Client setup and running but no traffic being routed through PIA

p7335352p7335352
in Other Devices VPN Setup
can anyone help, i'm new to all this?

I have follwed the newer instructions and got PIA running on my Tomato setup.

Log
Feb 11 19:12:37 unknown daemon.notice openvpn[832]: OpenVPN STATISTICS
Feb 11 19:12:37 unknown daemon.notice openvpn[832]: Updated,Sun Feb 11 19:12:37 2018
Feb 11 19:12:37 unknown daemon.notice openvpn[832]: TUN/TAP read bytes,0
Feb 11 19:12:37 unknown daemon.notice openvpn[832]: TUN/TAP write bytes,0
Feb 11 19:12:37 unknown daemon.notice openvpn[832]: TCP/UDP read bytes,10388
Feb 11 19:12:37 unknown daemon.notice openvpn[832]: TCP/UDP write bytes,8541
Feb 11 19:12:37 unknown daemon.notice openvpn[832]: Auth read bytes,1696
Feb 11 19:12:37 unknown daemon.notice openvpn[832]: pre-compress bytes,0
Feb 11 19:12:37 unknown daemon.notice openvpn[832]: post-compress bytes,0
Feb 11 19:12:37 unknown daemon.notice openvpn[832]: pre-decompress bytes,0

I'm using this router as a VPN gateway so everything that is connected to it is routed through VPN.

What settings do I need in addition to make this work? All traffic is still showing my ISP ip address.

Thank you in advance.

Comments

  • [Deleted User][Deleted User]
    Would you mind posting the complete OpenVPN log?

