1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

tomato openvpn no internet

Discussion in 'Tomato Firmware' started by tomatouser12, Nov 13, 2013.

  1. tomatouser12

    tomatouser12 Reformed Router Member

    Hi everyone,

    Im having trouble getting my internet and local network to work on my android device using openvpn. I can connect just fine but my android phone does not get any connection to the internet. When I try to connect to 192.168.1.1 (address of my router) it does not work either. Do I need to adapt firewall rules (its set to auto) or do something serverside to push the connection? Any help would be greatly appreciated, I have been stuck for a few hours.


    My basic settings are:
    Start with WAN yes
    Interface TUN
    Protocol TCP
    Port 1194
    Firewall Automatic
    Authorization TLS
    Extra HMAC authorization Disabled
    VPN subnet/netmask 10.8.0.0 255.255.255.0


    My advanced settings are

    Poll Interval 0
    Push LAN to clients yes
    Direct clients to redirect Internet traffic yes
    Respond to DNS yes
    Advertise DNS to clients yes
    Encryption cipherUse Default
    Compression Adaptive
    TLS Renegotiation Time (in seconds, -1 for default) -1
    Manage Client-Specific Options yes
    Allow Client<->Client yes
    Allow Only These Clients no
    Custom Configuration no

    The keys are setup fine so I can connect

    This is shown by the status:

    Client List
    Common Name : Real Address : Virtual Address : Bytes Received : Bytes Sent : Connected Since
    jiayug3s : 178.226.81.99:43912 : 10.8.0.6 : 4432 : 4140 : Wed Nov 13 16:48:39 2013
    Routing Table
    Virtual Address : Common Name : Real Address : Last Ref
    10.8.0.6 : jiayug3s : 178.226.81.99:43912 : Wed Nov 13 16:48:42 2013

    General Statistics
    Name: Value
    Max bcast/mcast queue length : 0


    On the client side I connect using openvpn connect for android with the following connect.ovpn

    remote myipaddress
    port 1194
    client
    dev tun
    proto tcp
    resolv-retry infinite
    nobind
    persist-key
    persist-tun
    float
    ca ca.crt
    cert jiayug3s.crt
    key jiayug3s.key
    ns-cert-type server

    I dont know if it helps but this is the log that shows up after connecting:

    Nov 13 17:19:39 unknown daemon.notice openvpn[965]: jiayug3s/178.226.81.99:43986 [jiayug3s] Inactivity timeout (--ping-restart), restarting
    Nov 13 17:19:39 unknown daemon.notice openvpn[965]: jiayug3s/178.226.81.99:43986 SIGUSR1[soft,ping-restart] received, client-instance restarting
    Nov 13 17:19:39 unknown daemon.notice openvpn[965]: TCP/UDP: Closing socket
    Nov 13 17:19:43 unknown daemon.notice openvpn[965]: MULTI: multi_create_instance called
    Nov 13 17:19:43 unknown daemon.notice openvpn[965]: Re-using SSL/TLS context
    Nov 13 17:19:43 unknown daemon.notice openvpn[965]: LZO compression initialized
    Nov 13 17:19:43 unknown daemon.notice openvpn[965]: Control Channel MTU parms [ L:1544 D:140 EF:40 EB:0 ET:0 EL:0 ]
    Nov 13 17:19:43 unknown daemon.notice openvpn[965]: Data Channel MTU parms [ L:1544 D:1450 EF:44 EB:135 ET:0 EL:0 AF:3/1 ]
    Nov 13 17:19:43 unknown daemon.notice openvpn[965]: TCP connection established with 178.226.81.99:43995
    Nov 13 17:19:43 unknown daemon.notice openvpn[965]: Socket Buffers: R=[131072->131072] S=[131072->131072]
    Nov 13 17:19:43 unknown daemon.notice openvpn[965]: TCPv4_SERVER link local: [undef]
    Nov 13 17:19:43 unknown daemon.notice openvpn[965]: TCPv4_SERVER link remote: 178.226.81.99:43995
    Nov 13 17:19:43 unknown daemon.notice openvpn[965]: 178.226.81.99:43995 TLS: Initial packet from 178.226.81.99:43995, sid=83d83f49 1c6bd461
    Nov 13 17:19:46 unknown daemon.notice openvpn[965]: 178.226.81.99:43995 VERIFY OK: depth=1, <keydata>
    Nov 13 17:19:46 unknown daemon.notice openvpn[965]: 178.226.81.99:43995 VERIFY OK: depth=0, <keydata>
    Nov 13 17:19:46 unknown daemon.notice openvpn[965]: 178.226.81.99:43995 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
    Nov 13 17:19:46 unknown daemon.notice openvpn[965]: 178.226.81.99:43995 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
    Nov 13 17:19:46 unknown daemon.notice openvpn[965]: 178.226.81.99:43995 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
    Nov 13 17:19:46 unknown daemon.notice openvpn[965]: 178.226.81.99:43995 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
    Nov 13 17:19:46 unknown daemon.notice openvpn[965]: 178.226.81.99:43995 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
    Nov 13 17:19:46 unknown daemon.notice openvpn[965]: 178.226.81.99:43995 [jiayug3s] Peer Connection Initiated with 178.226.81.99:43995
    Nov 13 17:19:46 unknown daemon.notice openvpn[965]: jiayug3s/178.226.81.99:43995 MULTI: Learn: 10.8.0.6 -> jiayug3s/178.226.81.99:43995
    Nov 13 17:19:46 unknown daemon.notice openvpn[965]: jiayug3s/178.226.81.99:43995 MULTI: primary virtual IP for jiayug3s/178.226.81.99:43995: 10.8.0.6
    Nov 13 17:19:47 unknown daemon.notice openvpn[965]: jiayug3s/178.226.81.99:43995 PUSH: Received control message: 'PUSH_REQUEST'
    Nov 13 17:19:47 unknown daemon.notice openvpn[965]: jiayug3s/178.226.81.99:43995 SENT CONTROL [jiayug3s]: 'PUSH_REPLY,route 192.168.1.0 255.255.255.0,dhcp-option DNS 192.168.1.1,redirect-gateway def1,route 10.8.0.0 255.255.255.0,topology net30,ping 15,ping-restart 60,ifcon
     
    Last edited: Nov 13, 2013

Share This Page