Server OS Windows Server 2012(all firewalls down for testing), client OS Windows 7.
Enabled ip forwarding on the server, added static routes to server.ovpn, added static routes to LAN.
From my LAN I can ping vpn server (192.168.0.246, and also on his vpn address 10.5.0.1).
From vpn network client (any) I can ping vpn server (10.5.0.1, and also on his lan address 192.168.0.246)
VPN clients can ping and access any network resourses in 10.5.0.0\24.
But cant go any further. So if anyone can give me a hint, that would be sweet.
SERVER
### Paste Your Server Config File Below ###
port 1194
proto udp
dev tun
ca C:\\OpenVPN\\easy-rsa\\keys\\ca.crt
cert C:\\OpenVPN\\easy-rsa\\keys\\OVPN.crt
key C:\\OpenVPN\\easy-rsa\\keys\\OVPN.key # This file should be kept secret
dh C:\\OpenVPN\\easy-rsa\\keys\\dh1024.pem
topology subnet
server 10.5.0.0 255.255.255.0
ifconfig-pool-persist ipp.txt
push "route 192.168.0.0 255.255.255.0"
push "route 10.5.0.0 255.255.255.0"
push "dhcp-option DNS 192.168.0.249"
push "dhcp-option DNS 192.168.0.251"
push "dhcp-option DOMAIN *.local"
push "dhcp-option SEARCH *.local"
client-to-client
keepalive 10 120
tls-auth C:\\OpenVPN\\easy-rsa\\ta.key 0 # This file is secret
cipher AES-256-CBC
persist-key
persist-tun
status openvpn-status.log
verb 4
port 1194
proto udp
dev tun
ca C:\\OpenVPN\\easy-rsa\\keys\\ca.crt
cert C:\\OpenVPN\\easy-rsa\\keys\\OVPN.crt
key C:\\OpenVPN\\easy-rsa\\keys\\OVPN.key # This file should be kept secret
dh C:\\OpenVPN\\easy-rsa\\keys\\dh1024.pem
topology subnet
server 10.5.0.0 255.255.255.0
ifconfig-pool-persist ipp.txt
push "route 192.168.0.0 255.255.255.0"
push "route 10.5.0.0 255.255.255.0"
push "dhcp-option DNS 192.168.0.249"
push "dhcp-option DNS 192.168.0.251"
push "dhcp-option DOMAIN *.local"
push "dhcp-option SEARCH *.local"
client-to-client
keepalive 10 120
tls-auth C:\\OpenVPN\\easy-rsa\\ta.key 0 # This file is secret
cipher AES-256-CBC
persist-key
persist-tun
status openvpn-status.log
verb 4
CLIENT
### Paste Your Client Config Below ###
client
dev tun
proto udp
remote here was address 1194
resolv-retry infinite
nobind
persist-key
persist-tun
ca C:\\Openvpn\\ssl\\ca.crt
cert C:\\Openvpn\\ssl\\SharanMTS.crt
key C:\\Openvpn\\ssl\\SharanMTS.key
remote-cert-tls server
tls-auth C:\\Openvpn\\ssl\\ta.key 1
cipher AES-256-CBC
verb 4
client
dev tun
proto udp
remote here was address 1194
resolv-retry infinite
nobind
persist-key
persist-tun
ca C:\\Openvpn\\ssl\\ca.crt
cert C:\\Openvpn\\ssl\\SharanMTS.crt
key C:\\Openvpn\\ssl\\SharanMTS.key
remote-cert-tls server
tls-auth C:\\Openvpn\\ssl\\ta.key 1
cipher AES-256-CBC
verb 4
Code: Select all
### Paste Your Client Log Below ###
Tue Jan 31 15:20:34 2017 us=583784 Current Parameter Settings:
Tue Jan 31 15:20:34 2017 us=583784 config = 'client.ovpn'
Tue Jan 31 15:20:34 2017 us=583784 mode = 0
Tue Jan 31 15:20:34 2017 us=583784 show_ciphers = DISABLED
Tue Jan 31 15:20:34 2017 us=583784 show_digests = DISABLED
Tue Jan 31 15:20:34 2017 us=583784 show_engines = DISABLED
Tue Jan 31 15:20:34 2017 us=583784 genkey = DISABLED
Tue Jan 31 15:20:34 2017 us=583784 key_pass_file = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=583784 show_tls_ciphers = DISABLED
Tue Jan 31 15:20:34 2017 us=583784 connect_retry_max = 0
Tue Jan 31 15:20:34 2017 us=583784 Connection profiles [0]:
