First, I'd like to apologize that my goal is so rudimentary. I have been monitoring and reading
this channel, {freenode-#openvpn}, for a little over a week now and most of the topics are as far above my knowlege
base as String Theory would be above a fifth grader. I've also searched the openvpn forums; I found
several posts that are/were helpful and eliminated all but one of my persistent error messages.
There is one that I can't seem to rectify; that said, I will, if preferred,
put in a pastebin: my goal, OS info., configs, and error messages. Again, apologies and thank you in advance.
Simply, I'm running openvpn 2.1.0 client {downloaded and installed from the Lucid repos.}; I'm trying
to connect to a free open vpn server. I have obtained and am using their X.509 certificate, their config file
for their clients, user-name, password, and any other pertanant info. that they supplied.
OS- Ubuntu Desktop, 10.04 {updated}.
Here {it's file name is freevpn1}, is my config file:
client
dev tun0
proto udp
script-security 2
tls-remote x509name
remote 195.60.76.223 53 # - Your server IP and OpenVPN Port
dhcp-option DISABLE-NBT
resolv-retry infinite
nobind
tun-mtu 1500
tun-mtu-extra 32
mssfix 1450
persist-key
persist-tun
ca vpnbook.crt
auth-user-pass
comp-lzo
verb 5
cipher AES-256-CBC
This is an exact copy of that which they supplied with one exception; I added line #5 {tls-rem...}, as this was
needed to eliminate another error message that was appearing when I attempted to log on.
Now, what follows is the persistent error message that has been appearing [and driving me nuts!], in one form or
another for over a week:
de@de-desktop:~$ sudo openvpn --config /home/de/freevpn1
Nov 14 12:47:26 2012 us=316191 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Wed Nov 14 12:47:26 2012 us=316249 TLS Error: TLS handshake failed
Wed Nov 14 12:47:26 2012 us=316398 TCP/UDP: Closing socket
Wed Nov 14 12:47:26 2012 us=316457 SIGUSR1[soft,tls-error] received, process restarting
Wed Nov 14 12:47:26 2012 us=316485 Restart pause, 2 second(s)
Wed Nov 14 12:47:28 2012 us=316594 WARNING: Make sure you understand the semantics of --tls-remote before using it (see the man page).
Wed Nov 14 12:47:28 2012 us=316655 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Wed Nov 14 12:47:28 2012 us=316688 Re-using SSL/TLS context
Wed Nov 14 12:47:28 2012 us=316726 LZO compression initialized
Wed Nov 14 12:47:28 2012 us=316853 Control Channel MTU parms [ L:1590 D:138 EF:38 EB:0 ET:0 EL:0 ]
Wed Nov 14 12:47:28 2012 us=316939 Data Channel MTU parms [ L:1590 D:1450 EF:58 EB:135 ET:32 EL:0 AF:3/1 ]
Wed Nov 14 12:47:28 2012 us=316982 Local Options String: 'V4,dev-type tun,link-mtu 1590,tun-mtu 1532,proto UDPv4,comp-lzo,cipher AES-256-CBC,auth SHA1,keysize 256,key-method 2,tls-client'
Wed Nov 14 12:47:28 2012 us=317000 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1590,tun-mtu 1532,proto UDPv4,comp-lzo,cipher AES-256-CBC,auth SHA1,keysize 256,key-method 2,tls-server'
Wed Nov 14 12:47:28 2012 us=317033 Local Options hash (VER=V4): 'fd83fad0'
Wed Nov 14 12:47:28 2012 us=317061 Expected Remote Options hash (VER=V4): '00a0a914'
Wed Nov 14 12:47:28 2012 us=317091 Socket Buffers: R=[112640->131072] S=[112640->131072]
Wed Nov 14 12:47:28 2012 us=317113 UDPv4 link local: [undef]
Wed Nov 14 12:47:28 2012 us=317135 UDPv4 link remote: [AF_INET]195.60.76.223:53
WWWWWWWWWWW^CWed Nov 14 12:47:50 2012 us=94697 event_wait : Interrupted system call (code=4)
Wed Nov 14 12:47:50 2012 us=94894 TCP/UDP: Closing socket
Wed Nov 14 12:47:50 2012 us=94945 SIGINT[hard,] received, process exiting
As a rule I prefer to figure things out, on my own but am totally hitting a brick wall on this one.
Normally I would query the website in question directly but they say, right on their site "We are
not a support site; search google, etc..." and I don't want to be banned so early in the game.
I have checked my router port forwarding rules and noted that UDP port 53 is open for both DNS and
another VOIP application; I did not insert a rule for 53 and openvpn on the assumption that if the
lack of a rule was the problem, I would get an error to that affect.
Might the DNS/VOIP settings possibly be the problem?
I didn't want to make too many changes, thereby creating a plethora of non-standard variables that
could conceivably "screw the pooch", in the long run. Sorry for the length of this post but I wanted
to include as much info. as might be required.
Any assistance would be more than greatly appreciated. TIA.
TLS error in client; while connection to free openvpn on WAN
Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech
-
Sidewinder
- OpenVpn Newbie
- Posts: 3
- Joined: Wed Nov 07, 2012 1:55 pm
-
Sidewinder
- OpenVpn Newbie
- Posts: 3
- Joined: Wed Nov 07, 2012 1:55 pm
Re: TLS error in client; while connection to free openvpn on
Perhaps some additional info. would be helpful. About the only change that I have made is the creating a router rule/port forward, in my router for UDP 53 per the --config file. There were no port conflict or error messages. Some helpful folks in the IRC channel asked about server --config info; I'm not sure if I have access to that and if I do, exactly how to obtain. It's at 195.60.76.223 their web site is www.vpnbook.com which curiously, is currently unavailable/down, hmm. The server is still 'up', it would appear as it asks for uname and pswd.
What follows is, I believe my log file. I hope this add'l info. will be of value. I'm really goin' bat-shit with frustration over this seemingly unending conundrum.
