I am a noob
Installed openvpn
it created some certificate then changed my internal IP from 192.168.1.1 to some 10. Xxxxx
Now I get 500 internal service error when trying to log on ? How do I get back to my router ??
Not sure how how the installation of openvpn (server or client?) relates to the issue. Are you connecting to Foris | LuCI from an openvpn client?
That seems somewhat more likely related.
- which TOS version?
- which hardware platform?
- where/how did you change the settings?
- did you reboot the node?
Are you familiar with accessing the router via ssh?
All I did was update the Turris omnia to latest version. I clicked the open vpn Tab and set up the only option which was openvpn server. what I WANTED to do was just upload my openvpn config file I got from my provider and have the routed run my vpn like I do on other routers…how the hell do I do that?
I am connecting to Turris omnia via foris but could use luci if needed.
How do I re boot the node and what is that ?
I know how to SSH on turris, following a openwrt install guide right now, hoping it works, hours wasted so far
Also when I did the vpn server thing it automatically changed my internal IP to that weird 10.111 address and then I couldnt get back to THe admin page via 168.1.1 or The 10.111.111 whatever. …I had to factory reset.
I just want to load a vpn config file.and run a vpn. Why so hard
This currently not be possible via Foris but through a LuCI applet or ssh.
reboot = restart, either from Foris, LuCi, ssh or pressing the hardware button on the back of the node ( one LED)
node = router (in this case)
that is expected since the virtual VPN interface requires its own subnet, though not sure what you mean by “changed my internal IP”. It might have changed the routing table, depending on the type of the VPN interface, e.g. TUN or TAP, and/or the routing preferences depending on the VPN settings.
If you utilise the forum search you may find related threads on the subject that may prove useful.
I have fixed the ip / log in problems, problem was in foris i selected openvpn server , i should have done vpn client in luci first and stayed away from open vpn server which i do not understand
But now i have a new problem, no matter what open wrt guide i follow, i cant get the vpn start button in luci to do anything once i go trough these long set ups
I looked at the log and it says
29572 neither stdin nor stderr are a tty device and you have neither a controlling tty nor systemd - cant ask for ‘Enter Auth Username’
Exiting due to fatal error
Wat do ?
I followed this guide
https://www.perfect-privacy.com/en/manuals/router_openwrt_openvpn_stealth_stunnel
Also im seeing an error in the system logs that seem to reference a old vpn set up i tried but deleted
6331 options error : in CMD LINE error opening configuration file /etc/openvpn/protonvpn.conf
This was a old set up i thought i deleted everything for before trying this new guide above
There is no mention of protonvpn in my openvpn config file…how is this ghost still looking for it ? I cant find a mention of protonvpn anywhere
Please post full log of a openvpn connection attempt
/etc/init.d/openvpn restart
# Wait 30 seconds
grep openvpn /var/log/messagesAlso please post content of
- /etc/config/openvpn
- Your openvpn config if it is not in uci format in file above