    You should be able to access this by clicking the Status tab in your router (left side of the screen), and then clicking the Logs link. On the screen in the white area under Logs, please click on View All. Please copy and paste the log text in your next reply, and I'll be glad to take a look at what's going on here!
  • p7335352p7335352
    Certainly and thank you for your assistance. 
    Jan  1 00:00:08 unknown syslog.info syslogd started: BusyBox v1.25.1
Jan  1 00:00:08 unknown user.notice kernel: klogd started: BusyBox v1.25.1 (2017-05-06 12:22:11 CEST)
Jan  1 00:00:08 unknown user.notice kernel: Linux version 2.6.22.19 ([email protected]) (gcc version 4.2.4) #56 Sat May 6 12:26:42 CEST 2017
Jan  1 00:00:08 unknown user.warn kernel: CPU revision is: 00019749
Jan  1 00:00:08 unknown user.warn kernel: Determined physical RAM map:
Jan  1 00:00:08 unknown user.warn kernel:  memory: 02000000 @ 00000000 (usable)
Jan  1 00:00:08 unknown user.debug kernel: Entering add_active_range(0, 0, 8192) 0 entries of 256 used
Jan  1 00:00:08 unknown user.info kernel: Zone PFN ranges:
Jan  1 00:00:08 unknown user.warn kernel:   Normal          0 ->     8192
Jan  1 00:00:08 unknown user.warn kernel:   HighMem      8192 ->     8192
Jan  1 00:00:08 unknown user.info kernel: early_node_map[1] active PFN ranges
Jan  1 00:00:08 unknown user.warn kernel:     0:        0 ->     8192
Jan  1 00:00:08 unknown user.debug kernel: On node 0 totalpages: 8192
Jan  1 00:00:08 unknown user.debug kernel:   Normal zone: 0 pages used for memmap
Jan  1 00:00:08 unknown user.debug kernel:   Normal zone: 0 pages reserved
Jan  1 00:00:08 unknown user.debug kernel:   Normal zone: 8192 pages, LIFO batch:1
Jan  1 00:00:08 unknown user.debug kernel:   HighMem zone: 0 pages used for memmap
Jan  1 00:00:08 unknown user.warn kernel: Built 1 zonelists.  Total pages: 8192
Jan  1 00:00:08 unknown user.notice kernel: Kernel command line: root=/dev/mtdblock2 noinitrd console=ttyS0,115200
Jan  1 00:00:08 unknown user.warn kernel: Primary instruction cache 32kB, physically tagged, 4-way, linesize 32 bytes.
Jan  1 00:00:08 unknown user.warn kernel: Primary data cache 32kB, 4-way, linesize 32 bytes.
Jan  1 00:00:08 unknown user.info kernel: Synthesized TLB refill handler (20 instructions).
Jan  1 00:00:08 unknown user.info kernel: Synthesized TLB load handler fastpath (32 instructions).
Jan  1 00:00:08 unknown user.info kernel: Synthesized TLB store handler fastpath (32 instructions).
Jan  1 00:00:08 unknown user.info kernel: Synthesized TLB modify handler fastpath (31 instructions).
Jan  1 00:00:08 unknown user.warn kernel: PID hash table entries: 256 (order: 8, 1024 bytes)
Jan  1 00:00:08 unknown user.warn kernel: CPU: BCM53572 rev 1 pkg 8 at 300 MHz
Jan  1 00:00:08 unknown user.warn kernel: Using 150.000 MHz high precision timer.
Jan  1 00:00:08 unknown user.info kernel: console [ttyS0] enabled
Jan  1 00:00:08 unknown user.warn kernel: Dentry cache hash table entries: 4096 (order: 2, 16384 bytes)
Jan  1 00:00:08 unknown user.warn kernel: Inode-cache hash table entries: 2048 (order: 1, 8192 bytes)
Jan  1 00:00:08 unknown user.info kernel: Memory: 28520k/32768k available (33k kernel code, 4232k reserved, 2778k data, 128k init, 0k highmem)
Jan  1 00:00:08 unknown user.debug kernel: Calibrating delay loop... 149.50 BogoMIPS (lpj=747520)
Jan  1 00:00:08 unknown user.warn kernel: Mount-cache hash table entries: 512
Jan  1 00:00:08 unknown user.info kernel: NET: Registered protocol family 16
Jan  1 00:00:08 unknown user.warn kernel: PCI: no core
Jan  1 00:00:08 unknown user.warn kernel: PCI: no core
Jan  1 00:00:08 unknown user.warn kernel: PCI: Fixing up bus 0
Jan  1 00:00:08 unknown user.info kernel: NET: Registered protocol family 2
Jan  1 00:00:08 unknown user.info kernel: Time: MIPS clocksource has been installed.
Jan  1 00:00:08 unknown user.warn kernel: IP route cache hash table entries: 1024 (order: 0, 4096 bytes)
Jan  1 00:00:08 unknown user.warn kernel: TCP established hash table entries: 1024 (order: 1, 8192 bytes)
Jan  1 00:00:09 unknown user.warn kernel: TCP bind hash table entries: 1024 (order: 0, 4096 bytes)
Jan  1 00:00:09 unknown user.info kernel: TCP: Hash tables configured (established 1024 bind 1024)
Jan  1 00:00:09 unknown user.info kernel: TCP reno registered
