I can switch the clients to my other OpenVPN servers I have (mainly ASUS-Merlin routers) and all is good. It’s odd that both clients are using the same config file but yet the S10 cell reports the correct VPN IP, whereas the win laptop does not, but both have DNS Leaks. I have IP and DNS Leaks when using ddwrt as OpenVPN Server, I can connect to my other self setup OpenVPN servers I have with all clients with no issues, but for some reason with ddwrt as OpenVPN Server get these leaks:ġ) On S10 cell client it reports correct VPN server IP as expected, but DNS leaks to client ISPĢ) Win laptop client, it does not report VPN Server IP, but instead the client IP, and DNS leaks to client ISP.Įverything seems to connect fine on both Client and OpenVPN server end via Android and Win OpenVPN Connect. I have used OpenVPN Servers with ddwrt clients for a few years, but wanted to try ddwrt as OpenVPN server. Otherwise, I have no further suggestions for you.Posted: Tue 4:06 Post subject: OpenVPN Server IP and DNS Leaks But you shouldn't have to do that at all. You could port forward from your router to your ATA, the RTP ports your ATA uses (these are UDP ports). You shouldn't have to do the following at all with Asus routers, and port fowarding is a security risk, so only do the following if all else fails first. I use 10 for UDP Unreplied Timeout and 100 for UDP Assured Timeout.Ħ. The SIP Registration Failure Retry Wait Time is 120. ![]() So if your router supports Tomato firmware, that may be another option. ![]() However, my understanding is that third party Tomato firmware has these two settings as well. In part, for this reason, I tend to use Asus routers. UDP Unreplied Timeout (in your router) Other settings. Thanks to Mango, many of us now understand that in order for ATAs to remain registered and working properly with a VoIP SIP provider like Freephoneline, in particular after power failures, the following conditions must be met: UDP Unreplied Timeout (in your router) Other Settings.Ĭhange UDP Timeout: Unreplied to 10 and UDP Timeout: Assured to 100. Navigate to Tools->Other settings in your router. You can try Asuswrt-Merlin third party firmware: Give your ATA highest priority and all other devices on your LAN, lower priority: ĥ. Submit a support ticket requesting a "forced registration" for your account: Ĥ. To understand why SIP ALG often causes horrible problems, please visit. Be aware if you reset your modem or when your ISP pushes a new firmware update to your modem/router combo, SIP ALG may be enabled again by default (and, therefore, it’s simply better to have your own router with SIP ALG disabled in it). Someone may try to enable DMZ in your modem/router combo or port forward doing either is a huge security risk. Quite frequently, the first representative you speak to will have no idea how to accomplish this, much less know what SIP ALG is. These router combos issued by ISPs frequently have faulty (and hidden) SIP ALG/SPI features enabled with no way for the customer to disable them without getting a technical representative from his or her ISP to turn this feature off. Typically it's far better to have your own router with strong QoS functions and a restricted cone NAT firewall (you do already), disable whatever SIP ALG feature is enabled in the router (except for Asus routers, you shouldn't need to disable SIP Passthrough, Asus' SIP ALG setting, which does work with FPL), and stick whatever modem/router combo your ISP gives you into bridge mode. If you can't get the router combo from your ISP in bridge mode, then either see if you can disable SIP ALG in it-or for your Primary SIP Server in your ATA, use :6060 Ensure whatever modem/router combo your ISP gave you is in bridge mode.Ģ. Regardless, I suggest the doing the following:ġ. ![]() ![]() I'm not sure if a NAT hole is periodically closing for your RTP ports, some SIP ALG issue is causing problems, other devices on your LAN are occasionally hogging bandwidth, or something else.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |