Can't setup for my DD-WRT

[muchtomydismay 0]

I was following the install guide for using DD WRT and noticed that several options do not show up like choosing the AES encyption. I'm still currently trying to connect to Sirius via 443 udp., I got the keys from the "connect without client" page.I provided a sreenshot of my router page incase anyone has ideas how to help.

http://imageshack.us/f/208/capturezhf.png/

Here is a srceenshot of my VPN page, much diffent from the tutorial.

[Havokk2 2]

I have the same question. I have been unsuccessful in setting up my DD-WRT router with OpenVPN but haven't had the time to put my best effort into it yet so have not created a thread or asked for help. Will be watching this thread closely.

[Staff 9968]

Hello!

What are your router models? Are you using the latest DD-WRT firmware available for them?

Kind regards

[muchtomydismay 0]

WRT54GL, with latest DDWRT firmware (VPN Edition)

[Staff 9968]

WRT54GL, with latest DDWRT firmware (VPN Edition)

Hello!

If there's no way with that firmware to tell OpenVPN to use AES-256-CBC, you should use a script to connect. We can't renounce to strong encryption. Please see here: https://airvpn.org/index.php?option=com_kunena&func=view&catid=3&id=1840&limit=6&limitstart=6&Itemid=142#1866

That is a specific setup for your model of router behind another router, and you can easily change it in order to make it suitable for your network.

Kind regards

[muchtomydismay 0]

I tried the script but It didn't seem to work, I'm using the same VPN settings but I added the commands from the other thread as a startup sricpt and had no luck.

I don't know much router commands so if you could tell me what commands are doing what, that would be great. However as you mentioned, my ddwrt is behind another router too, but I'm not sure if that counts because it's a modem/router that is set in transparent bridge mode, so I basically just a modem.

[muchtomydismay 0]

Would downgrading the firmware help? Perhaps if I was on the same that was used in the tutorial it would work because the options would be the same

[muchtomydismay 0]

Here is what I have for OpenVPN options

[muchtomydismay 0]

Just upgraded to the latest build possible: DD-WRT v24-sp2 (08/07/10) vpn

Still the same menu options, no way to choose encryption amongst other options.

[Havokk2 2]

Yup, I've tried three different firmware so far and they all lacked the advanced options.

[Staff 9968]

Yup, I've tried three different firmware so far and they all lacked the advanced options.

Hello!

Advanced options might appear only when you "Apply settings", see the DD-WRT wiki here:

http://www.dd-wrt.com/wiki/index.php/OpenVPN#Enable_OpenVPN_in_the_Router

According to DD-WRT developers and community, all the DD-WRT web GUI interface with firmware withOpenVPN flavor have the option to pick encryption type. We can't confirm that, since we don't have all the routers in the world, but it appears strange that such a lack would have gone unnoticed.

Please keep us posted.

Kind regards

[muchtomydismay 0]

Any luck Havokk2?

[Havokk2 2]

Sorry for the delay but I have been unable to spare the down time to give it another try.

Hitting the apply settings button did nothing. My router is WRT54G v2.0 using dd-wrt.v24_vpn_generic.bin (v24 preSP2 [beta] Build 14896).

[Staff 9968]

Sorry for the delay but I have been unable to spare the down time to give it another try.

Hitting the apply settings button did nothing. My router is WRT54G v2.0 using dd-wrt.v24_vpn_generic.bin (v24 preSP2 [beta] Build 14896).

Hello!

Well, anyway a feature missing on the OpenVPN configuration web interface is not a feature missing in OpenVPN. Just enable it with a script. For example, you might store in nvram this:

https://airvpn.org/index.php?option=com_kunena&func=view&catid=3&id=1955&Itemid=142#1956

and launch it whenever you need it (or at boot time) to connect to Air. Just adjust it in order to fit your needs (server and port for the connection).