Tue Jan 31 15:20:34 2017 us=583784 proto = udp
Tue Jan 31 15:20:34 2017 us=583784 local = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=583784 local_port = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=583784 remote = '95.78.232.88'
Tue Jan 31 15:20:34 2017 us=583784 remote_port = '1194'
Tue Jan 31 15:20:34 2017 us=583784 remote_float = DISABLED
Tue Jan 31 15:20:34 2017 us=583784 bind_defined = DISABLED
Tue Jan 31 15:20:34 2017 us=583784 bind_local = DISABLED
Tue Jan 31 15:20:34 2017 us=583784 bind_ipv6_only = DISABLED
Tue Jan 31 15:20:34 2017 us=583784 connect_retry_seconds = 5
Tue Jan 31 15:20:34 2017 us=583784 connect_timeout = 120
Tue Jan 31 15:20:34 2017 us=583784 socks_proxy_server = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=583784 socks_proxy_port = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=583784 tun_mtu = 1500
Tue Jan 31 15:20:34 2017 us=583784 tun_mtu_defined = ENABLED
Tue Jan 31 15:20:34 2017 us=583784 link_mtu = 1500
Tue Jan 31 15:20:34 2017 us=583784 link_mtu_defined = DISABLED
Tue Jan 31 15:20:34 2017 us=583784 tun_mtu_extra = 0
Tue Jan 31 15:20:34 2017 us=583784 tun_mtu_extra_defined = DISABLED
Tue Jan 31 15:20:34 2017 us=583784 mtu_discover_type = -1
Tue Jan 31 15:20:34 2017 us=583784 fragment = 0
Tue Jan 31 15:20:34 2017 us=583784 mssfix = 1450
Tue Jan 31 15:20:34 2017 us=584784 explicit_exit_notification = 0
Tue Jan 31 15:20:34 2017 us=584784 Connection profiles END
Tue Jan 31 15:20:34 2017 us=584784 remote_random = DISABLED
Tue Jan 31 15:20:34 2017 us=584784 ipchange = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=584784 dev = 'tun'
Tue Jan 31 15:20:34 2017 us=584784 dev_type = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=584784 dev_node = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=584784 lladdr = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=584784 topology = 1
Tue Jan 31 15:20:34 2017 us=584784 ifconfig_local = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=584784 ifconfig_remote_netmask = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=584784 ifconfig_noexec = DISABLED
Tue Jan 31 15:20:34 2017 us=584784 ifconfig_nowarn = DISABLED
Tue Jan 31 15:20:34 2017 us=584784 ifconfig_ipv6_local = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=584784 ifconfig_ipv6_netbits = 0
Tue Jan 31 15:20:34 2017 us=584784 ifconfig_ipv6_remote = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=584784 shaper = 0
Tue Jan 31 15:20:34 2017 us=584784 mtu_test = 0
Tue Jan 31 15:20:34 2017 us=584784 mlock = DISABLED
Tue Jan 31 15:20:34 2017 us=584784 keepalive_ping = 0
Tue Jan 31 15:20:34 2017 us=584784 keepalive_timeout = 0
Tue Jan 31 15:20:34 2017 us=584784 inactivity_timeout = 0
Tue Jan 31 15:20:34 2017 us=584784 ping_send_timeout = 0
Tue Jan 31 15:20:34 2017 us=584784 ping_rec_timeout = 0
Tue Jan 31 15:20:34 2017 us=584784 ping_rec_timeout_action = 0
Tue Jan 31 15:20:34 2017 us=584784 ping_timer_remote = DISABLED
Tue Jan 31 15:20:34 2017 us=584784 remap_sigusr1 = 0
Tue Jan 31 15:20:34 2017 us=584784 persist_tun = ENABLED
Tue Jan 31 15:20:34 2017 us=584784 persist_local_ip = DISABLED
Tue Jan 31 15:20:34 2017 us=584784 persist_remote_ip = DISABLED
Tue Jan 31 15:20:34 2017 us=584784 persist_key = ENABLED
Tue Jan 31 15:20:34 2017 us=584784 passtos = DISABLED
