kernel: Universal TUN/TAP device driver 1.5 (C)1999-2002 Maxim Krasnyansky Feb 2 17:11:07 unknown user.info kernel: device tap11 entered promiscuous mode Feb 2 17:11:07 unknown user.info kernel: br0: port 3(tap11) entering learning state Feb 2 17:11:07 unknown user.info kernel: br0: port 3(tap11) entering forwarding state Feb 2 17:11:07 unknown user.info kernel: br0: topology change detected, propagating Feb 2 17:11:08 unknown daemon.notice openvpn[640]: OpenVPN 2.1.1 mipsel-unknown-linux-gnu [SSL] [LZO2] built on Jan 31 2010 Feb 2 17:11:08 unknown daemon.warn openvpn[640]: WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info. Feb 2 17:11:08 unknown daemon.warn openvpn[640]: NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables Feb 2 17:11:08 unknown daemon.err openvpn[640]: Cannot load certificate file client.crt: error:0906D066:pEM routines:pEM_read_bio:bad end line: error:140AD009:SSL routines:SSL_CTX_use_certificate_file:missing asn1 eos Feb 2 17:11:08 unknown daemon.notice openvpn[640]: Exiting Feb 2 17:11:08 unknown user.info init[1]: VPN_LOG_ERROR: 311: Starting OpenVPN failed... Feb 2 17:11:08 unknown user.info kernel: br0: port 3(tap11) entering disabled state Feb 2 17:11:08 unknown user.info kernel: br0: port 3(tap11) entering disabled state
     

Share This Page