I have also included the error message just in case an infinitesimal entry has changed and I didn't notice it, among the rest of the output:
Sat Nov 17 09:18:02 2012 us=956670 Current Parameter Settings:
Sat Nov 17 09:18:02 2012 us=956789 config = '/home/de/freevpn1'
Sat Nov 17 09:18:02 2012 us=956813 mode = 0
Sat Nov 17 09:18:02 2012 us=956831 persist_config = DISABLED
Sat Nov 17 09:18:02 2012 us=956849 persist_mode = 1
Sat Nov 17 09:18:02 2012 us=956866 show_ciphers = DISABLED
Sat Nov 17 09:18:02 2012 us=956883 show_digests = DISABLED
Sat Nov 17 09:18:02 2012 us=956900 show_engines = DISABLED
Sat Nov 17 09:18:02 2012 us=956918 genkey = DISABLED
Sat Nov 17 09:18:02 2012 us=956935 key_pass_file = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=956952 show_tls_ciphers = DISABLED
Sat Nov 17 09:18:02 2012 us=956969 Connection profiles [default]:
Sat Nov 17 09:18:02 2012 us=956986 proto = udp
Sat Nov 17 09:18:02 2012 us=957004 local = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=957022 local_port = 0
Sat Nov 17 09:18:02 2012 us=957039 remote = '195.60.76.223'
Sat Nov 17 09:18:02 2012 us=957057 remote_port = 53
Sat Nov 17 09:18:02 2012 us=957074 remote_float = DISABLED
Sat Nov 17 09:18:02 2012 us=957091 bind_defined = DISABLED
Sat Nov 17 09:18:02 2012 us=957108 bind_local = DISABLED
Sat Nov 17 09:18:02 2012 us=957125 connect_retry_seconds = 5
Sat Nov 17 09:18:02 2012 us=957142 connect_timeout = 10
Sat Nov 17 09:18:02 2012 us=957159 connect_retry_max = 0
Sat Nov 17 09:18:02 2012 us=957176 socks_proxy_server = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=957194 socks_proxy_port = 0
Sat Nov 17 09:18:02 2012 us=957211 socks_proxy_retry = DISABLED
Sat Nov 17 09:18:02 2012 us=957231 Connection profiles END
Sat Nov 17 09:18:02 2012 us=957248 remote_random = DISABLED
Sat Nov 17 09:18:02 2012 us=957265 ipchange = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=957282 dev = 'tun0'
Sat Nov 17 09:18:02 2012 us=957299 dev_type = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=957316 dev_node = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=957334 lladdr = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=957351 topology = 1
Sat Nov 17 09:18:02 2012 us=957368 tun_ipv6 = DISABLED
Sat Nov 17 09:18:02 2012 us=957385 ifconfig_local = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=957402 ifconfig_remote_netmask = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=957419 ifconfig_noexec = DISABLED
Sat Nov 17 09:18:02 2012 us=957599 ifconfig_nowarn = DISABLED
Sat Nov 17 09:18:02 2012 us=957622 shaper = 0
Sat Nov 17 09:18:02 2012 us=957639 tun_mtu = 1500
Sat Nov 17 09:18:02 2012 us=957656 tun_mtu_defined = ENABLED
Sat Nov 17 09:18:02 2012 us=957673 link_mtu = 1500
Sat Nov 17 09:18:02 2012 us=957690 link_mtu_defined = DISABLED
Sat Nov 17 09:18:02 2012 us=957707 tun_mtu_extra = 32
Sat Nov 17 09:18:02 2012 us=957724 tun_mtu_extra_defined = ENABLED
Sat Nov 17 09:18:02 2012 us=957741 fragment = 0
Sat Nov 17 09:18:02 2012 us=957759 mtu_discover_type = -1
Sat Nov 17 09:18:02 2012 us=957776 mtu_test = 0
Sat Nov 17 09:18:02 2012 us=957792 mlock = DISABLED
Sat Nov 17 09:18:02 2012 us=957809 keepalive_ping = 0
Sat Nov 17 09:18:02 2012 us=957826 keepalive_timeout = 0
Sat Nov 17 09:18:02 2012 us=957843 inactivity_timeout = 0
Sat Nov 17 09:18:02 2012 us=957860 ping_send_timeout = 0
Sat Nov 17 09:18:02 2012 us=957877 ping_rec_timeout = 0
Sat Nov 17 09:18:02 2012 us=957894 ping_rec_timeout_action = 0
Sat Nov 17 09:18:02 2012 us=957911 ping_timer_remote = DISABLED
Sat Nov 17 09:18:02 2012 us=957928 remap_sigusr1 = 0
Sat Nov 17 09:18:02 2012 us=957945 explicit_exit_notification = 0
Sat Nov 17 09:18:02 2012 us=957963 persist_tun = ENABLED
Sat Nov 17 09:18:02 2012 us=957980 persist_local_ip = DISABLED
Sat Nov 17 09:18:02 2012 us=957997 persist_remote_ip = DISABLED
Sat Nov 17 09:18:02 2012 us=958014 persist_key = ENABLED
Sat Nov 17 09:18:02 2012 us=958031 mssfix = 1450
Sat Nov 17 09:18:02 2012 us=958048 passtos = DISABLED
Sat Nov 17 09:18:02 2012 us=958066 resolve_retry_seconds = 1000000000
Sat Nov 17 09:18:02 2012 us=958083 username = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=958100 groupname = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=958117 chroot_dir = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=958134 cd_dir = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=958152 writepid = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=958169 up_script = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=958186 down_script = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=958203 down_pre = DISABLED
Sat Nov 17 09:18:02 2012 us=958221 up_restart = DISABLED
Sat Nov 17 09:18:02 2012 us=958237 up_delay = DISABLED
Sat Nov 17 09:18:02 2012 us=958254 daemon = DISABLED
Sat Nov 17 09:18:02 2012 us=958271 inetd = 0
Sat Nov 17 09:18:02 2012 us=958288 log = DISABLED
Sat Nov 17 09:18:02 2012 us=958305 suppress_timestamps = DISABLED
Sat Nov 17 09:18:02 2012 us=958322 nice = 0
Sat Nov 17 09:18:02 2012 us=958339 verbosity = 5
Sat Nov 17 09:18:02 2012 us=958356 mute = 0
Sat Nov 17 09:18:02 2012 us=958372 gremlin = 0
Sat Nov 17 09:18:02 2012 us=958389 status_file = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=958415 status_file_version = 1
Sat Nov 17 09:18:02 2012 us=958434 status_file_update_freq = 60
Sat Nov 17 09:18:02 2012 us=958451 occ = ENABLED
Sat Nov 17 09:18:02 2012 us=958468 rcvbuf = 65536
Sat Nov 17 09:18:02 2012 us=958485 sndbuf = 65536
Sat Nov 17 09:18:02 2012 us=958503 sockflags = 0
Sat Nov 17 09:18:02 2012 us=958519 fast_io = DISABLED
Sat Nov 17 09:18:02 2012 us=958536 lzo = 7
Sat Nov 17 09:18:02 2012 us=958553 route_script = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=958570 route_default_gateway = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=958588 route_default_metric = 0
Sat Nov 17 09:18:02 2012 us=958605 route_noexec = DISABLED
Sat Nov 17 09:18:02 2012 us=958622 route_delay = 0
Sat Nov 17 09:18:02 2012 us=958639 route_delay_window = 30
Sat Nov 17 09:18:02 2012 us=958656 route_delay_defined = DISABLED
Sat Nov 17 09:18:02 2012 us=958673 route_nopull = DISABLED
Sat Nov 17 09:18:02 2012 us=958691 route_gateway_via_dhcp = DISABLED