Kind regarfds

[enigma 0]

i've the same Router(WRT54GL 1.1) with DD-WRT Build 14896 generic VPN

So i can't connect to airvpn with schript

date 032601152012

sleep 30

echo "client

dev tun

proto tcp

remote 146.185.25.170 443

resolv-retry infinite

nobind

ca /tmp/openvpncl/ca.crt

cert /tmp/openvpncl/client.crt

key /tmp/openvpncl/client.key

ns-cert-type server

cipher AES-256-CBC

comp-lzo

verb 3" > /tmp/openvpncl/myopenvpn.conf

( sleep 20 ; killall openvpn ; /usr/sbin/openvpn --config /tmp/openvpncl/myopenvpn.conf --route-up /tmp/openvpncl/route-up.sh --down /tmp/openvpncl/route-down.sh --daemon ) &

PS.i've not the directory /tmp/openvpncl/

PPS.sorry for my English

[enigma 0]

UP

[Staff 9968]

i've the same Router(WRT54GL 1.1) with DD-WRT Build 14896 generic VPN

PS.i've not the directory /tmp/openvpncl/

PPS.sorry for my English

Hello!

Please create the directory with mkdir and copy & paste there the files user.key, ca.crt, user.crt. You can do this in script. Then, check consistency between file names.

Kind regards

[enigma 0]

how can I copy files to the router?

[Staff 9968]

how can I copy files to the router?

Hello!

Please read here:

http://www.dd-wrt.com/wiki/index.php/Startup_Scripts

Kind regards

[enigma 0]

Hi,this is my log

Serverlog Clientlog 20120615 19:49:02 W NOTE: the current --script-security setting may allow this configuration to call user-defined scripts

20120615 19:49:02 I Re-using SSL/TLS context

20120615 19:49:02 I LZO compression initialized

20120615 19:49:02 Control Channel MTU parms [ L:1562 D:138 EF:38 EB:0 ET:0 EL:0 ]

20120615 19:49:02 Socket Buffers: R=[32767->65534] S=[32767->65534]

20120615 19:49:02 Data Channel MTU parms [ L:1562 D:1450 EF:62 EB:135 ET:0 EL:0 AF:3/1 ]

20120615 19:49:02 Fragmentation MTU parms [ L:1562 D:1450 EF:61 EB:135 ET:1 EL:0 AF:3/1 ]

20120615 19:49:02 Local Options String: 'V4 dev-type tun link-mtu 1562 tun-mtu 1500 proto UDPv4 comp-lzo mtu-dynamic cipher AES-256-CBC auth SHA1 keysize 256 key-method 2 tls-client'

20120615 19:49:02 Expected Remote Options String: 'V4 dev-type tun link-mtu 1562 tun-mtu 1500 proto UDPv4 comp-lzo mtu-dynamic cipher AES-256-CBC auth SHA1 keysize 256 key-method 2 tls-server'

20120615 19:49:02 Local Options hash (VER=V4): 'caff5189'

20120615 19:49:02 Expected Remote Options hash (VER=V4): '43a81564'

20120615 19:49:02 I UDPv4 link local: [undef]

20120615 19:49:02 I UDPv4 link remote: 146.185.25.170:443

20120615 19:49:03 TLS: Initial packet from 146.185.25.170:443 sid=6c0eebc1 d5f2c533

20120615 19:49:03 VERIFY OK: depth=1 /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=airvpn.org_CA/emailAddress=info@airvpn.org

20120615 19:49:03 VERIFY OK: nsCertType=SERVER

20120615 19:49:03 VERIFY OK: depth=0 /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=server/emailAddress=info@airvpn.org

20120615 19:50:02 N TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)

20120615 19:50:02 N TLS Error: TLS handshake failed

20120615 19:50:02 TCP/UDP: Closing socket

20120615 19:50:02 I SIGUSR1[soft tls-error] received process restarting

20120615 19:50:02 Restart pause 2 second(s)