Tue Jan 31 15:20:34 2017 us=584784 resolve_retry_seconds = 1000000000
Tue Jan 31 15:20:34 2017 us=584784 resolve_in_advance = DISABLED
Tue Jan 31 15:20:34 2017 us=584784 username = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=584784 groupname = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=584784 chroot_dir = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=584784 cd_dir = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=584784 writepid = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=584784 up_script = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=584784 down_script = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=584784 down_pre = DISABLED
Tue Jan 31 15:20:34 2017 us=584784 up_restart = DISABLED
Tue Jan 31 15:20:34 2017 us=584784 up_delay = DISABLED
Tue Jan 31 15:20:34 2017 us=584784 daemon = DISABLED
Tue Jan 31 15:20:34 2017 us=584784 inetd = 0
Tue Jan 31 15:20:34 2017 us=584784 log = ENABLED
Tue Jan 31 15:20:34 2017 us=584784 suppress_timestamps = DISABLED
Tue Jan 31 15:20:34 2017 us=584784 machine_readable_output = DISABLED
Tue Jan 31 15:20:34 2017 us=584784 nice = 0
Tue Jan 31 15:20:34 2017 us=585784 verbosity = 4
Tue Jan 31 15:20:34 2017 us=585784 mute = 0
Tue Jan 31 15:20:34 2017 us=585784 gremlin = 0
Tue Jan 31 15:20:34 2017 us=585784 status_file = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=585784 status_file_version = 1
Tue Jan 31 15:20:34 2017 us=585784 status_file_update_freq = 60
Tue Jan 31 15:20:34 2017 us=585784 occ = ENABLED
Tue Jan 31 15:20:34 2017 us=585784 rcvbuf = 0
Tue Jan 31 15:20:34 2017 us=585784 sndbuf = 0
Tue Jan 31 15:20:34 2017 us=585784 sockflags = 0
Tue Jan 31 15:20:34 2017 us=585784 fast_io = DISABLED
Tue Jan 31 15:20:34 2017 us=585784 comp.alg = 0
Tue Jan 31 15:20:34 2017 us=585784 comp.flags = 0
Tue Jan 31 15:20:34 2017 us=585784 route_script = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=585784 route_default_gateway = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=585784 route_default_metric = 0
Tue Jan 31 15:20:34 2017 us=585784 route_noexec = DISABLED
Tue Jan 31 15:20:34 2017 us=585784 route_delay = 5
Tue Jan 31 15:20:34 2017 us=585784 route_delay_window = 30
Tue Jan 31 15:20:34 2017 us=585784 route_delay_defined = ENABLED
Tue Jan 31 15:20:34 2017 us=585784 route_nopull = DISABLED
Tue Jan 31 15:20:34 2017 us=585784 route_gateway_via_dhcp = DISABLED
Tue Jan 31 15:20:34 2017 us=585784 allow_pull_fqdn = DISABLED
Tue Jan 31 15:20:34 2017 us=585784 management_addr = '127.0.0.1'
Tue Jan 31 15:20:34 2017 us=585784 management_port = '25340'
Tue Jan 31 15:20:34 2017 us=585784 management_user_pass = 'stdin'
Tue Jan 31 15:20:34 2017 us=585784 management_log_history_cache = 250
Tue Jan 31 15:20:34 2017 us=585784 management_echo_buffer_size = 100
Tue Jan 31 15:20:34 2017 us=585784 management_write_peer_info_file = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=585784 management_client_user = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=585784 management_client_group = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=585784 management_flags = 6
Tue Jan 31 15:20:34 2017 us=585784 shared_secret_file = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=585784 key_direction = 2
Tue Jan 31 15:20:34 2017 us=585784 ciphername = 'AES-256-CBC'
Tue Jan 31 15:20:34 2017 us=585784 ncp_enabled = ENABLED
