block-outside-dns not working

joffa · Post by **joffa** » Fri Jun 03, 2016 1:37 am

Firstly please forgive me if I have posted in the wrong section. This is my first post and I joined up to seek advice on this specific issue.

On a win7 ultimate sp1 machine Im attempting to avoid dns leaks and so have 'block-outside-dns' added to the clients config file.

On running the vpn client it connects as usual but it appears as if the 'block-outside-dns' command is ignored and nothing shows in the log to indicate any problem.

In my network adapter ipv4 properties I have set fixed ip and a nominated dns server (which is not my isps) which is what shows when i test on a dns leak test website for the first 15 mins after connecting. I was hoping that adding the 'block-outside-dns' command would solve this.

Any help much appreciated

joffa · Post by **joffa** » Fri Jun 03, 2016 3:20 am

Using openvpn v 2.3.10

TinCanTech · Post by **TinCanTech** » Fri Jun 03, 2016 1:26 pm

joffa wrote:it appears as if the 'block-outside-dns' command is ignored and nothing shows in the log to indicate any problem.

Please post your log

joffa · Post by **joffa** » Sat Jun 04, 2016 10:23 am

Sat Jun 04 20:18:27 2016 OpenVPN 2.3.10 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [PKCS11] [IPv6] built on Mar 10 2016
Sat Jun 04 20:18:27 2016 Windows version 6.1 (Windows 7)
Sat Jun 04 20:18:27 2016 library versions: OpenSSL 1.0.1s 1 Mar 2016, LZO 2.09
Enter Management Password:
Sat Jun 04 20:18:28 2016 NOTE: --fast-io is disabled since we are running on Windows
Sat Jun 04 20:18:28 2016 UDPv4 link local: [undef]
Sat Jun 04 20:18:28 2016 UDPv4 link remote: [AF_INET]168.1.75.xx:1197
Sat Jun 04 20:18:28 2016 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Sat Jun 04 20:18:28 2016 CRL: CRL crl.pem is from a different issuer than the issuer of certificate C=US, ST=CA, L=LosAngeles, O=Private Internet Access, OU=Private Internet Access, CN=Private Internet Access, name=Private Internet Access, emailAddress=secure@privateinternetaccess.com
Sat Jun 04 20:18:28 2016 CRL: CRL crl.pem is from a different issuer than the issuer of certificate C=US, ST=CA, L=LosAngeles, O=Private Internet Access, OU=Private Internet Access, CN=Private Internet Access, name=Private Internet Access, emailAddress=secure@privateinternetaccess.com
Sat Jun 04 20:18:28 2016 [Private Internet Access] Peer Connection Initiated with [AF_INET]168.1.75.xx:1197
Sat Jun 04 20:18:31 2016 do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
Sat Jun 04 20:18:31 2016 open_tun, tt->ipv6=0
Sat Jun 04 20:18:31 2016 TAP-WIN32 device [Local Area Connection 2] opened: \\.\Global\{xxxxxxxxxxxxxxxxxxxxxx}.tap
Sat Jun 04 20:18:31 2016 Notified TAP-Windows driver to set a DHCP IP/netmask of 10.100.5.6/255.255.255.252 on interface {xxxxxxxxxxxxxxxxxxx} [DHCP-serv: 10.100.5.5, lease-time: 31536000]
Sat Jun 04 20:18:31 2016 Successful ARP Flush on interface [13] {xxxxxxxxxxxxxxxxxxxxx}
Sat Jun 04 20:18:36 2016 Initialization Sequence Completed

Identifying info replaced with 'xxxx's

TinCanTech · Post by **TinCanTech** » Sat Jun 04, 2016 5:21 pm

Add verb 4 to you config and try again .. thanks

joffa · Post by **joffa** » Sun Jun 05, 2016 1:24 am

I dont know that the output contains anything different after adding the verb 4 command, saving and restarting.
I'll paste the config also in case that contains any clues as to whats going wrong.
-----------
client
dev tun
proto udp
verb 4
block-outside-dns
remote aus-melbourne.privateinternetaccess.com 1197
resolv-retry infinite
nobind
persist-key
persist-tun
cipher aes-256-cbc
auth sha256
ca ca_rsa2048.crt
tls-client
remote-cert-tls server
auth-user-pass
comp-lzo
verb 1
reneg-sec 0
crl-verify crl.pem