Jan  1 00:00:09 unknown user.info kernel: squashfs: version 3.0 (2006/03/15) Phillip Lougher
Jan  1 00:00:09 unknown user.info kernel: io scheduler noop registered (default)
Jan  1 00:00:09 unknown user.info kernel: HDLC line discipline: version $Revision: 4.8 $, maxframe=4096
Jan  1 00:00:09 unknown user.info kernel: N_HDLC line discipline registered.
Jan  1 00:00:09 unknown user.info kernel: Serial: 8250/16550 driver $Revision: 1.90 $ 2 ports, IRQ sharing disabled
Jan  1 00:00:09 unknown user.info kernel: serial8250: ttyS0 at MMIO 0xb8000300 (irq = 8) is a 16550A
Jan  1 00:00:09 unknown user.info kernel: PPP generic driver version 2.4.2
Jan  1 00:00:09 unknown user.info kernel: MPPE/MPPC encryption/compression module registered
Jan  1 00:00:09 unknown user.info kernel: NET: Registered protocol family 24
Jan  1 00:00:09 unknown user.info kernel: PPPoL2TP kernel driver, V0.18.3
Jan  1 00:00:09 unknown user.info kernel: PPTP driver version 0.8.5
Jan  1 00:00:09 unknown user.err kernel: pflash: found no supported devices
Jan  1 00:00:09 unknown user.warn kernel: Found an ST compatible serial flash with 128 64KB blocks; total size 8MB
Jan  1 00:00:09 unknown user.notice kernel: Creating 5 MTD partitions on "sflash":
Jan  1 00:00:09 unknown user.notice kernel: 0x00000000-0x00040000 : "pmon"
Jan  1 00:00:09 unknown user.notice kernel: 0x00040000-0x007f0000 : "linux"
Jan  1 00:00:09 unknown user.notice kernel: 0x0012c800-0x00730000 : "rootfs"
Jan  1 00:00:09 unknown user.notice kernel: 0x00730000-0x007f0000 : "jffs2"
Jan  1 00:00:09 unknown user.notice kernel: 0x007f0000-0x00800000 : "nvram"
Jan  1 00:00:09 unknown user.warn kernel: _nvram_init: allocat header: 2166030336, size= 65536
Jan  1 00:00:09 unknown user.warn kernel: u32 classifier
Jan  1 00:00:09 unknown user.warn kernel:     OLD policer on 
Jan  1 00:00:09 unknown user.warn kernel: Netfilter messages via NETLINK v0.30.
Jan  1 00:00:09 unknown user.warn kernel: nf_conntrack version 0.5.0 (512 buckets, 4096 max)
Jan  1 00:00:09 unknown user.warn kernel: ip_tables: (C) 2000-2006 Netfilter Core Team
Jan  1 00:00:09 unknown user.info kernel: ipt_account 0.1.21 : Piotr Gasidlo <[email protected]>, http://www.barbara.eu.org/~quaker/ipt_account/
Jan  1 00:00:09 unknown user.warn kernel: net/ipv4/netfilter/tomato_ct.c [May  6 2017 10:49:15]
Jan  1 00:00:09 unknown user.info kernel: NET: Registered protocol family 1
Jan  1 00:00:09 unknown user.info kernel: NET: Registered protocol family 10
Jan  1 00:00:09 unknown user.warn kernel: ip6_tables: (C) 2000-2006 Netfilter Core Team
Jan  1 00:00:09 unknown user.info kernel: NET: Registered protocol family 17
Jan  1 00:00:09 unknown user.info kernel: 802.1Q VLAN Support v1.8 Ben Greear <[email protected]>
Jan  1 00:00:09 unknown user.info kernel: All bugs added by David S. Miller <[email protected]>
Jan  1 00:00:09 unknown user.warn kernel: VFS: Mounted root (squashfs filesystem) readonly.
Jan  1 00:00:09 unknown user.info kernel: Freeing unused kernel memory: 128k freed
Jan  1 00:00:09 unknown user.warn kernel: Warning: unable to open an initial console.
Jan  1 00:00:09 unknown user.warn kernel: emf: module license 'Proprietary' taints kernel.
Jan  1 00:00:09 unknown user.debug kernel: PCI: Setting latency timer of device 0000:00:02.0 to 64
Jan  1 00:00:09 unknown user.warn kernel: eth0: Broadcom BCM47XX 10/100/1000 Mbps Ethernet Controller 5.110.27.20012
Jan  1 00:00:09 unknown user.warn kernel: wl_module_init: passivemode set to 0x0
Jan  1 00:00:09 unknown user.debug kernel: PCI: Setting latency timer of device 0000:00:01.0 to 64
Jan  1 00:00:09 unknown user.warn kernel: eth1: Broadcom BCM4329 802.11 Wireless Controller 5.110.27.20012
Jan  1 00:00:09 unknown user.warn kernel: Algorithmics/MIPS FPU Emulator v1.5
Jan  1 00:00:09 unknown user.debug kernel: vlan1: add 33:33:00:00:00:01 mcast address to master interface
Jan  1 00:00:09 unknown user.debug kernel: vlan1: add 01:00:5e:00:00:01 mcast address to master interface
Jan  1 00:00:09 unknown user.info kernel: vlan1: dev_set_allmulti(master, 1)
Jan  1 00:00:09 unknown user.info kernel: vlan1: dev_set_promiscuity(master, 1)
Jan  1 00:00:09 unknown user.info kernel: device eth0 entered promiscuous mode
Jan  1 00:00:09 unknown user.info kernel: device vlan1 entered promiscuous mode
Jan  1 00:00:09 unknown user.info kernel: device eth1 entered promiscuous mode