Sat Nov 17 09:18:02 2012 us=958708 max_routes = 100
Sat Nov 17 09:18:02 2012 us=958726 allow_pull_fqdn = DISABLED
Sat Nov 17 09:18:02 2012 us=958744 management_addr = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=958762 management_port = 0
Sat Nov 17 09:18:02 2012 us=958779 management_user_pass = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=958797 management_log_history_cache = 250
Sat Nov 17 09:18:02 2012 us=958814 management_echo_buffer_size = 100
Sat Nov 17 09:18:02 2012 us=958832 management_write_peer_info_file = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=958849 management_client_user = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=958867 management_client_group = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=958884 management_flags = 0
Sat Nov 17 09:18:02 2012 us=958902 shared_secret_file = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=958920 key_direction = 0
Sat Nov 17 09:18:02 2012 us=958937 ciphername_defined = ENABLED
Sat Nov 17 09:18:02 2012 us=958955 ciphername = 'AES-256-CBC'
Sat Nov 17 09:18:02 2012 us=958973 authname_defined = ENABLED
Sat Nov 17 09:18:02 2012 us=958991 authname = 'SHA1'
Sat Nov 17 09:18:02 2012 us=959008 prng_hash = 'SHA1'
Sat Nov 17 09:18:02 2012 us=959026 prng_nonce_secret_len = 16
Sat Nov 17 09:18:02 2012 us=959043 keysize = 0
Sat Nov 17 09:18:02 2012 us=959060 engine = DISABLED
Sat Nov 17 09:18:02 2012 us=959078 replay = ENABLED
Sat Nov 17 09:18:02 2012 us=959095 mute_replay_warnings = DISABLED
Sat Nov 17 09:18:02 2012 us=959113 replay_window = 64
Sat Nov 17 09:18:02 2012 us=959131 replay_time = 15
Sat Nov 17 09:18:02 2012 us=959148 packet_id_file = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=959165 use_iv = ENABLED
Sat Nov 17 09:18:02 2012 us=959183 test_crypto = DISABLED
Sat Nov 17 09:18:02 2012 us=959200 tls_server = DISABLED
Sat Nov 17 09:18:02 2012 us=959217 tls_client = ENABLED
Sat Nov 17 09:18:02 2012 us=959235 key_method = 2
Sat Nov 17 09:18:02 2012 us=959252 ca_file = 'vpnbook.crt'
Sat Nov 17 09:18:02 2012 us=959269 ca_path = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=959286 dh_file = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=959303 cert_file = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=959376 priv_key_file = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=959394 pkcs12_file = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=959411 cipher_list = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=959429 tls_verify = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=959446 tls_remote = 'x509name'
Sat Nov 17 09:18:02 2012 us=959463 crl_file = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=959480 ns_cert_type = 0
Sat Nov 17 09:18:02 2012 us=959498 remote_cert_ku = 0
Sat Nov 17 09:18:02 2012 us=959515 remote_cert_ku = 0
Sat Nov 17 09:18:02 2012 us=959533 remote_cert_ku = 0
Sat Nov 17 09:18:02 2012 us=959550 remote_cert_ku = 0
Sat Nov 17 09:18:02 2012 us=959567 remote_cert_ku = 0
Sat Nov 17 09:18:02 2012 us=959585 remote_cert_ku = 0
Sat Nov 17 09:18:02 2012 us=959602 remote_cert_ku = 0
Sat Nov 17 09:18:02 2012 us=959619 remote_cert_ku = 0
Sat Nov 17 09:18:02 2012 us=959637 remote_cert_ku = 0
Sat Nov 17 09:18:02 2012 us=959654 remote_cert_ku = 0
Sat Nov 17 09:18:02 2012 us=961574 remote_cert_ku[i] = 0
Sat Nov 17 09:18:02 2012 us=961596 remote_cert_ku[i] = 0
Sat Nov 17 09:18:02 2012 us=961615 remote_cert_ku[i] = 0
Sat Nov 17 09:18:02 2012 us=961632 remote_cert_ku[i] = 0
Sat Nov 17 09:18:02 2012 us=961649 remote_cert_ku[i] = 0
Sat Nov 17 09:18:02 2012 us=961667 remote_cert_ku[i] = 0
Sat Nov 17 09:18:02 2012 us=961684 remote_cert_eku = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=961701 tls_timeout = 2
Sat Nov 17 09:18:02 2012 us=961718 renegotiate_bytes = 0
Sat Nov 17 09:18:02 2012 us=961735 renegotiate_packets = 0
Sat Nov 17 09:18:02 2012 us=961752 renegotiate_seconds = 3600
Sat Nov 17 09:18:02 2012 us=961769 handshake_window = 60
Sat Nov 17 09:18:02 2012 us=961787 transition_window = 3600
Sat Nov 17 09:18:02 2012 us=961805 single_session = DISABLED
Sat Nov 17 09:18:02 2012 us=961822 tls_exit = DISABLED
Sat Nov 17 09:18:02 2012 us=961839 tls_auth_file = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=961857 pkcs11_protected_authentication = DISABLED
Sat Nov 17 09:18:02 2012 us=961875 pkcs11_protected_authentication = DISABLED
Sat Nov 17 09:18:02 2012 us=961892 pkcs11_protected_authentication = DISABLED
Sat Nov 17 09:18:02 2012 us=961910 pkcs11_protected_authentication = DISABLED
Sat Nov 17 09:18:02 2012 us=961927 pkcs11_protected_authentication = DISABLED
Sat Nov 17 09:18:02 2012 us=961944 pkcs11_protected_authentication = DISABLED
Sat Nov 17 09:18:02 2012 us=961962 pkcs11_protected_authentication = DISABLED
Sat Nov 17 09:18:02 2012 us=961979 pkcs11_protected_authentication = DISABLED
Sat Nov 17 09:18:02 2012 us=961996 pkcs11_protected_authentication = DISABLED
Sat Nov 17 09:18:02 2012 us=962013 pkcs11_protected_authentication = DISABLED
Sat Nov 17 09:18:02 2012 us=962031 pkcs11_protected_authentication = DISABLED
Sat Nov 17 09:18:02 2012 us=962049 pkcs11_protected_authentication = DISABLED
Sat Nov 17 09:18:02 2012 us=962066 pkcs11_protected_authentication = DISABLED
Sat Nov 17 09:18:02 2012 us=962084 pkcs11_protected_authentication = DISABLED
Sat Nov 17 09:18:02 2012 us=962101 pkcs11_protected_authentication = DISABLED
Sat Nov 17 09:18:02 2012 us=962119 pkcs11_protected_authentication = DISABLED
Sat Nov 17 09:18:02 2012 us=962137 pkcs11_private_mode = 00000000
Sat Nov 17 09:18:02 2012 us=962155 pkcs11_private_mode = 00000000
Sat Nov 17 09:18:02 2012 us=962173 pkcs11_private_mode = 00000000
Sat Nov 17 09:18:02 2012 us=962190 pkcs11_private_mode = 00000000
Sat Nov 17 09:18:02 2012 us=962207 pkcs11_private_mode = 00000000
Sat Nov 17 09:18:02 2012 us=962225 pkcs11_private_mode = 00000000
Sat Nov 17 09:18:02 2012 us=962242 pkcs11_private_mode = 00000000
Sat Nov 17 09:18:02 2012 us=962259 pkcs11_private_mode = 00000000
Sat Nov 17 09:18:02 2012 us=962277 pkcs11_private_mode = 00000000
Sat Nov 17 09:18:02 2012 us=962294 pkcs11_private_mode = 00000000
