No Internet with OpenVPN on MT300N

Hello,

I will use the MT300N as an mobile VPN Client. The VPN Server is located on a TP-Link EA605 router controlled by omada.

The MT300N is connected to a WLAN. When VPN is deactivated, than the internet access is given. When I activate VPN the access to the local Intranet works. However the internet access does not work.
When I use the same ovpn-config file on a pc with a VPN app, than always is fine.

Does anyone have an idea?

Attached the header of the ovpn-config, created by TP-Link ER605 Omada :

client
dev tun
proto udp
float
nobind
cipher AES-128-CBC
comp-lzo adaptive
resolv-retry infinite
remote-cert-tls server
persist-key
remote xxxxxxx.dnshome.de 1194

Can you post the log after you connect vpn on the router?

Generally in TP router’s vpn setttings there is an option to enable Internet or only local connection.
But as you said when you use the config on vpn app it is fine, it may not be this problem.

Hello,

where I can find the log? When I start the VPN, I have the following message:

net_addr_ptp_v4_add: 10.10.12.6 peer 10.10.12.5 dev tun0
/etc/openvpn/update-resolv-conf tun0 1500 1622 10.10.12.6 10.10.12.5 init

When I use the same configuration on a iphone or Laptop, the Internetaccess is given.

You can ssh to therouter and get the log using command “logread”.

If you don’t mind, can you send pm me the real config so that I can try it directly?

