HI,
I’m having VPN connection issues while trying to connect with Expressvpn.
This is the error message I’m getting:
“Sat Apr 22 20:23:52 2023 daemon.err ovpnclient[20814]: Error opening ‘Auth’ auth file: /etc/openvpn/credentials.auth: No such file or directory (errno=2)\nSat Apr 22 20:23:52 2023 daemon.notice ovpnclient[20814]: Exiting due to fatal error\nSat Apr 22 20:23:57 2023 daemon.notice netifd: Interface ‘ovpnclient’ is now down\nSat Apr 22 20:23:58 2023 user.notice mwan3[21384]: Execute ifdown event on interface ovpnclient (unknown)\nSat Apr 22 20:23:58 2023 user.notice firewall: Reloading firewall due to ifdown of ovpnclient ()\nSat Apr 22 20:33:18 2023 daemon.notice netifd: Interface ‘ovpnclient’ is setting up now\nSat Apr 22 20:33:18 2023 daemon.warn ovpnclient[13460]: DEPRECATED OPTION: --cipher set to ‘AES-256-CBC’ but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add ‘AES-256-CBC’ to --data-ciphers or change --cipher ‘AES-256-CBC’ to --data-ciphers-fallback ‘AES-256-CBC’ to silence this warning.\nSat Apr 22 20:33:18 2023 daemon.warn ovpnclient[13460]: WARNING: --keysize is DEPRECATED and will be removed in OpenVPN 2.6\nSat Apr 22 20:33:18 2023 daemon.notice ovpnclient[13460]: OpenVPN 2.5.3 aarch64-openwrt-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD]\nSat Apr 22 20:33:18 2023 daemon.notice ovpnclient[13460]: library versions: OpenSSL 1.1.1q 5 Jul 2022, LZO 2.10\nSat Apr 22 20:33:18 2023 daemon.err ovpnclient[13460]: neither stdin nor stderr are a tty device and you have neither a controlling tty nor systemd - can’t ask for ‘Enter Auth Username:’. If you used --daemon, you need to use --askpass to make passphrase-protected keys work, and you can not use --auth-nocache.\nSat Apr 22 20:33:18 2023 daemon.notice ovpnclient[13460]: Exiting due to fatal error\nSat Apr 22 20:33:23 2023 daemon.notice netifd: Interface ‘ovpnclient’ is now down\nSat Apr 22 20:33:23 2023 daemon.notice netifd: Interface ‘ovpnclient’ is setting up now\nSat Apr 22 20:33:24 2023 daemon.warn ovpnclient[13933]: DEPRECATED OPTION: --cipher set to ‘AES-256-CBC’ but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add ‘AES-256-CBC’ to --data-ciphers or change --cipher ‘AES-256-CBC’ to --data-ciphers-fallback ‘AES-256-CBC’ to silence this warning.\nSat Apr 22 20:33:24 2023 daemon.warn ovpnclient[13933]: WARNING: --keysize is DEPRECATED and will be removed in OpenVPN 2.6\nSat Apr 22 20:33:24 2023 daemon.notice ovpnclient[13933]: OpenVPN 2.5.3 aarch64-openwrt-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD]\nSat Apr 22 20:33:24 2023 daemon.notice ovpnclient[13933]: library versions: OpenSSL 1.1.1q 5 Jul 2022, LZO 2.10\nSat Apr 22 20:33:24 2023 daemon.err ovpnclient[13933]: neither stdin nor stderr are a tty device and you have neither a controlling tty nor systemd - can’t ask for ‘Enter Auth Username:’. If you used --daemon, you need to use --askpass to make passphrase-protected keys work, and you can not use --auth-nocache.\nSat Apr 22 20:33:24 2023 daemon.notice ovpnclient[13933]: Exiting due to fatal error\n”
This is the start of my config file:
dev tun
fast-io
persist-key
persist-tun
nobind
remote australia-sydney-ca-version-2.expressnetw.com 1195
remote-random
pull
comp-lzo no
tls-client
verify-x509-name Server name-prefix
ns-cert-type server
key-direction 1
route-method exe
route-delay 2
tun-mtu 1500
fragment 1300
mssfix 1200
verb 3
cipher AES-256-CBC
keysize 256
auth SHA512
sndbuf 524288
rcvbuf 524288
auth-user-pass
Thanks,
Sam