auth-user-pass pass.txt
fast-io
mssfix 0
sndbuf 524288
rcvbuf 524288

Sun Jun 05 11:19:15 2016 OpenVPN 2.3.10 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [PKCS11] [IPv6] built on Mar 10 2016
Sun Jun 05 11:19:15 2016 Windows version 6.1 (Windows 7)
Sun Jun 05 11:19:15 2016 library versions: OpenSSL 1.0.1s 1 Mar 2016, LZO 2.09
Enter Management Password:
Sun Jun 05 11:19:15 2016 NOTE: --fast-io is disabled since we are running on Windows
Sun Jun 05 11:19:16 2016 UDPv4 link local: [undef]
Sun Jun 05 11:19:16 2016 UDPv4 link remote: [AF_INET]168.1.99.252:1197
Sun Jun 05 11:19:16 2016 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Sun Jun 05 11:19:16 2016 CRL: CRL crl.pem is from a different issuer than the issuer of certificate C=US, ST=CA, L=LosAngeles, O=Private Internet Access, OU=Private Internet Access, CN=Private Internet Access, name=Private Internet Access, emailAddress=secure@privateinternetaccess.com
Sun Jun 05 11:19:16 2016 CRL: CRL crl.pem is from a different issuer than the issuer of certificate C=US, ST=CA, L=LosAngeles, O=Private Internet Access, OU=Private Internet Access, CN=Private Internet Access, name=Private Internet Access, emailAddress=secure@privateinternetaccess.com
Sun Jun 05 11:19:16 2016 [Private Internet Access] Peer Connection Initiated with [AF_INET]168.1.99.252:1197
Sun Jun 05 11:19:18 2016 do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
Sun Jun 05 11:19:18 2016 open_tun, tt->ipv6=0
Sun Jun 05 11:19:18 2016 TAP-WIN32 device [Local Area Connection 2] opened: \\.\Global\{xxxxxxxxxxxxxxxxxxxxx}.tap
Sun Jun 05 11:19:18 2016 Notified TAP-Windows driver to set a DHCP IP/netmask of 10.100.5.6/255.255.255.252 on interface {xxxxxxxxxxxxxxxxxxx} [DHCP-serv: 10.100.5.5, lease-time: 31536000]
Sun Jun 05 11:19:18 2016 Successful ARP Flush on interface [13] {xxxxxxxxxxxxxxxxxxxxxxxxxx}
Sun Jun 05 11:19:23 2016 Initialization Sequence Completed

TinCanTech · Post by **TinCanTech** » Sun Jun 05, 2016 10:41 am

joffa wrote:I dont know that the output contains anything different after adding the verb 4 command, saving and restarting.
I'll paste the config also in case that contains any clues as to whats going wrong.
-----------
client
dev tun
proto udp
verb 4
block-outside-dns
remote aus-melbourne.privateinternetaccess.com 1197
resolv-retry infinite
nobind
persist-key
persist-tun
cipher aes-256-cbc
auth sha256
ca ca_rsa2048.crt
tls-client
remote-cert-tls server
auth-user-pass
comp-lzo
verb 1

Try again ..

joffa · Post by **joffa** » Sun Jun 05, 2016 10:57 pm

Dont know how I missed seeing the existing verb 1 statement, doh! I appreciate your patience. Ok here we go.