Tue Jan 31 15:20:34 2017 us=585784 ncp_ciphers = 'AES-256-GCM:AES-128-GCM'
Tue Jan 31 15:20:34 2017 us=585784 authname = 'SHA1'
Tue Jan 31 15:20:34 2017 us=585784 prng_hash = 'SHA1'
Tue Jan 31 15:20:34 2017 us=585784 prng_nonce_secret_len = 16
Tue Jan 31 15:20:34 2017 us=585784 keysize = 0
Tue Jan 31 15:20:34 2017 us=585784 engine = DISABLED
Tue Jan 31 15:20:34 2017 us=585784 replay = ENABLED
Tue Jan 31 15:20:34 2017 us=585784 mute_replay_warnings = DISABLED
Tue Jan 31 15:20:34 2017 us=586784 replay_window = 64
Tue Jan 31 15:20:34 2017 us=586784 replay_time = 15
Tue Jan 31 15:20:34 2017 us=586784 packet_id_file = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=586784 use_iv = ENABLED
Tue Jan 31 15:20:34 2017 us=586784 test_crypto = DISABLED
Tue Jan 31 15:20:34 2017 us=586784 tls_server = DISABLED
Tue Jan 31 15:20:34 2017 us=586784 tls_client = ENABLED
Tue Jan 31 15:20:34 2017 us=586784 key_method = 2
Tue Jan 31 15:20:34 2017 us=586784 ca_file = 'C:\Openvpn\ssl\ca.crt'
Tue Jan 31 15:20:34 2017 us=586784 ca_path = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=586784 dh_file = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=586784 cert_file = 'C:\Openvpn\ssl\AdamovkaFS2.crt'
Tue Jan 31 15:20:34 2017 us=586784 extra_certs_file = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=586784 priv_key_file = 'C:\Openvpn\ssl\AdamovkaFS2.key'
Tue Jan 31 15:20:34 2017 us=586784 pkcs12_file = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=586784 cryptoapi_cert = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=586784 cipher_list = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=586784 tls_verify = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=586784 tls_export_cert = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=586784 verify_x509_type = 0
Tue Jan 31 15:20:34 2017 us=586784 verify_x509_name = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=586784 crl_file = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=586784 ns_cert_type = 0
Tue Jan 31 15:20:34 2017 us=586784 remote_cert_ku[i] = 160
Tue Jan 31 15:20:34 2017 us=586784 remote_cert_ku[i] = 136
Tue Jan 31 15:20:34 2017 us=586784 remote_cert_ku[i] = 0
Tue Jan 31 15:20:34 2017 us=586784 remote_cert_ku[i] = 0
Tue Jan 31 15:20:34 2017 us=586784 remote_cert_ku[i] = 0
Tue Jan 31 15:20:34 2017 us=586784 remote_cert_ku[i] = 0
Tue Jan 31 15:20:34 2017 us=586784 remote_cert_ku[i] = 0
Tue Jan 31 15:20:34 2017 us=586784 remote_cert_ku[i] = 0
Tue Jan 31 15:20:34 2017 us=586784 remote_cert_ku[i] = 0
Tue Jan 31 15:20:34 2017 us=586784 remote_cert_ku[i] = 0
Tue Jan 31 15:20:34 2017 us=586784 remote_cert_ku[i] = 0
Tue Jan 31 15:20:34 2017 us=586784 remote_cert_ku[i] = 0
Tue Jan 31 15:20:34 2017 us=586784 remote_cert_ku[i] = 0
Tue Jan 31 15:20:34 2017 us=586784 remote_cert_ku[i] = 0
Tue Jan 31 15:20:34 2017 us=586784 remote_cert_ku[i] = 0
Tue Jan 31 15:20:34 2017 us=586784 remote_cert_ku[i] = 0
Tue Jan 31 15:20:34 2017 us=586784 remote_cert_eku = 'TLS Web Server Authentication'
Tue Jan 31 15:20:34 2017 us=586784 ssl_flags = 0
Tue Jan 31 15:20:34 2017 us=586784 tls_timeout = 2
Tue Jan 31 15:20:34 2017 us=586784 renegotiate_bytes = -1
Tue Jan 31 15:20:34 2017 us=586784 renegotiate_packets = 0
Tue Jan 31 15:20:34 2017 us=586784 renegotiate_seconds = 3600