Sat Nov 17 09:18:02 2012 us=962312 pkcs11_private_mode = 00000000
Sat Nov 17 09:18:02 2012 us=962330 pkcs11_private_mode = 00000000
Sat Nov 17 09:18:02 2012 us=962348 pkcs11_private_mode = 00000000
Sat Nov 17 09:18:02 2012 us=962365 pkcs11_private_mode = 00000000
Sat Nov 17 09:18:02 2012 us=962382 pkcs11_private_mode = 00000000
Sat Nov 17 09:18:02 2012 us=962400 pkcs11_private_mode = 00000000
Sat Nov 17 09:18:02 2012 us=962417 pkcs11_cert_private = DISABLED
Sat Nov 17 09:18:02 2012 us=962434 pkcs11_cert_private = DISABLED
Sat Nov 17 09:18:02 2012 us=962451 pkcs11_cert_private = DISABLED
Sat Nov 17 09:18:02 2012 us=962469 pkcs11_cert_private = DISABLED
Sat Nov 17 09:18:02 2012 us=962487 pkcs11_cert_private = DISABLED
Sat Nov 17 09:18:02 2012 us=962504 pkcs11_cert_private = DISABLED
Sat Nov 17 09:18:02 2012 us=962521 pkcs11_cert_private = DISABLED
Sat Nov 17 09:18:02 2012 us=962537 pkcs11_cert_private = DISABLED
Sat Nov 17 09:18:02 2012 us=962555 pkcs11_cert_private = DISABLED
Sat Nov 17 09:18:02 2012 us=962573 pkcs11_cert_private = DISABLED
Sat Nov 17 09:18:02 2012 us=962590 pkcs11_cert_private = DISABLED
Sat Nov 17 09:18:02 2012 us=962607 pkcs11_cert_private = DISABLED
Sat Nov 17 09:18:02 2012 us=962624 pkcs11_cert_private = DISABLED
Sat Nov 17 09:18:02 2012 us=962641 pkcs11_cert_private = DISABLED
Sat Nov 17 09:18:02 2012 us=962658 pkcs11_cert_private = DISABLED
Sat Nov 17 09:18:02 2012 us=962675 pkcs11_cert_private = DISABLED
Sat Nov 17 09:18:02 2012 us=962692 pkcs11_pin_cache_period = -1
Sat Nov 17 09:18:02 2012 us=962709 pkcs11_id = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=962727 pkcs11_id_management = DISABLED
Sat Nov 17 09:18:02 2012 us=962769 server_network = 0.0.0.0
Sat Nov 17 09:18:02 2012 us=962788 server_netmask = 0.0.0.0
Sat Nov 17 09:18:02 2012 us=962807 server_bridge_ip = 0.0.0.0
Sat Nov 17 09:18:02 2012 us=962827 server_bridge_netmask = 0.0.0.0
Sat Nov 17 09:18:02 2012 us=962846 server_bridge_pool_start = 0.0.0.0
Sat Nov 17 09:18:02 2012 us=962866 server_bridge_pool_end = 0.0.0.0
Sat Nov 17 09:18:02 2012 us=962885 ifconfig_pool_defined = DISABLED
Sat Nov 17 09:18:02 2012 us=962905 ifconfig_pool_start = 0.0.0.0
Sat Nov 17 09:18:02 2012 us=962925 ifconfig_pool_end = 0.0.0.0
Sat Nov 17 09:18:02 2012 us=962944 ifconfig_pool_netmask = 0.0.0.0
Sat Nov 17 09:18:02 2012 us=962962 ifconfig_pool_persist_filename = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=962980 ifconfig_pool_persist_refresh_freq = 600
Sat Nov 17 09:18:02 2012 us=962998 n_bcast_buf = 256
Sat Nov 17 09:18:02 2012 us=963015 tcp_queue_limit = 64
Sat Nov 17 09:18:02 2012 us=963032 real_hash_size = 256
Sat Nov 17 09:18:02 2012 us=963049 virtual_hash_size = 256
Sat Nov 17 09:18:02 2012 us=963066 client_connect_script = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=963083 learn_address_script = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=963101 client_disconnect_script = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=963118 client_config_dir = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=963136 ccd_exclusive = DISABLED
Sat Nov 17 09:18:02 2012 us=963153 tmp_dir = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=963170 push_ifconfig_defined = DISABLED
Sat Nov 17 09:18:02 2012 us=963190 push_ifconfig_local = 0.0.0.0
Sat Nov 17 09:18:02 2012 us=963208 push_ifconfig_remote_netmask = 0.0.0.0
Sat Nov 17 09:18:02 2012 us=963226 enable_c2c = DISABLED
Sat Nov 17 09:18:02 2012 us=963243 duplicate_cn = DISABLED
Sat Nov 17 09:18:02 2012 us=963260 cf_max = 0
Sat Nov 17 09:18:02 2012 us=963277 cf_per = 0
Sat Nov 17 09:18:02 2012 us=963294 max_clients = 1024
Sat Nov 17 09:18:02 2012 us=963312 max_routes_per_client = 256
Sat Nov 17 09:18:02 2012 us=963329 auth_user_pass_verify_script = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=963347 auth_user_pass_verify_script_via_file = DISABLED
Sat Nov 17 09:18:02 2012 us=967741 ssl_flags = 0
Sat Nov 17 09:18:02 2012 us=967777 port_share_host = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=967796 port_share_port = 0
Sat Nov 17 09:18:02 2012 us=967814 client = ENABLED
Sat Nov 17 09:18:02 2012 us=967832 pull = ENABLED
Sat Nov 17 09:18:02 2012 us=967850 auth_user_pass_file = 'stdin'
Sat Nov 17 09:18:02 2012 us=967877 OpenVPN 2.1.0 i486-pc-linux-gnu [SSL] [LZO2] [EPOLL] [PKCS11] [MH] [PF_INET6] [eurephia] built on Jul 20 2010
Enter Auth Username:freeopenvpn
Enter Auth Password:
Sat Nov 17 09:18:39 2012 us=729676 WARNING: Make sure you understand the semantics of --tls-remote before using it (see the man page).
Sat Nov 17 09:18:39 2012 us=729721 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Sat Nov 17 09:18:39 2012 us=760222 LZO compression initialized
Sat Nov 17 09:18:39 2012 us=760398 Control Channel MTU parms [ L:1590 D:138 EF:38 EB:0 ET:0 EL:0 ]
Sat Nov 17 09:18:39 2012 us=760518 Data Channel MTU parms [ L:1590 D:1450 EF:58 EB:135 ET:32 EL:0 AF:3/1 ]
Sat Nov 17 09:18:39 2012 us=760570 Local Options String: 'V4,dev-type tun,link-mtu 1590,tun-mtu 1532,proto UDPv4,comp-lzo,cipher AES-256-CBC,auth SHA1,keysize 256,key-method 2,tls-client'
Sat Nov 17 09:18:39 2012 us=760589 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1590,tun-mtu 1532,proto UDPv4,comp-lzo,cipher AES-256-CBC,auth SHA1,keysize 256,key-method 2,tls-server'
Sat Nov 17 09:18:39 2012 us=760631 Local Options hash (VER=V4): 'fd83fad0'
Sat Nov 17 09:18:39 2012 us=760658 Expected Remote Options hash (VER=V4): '00a0a914'
Sat Nov 17 09:18:39 2012 us=760699 Socket Buffers: R=[112640->131072] S=[112640->131072]
Sat Nov 17 09:18:39 2012 us=760723 UDPv4 link local: [undef]
Sat Nov 17 09:18:39 2012 us=760744 UDPv4 link remote: [AF_INET]195.60.76.223:53
WWWWWWWWWWWWWWWWWWWWWWWWWWWWWSat Nov 17 09:19:39 2012 us=802806 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Sat Nov 17 09:19:39 2012 us=802866 TLS Error: TLS handshake failed
Sat Nov 17 09:19:39 2012 us=803016 TCP/UDP: Closing socket
Sat Nov 17 09:19:39 2012 us=803075 SIGUSR1[soft,tls-error] received, process restarting
Sat Nov 17 09:19:39 2012 us=803104 Restart pause, 2 second(s)
Sat Nov 17 09:19:41 2012 us=803204 WARNING: Make sure you understand the semantics of --tls-remote before using it (see the man page).
