Why is there no traffic when connecting to OpenVPN client Asus RT-AC58U?

S

Softer2020-07-23 16:22:04

openvpn

Softer, 2020-07-23 16:22:04

Good afternoon, colleagues.

There is an Asus RT-AC58U router (firmware 3.0.0.4.382_51936, firewall off).
I connect to the OpenVPN server (Ubuntu 20.04, authorization by certificates, tcp, tap).
There is a connection, it keeps. But there is no traffic (only ARP and, for some reason, STP).
Neither the router pings OpenVPN's internal IP, nor OpenVPN pings the client's internal IP.
A neighboring client in the form of RouterOS works fine with the same OpenVPN.

Server config

port 443
proto tcp
dev tap
local 0.0.0.0
sndbuf 1048576
rcvbuf 1048576
push "route-gateway 172.25.0.1"
client-config-dir /etc/openvpn/server/ccd
ca /etc/openvpn/server/keys/ca.crt
cert /etc/openvpn/server/keys/issued/server.crt
key /etc/openvpn/server/keys/private/server.key
dh /etc/openvpn/server/keys/dh.pem
ifconfig-pool-persist /etc/openvpn/ipp.txt
push "dhcp-option DNS 172.25.0.1"
push "route 172.31.0.0 255.255.0.0"
server 172.25.0.0 255.255.255.0
keepalive 10 120
persist-key
persist-tun
status /var/log/openvpn/openvpn-status.log
log-append  /var/log/openvpn/openvpn.log
verb 3
script-security 2
auth sha1
cipher AES-256-CBC

Client config

client
dev tap

pull
proto tcp

remote X.X.X.X 443
resolv-retry infinite
nobind
persist-key
persist-tun
keepalive 10 120
verb 3

auth sha1
cipher AES-256-CBC
tun-mtu 1500

<ca>
CERT HERE
</ca>
<cert>
CERT HERE
</cert>
<key>
KEY HERE
</key>