Jump to content

XR500 VPN Issue


Recommended Posts

Hi

 

I have a ProtonVPN Account. I downloaded the Config File, i login and copy/paste the File but it does not let me connect. When i connect with the MacOS App it works perfectly but thru HybridVPN there r always "failed" thingys in the logs. 

Does anyone have a idea how i can use ProtonVPN on Xr500 and connect? 

 

Thx in Advance. 

Link to comment
Share on other sites

 
 
 
 
 
 
VPN Setup
 
 
 
 
 
Enable
 
 
Block Traffic If VPN Disconnects
VPN SETUP
 
 
 
Information
 
 
Logs
 
 
Mon Oct 11 07:44:56 2021 OpenVPN 2.4.3 arm-openwrt-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Dec 29 2020 Mon Oct 11 07:44:56 2021 library versions: OpenSSL 1.0.2n 7 Dec 2017, LZO 2.06 Mon Oct 11 07:44:56 2021 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts Mon Oct 11 07:44:56 2021 Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication Mon Oct 11 07:44:56 2021 Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication Mon Oct 11 07:44:56 2021 TCP/UDP: Preserving recently used remote address: [AF_INET]46.166.182.31:443 Mon Oct 11 07:44:56 2021 Socket Buffers: R=[163840->163840] S=[163840->163840] Mon Oct 11 07:44:56 2021 UDP link local: (not bound) Mon Oct 11 07:44:56 2021 UDP link remote: [AF_INET]46.166.182.31:443 Mon Oct 11 07:44:56 2021 TLS: Initial packet from [AF_INET]46.166.182.31:443, sid=384739b5 3136b131 Mon Oct 11 07:44:56 2021 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this Mon Oct 11 07:44:56 2021 VERIFY OK: depth=2, C=CH, O=ProtonVPN AG, CN=ProtonVPN Root CA Mon Oct 11 07:44:56 2021 VERIFY OK: depth=1, C=CH, O=ProtonVPN AG, CN=ProtonVPN Intermediate CA 1 Mon Oct 11 07:44:56 2021 VERIFY KU OK Mon Oct 11 07:44:56 2021 Validating certificate extended key usage Mon Oct 11 07:44:56 2021 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication Mon Oct 11 07:44:56 2021 VERIFY EKU OK Mon Oct 11 07:44:56 2021 VERIFY OK: depth=0, CN=lxc-nl-35.protonvpn.com Mon Oct 11 07:44:56 2021 WARNING: 'link-mtu' is used inconsistently, local='link-mtu 1633', remote='link-mtu 1634' Mon Oct 11 07:44:56 2021 WARNING: 'comp-lzo' is present in remote config but missing in local config, remote='comp-lzo' Mon Oct 11 07:44:56 2021 Control Channel: TLSv1.2, cipher TLSv1/SSLv3 ECDHE-RSA-AES256-GCM-SHA384, 4096 bit RSA Mon Oct 11 07:44:56 2021 [lxc-nl-35.protonvpn.com] Peer Connection Initiated with [AF_INET]46.166.182.31:443 Mon Oct 11 07:44:57 2021 SENT CONTROL [lxc-nl-35.protonvpn.com]: 'PUSH_REQUEST' (status=1) Mon Oct 11 07:45:02 2021 SENT CONTROL [lxc-nl-35.protonvpn.com]: 'PUSH_REQUEST' (status=1) Mon Oct 11 07:45:02 2021 AUTH: Received control message: AUTH_FAILED Mon Oct 11 07:45:02 2021 SIGTERM[soft,auth-failure] received, process exiting
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
VPN Traffic
 
 
 
ADD DEVICE
 
 
 
 
 
 
 

nl-free-06.protonvpn.com.udp.ovpn

Link to comment
Share on other sites

Ok, i just did that and it failed. 

 

I logged in with the same U & PW on the Website and the App iOS & Android there its working. 

 

Any idea whats going on ? 

 

Or is there another Free or 7 Days + Free VPN which work the the XR500. Used PureVPN for 1 Year in the Regular Settings it was horrible 4 Gaming. 

 

 

Link to comment
Share on other sites

57 minutes ago, John Doe said:

Ok, i just did that and it failed. 

 

I logged in with the same U & PW on the Website and the App iOS & Android there its working. 

 

Any idea whats going on ? 

 

Or is there another Free or 7 Days + Free VPN which work the the XR500. Used PureVPN for 1 Year in the Regular Settings it was horrible 4 Gaming. 

 

 

OK thanks, could you please try a different configuration file for a different server to confirm you're getting the same problem across all servers?

