asuswrt-merlin.ng icon indicating copy to clipboard operation
asuswrt-merlin.ng copied to clipboard

Published 20 hours ago verified publisher icon gnuton

Wireguard Issue with Surfshark VPN

Open malcolmdavis224 opened this issue 1 year ago • 8 comments

Router Model Affected Models: RT-AX95Q

Firmware Version Affected 388.2_2-beta2

Is this bug present in upstream Merlin releases too? Yes

Describe the bug When using Wireguard functionality (with Surfshark VPN specifically), certain servers are either completely nonfunctional or only function for around 2-3 minutes before having no internet connection entirely. I have attempted to turn off NAT, change DNS settings, allow inbound firewall and change keepallow time but nothing has been effective in keeping the network working.

To Reproduce Steps to reproduce the behavior:

  1. Go to "VPN"
  2. Click on 'VPN Client'
  3. Click on 'Wireguard'
  4. Create Wireguard profile by uploading Surfshark Wireguard VPN config file to system
  5. Turn on Wireguard
  6. Click on VPN Director
  7. Add 'WAN' to new rule

Expected behavior Wireguard should connect to Surfshark VPN servers and provide a consistently working internet connection for the selected server in the Wireguard section.

malcolmdavis224 avatar May 21 '23 20:05 malcolmdavis224

was it working in the previous release? do you have any log?

gnuton avatar May 22 '23 11:05 gnuton

It was not working in 388.1 stable either. Here is a syslog

Wireguard is turned on at the May 22 11:53:22 mark and turned off at 11:59:21. OpenVPN is also turned on during this time period syslog.txt

malcolmdavis224 avatar May 22 '23 12:05 malcolmdavis224

A few seconds after a new pairwise key handshake is completed, pages stop loading. Every page is loading before that moment

malcolmdavis224 avatar May 22 '23 12:05 malcolmdavis224

I had something similar with Mullvad VPN where sometimes it won't complete a handshake after turning on the connection, I can tell because it says however many bytes sent but it'll always be 0 bytes received. IVPN works just fine I thought it could've been a Mullvad issue but after reading this maybe not? I can send Mullvad VPN Wireguard files for testing I use RT-AX82U btw Mullvad works just fine on everything else like laptop phone.

Edit: heres what I am seeing in the wireguard status Screenshot from 2023-05-24 14-26-44-obfuscated

LarryIsBetter avatar May 22 '23 15:05 LarryIsBetter

@LarryIsBetter are you running the very same config on both router and laptop?

gnuton avatar May 27 '23 13:05 gnuton

@gnuton Yup I've tried the same exact config file and also tried the same server but different private keys I also tried both the Linux and Anroid configs all work as expected on my laptop and on the router just works unreliably

LarryIsBetter avatar May 27 '23 13:05 LarryIsBetter

@gnuton Sorry I've forgot to tell you but I've tested the stable for a while with Mullvad and the issue with away.

LarryIsBetter avatar Jun 22 '23 07:06 LarryIsBetter

do you wanna keep this ticket open?

gnuton avatar Jun 22 '23 08:06 gnuton