Mon Jun 06 08:38:54 2016 us=755352 Current Parameter Settings:
Mon Jun 06 08:38:54 2016 us=755352 config = 'AU Melbourne256.ovpn'
Mon Jun 06 08:38:54 2016 us=755352 mode = 0
Mon Jun 06 08:38:54 2016 us=755352 show_ciphers = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 show_digests = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 show_engines = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 genkey = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 key_pass_file = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 show_tls_ciphers = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 Connection profiles [default]:
Mon Jun 06 08:38:54 2016 us=755352 proto = udp
Mon Jun 06 08:38:54 2016 us=755352 local = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 local_port = 0
Mon Jun 06 08:38:54 2016 us=755352 remote = 'aus-melbourne.privateinternetaccess.com'
Mon Jun 06 08:38:54 2016 us=755352 remote_port = 1197
Mon Jun 06 08:38:54 2016 us=755352 remote_float = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 bind_defined = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 bind_local = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 connect_retry_seconds = 5
Mon Jun 06 08:38:54 2016 us=755352 connect_timeout = 10
Mon Jun 06 08:38:54 2016 us=755352 connect_retry_max = 0
Mon Jun 06 08:38:54 2016 us=755352 socks_proxy_server = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 socks_proxy_port = 0
Mon Jun 06 08:38:54 2016 us=755352 socks_proxy_retry = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 tun_mtu = 1500
Mon Jun 06 08:38:54 2016 us=755352 tun_mtu_defined = ENABLED
Mon Jun 06 08:38:54 2016 us=755352 link_mtu = 1500
Mon Jun 06 08:38:54 2016 us=755352 link_mtu_defined = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 tun_mtu_extra = 0
Mon Jun 06 08:38:54 2016 us=755352 tun_mtu_extra_defined = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 mtu_discover_type = -1
Mon Jun 06 08:38:54 2016 us=755352 fragment = 0
Mon Jun 06 08:38:54 2016 us=755352 mssfix = 0
Mon Jun 06 08:38:54 2016 us=755352 explicit_exit_notification = 0
Mon Jun 06 08:38:54 2016 us=755352 Connection profiles END
Mon Jun 06 08:38:54 2016 us=755352 remote_random = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 ipchange = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 dev = 'tun'
Mon Jun 06 08:38:54 2016 us=755352 dev_type = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 dev_node = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 lladdr = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 topology = 1
Mon Jun 06 08:38:54 2016 us=755352 tun_ipv6 = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 ifconfig_local = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 ifconfig_remote_netmask = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 ifconfig_noexec = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 ifconfig_nowarn = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 ifconfig_ipv6_local = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 ifconfig_ipv6_netbits = 0
Mon Jun 06 08:38:54 2016 us=755352 ifconfig_ipv6_remote = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 shaper = 0
Mon Jun 06 08:38:54 2016 us=755352 mtu_test = 0
Mon Jun 06 08:38:54 2016 us=755352 mlock = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 keepalive_ping = 0
Mon Jun 06 08:38:54 2016 us=755352 keepalive_timeout = 0
Mon Jun 06 08:38:54 2016 us=755352 inactivity_timeout = 0
Mon Jun 06 08:38:54 2016 us=755352 ping_send_timeout = 0
Mon Jun 06 08:38:54 2016 us=755352 ping_rec_timeout = 0
Mon Jun 06 08:38:54 2016 us=755352 ping_rec_timeout_action = 0
Mon Jun 06 08:38:54 2016 us=755352 ping_timer_remote = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 remap_sigusr1 = 0
Mon Jun 06 08:38:54 2016 us=755352 persist_tun = ENABLED
Mon Jun 06 08:38:54 2016 us=755352 persist_local_ip = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 persist_remote_ip = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 persist_key = ENABLED
Mon Jun 06 08:38:54 2016 us=755352 passtos = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 resolve_retry_seconds = 1000000000
Mon Jun 06 08:38:54 2016 us=755352 username = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 groupname = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 chroot_dir = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 cd_dir = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 writepid = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 up_script = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 down_script = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 down_pre = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 up_restart = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 up_delay = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 daemon = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 inetd = 0
Mon Jun 06 08:38:54 2016 us=755352 log = ENABLED
Mon Jun 06 08:38:54 2016 us=755352 suppress_timestamps = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 nice = 0
Mon Jun 06 08:38:54 2016 us=755352 verbosity = 4
Mon Jun 06 08:38:54 2016 us=755352 mute = 0
Mon Jun 06 08:38:54 2016 us=755352 gremlin = 0
Mon Jun 06 08:38:54 2016 us=755352 status_file = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 status_file_version = 1
Mon Jun 06 08:38:54 2016 us=755352 status_file_update_freq = 60
