I am using Sonic's FFTN service, and as a result my traffic is routed through AT&T's network. I want to configure a router which is attached to the Uverse box supplied by AT&T to route traffic continuously though Sonic's VPN. I have installed DD-WRT on my router, and have set the Uverse box to allow my router to connect to the internet (see https://forums.att.com/t5/AT-T-Internet ... -p/4330866.)
You can see my current configuration here: part 1 https://www.dropbox.com/s/q4au3msrbkhe7 ... 8.png?dl=0 and part 2 https://www.dropbox.com/s/u3od23ola32me ... 3.png?dl=0. I have deduced as many parameters as possible from the .ovpn configuration file, but there are plenty left for which I do not know the appropriate values. You can see the router's VPN status log bellow.
Has anyone successfully configured a router to connect to Sonic's VPN server? If so, can you share your settings?
Status > OpenVPN > Log
Clientlog:
20170325 00:53:12 W WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
20170325 00:53:12 W NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
20170325 00:53:12 Socket Buffers: R=[172032->172032] S=[172032->172032]
20170325 00:53:12 I UDPv4 link local: [undef]
20170325 00:53:12 I UDPv4 link remote: [AF_INET]209.148.113.36:1194
20170325 00:54:12 N TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
20170325 00:54:12 N TLS Error: TLS handshake failed
20170325 00:54:12 I SIGUSR1[soft tls-error] received process restarting
20170325 00:54:12 Restart pause 2 second(s)
20170325 00:54:14 W WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
20170325 00:54:14 W NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
20170325 00:54:14 Socket Buffers: R=[172032->172032] S=[172032->172032]
20170325 00:54:14 I UDPv4 link local: [undef]
20170325 00:54:14 I UDPv4 link remote: [AF_INET]209.148.113.36:1194
20170325 00:55:14 N TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
20170325 00:55:14 N TLS Error: TLS handshake failed
20170325 00:55:14 I SIGUSR1[soft tls-error] received process restarting
20170325 00:55:14 Restart pause 2 second(s)
20170325 00:55:16 W WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
20170325 00:55:16 W NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
20170325 00:55:16 Socket Buffers: R=[172032->172032] S=[172032->172032]
20170325 00:55:16 I UDPv4 link local: [undef]
20170325 00:55:16 I UDPv4 link remote: [AF_INET]209.148.113.36:1194
20170325 00:56:16 N TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
20170325 00:56:16 N TLS Error: TLS handshake failed
20170325 00:56:16 I SIGUSR1[soft tls-error] received process restarting
20170325 00:56:16 Restart pause 2 second(s)
20170325 00:56:18 W WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
20170325 00:56:18 W NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
20170325 00:56:18 Socket Buffers: R=[172032->172032] S=[172032->172032]
20170325 00:56:18 I UDPv4 link local: [undef]
20170325 00:56:18 I UDPv4 link remote: [AF_INET]209.148.113.36:1194
20170325 00:57:18 N TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
20170325 00:57:18 N TLS Error: TLS handshake failed
20170325 00:57:18 I SIGUSR1[soft tls-error] received process restarting
20170325 00:57:18 Restart pause 2 second(s)
20170325 00:57:20 W WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
20170325 00:57:20 W NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
20170325 00:57:20 Socket Buffers: R=[172032->172032] S=[172032->172032]
20170325 00:57:20 I UDPv4 link local: [undef]
20170325 00:57:20 I UDPv4 link remote: [AF_INET]209.148.113.36:1194
20170325 00:58:20 N TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
20170325 00:58:20 N TLS Error: TLS handshake failed
20170325 00:58:20 I SIGUSR1[soft tls-error] received process restarting
20170325 00:58:20 Restart pause 2 second(s)
20170325 00:58:22 W WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
20170325 00:58:22 W NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
20170325 00:58:22 Socket Buffers: R=[172032->172032] S=[172032->172032]
20170325 00:58:22 I UDPv4 link local: [undef]
20170325 00:58:22 I UDPv4 link remote: [AF_INET]209.148.113.36:1194
20170325 00:59:22 N TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
20170325 00:59:22 N TLS Error: TLS handshake failed
20170325 00:59:22 I SIGUSR1[soft tls-error] received process restarting
20170325 00:59:22 Restart pause 2 second(s)
20170325 00:59:24 W WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
20170325 00:59:24 W NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
20170325 00:59:24 Socket Buffers: R=[172032->172032] S=[172032->172032]
20170325 00:59:24 I UDPv4 link local: [undef]
20170325 00:59:24 I UDPv4 link remote: [AF_INET]209.148.113.36:1194
20170325 01:00:24 N TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
20170325 01:00:24 N TLS Error: TLS handshake failed
20170325 01:00:24 I SIGUSR1[soft tls-error] received process restarting
20170325 01:00:24 Restart pause 2 second(s)
20170325 01:00:26 W WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