Looks like you forgot to add authentication information to your config
This file might be linked in your /etc/config/openvpn
Both answears are only guesses. Information above is needed to really help you…
EDIT: Be sure to not post any sensitive data like passwords or private keys…
Update : i got vpn to " start" when pressing start button but no internet worked once started
My config file just has :
Option config ‘PP_Zurich’
Option enabled ‘1’
Option config /etc/openvpn/Zurich.ovpn
I currently am using a connection that does not support ipv6 and to even get opkg to install the vpn i had to add option ipv6 ‘0’ , to every network in the network config
Here is syslog of the vpn start up
Jan 16 03:28:48 turris openvpn(PP_ZURICH)[12884]: VERIFY OK: depth=0, C=CH,
ST=Zug, O=Perfect Privacy, CN=Server_zurich.perfect-privacy.com,
emailAddress=admin@perfect-privacy.com
Jan 16 03:28:50 turris openvpn(PP_ZURICH)[12884]: WARNING: ‘link-mtu’ is
used inconsistently, local=‘link-mtu 1581’, remote=‘link-mtu 1633’
Jan 16 03:28:50 turris openvpn(PP_ZURICH)[12884]: WARNING: ‘keydir’ is
present in local config but missing in remote config, local=‘keydir 0’
Jan 16 03:28:50 turris openvpn(PP_ZURICH)[12884]: WARNING: ‘cipher’ is used
inconsistently, local=‘cipher AES-256-GCM’, remote=‘cipher AES-256-CBC’
Jan 16 03:28:50 turris openvpn(PP_ZURICH)[12884]: WARNING: ‘auth’ is used
inconsistently, local=‘auth [null-digest]’, remote=‘auth SHA512’
Jan 16 03:28:50 turris openvpn(PP_ZURICH)[12884]: Control Channel: TLSv1.2,
cipher TLSv1/SSLv3 DHE-RSA-AES256-GCM-SHA384, 4096 bit RSA
Jan 16 03:28:50 turris openvpn(PP_ZURICH)[12884]:
[Server_zurich.perfect-privacy.com] Peer Connection Initiated with
[AF_INET]152.89.162.226:443
Jan 16 03:28:51 turris openvpn(PP_ZURICH)[12884]: SENT CONTROL
[Server_zurich.perfect-privacy.com]: ‘PUSH_REQUEST’ (status=1)
Jan 16 03:28:51 turris openvpn(PP_ZURICH)[12884]: PUSH: Received control
message: ‘PUSH_REPLY,topology subnet,redirect-gateway def1,sndbuf
131072,rcvbuf 131072,route-gateway 10.5.96.1,redirect-gateway
ipv6,route-ipv6 2000::/3,ping 10,ping-restart 60,dhcp-option DNS
152.89.162.238,dhcp-option DNS 37.120.213.222,ifconfig-ipv6
fdbf:1d37:bbe0:0:86::f0/112 fdbf:1d37:bbe0:0:86::1,ifconfig 10.5.96.240
255.255.255.0,peer-id 0’
Jan 16 03:28:51 turris openvpn(PP_ZURICH)[12884]: OPTIONS IMPORT: timers
and/or timeouts modified
Jan 16 03:28:51 turris openvpn(PP_ZURICH)[12884]: OPTIONS IMPORT:
–sndbuf/–rcvbuf options modified
Jan 16 03:28:51 turris openvpn(PP_ZURICH)[12884]: Socket Buffers:
R=[163840->262144] S=[163840->262144]
Jan 16 03:28:51 turris openvpn(PP_ZURICH)[12884]: OPTIONS IMPORT:
–ifconfig/up options modified
Jan 16 03:28:51 turris openvpn(PP_ZURICH)[12884]: OPTIONS IMPORT: route
options modified
Jan 16 03:28:51 turris openvpn(PP_ZURICH)[12884]: OPTIONS IMPORT:
route-related options modified
Jan 16 03:28:51 turris openvpn(PP_ZURICH)[12884]: OPTIONS IMPORT:
–ip-win32 and/or --dhcp-option options modified
Jan 16 03:28:51 turris openvpn(PP_ZURICH)[12884]: OPTIONS IMPORT: peer-id
set
Jan 16 03:28:51 turris openvpn(PP_ZURICH)[12884]: OPTIONS IMPORT: adjusting
link_mtu to 1656
Jan 16 03:28:51 turris openvpn(PP_ZURICH)[12884]: Data Channel MTU parms [
L:1584 D:1450 EF:52 EB:411 ET:32 EL:3 ]
Jan 16 03:28:51 turris openvpn(PP_ZURICH)[12884]: Outgoing Data Channel:
Cipher ‘AES-256-GCM’ initialized with 256 bit key
Jan 16 03:28:51 turris openvpn(PP_ZURICH)[12884]: Incoming Data Channel:
Cipher ‘AES-256-GCM’ initialized with 256 bit key
Jan 16 03:28:51 turris openvpn(PP_ZURICH)[12884]: GDG6:
remote_host_ipv6=n/a
Jan 16 03:28:51 turris openvpn(PP_ZURICH)[12884]: GDG6: NLMSG_ERROR: error
Permission denied
Jan 16 03:28:51 turris odhcp6c[11010]: Failed to send DHCPV6 message to
ff02::1:2 (Permission denied)
Jan 16 03:28:51 turris netifd: Interface ‘PP_VPN’ is enabled
Jan 16 03:28:51 turris netifd: Network device ‘tun0’ link is up
Jan 16 03:28:51 turris netifd: Interface ‘PP_VPN’ has link connectivity
Jan 16 03:28:51 turris netifd: Interface ‘PP_VPN’ is setting up now
Jan 16 03:28:51 turris openvpn(PP_ZURICH)[12884]: TUN/TAP device tun0
opened
Jan 16 03:28:51 turris netifd: Interface ‘PP_VPN’ is now up
Jan 16 03:28:51 turris openvpn(PP_ZURICH)[12884]: TUN/TAP TX queue length
set to 100
Jan 16 03:28:51 turris openvpn(PP_ZURICH)[12884]: do_ifconfig,
tt->did_ifconfig_ipv6_setup=1
Jan 16 03:28:51 turris openvpn(PP_ZURICH)[12884]: /sbin/ifconfig tun0
10.5.96.240 netmask 255.255.255.0 mtu 1500 broadcast 10.5.96.255
Jan 16 03:28:51 turris openvpn(PP_ZURICH)[12884]: /sbin/ifconfig tun0 add
fdbf:1d37:bbe0:0:86::f0/112
Jan 16 03:28:52 turris firewall: Reloading firewall due to ifup of PP_VPN
(tun0)
Jan 16 03:28:54 turris openvpn(PP_ZURICH)[12884]: /sbin/route add -net
152.89.162.226 netmask 255.255.255.255 gw 192.168.8.1
Jan 16 03:28:54 turris openvpn(PP_ZURICH)[12884]: /sbin/route add -net
0.0.0.0 netmask 128.0.0.0 gw 10.5.96.1
Jan 16 03:28:54 turris openvpn(PP_ZURICH)[12884]: /sbin/route add -net
128.0.0.0 netmask 128.0.0.0 gw 10.5.96.1
Jan 16 03:28:54 turris openvpn(PP_ZURICH)[12884]: add_route_ipv6(2000::/3
-> fdbf:1d37:bbe0:0:86::1 metric -1) dev tun0
Jan 16 03:28:54 turris openvpn(PP_ZURICH)[12884]: /sbin/route -A inet6 add
2000::/3 dev tun0
Jan 16 03:28:54 turris openvpn(PP_ZURICH)[12884]: add_route_ipv6(::/3 ->
fdbf:1d37:bbe0:0:86::1 metric -1) dev tun0
Jan 16 03:28:54 turris openvpn(PP_ZURICH)[12884]: /sbin/route -A inet6 add
::/3 dev tun0
Jan 16 03:28:54 turris openvpn(PP_ZURICH)[12884]: add_route_ipv6(2000::/4
-> fdbf:1d37:bbe0:0:86::1 metric -1) dev tun0
Jan 16 03:28:54 turris openvpn(PP_ZURICH)[12884]: /sbin/route -A inet6 add
2000::/4 dev tun0
Jan 16 03:28:54 turris openvpn(PP_ZURICH)[12884]: add_route_ipv6(3000::/4
-> fdbf:1d37:bbe0:0:86::1 metric -1) dev tun0
Jan 16 03:28:54 turris openvpn(PP_ZURICH)[12884]: /sbin/route -A inet6 add
3000::/4 dev tun0
Jan 16 03:28:54 turris openvpn(PP_ZURICH)[12884]: add_route_ipv6(fc00::/7
-> fdbf:1d37:bbe0:0:86::1 metric -1) dev tun0
Jan 16 03:28:54 turris openvpn(PP_ZURICH)[12884]: /sbin/route -A inet6 add
fc00::/7 dev tun0
Jan 16 03:28:54 turris openvpn(PP_ZURICH)[12884]: Initialization Sequence
Completed
Jan 16 03:29:01 turris /usr/sbin/cron[13399]: (root) CMD
(/usr/bin/rainbow_button_sync.sh)
Jan 16 03:29:10 turris kresd[13274]: [ ta ] active refresh failed for .
with rcode: 2
Jan 16 03:29:10 turris kresd[13274]: [ ta ] next refresh for . in
2.1712222222222 hours
You created or you are responding to 3 threads about your single issue. Please don’t do it next time. It is just confusing and you can miss details in one of the thread. If you would like to post any output, you need to use [code][/code].Closing.