OpenVPN Client to FortiGate VPN - SSL_accept failed, 1:unknown protocol

This forum is for general conversation and user-user networking.

Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech

Post Reply
shorn1
OpenVpn Newbie
Posts: 2
Joined: Tue May 16, 2017 2:46 pm

OpenVPN Client to FortiGate VPN - SSL_accept failed, 1:unknown protocol

Post by shorn1 » Tue May 16, 2017 2:55 pm

Hi there

I got a Fortgate SSL VPN Server up and running. If I connect via FortiClient with the SSL VPN all works grate. I want to use the openVPN Client to connect to the Fortigate SSL VPN. So is there any way to do this?

My Client config:

Code: Select all

client
dev tun
proto tcp
remote 192.168.1.99 443
ca Fortinet_CA_SSL.cer
resolv-retry infinite
nobind
persist-key
persist-tun
auth-user-pass
tls-version-min 1.2
verb 6
OpenVPN Client Log:

Code: Select all

Tue May 16 16:41:35 2017 us=98946 Current Parameter Settings:
Tue May 16 16:41:35 2017 us=98946   config = 'client.ovpn'
Tue May 16 16:41:35 2017 us=98946   mode = 0
Tue May 16 16:41:35 2017 us=98946   show_ciphers = DISABLED
Tue May 16 16:41:35 2017 us=98946   show_digests = DISABLED
Tue May 16 16:41:35 2017 us=98946   show_engines = DISABLED
Tue May 16 16:41:35 2017 us=98946   genkey = DISABLED
Tue May 16 16:41:35 2017 us=98946   key_pass_file = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   show_tls_ciphers = DISABLED
Tue May 16 16:41:35 2017 us=98946   connect_retry_max = 0
Tue May 16 16:41:35 2017 us=98946 Connection profiles [0]:
Tue May 16 16:41:35 2017 us=98946   proto = tcp-client
Tue May 16 16:41:35 2017 us=98946   local = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   local_port = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   remote = '192.168.1.99'
Tue May 16 16:41:35 2017 us=98946   remote_port = '443'
Tue May 16 16:41:35 2017 us=98946   remote_float = DISABLED
Tue May 16 16:41:35 2017 us=98946   bind_defined = DISABLED
Tue May 16 16:41:35 2017 us=98946   bind_local = DISABLED
Tue May 16 16:41:35 2017 us=98946   bind_ipv6_only = DISABLED
Tue May 16 16:41:35 2017 us=98946   connect_retry_seconds = 5
Tue May 16 16:41:35 2017 us=98946   connect_timeout = 120
Tue May 16 16:41:35 2017 us=98946   socks_proxy_server = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   socks_proxy_port = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   tun_mtu = 1500
Tue May 16 16:41:35 2017 us=98946   tun_mtu_defined = ENABLED
Tue May 16 16:41:35 2017 us=98946   link_mtu = 1500
Tue May 16 16:41:35 2017 us=98946   link_mtu_defined = DISABLED
Tue May 16 16:41:35 2017 us=98946   tun_mtu_extra = 0
Tue May 16 16:41:35 2017 us=98946   tun_mtu_extra_defined = DISABLED
Tue May 16 16:41:35 2017 us=98946   mtu_discover_type = -1
Tue May 16 16:41:35 2017 us=98946   fragment = 0
Tue May 16 16:41:35 2017 us=98946   mssfix = 1450
Tue May 16 16:41:35 2017 us=98946   explicit_exit_notification = 0
Tue May 16 16:41:35 2017 us=98946 Connection profiles END
Tue May 16 16:41:35 2017 us=98946   remote_random = DISABLED
Tue May 16 16:41:35 2017 us=98946   ipchange = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   dev = 'tun'
Tue May 16 16:41:35 2017 us=98946   dev_type = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   dev_node = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   lladdr = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   topology = 1
Tue May 16 16:41:35 2017 us=98946   ifconfig_local = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   ifconfig_remote_netmask = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   ifconfig_noexec = DISABLED
Tue May 16 16:41:35 2017 us=98946   ifconfig_nowarn = DISABLED
Tue May 16 16:41:35 2017 us=98946   ifconfig_ipv6_local = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   ifconfig_ipv6_netbits = 0
Tue May 16 16:41:35 2017 us=98946   ifconfig_ipv6_remote = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   shaper = 0
Tue May 16 16:41:35 2017 us=98946   mtu_test = 0
Tue May 16 16:41:35 2017 us=98946   mlock = DISABLED
Tue May 16 16:41:35 2017 us=98946   keepalive_ping = 0
Tue May 16 16:41:35 2017 us=98946   keepalive_timeout = 0
Tue May 16 16:41:35 2017 us=98946   inactivity_timeout = 0
Tue May 16 16:41:35 2017 us=98946   ping_send_timeout = 0
Tue May 16 16:41:35 2017 us=98946   ping_rec_timeout = 0
Tue May 16 16:41:35 2017 us=98946   ping_rec_timeout_action = 0
Tue May 16 16:41:35 2017 us=98946   ping_timer_remote = DISABLED
Tue May 16 16:41:35 2017 us=98946   remap_sigusr1 = 0
Tue May 16 16:41:35 2017 us=98946   persist_tun = ENABLED
Tue May 16 16:41:35 2017 us=98946   persist_local_ip = DISABLED
Tue May 16 16:41:35 2017 us=98946   persist_remote_ip = DISABLED
Tue May 16 16:41:35 2017 us=98946   persist_key = ENABLED
Tue May 16 16:41:35 2017 us=98946   passtos = DISABLED
Tue May 16 16:41:35 2017 us=98946   resolve_retry_seconds = 1000000000
Tue May 16 16:41:35 2017 us=98946   resolve_in_advance = DISABLED
Tue May 16 16:41:35 2017 us=98946   username = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   groupname = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   chroot_dir = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   cd_dir = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   writepid = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   up_script = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   down_script = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   down_pre = DISABLED
Tue May 16 16:41:35 2017 us=98946   up_restart = DISABLED
Tue May 16 16:41:35 2017 us=98946   up_delay = DISABLED
Tue May 16 16:41:35 2017 us=98946   daemon = DISABLED
Tue May 16 16:41:35 2017 us=98946   inetd = 0
Tue May 16 16:41:35 2017 us=98946   log = ENABLED