20120615 19:50:04 W NOTE: the current --script-security setting may allow this configuration to call user-defined scripts

20120615 19:50:04 I Re-using SSL/TLS context

20120615 19:50:04 I LZO compression initialized

20120615 19:50:04 Control Channel MTU parms [ L:1562 D:138 EF:38 EB:0 ET:0 EL:0 ]

20120615 19:50:04 Socket Buffers: R=[32767->65534] S=[32767->65534]

20120615 19:50:04 Data Channel MTU parms [ L:1562 D:1450 EF:62 EB:135 ET:0 EL:0 AF:3/1 ]

20120615 19:50:04 Fragmentation MTU parms [ L:1562 D:1450 EF:61 EB:135 ET:1 EL:0 AF:3/1 ]

20120615 19:50:04 Local Options String: 'V4 dev-type tun link-mtu 1562 tun-mtu 1500 proto UDPv4 comp-lzo mtu-dynamic cipher AES-256-CBC auth SHA1 keysize 256 key-method 2 tls-client'

20120615 19:50:04 Expected Remote Options String: 'V4 dev-type tun link-mtu 1562 tun-mtu 1500 proto UDPv4 comp-lzo mtu-dynamic cipher AES-256-CBC auth SHA1 keysize 256 key-method 2 tls-server'

20120615 19:50:04 Local Options hash (VER=V4): 'caff5189'

20120615 19:50:04 Expected Remote Options hash (VER=V4): '43a81564'

20120615 19:50:04 I UDPv4 link local: [undef]

20120615 19:50:04 I UDPv4 link remote: 146.185.25.170:443

20120615 19:50:04 TLS: Initial packet from 146.185.25.170:443 sid=696e062d e83e0061

20120615 19:50:04 VERIFY OK: depth=1 /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=airvpn.org_CA/emailAddress=info@airvpn.org

20120615 19:50:04 VERIFY OK: nsCertType=SERVER

20120615 19:50:04 VERIFY OK: depth=0 /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=server/emailAddress=info@airvpn.org

20120615 19:50:21 MANAGEMENT: Client connected from 127.0.0.1:5001

20120615 19:50:21 D MANAGEMENT: CMD 'state'

20120615 19:50:21 MANAGEMENT: Client disconnected

20120615 19:50:21 MANAGEMENT: Client connected from 127.0.0.1:5001

20120615 19:50:21 D MANAGEMENT: CMD 'state'

20120615 19:50:21 MANAGEMENT: Client disconnected

20120615 19:50:21 MANAGEMENT: Client connected from 127.0.0.1:5001

20120615 19:50:21 D MANAGEMENT: CMD 'state'

20120615 19:50:21 MANAGEMENT: Client disconnected

20120615 19:50:22 MANAGEMENT: Client connected from 127.0.0.1:5001

20120615 19:50:22 D MANAGEMENT: CMD 'log 500'

19700101 00:00:00

why can't connect??

[Havokk2 2]

Yup, I've tried three different firmware so far and they all lacked the advanced options.

Hello!

Advanced options might appear only when you "Apply settings", see the DD-WRT wiki here:

http://www.dd-wrt.com/wiki/index.php/OpenVPN#Enable_OpenVPN_in_the_Router

According to DD-WRT developers and community, all the DD-WRT web GUI interface with firmware withOpenVPN flavor have the option to pick encryption type. We can't confirm that, since we don't have all the routers in the world, but it appears strange that such a lack would have gone unnoticed.

Please keep us posted.

Kind regards

Can anyone recommend a router and firmware version that will have the advanced options, I have had no luck with any versions available for my WRT54G v2.0 and at this point I am willing to throw money at it just to make this problem go away.

[Tamarrano 4]

Hi

best router is TP-Link TL-WR1043ND .....why ? it doesn't cost a lot, and the ddwrt firmware ist often update

and works very well with AirVPN ....

[Tamarrano 4]

try to change with udp, port 443.

it should work with udp, port 443.