Sat Nov 17 09:19:41 2012 us=803262 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Sat Nov 17 09:19:41 2012 us=803295 Re-using SSL/TLS context
Sat Nov 17 09:19:41 2012 us=803334 LZO compression initialized
Sat Nov 17 09:19:41 2012 us=803462 Control Channel MTU parms [ L:1590 D:138 EF:38 EB:0 ET:0 EL:0 ]
Sat Nov 17 09:19:41 2012 us=803552 Data Channel MTU parms [ L:1590 D:1450 EF:58 EB:135 ET:32 EL:0 AF:3/1 ]
Sat Nov 17 09:19:41 2012 us=803594 Local Options String: 'V4,dev-type tun,link-mtu 1590,tun-mtu 1532,proto UDPv4,comp-lzo,cipher AES-256-CBC,auth SHA1,keysize 256,key-method 2,tls-client'
Sat Nov 17 09:19:41 2012 us=803613 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1590,tun-mtu 1532,proto UDPv4,comp-lzo,cipher AES-256-CBC,auth SHA1,keysize 256,key-method 2,tls-server'
Sat Nov 17 09:19:41 2012 us=803645 Local Options hash (VER=V4): 'fd83fad0'
Sat Nov 17 09:19:41 2012 us=803672 Expected Remote Options hash (VER=V4): '00a0a914'
Sat Nov 17 09:19:41 2012 us=803703 Socket Buffers: R=[112640->131072] S=[112640->131072]
Sat Nov 17 09:19:41 2012 us=803725 UDPv4 link local: [undef]
Sat Nov 17 09:19:41 2012 us=803746 UDPv4 link remote: [AF_INET]195.60.76.223:53
Thank you in advance,
Side
What follows is, I believe my log file. I hope this add'l info. will be of value. I'm really goin' bat-shit with frustration over this seemingly unending conundrum.
I have also included the error message just in case an infinitesimal entry has changed and I didn't notice it, among the rest of the output:
Sat Nov 17 09:18:02 2012 us=956670 Current Parameter Settings:
Sat Nov 17 09:18:02 2012 us=956789 config = '/home/de/freevpn1'
Sat Nov 17 09:18:02 2012 us=956813 mode = 0
Sat Nov 17 09:18:02 2012 us=956831 persist_config = DISABLED
Sat Nov 17 09:18:02 2012 us=956849 persist_mode = 1
Sat Nov 17 09:18:02 2012 us=956866 show_ciphers = DISABLED
Sat Nov 17 09:18:02 2012 us=956883 show_digests = DISABLED
Sat Nov 17 09:18:02 2012 us=956900 show_engines = DISABLED
Sat Nov 17 09:18:02 2012 us=956918 genkey = DISABLED
Sat Nov 17 09:18:02 2012 us=956935 key_pass_file = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=956952 show_tls_ciphers = DISABLED
Sat Nov 17 09:18:02 2012 us=956969 Connection profiles [default]:
Sat Nov 17 09:18:02 2012 us=956986 proto = udp
Sat Nov 17 09:18:02 2012 us=957004 local = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=957022 local_port = 0
Sat Nov 17 09:18:02 2012 us=957039 remote = '195.60.76.223'
Sat Nov 17 09:18:02 2012 us=957057 remote_port = 53
Sat Nov 17 09:18:02 2012 us=957074 remote_float = DISABLED
Sat Nov 17 09:18:02 2012 us=957091 bind_defined = DISABLED
Sat Nov 17 09:18:02 2012 us=957108 bind_local = DISABLED
Sat Nov 17 09:18:02 2012 us=957125 connect_retry_seconds = 5
Sat Nov 17 09:18:02 2012 us=957142 connect_timeout = 10
Sat Nov 17 09:18:02 2012 us=957159 connect_retry_max = 0
Sat Nov 17 09:18:02 2012 us=957176 socks_proxy_server = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=957194 socks_proxy_port = 0
Sat Nov 17 09:18:02 2012 us=957211 socks_proxy_retry = DISABLED
Sat Nov 17 09:18:02 2012 us=957231 Connection profiles END
Sat Nov 17 09:18:02 2012 us=957248 remote_random = DISABLED
Sat Nov 17 09:18:02 2012 us=957265 ipchange = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=957282 dev = 'tun0'
Sat Nov 17 09:18:02 2012 us=957299 dev_type = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=957316 dev_node = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=957334 lladdr = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=957351 topology = 1
Sat Nov 17 09:18:02 2012 us=957368 tun_ipv6 = DISABLED
Sat Nov 17 09:18:02 2012 us=957385 ifconfig_local = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=957402 ifconfig_remote_netmask = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=957419 ifconfig_noexec = DISABLED
Sat Nov 17 09:18:02 2012 us=957599 ifconfig_nowarn = DISABLED
Sat Nov 17 09:18:02 2012 us=957622 shaper = 0
Sat Nov 17 09:18:02 2012 us=957639 tun_mtu = 1500
Sat Nov 17 09:18:02 2012 us=957656 tun_mtu_defined = ENABLED
Sat Nov 17 09:18:02 2012 us=957673 link_mtu = 1500
Sat Nov 17 09:18:02 2012 us=957690 link_mtu_defined = DISABLED
Sat Nov 17 09:18:02 2012 us=957707 tun_mtu_extra = 32
Sat Nov 17 09:18:02 2012 us=957724 tun_mtu_extra_defined = ENABLED
Sat Nov 17 09:18:02 2012 us=957741 fragment = 0
Sat Nov 17 09:18:02 2012 us=957759 mtu_discover_type = -1
Sat Nov 17 09:18:02 2012 us=957776 mtu_test = 0
Sat Nov 17 09:18:02 2012 us=957792 mlock = DISABLED
Sat Nov 17 09:18:02 2012 us=957809 keepalive_ping = 0
Sat Nov 17 09:18:02 2012 us=957826 keepalive_timeout = 0
Sat Nov 17 09:18:02 2012 us=957843 inactivity_timeout = 0
Sat Nov 17 09:18:02 2012 us=957860 ping_send_timeout = 0
Sat Nov 17 09:18:02 2012 us=957877 ping_rec_timeout = 0
Sat Nov 17 09:18:02 2012 us=957894 ping_rec_timeout_action = 0
Sat Nov 17 09:18:02 2012 us=957911 ping_timer_remote = DISABLED
Sat Nov 17 09:18:02 2012 us=957928 remap_sigusr1 = 0
Sat Nov 17 09:18:02 2012 us=957945 explicit_exit_notification = 0
Sat Nov 17 09:18:02 2012 us=957963 persist_tun = ENABLED
Sat Nov 17 09:18:02 2012 us=957980 persist_local_ip = DISABLED
Sat Nov 17 09:18:02 2012 us=957997 persist_remote_ip = DISABLED
Sat Nov 17 09:18:02 2012 us=958014 persist_key = ENABLED
Sat Nov 17 09:18:02 2012 us=958031 mssfix = 1450
Sat Nov 17 09:18:02 2012 us=958048 passtos = DISABLED
Sat Nov 17 09:18:02 2012 us=958066 resolve_retry_seconds = 1000000000