Tue May 16 16:41:35 2017 us=98946   suppress_timestamps = DISABLED
Tue May 16 16:41:35 2017 us=98946   machine_readable_output = DISABLED
Tue May 16 16:41:35 2017 us=98946   nice = 0
Tue May 16 16:41:35 2017 us=98946   verbosity = 6
Tue May 16 16:41:35 2017 us=98946   mute = 0
Tue May 16 16:41:35 2017 us=98946   gremlin = 0
Tue May 16 16:41:35 2017 us=98946   status_file = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   status_file_version = 1
Tue May 16 16:41:35 2017 us=98946   status_file_update_freq = 60
Tue May 16 16:41:35 2017 us=98946   occ = ENABLED
Tue May 16 16:41:35 2017 us=98946   rcvbuf = 0
Tue May 16 16:41:35 2017 us=98946   sndbuf = 0
Tue May 16 16:41:35 2017 us=98946   sockflags = 0
Tue May 16 16:41:35 2017 us=98946   fast_io = DISABLED
Tue May 16 16:41:35 2017 us=98946   comp.alg = 0
Tue May 16 16:41:35 2017 us=98946   comp.flags = 0
Tue May 16 16:41:35 2017 us=98946   route_script = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   route_default_gateway = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   route_default_metric = 0
Tue May 16 16:41:35 2017 us=98946   route_noexec = DISABLED
Tue May 16 16:41:35 2017 us=98946   route_delay = 5
Tue May 16 16:41:35 2017 us=98946   route_delay_window = 30
Tue May 16 16:41:35 2017 us=98946   route_delay_defined = ENABLED
Tue May 16 16:41:35 2017 us=98946   route_nopull = DISABLED
Tue May 16 16:41:35 2017 us=98946   route_gateway_via_dhcp = DISABLED
Tue May 16 16:41:35 2017 us=98946   allow_pull_fqdn = DISABLED
Tue May 16 16:41:35 2017 us=98946   management_addr = '127.0.0.1'
Tue May 16 16:41:35 2017 us=98946   management_port = '25340'
Tue May 16 16:41:35 2017 us=98946   management_user_pass = 'stdin'
Tue May 16 16:41:35 2017 us=98946   management_log_history_cache = 250
Tue May 16 16:41:35 2017 us=98946   management_echo_buffer_size = 100
Tue May 16 16:41:35 2017 us=98946   management_write_peer_info_file = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   management_client_user = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   management_client_group = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   management_flags = 6
Tue May 16 16:41:35 2017 us=98946   shared_secret_file = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   key_direction = 0
Tue May 16 16:41:35 2017 us=98946   ciphername = 'BF-CBC'
Tue May 16 16:41:35 2017 us=98946   ncp_enabled = ENABLED
Tue May 16 16:41:35 2017 us=98946   ncp_ciphers = 'AES-256-GCM:AES-128-GCM'
Tue May 16 16:41:35 2017 us=98946   authname = 'SHA1'
Tue May 16 16:41:35 2017 us=98946   prng_hash = 'SHA1'
Tue May 16 16:41:35 2017 us=98946   prng_nonce_secret_len = 16
Tue May 16 16:41:35 2017 us=98946   keysize = 0
Tue May 16 16:41:35 2017 us=98946   engine = DISABLED
Tue May 16 16:41:35 2017 us=98946   replay = ENABLED
Tue May 16 16:41:35 2017 us=98946   mute_replay_warnings = DISABLED
Tue May 16 16:41:35 2017 us=98946   replay_window = 64
Tue May 16 16:41:35 2017 us=98946   replay_time = 15
Tue May 16 16:41:35 2017 us=98946   packet_id_file = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   use_iv = ENABLED
Tue May 16 16:41:35 2017 us=98946   test_crypto = DISABLED
Tue May 16 16:41:35 2017 us=98946   tls_server = DISABLED
Tue May 16 16:41:35 2017 us=98946   tls_client = ENABLED
Tue May 16 16:41:35 2017 us=98946   key_method = 2
Tue May 16 16:41:35 2017 us=98946   ca_file = 'Fortinet_CA_SSL.cer'
Tue May 16 16:41:35 2017 us=98946   ca_path = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   dh_file = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   cert_file = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   extra_certs_file = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   priv_key_file = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   pkcs12_file = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   cryptoapi_cert = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   cipher_list = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   tls_verify = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   tls_export_cert = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   verify_x509_type = 0
Tue May 16 16:41:35 2017 us=98946   verify_x509_name = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   crl_file = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   ns_cert_type = 0
Tue May 16 16:41:35 2017 us=98946   remote_cert_ku[i] = 0
Tue May 16 16:41:35 2017 us=98946   remote_cert_ku[i] = 0
Tue May 16 16:41:35 2017 us=98946   remote_cert_ku[i] = 0
Tue May 16 16:41:35 2017 us=98946   remote_cert_ku[i] = 0
Tue May 16 16:41:35 2017 us=98946   remote_cert_ku[i] = 0
Tue May 16 16:41:35 2017 us=98946   remote_cert_ku[i] = 0
Tue May 16 16:41:35 2017 us=98946   remote_cert_ku[i] = 0
Tue May 16 16:41:35 2017 us=98946   remote_cert_ku[i] = 0
Tue May 16 16:41:35 2017 us=98946   remote_cert_ku[i] = 0
Tue May 16 16:41:35 2017 us=98946   remote_cert_ku[i] = 0
Tue May 16 16:41:35 2017 us=98946   remote_cert_ku[i] = 0
Tue May 16 16:41:35 2017 us=98946   remote_cert_ku[i] = 0
Tue May 16 16:41:35 2017 us=98946   remote_cert_ku[i] = 0
Tue May 16 16:41:35 2017 us=98946   remote_cert_ku[i] = 0
Tue May 16 16:41:35 2017 us=98946   remote_cert_ku[i] = 0
Tue May 16 16:41:35 2017 us=98946   remote_cert_ku[i] = 0
Tue May 16 16:41:35 2017 us=98946   remote_cert_eku = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   ssl_flags = 64
Tue May 16 16:41:35 2017 us=98946   tls_timeout = 2
Tue May 16 16:41:35 2017 us=98946   renegotiate_bytes = -1
Tue May 16 16:41:35 2017 us=98946   renegotiate_packets = 0
Tue May 16 16:41:35 2017 us=98946   renegotiate_seconds = 3600
Tue May 16 16:41:35 2017 us=98946   handshake_window = 60