 

Link to comment
Share on other sites

Sure i just did that. Several diffrent ones. Failes again, and this cames up:

 

 
 
 
 
 
 
VPN Setup
 
 
 
 
 
Enable
 
 
Block Traffic If VPN Disconnects
VPN SETUP
 
 
 
Information
Logs
 
 
Tue Oct 12 07:05:08 2021 OpenVPN 2.4.3 arm-openwrt-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Dec 29 2020 Tue Oct 12 07:05:08 2021 library versions: OpenSSL 1.0.2n 7 Dec 2017, LZO 2.06 Tue Oct 12 07:05:08 2021 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts Tue Oct 12 07:05:08 2021 Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication Tue Oct 12 07:05:08 2021 Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication Tue Oct 12 07:05:08 2021 TCP/UDP: Preserving recently used remote address: [AF_INET]107.181.180.167:5060 Tue Oct 12 07:05:08 2021 Socket Buffers: R=[163840->163840] S=[163840->163840] Tue Oct 12 07:05:08 2021 UDP link local: (not bound) Tue Oct 12 07:05:08 2021 UDP link remote: [AF_INET]107.181.180.167:5060 Tue Oct 12 07:05:08 2021 TLS: Initial packet from [AF_INET]107.181.180.167:5060, sid=d4e70a5d ab9da4d2 Tue Oct 12 07:05:08 2021 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this Tue Oct 12 07:05:08 2021 VERIFY OK: depth=2, C=CH, O=ProtonVPN AG, CN=ProtonVPN Root CA Tue Oct 12 07:05:08 2021 VERIFY OK: depth=1, C=CH, O=ProtonVPN AG, CN=ProtonVPN Intermediate CA 1 Tue Oct 12 07:05:08 2021 VERIFY KU OK Tue Oct 12 07:05:08 2021 Validating certificate extended key usage Tue Oct 12 07:05:08 2021 ++ Certificate has EKU (str) 1.3.6.1.5.5.8.2.2, expects TLS Web Server Authentication Tue Oct 12 07:05:08 2021 ++ Certificate has EKU (oid) 1.3.6.1.5.5.8.2.2, expects TLS Web Server Authentication Tue Oct 12 07:05:08 2021 ++ Certificate has EKU (str) TLS Web Client Authentication, expects TLS Web Server Authentication Tue Oct 12 07:05:08 2021 ++ Certificate has EKU (oid) 1.3.6.1.5.5.7.3.2, expects TLS Web Server Authentication Tue Oct 12 07:05:08 2021 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication Tue Oct 12 07:05:08 2021 VERIFY EKU OK Tue Oct 12 07:05:08 2021 VERIFY OK: depth=0, CN=lxc-nl-38.protonvpn.com Tue Oct 12 07:05:08 2021 WARNING: 'link-mtu' is used inconsistently, local='link-mtu 1633', remote='link-mtu 1634' Tue Oct 12 07:05:08 2021 WARNING: 'comp-lzo' is present in remote config but missing in local config, remote='comp-lzo' Tue Oct 12 07:05:08 2021 Control Channel: TLSv1.2, cipher TLSv1/SSLv3 ECDHE-RSA-AES256-GCM-SHA384, 4096 bit RSA Tue Oct 12 07:05:08 2021 [lxc-nl-38.protonvpn.com] Peer Connection Initiated with [AF_INET]107.181.180.167:5060 Tue Oct 12 07:05:09 2021 SENT CONTROL [lxc-nl-38.protonvpn.com]: 'PUSH_REQUEST' (status=1) Tue Oct 12 07:05:14 2021 SENT CONTROL [lxc-nl-38.protonvpn.com]: 'PUSH_REQUEST' (status=1) Tue Oct 12 07:05:14 2021 AUTH: Received control message: AUTH_FAILED Tue Oct 12 07:05:14 2021 SIGTERM[soft,auth-failure] received, process exiting
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
VPN Traffic
 
 
 
ADD DEVICE
 
 
 
 
 
 
 
Link to comment
Share on other sites

  • Administrators

Try this config instead:

client
dev tun
proto udp
remote nl-free-06.protonvpn.com 4569
remote-random
resolv-retry infinite
nobind
cipher AES-256-CBC
auth SHA512
verb 3
setenv CLIENT_CERT 0
tun-mtu 1500
tun-mtu-extra 32
mssfix 1450
persist-key
persist-tun
reneg-sec 0
remote-cert-tls server
auth-user-pass
pull
fast-io

