OpenVPN isnt so stable

  • Hi,

    Im using the vpn-manager to build a L2 vpn. Everything were working with no problems untils 20s or so. Once the vpn is stablished, everything is working, but, suddenly 15-20s since the connection, my default gateway is overwritten and the traffic go down.

    This is the routing table at the very beginning, when the vpn is connected and the traffic is working.

    RaspberryPi:~ # route -n
    Kernel IP routing table
    Destination Gateway Genmask Flags Metric Ref Use Iface
    0.0.0.0 192.168.46.56 0.0.0.0 UG 0 0 0 wlan0
    192.168.46.0 0.0.0.0 255.255.255.0 U 0 0 0 wlan0
    192.168.46.56 0.0.0.0 255.255.255.255 UH 0 0 0 wlan0
    0.0.0.0 255.255.255.0 U 0 0 0 tap0

    then, some seconds later (15-20), i get this and the vpn becomes unuseable:

    RaspberryPi:~ # route -n
    Kernel IP routing table
    Destination Gateway Genmask Flags Metric Ref Use Iface
    0.0.0.0 0.0.0.0 255.255.255.255 UH 0 0 0 tap0
    0.0.0.0 0.0.0.0 0.0.0.0 U 0 0 0 tap0
    169.254.0.0 0.0.0.0 255.255.0.0 U 0 0 0 tap0
    192.168.46.0 0.0.0.0 255.255.255.0 U 0 0 0 wlan0
    192.168.46.56 0.0.0.0 255.255.255.255 UH 0 0 0 wlan0
    0.0.0.0 255.255.255.0 U 0 0 0 tap0

    Any clues? Where these 3 routes came from? (im using route-nopull and route-noexec)
    I already checked that, as L2 VPN, there is no DHCP server in the same segment.

    This VPN is used with some other clients, with no issue at all. (OpenWRT devices)
    I already checked the ovpn log files (server and client) and everything seems working, they said its connected, but, when i lost the gateway inside the Rpi, the vpn becomes unusuable. (for the RPi client)

    I also tested to use the openvpn from cli, without the addon, and the issues also appears. I also tested inside my Laptop, with Ubuntu, and the vpn becomes up and never down.

    There must be a script or something inside Kodi, which makes it to renew its default, breaking the comms.

    TIA

    Regards,

    More info:
    vpn manager service version: 7.0.4
    RPi3 with Libreelec 20

  • No, i dont.

    The goal is to build several encrypted tunnels between several devices with L2 connectivity. The simpliest way to do is via OpenVPN L2. I know its not the best solution from the performance point of view, but now its working for 10 users with other platforms. Now, with Kodi and Raspberrypi, is where i found the issue.

    I know Wireguard+IpSec would be better, but it will force me to migrate all other users.

    Regards,