Tue Jan 31 15:20:34 2017 us=586784 handshake_window = 60
Tue Jan 31 15:20:34 2017 us=586784 transition_window = 3600
Tue Jan 31 15:20:34 2017 us=586784 single_session = DISABLED
Tue Jan 31 15:20:34 2017 us=586784 push_peer_info = DISABLED
Tue Jan 31 15:20:34 2017 us=586784 tls_exit = DISABLED
Tue Jan 31 15:20:34 2017 us=587784 tls_auth_file = 'C:\Openvpn\ssl\ta.key'
Tue Jan 31 15:20:34 2017 us=587784 tls_crypt_file = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_protected_authentication = DISABLED
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_protected_authentication = DISABLED
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_protected_authentication = DISABLED
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_protected_authentication = DISABLED
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_protected_authentication = DISABLED
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_protected_authentication = DISABLED
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_protected_authentication = DISABLED
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_protected_authentication = DISABLED
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_protected_authentication = DISABLED
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_protected_authentication = DISABLED
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_protected_authentication = DISABLED
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_protected_authentication = DISABLED
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_protected_authentication = DISABLED
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_protected_authentication = DISABLED
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_protected_authentication = DISABLED
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_protected_authentication = DISABLED
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_private_mode = 00000000
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_private_mode = 00000000
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_private_mode = 00000000
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_private_mode = 00000000
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_private_mode = 00000000
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_private_mode = 00000000
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_private_mode = 00000000
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_private_mode = 00000000
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_private_mode = 00000000
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_private_mode = 00000000
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_private_mode = 00000000
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_private_mode = 00000000
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_private_mode = 00000000
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_private_mode = 00000000
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_private_mode = 00000000
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_private_mode = 00000000
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_cert_private = DISABLED
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_cert_private = DISABLED
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_cert_private = DISABLED
