Home

Forums

Stories

Knowledge Base

Home Network Community > Wi-Fi Routers > VPN Client on Wi-Fi Router Is Not Working

< Wi-Fi Routers

Troubleshooting VPN Client on Wi-Fi Router Is Not Working

TroubleshootingVPN Client on Wi-Fi Router Is Not Working

Kevin_Z

2021-07-14 06:41:11 - last edited 3 weeks ago

Posts: 21816

Helpful: 5188

Solutions: 2578

Stories: 21

Registered: 2018-12-24

VPN Client on Wi-Fi Router Is Not Working

2021-07-14 06:41:11 - last edited 3 weeks ago

Tags: #VPN #Highlighted Thread #Official #WireGuard

This Article Applies to:

All the Wi-Fi Routers that support VPN Client, such as Archer AX20, Archer AX21, Archer AX90, etc.

Issue Description/Phenomenon:

The Wi-Fi Routers that are being discussed here are the models that support VPN Client, which allows users to connect to a VPN server without the need to install VPN software on each device. If you are unable to connect to a VPN server when trying to configure the VPN client on the TP-Link router, this article provides some suggestions that may help you out.

However, if VPN server on TP-Link router is not working, please follow this thread for troubleshooting: VPN Server Doesn't Work Properly on TP-Link Wi-Fi Routers

Troubleshooting Suggestions & Solution:

Step 1

For OpenVPN, please follow this FAQ How to get configuration files from OpenVPN service providers to get correct configuration file and your VPN service credentials, which is the key to accessing the VPN service.

Step 2
Ensure you can successfully connect to the VPN server using a third-party VPN client software like OpenVPN Connect or OpenVPN or WireGuard App for WireGuard VPN on the local PC/Smartphone. This can ensure the .opvn or .conf file is configured and exported correctly.
For example, If you are trying to connect to NordVPN, please don't use NordVPN App since it doesn't require the .opvn at all.

Note: NordVPN service credentials are different from your NordVPN account credentials, namely your email address and your password. You'll need NordVPN service credentials to connect to the VPN using the manual OpenVPN configuration method in the router.

Step 3
If step 2 is confirmed good, but it still fails to connect to the VPN server when uploading the .opvn file into the TP-Link router, be sure the router's firmware is up-to-date. You can check for the updates on the Tether app or on the router web GUI, or you can download it from the local official website and then install it manually.

Step 4
If it still fails, please check the size of the VPN configuration profile you are trying to upload to the router, and how large that file is. You may download and install the Notepad+ application to delete the useless comment in the profile if that is too large, then try uploading it into the router again.

Step 5
It's also suggested to try TCP protocol on the VPN server if it's currently using UDP, then save the file and upload it into the TP-Link router again to check if that works.

If the VPN connection still fails, please comment below on this topic and be sure to provide the following information:
1. Model number, hardware, and firmware version of your TP-Link Router.
2. What kind of VPN server you are connecting to?
3. What kind of VPN type are you choosing on the TP-Link router, OpenVPN, or PPTP VPN?
4. What kind of VPN Client software you were using on the local PC or phone when it was connecting fine? Please test and make sure you can connect to the server with third-party software, such as OpenVPN Connect for OpenVPN and WireGuard App for WireGuard VPN.
5. Which step did you stuck in, any error message or screenshot?
6. Troubleshooting you've done before, and be sure the .opvn file for OpenVPN or .conf file for WireGuard is included when emailing to support.

If you are not familiar with the VPN, visit Introduction and Configuration Guide of VPN Function on TP-Link Wireless Routers
If you want to check which model supports the VPN Client, visit Routers supporting the VPN Client.

If you are unable to connect CyberGhost OpenVPN Server, please try Manually create the unified format for OpenVPN profile(CyberGhost OpenVPN Server)

-------------------------------------------------

Have other off-topic issues to report?
Welcome to > Start a New Thread < and elaborate on the issue for assistance.