Jan  1 00:00:09 unknown user.info kernel: br0: port 2(eth1) entering forwarding state
Jan  1 00:00:09 unknown user.info kernel: br0: port 1(vlan1) entering forwarding state
Jan  1 00:00:09 unknown user.info init[1]: MultiWAN: MWAN is 1 (max 4).
Jan  1 00:00:09 unknown user.warn kernel: vlan2: Setting MAC address to  58 ef 68 50 a9 e9.
Jan  1 00:00:09 unknown user.emerg init[1]: OUT checkConnect, wan is disconnected
Jan  1 00:00:09 unknown user.debug init[1]: 255: pptp peerdns disabled
Jan  1 00:00:09 unknown user.emerg init[1]: OUT checkConnect, wan is disconnected
Jan  1 00:00:10 unknown daemon.info dnsmasq[358]: started, version 2.76 cachesize 4096
Jan  1 00:00:10 unknown daemon.info dnsmasq[358]: compile time options: IPv6 GNU-getopt no-RTC no-DBus no-i18n no-IDN DHCP DHCPv6 no-Lua TFTP no-conntrack ipset Tomato-helper auth no-DNSSEC loop-detect no-inotify
Jan  1 00:00:10 unknown daemon.info dnsmasq[358]: asynchronous logging enabled, queue limit is 5 messages
Jan  1 00:00:10 unknown daemon.info dnsmasq[358]: reading /etc/resolv.dnsmasq
Jan  1 00:00:10 unknown daemon.info dnsmasq[358]: using nameserver 192.168.1.1#53
Jan  1 00:00:10 unknown daemon.info dnsmasq[358]: read /etc/hosts - 2 addresses
Jan  1 00:00:10 unknown daemon.info dnsmasq[358]: read /etc/dnsmasq/hosts/hosts - 5 addresses
Jan  1 00:00:10 unknown user.info kernel: IMQ starting with 2 devices...
Jan  1 00:00:10 unknown user.info kernel: IMQ driver loaded successfully.
Jan  1 00:00:10 unknown user.info kernel: 	Hooking IMQ after NAT on PREROUTING.
Jan  1 00:00:10 unknown user.info kernel: 	Hooking IMQ before NAT on POSTROUTING.
Feb 11 19:53:16 unknown user.notice kernel: Ebtables v2.0 registered
Feb 11 19:53:16 unknown user.info kernel: device eth1 left promiscuous mode
Feb 11 19:53:16 unknown user.info kernel: br0: port 2(eth1) entering disabled state
Feb 11 19:53:16 unknown user.info kernel: vlan1: dev_set_allmulti(master, -1)
Feb 11 19:53:16 unknown user.info kernel: device eth1 entered promiscuous mode
Feb 11 19:53:16 unknown user.info kernel: br0: port 2(eth1) entering forwarding state
Feb 11 19:53:18 unknown authpriv.info dropbear[630]: Running in background
Feb 11 19:53:18 unknown daemon.info dnsmasq[358]: exiting on receipt of SIGTERM
Feb 11 19:53:18 unknown user.emerg init[1]: OUT checkConnect, wan is disconnected
Feb 11 19:53:18 unknown daemon.info dnsmasq[639]: started, version 2.76 cachesize 4096
Feb 11 19:53:18 unknown daemon.info dnsmasq[639]: compile time options: IPv6 GNU-getopt no-RTC no-DBus no-i18n no-IDN DHCP DHCPv6 no-Lua TFTP no-conntrack ipset Tomato-helper auth no-DNSSEC loop-detect no-inotify
Feb 11 19:53:18 unknown daemon.info dnsmasq[639]: asynchronous logging enabled, queue limit is 5 messages
Feb 11 19:53:18 unknown daemon.info dnsmasq[639]: reading /etc/resolv.dnsmasq
Feb 11 19:53:18 unknown daemon.info dnsmasq[639]: using nameserver 192.168.1.1#53
Feb 11 19:53:18 unknown daemon.info dnsmasq[639]: read /etc/hosts - 2 addresses
Feb 11 19:53:18 unknown daemon.info dnsmasq[639]: read /etc/dnsmasq/hosts/hosts - 5 addresses
Feb 11 19:53:18 unknown user.debug init[1]: starting rstats.
Feb 11 19:53:18 unknown user.debug init[1]: starting cstats.
Feb 11 19:53:18 unknown user.info init[1]: Linksys E1200 v2.0: Tomato 1.28.0000 MIPSR2-140 K26 Max
Feb 11 19:53:19 unknown user.notice root: Stopping NFS Server ...
Feb 11 19:53:19 unknown user.notice root: NFS Server stopped ...
Feb 11 20:00:00 unknown syslog.info root: -- MARK --
Feb 11 21:00:00 unknown syslog.info root: -- MARK --
Feb 11 22:00:01 unknown syslog.info root: -- MARK --
Feb 11 23:00:00 unknown syslog.info root: -- MARK --
Feb 12 00:00:00 unknown syslog.info root: -- MARK --
Feb 12 01:00:00 unknown syslog.info root: -- MARK --
Feb 12 02:00:00 unknown syslog.info root: -- MARK --
Feb 12 03:00:00 unknown syslog.info root: -- MARK --
Feb 12 04:00:00 unknown syslog.info root: -- MARK --
Feb 12 05:00:00 unknown syslog.info root: -- MARK --
Feb 12 06:00:00 unknown syslog.info root: -- MARK --
Feb 12 07:00:00 unknown syslog.info root: -- MARK --
Feb 12 08:00:00 unknown syslog.info root: -- MARK --
Feb 12 09:00:00 unknown syslog.info root: -- MARK --
Feb 12 10:00:00 unknown syslog.info root: -- MARK --
  • p7335352p7335352
    noticed the VPN not switched on, so here is the additional after pressing "Start Now"