20170325 01:00:26 W NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
20170325 01:00:26 Socket Buffers: R=[172032->172032] S=[172032->172032]
20170325 01:00:26 I UDPv4 link local: [undef]
20170325 01:00:26 I UDPv4 link remote: [AF_INET]209.148.113.36:1194
20170325 01:01:26 N TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
20170325 01:01:26 N TLS Error: TLS handshake failed
20170325 01:01:26 I SIGUSR1[soft tls-error] received process restarting
20170325 01:01:26 Restart pause 2 second(s)
20170325 01:01:28 W WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
20170325 01:01:28 W NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
20170325 01:01:28 Socket Buffers: R=[172032->172032] S=[172032->172032]
20170325 01:01:28 I UDPv4 link local: [undef]
20170325 01:01:28 I UDPv4 link remote: [AF_INET]209.148.113.36:1194
20170325 01:02:28 N TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
20170325 01:02:28 N TLS Error: TLS handshake failed
20170325 01:02:28 I SIGUSR1[soft tls-error] received process restarting
20170325 01:02:28 Restart pause 2 second(s)
20170325 01:02:30 W WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
20170325 01:02:30 W NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
20170325 01:02:30 Socket Buffers: R=[172032->172032] S=[172032->172032]
20170325 01:02:30 I UDPv4 link local: [undef]
20170325 01:02:30 I UDPv4 link remote: [AF_INET]209.148.113.36:1194
20170325 01:03:00 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:16
20170325 01:03:00 D MANAGEMENT: CMD 'state'
20170325 01:03:00 MANAGEMENT: Client disconnected
20170325 01:03:00 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:16
20170325 01:03:00 D MANAGEMENT: CMD 'state'
20170325 01:03:00 MANAGEMENT: Client disconnected
20170325 01:03:00 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:16
20170325 01:03:00 D MANAGEMENT: CMD 'state'
20170325 01:03:00 MANAGEMENT: Client disconnected
20170325 01:03:00 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:16
20170325 01:03:00 D MANAGEMENT: CMD 'status 2'
20170325 01:03:00 MANAGEMENT: Client disconnected
20170325 01:03:00 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:16
20170325 01:03:00 D MANAGEMENT: CMD 'log 500'
19691231 16:00:00
ca /tmp/openvpncl/ca.crt cert /tmp/openvpncl/client.crt key /tmp/openvpncl/client.key management 127.0.0.1 16 management-log-cache 100 verb 3 mute 3 syslog writepid /var/run/openvpncl.pid client resolv-retry infinite nobind persist-key persist-tun script-security 2 dev tun1 proto udp cipher bf-cbc auth sha256 auth-user-pass /tmp/openvpncl/credentials remote ovpn.sonic.net 1194 comp-lzo adaptive tun-mtu 1500 mtu-disc yes fast-io tun-ipv6
You can see my current configuration here: part 1 https://www.dropbox.com/s/q4au3msrbkhe7 ... 8.png?dl=0 and part 2 https://www.dropbox.com/s/u3od23ola32me ... 3.png?dl=0. I have deduced as many parameters as possible from the .ovpn configuration file, but there are plenty left for which I do not know the appropriate values. You can see the router's VPN status log bellow.
Has anyone successfully configured a router to connect to Sonic's VPN server? If so, can you share your settings?
Status > OpenVPN > Log
Clientlog:
20170325 00:53:12 W WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
20170325 00:53:12 W NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
20170325 00:53:12 Socket Buffers: R=[172032->172032] S=[172032->172032]
20170325 00:53:12 I UDPv4 link local: [undef]
20170325 00:53:12 I UDPv4 link remote: [AF_INET]209.148.113.36:1194
20170325 00:54:12 N TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
20170325 00:54:12 N TLS Error: TLS handshake failed
20170325 00:54:12 I SIGUSR1[soft tls-error] received process restarting
20170325 00:54:12 Restart pause 2 second(s)
20170325 00:54:14 W WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
20170325 00:54:14 W NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
20170325 00:54:14 Socket Buffers: R=[172032->172032] S=[172032->172032]
20170325 00:54:14 I UDPv4 link local: [undef]
20170325 00:54:14 I UDPv4 link remote: [AF_INET]209.148.113.36:1194
20170325 00:55:14 N TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
20170325 00:55:14 N TLS Error: TLS handshake failed
20170325 00:55:14 I SIGUSR1[soft tls-error] received process restarting
20170325 00:55:14 Restart pause 2 second(s)
20170325 00:55:16 W WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
20170325 00:55:16 W NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
20170325 00:55:16 Socket Buffers: R=[172032->172032] S=[172032->172032]
20170325 00:55:16 I UDPv4 link local: [undef]
20170325 00:55:16 I UDPv4 link remote: [AF_INET]209.148.113.36:1194
20170325 00:56:16 N TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
20170325 00:56:16 N TLS Error: TLS handshake failed
20170325 00:56:16 I SIGUSR1[soft tls-error] received process restarting
20170325 00:56:16 Restart pause 2 second(s)
20170325 00:56:18 W WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
