Routers help setting up vpn

brian0812

VIP Member
VIP Member
Joined
Jan 7, 2007
Messages
1,098
Likes
28
#1
hi all i have 2 plusnet hub one routers flashed with LuCI lede-17.01 id like to run my digibit vpn on one of the routers but i just can not work out how to set it up is there anyone out there who can guide me on how to set it up please ? ive looked at some of the guides on the net but im not having any luck at all

thanks for looking and your time

regards brian
 

Grimeire

VIP Member
VIP Member
Premium Member
Joined
Dec 3, 2012
Messages
764
Likes
257
#2
whats ur actual problem?

do u have openvpn installed?

did you try the command
Code:
openvpn <your-digibit-ovpn-file>
if so what errors?
 

brian0812

VIP Member
VIP Member
Joined
Jan 7, 2007
Messages
1,098
Likes
28
#3
whats ur actual problem?

do u have openvpn installed?

did you try the command
Code:
openvpn <your-digibit-ovpn-file>
if so what errors?
hi yes i have open vpn installed im just not sure how to get it to work with the digibit-ovpn-file

just did this command [email protected]:~# openvpn San Francisco USA Server 2.ovpn
but i get
Options error: I'm trying to parse "San" as an --option parameter but I don't see a leading '--'
Use --help for more information.
 
Last edited:

Pimped

VIP Member
VIP Member
Joined
Nov 17, 2004
Messages
2,554
Likes
32
#4
whats ur actual problem?

do u have openvpn installed?

did you try the command
Code:
openvpn
if so what errors?
hi yes i have open vpn installed im just not sure how to get it to work with the digibit-ovpn-file

just did this command [email protected]:~# openvpn San Francisco USA Server 2.ovpn
but i get
Options error: I'm trying to parse "San" as an --option parameter but I don't see a leading '--'
Use --help for more information.
Looks like you need to put quotes around the entire filename. Try 'single quotes like this'


Sent from my iPhone using Tapatalk
 

Grimeire

VIP Member
VIP Member
Premium Member
Joined
Dec 3, 2012
Messages
764
Likes
257
#5
hi yes i have open vpn installed im just not sure how to get it to work with the digibit-ovpn-file

just did this command [email protected]:~# openvpn San Francisco USA Server 2.ovpn
but i get
Options error: I'm trying to parse "San" as an --option parameter but I don't see a leading '--'
Use --help for more information.
linux does not like white spaces thats why you are getting that error.

rename the .ovpn on your pc without the white spaces and transfer it over or enter the following
Code:
openvpn San
and press the tab button that will auto complete the file name if its the only file that starts with San in that folder.

are you sure you transferred the .ovpn in to the roots home folder?

can you run this command for me.
Code:
ls
 
Last edited:

janobi

Janet to us
VIP Member
Joined
Jan 25, 2006
Messages
8,146
Likes
206
#6
You could of course install the VPN to a raspberry PI, and then just route the traffic that way. Split your network into a /24, and split the traffic. Anything with an IP upto .128 goes out the normal internet, and anything upto .254 goes out over the VPN.
 

papa2

DW Member +
Joined
Mar 15, 2006
Messages
773
Likes
33
#7
I'm using Digibit and had the same trouble as you , they told me it doesnt work routers yet
 

brian0812

VIP Member
VIP Member
Joined
Jan 7, 2007
Messages
1,098
Likes
28
#8
I'm using Digibit and had the same trouble as you , they told me it doesnt work routers yet
he told me it dose and sent the .ovpn files to me i just need to work out how to set it up i did find this guide but its for openwart and it dont seem to be the same interface
 

Attachments

brian0812

VIP Member
VIP Member
Joined
Jan 7, 2007
Messages
1,098
Likes
28
#10
ok i think im getting there now this is my log file