Tue May 16 16:41:35 2017 us=98946   transition_window = 3600
Tue May 16 16:41:35 2017 us=98946   single_session = DISABLED
Tue May 16 16:41:35 2017 us=98946   push_peer_info = DISABLED
Tue May 16 16:41:35 2017 us=98946   tls_exit = DISABLED
Tue May 16 16:41:35 2017 us=98946   tls_auth_file = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   tls_crypt_file = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   pkcs11_protected_authentication = DISABLED
Tue May 16 16:41:35 2017 us=98946   pkcs11_protected_authentication = DISABLED
Tue May 16 16:41:35 2017 us=98946   pkcs11_protected_authentication = DISABLED
Tue May 16 16:41:35 2017 us=98946   pkcs11_protected_authentication = DISABLED
Tue May 16 16:41:35 2017 us=98946   pkcs11_protected_authentication = DISABLED
Tue May 16 16:41:35 2017 us=98946   pkcs11_protected_authentication = DISABLED
Tue May 16 16:41:35 2017 us=98946   pkcs11_protected_authentication = DISABLED
Tue May 16 16:41:35 2017 us=98946   pkcs11_protected_authentication = DISABLED
Tue May 16 16:41:35 2017 us=98946   pkcs11_protected_authentication = DISABLED
Tue May 16 16:41:35 2017 us=98946   pkcs11_protected_authentication = DISABLED
Tue May 16 16:41:35 2017 us=98946   pkcs11_protected_authentication = DISABLED
Tue May 16 16:41:35 2017 us=98946   pkcs11_protected_authentication = DISABLED
Tue May 16 16:41:35 2017 us=98946   pkcs11_protected_authentication = DISABLED
Tue May 16 16:41:35 2017 us=98946   pkcs11_protected_authentication = DISABLED
Tue May 16 16:41:35 2017 us=98946   pkcs11_protected_authentication = DISABLED
Tue May 16 16:41:35 2017 us=98946   pkcs11_protected_authentication = DISABLED
Tue May 16 16:41:35 2017 us=98946   pkcs11_private_mode = 00000000
Tue May 16 16:41:35 2017 us=98946   pkcs11_private_mode = 00000000
Tue May 16 16:41:35 2017 us=98946   pkcs11_private_mode = 00000000
Tue May 16 16:41:35 2017 us=98946   pkcs11_private_mode = 00000000
Tue May 16 16:41:35 2017 us=98946   pkcs11_private_mode = 00000000
Tue May 16 16:41:35 2017 us=98946   pkcs11_private_mode = 00000000
Tue May 16 16:41:35 2017 us=98946   pkcs11_private_mode = 00000000
Tue May 16 16:41:35 2017 us=98946   pkcs11_private_mode = 00000000
Tue May 16 16:41:35 2017 us=98946   pkcs11_private_mode = 00000000
Tue May 16 16:41:35 2017 us=98946   pkcs11_private_mode = 00000000
Tue May 16 16:41:35 2017 us=98946   pkcs11_private_mode = 00000000
Tue May 16 16:41:35 2017 us=98946   pkcs11_private_mode = 00000000
Tue May 16 16:41:35 2017 us=98946   pkcs11_private_mode = 00000000
Tue May 16 16:41:35 2017 us=98946   pkcs11_private_mode = 00000000
Tue May 16 16:41:35 2017 us=98946   pkcs11_private_mode = 00000000
Tue May 16 16:41:35 2017 us=98946   pkcs11_private_mode = 00000000
Tue May 16 16:41:35 2017 us=98946   pkcs11_cert_private = DISABLED
Tue May 16 16:41:35 2017 us=98946   pkcs11_cert_private = DISABLED
Tue May 16 16:41:35 2017 us=98946   pkcs11_cert_private = DISABLED
Tue May 16 16:41:35 2017 us=98946   pkcs11_cert_private = DISABLED
Tue May 16 16:41:35 2017 us=98946   pkcs11_cert_private = DISABLED
Tue May 16 16:41:35 2017 us=98946   pkcs11_cert_private = DISABLED
Tue May 16 16:41:35 2017 us=98946   pkcs11_cert_private = DISABLED
Tue May 16 16:41:35 2017 us=98946   pkcs11_cert_private = DISABLED
Tue May 16 16:41:35 2017 us=98946   pkcs11_cert_private = DISABLED
Tue May 16 16:41:35 2017 us=98946   pkcs11_cert_private = DISABLED
Tue May 16 16:41:35 2017 us=98946   pkcs11_cert_private = DISABLED
Tue May 16 16:41:35 2017 us=98946   pkcs11_cert_private = DISABLED
Tue May 16 16:41:35 2017 us=98946   pkcs11_cert_private = DISABLED
Tue May 16 16:41:35 2017 us=98946   pkcs11_cert_private = DISABLED
Tue May 16 16:41:35 2017 us=98946   pkcs11_cert_private = DISABLED
Tue May 16 16:41:35 2017 us=98946   pkcs11_cert_private = DISABLED
Tue May 16 16:41:35 2017 us=98946   pkcs11_pin_cache_period = -1
Tue May 16 16:41:35 2017 us=98946   pkcs11_id = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   pkcs11_id_management = DISABLED
Tue May 16 16:41:35 2017 us=98946   server_network = 0.0.0.0
Tue May 16 16:41:35 2017 us=98946   server_netmask = 0.0.0.0
Tue May 16 16:41:35 2017 us=98946   server_network_ipv6 = ::
Tue May 16 16:41:35 2017 us=98946   server_netbits_ipv6 = 0
Tue May 16 16:41:35 2017 us=98946   server_bridge_ip = 0.0.0.0
Tue May 16 16:41:35 2017 us=98946   server_bridge_netmask = 0.0.0.0
Tue May 16 16:41:35 2017 us=98946   server_bridge_pool_start = 0.0.0.0
Tue May 16 16:41:35 2017 us=98946   server_bridge_pool_end = 0.0.0.0
Tue May 16 16:41:35 2017 us=98946   ifconfig_pool_defined = DISABLED
Tue May 16 16:41:35 2017 us=98946   ifconfig_pool_start = 0.0.0.0
Tue May 16 16:41:35 2017 us=98946   ifconfig_pool_end = 0.0.0.0
Tue May 16 16:41:35 2017 us=98946   ifconfig_pool_netmask = 0.0.0.0
Tue May 16 16:41:35 2017 us=98946   ifconfig_pool_persist_filename = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   ifconfig_pool_persist_refresh_freq = 600
Tue May 16 16:41:35 2017 us=98946   ifconfig_ipv6_pool_defined = DISABLED
Tue May 16 16:41:35 2017 us=98946   ifconfig_ipv6_pool_base = ::
Tue May 16 16:41:35 2017 us=98946   ifconfig_ipv6_pool_netbits = 0
Tue May 16 16:41:35 2017 us=98946   n_bcast_buf = 256
Tue May 16 16:41:35 2017 us=98946   tcp_queue_limit = 64
Tue May 16 16:41:35 2017 us=98946   real_hash_size = 256
Tue May 16 16:41:35 2017 us=98946   virtual_hash_size = 256
Tue May 16 16:41:35 2017 us=98946   client_connect_script = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   learn_address_script = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   client_disconnect_script = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   client_config_dir = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   ccd_exclusive = DISABLED