20170325 00:56:18 W NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
20170325 00:56:18 Socket Buffers: R=[172032->172032] S=[172032->172032]
20170325 00:56:18 I UDPv4 link local: [undef]
20170325 00:56:18 I UDPv4 link remote: [AF_INET]209.148.113.36:1194
20170325 00:57:18 N TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
20170325 00:57:18 N TLS Error: TLS handshake failed
20170325 00:57:18 I SIGUSR1[soft tls-error] received process restarting
20170325 00:57:18 Restart pause 2 second(s)
20170325 00:57:20 W WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
20170325 00:57:20 W NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
20170325 00:57:20 Socket Buffers: R=[172032->172032] S=[172032->172032]
20170325 00:57:20 I UDPv4 link local: [undef]
20170325 00:57:20 I UDPv4 link remote: [AF_INET]209.148.113.36:1194
20170325 00:58:20 N TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
20170325 00:58:20 N TLS Error: TLS handshake failed
20170325 00:58:20 I SIGUSR1[soft tls-error] received process restarting
20170325 00:58:20 Restart pause 2 second(s)
20170325 00:58:22 W WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
20170325 00:58:22 W NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
20170325 00:58:22 Socket Buffers: R=[172032->172032] S=[172032->172032]
20170325 00:58:22 I UDPv4 link local: [undef]
20170325 00:58:22 I UDPv4 link remote: [AF_INET]209.148.113.36:1194
20170325 00:59:22 N TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
20170325 00:59:22 N TLS Error: TLS handshake failed
20170325 00:59:22 I SIGUSR1[soft tls-error] received process restarting
20170325 00:59:22 Restart pause 2 second(s)
20170325 00:59:24 W WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
20170325 00:59:24 W NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
20170325 00:59:24 Socket Buffers: R=[172032->172032] S=[172032->172032]
20170325 00:59:24 I UDPv4 link local: [undef]
20170325 00:59:24 I UDPv4 link remote: [AF_INET]209.148.113.36:1194
20170325 01:00:24 N TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
20170325 01:00:24 N TLS Error: TLS handshake failed
20170325 01:00:24 I SIGUSR1[soft tls-error] received process restarting
20170325 01:00:24 Restart pause 2 second(s)
20170325 01:00:26 W WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
20170325 01:00:26 W NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
20170325 01:00:26 Socket Buffers: R=[172032->172032] S=[172032->172032]
20170325 01:00:26 I UDPv4 link local: [undef]
20170325 01:00:26 I UDPv4 link remote: [AF_INET]209.148.113.36:1194
20170325 01:01:26 N TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
20170325 01:01:26 N TLS Error: TLS handshake failed
20170325 01:01:26 I SIGUSR1[soft tls-error] received process restarting
20170325 01:01:26 Restart pause 2 second(s)
20170325 01:01:28 W WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
20170325 01:01:28 W NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
20170325 01:01:28 Socket Buffers: R=[172032->172032] S=[172032->172032]
20170325 01:01:28 I UDPv4 link local: [undef]
20170325 01:01:28 I UDPv4 link remote: [AF_INET]209.148.113.36:1194
20170325 01:02:28 N TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
20170325 01:02:28 N TLS Error: TLS handshake failed
20170325 01:02:28 I SIGUSR1[soft tls-error] received process restarting
20170325 01:02:28 Restart pause 2 second(s)
20170325 01:02:30 W WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
20170325 01:02:30 W NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
20170325 01:02:30 Socket Buffers: R=[172032->172032] S=[172032->172032]
20170325 01:02:30 I UDPv4 link local: [undef]
20170325 01:02:30 I UDPv4 link remote: [AF_INET]209.148.113.36:1194
20170325 01:03:00 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:16
20170325 01:03:00 D MANAGEMENT: CMD 'state'
20170325 01:03:00 MANAGEMENT: Client disconnected
20170325 01:03:00 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:16
20170325 01:03:00 D MANAGEMENT: CMD 'state'
20170325 01:03:00 MANAGEMENT: Client disconnected
20170325 01:03:00 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:16
20170325 01:03:00 D MANAGEMENT: CMD 'state'
20170325 01:03:00 MANAGEMENT: Client disconnected
20170325 01:03:00 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:16
20170325 01:03:00 D MANAGEMENT: CMD 'status 2'
20170325 01:03:00 MANAGEMENT: Client disconnected
20170325 01:03:00 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:16
20170325 01:03:00 D MANAGEMENT: CMD 'log 500'
19691231 16:00:00
ca /tmp/openvpncl/ca.crt cert /tmp/openvpncl/client.crt key /tmp/openvpncl/client.key management 127.0.0.1 16 management-log-cache 100 verb 3 mute 3 syslog writepid /var/run/openvpncl.pid client resolv-retry infinite nobind persist-key persist-tun script-security 2 dev tun1 proto udp cipher bf-cbc auth sha256 auth-user-pass /tmp/openvpncl/credentials remote ovpn.sonic.net 1194 comp-lzo adaptive tun-mtu 1500 mtu-disc yes fast-io tun-ipv6