    Feb 12 10:27:49 unknown user.info kernel: tun: Universal TUN/TAP device driver, 1.6
Feb 12 10:27:49 unknown user.info kernel: tun: (C) 1999-2004 Max Krasnyansky <[email protected]>
Feb 12 10:27:50 unknown daemon.notice openvpn[962]: OpenVPN 2.4.1 mipsel-unknown-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on May  6 2017
Feb 12 10:27:50 unknown daemon.notice openvpn[962]: library versions: OpenSSL 1.0.2k  26 Jan 2017, LZO 2.09
Feb 12 10:27:50 unknown daemon.warn openvpn[968]: WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
Feb 12 10:27:50 unknown daemon.warn openvpn[968]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Feb 12 10:27:50 unknown daemon.notice openvpn[968]: TCP/UDP: Preserving recently used remote address: [AF_INET]104.238.169.58:1198
Feb 12 10:27:50 unknown daemon.notice openvpn[968]: UDP link local: (not bound)
Feb 12 10:27:50 unknown daemon.notice openvpn[968]: UDP link remote: [AF_INET]104.238.169.58:1198
Feb 12 10:27:50 unknown daemon.warn openvpn[968]: WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Feb 12 10:27:52 unknown daemon.warn openvpn[968]: WARNING: 'link-mtu' is used inconsistently, local='link-mtu 1558', remote='link-mtu 1542'
Feb 12 10:27:52 unknown daemon.warn openvpn[968]: WARNING: 'cipher' is used inconsistently, local='cipher AES-128-CBC', remote='cipher BF-CBC'
Feb 12 10:27:52 unknown daemon.notice openvpn[968]: [5bc088f4659c42693c6d0f2e325306e9] Peer Connection Initiated with [AF_INET]104.238.169.58:1198
Feb 12 10:27:52 unknown user.notice root: vpnrouting: clean-up
Feb 12 10:27:52 unknown user.warn kernel: ip_set version 4 loaded
Feb 12 10:27:52 unknown user.notice root: vpnrouting: searching gateway for tun11
Feb 12 10:27:53 unknown daemon.notice openvpn[968]: TUN/TAP device tun11 opened
Feb 12 10:27:53 unknown daemon.notice openvpn[968]: do_ifconfig, tt->did_ifconfig_ipv6_setup=0
Feb 12 10:27:53 unknown daemon.notice openvpn[968]: /sbin/ifconfig tun11 10.79.10.6 pointopoint 10.79.10.5 mtu 1500
Feb 12 10:27:53 unknown daemon.notice openvpn[968]: updown.sh tun11 1500 1558 10.79.10.6 10.79.10.5 init
Feb 12 10:27:54 unknown daemon.info dnsmasq[639]: exiting on receipt of SIGTERM
Feb 12 10:27:54 unknown user.emerg init[1]: OUT checkConnect, wan is disconnected
Feb 12 10:27:54 unknown user.debug init[1]: 255: pptp peerdns disabled
Feb 12 10:27:54 unknown user.emerg init[1]: OUT checkConnect, wan is disconnected
Feb 12 10:27:54 unknown daemon.info dnsmasq[1080]: started, version 2.76 cachesize 4096
Feb 12 10:27:54 unknown daemon.info dnsmasq[1080]: compile time options: IPv6 GNU-getopt no-RTC no-DBus no-i18n no-IDN DHCP DHCPv6 no-Lua TFTP no-conntrack ipset Tomato-helper auth no-DNSSEC loop-detect no-inotify
Feb 12 10:27:54 unknown daemon.info dnsmasq[1080]: asynchronous logging enabled, queue limit is 5 messages
Feb 12 10:27:54 unknown daemon.info dnsmasq[1080]: reading /etc/resolv.dnsmasq
Feb 12 10:27:54 unknown daemon.info dnsmasq[1080]: using nameserver 209.222.18.222#53
Feb 12 10:27:54 unknown daemon.info dnsmasq[1080]: using nameserver 209.222.18.218#53
Feb 12 10:27:54 unknown daemon.info dnsmasq[1080]: using nameserver 192.168.1.1#53
Feb 12 10:27:54 unknown daemon.info dnsmasq[1080]: read /etc/hosts - 2 addresses
Feb 12 10:27:54 unknown daemon.info dnsmasq[1080]: read /etc/dnsmasq/hosts/hosts - 5 addresses
Feb 12 10:27:54 unknown daemon.notice openvpn[968]: Initialization Sequence Completed
Feb 12 10:27:54 unknown daemon.notice openvpn[968]: OpenVPN STATISTICS
Feb 12 10:27:54 unknown daemon.notice openvpn[968]: Updated,Mon Feb 12 10:27:54 2018
Feb 12 10:27:54 unknown daemon.notice openvpn[968]: TUN/TAP read bytes,0
Feb 12 10:27:54 unknown daemon.notice openvpn[968]: TUN/TAP write bytes,0
Feb 12 10:27:54 unknown daemon.notice openvpn[968]: TCP/UDP read bytes,3064
Feb 12 10:27:54 unknown daemon.notice openvpn[968]: TCP/UDP write bytes,1132
Feb 12 10:27:54 unknown daemon.notice openvpn[968]: Auth read bytes,0
Feb 12 10:27:54 unknown daemon.notice openvpn[968]: pre-compress bytes,0
Feb 12 10:27:54 unknown daemon.notice openvpn[968]: post-compress bytes,0
Feb 12 10:27:54 unknown daemon.notice openvpn[968]: pre-decompress bytes,0
Feb 12 10:27:54 unknown daemon.notice openvpn[968]: post-decompress bytes,0
Feb 12 10:27:54 unknown daemon.notice openvpn[968]: END
Feb 12 10:27:55 unknown user.notice root: vpnrouting: got gateway for tun11 - IP 10.79.10.6 - ID 311
Feb 12 10:27:56 unknown user.notice root: vpnrouting: Type: 2 - add 192.168.1.16
  • p7335352p7335352
    PIAColleen said:
    Would you mind posting the complete OpenVPN log?

    You should be able to access this by clicking the Status tab in your router (left side of the screen), and then clicking the Logs link. On the screen in the white area under Logs, please click on View All. Please copy and paste the log text in your next reply, and I'll be glad to take a look at what's going on here!
    Hi PIAColleen - anything from the above logs that jumps out ?

    Thank you
  • p7335352p7335352
    Anything?
  • [Deleted User][Deleted User]
    Hi there @p7335352, I'm so sorry about this! Looks like the tag didn't take, and I didn't see this thread until just now. It looks like OpenVPN is initializing properly, so the client configuration itself is fine. However, since there's still no data passing through the VPN tunnel, there's likely a routing issue at play here. 

    Please navigate to Tools>Commands in the Tomato GUI, and paste the result of the following commands into your reply:

    route -n
    ifconfig -a

     If you ever need to tag me again, just append an @ to my forum handle (@PIAColleen) and I'll be notified by email.
  • p7335352p7335352
    Hi there @p7335352, I'm so sorry about this! Looks like the tag didn't take, and I didn't see this thread until just now. It looks like OpenVPN is initializing properly, so the client configuration itself is fine. However, since there's still no data passing through the VPN tunnel, there's likely a routing issue at play here. 

    Please navigate to Tools>Commands in the Tomato GUI, and paste the result of the following commands into your reply:

    route -n
    ifconfig -a

     If you ever need to tag me again, just append an @ to my forum handle (@PIAColleen) and I'll be notified by email.
    Hi @PIAColleen,

    Thank you for coming back to me.. please see below log.

    Kernel IP routing table 
    Destination     Gateway         Genmask         Flags Metric Ref    Use Iface 
    192.168.1.0     0.0.0.0         255.255.255.0   U     0      0        0 br0 
    127.0.0.0       0.0.0.0         255.0.0.0       U     0      0        0 lo 
    0.0.0.0         192.168.1.1     0.0.0.0         UG    0      0        0 br0 
    br0        Link encap:Ethernet  HWaddr 58:EF:68:50:A9:E8   
               inet addr:192.168.1.97  Bcast:192.168.1.255  Mask:255.255.255.0 
               UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1 
               RX packets:355940 errors:0 dropped:0 overruns:0 frame:0 
               TX packets:10945 errors:0 dropped:0 overruns:0 carrier:0 
               collisions:0 txqueuelen:0  
               RX bytes:49033415 (46.7 MiB)  TX bytes:615487 (601.0 KiB) 
     
    eth0       Link encap:Ethernet  HWaddr 58:EF:68:50:A9:E8   
               UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1 
               RX packets:355950 errors:0 dropped:0 overruns:0 frame:0 
               TX packets:10945 errors:0 dropped:0 overruns:0 carrier:0 
               collisions:0 txqueuelen:1000  
               RX bytes:56866213 (54.2 MiB)  TX bytes:659267 (643.8 KiB) 
               Interrupt:4 Base address:0x2000  
     
    eth1       Link encap:Ethernet  HWaddr 58:EF:68:50:A9:EA   
               UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1 
               RX packets:0 errors:0 dropped:0 overruns:0 frame:84326871 
               TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 
               collisions:0 txqueuelen:1000  
               RX bytes:0 (0.0 B)  TX bytes:0 (0.0 B) 
               Interrupt:3 Base address:0x1000  
     
    imq0       Link encap:UNSPEC  HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00   
               NOARP  MTU:1500  Metric:1 
               RX packets:0 errors:0 dropped:0 overruns:0 frame:0 
               TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 
               collisions:0 txqueuelen:30  
               RX bytes:0 (0.0 B)  TX bytes:0 (0.0 B) 
     
    imq1       Link encap:UNSPEC  HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00   
               NOARP  MTU:1500  Metric:1 
               RX packets:0 errors:0 dropped:0 overruns:0 frame:0 
               TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 
               collisions:0 txqueuelen:30  
               RX bytes:0 (0.0 B)  TX bytes:0 (0.0 B) 
     