Mon Jun 06 08:38:54 2016 us=755352 occ = ENABLED
Mon Jun 06 08:38:54 2016 us=755352 rcvbuf = 524288
Mon Jun 06 08:38:54 2016 us=755352 sndbuf = 524288
Mon Jun 06 08:38:54 2016 us=755352 sockflags = 0
Mon Jun 06 08:38:54 2016 us=755352 fast_io = ENABLED
Mon Jun 06 08:38:54 2016 us=755352 lzo = 7
Mon Jun 06 08:38:54 2016 us=755352 route_script = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 route_default_gateway = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 route_default_metric = 0
Mon Jun 06 08:38:54 2016 us=755352 route_noexec = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 route_delay = 5
Mon Jun 06 08:38:54 2016 us=755352 route_delay_window = 30
Mon Jun 06 08:38:54 2016 us=755352 route_delay_defined = ENABLED
Mon Jun 06 08:38:54 2016 us=755352 route_nopull = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 route_gateway_via_dhcp = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 max_routes = 100
Mon Jun 06 08:38:54 2016 us=755352 allow_pull_fqdn = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 management_addr = '127.0.0.1'
Mon Jun 06 08:38:54 2016 us=755352 management_port = 25341
Mon Jun 06 08:38:54 2016 us=755352 management_user_pass = 'stdin'
Mon Jun 06 08:38:54 2016 us=755352 management_log_history_cache = 250
Mon Jun 06 08:38:54 2016 us=755352 management_echo_buffer_size = 100
Mon Jun 06 08:38:54 2016 us=755352 management_write_peer_info_file = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 management_client_user = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 management_client_group = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 management_flags = 6
Mon Jun 06 08:38:54 2016 us=755352 shared_secret_file = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 key_direction = 0
Mon Jun 06 08:38:54 2016 us=755352 ciphername_defined = ENABLED
Mon Jun 06 08:38:54 2016 us=755352 ciphername = 'aes-256-cbc'
Mon Jun 06 08:38:54 2016 us=755352 authname_defined = ENABLED
Mon Jun 06 08:38:54 2016 us=755352 authname = 'sha256'
Mon Jun 06 08:38:54 2016 us=755352 prng_hash = 'SHA1'
Mon Jun 06 08:38:54 2016 us=755352 prng_nonce_secret_len = 16
Mon Jun 06 08:38:54 2016 us=755352 keysize = 0
Mon Jun 06 08:38:54 2016 us=755352 engine = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 replay = ENABLED
Mon Jun 06 08:38:54 2016 us=755352 mute_replay_warnings = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 replay_window = 64
Mon Jun 06 08:38:54 2016 us=755352 replay_time = 15
Mon Jun 06 08:38:54 2016 us=755352 packet_id_file = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 use_iv = ENABLED
Mon Jun 06 08:38:54 2016 us=755352 test_crypto = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 tls_server = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 tls_client = ENABLED
Mon Jun 06 08:38:54 2016 us=755352 key_method = 2
Mon Jun 06 08:38:54 2016 us=755352 ca_file = 'ca_rsa2048.crt'
Mon Jun 06 08:38:54 2016 us=755352 ca_path = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 dh_file = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 cert_file = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 extra_certs_file = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 priv_key_file = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 pkcs12_file = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 cryptoapi_cert = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 cipher_list = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 tls_verify = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 tls_export_cert = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 verify_x509_type = 0
Mon Jun 06 08:38:54 2016 us=755352 verify_x509_name = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 crl_file = 'crl.pem'
Mon Jun 06 08:38:54 2016 us=755352 ns_cert_type = 0
Mon Jun 06 08:38:54 2016 us=755352 remote_cert_ku = 160
Mon Jun 06 08:38:54 2016 us=755352 remote_cert_ku = 136
Mon Jun 06 08:38:54 2016 us=755352 remote_cert_ku = 0
Mon Jun 06 08:38:54 2016 us=755352 remote_cert_ku = 0
Mon Jun 06 08:38:54 2016 us=755352 remote_cert_ku = 0
Mon Jun 06 08:38:54 2016 us=755352 remote_cert_ku = 0
Mon Jun 06 08:38:54 2016 us=755352 remote_cert_ku = 0
Mon Jun 06 08:38:54 2016 us=755352 remote_cert_ku = 0
Mon Jun 06 08:38:54 2016 us=755352 remote_cert_ku = 0
Mon Jun 06 08:38:54 2016 us=755352 remote_cert_ku = 0
Mon Jun 06 08:38:54 2016 us=755352 remote_cert_ku[i] = 0
Mon Jun 06 08:38:54 2016 us=755352 remote_cert_ku[i] = 0
Mon Jun 06 08:38:54 2016 us=755352 remote_cert_ku[i] = 0
Mon Jun 06 08:38:54 2016 us=755352 remote_cert_ku[i] = 0
Mon Jun 06 08:38:54 2016 us=755352 remote_cert_ku[i] = 0
Mon Jun 06 08:38:54 2016 us=755352 remote_cert_ku[i] = 0
Mon Jun 06 08:38:54 2016 us=755352 remote_cert_eku = 'TLS Web Server Authentication'
Mon Jun 06 08:38:54 2016 us=755352 ssl_flags = 0
Mon Jun 06 08:38:54 2016 us=755352 tls_timeout = 2
Mon Jun 06 08:38:54 2016 us=755352 renegotiate_bytes = 0
Mon Jun 06 08:38:54 2016 us=755352 renegotiate_packets = 0
Mon Jun 06 08:38:54 2016 us=755352 renegotiate_seconds = 0
Mon Jun 06 08:38:54 2016 us=755352 handshake_window = 60
Mon Jun 06 08:38:54 2016 us=755352 transition_window = 3600