Here is the log

Fri Nov 11 09:20:51 2022 daemon.info dnsmasq[24339]: read /tmp/hosts/dhcp.cfg01411c - 2 addresses
Fri Nov 11 09:20:51 2022 daemon.info dnsmasq-dhcp[24339]: read /etc/ethers - 0 addresses
Fri Nov 11 09:23:27 2022 user.info : 1247: gl-vpn-client>> Start, vpnpath=/etc/openvpn/ovpn0, serverfile=VPN_UDP_xxxxx.ovpn
Fri Nov 11 09:23:27 2022 user.debug : ------ss-redir is not running!------
Fri Nov 11 09:23:27 2022 user.info : 1324: gl-vpn-client>> glconfig.openvpn.ovpn=/etc/openvpn/ovpn0/VPN_UDP_xxxxx.ovpn, glconfig.openvpn.clientid=ovpn0
Fri Nov 11 09:23:29 2022 daemon.info dnsmasq[24339]: exiting on receipt of SIGTERM
Fri Nov 11 09:23:29 2022 user.notice dnsmasq: DNS rebinding protection is active, will discard upstream RFC1918 responses!
Fri Nov 11 09:23:29 2022 user.notice dnsmasq: Allowing 127.0.0.0/8 responses
Fri Nov 11 09:23:30 2022 daemon.info dnsmasq[28352]: started, version 2.80 cachesize 150
Fri Nov 11 09:23:30 2022 daemon.info dnsmasq[28352]: DNS service limited to local subnets
Fri Nov 11 09:23:30 2022 daemon.info dnsmasq[28352]: compile time options: IPv6 GNU-getopt no-DBus no-i18n no-IDN DHCP DHCPv6 no-Lua TFTP conntrack ipset auth nettlehash DNSSEC no-ID loop-detect inotify dumpfile
Fri Nov 11 09:23:30 2022 daemon.info dnsmasq-dhcp[28352]: DHCP, IP range 192.168.8.100 -- 192.168.8.249, lease time 12h
Fri Nov 11 09:23:30 2022 daemon.info dnsmasq[28352]: using local addresses only for domain test
Fri Nov 11 09:23:30 2022 daemon.info dnsmasq[28352]: using local addresses only for domain onion
Fri Nov 11 09:23:30 2022 daemon.info dnsmasq[28352]: using local addresses only for domain localhost
Fri Nov 11 09:23:30 2022 daemon.info dnsmasq[28352]: using local addresses only for domain local
Fri Nov 11 09:23:30 2022 daemon.info dnsmasq[28352]: using local addresses only for domain invalid
Fri Nov 11 09:23:30 2022 daemon.info dnsmasq[28352]: using local addresses only for domain bind
Fri Nov 11 09:23:30 2022 daemon.info dnsmasq[28352]: using local addresses only for domain lan
Fri Nov 11 09:23:30 2022 daemon.info dnsmasq[28352]: reading /tmp/resolv.conf.auto
Fri Nov 11 09:23:30 2022 daemon.info dnsmasq[28352]: using local addresses only for domain test
Fri Nov 11 09:23:30 2022 daemon.info dnsmasq[28352]: using local addresses only for domain onion
Fri Nov 11 09:23:30 2022 daemon.info dnsmasq[28352]: using local addresses only for domain localhost
Fri Nov 11 09:23:30 2022 daemon.info dnsmasq[28352]: using local addresses only for domain local
Fri Nov 11 09:23:30 2022 daemon.info dnsmasq[28352]: using local addresses only for domain invalid
Fri Nov 11 09:23:30 2022 daemon.info dnsmasq[28352]: using local addresses only for domain bind
Fri Nov 11 09:23:30 2022 daemon.info dnsmasq[28352]: using local addresses only for domain lan
Fri Nov 11 09:23:30 2022 daemon.info dnsmasq[28352]: using nameserver 192.168.xx.185#53
Fri Nov 11 09:23:30 2022 daemon.info dnsmasq[28352]: using nameserver 192.168.xx.1#53
Fri Nov 11 09:23:30 2022 daemon.info dnsmasq[28352]: read /etc/hosts - 4 addresses
Fri Nov 11 09:23:30 2022 daemon.info dnsmasq[28352]: read /tmp/hosts/dhcp.cfg01411c - 2 addresses
Fri Nov 11 09:23:30 2022 daemon.info dnsmasq-dhcp[28352]: read /etc/ethers - 0 addresses
Fri Nov 11 09:23:34 2022 daemon.warn openvpn[28625]: DEPRECATED OPTION: --cipher set to 'AES-128-CBC' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'AES-128-CBC' to --data-ciphers or change --cipher 'AES-128-CBC' to --data-ciphers-fallback 'AES-128-CBC' to silence this warning.
Fri Nov 11 09:23:34 2022 daemon.notice openvpn[28625]: OpenVPN 2.5.2 mipsel-openwrt-linux-gnu [SSL (OpenSSL)] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD]
Fri Nov 11 09:23:34 2022 daemon.notice openvpn[28625]: library versions: OpenSSL 1.1.1n  15 Mar 2022
Fri Nov 11 09:23:34 2022 daemon.warn openvpn[28637]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Fri Nov 11 09:23:34 2022 daemon.notice openvpn[28637]: TCP/UDP: Preserving recently used remote address: [AF_INET]31.16.xxx.3:1194
Fri Nov 11 09:23:34 2022 daemon.notice openvpn[28637]: UDP link local: (not bound)
Fri Nov 11 09:23:34 2022 daemon.notice openvpn[28637]: UDP link remote: [AF_INET]31.16.xxx.3:1194
Fri Nov 11 09:23:35 2022 daemon.notice openvpn[28637]: [server_server0] Peer Connection Initiated with [AF_INET]31.16.xxx.3:1194
Fri Nov 11 09:23:36 2022 daemon.notice openvpn[28637]: TUN/TAP device tun0 opened
Fri Nov 11 09:23:36 2022 daemon.notice openvpn[28637]: net_iface_mtu_set: mtu 1500 for tun0
Fri Nov 11 09:23:36 2022 daemon.notice openvpn[28637]: net_iface_up: set tun0 up
Fri Nov 11 09:23:36 2022 daemon.notice openvpn[28637]: net_addr_ptp_v4_add: 10.10.12.10 peer 10.10.12.9 dev tun0
Fri Nov 11 09:23:36 2022 daemon.notice openvpn[28637]: /etc/openvpn/update-resolv-conf tun0 1500 1622 10.10.12.10 10.10.12.9 init
Fri Nov 11 09:23:37 2022 daemon.info dnsmasq[28352]: exiting on receipt of SIGTERM
Fri Nov 11 09:23:38 2022 user.notice dnsmasq: DNS rebinding protection is active, will discard upstream RFC1918 responses!
Fri Nov 11 09:23:38 2022 user.notice dnsmasq: Allowing 127.0.0.0/8 responses
Fri Nov 11 09:23:40 2022 daemon.info dnsmasq[28981]: started, version 2.80 cachesize 150
Fri Nov 11 09:23:40 2022 daemon.info dnsmasq[28981]: DNS service limited to local subnets
Fri Nov 11 09:23:40 2022 daemon.info dnsmasq[28981]: compile time options: IPv6 GNU-getopt no-DBus no-i18n no-IDN DHCP DHCPv6 no-Lua TFTP conntrack ipset auth nettlehash DNSSEC no-ID loop-detect inotify dumpfile
Fri Nov 11 09:23:40 2022 daemon.info dnsmasq-dhcp[28981]: DHCP, IP range 192.168.8.100 -- 192.168.8.249, lease time 12h
Fri Nov 11 09:23:40 2022 daemon.info dnsmasq[28981]: using local addresses only for domain test
Fri Nov 11 09:23:40 2022 daemon.info dnsmasq[28981]: using local addresses only for domain onion
Fri Nov 11 09:23:40 2022 daemon.info dnsmasq[28981]: using local addresses only for domain localhost
Fri Nov 11 09:23:40 2022 daemon.info dnsmasq[28981]: using local addresses only for domain local
Fri Nov 11 09:23:40 2022 daemon.info dnsmasq[28981]: using local addresses only for domain invalid
Fri Nov 11 09:23:40 2022 daemon.info dnsmasq[28981]: using local addresses only for domain bind
Fri Nov 11 09:23:40 2022 daemon.info dnsmasq[28981]: using local addresses only for domain lan
Fri Nov 11 09:23:40 2022 daemon.info dnsmasq[28981]: reading /tmp/resolv.conf.vpn
Fri Nov 11 09:23:40 2022 daemon.info dnsmasq[28981]: using local addresses only for domain test
Fri Nov 11 09:23:40 2022 daemon.info dnsmasq[28981]: using local addresses only for domain onion
Fri Nov 11 09:23:40 2022 daemon.info dnsmasq[28981]: using local addresses only for domain localhost
Fri Nov 11 09:23:40 2022 daemon.info dnsmasq[28981]: using local addresses only for domain local
Fri Nov 11 09:23:40 2022 daemon.info dnsmasq[28981]: using local addresses only for domain invalid
Fri Nov 11 09:23:40 2022 daemon.info dnsmasq[28981]: using local addresses only for domain bind
Fri Nov 11 09:23:40 2022 daemon.info dnsmasq[28981]: using local addresses only for domain lan
Fri Nov 11 09:23:40 2022 daemon.info dnsmasq[28981]: using nameserver 192.168.xx.1#53
Fri Nov 11 09:23:40 2022 daemon.info dnsmasq[28981]: using nameserver 8.8.8.8#53
Fri Nov 11 09:23:40 2022 daemon.info dnsmasq[28981]: read /etc/hosts - 4 addresses
Fri Nov 11 09:23:40 2022 daemon.info dnsmasq[28981]: read /tmp/hosts/dhcp.cfg01411c - 2 addresses
Fri Nov 11 09:23:40 2022 daemon.info dnsmasq-dhcp[28981]: read /etc/ethers - 0 addresses
Fri Nov 11 09:23:40 2022 user.info mwan3rtmon[2561]: Detect rtchange event.

Cannot identify the problem via the current info.

Are you able to send me the config to test directly?

Which config do you need? Can I send this per Mail?

You can send via private message.
You can also send email support at glinet.biz, attn Alfie and cite this thread.

Pls send all the ovpn and certs for connection.