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_cert_private = DISABLED
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_cert_private = DISABLED
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_cert_private = DISABLED
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_cert_private = DISABLED
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_cert_private = DISABLED
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_cert_private = DISABLED
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_cert_private = DISABLED
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_cert_private = DISABLED
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_cert_private = DISABLED
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_cert_private = DISABLED
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_cert_private = DISABLED
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_cert_private = DISABLED
Tue Jan 31 15:20:34 2017 us=587784 pkcs11_cert_private = DISABLED
Tue Jan 31 15:20:34 2017 us=588784 pkcs11_pin_cache_period = -1
Tue Jan 31 15:20:34 2017 us=588784 pkcs11_id = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=588784 pkcs11_id_management = DISABLED
Tue Jan 31 15:20:34 2017 us=601785 server_network = 0.0.0.0
Tue Jan 31 15:20:34 2017 us=601785 server_netmask = 0.0.0.0
Tue Jan 31 15:20:34 2017 us=601785 server_network_ipv6 = ::
Tue Jan 31 15:20:34 2017 us=601785 server_netbits_ipv6 = 0
Tue Jan 31 15:20:34 2017 us=601785 server_bridge_ip = 0.0.0.0
Tue Jan 31 15:20:34 2017 us=601785 server_bridge_netmask = 0.0.0.0
Tue Jan 31 15:20:34 2017 us=602785 server_bridge_pool_start = 0.0.0.0
Tue Jan 31 15:20:34 2017 us=602785 server_bridge_pool_end = 0.0.0.0
Tue Jan 31 15:20:34 2017 us=602785 ifconfig_pool_defined = DISABLED
Tue Jan 31 15:20:34 2017 us=602785 ifconfig_pool_start = 0.0.0.0
Tue Jan 31 15:20:34 2017 us=602785 ifconfig_pool_end = 0.0.0.0
Tue Jan 31 15:20:34 2017 us=602785 ifconfig_pool_netmask = 0.0.0.0
Tue Jan 31 15:20:34 2017 us=602785 ifconfig_pool_persist_filename = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=602785 ifconfig_pool_persist_refresh_freq = 600
Tue Jan 31 15:20:34 2017 us=602785 ifconfig_ipv6_pool_defined = DISABLED
Tue Jan 31 15:20:34 2017 us=602785 ifconfig_ipv6_pool_base = ::
Tue Jan 31 15:20:34 2017 us=602785 ifconfig_ipv6_pool_netbits = 0
Tue Jan 31 15:20:34 2017 us=602785 n_bcast_buf = 256
Tue Jan 31 15:20:34 2017 us=602785 tcp_queue_limit = 64
Tue Jan 31 15:20:34 2017 us=602785 real_hash_size = 256
Tue Jan 31 15:20:34 2017 us=602785 virtual_hash_size = 256
Tue Jan 31 15:20:34 2017 us=602785 client_connect_script = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=602785 learn_address_script = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=602785 client_disconnect_script = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=602785 client_config_dir = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=602785 ccd_exclusive = DISABLED
Tue Jan 31 15:20:34 2017 us=602785 tmp_dir = 'C:\Temp\'
Tue Jan 31 15:20:34 2017 us=602785 push_ifconfig_defined = DISABLED
Tue Jan 31 15:20:34 2017 us=602785 push_ifconfig_local = 0.0.0.0
Tue Jan 31 15:20:34 2017 us=602785 push_ifconfig_remote_netmask = 0.0.0.0
Tue Jan 31 15:20:34 2017 us=602785 push_ifconfig_ipv6_defined = DISABLED