Nice to Meet You in Our TP-Link Community. Check Out the Latest Posts: Connect TP-Link Archer BE550 to Germany's DS-Lite (Dual Stack Lite) Internet via WAN Archer GE550 - BE9300 Tri-Band Wi-Fi 7 Gaming Router Archer BE800 New Firmware Added Support for EasyMesh in AP Mode, DoH&DoT, and 3-Band MLO Connection Archer AX90 New Firmware Added Support for EasyMesh and Ethernet Backhaul If you found a post or response helpful, please click Helpful (arrow pointing upward icon). If you are the author of a topic, remember to mark a helpful reply as the "Recommended Solution" (star icon) so that others can benefit from it.

251 Reply

pawker

LV1

3 weeks ago - last edited 3 weeks ago

Posts: 4

Helpful: 2

Solutions: 1

Stories: 0

Registered: 2022-10-10

Re:VPN Client on Wi-Fi Router Is Not Working-Solution

3 weeks ago - last edited 3 weeks ago

@Joseph-TP thank you for the quick reply! I have managed to get this working as you suggested, I will leave the instructions below if anyone else faces this issue:

If you have a .ovpn file which contains an encrypted private key and it won't work setting it up in the VPN Client router settings you can:

1. Open the .ovpn file in a text editor and copy the entire content between the <key></key> tags into a file called in.key

2. Use openssl to decrypt the key by doing openssl pkey -in in.key -out out.key

3. If you are prompted for a password, enter the password for your private key (the one you use to set up the OpenVPN connection in OpenVPN Connect)

4. Copy the contents of out.key back into the .ovpn file

5. Upload the file the router settings

Recommended Solution

#253

easyUp

LV1

2 weeks ago

Posts: 1

Helpful: 0

Solutions: 0

Stories: 0

Registered: 2024-12-24

Re:VPN Client on Wi-Fi Router Is Not Working

2 weeks ago

@Kevin_Z

1. Model number, hardware, and firmware version of your TP-Link Router.

Firmware Version:

1.1.2 Build 20241014 rel.59971(5553)

Hardware Version:

Archer AX55 v4.0

2. What kind of VPN server you are connecting to?

Amazon EC-2 instance running OpenVPN server, on Linux Ubuntu

3. What kind of VPN type are you choosing on the TP-Link router, OpenVPN, or PPTP VPN?

OpenVPN

4. What kind of VPN Client software you were using on the local PC or phone when it was connecting fine? Please test and make sure you can connect to the server with third-party software, such as OpenVPN Connect for OpenVPN and WireGuard App for WireGuard VPN.

OpenVPN Connect

5. Which step did you stuck in, any error message or screenshot?

Stuck at connecting, traffic routed outside of VPN.

6. Troubleshooting you've done before, and be sure the .opvn file for OpenVPN or .conf file for WireGuard is included when emailing to support.

Checked if pivate key included in .opv is encrypted. It isn't.

I can share the ovpn config by email on reply!!! Please help.

#254

Joseph-TP

2 weeks ago

Posts: 1027

Helpful: 74

Solutions: 233

Stories: 0

Registered: 2024-06-22

Re:VPN Client on Wi-Fi Router Is Not Working

2 weeks ago

Hi @easyUp,

The tech team was made aware of your issue, they will likely reach out to you via email to continue to troubleshoot your issue. Please check your email box and confirm.

#255

LowerHater

LV1

a week ago

Posts: 4

Helpful: 1

Solutions: 0

Stories: 0

Registered: 2024-10-03

Re:VPN Client on Wi-Fi Router Is Not Working

a week ago

@Kevin_Z

Removing "auth-user-pass" allowed the VPN client to connect to my OpenVPN server.