Mon Jun 06 08:38:54 2016 us=755352 single_session = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 push_peer_info = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 tls_exit = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 tls_auth_file = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_protected_authentication = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_protected_authentication = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_protected_authentication = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_protected_authentication = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_protected_authentication = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_protected_authentication = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_protected_authentication = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_protected_authentication = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_protected_authentication = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_protected_authentication = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_protected_authentication = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_protected_authentication = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_protected_authentication = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_protected_authentication = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_protected_authentication = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_protected_authentication = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_private_mode = 00000000
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_private_mode = 00000000
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_private_mode = 00000000
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_private_mode = 00000000
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_private_mode = 00000000
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_private_mode = 00000000
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_private_mode = 00000000
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_private_mode = 00000000
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_private_mode = 00000000
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_private_mode = 00000000
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_private_mode = 00000000
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_private_mode = 00000000
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_private_mode = 00000000
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_private_mode = 00000000
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_private_mode = 00000000
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_private_mode = 00000000
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_cert_private = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_cert_private = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_cert_private = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_cert_private = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_cert_private = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_cert_private = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_cert_private = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_cert_private = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_cert_private = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_cert_private = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_cert_private = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_cert_private = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_cert_private = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_cert_private = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_cert_private = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_cert_private = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_pin_cache_period = -1
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_id = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 pkcs11_id_management = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 server_network = 0.0.0.0
Mon Jun 06 08:38:54 2016 us=755352 server_netmask = 0.0.0.0
Mon Jun 06 08:38:54 2016 us=755352 server_network_ipv6 = ::
Mon Jun 06 08:38:54 2016 us=755352 server_netbits_ipv6 = 0
Mon Jun 06 08:38:54 2016 us=755352 server_bridge_ip = 0.0.0.0
Mon Jun 06 08:38:54 2016 us=755352 server_bridge_netmask = 0.0.0.0
Mon Jun 06 08:38:54 2016 us=755352 server_bridge_pool_start = 0.0.0.0
Mon Jun 06 08:38:54 2016 us=755352 server_bridge_pool_end = 0.0.0.0
Mon Jun 06 08:38:54 2016 us=755352 ifconfig_pool_defined = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 ifconfig_pool_start = 0.0.0.0
Mon Jun 06 08:38:54 2016 us=755352 ifconfig_pool_end = 0.0.0.0
Mon Jun 06 08:38:54 2016 us=755352 ifconfig_pool_netmask = 0.0.0.0
Mon Jun 06 08:38:54 2016 us=755352 ifconfig_pool_persist_filename = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 ifconfig_pool_persist_refresh_freq = 600
Mon Jun 06 08:38:54 2016 us=755352 ifconfig_ipv6_pool_defined = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 ifconfig_ipv6_pool_base = ::
Mon Jun 06 08:38:54 2016 us=755352 ifconfig_ipv6_pool_netbits = 0
Mon Jun 06 08:38:54 2016 us=755352 n_bcast_buf = 256
Mon Jun 06 08:38:54 2016 us=755352 tcp_queue_limit = 64
Mon Jun 06 08:38:54 2016 us=755352 real_hash_size = 256
Mon Jun 06 08:38:54 2016 us=755352 virtual_hash_size = 256
Mon Jun 06 08:38:54 2016 us=755352 client_connect_script = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 learn_address_script = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 client_disconnect_script = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 client_config_dir = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 ccd_exclusive = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 tmp_dir = 'C:\Users\owner1\AppData\Local\Temp\'