Tue Jan 31 15:20:34 2017 us=602785 push_ifconfig_ipv6_local = ::/0
Tue Jan 31 15:20:34 2017 us=602785 push_ifconfig_ipv6_remote = ::
Tue Jan 31 15:20:34 2017 us=602785 enable_c2c = DISABLED
Tue Jan 31 15:20:34 2017 us=602785 duplicate_cn = DISABLED
Tue Jan 31 15:20:34 2017 us=602785 cf_max = 0
Tue Jan 31 15:20:34 2017 us=602785 cf_per = 0
Tue Jan 31 15:20:34 2017 us=602785 max_clients = 1024
Tue Jan 31 15:20:34 2017 us=602785 max_routes_per_client = 256
Tue Jan 31 15:20:34 2017 us=602785 auth_user_pass_verify_script = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=602785 auth_user_pass_verify_script_via_file = DISABLED
Tue Jan 31 15:20:34 2017 us=602785 auth_token_generate = DISABLED
Tue Jan 31 15:20:34 2017 us=602785 auth_token_lifetime = 0
Tue Jan 31 15:20:34 2017 us=602785 client = ENABLED
Tue Jan 31 15:20:34 2017 us=602785 pull = ENABLED
Tue Jan 31 15:20:34 2017 us=602785 auth_user_pass_file = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=602785 show_net_up = DISABLED
Tue Jan 31 15:20:34 2017 us=602785 route_method = 0
Tue Jan 31 15:20:34 2017 us=602785 block_outside_dns = DISABLED
Tue Jan 31 15:20:34 2017 us=602785 ip_win32_defined = DISABLED
Tue Jan 31 15:20:34 2017 us=602785 ip_win32_type = 3
Tue Jan 31 15:20:34 2017 us=602785 dhcp_masq_offset = 0
Tue Jan 31 15:20:34 2017 us=602785 dhcp_lease_time = 31536000
Tue Jan 31 15:20:34 2017 us=602785 tap_sleep = 0
Tue Jan 31 15:20:34 2017 us=602785 dhcp_options = DISABLED
Tue Jan 31 15:20:34 2017 us=602785 dhcp_renew = DISABLED
Tue Jan 31 15:20:34 2017 us=602785 dhcp_pre_release = DISABLED
Tue Jan 31 15:20:34 2017 us=603785 dhcp_release = DISABLED
Tue Jan 31 15:20:34 2017 us=603785 domain = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=603785 netbios_scope = '[UNDEF]'
Tue Jan 31 15:20:34 2017 us=603785 netbios_node_type = 0
Tue Jan 31 15:20:34 2017 us=603785 disable_nbt = DISABLED
Tue Jan 31 15:20:34 2017 us=603785 OpenVPN 2.4.0 i686-w64-mingw32 [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [AEAD] built on Dec 27 2016
Tue Jan 31 15:20:34 2017 us=603785 Windows version 6.1 (Windows 7) 32bit
Tue Jan 31 15:20:34 2017 us=603785 library versions: OpenSSL 1.0.2i 22 Sep 2016, LZO 2.09
Enter Management Password:
Tue Jan 31 15:20:34 2017 us=607785 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:25340
Tue Jan 31 15:20:34 2017 us=607785 Need hold release from management interface, waiting...
Tue Jan 31 15:20:34 2017 us=916803 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:25340
Tue Jan 31 15:20:35 2017 us=17809 MANAGEMENT: CMD 'state on'
Tue Jan 31 15:20:35 2017 us=17809 MANAGEMENT: CMD 'log all on'
Tue Jan 31 15:20:35 2017 us=441833 MANAGEMENT: CMD 'hold off'
Tue Jan 31 15:20:35 2017 us=449834 MANAGEMENT: CMD 'hold release'
Tue Jan 31 15:20:35 2017 us=924861 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Tue Jan 31 15:20:35 2017 us=924861 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Tue Jan 31 15:20:35 2017 us=943862 Control Channel MTU parms [ L:1621 D:1184 EF:66 EB:0 ET:0 EL:3 ]
Tue Jan 31 15:20:35 2017 us=943862 Data Channel MTU parms [ L:1621 D:1450 EF:121 EB:406 ET:0 EL:3 ]
Tue Jan 31 15:20:35 2017 us=943862 Local Options String (VER=V4): 'V4,dev-type tun,link-mtu 1557,tun-mtu 1500,proto UDPv4,keydir 1,cipher AES-256-CBC,auth SHA1,keysize 256,tls-auth,key-method 2,tls-client'