However, once connected, devices setup to use this connection, cannot access the internet. The current config file used is below the pic:

dev tun
tls-client

remote <<hidden url>> 1111

redirect-gateway def1

dhcp-option DNS 1.1.1.1

pull

proto udp

script-security 2

reneg-sec 0

cipher AES-256-CBC
auth SHA512

comp-lzo
<ca>
-----BEGIN CERTIFICATE-----
<<hidden>>
-----END CERTIFICATE-----

</ca>
key-direction 1
<tls-auth>
#
# 2048 bit OpenVPN static key
#
-----BEGIN OpenVPN Static key V1-----
<<hidden>>
-----END OpenVPN Static key V1-----

</tls-auth>

#256

ecalex

LV1

a week ago

Posts: 2

Helpful: 1

Solutions: 0

Stories: 0

Registered: 2024-12-30

Re:VPN Client on Wi-Fi Router Is Not Working

a week ago

@Kevin_Z

I am also having trouble getting OpenVPN working

1. Model number, hardware, and firmware version of your TP-Link Router.

BE550 (V1.0) - FW: V1_1.0.12 Build 20240902

2. What kind of VPN server you are connecting to?

Archer BE400's VPN server (OpenVPN) - UDP/TUN/internet and home network (client access)

FW: 1.0.5 Build 20240911 rel.28762

Note - BE400 (main) has easyMesh enabled with a AX72 (1.2.6 Build 20240619 rel.72016)

3. What kind of VPN type are you choosing on the TP-Link router, OpenVPN, or PPTP VPN?

OpenVPN (VPN Client on BE550)

BE400 server has PPTP/ OpenVPN enabled.

tried OpenVPN connect on Windows and Android, both worked fine with .ovpn. BE550 also works with PPTP.

5. Which step did you stuck in, any error message or screenshot?

BE550 vpn client shows connected (OpenVPN) but when i check on my PC (the device is selected as going through VPN) using where is my location, it still shows my original location. My android os TV literally wont go on internet

6. Troubleshooting you've done before, and be sure the .opvn file for OpenVPN or .conf file for WireGuard is included when emailing to support.

Tried reconfiguring VPN server on BE400 (no luck), tried doing the pkey stuff (but the hash is the same), tried PPTP (which worked, so i know my Be400 server works)

#257

Kevin_Z

a week ago

Posts: 21816

Helpful: 5188

Solutions: 2578

Stories: 21

Registered: 2018-12-24

Re:VPN Client on Wi-Fi Router Is Not Working

a week ago

LowerHater wrote

@Kevin_Z

Removing "auth-user-pass" allowed the VPN client to connect to my OpenVPN server.

However, once connected, devices setup to use this connection, cannot access the internet. The current config file used is below the pic:

dev tun
tls-client

remote <<hidden url>> 1111

redirect-gateway def1

dhcp-option DNS 1.1.1.1

pull

proto udp

script-security 2

reneg-sec 0

cipher AES-256-CBC
auth SHA512

comp-lzo
<ca>
-----BEGIN CERTIFICATE-----
<<hidden>>
-----END CERTIFICATE-----

</ca>
key-direction 1
<tls-auth>
#
# 2048 bit OpenVPN static key
#
-----BEGIN OpenVPN Static key V1-----
<<hidden>>
-----END OpenVPN Static key V1-----

</tls-auth>

@LowerHater

I've escalated your case to our support engineers and they will contact you via your registered email. Please follow it up. Thank you.

#258

Kevin_Z

a week ago

Posts: 21816

Helpful: 5188

Solutions: 2578

Stories: 21

Registered: 2018-12-24

Re:VPN Client on Wi-Fi Router Is Not Working

a week ago

ecalex wrote

@Kevin_Z

I am also having trouble getting OpenVPN working

1. Model number, hardware, and firmware version of your TP-Link Router.

BE550 (V1.0) - FW: V1_1.0.12 Build 20240902

2. What kind of VPN server you are connecting to?

Archer BE400's VPN server (OpenVPN) - UDP/TUN/internet and home network (client access)

FW: 1.0.5 Build 20240911 rel.28762

Note - BE400 (main) has easyMesh enabled with a AX72 (1.2.6 Build 20240619 rel.72016)

3. What kind of VPN type are you choosing on the TP-Link router, OpenVPN, or PPTP VPN?

OpenVPN (VPN Client on BE550)

BE400 server has PPTP/ OpenVPN enabled.

