Following the purpose built guide, created for me, I did the steps:
Router OpenVPN Configuration
Router Tunnel Configuration
Router Firewall Configuration
Router DNS Configuration
[create] Router Killswitch Configuration
[create] 99-killswitch file.
Additionally, I added connection to the NTP time servers via these commands:
https://www.loganmarchione.com/2015/08/ ... #Setup_NTP
uci set system.@system[0].hostname="c7main"
uci set system.@system[0].zonename="America/Los Angeles"
uci set system.@system[0].timezone="PST8PDT,M3.2.0,M11.1.0"
uci commit system
uci set system.ntp="timeserver"
uci set system.ntp.enabled="1"
uci delete system.ntp.server
uci add_list system.ntp.server="0.us.pool.ntp.org"
uci add_list system.ntp.server="1.us.pool.ntp.org"
uci add_list system.ntp.server="2.us.pool.ntp.org"
uci add_list system.ntp.server="3.us.pool.ntp.org"
uci commit system
I made one change in the steps provided:
uci set openvpn.csvpn.config='/etc/openvpn/cstorm_linux-lisbon_udp.ovpn'
as I have a paid token.
Upon rebooting both modem (first) and allowing it to come up after a few minutes and then the router (OpenWRT, OpenVPN and Cryptostorm), I could not get back online. I could access the OpenWRT (LEDE actually) Router Admin Page.
The syslog gave:
Thu Mar 15 10:59:30 2018 daemon.notice openvpn(csvpn)[1717]: OpenVPN 2.4.4 mips-openwrt-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD]
Thu Mar 15 10:59:30 2018 daemon.notice openvpn(csvpn)[1717]: library versions: OpenSSL 1.0.2n 7 Dec 2017, LZO 2.10
Thu Mar 15 10:59:30 2018 daemon.err openvpn(csvpn)[1717]: neither stdin nor stderr are a tty device and you have neither a controlling tty nor systemd - can't ask for 'Enter Auth Username:'. If you used --daemon, you need to use --askpass to make passphrase-protected keys work, and you can not use --auth-nocache.
Thu Mar 15 10:59:30 2018 daemon.notice openvpn(csvpn)[1717]: Exiting due to fatal error
Thu Mar 15 10:59:31 2018 daemon.err openvpn(cstorm_linux-lisbon_udp[1796]: Options error: No client-side authentication method is specified. You must use either --cert/--key, --pkcs12, or --auth-user-pass
Thu Mar 15 10:59:31 2018 daemon.warn openvpn(cstorm_linux-lisbon_udp[1796]: Use --help for more information.
Thu Mar 15 10:59:35 2018 daemon.notice openvpn(csvpn)[1797]: OpenVPN 2.4.4 mips-openwrt-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD]
Thu Mar 15 10:59:35 2018 daemon.notice openvpn(csvpn)[1797]: library versions: OpenSSL 1.0.2n 7 Dec 2017, LZO 2.10
Thu Mar 15 10:59:35 2018 daemon.err openvpn(csvpn)[1797]: neither stdin nor stderr are a tty device and you have neither a controlling tty nor systemd - can't ask for 'Enter Auth Username:'. If you used --daemon, you need to use --askpass to make passphrase-protected keys work, and you can not use --auth-nocache.
Thu Mar 15 10:59:35 2018 daemon.notice openvpn(csvpn)[1797]: Exiting due to fatal error