I already update the firmware to the latest. This is the first time to setup the new Beryl AX router with NordVPN client. I am getting this error in the log:
Sat Jan 6 12:10:33 2024 daemon.notice netifd: ovpnclient (2909): * Rule ‘process_mark’\n
Sat Jan 6 12:10:33 2024 daemon.notice netifd: ovpnclient (2909): * Rule ‘wan_in_conn_mark’\n
Sat Jan 6 12:10:33 2024 daemon.notice netifd: ovpnclient (2909): * Rule ‘lan_in_conn_mark_restore’\n
Sat Jan 6 12:10:33 2024 daemon.notice netifd: ovpnclient (2909): * Rule ‘out_conn_mark_restore’\n
Sat Jan 6 12:10:33 2024 daemon.notice netifd: ovpnclient (2909): * Zone ‘lan’\n
Sat Jan 6 12:10:33 2024 daemon.notice netifd: ovpnclient (2909): * Zone ‘wan’\n
Sat Jan 6 12:10:33 2024 daemon.notice netifd: ovpnclient (2909): * Zone ‘guest’\n
Sat Jan 6 12:10:33 2024 daemon.notice netifd: ovpnclient (2909): * Zone ‘ovpnclient’\n
Sat Jan 6 12:10:33 2024 daemon.notice netifd: ovpnclient (2909): * Set tcp_ecn to off\n
Sat Jan 6 12:10:33 2024 daemon.notice netifd: ovpnclient (2909): * Set tcp_syncookies to on\n
Sat Jan 6 12:10:33 2024 daemon.notice netifd: ovpnclient (2909): * Set tcp_window_scaling to on\n
Sat Jan 6 12:10:33 2024 daemon.notice netifd: ovpnclient (2909): * Running script ‘/etc/firewall.nat6’\n
Sat Jan 6 12:10:33 2024 daemon.notice netifd: ovpnclient (2909): * Running script ‘/etc/firewall.swap_wan_in_conn_mark.sh’\n
Sat Jan 6 12:10:33 2024 daemon.notice netifd: ovpnclient (2909): * Running script ‘/etc/firewall.vpn_server_policy.sh’\n
Sat Jan 6 12:10:33 2024 daemon.notice netifd: ovpnclient (2909): * Running script ‘/var/etc/gls2s.include’\n
Sat Jan 6 12:10:33 2024 daemon.notice netifd: ovpnclient (2909): ! Skipping due to path error: No such file or directory\n
Sat Jan 6 12:10:33 2024 daemon.notice netifd: ovpnclient (2909): * Running script ‘/usr/bin/gl_block.sh’\n
Sat Jan 6 12:10:33 2024 daemon.notice netifd: ovpnclient (2909): Failed to parse json data: unexpected character\n
Sat Jan 6 12:10:33 2024 daemon.notice netifd: ovpnclient (2909): uci: Entry not found\n
Sat Jan 6 12:10:33 2024 daemon.notice netifd: ovpnclient (2909): cat: can’t open ‘/tmp/run/ovpn_resolved_ip’: No such file or directory\n
Where do I enter another login, other than the login screen?
I am already logged on and got a list of VPN servers from NordVPN, and there is no authentication error.
sat jan 6 12:40:06 2024 daemon.warn ovpnclient[23311]: WARNING: --ping should normally be used with --ping-restart or --ping-exit\n
sat jan 6 12:40:06 2024 daemon.warn ovpnclient[23311]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts\n
sat jan 6 12:40:06 2024 daemon.notice ovpnclient[23311]: Outgoing Control Channel Authentication: Using 512 bit message hash ‘SHA512’ for HMAC authentication\n
sat jan 6 12:40:06 2024 daemon.notice ovpnclient[23311]: Incoming Control Channel Authentication: Using 512 bit message hash ‘SHA512’ for HMAC authentication\n
sat jan 6 12:40:06 2024 daemon.notice ovpnclient[23311]: TCP/UDP: Preserving recently used remote address: [AF_INET]185.153.179.110:1194\n
sat jan 6 12:40:06 2024 daemon.notice ovpnclient[23311]: Socket Buffers: R=[212992->212992] S=[212992->212992]\n
sat jan 6 12:40:06 2024 daemon.notice ovpnclient[23311]: UDP link local: (not bound)\n
sat jan 6 12:40:06 2024 daemon.notice ovpnclient[23311]: UDP link remote: [AF_INET]185.153.179.110:1194\n
sat jan 6 12:40:06 2024 daemon.notice ovpnclient[23311]: TLS: Initial packet from [AF_INET]185.153.179.110:1194, sid=a61ebfcb 33b24723\n
sat jan 6 12:40:06 2024 daemon.notice ovpnclient[23311]: VERIFY OK: depth=2, C=PA, O=NordVPN, CN=NordVPN Root CA\n
sat jan 6 12:40:06 2024 daemon.notice ovpnclient[23311]: VERIFY OK: depth=1, O=NordVPN, CN=NordVPN CA8\n
sat jan 6 12:40:06 2024 daemon.notice ovpnclient[23311]: VERIFY KU OK\n
sat jan 6 12:40:06 2024 daemon.notice ovpnclient[23311]: Validating certificate extended key usage\n
sat jan 6 12:40:06 2024 daemon.notice ovpnclient[23311]: ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication\n
sat jan 6 12:40:06 2024 daemon.notice ovpnclient[23311]: VERIFY EKU OK\n
sat jan 6 12:40:06 2024 daemon.notice ovpnclient[23311]: VERIFY X509NAME OK: CN=ca1571.nordvpn.com\n
sat jan 6 12:40:06 2024 daemon.notice ovpnclient[23311]: VERIFY OK: depth=0, CN=ca1571.nordvpn.com\n
sat jan 6 12:40:07 2024 daemon.notice ovpnclient[23311]: Control Channel: TLSv1.3, cipher TLSv1.3 TLS_AES_256_GCM_SHA384, peer certificate: 4096 bit RSA, signature: RSA-SHA512\n
sat jan 6 12:40:07 2024 daemon.notice ovpnclient[23311]: [] Peer Connection Initiated with [AF_INET]185.153.179.110:1194\n
sat jan 6 12:40:08 2024 daemon.notice ovpnclient[23311]: SENT CONTROL []: ‘PUSH_REQUEST’ (status=1)\n
Oh I figured it out! I contacted NordVPN and they told me I have to use special token to connect instead of my NordVPN ID. It’s working as expected now! Thanks
Guess it’s NordVPN. Why don’t they show it in your dashboard like “HEY. LISTEN. YOU NEED THESE CREDENTIALS FOR LOGIN” - but yeah… guess why… it’s Nord.