Hello!
Thank you all who have suggested steps for the solution!
I finally got it working with the following order of config steps:
- Uninstall OpenVPN via Web-UI (“Updater” -> uncheck “OpenVPN” -> “Save Changes”)
- Login to the router via SSH
- Delete the folder /etc/dhparam (
rm -r /etc/dhparam) - Delete the folder /etc/ssl/ca/openvpn (
rm -r /etc/ssl/ca/openvpn) - Start the tool “htop” in the SSH session
- Install OpenVPN via Web-UI (“Updater” -> check “OpenVPN” -> “Save Changes”) and stay in that web menu (do not change to “OPENVPN” menu yet)
- In the SSH session (in htop) you should see a process
openssl dhparam -out /etc/dhparam/dh2048.pem.new- wait for it to finish/disappear (should take about 30 minutes) - Click on “OPENVPN” in the Web-UI and start further configuration (Generate CA, etc. etc.)
I understand that some steps might not be truly necessary but this is how it worked for me.
Hope it helps!
Further more a bug that I noticed: if you change the transport protocol to be TCP instead of UDP, it seams that the software does not correctly create the appropriate firewall rule for accepting connections on the configured TCP port.
I had to adapt the firewall settings via luci to make OpenVPN work with a custom setting for port and protocol.
Cheers,
kwaH