    lo         Link encap:Local Loopback   
               inet addr:127.0.0.1  Mask:255.0.0.0 
               inet6 addr: ::1/128 Scope:Host 
               UP LOOPBACK RUNNING MULTICAST  MTU:16436  Metric:1 
               RX packets:97 errors:0 dropped:0 overruns:0 frame:0 
               TX packets:97 errors:0 dropped:0 overruns:0 carrier:0 
               collisions:0 txqueuelen:0  
               RX bytes:9400 (9.1 KiB)  TX bytes:9400 (9.1 KiB) 
     
    vlan1      Link encap:Ethernet  HWaddr 58:EF:68:50:A9:E8   
               UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1 
               RX packets:355950 errors:0 dropped:0 overruns:0 frame:0 
               TX packets:10945 errors:0 dropped:0 overruns:0 carrier:0 
               collisions:0 txqueuelen:0  
               RX bytes:50459113 (48.1 MiB)  TX bytes:659267 (643.8 KiB) 
     
    vlan2      Link encap:Ethernet  HWaddr 58:EF:68:50:A9:E9   
               BROADCAST MULTICAST  MTU:1500  Metric:1 
               RX packets:0 errors:0 dropped:0 overruns:0 frame:0 
               TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 
               collisions:0 txqueuelen:0  
               RX bytes:0 (0.0 B)  TX bytes:0 (0.0 B) 

Apologies if i'm completely missing something easy. 

Many thanks & my regards,
Simon.
  • p7335352p7335352
    @PIAColleen

    apologies, client not running again.

    Kernel IP routing table 
    Destination     Gateway         Genmask         Flags Metric Ref    Use Iface 
    10.94.10.5      0.0.0.0         255.255.255.255 UH    0      0        0 tun11 
    10.94.10.1      10.94.10.5      255.255.255.255 UGH   0      0        0 tun11 
    104.238.169.58  192.168.1.1     255.255.255.255 UGH   0      0        0 br0 
    192.168.1.0     0.0.0.0         255.255.255.0   U     0      0        0 br0 
    127.0.0.0       0.0.0.0         255.0.0.0       U     0      0        0 lo 
    0.0.0.0         10.94.10.5      128.0.0.0       UG    0      0        0 tun11 
    128.0.0.0       10.94.10.5      128.0.0.0       UG    0      0        0 tun11 
    0.0.0.0         192.168.1.1     0.0.0.0         UG    0      0        0 br0 
    br0        Link encap:Ethernet  HWaddr 58:EF:68:50:A9:E8   
               inet addr:192.168.1.97  Bcast:192.168.1.255  Mask:255.255.255.0 
               UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1 
               RX packets:356189 errors:0 dropped:0 overruns:0 frame:0 
               TX packets:11128 errors:0 dropped:0 overruns:0 carrier:0 
               collisions:0 txqueuelen:0  
               RX bytes:49076090 (46.8 MiB)  TX bytes:742686 (725.2 KiB) 
     
    eth0       Link encap:Ethernet  HWaddr 58:EF:68:50:A9:E8   
               UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1 
               RX packets:356199 errors:0 dropped:0 overruns:0 frame:0 
               TX packets:11128 errors:0 dropped:0 overruns:0 carrier:0 
               collisions:0 txqueuelen:1000  
               RX bytes:56914366 (54.2 MiB)  TX bytes:787198 (768.7 KiB) 
               Interrupt:4 Base address:0x2000  
     
    eth1       Link encap:Ethernet  HWaddr 58:EF:68:50:A9:EA   
               UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1 
               RX packets:0 errors:0 dropped:0 overruns:0 frame:84429953 
               TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 
               collisions:0 txqueuelen:1000  
               RX bytes:0 (0.0 B)  TX bytes:0 (0.0 B) 
               Interrupt:3 Base address:0x1000  
     
    imq0       Link encap:UNSPEC  HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00   
               NOARP  MTU:1500  Metric:1 
               RX packets:0 errors:0 dropped:0 overruns:0 frame:0 
               TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 
               collisions:0 txqueuelen:30  
               RX bytes:0 (0.0 B)  TX bytes:0 (0.0 B) 
     
    imq1       Link encap:UNSPEC  HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00   
               NOARP  MTU:1500  Metric:1 
               RX packets:0 errors:0 dropped:0 overruns:0 frame:0 
               TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 
               collisions:0 txqueuelen:30  
               RX bytes:0 (0.0 B)  TX bytes:0 (0.0 B) 
     