Sat Nov 17 09:18:02 2012 us=958083 username = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=958100 groupname = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=958117 chroot_dir = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=958134 cd_dir = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=958152 writepid = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=958169 up_script = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=958186 down_script = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=958203 down_pre = DISABLED
Sat Nov 17 09:18:02 2012 us=958221 up_restart = DISABLED
Sat Nov 17 09:18:02 2012 us=958237 up_delay = DISABLED
Sat Nov 17 09:18:02 2012 us=958254 daemon = DISABLED
Sat Nov 17 09:18:02 2012 us=958271 inetd = 0
Sat Nov 17 09:18:02 2012 us=958288 log = DISABLED
Sat Nov 17 09:18:02 2012 us=958305 suppress_timestamps = DISABLED
Sat Nov 17 09:18:02 2012 us=958322 nice = 0
Sat Nov 17 09:18:02 2012 us=958339 verbosity = 5
Sat Nov 17 09:18:02 2012 us=958356 mute = 0
Sat Nov 17 09:18:02 2012 us=958372 gremlin = 0
Sat Nov 17 09:18:02 2012 us=958389 status_file = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=958415 status_file_version = 1
Sat Nov 17 09:18:02 2012 us=958434 status_file_update_freq = 60
Sat Nov 17 09:18:02 2012 us=958451 occ = ENABLED
Sat Nov 17 09:18:02 2012 us=958468 rcvbuf = 65536
Sat Nov 17 09:18:02 2012 us=958485 sndbuf = 65536
Sat Nov 17 09:18:02 2012 us=958503 sockflags = 0
Sat Nov 17 09:18:02 2012 us=958519 fast_io = DISABLED
Sat Nov 17 09:18:02 2012 us=958536 lzo = 7
Sat Nov 17 09:18:02 2012 us=958553 route_script = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=958570 route_default_gateway = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=958588 route_default_metric = 0
Sat Nov 17 09:18:02 2012 us=958605 route_noexec = DISABLED
Sat Nov 17 09:18:02 2012 us=958622 route_delay = 0
Sat Nov 17 09:18:02 2012 us=958639 route_delay_window = 30
Sat Nov 17 09:18:02 2012 us=958656 route_delay_defined = DISABLED
Sat Nov 17 09:18:02 2012 us=958673 route_nopull = DISABLED
Sat Nov 17 09:18:02 2012 us=958691 route_gateway_via_dhcp = DISABLED
Sat Nov 17 09:18:02 2012 us=958708 max_routes = 100
Sat Nov 17 09:18:02 2012 us=958726 allow_pull_fqdn = DISABLED
Sat Nov 17 09:18:02 2012 us=958744 management_addr = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=958762 management_port = 0
Sat Nov 17 09:18:02 2012 us=958779 management_user_pass = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=958797 management_log_history_cache = 250
Sat Nov 17 09:18:02 2012 us=958814 management_echo_buffer_size = 100
Sat Nov 17 09:18:02 2012 us=958832 management_write_peer_info_file = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=958849 management_client_user = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=958867 management_client_group = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=958884 management_flags = 0
Sat Nov 17 09:18:02 2012 us=958902 shared_secret_file = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=958920 key_direction = 0
Sat Nov 17 09:18:02 2012 us=958937 ciphername_defined = ENABLED
Sat Nov 17 09:18:02 2012 us=958955 ciphername = 'AES-256-CBC'
Sat Nov 17 09:18:02 2012 us=958973 authname_defined = ENABLED
Sat Nov 17 09:18:02 2012 us=958991 authname = 'SHA1'
Sat Nov 17 09:18:02 2012 us=959008 prng_hash = 'SHA1'
Sat Nov 17 09:18:02 2012 us=959026 prng_nonce_secret_len = 16
Sat Nov 17 09:18:02 2012 us=959043 keysize = 0
Sat Nov 17 09:18:02 2012 us=959060 engine = DISABLED
Sat Nov 17 09:18:02 2012 us=959078 replay = ENABLED
Sat Nov 17 09:18:02 2012 us=959095 mute_replay_warnings = DISABLED
Sat Nov 17 09:18:02 2012 us=959113 replay_window = 64
Sat Nov 17 09:18:02 2012 us=959131 replay_time = 15
Sat Nov 17 09:18:02 2012 us=959148 packet_id_file = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=959165 use_iv = ENABLED
Sat Nov 17 09:18:02 2012 us=959183 test_crypto = DISABLED
Sat Nov 17 09:18:02 2012 us=959200 tls_server = DISABLED
Sat Nov 17 09:18:02 2012 us=959217 tls_client = ENABLED
Sat Nov 17 09:18:02 2012 us=959235 key_method = 2
Sat Nov 17 09:18:02 2012 us=959252 ca_file = 'vpnbook.crt'
Sat Nov 17 09:18:02 2012 us=959269 ca_path = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=959286 dh_file = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=959303 cert_file = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=959376 priv_key_file = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=959394 pkcs12_file = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=959411 cipher_list = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=959429 tls_verify = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=959446 tls_remote = 'x509name'
Sat Nov 17 09:18:02 2012 us=959463 crl_file = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=959480 ns_cert_type = 0
Sat Nov 17 09:18:02 2012 us=959498 remote_cert_ku = 0
Sat Nov 17 09:18:02 2012 us=959515 remote_cert_ku = 0
Sat Nov 17 09:18:02 2012 us=959533 remote_cert_ku = 0
Sat Nov 17 09:18:02 2012 us=959550 remote_cert_ku = 0
Sat Nov 17 09:18:02 2012 us=959567 remote_cert_ku = 0
Sat Nov 17 09:18:02 2012 us=959585 remote_cert_ku = 0
Sat Nov 17 09:18:02 2012 us=959602 remote_cert_ku = 0
Sat Nov 17 09:18:02 2012 us=959619 remote_cert_ku = 0
Sat Nov 17 09:18:02 2012 us=959637 remote_cert_ku = 0
Sat Nov 17 09:18:02 2012 us=959654 remote_cert_ku = 0
Sat Nov 17 09:18:02 2012 us=961574 remote_cert_ku[i] = 0
Sat Nov 17 09:18:02 2012 us=961596 remote_cert_ku[i] = 0
Sat Nov 17 09:18:02 2012 us=961615 remote_cert_ku[i] = 0