Tue May 16 16:41:35 2017 us=98946   tmp_dir = 'C:\Users\DANIEL~1\AppData\Local\Temp\'
Tue May 16 16:41:35 2017 us=98946   push_ifconfig_defined = DISABLED
Tue May 16 16:41:35 2017 us=98946   push_ifconfig_local = 0.0.0.0
Tue May 16 16:41:35 2017 us=98946   push_ifconfig_remote_netmask = 0.0.0.0
Tue May 16 16:41:35 2017 us=98946   push_ifconfig_ipv6_defined = DISABLED
Tue May 16 16:41:35 2017 us=98946   push_ifconfig_ipv6_local = ::/0
Tue May 16 16:41:35 2017 us=98946   push_ifconfig_ipv6_remote = ::
Tue May 16 16:41:35 2017 us=98946   enable_c2c = DISABLED
Tue May 16 16:41:35 2017 us=98946   duplicate_cn = DISABLED
Tue May 16 16:41:35 2017 us=98946   cf_max = 0
Tue May 16 16:41:35 2017 us=98946   cf_per = 0
Tue May 16 16:41:35 2017 us=98946   max_clients = 1024
Tue May 16 16:41:35 2017 us=98946   max_routes_per_client = 256
Tue May 16 16:41:35 2017 us=98946   auth_user_pass_verify_script = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   auth_user_pass_verify_script_via_file = DISABLED
Tue May 16 16:41:35 2017 us=98946   auth_token_generate = DISABLED
Tue May 16 16:41:35 2017 us=98946   auth_token_lifetime = 0
Tue May 16 16:41:35 2017 us=98946   client = ENABLED
Tue May 16 16:41:35 2017 us=98946   pull = ENABLED
Tue May 16 16:41:35 2017 us=98946   auth_user_pass_file = 'stdin'
Tue May 16 16:41:35 2017 us=98946   show_net_up = DISABLED
Tue May 16 16:41:35 2017 us=98946   route_method = 3
Tue May 16 16:41:35 2017 us=98946   block_outside_dns = DISABLED
Tue May 16 16:41:35 2017 us=98946   ip_win32_defined = DISABLED
Tue May 16 16:41:35 2017 us=98946   ip_win32_type = 3
Tue May 16 16:41:35 2017 us=98946   dhcp_masq_offset = 0
Tue May 16 16:41:35 2017 us=98946   dhcp_lease_time = 31536000
Tue May 16 16:41:35 2017 us=98946   tap_sleep = 0
Tue May 16 16:41:35 2017 us=98946   dhcp_options = DISABLED
Tue May 16 16:41:35 2017 us=98946   dhcp_renew = DISABLED
Tue May 16 16:41:35 2017 us=98946   dhcp_pre_release = DISABLED
Tue May 16 16:41:35 2017 us=98946   domain = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   netbios_scope = '[UNDEF]'
Tue May 16 16:41:35 2017 us=98946   netbios_node_type = 0
Tue May 16 16:41:35 2017 us=98946   disable_nbt = DISABLED
Tue May 16 16:41:35 2017 us=98946 OpenVPN 2.4.2 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [AEAD] built on May 11 2017
Tue May 16 16:41:35 2017 us=98946 Windows version 6.2 (Windows 8 or greater) 64bit
Tue May 16 16:41:35 2017 us=98946 library versions: OpenSSL 1.0.2k  26 Jan 2017, LZO 2.10
Enter Management Password:
Tue May 16 16:41:35 2017 us=98946 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:25340
Tue May 16 16:41:35 2017 us=98946 Need hold release from management interface, waiting...
Tue May 16 16:41:35 2017 us=598412 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:25340
Tue May 16 16:41:35 2017 us=707782 MANAGEMENT: CMD 'state on'
Tue May 16 16:41:35 2017 us=707782 MANAGEMENT: CMD 'log all on'
Tue May 16 16:41:37 2017 us=277839 MANAGEMENT: CMD 'echo all on'
Tue May 16 16:41:37 2017 us=309142 MANAGEMENT: CMD 'hold off'
Tue May 16 16:41:37 2017 us=324751 MANAGEMENT: CMD 'hold release'
Tue May 16 16:41:42 2017 us=871547 MANAGEMENT: CMD 'username "Auth" "vpn"'
Tue May 16 16:41:42 2017 us=918246 MANAGEMENT: CMD 'password [...]'
Tue May 16 16:41:42 2017 us=918246 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
Tue May 16 16:41:43 2017 us=75388 Control Channel MTU parms [ L:1623 D:1210 EF:40 EB:0 ET:0 EL:3 ]
Tue May 16 16:41:43 2017 us=75388 Data Channel MTU parms [ L:1623 D:1450 EF:123 EB:406 ET:0 EL:3 ]
Tue May 16 16:41:43 2017 us=75388 Local Options String (VER=V4): 'V4,dev-type tun,link-mtu 1543,tun-mtu 1500,proto TCPv4_CLIENT,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Tue May 16 16:41:43 2017 us=75388 Expected Remote Options String (VER=V4): 'V4,dev-type tun,link-mtu 1543,tun-mtu 1500,proto TCPv4_SERVER,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Tue May 16 16:41:43 2017 us=75388 TCP/UDP: Preserving recently used remote address: [AF_INET]192.168.1.99:443
Tue May 16 16:41:43 2017 us=75388 Socket Buffers: R=[65536->65536] S=[65536->65536]
Tue May 16 16:41:43 2017 us=75388 Attempting to establish TCP connection with [AF_INET]192.168.1.99:443 [nonblock]
Tue May 16 16:41:43 2017 us=75388 MANAGEMENT: >STATE:1494945703,TCP_CONNECT,,,,,,
Tue May 16 16:41:44 2017 us=76032 TCP connection established with [AF_INET]192.168.1.99:443
Tue May 16 16:41:44 2017 us=76032 TCP_CLIENT link local: (not bound)
Tue May 16 16:41:44 2017 us=76032 TCP_CLIENT link remote: [AF_INET]192.168.1.99:443
Tue May 16 16:41:44 2017 us=76032 MANAGEMENT: >STATE:1494945704,WAIT,,,,,,
Tue May 16 16:41:44 2017 us=76032 TCP_CLIENT WRITE [14] to [AF_INET]192.168.1.99:443: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Tue May 16 16:41:44 2017 us=76032 Connection reset, restarting [-1]
Tue May 16 16:41:44 2017 us=76032 TCP/UDP: Closing socket
Tue May 16 16:41:44 2017 us=76032 SIGUSR1[soft,connection-reset] received, process restarting
Tue May 16 16:41:44 2017 us=76032 MANAGEMENT: >STATE:1494945704,RECONNECTING,connection-reset,,,,,
Tue May 16 16:41:44 2017 us=76032 Restart pause, 5 second(s)
Tue May 16 16:41:49 2017 us=127541 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
Tue May 16 16:41:49 2017 us=127541 Re-using SSL/TLS context
Tue May 16 16:41:49 2017 us=127541 Control Channel MTU parms [ L:1623 D:1210 EF:40 EB:0 ET:0 EL:3 ]
Tue May 16 16:41:49 2017 us=127541 Data Channel MTU parms [ L:1623 D:1450 EF:123 EB:406 ET:0 EL:3 ]
Tue May 16 16:41:49 2017 us=127541 Local Options String (VER=V4): 'V4,dev-type tun,link-mtu 1543,tun-mtu 1500,proto TCPv4_CLIENT,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Tue May 16 16:41:49 2017 us=127541 Expected Remote Options String (VER=V4): 'V4,dev-type tun,link-mtu 1543,tun-mtu 1500,proto TCPv4_SERVER,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Tue May 16 16:41:49 2017 us=127541 TCP/UDP: Preserving recently used remote address: [AF_INET]192.168.1.99:443
Tue May 16 16:41:49 2017 us=127541 Socket Buffers: R=[65536->65536] S=[65536->65536]
Tue May 16 16:41:49 2017 us=127541 Attempting to establish TCP connection with [AF_INET]192.168.1.99:443 [nonblock]
Tue May 16 16:41:49 2017 us=127541 MANAGEMENT: >STATE:1494945709,TCP_CONNECT,,,,,,
Tue May 16 16:41:50 2017 us=127811 TCP connection established with [AF_INET]192.168.1.99:443
Tue May 16 16:41:50 2017 us=127811 TCP_CLIENT link local: (not bound)
Tue May 16 16:41:50 2017 us=127811 TCP_CLIENT link remote: [AF_INET]192.168.1.99:443
Tue May 16 16:41:50 2017 us=127811 MANAGEMENT: >STATE:1494945710,WAIT,,,,,,
Tue May 16 16:41:50 2017 us=127811 TCP_CLIENT WRITE [14] to [AF_INET]192.168.1.99:443: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Tue May 16 16:41:50 2017 us=127811 Connection reset, restarting [-1]
Tue May 16 16:41:50 2017 us=127811 TCP/UDP: Closing socket
Tue May 16 16:41:50 2017 us=127811 SIGUSR1[soft,connection-reset] received, process restarting
Tue May 16 16:41:50 2017 us=127811 MANAGEMENT: >STATE:1494945710,RECONNECTING,connection-reset,,,,,
Tue May 16 16:41:50 2017 us=127811 Restart pause, 5 second(s)
Tue May 16 16:41:55 2017 us=172241 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
Tue May 16 16:41:55 2017 us=172241 Re-using SSL/TLS context
Tue May 16 16:41:55 2017 us=172241 Control Channel MTU parms [ L:1623 D:1210 EF:40 EB:0 ET:0 EL:3 ]
Tue May 16 16:41:55 2017 us=172241 Data Channel MTU parms [ L:1623 D:1450 EF:123 EB:406 ET:0 EL:3 ]
Tue May 16 16:41:55 2017 us=172241 Local Options String (VER=V4): 'V4,dev-type tun,link-mtu 1543,tun-mtu 1500,proto TCPv4_CLIENT,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Tue May 16 16:41:55 2017 us=172241 Expected Remote Options String (VER=V4): 'V4,dev-type tun,link-mtu 1543,tun-mtu 1500,proto TCPv4_SERVER,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Tue May 16 16:41:55 2017 us=172241 TCP/UDP: Preserving recently used remote address: [AF_INET]192.168.1.99:443
Tue May 16 16:41:55 2017 us=172241 Socket Buffers: R=[65536->65536] S=[65536->65536]
Tue May 16 16:41:55 2017 us=172241 Attempting to establish TCP connection with [AF_INET]192.168.1.99:443 [nonblock]
Tue May 16 16:41:55 2017 us=172241 MANAGEMENT: >STATE:1494945715,TCP_CONNECT,,,,,,
Tue May 16 16:41:56 2017 us=178178 TCP connection established with [AF_INET]192.168.1.99:443
Tue May 16 16:41:56 2017 us=178178 TCP_CLIENT link local: (not bound)
Tue May 16 16:41:56 2017 us=178178 TCP_CLIENT link remote: [AF_INET]192.168.1.99:443
Tue May 16 16:41:56 2017 us=178178 MANAGEMENT: >STATE:1494945716,WAIT,,,,,,
Tue May 16 16:41:56 2017 us=178178 TCP_CLIENT WRITE [14] to [AF_INET]192.168.1.99:443: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Tue May 16 16:41:56 2017 us=178178 Connection reset, restarting [-1]
Tue May 16 16:41:56 2017 us=178178 TCP/UDP: Closing socket
Tue May 16 16:41:56 2017 us=178178 SIGUSR1[soft,connection-reset] received, process restarting
Tue May 16 16:41:56 2017 us=178178 MANAGEMENT: >STATE:1494945716,RECONNECTING,connection-reset,,,,,
Tue May 16 16:41:56 2017 us=178178 Restart pause, 5 second(s)
Tue May 16 16:42:01 2017 us=203490 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
Tue May 16 16:42:01 2017 us=203490 Re-using SSL/TLS context
Tue May 16 16:42:01 2017 us=203490 Control Channel MTU parms [ L:1623 D:1210 EF:40 EB:0 ET:0 EL:3 ]
Tue May 16 16:42:01 2017 us=203490 Data Channel MTU parms [ L:1623 D:1450 EF:123 EB:406 ET:0 EL:3 ]
Tue May 16 16:42:01 2017 us=203490 Local Options String (VER=V4): 'V4,dev-type tun,link-mtu 1543,tun-mtu 1500,proto TCPv4_CLIENT,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Tue May 16 16:42:01 2017 us=203490 Expected Remote Options String (VER=V4): 'V4,dev-type tun,link-mtu 1543,tun-mtu 1500,proto TCPv4_SERVER,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Tue May 16 16:42:01 2017 us=203490 TCP/UDP: Preserving recently used remote address: [AF_INET]192.168.1.99:443
Tue May 16 16:42:01 2017 us=203490 Socket Buffers: R=[65536->65536] S=[65536->65536]
Tue May 16 16:42:01 2017 us=203490 Attempting to establish TCP connection with [AF_INET]192.168.1.99:443 [nonblock]
Tue May 16 16:42:01 2017 us=203490 MANAGEMENT: >STATE:1494945721,TCP_CONNECT,,,,,,
Tue May 16 16:42:02 2017 us=203896 TCP connection established with [AF_INET]192.168.1.99:443
Tue May 16 16:42:02 2017 us=203896 TCP_CLIENT link local: (not bound)
Tue May 16 16:42:02 2017 us=203896 TCP_CLIENT link remote: [AF_INET]192.168.1.99:443
Tue May 16 16:42:02 2017 us=203896 MANAGEMENT: >STATE:1494945722,WAIT,,,,,,
Tue May 16 16:42:02 2017 us=203896 TCP_CLIENT WRITE [14] to [AF_INET]192.168.1.99:443: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Tue May 16 16:42:02 2017 us=203896 Connection reset, restarting [-1]
Tue May 16 16:42:02 2017 us=203896 TCP/UDP: Closing socket
Tue May 16 16:42:02 2017 us=203896 SIGUSR1[soft,connection-reset] received, process restarting
Tue May 16 16:42:02 2017 us=203896 MANAGEMENT: >STATE:1494945722,RECONNECTING,connection-reset,,,,,
Tue May 16 16:42:02 2017 us=203896 Restart pause, 5 second(s)
Tue May 16 16:42:07 2017 us=206826 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
Tue May 16 16:42:07 2017 us=207825 Re-using SSL/TLS context
Tue May 16 16:42:07 2017 us=207825 Control Channel MTU parms [ L:1623 D:1210 EF:40 EB:0 ET:0 EL:3 ]
Tue May 16 16:42:07 2017 us=208825 Data Channel MTU parms [ L:1623 D:1450 EF:123 EB:406 ET:0 EL:3 ]
Tue May 16 16:42:07 2017 us=208825 Local Options String (VER=V4): 'V4,dev-type tun,link-mtu 1543,tun-mtu 1500,proto TCPv4_CLIENT,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Tue May 16 16:42:07 2017 us=208825 Expected Remote Options String (VER=V4): 'V4,dev-type tun,link-mtu 1543,tun-mtu 1500,proto TCPv4_SERVER,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Tue May 16 16:42:07 2017 us=208825 TCP/UDP: Preserving recently used remote address: [AF_INET]192.168.1.99:443
Tue May 16 16:42:07 2017 us=208825 Socket Buffers: R=[65536->65536] S=[65536->65536]
Tue May 16 16:42:07 2017 us=208825 Attempting to establish TCP connection with [AF_INET]192.168.1.99:443 [nonblock]
Tue May 16 16:42:07 2017 us=208825 MANAGEMENT: >STATE:1494945727,TCP_CONNECT,,,,,,
Tue May 16 16:42:08 2017 us=209759 TCP connection established with [AF_INET]192.168.1.99:443
Tue May 16 16:42:08 2017 us=209759 TCP_CLIENT link local: (not bound)
Tue May 16 16:42:08 2017 us=209759 TCP_CLIENT link remote: [AF_INET]192.168.1.99:443
Tue May 16 16:42:08 2017 us=209759 MANAGEMENT: >STATE:1494945728,WAIT,,,,,,
Tue May 16 16:42:08 2017 us=210946 TCP_CLIENT WRITE [14] to [AF_INET]192.168.1.99:443: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Tue May 16 16:42:08 2017 us=212943 Connection reset, restarting [-1]
Tue May 16 16:42:08 2017 us=213944 TCP/UDP: Closing socket
Tue May 16 16:42:08 2017 us=213944 SIGUSR1[soft,connection-reset] received, process restarting
Tue May 16 16:42:08 2017 us=213944 MANAGEMENT: >STATE:1494945728,RECONNECTING,connection-reset,,,,,
Tue May 16 16:42:08 2017 us=213944 Restart pause, 10 second(s)
Tue May 16 16:42:18 2017 us=225115 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
Tue May 16 16:42:18 2017 us=225115 Re-using SSL/TLS context
Tue May 16 16:42:18 2017 us=225115 Control Channel MTU parms [ L:1623 D:1210 EF:40 EB:0 ET:0 EL:3 ]
Tue May 16 16:42:18 2017 us=225115 Data Channel MTU parms [ L:1623 D:1450 EF:123 EB:406 ET:0 EL:3 ]
Tue May 16 16:42:18 2017 us=225115 Local Options String (VER=V4): 'V4,dev-type tun,link-mtu 1543,tun-mtu 1500,proto TCPv4_CLIENT,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Tue May 16 16:42:18 2017 us=225115 Expected Remote Options String (VER=V4): 'V4,dev-type tun,link-mtu 1543,tun-mtu 1500,proto TCPv4_SERVER,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Tue May 16 16:42:18 2017 us=225115 TCP/UDP: Preserving recently used remote address: [AF_INET]192.168.1.99:443
Tue May 16 16:42:18 2017 us=225115 Socket Buffers: R=[65536->65536] S=[65536->65536]
Tue May 16 16:42:18 2017 us=225115 Attempting to establish TCP connection with [AF_INET]192.168.1.99:443 [nonblock]
Tue May 16 16:42:18 2017 us=225115 MANAGEMENT: >STATE:1494945738,TCP_CONNECT,,,,,,
Tue May 16 16:42:19 2017 us=226015 TCP connection established with [AF_INET]192.168.1.99:443
Tue May 16 16:42:19 2017 us=226015 TCP_CLIENT link local: (not bound)
Tue May 16 16:42:19 2017 us=226015 TCP_CLIENT link remote: [AF_INET]192.168.1.99:443
Tue May 16 16:42:19 2017 us=226015 MANAGEMENT: >STATE:1494945739,WAIT,,,,,,
Tue May 16 16:42:19 2017 us=226015 TCP_CLIENT WRITE [14] to [AF_INET]192.168.1.99:443: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Tue May 16 16:42:19 2017 us=227979 Connection reset, restarting [-1]
Tue May 16 16:42:19 2017 us=227979 TCP/UDP: Closing socket
Tue May 16 16:42:19 2017 us=227979 SIGUSR1[soft,connection-reset] received, process restarting
Tue May 16 16:42:19 2017 us=227979 MANAGEMENT: >STATE:1494945739,RECONNECTING,connection-reset,,,,,
Tue May 16 16:42:19 2017 us=227979 Restart pause, 20 second(s)
Tue May 16 16:42:39 2017 us=262608 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
Tue May 16 16:42:39 2017 us=262608 Re-using SSL/TLS context
Tue May 16 16:42:39 2017 us=262608 Control Channel MTU parms [ L:1623 D:1210 EF:40 EB:0 ET:0 EL:3 ]
Tue May 16 16:42:39 2017 us=262608 Data Channel MTU parms [ L:1623 D:1450 EF:123 EB:406 ET:0 EL:3 ]
Tue May 16 16:42:39 2017 us=262608 Local Options String (VER=V4): 'V4,dev-type tun,link-mtu 1543,tun-mtu 1500,proto TCPv4_CLIENT,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Tue May 16 16:42:39 2017 us=262608 Expected Remote Options String (VER=V4): 'V4,dev-type tun,link-mtu 1543,tun-mtu 1500,proto TCPv4_SERVER,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Tue May 16 16:42:39 2017 us=262608 TCP/UDP: Preserving recently used remote address: [AF_INET]192.168.1.99:443
Tue May 16 16:42:39 2017 us=262608 Socket Buffers: R=[65536->65536] S=[65536->65536]
Tue May 16 16:42:39 2017 us=262608 Attempting to establish TCP connection with [AF_INET]192.168.1.99:443 [nonblock]
Tue May 16 16:42:39 2017 us=262608 MANAGEMENT: >STATE:1494945759,TCP_CONNECT,,,,,,
Tue May 16 16:42:40 2017 us=275628 TCP connection established with [AF_INET]192.168.1.99:443
Tue May 16 16:42:40 2017 us=275628 TCP_CLIENT link local: (not bound)
Tue May 16 16:42:40 2017 us=275628 TCP_CLIENT link remote: [AF_INET]192.168.1.99:443
Tue May 16 16:42:40 2017 us=275628 MANAGEMENT: >STATE:1494945760,WAIT,,,,,,
Tue May 16 16:42:40 2017 us=275628 TCP_CLIENT WRITE [14] to [AF_INET]192.168.1.99:443: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Tue May 16 16:42:40 2017 us=275628 Connection reset, restarting [-1]
Tue May 16 16:42:40 2017 us=275628 TCP/UDP: Closing socket
Tue May 16 16:42:40 2017 us=275628 SIGUSR1[soft,connection-reset] received, process restarting
Tue May 16 16:42:40 2017 us=275628 MANAGEMENT: >STATE:1494945760,RECONNECTING,connection-reset,,,,,
Tue May 16 16:42:40 2017 us=275628 Restart pause, 40 second(s)
Tue May 16 16:43:20 2017 us=434811 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
Tue May 16 16:43:20 2017 us=434811 Re-using SSL/TLS context
Tue May 16 16:43:20 2017 us=434811 Control Channel MTU parms [ L:1623 D:1210 EF:40 EB:0 ET:0 EL:3 ]
Tue May 16 16:43:20 2017 us=434811 Data Channel MTU parms [ L:1623 D:1450 EF:123 EB:406 ET:0 EL:3 ]
Tue May 16 16:43:20 2017 us=434811 Local Options String (VER=V4): 'V4,dev-type tun,link-mtu 1543,tun-mtu 1500,proto TCPv4_CLIENT,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Tue May 16 16:43:20 2017 us=434811 Expected Remote Options String (VER=V4): 'V4,dev-type tun,link-mtu 1543,tun-mtu 1500,proto TCPv4_SERVER,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Tue May 16 16:43:20 2017 us=434811 TCP/UDP: Preserving recently used remote address: [AF_INET]192.168.1.99:443
Tue May 16 16:43:20 2017 us=434811 Socket Buffers: R=[65536->65536] S=[65536->65536]
Tue May 16 16:43:20 2017 us=434811 Attempting to establish TCP connection with [AF_INET]192.168.1.99:443 [nonblock]
Tue May 16 16:43:20 2017 us=434811 MANAGEMENT: >STATE:1494945800,TCP_CONNECT,,,,,,
Tue May 16 16:43:21 2017 us=435285 TCP connection established with [AF_INET]192.168.1.99:443
Tue May 16 16:43:21 2017 us=435285 TCP_CLIENT link local: (not bound)
Tue May 16 16:43:21 2017 us=435285 TCP_CLIENT link remote: [AF_INET]192.168.1.99:443
Tue May 16 16:43:21 2017 us=435285 MANAGEMENT: >STATE:1494945801,WAIT,,,,,,
Tue May 16 16:43:21 2017 us=435285 TCP_CLIENT WRITE [14] to [AF_INET]192.168.1.99:443: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Tue May 16 16:43:21 2017 us=437237 Connection reset, restarting [-1]
Tue May 16 16:43:21 2017 us=437237 TCP/UDP: Closing socket
Tue May 16 16:43:21 2017 us=437237 SIGUSR1[soft,connection-reset] received, process restarting
Tue May 16 16:43:21 2017 us=437237 MANAGEMENT: >STATE:1494945801,RECONNECTING,connection-reset,,,,,
Tue May 16 16:43:21 2017 us=437237 Restart pause, 80 second(s)
Tue May 16 16:44:41 2017 us=609324 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
Tue May 16 16:44:41 2017 us=609324 Re-using SSL/TLS context
Tue May 16 16:44:41 2017 us=609324 Control Channel MTU parms [ L:1623 D:1210 EF:40 EB:0 ET:0 EL:3 ]
Tue May 16 16:44:41 2017 us=609324 Data Channel MTU parms [ L:1623 D:1450 EF:123 EB:406 ET:0 EL:3 ]
Tue May 16 16:44:41 2017 us=609324 Local Options String (VER=V4): 'V4,dev-type tun,link-mtu 1543,tun-mtu 1500,proto TCPv4_CLIENT,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Tue May 16 16:44:41 2017 us=609324 Expected Remote Options String (VER=V4): 'V4,dev-type tun,link-mtu 1543,tun-mtu 1500,proto TCPv4_SERVER,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Tue May 16 16:44:41 2017 us=609324 TCP/UDP: Preserving recently used remote address: [AF_INET]192.168.1.99:443
Tue May 16 16:44:41 2017 us=609324 Socket Buffers: R=[65536->65536] S=[65536->65536]
Tue May 16 16:44:41 2017 us=609324 Attempting to establish TCP connection with [AF_INET]192.168.1.99:443 [nonblock]
Tue May 16 16:44:41 2017 us=609324 MANAGEMENT: >STATE:1494945881,TCP_CONNECT,,,,,,
Tue May 16 16:44:42 2017 us=617336 TCP connection established with [AF_INET]192.168.1.99:443
Tue May 16 16:44:42 2017 us=617336 TCP_CLIENT link local: (not bound)
Tue May 16 16:44:42 2017 us=617336 TCP_CLIENT link remote: [AF_INET]192.168.1.99:443
Tue May 16 16:44:42 2017 us=617336 MANAGEMENT: >STATE:1494945882,WAIT,,,,,,
Tue May 16 16:44:42 2017 us=617336 TCP_CLIENT WRITE [14] to [AF_INET]192.168.1.99:443: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Tue May 16 16:44:42 2017 us=617336 Connection reset, restarting [-1]
Tue May 16 16:44:42 2017 us=617336 TCP/UDP: Closing socket
Tue May 16 16:44:42 2017 us=617336 SIGUSR1[soft,connection-reset] received, process restarting
Tue May 16 16:44:42 2017 us=617336 MANAGEMENT: >STATE:1494945882,RECONNECTING,connection-reset,,,,,
Tue May 16 16:44:42 2017 us=617336 Restart pause, 160 second(s)
Tue May 16 16:47:22 2017 us=65982 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
Tue May 16 16:47:22 2017 us=65982 Re-using SSL/TLS context
Tue May 16 16:47:22 2017 us=65982 Control Channel MTU parms [ L:1623 D:1210 EF:40 EB:0 ET:0 EL:3 ]
Tue May 16 16:47:22 2017 us=65982 Data Channel MTU parms [ L:1623 D:1450 EF:123 EB:406 ET:0 EL:3 ]
Tue May 16 16:47:22 2017 us=65982 Local Options String (VER=V4): 'V4,dev-type tun,link-mtu 1543,tun-mtu 1500,proto TCPv4_CLIENT,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Tue May 16 16:47:22 2017 us=65982 Expected Remote Options String (VER=V4): 'V4,dev-type tun,link-mtu 1543,tun-mtu 1500,proto TCPv4_SERVER,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Tue May 16 16:47:22 2017 us=65982 TCP/UDP: Preserving recently used remote address: [AF_INET]192.168.1.99:443
Tue May 16 16:47:22 2017 us=65982 Socket Buffers: R=[65536->65536] S=[65536->65536]
Tue May 16 16:47:22 2017 us=65982 Attempting to establish TCP connection with [AF_INET]192.168.1.99:443 [nonblock]
Tue May 16 16:47:22 2017 us=66942 MANAGEMENT: >STATE:1494946042,TCP_CONNECT,,,,,,
Tue May 16 16:47:23 2017 us=67872 TCP connection established with [AF_INET]192.168.1.99:443
Tue May 16 16:47:23 2017 us=67872 TCP_CLIENT link local: (not bound)
Tue May 16 16:47:23 2017 us=67872 TCP_CLIENT link remote: [AF_INET]192.168.1.99:443
Tue May 16 16:47:23 2017 us=67872 MANAGEMENT: >STATE:1494946043,WAIT,,,,,,
Tue May 16 16:47:23 2017 us=67872 TCP_CLIENT WRITE [14] to [AF_INET]192.168.1.99:443: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Tue May 16 16:47:23 2017 us=68879 Connection reset, restarting [-1]
Tue May 16 16:47:23 2017 us=68879 TCP/UDP: Closing socket
Tue May 16 16:47:23 2017 us=68879 SIGUSR1[soft,connection-reset] received, process restarting
Tue May 16 16:47:23 2017 us=68879 MANAGEMENT: >STATE:1494946043,RECONNECTING,connection-reset,,,,,
Tue May 16 16:47:23 2017 us=68879 Restart pause, 300 second(s)

