Question about VPN with WRT54GL 1.1

Discussion in 'Cisco/Linksys Wireless Routers' started by ralle123, Feb 3, 2012.

  1. ralle123

    ralle123 Networkin' Nut Member

    Hello,
    i have a question about configuring the WRT54GL as OVPN Client.
    I have installed the v1.27vpn3 and want to connect to the vpn vendor ovpn.to.

    The Vendor offers 5 files.

    clientxxx.key
    oVPNstatic.key
    ru2.ovpn.to.ovpn (configuration file)
    ovpnca.crt
    clientxxx.crt

    The configuration file:

    client
    proto udp
    auth SHA1
    dev tap
    remote 193.107.16.170 443
    remote-cert-tls server
    ns-cert-type server
    ca "oVPNca.crt"
    cert "client22292.crt"
    key "client22292.key"
    tls-auth "oVPNstatic.key" 1
    resolv-retry infinite
    nobind
    ping 5
    ping-restart 120
    comp-lzo
    cipher AES-256-CBC
    persist-key
    persist-tun
    mssfix 1450
    verb 4
    route-method exe
    route-delay 2
    script-security 2
    win-sys env

    My setttings:

    Basic:

    Interface Type: Tap
    Protocol: UDP
    Seradresse/Port: as shown in file
    Firewall: Automatic
    tls-auth: Bidirectional
    Server is on the same subnet: Yes

    Advanced:

    Pollintervall: 0
    Redirect internet traffic: no
    Accept DNS Configuration: Disabled
    Encryption cipher: AES-256CBC
    Compression: Enabled
    TLS Time: -1
    Connection Retry: 30

    Keys:

    Static Key: clientxxx.key
    Certificate Authority: ovpnca.crt (Text before Beginning of key removed?)
    Client Certificate: clientxxx.crt
    Clientkey: clientxxx.key

    I hit start server, but it doesn't work.

    Please help, i can not find my misstake.

    Thanks...
     
  2. ralle123

    ralle123 Networkin' Nut Member

    Feb 2 17:09:31 unknown user.warn kernel: nvram_commit(): end Feb 2 17:09:34 unknown user.info kernel: Universal TUN/TAP device driver 1.5 (C)1999-2002 Maxim Krasnyansky Feb 2 17:09:34 unknown user.info kernel: device tap11 entered promiscuous mode Feb 2 17:09:34 unknown user.info kernel: br0: port 3(tap11) entering learning state Feb 2 17:09:34 unknown user.info kernel: br0: port 3(tap11) entering forwarding state Feb 2 17:09:34 unknown user.info kernel: br0: topology change detected, propagating Feb 2 17:09:34 unknown daemon.err openvpn[559]: Options error: Unrecognized option or missing parameter(s) in config.ovpn:26: remote-cert-tls (2.1.1) Feb 2 17:09:34 unknown daemon.warn openvpn[559]: Use --help for more information. Feb 2 17:09:34 unknown user.info init[1]: VPN_LOG_ERROR: 311: Starting OpenVPN failed... Feb 2 17:09:35 unknown user.info kernel: br0: port 3(tap11) entering disabled state Feb 2 17:09:35 unknown user.info kernel: br0: port 3(tap11) entering disabled state Feb 2 17:09:47 unknown user.warn kernel: nvram_commit(): init Feb 2 17:09:49 unknown user.warn kernel: nvram_commit(): end Feb 2 17:09:56 unknown user.info kernel: Universal TUN/TAP device driver 1.5 (C)1999-2002 Maxim Krasnyansky Feb 2 17:09:56 unknown user.info kernel: device tap11 entered promiscuous mode Feb 2 17:09:56 unknown user.info kernel: br0: port 3(tap11) entering learning state Feb 2 17:09:56 unknown user.info kernel: br0: port 3(tap11) entering forwarding state Feb 2 17:09:56 unknown user.info kernel: br0: topology change detected, propagating Feb 2 17:09:56 unknown daemon.err openvpn[586]: Options error: If you use one of --cert or --key, you must use them both Feb 2 17:09:56 unknown daemon.warn openvpn[586]: Use --help for more information. Feb 2 17:09:56 unknown user.info init[1]: VPN_LOG_ERROR: 311: Starting OpenVPN failed... Feb 2 17:09:57 unknown user.info kernel: br0: port 3(tap11) entering disabled state Feb 2 17:09:57 unknown user.info kernel: br0: port 3(tap11) entering disabled state Feb 2 17:10:14 unknown user.warn kernel: nvram_commit(): init Feb 2 17:10:16 unknown user.warn kernel: nvram_commit(): end Feb 2 17:10:21 unknown user.info kernel: Universal TUN/TAP device driver 1.5 (C)1999-2002 Maxim Krasnyansky Feb 2 17:10:21 unknown user.info kernel: device tap11 entered promiscuous mode Feb 2 17:10:21 unknown user.info kernel: br0: port 3(tap11) entering learning state Feb 2 17:10:21 unknown user.info kernel: br0: port 3(tap11) entering forwarding state Feb 2 17:10:21 unknown user.info kernel: br0: topology change detected, propagating Feb 2 17:10:21 unknown daemon.err openvpn[613]: Options error: If you use one of --cert or --key, you must use them both Feb 2 17:10:21 unknown daemon.warn openvpn[613]: Use --help for more information. Feb 2 17:10:21 unknown user.info init[1]: VPN_LOG_ERROR: 311: Starting OpenVPN failed... Feb 2 17:10:22 unknown user.info kernel: br0: port 3(tap11) entering disabled state Feb 2 17:10:22 unknown user.info kernel: br0: port 3(tap11) entering disabled state Feb 2 17:11:01 unknown user.warn kernel: nvram_commit(): init Feb 2 17:11:02 unknown user.warn kernel: nvram_commit(): end Feb 2 17:11:07 unknown user.info kernel: Universal TUN/TAP device driver 1.5 (C)1999-2002 Maxim Krasnyansky Feb 2 17:11:07 unknown user.info kernel: device tap11 entered promiscuous mode Feb 2 17:11:07 unknown user.info kernel: br0: port 3(tap11) entering learning state Feb 2 17:11:07 unknown user.info kernel: br0: port 3(tap11) entering forwarding state Feb 2 17:11:07 unknown user.info kernel: br0: topology change detected, propagating Feb 2 17:11:08 unknown daemon.notice openvpn[640]: OpenVPN 2.1.1 mipsel-unknown-linux-gnu [SSL] [LZO2] built on Jan 31 2010 Feb 2 17:11:08 unknown daemon.warn openvpn[640]: WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info. Feb 2 17:11:08 unknown daemon.warn openvpn[640]: NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables Feb 2 17:11:08 unknown daemon.err openvpn[640]: Cannot load certificate file client.crt: error:0906D066:pEM routines:pEM_read_bio:bad end line: error:140AD009:SSL routines:SSL_CTX_use_certificate_file:missing asn1 eos Feb 2 17:11:08 unknown daemon.notice openvpn[640]: Exiting Feb 2 17:11:08 unknown user.info init[1]: VPN_LOG_ERROR: 311: Starting OpenVPN failed... Feb 2 17:11:08 unknown user.info kernel: br0: port 3(tap11) entering disabled state Feb 2 17:11:08 unknown user.info kernel: br0: port 3(tap11) entering disabled state
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice