AX6000 OpenVPN no network access on smartphones
This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
I have Archer AX6000 v1.0 updated to the latest version 1.2.4 Build 20210719 rel.12163
I have enabled the OpenVPN and my config file is:
client
dev tun
proto udp
float
nobind
data-ciphers-fallback AES-128-CBC
comp-lzo adaptive
resolv-retry infinite
remote-cert-tls server
persist-key
persist-tun
auth-nocache
remote x.x.x.x 21985
<ca>
-----BEGIN CERTIFICATE-----
My local router's IP Address is 10.0.0.1 / Subnet 255.0.0.0
OpenVPN IP/Subnet: 172.16.1.0 / 255.255.255.0 / UDP 21985
On Windows it connects but I was only able to ping the router when the VPN IP was the default (10.8.0.0) but now after I have changed it to 172.16.1.0: I am able to ping and access the router and other computers, so there is no issues on "Windows 10 - OpenVPN Client". Here's my log file:
Fri Nov 5 15:40:12 2021 WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
Fri Nov 5 15:40:12 2021 OpenVPN 2.5.4 Windows-MSVC [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [AEAD] built on Oct 20 2021
Fri Nov 5 15:40:12 2021 Windows version 10.0 (Windows 10 or greater) 64bit
Fri Nov 5 15:40:12 2021 library versions: OpenSSL 1.1.1l 24 Aug 2021, LZO 2.10
Fri Nov 5 15:40:13 2021 TCP/UDP: Preserving recently used remote address: [AF_INET]xxx.xxx.xxx.xxx:21985
Fri Nov 5 15:40:13 2021 UDP link local: (not bound)
Fri Nov 5 15:40:13 2021 UDP link remote: [AF_INET]xxx.xxx.xxx.xxx:21985
Fri Nov 5 15:40:16 2021 [server] Peer Connection Initiated with [AF_INET]xxx.xxx.xxx.xxx:21985
Fri Nov 5 15:40:17 2021 open_tun
Fri Nov 5 15:40:17 2021 tap-windows6 device [Local Area Connection] opened
Fri Nov 5 15:40:17 2021 Notified TAP-Windows driver to set a DHCP IP/netmask of 172.16.1.6/255.255.255.252 on interface {67ACBAED-18A9-45A3-B6A2-EC64094783B8} [DHCP-serv: 172.16.1.5, lease-time: 31536000]
Fri Nov 5 15:40:17 2021 Successful ARP Flush on interface [12] {67ACBAED-18A9-45A3-B6A2-EC64094783B8}
Fri Nov 5 15:40:17 2021 IPv4 MTU set to 1500 on interface 12 using service
Fri Nov 5 15:40:22 2021 ROUTE: route addition failed using service: The object already exists. [status=5010 if_index=12]
Fri Nov 5 15:40:22 2021 Initialization Sequence Completed
On iOS v14 and v15 and Android v9 it connects just fine but I can't access any resources (no internet, no ping access to any local device including the router itself), I tried ping and DNS resolve many IPs and hostnames but nothing worked, I also tried to switch on/off some settings within the OpenVPN app on both iOS and Android before connecting but nothing has changed. Here are the logs for both:
iOS:
2021-11-05 15:55:06 1
2021-11-05 15:55:06 ----- OpenVPN Start -----
OpenVPN core 3.git::58b92569 ios arm64 64-bit