Sat Nov 17 09:18:02 2012 us=961632 remote_cert_ku[i] = 0
Sat Nov 17 09:18:02 2012 us=961649 remote_cert_ku[i] = 0
Sat Nov 17 09:18:02 2012 us=961667 remote_cert_ku[i] = 0
Sat Nov 17 09:18:02 2012 us=961684 remote_cert_eku = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=961701 tls_timeout = 2
Sat Nov 17 09:18:02 2012 us=961718 renegotiate_bytes = 0
Sat Nov 17 09:18:02 2012 us=961735 renegotiate_packets = 0
Sat Nov 17 09:18:02 2012 us=961752 renegotiate_seconds = 3600
Sat Nov 17 09:18:02 2012 us=961769 handshake_window = 60
Sat Nov 17 09:18:02 2012 us=961787 transition_window = 3600
Sat Nov 17 09:18:02 2012 us=961805 single_session = DISABLED
Sat Nov 17 09:18:02 2012 us=961822 tls_exit = DISABLED
Sat Nov 17 09:18:02 2012 us=961839 tls_auth_file = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=961857 pkcs11_protected_authentication = DISABLED
Sat Nov 17 09:18:02 2012 us=961875 pkcs11_protected_authentication = DISABLED
Sat Nov 17 09:18:02 2012 us=961892 pkcs11_protected_authentication = DISABLED
Sat Nov 17 09:18:02 2012 us=961910 pkcs11_protected_authentication = DISABLED
Sat Nov 17 09:18:02 2012 us=961927 pkcs11_protected_authentication = DISABLED
Sat Nov 17 09:18:02 2012 us=961944 pkcs11_protected_authentication = DISABLED
Sat Nov 17 09:18:02 2012 us=961962 pkcs11_protected_authentication = DISABLED
Sat Nov 17 09:18:02 2012 us=961979 pkcs11_protected_authentication = DISABLED
Sat Nov 17 09:18:02 2012 us=961996 pkcs11_protected_authentication = DISABLED
Sat Nov 17 09:18:02 2012 us=962013 pkcs11_protected_authentication = DISABLED
Sat Nov 17 09:18:02 2012 us=962031 pkcs11_protected_authentication = DISABLED
Sat Nov 17 09:18:02 2012 us=962049 pkcs11_protected_authentication = DISABLED
Sat Nov 17 09:18:02 2012 us=962066 pkcs11_protected_authentication = DISABLED
Sat Nov 17 09:18:02 2012 us=962084 pkcs11_protected_authentication = DISABLED
Sat Nov 17 09:18:02 2012 us=962101 pkcs11_protected_authentication = DISABLED
Sat Nov 17 09:18:02 2012 us=962119 pkcs11_protected_authentication = DISABLED
Sat Nov 17 09:18:02 2012 us=962137 pkcs11_private_mode = 00000000
Sat Nov 17 09:18:02 2012 us=962155 pkcs11_private_mode = 00000000
Sat Nov 17 09:18:02 2012 us=962173 pkcs11_private_mode = 00000000
Sat Nov 17 09:18:02 2012 us=962190 pkcs11_private_mode = 00000000
Sat Nov 17 09:18:02 2012 us=962207 pkcs11_private_mode = 00000000
Sat Nov 17 09:18:02 2012 us=962225 pkcs11_private_mode = 00000000
Sat Nov 17 09:18:02 2012 us=962242 pkcs11_private_mode = 00000000
Sat Nov 17 09:18:02 2012 us=962259 pkcs11_private_mode = 00000000
Sat Nov 17 09:18:02 2012 us=962277 pkcs11_private_mode = 00000000
Sat Nov 17 09:18:02 2012 us=962294 pkcs11_private_mode = 00000000
Sat Nov 17 09:18:02 2012 us=962312 pkcs11_private_mode = 00000000
Sat Nov 17 09:18:02 2012 us=962330 pkcs11_private_mode = 00000000
Sat Nov 17 09:18:02 2012 us=962348 pkcs11_private_mode = 00000000
Sat Nov 17 09:18:02 2012 us=962365 pkcs11_private_mode = 00000000
Sat Nov 17 09:18:02 2012 us=962382 pkcs11_private_mode = 00000000
Sat Nov 17 09:18:02 2012 us=962400 pkcs11_private_mode = 00000000
Sat Nov 17 09:18:02 2012 us=962417 pkcs11_cert_private = DISABLED
Sat Nov 17 09:18:02 2012 us=962434 pkcs11_cert_private = DISABLED
Sat Nov 17 09:18:02 2012 us=962451 pkcs11_cert_private = DISABLED
Sat Nov 17 09:18:02 2012 us=962469 pkcs11_cert_private = DISABLED
Sat Nov 17 09:18:02 2012 us=962487 pkcs11_cert_private = DISABLED
Sat Nov 17 09:18:02 2012 us=962504 pkcs11_cert_private = DISABLED
Sat Nov 17 09:18:02 2012 us=962521 pkcs11_cert_private = DISABLED
Sat Nov 17 09:18:02 2012 us=962537 pkcs11_cert_private = DISABLED
Sat Nov 17 09:18:02 2012 us=962555 pkcs11_cert_private = DISABLED
Sat Nov 17 09:18:02 2012 us=962573 pkcs11_cert_private = DISABLED
Sat Nov 17 09:18:02 2012 us=962590 pkcs11_cert_private = DISABLED
Sat Nov 17 09:18:02 2012 us=962607 pkcs11_cert_private = DISABLED
Sat Nov 17 09:18:02 2012 us=962624 pkcs11_cert_private = DISABLED
Sat Nov 17 09:18:02 2012 us=962641 pkcs11_cert_private = DISABLED
Sat Nov 17 09:18:02 2012 us=962658 pkcs11_cert_private = DISABLED
Sat Nov 17 09:18:02 2012 us=962675 pkcs11_cert_private = DISABLED
Sat Nov 17 09:18:02 2012 us=962692 pkcs11_pin_cache_period = -1
Sat Nov 17 09:18:02 2012 us=962709 pkcs11_id = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=962727 pkcs11_id_management = DISABLED
Sat Nov 17 09:18:02 2012 us=962769 server_network = 0.0.0.0
Sat Nov 17 09:18:02 2012 us=962788 server_netmask = 0.0.0.0
Sat Nov 17 09:18:02 2012 us=962807 server_bridge_ip = 0.0.0.0
Sat Nov 17 09:18:02 2012 us=962827 server_bridge_netmask = 0.0.0.0
Sat Nov 17 09:18:02 2012 us=962846 server_bridge_pool_start = 0.0.0.0
Sat Nov 17 09:18:02 2012 us=962866 server_bridge_pool_end = 0.0.0.0
Sat Nov 17 09:18:02 2012 us=962885 ifconfig_pool_defined = DISABLED
Sat Nov 17 09:18:02 2012 us=962905 ifconfig_pool_start = 0.0.0.0
Sat Nov 17 09:18:02 2012 us=962925 ifconfig_pool_end = 0.0.0.0
Sat Nov 17 09:18:02 2012 us=962944 ifconfig_pool_netmask = 0.0.0.0
Sat Nov 17 09:18:02 2012 us=962962 ifconfig_pool_persist_filename = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=962980 ifconfig_pool_persist_refresh_freq = 600
Sat Nov 17 09:18:02 2012 us=962998 n_bcast_buf = 256
Sat Nov 17 09:18:02 2012 us=963015 tcp_queue_limit = 64
Sat Nov 17 09:18:02 2012 us=963032 real_hash_size = 256
Sat Nov 17 09:18:02 2012 us=963049 virtual_hash_size = 256