<ca>
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
</ca>

key-direction 1
<tls-auth>
# 2048 bit OpenVPN static key
-----BEGIN OpenVPN Static key V1-----
6acef03f62675b4b1bbd03e53b187727
423cea742242106cb2916a8a4c829756
3d22c7e5cef430b1103c6f66eb1fc5b3
75a672f158e2e2e936c3faa48b035a6d
e17beaac23b5f03b10b868d53d03521d
8ba115059da777a60cbfd7b2c9c57472
78a15b8f6e68a3ef7fd583ec9f398c8b
d4735dab40cbd1e3c62a822e97489186
c30a0b48c7c38ea32ceb056d3fa5a710
e10ccc7a0ddb363b08c3d2777a3395e1
0c0b6080f56309192ab5aacd4b45f55d
a61fc77af39bd81a19218a79762c3386
2df55785075f37d8c71dc8a42097ee43
344739a0dd48d03025b0450cf1fb5e8c
aeb893d9a96d1f15519bb3c4dcb40ee3
16672ea16c012664f8a9f11255518deb
-----END OpenVPN Static key V1-----
</tls-auth>

Link to comment
Share on other sites

I just tried, it did not work for some reason, here is the log file. 

 

 
 
 
 
 
 
VPN Setup
 
 
 
 
 
Enable
 
 
Block Traffic If VPN Disconnects
VPN SETUP
 
 
 
Information
Logs
 
 
Tue Oct 12 17:04:47 2021 OpenVPN 2.4.3 arm-openwrt-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Dec 29 2020 Tue Oct 12 17:04:47 2021 library versions: OpenSSL 1.0.2n 7 Dec 2017, LZO 2.06 Tue Oct 12 17:04:47 2021 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts Tue Oct 12 17:04:47 2021 Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication Tue Oct 12 17:04:47 2021 Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication Tue Oct 12 17:04:47 2021 TCP/UDP: Preserving recently used remote address: [AF_INET]46.166.182.59:4569 Tue Oct 12 17:04:47 2021 Socket Buffers: R=[163840->163840] S=[163840->163840] Tue Oct 12 17:04:47 2021 UDP link local: (not bound) Tue Oct 12 17:04:47 2021 UDP link remote: [AF_INET]46.166.182.59:4569 Tue Oct 12 17:04:49 2021 TLS: Initial packet from [AF_INET]46.166.182.59:4569, sid=02fbe0e8 af7d73a6 Tue Oct 12 17:04:49 2021 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this Tue Oct 12 17:04:50 2021 VERIFY OK: depth=2, C=CH, O=ProtonVPN AG, CN=ProtonVPN Root CA Tue Oct 12 17:04:50 2021 VERIFY OK: depth=1, C=CH, O=ProtonVPN AG, CN=ProtonVPN Intermediate CA 1 Tue Oct 12 17:04:50 2021 VERIFY KU OK Tue Oct 12 17:04:50 2021 Validating certificate extended key usage Tue Oct 12 17:04:50 2021 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication Tue Oct 12 17:04:50 2021 VERIFY EKU OK Tue Oct 12 17:04:50 2021 VERIFY OK: depth=0, CN=lxc-nl-34.protonvpn.com Tue Oct 12 17:04:50 2021 WARNING: 'link-mtu' is used inconsistently, local='link-mtu 1633', remote='link-mtu 1634' Tue Oct 12 17:04:50 2021 WARNING: 'comp-lzo' is present in remote config but missing in local config, remote='comp-lzo' Tue Oct 12 17:04:50 2021 Control Channel: TLSv1.2, cipher TLSv1/SSLv3 ECDHE-RSA-AES256-GCM-SHA384, 4096 bit RSA Tue Oct 12 17:04:50 2021 [lxc-nl-34.protonvpn.com] Peer Connection Initiated with [AF_INET]46.166.182.59:4569 Tue Oct 12 17:04:51 2021 SENT CONTROL [lxc-nl-34.protonvpn.com]: 'PUSH_REQUEST' (status=1) Tue Oct 12 17:04:56 2021 SENT CONTROL [lxc-nl-34.protonvpn.com]: 'PUSH_REQUEST' (status=1) Tue Oct 12 17:04:58 2021 AUTH: Received control message: AUTH_FAILED Tue Oct 12 17:04:58 2021 SIGTERM[soft,auth-failure] received, process exiting
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
VPN Traffic
 
 
 
ADD DEVICE
 
 
 
 
 
 
 
Link to comment
Share on other sites

  • Administrators

I don't think there is anything wrong with the file, it's failing on the auth again - write the user/password out somewhere you can read it so you definitely haven't made a mistake, then copy and paste it in and see if it works

Link to comment
Share on other sites

I just did that, still does not work. Could it be that the Free Version does not Support Netduma etc? 

 

This is the log:

 

 
 
 
 
 
 
VPN Setup
 
 
 
 
 
Enable
 
 
Block Traffic If VPN Disconnects
VPN SETUP
 
 
 
Information
Logs
 
 
Wed Oct 13 07:34:59 2021 OpenVPN 2.4.3 arm-openwrt-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Dec 29 2020 Wed Oct 13 07:34:59 2021 library versions: OpenSSL 1.0.2n 7 Dec 2017, LZO 2.06 Wed Oct 13 07:34:59 2021 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts Wed Oct 13 07:34:59 2021 Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication Wed Oct 13 07:34:59 2021 Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication Wed Oct 13 07:34:59 2021 TCP/UDP: Preserving recently used remote address: [AF_INET]46.166.182.69:4569 Wed Oct 13 07:34:59 2021 Socket Buffers: R=[163840->163840] S=[163840->163840] Wed Oct 13 07:34:59 2021 UDP link local: (not bound) Wed Oct 13 07:34:59 2021 UDP link remote: [AF_INET]46.166.182.69:4569 Wed Oct 13 07:34:59 2021 TLS: Initial packet from [AF_INET]46.166.182.69:4569, sid=2912c5a4 e86101c4 Wed Oct 13 07:34:59 2021 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this Wed Oct 13 07:34:59 2021 VERIFY OK: depth=2, C=CH, O=ProtonVPN AG, CN=ProtonVPN Root CA Wed Oct 13 07:34:59 2021 VERIFY OK: depth=1, C=CH, O=ProtonVPN AG, CN=ProtonVPN Intermediate CA 1 Wed Oct 13 07:34:59 2021 VERIFY KU OK Wed Oct 13 07:34:59 2021 Validating certificate extended key usage Wed Oct 13 07:34:59 2021 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication Wed Oct 13 07:34:59 2021 VERIFY EKU OK Wed Oct 13 07:34:59 2021 VERIFY OK: depth=0, CN=lxc-nl-33.protonvpn.com Wed Oct 13 07:35:00 2021 WARNING: 'link-mtu' is used inconsistently, local='link-mtu 1633', remote='link-mtu 1634' Wed Oct 13 07:35:00 2021 WARNING: 'comp-lzo' is present in remote config but missing in local config, remote='comp-lzo' Wed Oct 13 07:35:00 2021 Control Channel: TLSv1.2, cipher TLSv1/SSLv3 ECDHE-RSA-AES256-GCM-SHA384, 4096 bit RSA Wed Oct 13 07:35:00 2021 [lxc-nl-33.protonvpn.com] Peer Connection Initiated with [AF_INET]46.166.182.69:4569 Wed Oct 13 07:35:01 2021 SENT CONTROL [lxc-nl-33.protonvpn.com]: 'PUSH_REQUEST' (status=1) Wed Oct 13 07:35:06 2021 SENT CONTROL [lxc-nl-33.protonvpn.com]: 'PUSH_REQUEST' (status=1) Wed Oct 13 07:35:06 2021 AUTH: Received control message: AUTH_FAILED Wed Oct 13 07:35:06 2021 SIGTERM[soft,auth-failure] received, process exiting
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
VPN Traffic
 
 
 
ADD DEVICE
 
 
 
 
 
 
 
 
 
Link to comment
Share on other sites

Omg i think i just found the mistake, its not the login date i use to enter the app or the website, its the login date they have hiding in the config menues could it be  ?

 

"OpenVPN‐/IKEv2‐Benutzername" aka Username ? 

Link to comment
Share on other sites

Yeah it was that, nowhere i could find that i have to use the specific protonvpn given username & pw, i tryied it the whole time with my own accound made one. Maybe that info should be pinned somewhere i had no idea. 

Still thx for the help and support. 

Any info when dumaos 3.0 for the xr500 is coming out? 

Link to comment
Share on other sites

2 hours ago, John Doe said:

Yeah it was that, nowhere i could find that i have to use the specific protonvpn given username & pw, i tryied it the whole time with my own accound made one. Maybe that info should be pinned somewhere i had no idea. 

Still thx for the help and support. 

Any info when dumaos 3.0 for the xr500 is coming out? 

Awesome, good work figuring that one out! 

DumaOS 3.0 is currently in beta for the XR500 but we're hoping to push a full release firmware soon, though I don't have an ETA for that currently. Are you using the beta firmware currently?

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...