4. What kind of VPN Client software you were using on the local PC or phone when it was connecting fine? Please test and make sure you can connect to the server with third-party software, such as OpenVPN Connect for OpenVPN and WireGuard App for WireGuard VPN.

tried OpenVPN connect on Windows and Android, both worked fine with .ovpn. BE550 also works with PPTP.

5. Which step did you stuck in, any error message or screenshot?

BE550 vpn client shows connected (OpenVPN) but when i check on my PC (the device is selected as going through VPN) using where is my location, it still shows my original location. My android os TV literally wont go on internet

6. Troubleshooting you've done before, and be sure the .opvn file for OpenVPN or .conf file for WireGuard is included when emailing to support.

Tried reconfiguring VPN server on BE400 (no luck), tried doing the pkey stuff (but the hash is the same), tried PPTP (which worked, so i know my Be400 server works)

@ecalex

What do you mean by "when i check on my PC (the device is selected as going through VPN) using where is my location, it still shows my original location."? Please check whether your traffic is passing through the VPN tunnel by visiting whatismyip.com while connected to the VPN. This site will display your public IP address. If your traffic is successfully routed through the VPN, the IP address shown should be different from your original IP address.

If you're still seeing your original location, please ensure that the correct MAC address is selected when adding the device to the VPN Client device list. Sometimes, there are multiple adapters or different MAC addresses on the client device and you may not be selecting the right one.

#259

LowerHater

LV1

a week ago

Posts: 4

Helpful: 1

Solutions: 0

Stories: 0

Registered: 2024-10-03

Re:VPN Client on Wi-Fi Router Is Not Working

a week ago

@Kevin_Z

Its now working....

For others here, here was my issue and the changes I needed to make to get it working.

System/Networking

I wanted to create a OpenVPN session between my TP-Link router (client) and a Synology NAS (server) located in a remote network.

Opened the .opvn configuration file provided by the Synology and changed these parameters:

1) Ensured redirect gateway was enabled/enforced on the connection, by removing the # character infront of this line:

redirect-gateway def1

2) The TP-Link VPN client is already providing the username/password you provided in the VPN client profile you added there; so remove the following line which tells the VPN server to ask for it:

auth-user-pass

3) Add the following lines to set explicit DNS servers for the connection (these are the public Cloudflare DNS servers; you can use the Google ones as well). :

dhcp-option DNS 1.1.1.1
dhcp-option DNS 1.0.0.1

4) Just to be sure, I changed the DNS addresses for both the client network router and the server network router to also use the Cloudflare DNS servers above.

And that worked... I then added my media server as a device in the TP-Link VPN client Device List and it used the VPN connection its internet access.

#260

ecalex

LV1

a week ago

Posts: 2

Helpful: 1

Solutions: 0

Stories: 0

Registered: 2024-12-30

Re:VPN Client on Wi-Fi Router Is Not Working

a week ago

@Kevin_Z

yes that's what I meant, I checked through websites such as whatismyip and it still shows my original IP.

Also, the right mac address is selected

no luck

#261

Kevin_Z

a week ago

Posts: 21816

Helpful: 5188

Solutions: 2578

Stories: 21

Registered: 2018-12-24

Re:VPN Client on Wi-Fi Router Is Not Working

a week ago

ecalex wrote

@Kevin_Z

yes that's what I meant, I checked through websites such as whatismyip and it still shows my original IP.

Also, the right mac address is selected

no luck

@ecalex

If that's the case, we recommend submitting a support ticket via email for efficient assistance. Please include your Forum ID, community nickname, a detailed description of the issue, and the troubleshooting steps you've taken in the subject line or body of your email. Thank you.

#262

Troubleshooting VPN Client on Wi-Fi Router Is Not Working

Troubleshooting VPN Client on Wi-Fi Router Is Not Working

This Article Applies to:

Issue Description/Phenomenon:

Troubleshooting Suggestions & Solution:

Related Articles:

-------------------------------------------------

Have other off-topic issues to report? Welcome to > Start a New Thread < and elaborate on the issue for assistance.

Information

Voters 2

Tags

Have other off-topic issues to report?
Welcome to > Start a New Thread < and elaborate on the issue for assistance.