Mon Jun 06 08:38:54 2016 us=755352 push_ifconfig_defined = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 push_ifconfig_local = 0.0.0.0
Mon Jun 06 08:38:54 2016 us=755352 push_ifconfig_remote_netmask = 0.0.0.0
Mon Jun 06 08:38:54 2016 us=755352 push_ifconfig_ipv6_defined = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 push_ifconfig_ipv6_local = ::/0
Mon Jun 06 08:38:54 2016 us=755352 push_ifconfig_ipv6_remote = ::
Mon Jun 06 08:38:54 2016 us=755352 enable_c2c = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 duplicate_cn = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 cf_max = 0
Mon Jun 06 08:38:54 2016 us=755352 cf_per = 0
Mon Jun 06 08:38:54 2016 us=755352 max_clients = 1024
Mon Jun 06 08:38:54 2016 us=755352 max_routes_per_client = 256
Mon Jun 06 08:38:54 2016 us=755352 auth_user_pass_verify_script = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 auth_user_pass_verify_script_via_file = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 client = ENABLED
Mon Jun 06 08:38:54 2016 us=755352 pull = ENABLED
Mon Jun 06 08:38:54 2016 us=755352 auth_user_pass_file = 'pass.txt'
Mon Jun 06 08:38:54 2016 us=755352 show_net_up = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 route_method = 0
Mon Jun 06 08:38:54 2016 us=755352 block_outside_dns = ENABLED
Mon Jun 06 08:38:54 2016 us=755352 ip_win32_defined = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 ip_win32_type = 3
Mon Jun 06 08:38:54 2016 us=755352 dhcp_masq_offset = 0
Mon Jun 06 08:38:54 2016 us=755352 dhcp_lease_time = 31536000
Mon Jun 06 08:38:54 2016 us=755352 tap_sleep = 0
Mon Jun 06 08:38:54 2016 us=755352 dhcp_options = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 dhcp_renew = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 dhcp_pre_release = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 dhcp_release = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 domain = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 netbios_scope = '[UNDEF]'
Mon Jun 06 08:38:54 2016 us=755352 netbios_node_type = 0
Mon Jun 06 08:38:54 2016 us=755352 disable_nbt = DISABLED
Mon Jun 06 08:38:54 2016 us=755352 OpenVPN 2.3.10 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [PKCS11] [IPv6] built on Mar 10 2016
Mon Jun 06 08:38:54 2016 us=755352 Windows version 6.1 (Windows 7)
Mon Jun 06 08:38:54 2016 us=755352 library versions: OpenSSL 1.0.1s 1 Mar 2016, LZO 2.09
Enter Management Password:
Mon Jun 06 08:38:54 2016 us=755352 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:25341
Mon Jun 06 08:38:54 2016 us=755352 Need hold release from management interface, waiting...
Mon Jun 06 08:38:55 2016 us=129753 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:25341
Mon Jun 06 08:38:55 2016 us=238953 MANAGEMENT: CMD 'state on'
Mon Jun 06 08:38:55 2016 us=238953 MANAGEMENT: CMD 'log all on'
Mon Jun 06 08:38:55 2016 us=363753 MANAGEMENT: CMD 'hold off'
Mon Jun 06 08:38:55 2016 us=363753 MANAGEMENT: CMD 'hold release'
Mon Jun 06 08:38:55 2016 us=363753 NOTE: --fast-io is disabled since we are running on Windows
Mon Jun 06 08:38:55 2016 us=519753 LZO compression initialized
Mon Jun 06 08:38:55 2016 us=519753 Control Channel MTU parms [ L:1570 D:1212 EF:38 EB:0 ET:0 EL:3 ]
Mon Jun 06 08:38:55 2016 us=519753 Socket Buffers: R=[8192->524288] S=[8192->524288]
Mon Jun 06 08:38:55 2016 us=519753 MANAGEMENT: >STATE:1465166335,RESOLVE,,,
Mon Jun 06 08:38:55 2016 us=613354 Data Channel MTU parms [ L:1570 D:1570 EF:70 EB:143 ET:0 EL:3 AF:3/1 ]
Mon Jun 06 08:38:55 2016 us=613354 Local Options String: 'V4,dev-type tun,link-mtu 1570,tun-mtu 1500,proto UDPv4,comp-lzo,cipher AES-256-CBC,auth SHA256,keysize 256,key-method 2,tls-client'
Mon Jun 06 08:38:55 2016 us=613354 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1570,tun-mtu 1500,proto UDPv4,comp-lzo,cipher AES-256-CBC,auth SHA256,keysize 256,key-method 2,tls-server'
Mon Jun 06 08:38:55 2016 us=613354 Local Options hash (VER=V4): 'fc8ba345'
Mon Jun 06 08:38:55 2016 us=613354 Expected Remote Options hash (VER=V4): '79a26cd9'
Mon Jun 06 08:38:55 2016 us=613354 UDPv4 link local: [undef]
Mon Jun 06 08:38:55 2016 us=613354 UDPv4 link remote: [AF_INET]168.1.75.22:1197
Mon Jun 06 08:38:55 2016 us=613354 MANAGEMENT: >STATE:1465166335,WAIT,,,
Mon Jun 06 08:38:55 2016 us=628954 MANAGEMENT: >STATE:1465166335,AUTH,,,
Mon Jun 06 08:38:55 2016 us=628954 TLS: Initial packet from [AF_INET]168.1.75.xx:1197, sid=b83db4d4 7238cba5
Mon Jun 06 08:38:55 2016 us=628954 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Mon Jun 06 08:38:55 2016 us=722554 CRL: CRL crl.pem is from a different issuer than the issuer of certificate C=US, ST=CA, L=LosAngeles, O=Private Internet Access, OU=Private Internet Access, CN=Private Internet Access, name=Private Internet Access, emailAddress=secure@privateinternetaccess.com
Mon Jun 06 08:38:55 2016 us=722554 VERIFY OK: depth=1, C=US, ST=CA, L=LosAngeles, O=Private Internet Access, OU=Private Internet Access, CN=Private Internet Access, name=Private Internet Access, emailAddress=secure@privateinternetaccess.com
Mon Jun 06 08:38:55 2016 us=722554 Validating certificate key usage
Mon Jun 06 08:38:55 2016 us=722554 ++ Certificate has key usage 00a0, expects 00a0