    lo         Link encap:Local Loopback   
               inet addr:127.0.0.1  Mask:255.0.0.0 
               inet6 addr: ::1/128 Scope:Host 
               UP LOOPBACK RUNNING MULTICAST  MTU:16436  Metric:1 
               RX packets:97 errors:0 dropped:0 overruns:0 frame:0 
               TX packets:97 errors:0 dropped:0 overruns:0 carrier:0 
               collisions:0 txqueuelen:0  
               RX bytes:9400 (9.1 KiB)  TX bytes:9400 (9.1 KiB) 
     
    tun11      Link encap:UNSPEC  HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00   
               inet addr:10.94.10.6  P-t-P:10.94.10.5  Mask:255.255.255.255 
               UP POINTOPOINT RUNNING NOARP MULTICAST  MTU:1500  Metric:1 
               RX packets:0 errors:0 dropped:0 overruns:0 frame:0 
               TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 
               collisions:0 txqueuelen:100  
               RX bytes:0 (0.0 B)  TX bytes:0 (0.0 B) 
     
    tun21      Link encap:UNSPEC  HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00   
               UP POINTOPOINT RUNNING NOARP PROMISC MULTICAST  MTU:1500  Metric:1 
               RX packets:0 errors:0 dropped:0 overruns:0 frame:0 
               TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 
               collisions:0 txqueuelen:100  
               RX bytes:0 (0.0 B)  TX bytes:0 (0.0 B) 
     
    vlan1      Link encap:Ethernet  HWaddr 58:EF:68:50:A9:E8   
               UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1 
               RX packets:356199 errors:0 dropped:0 overruns:0 frame:0 
               TX packets:11128 errors:0 dropped:0 overruns:0 carrier:0 
               collisions:0 txqueuelen:0  
               RX bytes:50502784 (48.1 MiB)  TX bytes:787198 (768.7 KiB) 
     
    vlan2      Link encap:Ethernet  HWaddr 58:EF:68:50:A9:E9   
               BROADCAST MULTICAST  MTU:1500  Metric:1 
               RX packets:0 errors:0 dropped:0 overruns:0 frame:0 
               TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 
               collisions:0 txqueuelen:0  
               RX bytes:0 (0.0 B)  TX bytes:0 (0.0 B) 
  • p4650705p4650705
    They don’t care, support is non existent, I’m in the same situation as you. She didn’t even bother to reply to me!
  • Max-PMax-P
     According to those logs and the routing table, it seems everything should be working fine.

    You've got a PIA IP, a route to the other end of the VPN and two routes going through the VPN that are more specific than the default one. You have no IPv6 so IPv6 leaking is improbable.

    Have you tried clearing your browser cache or using an incognito window to check the IP, just to be sure?

    PIAColleen will be in tomorrow so she'll dig deeper with you but Linux-speaking, that looks perfectly fine to me :/
  • p7335352p7335352
    Hi @Max-P

    Thanks for your comments, i've tried all the above but to no avail... I'm sure we'll get there :-) 

    Do I need to set a routing policy on my primary rooter ?

    Regards,
    Simon.
  • Max-PMax-P
    @p7335352 No, you shouldn't really need to set up anything on the primary router. The log shows a successful connection, and for it to reach this stage at all it has to have talked to the VPN server and got everything it needs.

    In your case, it just looks like it's not sending anything to the VPN at all in the first place.

    One way we could possibly force it to try the VPN would be to remove the default gateway. You can temporarily do this with this command:
    route del default
    And then see if the VPN is being used at all this way. To revert this change, just reboot the router and it will put it back. But before reverting, can you paste us the logs as well as the two commands @PIAColleen asked for again after doing that so we can have a look at the updated state of things?
  • p7335352p7335352
    Max-P said:
    @p7335352 No, you shouldn't really need to set up anything on the primary router. The log shows a successful connection, and for it to reach this stage at all it has to have talked to the VPN server and got everything it needs.

    In your case, it just looks like it's not sending anything to the VPN at all in the first place.

    One way we could possibly force it to try the VPN would be to remove the default gateway. You can temporarily do this with this command:
    route del default
    And then see if the VPN is being used at all this way. To revert this change, just reboot the router and it will put it back. But before reverting, can you paste us the logs as well as the two commands @PIAColleen asked for again after doing that so we can have a look at the updated state of things?
    @Max-P ; & @PIAColleen

    Forgive me for being a complete noob. where would i enter this ?

    administration > Scripts ?
    (didn't work when i tried this)

    I really do appreciate your time in assisting me and advanced apologies for the lack of understanding on the router configuration. 

    Many thanks & my regards,
    Simon.


  • p7335352p7335352
    @p4650705- did you manage to sort it mate ?

    I've had a few hours trawling the internet but to no avail. 

    I'm going to change vpn provider if i cant get it working.
Sign In or Register to comment.