Sat Nov 17 09:18:02 2012 us=963066 client_connect_script = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=963083 learn_address_script = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=963101 client_disconnect_script = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=963118 client_config_dir = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=963136 ccd_exclusive = DISABLED
Sat Nov 17 09:18:02 2012 us=963153 tmp_dir = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=963170 push_ifconfig_defined = DISABLED
Sat Nov 17 09:18:02 2012 us=963190 push_ifconfig_local = 0.0.0.0
Sat Nov 17 09:18:02 2012 us=963208 push_ifconfig_remote_netmask = 0.0.0.0
Sat Nov 17 09:18:02 2012 us=963226 enable_c2c = DISABLED
Sat Nov 17 09:18:02 2012 us=963243 duplicate_cn = DISABLED
Sat Nov 17 09:18:02 2012 us=963260 cf_max = 0
Sat Nov 17 09:18:02 2012 us=963277 cf_per = 0
Sat Nov 17 09:18:02 2012 us=963294 max_clients = 1024
Sat Nov 17 09:18:02 2012 us=963312 max_routes_per_client = 256
Sat Nov 17 09:18:02 2012 us=963329 auth_user_pass_verify_script = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=963347 auth_user_pass_verify_script_via_file = DISABLED
Sat Nov 17 09:18:02 2012 us=967741 ssl_flags = 0
Sat Nov 17 09:18:02 2012 us=967777 port_share_host = '[UNDEF]'
Sat Nov 17 09:18:02 2012 us=967796 port_share_port = 0
Sat Nov 17 09:18:02 2012 us=967814 client = ENABLED
Sat Nov 17 09:18:02 2012 us=967832 pull = ENABLED
Sat Nov 17 09:18:02 2012 us=967850 auth_user_pass_file = 'stdin'
Sat Nov 17 09:18:02 2012 us=967877 OpenVPN 2.1.0 i486-pc-linux-gnu [SSL] [LZO2] [EPOLL] [PKCS11] [MH] [PF_INET6] [eurephia] built on Jul 20 2010
Enter Auth Username:freeopenvpn
Enter Auth Password:
Sat Nov 17 09:18:39 2012 us=729676 WARNING: Make sure you understand the semantics of --tls-remote before using it (see the man page).
Sat Nov 17 09:18:39 2012 us=729721 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Sat Nov 17 09:18:39 2012 us=760222 LZO compression initialized
Sat Nov 17 09:18:39 2012 us=760398 Control Channel MTU parms [ L:1590 D:138 EF:38 EB:0 ET:0 EL:0 ]
Sat Nov 17 09:18:39 2012 us=760518 Data Channel MTU parms [ L:1590 D:1450 EF:58 EB:135 ET:32 EL:0 AF:3/1 ]
Sat Nov 17 09:18:39 2012 us=760570 Local Options String: 'V4,dev-type tun,link-mtu 1590,tun-mtu 1532,proto UDPv4,comp-lzo,cipher AES-256-CBC,auth SHA1,keysize 256,key-method 2,tls-client'
Sat Nov 17 09:18:39 2012 us=760589 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1590,tun-mtu 1532,proto UDPv4,comp-lzo,cipher AES-256-CBC,auth SHA1,keysize 256,key-method 2,tls-server'
Sat Nov 17 09:18:39 2012 us=760631 Local Options hash (VER=V4): 'fd83fad0'
Sat Nov 17 09:18:39 2012 us=760658 Expected Remote Options hash (VER=V4): '00a0a914'
Sat Nov 17 09:18:39 2012 us=760699 Socket Buffers: R=[112640->131072] S=[112640->131072]
Sat Nov 17 09:18:39 2012 us=760723 UDPv4 link local: [undef]
Sat Nov 17 09:18:39 2012 us=760744 UDPv4 link remote: [AF_INET]195.60.76.223:53
WWWWWWWWWWWWWWWWWWWWWWWWWWWWWSat Nov 17 09:19:39 2012 us=802806 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Sat Nov 17 09:19:39 2012 us=802866 TLS Error: TLS handshake failed
Sat Nov 17 09:19:39 2012 us=803016 TCP/UDP: Closing socket
Sat Nov 17 09:19:39 2012 us=803075 SIGUSR1[soft,tls-error] received, process restarting
Sat Nov 17 09:19:39 2012 us=803104 Restart pause, 2 second(s)
Sat Nov 17 09:19:41 2012 us=803204 WARNING: Make sure you understand the semantics of --tls-remote before using it (see the man page).
Sat Nov 17 09:19:41 2012 us=803262 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Sat Nov 17 09:19:41 2012 us=803295 Re-using SSL/TLS context
Sat Nov 17 09:19:41 2012 us=803334 LZO compression initialized
Sat Nov 17 09:19:41 2012 us=803462 Control Channel MTU parms [ L:1590 D:138 EF:38 EB:0 ET:0 EL:0 ]
Sat Nov 17 09:19:41 2012 us=803552 Data Channel MTU parms [ L:1590 D:1450 EF:58 EB:135 ET:32 EL:0 AF:3/1 ]
Sat Nov 17 09:19:41 2012 us=803594 Local Options String: 'V4,dev-type tun,link-mtu 1590,tun-mtu 1532,proto UDPv4,comp-lzo,cipher AES-256-CBC,auth SHA1,keysize 256,key-method 2,tls-client'
Sat Nov 17 09:19:41 2012 us=803613 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1590,tun-mtu 1532,proto UDPv4,comp-lzo,cipher AES-256-CBC,auth SHA1,keysize 256,key-method 2,tls-server'
Sat Nov 17 09:19:41 2012 us=803645 Local Options hash (VER=V4): 'fd83fad0'
Sat Nov 17 09:19:41 2012 us=803672 Expected Remote Options hash (VER=V4): '00a0a914'
Sat Nov 17 09:19:41 2012 us=803703 Socket Buffers: R=[112640->131072] S=[112640->131072]
Sat Nov 17 09:19:41 2012 us=803725 UDPv4 link local: [undef]
Sat Nov 17 09:19:41 2012 us=803746 UDPv4 link remote: [AF_INET]195.60.76.223:53
Thank you in advance,
Side
-
Sidewinder
- OpenVpn Newbie
- Posts: 3
- Joined: Wed Nov 07, 2012 1:55 pm
Re: TLS error in client; while connection to free openvpn on
Anyone?
As I stated earlier this is what I would consider a rather rudimentary set-up. To be honest, I'm a little disappointed with the lack of response from this forum; and yes, I'm well aware that I'm owed absolutely nothing and that you are all volunteers.
Perhaps my questions are too elementary?
Any suggestions would be more than greatly appreciated.
Side
As I stated earlier this is what I would consider a rather rudimentary set-up. To be honest, I'm a little disappointed with the lack of response from this forum; and yes, I'm well aware that I'm owed absolutely nothing and that you are all volunteers.
Perhaps my questions are too elementary?
Any suggestions would be more than greatly appreciated.
Side