Mon Jun 06 08:38:55 2016 us=722554 VERIFY KU OK
Mon Jun 06 08:38:55 2016 us=722554 Validating certificate extended key usage
Mon Jun 06 08:38:55 2016 us=722554 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
Mon Jun 06 08:38:55 2016 us=722554 VERIFY EKU OK
Mon Jun 06 08:38:55 2016 us=722554 CRL: CRL crl.pem is from a different issuer than the issuer of certificate C=US, ST=CA, L=LosAngeles, O=Private Internet Access, OU=Private Internet Access, CN=Private Internet Access, name=Private Internet Access, emailAddress=secure@privateinternetaccess.com
Mon Jun 06 08:38:55 2016 us=722554 VERIFY OK: depth=0, C=US, ST=CA, L=LosAngeles, O=Private Internet Access, OU=Private Internet Access, CN=Private Internet Access, name=Private Internet Access, emailAddress=secure@privateinternetaccess.com
Mon Jun 06 08:38:55 2016 us=894154 Data Channel Encrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
Mon Jun 06 08:38:55 2016 us=894154 Data Channel Encrypt: Using 256 bit message hash 'SHA256' for HMAC authentication
Mon Jun 06 08:38:55 2016 us=894154 Data Channel Decrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
Mon Jun 06 08:38:55 2016 us=894154 Data Channel Decrypt: Using 256 bit message hash 'SHA256' for HMAC authentication
Mon Jun 06 08:38:55 2016 us=894154 Control Channel: TLSv1.2, cipher TLSv1/SSLv3 DHE-RSA-AES256-GCM-SHA384, 4096 bit RSA
Mon Jun 06 08:38:55 2016 us=894154 [Private Internet Access] Peer Connection Initiated with [AF_INET]168.1.75.22:1197
Mon Jun 06 08:38:56 2016 us=908156 MANAGEMENT: >STATE:1465166336,GET_CONFIG,,,
Mon Jun 06 08:38:57 2016 us=922158 SENT CONTROL [Private Internet Access]: 'PUSH_REQUEST' (status=1)
Mon Jun 06 08:38:57 2016 us=937758 PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1,dhcp-option DNS 209.222.18.222,dhcp-option DNS 209.222.18.218,ping 10,comp-lzo no,route 10.100.5.1,topology net30,ifconfig 10.100.5.6 10.100.5.5'
Mon Jun 06 08:38:57 2016 us=937758 OPTIONS IMPORT: timers and/or timeouts modified
Mon Jun 06 08:38:57 2016 us=937758 OPTIONS IMPORT: LZO parms modified
Mon Jun 06 08:38:57 2016 us=937758 OPTIONS IMPORT: --ifconfig/up options modified
Mon Jun 06 08:38:57 2016 us=937758 OPTIONS IMPORT: route options modified
Mon Jun 06 08:38:57 2016 us=937758 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Mon Jun 06 08:38:57 2016 us=937758 ROUTE_GATEWAY 192.168.1.1/255.255.255.0 I=12 HWADDR=00:xxxxxxxxxx
Mon Jun 06 08:38:57 2016 us=937758 do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
Mon Jun 06 08:38:57 2016 us=937758 MANAGEMENT: >STATE:1465166337,ASSIGN_IP,,10.100.5.6,
Mon Jun 06 08:38:57 2016 us=937758 open_tun, tt->ipv6=0
Mon Jun 06 08:38:57 2016 us=937758 TAP-WIN32 device [Local Area Connection 2] opened: \\.\Global\{xxxxxxxxxx}.tap
Mon Jun 06 08:38:57 2016 us=937758 TAP-Windows Driver Version 9.21
Mon Jun 06 08:38:57 2016 us=937758 TAP-Windows MTU=1500
Mon Jun 06 08:38:57 2016 us=937758 Notified TAP-Windows driver to set a DHCP IP/netmask of 10.100.5.6/255.255.255.252 on interface {xxxxxxxxxx} [DHCP-serv: 10.100.5.5, lease-time: 31536000]
Mon Jun 06 08:38:57 2016 us=937758 DHCP option string: 0608d1de 12ded1de 12da
Mon Jun 06 08:38:57 2016 us=937758 Successful ARP Flush on interface [13] {xxxxxxxxxx}
Mon Jun 06 08:38:57 2016 us=937758 Blocking outside DNS
Mon Jun 06 08:38:57 2016 us=937758 Opening WFP engine
Mon Jun 06 08:38:57 2016 us=937758 Adding WFP sublayer
Mon Jun 06 08:38:57 2016 us=937758 Blocking DNS using WFP
Mon Jun 06 08:38:57 2016 us=937758 Tap Luid: 1688850011258880
Mon Jun 06 08:38:57 2016 us=953358 Filter (Block IPv4 DNS) added with ID=66516
Mon Jun 06 08:38:57 2016 us=953358 Filter (Block IPv6 DNS) added with ID=66517
Mon Jun 06 08:38:57 2016 us=953358 Filter (Permit IPv4 DNS queries from TAP) added with ID=66518
Mon Jun 06 08:38:57 2016 us=953358 Filter (Permit IPv6 DNS queries from TAP) added with ID=66519
Mon Jun 06 08:39:02 2016 us=976566 TEST ROUTES: 2/2 succeeded len=1 ret=1 a=0 u/d=up
Mon Jun 06 08:39:02 2016 us=976566 C:\Windows\system32\route.exe ADD 168.1.75.22 MASK 255.255.255.255 192.168.1.1
Mon Jun 06 08:39:02 2016 us=976566 ROUTE: CreateIpForwardEntry succeeded with dwForwardMetric1=25 and dwForwardType=4
Mon Jun 06 08:39:02 2016 us=976566 Route addition via IPAPI succeeded [adaptive]
Mon Jun 06 08:39:02 2016 us=976566 C:\Windows\system32\route.exe ADD 0.0.0.0 MASK 128.0.0.0 10.100.5.5
Mon Jun 06 08:39:02 2016 us=976566 ROUTE: CreateIpForwardEntry succeeded with dwForwardMetric1=20 and dwForwardType=4
Mon Jun 06 08:39:02 2016 us=976566 Route addition via IPAPI succeeded [adaptive]
Mon Jun 06 08:39:02 2016 us=976566 C:\Windows\system32\route.exe ADD 128.0.0.0 MASK 128.0.0.0 10.100.5.5
Mon Jun 06 08:39:02 2016 us=976566 ROUTE: CreateIpForwardEntry succeeded with dwForwardMetric1=20 and dwForwardType=4
Mon Jun 06 08:39:02 2016 us=976566 Route addition via IPAPI succeeded [adaptive]
Mon Jun 06 08:39:02 2016 us=976566 MANAGEMENT: >STATE:1465166342,ADD_ROUTES,,,
Mon Jun 06 08:39:02 2016 us=976566 C:\Windows\system32\route.exe ADD 10.100.5.1 MASK 255.255.255.255 10.100.5.5
Mon Jun 06 08:39:02 2016 us=976566 ROUTE: CreateIpForwardEntry succeeded with dwForwardMetric1=20 and dwForwardType=4
Mon Jun 06 08:39:02 2016 us=976566 Route addition via IPAPI succeeded [adaptive]
Mon Jun 06 08:39:02 2016 us=976566 Initialization Sequence Completed
Mon Jun 06 08:39:02 2016 us=976566 MANAGEMENT: >STATE:1465166342,CONNECTED,SUCCESS,10.100.5.6,168.1.75.22

