Jump to content
Not connected, Your IP: 18.218.3.204
mikrotik

Issues with Authentication on FreshTomato Router & AirVPN Config

Recommended Posts

Good afternoon all, I've been trying relentlessly to get my VPN configuration on my router set up, and after looking at logs, I haven't the slightest idea on what is going on. I have some experience in networking but not nearly enough to figure out what is going wrong. I have set verb mode to 6, and attached are the redacted (probably not to necessary since you can find this stuff from nslookup anyway, but definitely the MAC addresses) logs from the router. Can anyone guide me to better troubleshoot this issue? Your help will be much appreciated - and I won't forget to spread the knowledge. I didn't include it, but the log shows info about passing the .ovpn config, then displays the appended information. Protocol is UDP, and the port I'm using is 443.

Apr 10 12:23:35 unknown daemon.notice openvpn-client1[16215]: Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
Apr 10 12:23:35 unknown daemon.notice openvpn-client1[16215]: Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
Apr 10 12:23:35 unknown daemon.notice openvpn-client1[16215]: Control Channel MTU parms [ L:1621 D:1140 EF:110 EB:0 ET:0 EL:3 ]
Apr 10 12:23:35 unknown daemon.notice openvpn-client1[16215]: Data Channel MTU parms [ L:1621 D:1450 EF:121 EB:406 ET:0 EL:3 ]
Apr 10 12:23:35 unknown daemon.notice openvpn-client1[16215]: Local Options String (VER=V4): 'V4,dev-type tun,link-mtu 1601,tun-mtu 1500,proto UDPv4,keydir 1,cipher AES-256-CBC,auth SHA512,keysize 256,tls-auth,key-method 2,tls-client'
Apr 10 12:23:35 unknown daemon.notice openvpn-client1[16215]: Expected Remote Options String (VER=V4): 'V4,dev-type tun,link-mtu 1601,tun-mtu 1500,proto UDPv4,keydir 0,cipher AES-256-CBC,auth SHA512,keysize 256,tls-auth,key-method 2,tls-server'
Apr 10 12:23:35 unknown daemon.notice openvpn-client1[16215]: TCP/UDP: Preserving recently used remote address: [AF_INET]XXX.XX.XXX.XXX:443
Apr 10 12:23:35 unknown daemon.notice openvpn-client1[16215]: Socket Buffers: R=[122880->122880] S=[122880->122880]
Apr 10 12:23:35 unknown daemon.notice openvpn-client1[16215]: UDP link local: (not bound)
Apr 10 12:23:35 unknown daemon.notice openvpn-client1[16215]: UDP link remote: [AF_INET]XXX.XX.XXX.XXX:443
Apr 10 12:23:35 unknown daemon.notice openvpn-client1[16215]: UDP WRITE [86] to [AF_INET]XXX.XX.XXX.XXX:443: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 pid=[ #1 ] [ ] pid=0 DATA len=0
Apr 10 12:23:37 unknown daemon.notice openvpn-client1[16215]: UDP WRITE [86] to [AF_INET]XXX.XX.XXX.XXX:443: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 pid=[ #2 ] [ ] pid=0 DATA len=0
Apr 10 12:23:41 unknown daemon.notice openvpn-client1[16215]: UDP WRITE [86] to [AF_INET]184.75.223.237:443: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 pid=[ #3 ] [ ] pid=0 DATA len=0
Apr 10 12:23:41 unknown kern.warn kernel: DROP IN=vlan2 OUT= MACSRC=d4:ab:82:XX:XX:XX MACDST=01:00:5e:XX:XX:XX MACPROTO=0800 SRC=10.0.0.1 DST=224.0.0.1 LEN=36 TOS=0x00 PREC=0x00 TTL=1 ID=64149 OPT (94040000) PROTO=2 
Apr 10 12:23:49 unknown daemon.notice openvpn-client1[16215]: UDP WRITE [86] to [AF_INET]XXX.XX.XXX.XXX:443: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 pid=[ #4 ] [ ] pid=0 DATA len=0
Apr 10 12:24:06 unknown daemon.notice openvpn-client1[16215]: UDP WRITE [86] to [AF_INET]XXX.XX.XXX.XXX:443: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 pid=[ #5 ] [ ] pid=0 DATA len=0
Apr 10 12:24:35 unknown daemon.notice openvpn-client1[16215]: [UNDEF] Inactivity timeout (--ping-restart), restarting
Apr 10 12:24:35 unknown daemon.notice openvpn-client1[16215]: TCP/UDP: Closing socket
Apr 10 12:24:35 unknown daemon.notice openvpn-client1[16215]: SIGUSR1[soft,ping-restart] received, process restarting
Apr 10 12:24:35 unknown daemon.notice openvpn-client1[16215]: Restart pause, 5 second(s)

 

Share this post


Link to post

Did you try other servers, ports and protocols? Inactivity timeouts while trying to connect hint at simple timeouts, timeouts hint at filtered ports or protocols.


NOT AN AIRVPN TEAM MEMBER. USE TICKETS FOR PROFESSIONAL SUPPORT.

LZ1's New User Guide to AirVPN « Plenty of stuff for advanced users, too!

Want to contact me directly? All relevant methods are on my About me page.

Share this post


Link to post

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
  • Security Check
    Play CAPTCHA Audio
    Refresh Image

×
×
  • Create New...