2021-11-05 15:55:06 OpenVPN core 3.git::58b92569 ios arm64 64-bit
2021-11-05 15:55:06 Frame=512/2048/512 mssfix-ctrl=1250
2021-11-05 15:55:06 UNUSED OPTIONS
4 [nobind]
5 [data-ciphers-fallback] [AES-128-CBC]
7 [resolv-retry] [infinite]
9 [persist-key]
10 [persist-tun]
11 [auth-nocache]
2021-11-05 15:55:06 EVENT: RESOLVE
2021-11-05 15:55:06 Contacting [xxx.xxx.xxx.xxx]:21985/UDP via UDP
2021-11-05 15:55:06 EVENT: WAIT
2021-11-05 15:55:06 Connecting to [xxx.xxx.xxx.xxx]:21985 (xxx.xxx.xxx.xxx) via UDPv4
2021-11-05 15:55:06 EVENT: CONNECTING
2021-11-05 15:55:06 Tunnel Options:V4,dev-type tun,link-mtu 1542,tun-mtu 1500,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client
2021-11-05 15:55:06 Creds: UsernameEmpty/PasswordEmpty
2021-11-05 15:55:06 Peer Info:
IV_VER=3.git::58b92569
IV_PLAT=ios
IV_NCP=2
IV_TCPNL=1
IV_PROTO=2
IV_LZO_STUB=1
IV_COMP_STUB=1
IV_COMP_STUBv2=1
IV_AUTO_SESS=1
IV_GUI_VER=net.openvpn.connect.ios_3.2.3-3760
IV_SSO=openurl
IV_BS64DL=1
2021-11-05 15:55:11 VERIFY OK: depth=1, /C=CN/ST=GD/L=ShenZhen/O=TP-Link/OU=SOHO-I18N/CN=ChangeMe/emailAddress=xxxx@xxxx
2021-11-05 15:55:11 VERIFY OK: depth=0, /C=CN/ST=GD/L=ShenZhen/O=TP-Link/OU=SOHO-I18N/CN=server/emailAddress=xxxx@xxxx
2021-11-05 15:55:13 SSL Handshake: CN=server, TLSv1.2, cipher TLSv1.2 DHE-RSA-AES256-GCM-SHA384, 1024 bit RSA
2021-11-05 15:55:13 Session is ACTIVE
2021-11-05 15:55:13 EVENT: GET_CONFIG
2021-11-05 15:55:13 Sending PUSH_REQUEST to server...
2021-11-05 15:55:14 OPTIONS:
0 [route] [0.0.0.0] [0.0.0.0]
1 [redirect-gateway] [def1]
2 [route] [10.0.0.0] [255.0.0.0]
3 [route] [172.16.1.0] [255.255.255.0]
4 [dhcp-option] [DNS] [172.16.1.1]
5 [dhcp-option] [DNS] [8.8.8.8]
6 [route] [172.16.1.0] [255.255.255.0]
7 [topology] [net30]
8 [ping] [10]
9 [ping-restart] [120]
10 [ifconfig] [172.16.1.6] [172.16.1.5]
2021-11-05 15:55:14 PROTOCOL OPTIONS:
cipher: BF-CBC
digest: SHA1
compress: LZO_STUB
peer ID: -1
2021-11-05 15:55:14 EVENT: ASSIGN_IP
2021-11-05 15:55:14 NIP: preparing TUN network settings
2021-11-05 15:55:14 NIP: init TUN network settings with endpoint: xxx.xxx.xxx.xxx
2021-11-05 15:55:14 NIP: adding IPv4 address to network settings 172.16.1.6/255.255.255.252
2021-11-05 15:55:14 NIP: adding (included) IPv4 route 172.16.1.4/30
2021-11-05 15:55:14 NIP: adding (included) IPv4 route 0.0.0.0/0
2021-11-05 15:55:14 NIP: adding (included) IPv4 route 10.0.0.0/8
2021-11-05 15:55:14 NIP: adding (included) IPv4 route 172.16.1.0/24
2021-11-05 15:55:14 NIP: adding (included) IPv4 route 172.16.1.0/24
2021-11-05 15:55:14 NIP: redirecting all IPv4 traffic to TUN interface
2021-11-05 15:55:14 NIP: adding DNS 172.16.1.1
2021-11-05 15:55:14 NIP: adding DNS 8.8.8.8
2021-11-05 15:55:14 Connected via NetworkExtensionTUN
