search

gnuton / asuswrt-merlin.ng

Extends the support of Merlin firmware to more ASUS routers
Other
1.3k stars 75 forks source link

Wireguard Issue with Surfshark VPN #394

Open malcolmdavis224 opened 1 year ago

malcolmdavis224 commented 1 year ago

Router Model Affected Models: RT-AX95Q

Firmware Version Affected 388.2_2-beta2

Is this bug present in upstream Merlin releases too? Yes

Describe the bug When using Wireguard functionality (with Surfshark VPN specifically), certain servers are either completely nonfunctional or only function for around 2-3 minutes before having no internet connection entirely. I have attempted to turn off NAT, change DNS settings, allow inbound firewall and change keepallow time but nothing has been effective in keeping the network working.

To Reproduce Steps to reproduce the behavior:

  1. Go to "VPN"
  2. Click on 'VPN Client'
  3. Click on 'Wireguard'
  4. Create Wireguard profile by uploading Surfshark Wireguard VPN config file to system
  5. Turn on Wireguard
  6. Click on VPN Director
  7. Add 'WAN' to new rule

Expected behavior Wireguard should connect to Surfshark VPN servers and provide a consistently working internet connection for the selected server in the Wireguard section.

gnuton commented 1 year ago

was it working in the previous release? do you have any log?

malcolmdavis224 commented 1 year ago

It was not working in 388.1 stable either. Here is a syslog

Wireguard is turned on at the May 22 11:53:22 mark and turned off at 11:59:21. OpenVPN is also turned on during this time period syslog.txt

malcolmdavis224 commented 1 year ago

A few seconds after a new pairwise key handshake is completed, pages stop loading. Every page is loading before that moment

LarryIsBetter commented 1 year ago

I had something similar with Mullvad VPN where sometimes it won't complete a handshake after turning on the connection, I can tell because it says however many bytes sent but it'll always be 0 bytes received. IVPN works just fine I thought it could've been a Mullvad issue but after reading this maybe not? I can send Mullvad VPN Wireguard files for testing I use RT-AX82U btw Mullvad works just fine on everything else like laptop phone.

Edit: heres what I am seeing in the wireguard status Screenshot from 2023-05-24 14-26-44-obfuscated

gnuton commented 1 year ago

@LarryIsBetter are you running the very same config on both router and laptop?

LarryIsBetter commented 1 year ago

@gnuton Yup I've tried the same exact config file and also tried the same server but different private keys I also tried both the Linux and Anroid configs all work as expected on my laptop and on the router just works unreliably

LarryIsBetter commented 1 year ago

@gnuton Sorry I've forgot to tell you but I've tested the stable for a while with Mullvad and the issue with away.

gnuton commented 1 year ago

do you wanna keep this ticket open?