On the FortiGate I got this Output:

Code: Select all

[6092:root:13]allocSSLConn:262 sconn 0x54540300 (0:root)
[6092:root:13]SSL state:before/accept initialization (192.168.1.110)
[6092:root:13]SSL state:SSLv2/v3 read client hello A:(null)(192.168.1.110)
[6092:root:13]SSL_accept failed, 1:unknown protocol
[6092:root:13]Destroy sconn 0x54540300, connSize=0. (root)
Anyone a idea what is going wrong?

User avatar
Pippin
Forum Team
Posts: 1201
Joined: Wed Jul 01, 2015 8:03 am
Location: irc://irc.libera.chat:6697/openvpn

Re: OpenVPN Client to FortiGate VPN - SSL_accept failed, 1:unknown protocol

Post by Pippin » Tue May 16, 2017 5:43 pm

Fortigate SSL VPN is not OpenVPN.
OpenVPN is not SSL VPN.
SSL_accept failed, 1:unknown protocol

shorn1
OpenVpn Newbie
Posts: 2
Joined: Tue May 16, 2017 2:46 pm

Re: OpenVPN Client to FortiGate VPN - SSL_accept failed, 1:unknown protocol

Post by shorn1 » Thu May 18, 2017 6:07 am

So there is no way of getting this working? Does the OpenVPN Client "only" know OpenVPN and can`t start a SSL VPN Connection?

Post Reply