2021-11-05 15:55:14 Per-Key Data Limit: 48000000/48000000
2021-11-05 15:55:14 LZO-ASYM init swap=0 asym=1
2021-11-05 15:55:14 Comp-stub init swap=0
2021-11-05 15:55:14 EVENT: CONNECTED xxx.xxx.xxx.xxx:21985 (xxx.xxx.xxx.xxx) via /UDPv4 on NetworkExtensionTUN/172.16.1.6/ gw=[/]
Android:
16:06:51.012 -- ----- OpenVPN Start -----
16:06:51.014 -- EVENT: CORE_THREAD_ACTIVE
16:06:51.019 -- OpenVPN core 3.git::662eae9a:Release android arm64 64-bit PT_PROXY
16:06:51.020 -- Frame=512/2048/512 mssfix-ctrl=1250
16:06:51.021 -- UNUSED OPTIONS4 [nobind] 5 [data-ciphers-fallback] [AES-128-CBC] 7 [resolv-retry] [infinite] 9 [persist-key] 10 [persist-tun] 11 [auth-nocache]
16:06:51.022 -- EVENT: RESOLVE
16:06:51.026 -- Contacting xxx.xxx.xxx.xxx:21985 via UDP
16:06:51.027 -- EVENT: WAIT
16:06:51.032 -- Connecting to [xxx.xxx.xxx.xxx]:21985 (xxx.xxx.xxx.xxx) via UDPv4
16:06:51.350 -- EVENT: CONNECTING
16:06:51.356 -- Tunnel Options:V4,dev-type tun,link-mtu 1542,tun-mtu 1500,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client
16:06:51.357 -- Creds: UsernameEmpty/PasswordEmpty
16:06:51.358 -- Peer Info:IV_VER=3.git::662eae9a:ReleaseIV_PLAT=androidIV_NCP=2IV_TCPNL=1IV_PROTO=2IV_LZO_STUB=1IV_COMP_STUB=1IV_COMP_STUBv2=1IV_AUTO_SESS=1IV_GUI_VER=net.openvpn.connect.android_3.2.5-7182IV_SSO=openurlIV_BS64DL=1
16:06:52.605 -- VERIFY OK: depth=1, /C=CN/ST=GD/L=ShenZhen/O=TP-Link/OU=SOHO-I18N/CN=ChangeMe/emailAddress=xxxx@xxxx
16:06:52.606 -- VERIFY OK: depth=0, /C=CN/ST=GD/L=ShenZhen/O=TP-Link/OU=SOHO-I18N/CN=server/emailAddress=xxxx@xxxx
16:06:56.064 -- SSL Handshake: CN=server, TLSv1.2, cipher TLSv1.2 DHE-RSA-AES256-GCM-SHA384, 1024 bit RSA
16:06:56.065 -- Session is ACTIVE
16:06:56.066 -- EVENT: GET_CONFIG
16:06:56.072 -- Sending PUSH_REQUEST to server...
16:06:56.297 -- OPTIONS:0 [route] [0.0.0.0] [0.0.0.0] 1 [redirect-gateway] [def1] 2 [route] [10.0.0.0] [255.0.0.0] 3 [route] [172.16.1.0] [255.255.255.0] 4 [dhcp-option] [DNS] [172.16.1.1] 5 [dhcp-option] [DNS] [8.8.8.8] 6 [route] [172.16.1.0] [255.255.255.0] 7 [topology] [net30] 8 [ping] [10] 9 [ping-restart] [120] 10 [ifconfig] [172.16.1.6] [172.16.1.5]
16:06:56.298 -- PROTOCOL OPTIONS: cipher: BF-CBC digest: SHA1 compress: LZO_STUB peer ID: -1
16:06:56.300 -- EVENT: ASSIGN_IP
16:06:56.333 -- Connected via tun
16:06:56.334 -- Per-Key Data Limit: 48000000/48000000
16:06:56.335 -- LZO-ASYM init swap=0 asym=1
16:06:56.336 -- Comp-stub init swap=0
16:06:56.338 -- EVENT: CONNECTED info='xxx.xxx.xxx.xxx:21985 (xxx.xxx.xxx.xxx) via /UDPv4 on tun/172.16.1.6/ gw=[172.16.1.5/]'
I've been trying to look everywhere but could find any solution to fix this, can someone please tell me if there's anything wrong in my configuration ot it's an issue with OpenVPN app?
many thanks!