TinCanTech · Post by **TinCanTech** » Sun Jun 05, 2016 11:12 pm

joffa wrote: I appreciate your patience

No problem .. always good to help people willing to try. (like your good self)

As far as I can see --block-outside-dns is functioning correctly:

joffa wrote:Mon Jun 06 08:38:57 2016 us=937758 PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1,dhcp-option DNS 209.222.18.222,dhcp-option DNS 209.222.18.218,ping 10,comp-lzo no,route 10.100.5.1,topology net30,ifconfig 10.100.5.6 10.100.5.5'
<snip>
Mon Jun 06 08:38:57 2016 us=937758 Successful ARP Flush on interface [13] {xxxxxxxxxx}
Mon Jun 06 08:38:57 2016 us=937758 Blocking outside DNS
Mon Jun 06 08:38:57 2016 us=937758 Opening WFP engine
Mon Jun 06 08:38:57 2016 us=937758 Adding WFP sublayer
Mon Jun 06 08:38:57 2016 us=937758 Blocking DNS using WFP
Mon Jun 06 08:38:57 2016 us=937758 Tap Luid: 1688850011258880
Mon Jun 06 08:38:57 2016 us=953358 Filter (Block IPv4 DNS) added with ID=66516
Mon Jun 06 08:38:57 2016 us=953358 Filter (Block IPv6 DNS) added with ID=66517
Mon Jun 06 08:38:57 2016 us=953358 Filter (Permit IPv4 DNS queries from TAP) added with ID=66518
Mon Jun 06 08:38:57 2016 us=953358 Filter (Permit IPv6 DNS queries from TAP) added with ID=66519
Mon Jun 06 08:39:02 2016 us=976566 TEST ROUTES: 2/2 succeeded len=1 ret=1 a=0 u/d=up
Mon Jun 06 08:39:02 2016 us=976566 C:\Windows\system32\route.exe ADD 168.1.75.22 MASK 255.255.255.255 192.168.1.1
Mon Jun 06 08:39:02 2016 us=976566 ROUTE: CreateIpForwardEntry succeeded with dwForwardMetric1=25 and dwForwardType=4
Mon Jun 06 08:39:02 2016 us=976566 Route addition via IPAPI succeeded [adaptive]
Mon Jun 06 08:39:02 2016 us=976566 C:\Windows\system32\route.exe ADD 0.0.0.0 MASK 128.0.0.0 10.100.5.5
Mon Jun 06 08:39:02 2016 us=976566 ROUTE: CreateIpForwardEntry succeeded with dwForwardMetric1=20 and dwForwardType=4
Mon Jun 06 08:39:02 2016 us=976566 Route addition via IPAPI succeeded [adaptive]
Mon Jun 06 08:39:02 2016 us=976566 C:\Windows\system32\route.exe ADD 128.0.0.0 MASK 128.0.0.0 10.100.5.5
Mon Jun 06 08:39:02 2016 us=976566 ROUTE: CreateIpForwardEntry succeeded with dwForwardMetric1=20 and dwForwardType=4
Mon Jun 06 08:39:02 2016 us=976566 Route addition via IPAPI succeeded [adaptive]
Mon Jun 06 08:39:02 2016 us=976566 MANAGEMENT: >STATE:1465166342,ADD_ROUTES,,,
Mon Jun 06 08:39:02 2016 us=976566 C:\Windows\system32\route.exe ADD 10.100.5.1 MASK 255.255.255.255 10.100.5.5
Mon Jun 06 08:39:02 2016 us=976566 ROUTE: CreateIpForwardEntry succeeded with dwForwardMetric1=20 and dwForwardType=4
Mon Jun 06 08:39:02 2016 us=976566 Route addition via IPAPI succeeded [adaptive]
Mon Jun 06 08:39:02 2016 us=976566 Initialization Sequence Completed

It all looks normal to me ..

The problem may be more related to Private Internet Access Service not OpenVPN itself.

I would advise you take up the problem with them .. especially if you pay for your service.

If there is anything else you can add to the post to explain your problem please go ahead.

joffa · Post by **joffa** » Mon Jun 06, 2016 12:14 am

Thank you TinCanTech, Private Internet Access has a user forum, i'll take it up over there.
If I get a resolution i'll update this thread.

OpenVPN Support Forum

block-outside-dns not working

block-outside-dns not working

Re: block-outside-dns not working

Re: block-outside-dns not working

Re: block-outside-dns not working

Re: block-outside-dns not working

Re: block-outside-dns not working

Re: block-outside-dns not working

Re: block-outside-dns not working

Re: block-outside-dns not working

Re: block-outside-dns not working