Code:
[email protected]:~# openvpn 'San.ovpn'
Mon Jul  2 14:30:14 2018 OpenVPN 2.4.4 mips-openwrt-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD]
Mon Jul  2 14:30:14 2018 library versions: OpenSSL 1.0.2o  27 Mar 2018, LZO 2.10
Enter Auth Username:#############
Enter Auth Password:#############
Mon Jul  2 14:30:39 2018 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
Mon Jul  2 14:30:39 2018 TCP/UDP: Preserving recently used remote address: [AF_INET]165.227.19.80:1194
Mon Jul  2 14:30:39 2018 Socket Buffers: R=[163840->163840] S=[163840->163840]
Mon Jul  2 14:30:39 2018 UDP link local: (not bound)
Mon Jul  2 14:30:39 2018 UDP link remote: [AF_INET]165.227.19.80:1194
Mon Jul  2 14:30:41 2018 TLS: Initial packet from [AF_INET]165.227.19.80:1194, sid=edb33da0 191f1677
Mon Jul  2 14:30:41 2018 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Mon Jul  2 14:30:41 2018 VERIFY OK: depth=1, C=US, ST=CA, L=SanFrancisco, O=Fort-Funston, OU=changeme, CN=changeme, name=changeme, [email protected]
Mon Jul  2 14:30:41 2018 VERIFY OK: depth=0, C=US, ST=CA, L=SanFrancisco, O=Fort-Funston, OU=changeme, CN=server, name=changeme, [email protected]
Mon Jul  2 14:30:42 2018 Control Channel: TLSv1.2, cipher TLSv1/SSLv3 ECDHE-RSA-AES256-GCM-SHA384, 1024 bit RSA
Mon Jul  2 14:30:42 2018 [server] Peer Connection Initiated with [AF_INET]165.227.19.80:1194
Mon Jul  2 14:30:43 2018 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
Mon Jul  2 14:30:43 2018 PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1,dhcp-option DNS 67.207.67.2,dhcp-option DNS 67.207.67.3,route-gateway 10.8.0.1,topology subnet,ping 5,ping-restart 30,ifconfig 10.8.0.91 255.255.255.0,peer-id 1,cipher AES-256-GCM'
Mon Jul  2 14:30:43 2018 OPTIONS IMPORT: timers and/or timeouts modified
Mon Jul  2 14:30:43 2018 OPTIONS IMPORT: --ifconfig/up options modified
Mon Jul  2 14:30:43 2018 OPTIONS IMPORT: route options modified
Mon Jul  2 14:30:43 2018 OPTIONS IMPORT: route-related options modified
Mon Jul  2 14:30:43 2018 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Mon Jul  2 14:30:43 2018 OPTIONS IMPORT: peer-id set
Mon Jul  2 14:30:43 2018 OPTIONS IMPORT: adjusting link_mtu to 1657
Mon Jul  2 14:30:43 2018 OPTIONS IMPORT: data channel crypto options modified
Mon Jul  2 14:30:43 2018 Data Channel: using negotiated cipher 'AES-256-GCM'
Mon Jul  2 14:30:43 2018 Outgoing Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
Mon Jul  2 14:30:43 2018 Incoming Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
Mon Jul  2 14:30:43 2018 TUN/TAP device tun0 opened
Mon Jul  2 14:30:43 2018 TUN/TAP TX queue length set to 100
Mon Jul  2 14:30:43 2018 do_ifconfig, tt->did_ifconfig_ipv6_setup=0
Mon Jul  2 14:30:43 2018 /sbin/ifconfig tun0 10.8.0.91 netmask 255.255.255.0 mtu 1500 broadcast 10.8.0.255
Mon Jul  2 14:30:43 2018 /sbin/route add -net 165.227.19.80 netmask 255.255.255.255 gw 172.16.17.158
Mon Jul  2 14:30:43 2018 /sbin/route add -net 0.0.0.0 netmask 128.0.0.0 gw 10.8.0.1
Mon Jul  2 14:30:43 2018 /sbin/route add -net 128.0.0.0 netmask 128.0.0.0 gw 10.8.0.1
Mon Jul  2 14:30:43 2018 Initialization Sequence Completed
 

papa2

DW Member +
Joined
Mar 15, 2006
Messages
773
Likes
33
#11
he told me it dose and sent the .ovpn files to me i just need to work out how to set it up i did find this guide but its for openwart and it dont seem to be the same interface
He sent me the opvn file as well so I assumed it would work , couldnt find a guide so tried guides for PIA and a couple of others to no avail, so contacted them again and was told it didnt work yet (go figure) BUT hey that was last year
 

Grimeire

VIP Member
VIP Member
Premium Member
Joined
Dec 3, 2012
Messages
764
Likes
257
#12
@brian0812

in the log file you uploaded it is running.
stop it using
Code:
pkill openvpn
then run this command
Code:
curl ipinfo.io/ip
now run the command below
Code:
openvpn 'San.ovpn'
then run
Code:
curl ipinfo.io/ip
see if the results are different

BTW this shouldnt be working as you do not appear to have anything in the root folder and also you should not have to use the quations arounf the ovpn file name.

can you run this command for me
Code:
uname
 

brian0812

VIP Member
VIP Member
Joined
Jan 7, 2007
Messages
1,098
Likes
28
#13
@brian0812

in the log file you uploaded it is running.
stop it using
Code:
pkill openvpn
then run this command
Code:
curl ipinfo.io/ip
now run the command below
Code:
openvpn 'San.ovpn'
then run
Code:
curl ipinfo.io/ip
see if the results are different

BTW this shouldnt be working as you do not appear to have anything in the root folder and also you should not have to use the quations arounf the ovpn file name.

can you run this command for me
Code:
uname
thanks for your help mate i have the .ovpn file in root but the kids are now gaming so ill have to give the above a go later today after the kids are in bed
 

brian0812

VIP Member
VIP Member
Joined
Jan 7, 2007
Messages
1,098
Likes
28
#14
linux does not like white spaces thats why you are getting that error.

rename the .ovpn on your pc without the white spaces and transfer it over or enter the following
Code:
openvpn San
and press the tab button that will auto complete the file name if its the only file that starts with San in that folder.

are you sure you transferred the .ovpn in to the roots home folder?

