AX10 OpenVPN Server is not route to hosts

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.

AX10 OpenVPN Server is not route to hosts

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
AX10 OpenVPN Server is not route to hosts
AX10 OpenVPN Server is not route to hosts
2022-02-13 20:36:31 - last edited 2022-02-13 20:59:46
Model: Archer AX10  
Hardware Version: V1
Firmware Version: 1.2.5 20211117 Rel. 38093 (4555)

OpenVPN client config from AX10

client
dev tun
proto udp
float
nobind
cipher AES-128-CBC
comp-lzo adaptive
resolv-retry infinite
remote-cert-tls server
persist-key
persist-tun

remote AAA.BBB.CCC.DDD 1194

 

log on client

Network::Interface::Base: "OpenVPN7": interface is up.
Feb 13 20:39:13
ndm
Core::System::Configuration: saving (http/rci).
Feb 13 20:39:16
OpenVPN7
OpenVPN 2.4.6 [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [AEAD]
Feb 13 20:39:16
OpenVPN7
library versions: OpenSSL 1.1.1l 24 Aug 2021, LZO 2.10
Feb 13 20:39:16
OpenVPN7
UDP link local: (not bound)
Feb 13 20:39:16
OpenVPN7
UDP link remote: [AF_INET]AAA.BBB.CCC.DDD:1194
Feb 13 20:39:16
OpenVPN7
NOTE: UID/GID downgrade will be delayed because of --client, --pull, or --up-delay
Feb 13 20:39:16
OpenVPN7
WARNING: 'dev-type' is used inconsistently, local='dev-type tap', remote='dev-type tun'
Feb 13 20:39:16
OpenVPN7
WARNING: 'link-mtu' is used inconsistently, local='link-mtu 1590', remote='link-mtu 1558'
Feb 13 20:39:16
OpenVPN7
WARNING: 'tun-mtu' is used inconsistently, local='tun-mtu 1532', remote='tun-mtu 1500'
Feb 13 20:39:16
OpenVPN7
[server] Peer Connection Initiated with [AF_INET]AAA.BBB.CCC.DDD:1194
Feb 13 20:39:16
ndm
Network::Interface::OpenVpn: "OpenVPN7": connecting via ISP (GigabitEthernet1).
Feb 13 20:39:16
ndm
Network::Interface::OpenVpn: "OpenVPN7": added host route to remote endpoint AAA.BBB.CCC.DDD via YYY.YYY.YYY.YYY.
Feb 13 20:39:16
ndm
Core::System::Configuration: configuration saved.
Feb 13 20:39:17
OpenVPN7
WARNING: Since you are using --dev tap, the second argument to --ifconfig must be a netmask, for example something like 255.255.255.0. (silence this warning with --ifconfig-nowarn)
Feb 13 20:39:17
OpenVPN7
WARNING: --remote address [DDD.CCC.BBB.AAA] conflicts with --ifconfig subnet [10.8.0.10, 10.8.0.9] -- local and remote addresses cannot be inside of the --ifconfig subnet. (silence this warning with --ifconfig-nowarn)
Feb 13 20:39:17
OpenVPN7
OpenVPN ROUTE: OpenVPN needs a gateway parameter for a --route option and no default was specified by either --route-gateway or --ifconfig options
Feb 13 20:39:17
OpenVPN7
OpenVPN ROUTE: failed to parse/resolve route for host/network: 10.8.0.0
Feb 13 20:39:17
OpenVPN7
OpenVPN ROUTE: OpenVPN needs a gateway parameter for a --route option and no default was specified by either --route-gateway or --ifconfig options
Feb 13 20:39:17
OpenVPN7
OpenVPN ROUTE: failed to parse/resolve route for host/network: 10.8.0.0
Feb 13 20:39:17
OpenVPN7
OpenVPN ROUTE: OpenVPN needs a gateway parameter for a --route option and no default was specified by either --route-gateway or --ifconfig options
Feb 13 20:39:17
OpenVPN7
OpenVPN ROUTE: failed to parse/resolve route for host/network: 192.168.0.0
Feb 13 20:39:17
OpenVPN7
TUN/TAP device tap0 opened
Feb 13 20:39:17
OpenVPN7
do_ifconfig, tt->did_ifconfig_ipv6_setup=0
Feb 13 20:39:17
ndm
Network::Interface::Ip: "OpenVPN7": IP address is 10.8.0.10/32.
Feb 13 20:39:17
OpenVPN7
GID set to nobody
Feb 13 20:39:17
OpenVPN7
UID set to nobody
Feb 13 20:39:17
OpenVPN7
Initialization Sequence Completed
Feb 13 20:39:18
ndm
Http::Nginx: loaded SSL certificate for "XXX.keenetic.io".
Feb 13 20:39:18
ndm
Core::Server: started Session /var/run/ndm.core.socket.
Feb 13 20:39:18
ndm
Core::Session: client disconnected.
Feb 13 20:39:18
ndm
Http::Manager: updated configuration.
Feb 13 20:39:18
ndm
Core::Server: started Session /var/run/ndm.core.socket.
Feb 13 20:39:18
ndm
Core::Session: client disconnected. 
  0      
  0      
#1
Options
1 Reply
Re:AX10 OpenVPN Server is not route to hosts
2022-02-15 11:16:03

Hello @FlostonParadise, it seems you are configuring the OpenVPN server on the AX10, and the client fails to connect to the server, can you confirm? Please confirm and verify the WAN IP address and the OpenVPN client IP address, be sure they are not in the same IP subnet, try changing the subnet for the VPN clients to 10.9.0.0, then confirm.

Nice to Meet You in Our TP-Link Community. Check Out the Latest Posts: Connect TP-Link Archer BE550 to Germany's DS-Lite (Dual Stack Lite) Internet via WAN Archer GE550 - BE9300 Tri-Band Wi-Fi 7 Gaming Router Archer BE800 New Firmware Added Support for EasyMesh in AP Mode, DoH&DoT, and 3-Band MLO Connection Archer AX90 New Firmware Added Support for EasyMesh and Ethernet Backhaul If you found a post or response helpful, please click Helpful (arrow pointing upward icon). If you are the author of a topic, remember to mark a helpful reply as the "Recommended Solution" (star icon) so that others can benefit from it.
  0  
  0  
#2
Options