Archer AX72 OpenVPN client routing

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.

Archer AX72 OpenVPN client routing

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
Archer AX72 OpenVPN client routing
Archer AX72 OpenVPN client routing
2024-05-09 18:56:21 - last edited 2024-05-10 15:41:36
Tags: #openvpn
Model: Archer AX72  
Hardware Version: V1
Firmware Version: 1.2.4

I have set up an OpenVPN client connection to a site. Everything works except:

- openVPN client ignores routes configured in the ovpn client config or pushed by the server

- router registers instead one route, which routes ALL traffic through the VPN connection.

 

What I would like to achieve is, that the openvpn client does use the routes defined in either the client ovpn config file, or pushed by the server AND does not route all traffic through the VPN, but instead only traffic towards networks, which routes have been defined in the configuration file.

 

However I did not find any solution to do so, seems the OpenVPN client in the router simply ignores the route directives and just registers one route for 0.0.0.0 causing all traffic to be routed through the VPN connection instead of the WAN.

 

How should I configure the openvpn?

 

Thank you!

  0      
  0      
#1
Options
1 Accepted Solution
Re:Archer AX72 OpenVPN client routing-Solution
2024-05-10 15:40:20 - last edited 2024-05-10 15:41:36

  @Marvin_S 

Hi

 

Ok, I removed all the route lines from the config, and just kept these 4:

 

route 0.0.0.0 192.0.0.0 net_gateway
route 64.0.0.0 192.0.0.0 net_gateway
route 128.0.0.0 192.0.0.0 net_gateway
route 192.0.0.0 192.0.0.0 net_gateway

 

Now it seems to work :)

Recommended Solution
  0  
  0  
#4
Options
3 Reply
Re:Archer AX72 OpenVPN client routing
2024-05-10 07:02:59

  @Kovadam 

 

Hi, thanks for posting question on our community.

It is suggested to follow the articles below to check your settings:

How to install a VPN on TP-Link Wi-Fi Router.
VPN Client on Wi-Fi Router Is Not Working

 

  0  
  0  
#2
Options
Re:Archer AX72 OpenVPN client routing
2024-05-10 07:12:01

  @Marvin_S 

Hi

Yes, I checked all of those, but found no working solution. The VPN connection itself is working, and established, just the routing table is completely ignored, despite I set anything in the ovpn config file, it registers only one route for the VPN, which redirects all traffic to the VPN connection (like 10.5.0.85 0.0.0.0 VPN)

 

Here is my config:

 

client
dev tun
proto tcp
remote server.domain.tld 9999
resolv-retry infinite
nobind
user nobody
group nogroup
persist-key
persist-tun
remote-cert-tls server
tls-auth ta.key 1
key-direction 1
auth-nocache
cipher AES-256-CBC
auth SHA256
compress lz4-v2
verb 3
mute 20
script-security 2

route 172.16.0.0 255.255.0.0 vpn_gateway
route 10.3.0.0 255.255.0.0 vpn_gateway
route 192.168.48.0 255.255.255.0 vpn_gateway
route 192.168.49.0 255.255.255.0 vpn_gateway
route 192.168.200.0 255.255.255.0 vpn_gateway
route 10.4.0.0 255.255.255.0 vpn_gateway
route 10.0.250.0 255.255.255.0 vpn_gateway
route 172.30.0.0 255.255.255.0 vpn_gateway
route 192.168.2.0 255.255.255.0 vpn_gateway
route 192.168.3.0 255.255.255.0 vpn_gateway
route 0.0.0.0 192.0.0.0 net_gateway
route 64.0.0.0 192.0.0.0 net_gateway
route 128.0.0.0 192.0.0.0 net_gateway
route 192.0.0.0 192.0.0.0 net_gateway

... (ca, cert, key and tls-auth keys listed here)

 

If I upload this file, the VPN connection is established without any problem, but it only registers one route, like I wrote above:
10.5.0.85          0.0.0.0           VPN

I don't see all the other routes, and also I don't want to route 0.0.0.0 (all traffic) through the VPN connection since this is a corporate network, and there is a proxy server on it, and it does not let internet traffic from this network (10.5.0.0/24)

 

Beside all the routes above are pushed from ther server, which seems also be ignored by the openvpn client installed in this AX72 router.

 

Hope my problem is clarified now.

Thanks for a quick reply.

  0  
  0  
#3
Options
Re:Archer AX72 OpenVPN client routing-Solution
2024-05-10 15:40:20 - last edited 2024-05-10 15:41:36

  @Marvin_S 

Hi

 

Ok, I removed all the route lines from the config, and just kept these 4:

 

route 0.0.0.0 192.0.0.0 net_gateway
route 64.0.0.0 192.0.0.0 net_gateway
route 128.0.0.0 192.0.0.0 net_gateway
route 192.0.0.0 192.0.0.0 net_gateway

 

Now it seems to work :)

Recommended Solution
  0  
  0  
#4
Options