can you run this command for me.
Code:
ls
[email protected]:~# ls
San.ovpn
 

Grimeire

VIP Member
VIP Member
Premium Member
Joined
Dec 3, 2012
Messages
764
Likes
257
#16
Oh yeah i can see you do now. can you also run it without the quotes as these are not needed or at least i have never had to use them and i have set up about 5-10 openvpn servers and 50+ clients

can u run this command
Code:
uname <minusSybmbol>a
for some reason if i post the have the minusSybmbol in a post it will not save. i mean the symbol on the right to zero.
 

brian0812

VIP Member
VIP Member
Joined
Jan 7, 2007
Messages
1,098
Likes
28
#18
ok so after i run this command
openvpn 'San.ovpn
' i lose internet connection and i had to restore router with my backup file to get the internet back on
 

brian0812

VIP Member
VIP Member
Joined
Jan 7, 2007
Messages
1,098
Likes
28
#20
can you show me the log output
log file

Code:
[email protected]:~# openvpn 'San.ovpn'
Mon Jul  2 16:30:04 2018 OpenVPN 2.4.4 mips-openwrt-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD]
Mon Jul  2 16:30:04 2018 library versions: OpenSSL 1.0.2o  27 Mar 2018, LZO 2.10
Enter Auth Username:[email protected]
Enter Auth Password:
Mon Jul  2 16:30:30 2018 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
Mon Jul  2 16:30:30 2018 TCP/UDP: Preserving recently used remote address: [AF_INET]165.227.19.80:1194
Mon Jul  2 16:30:30 2018 Socket Buffers: R=[163840->163840] S=[163840->163840]
Mon Jul  2 16:30:30 2018 UDP link local: (not bound)
Mon Jul  2 16:30:30 2018 UDP link remote: [AF_INET]165.227.19.80:1194
Mon Jul  2 16:30:30 2018 TLS: Initial packet from [AF_INET]165.227.19.80:1194, sid=db384340 0c34e022
Mon Jul  2 16:30:30 2018 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Mon Jul  2 16:30:31 2018 VERIFY OK: depth=1, C=US, ST=CA, L=SanFrancisco, O=Fort-Funston, OU=changeme, CN=changeme, name=changeme, [email protected]
Mon Jul  2 16:30:31 2018 VERIFY OK: depth=0, C=US, ST=CA, L=SanFrancisco, O=Fort-Funston, OU=changeme, CN=server, name=changeme, [email protected]
Mon Jul  2 16:30:31 2018 Control Channel: TLSv1.2, cipher TLSv1/SSLv3 ECDHE-RSA-AES256-GCM-SHA384, 1024 bit RSA
Mon Jul  2 16:30:31 2018 [server] Peer Connection Initiated with [AF_INET]165.227.19.80:1194
Mon Jul  2 16:30:32 2018 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
Mon Jul  2 16:30:33 2018 PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1,dhcp-option DNS 67.207.67.2,dhcp-option DNS 67.207.67.3,route-gateway 10.8.0.1,topology subnet,ping 5,ping-restart 30,ifconfig 10.8.0.91 255.255.255.0,peer-id 9,cipher AES-256-GCM'
Mon Jul  2 16:30:33 2018 OPTIONS IMPORT: timers and/or timeouts modified
Mon Jul  2 16:30:33 2018 OPTIONS IMPORT: --ifconfig/up options modified
Mon Jul  2 16:30:33 2018 OPTIONS IMPORT: route options modified
Mon Jul  2 16:30:33 2018 OPTIONS IMPORT: route-related options modified
Mon Jul  2 16:30:33 2018 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Mon Jul  2 16:30:33 2018 OPTIONS IMPORT: peer-id set
Mon Jul  2 16:30:33 2018 OPTIONS IMPORT: adjusting link_mtu to 1657
Mon Jul  2 16:30:33 2018 OPTIONS IMPORT: data channel crypto options modified
Mon Jul  2 16:30:33 2018 Data Channel: using negotiated cipher 'AES-256-GCM'
Mon Jul  2 16:30:33 2018 Outgoing Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
Mon Jul  2 16:30:33 2018 Incoming Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
Mon Jul  2 16:30:33 2018 TUN/TAP device tun0 opened
Mon Jul  2 16:30:33 2018 TUN/TAP TX queue length set to 100
Mon Jul  2 16:30:33 2018 do_ifconfig, tt->did_ifconfig_ipv6_setup=0
Mon Jul  2 16:30:33 2018 /sbin/ifconfig tun0 10.8.0.91 netmask 255.255.255.0 mtu 1500 broadcast 10.8.0.255
Mon Jul  2 16:30:33 2018 /sbin/route add -net 165.227.19.80 netmask 255.255.255.255 gw 172.16.17.158
Mon Jul  2 16:30:33 2018 /sbin/route add -net 0.0.0.0 netmask 128.0.0.0 gw 10.8.0.1
Mon Jul  2 16:30:33 2018 /sbin/route add -net 128.0.0.0 netmask 128.0.0.0 gw 10.8.0.1
Mon Jul  2 16:30:33 2018 Initialization Sequence Completed
 
TEST
Top