Tue Jan 31 15:20:35 2017 us=943862 Expected Remote Options String (VER=V4): 'V4,dev-type tun,link-mtu 1557,tun-mtu 1500,proto UDPv4,keydir 0,cipher AES-256-CBC,auth SHA1,keysize 256,tls-auth,key-method 2,tls-server'
Tue Jan 31 15:20:35 2017 us=955863 TCP/UDP: Preserving recently used remote address: [AF_INET]95.78.232.88:1194
Tue Jan 31 15:20:35 2017 us=956863 Socket Buffers: R=[8192->8192] S=[8192->8192]
Tue Jan 31 15:20:35 2017 us=956863 UDP link local: (not bound)
Tue Jan 31 15:20:35 2017 us=956863 UDP link remote: [AF_INET]95.78.232.88:1194
Tue Jan 31 15:20:35 2017 us=956863 MANAGEMENT: >STATE:1485858035,WAIT,,,,,,
Tue Jan 31 15:20:36 2017 us=680904 MANAGEMENT: >STATE:1485858036,AUTH,,,,,,
Tue Jan 31 15:20:36 2017 us=680904 TLS: Initial packet from [AF_INET]95.78.232.88:1194, sid=a7bf2400 bf156d76
Tue Jan 31 15:20:36 2017 us=956920 VERIFY OK: depth=1, C=RU, ST=ORB, L=Orenbourg, O=Lening, OU=OVPN_KSC, CN=Llocal, name=OVPN_Lening, emailAddress=a.lopatin@weteam.ru
Tue Jan 31 15:20:36 2017 us=957920 Validating certificate key usage
Tue Jan 31 15:20:36 2017 us=957920 ++ Certificate has key usage 00a0, expects 00a0
Tue Jan 31 15:20:36 2017 us=957920 VERIFY KU OK
Tue Jan 31 15:20:36 2017 us=957920 Validating certificate extended key usage
Tue Jan 31 15:20:36 2017 us=957920 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
Tue Jan 31 15:20:36 2017 us=957920 VERIFY EKU OK
Tue Jan 31 15:20:36 2017 us=957920 VERIFY OK: depth=0, C=RU, ST=ORB, L=Orenbourg, O=Lening, OU=OVPN_KSC, CN=Llocal, name=OVPN_Lening, emailAddress=a.lopatin@weteam.ru
Tue Jan 31 15:20:37 2017 us=748965 Control Channel: TLSv1.2, cipher TLSv1/SSLv3 ECDHE-RSA-AES256-GCM-SHA384, 1024 bit RSA
Tue Jan 31 15:20:37 2017 us=748965 [Llocal] Peer Connection Initiated with [AF_INET]95.78.232.88:1194
Tue Jan 31 15:20:38 2017 us=954034 MANAGEMENT: >STATE:1485858038,GET_CONFIG,,,,,,
Tue Jan 31 15:20:38 2017 us=963035 SENT CONTROL [Llocal]: 'PUSH_REQUEST' (status=1)
Tue Jan 31 15:20:39 2017 us=9037 PUSH: Received control message: 'PUSH_REPLY,route 192.168.0.0 255.255.255.0,route 10.5.0.0 255.255.255.0,dhcp-option DNS 192.168.0.249,dhcp-option DNS 192.168.0.251,dhcp-option DOMAIN Lening.local,dhcp-option SEARCH Lening.local,route-gateway 10.5.0.1,topology subnet,ping 10,ping-restart 120,ifconfig 10.5.0.49 255.255.255.0,peer-id 122,cipher AES-256-GCM'
Tue Jan 31 15:20:39 2017 us=9037 Options error: --dhcp-option: unknown option type 'SEARCH' or missing or unknown parameter
Tue Jan 31 15:20:39 2017 us=9037 OPTIONS IMPORT: timers and/or timeouts modified
Tue Jan 31 15:20:39 2017 us=9037 OPTIONS IMPORT: --ifconfig/up options modified
Tue Jan 31 15:20:39 2017 us=9037 OPTIONS IMPORT: route options modified
Tue Jan 31 15:20:39 2017 us=9037 OPTIONS IMPORT: route-related options modified
Tue Jan 31 15:20:39 2017 us=9037 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Tue Jan 31 15:20:39 2017 us=10037 OPTIONS IMPORT: peer-id set
Tue Jan 31 15:20:39 2017 us=10037 OPTIONS IMPORT: adjusting link_mtu to 1624
Tue Jan 31 15:20:39 2017 us=10037 OPTIONS IMPORT: data channel crypto options modified
Tue Jan 31 15:20:39 2017 us=10037 Data Channel MTU parms [ L:1552 D:1450 EF:52 EB:406 ET:0 EL:3 ]
Tue Jan 31 15:20:39 2017 us=10037 Data Channel Encrypt: Cipher 'AES-256-GCM' initialized with 256 bit key
Tue Jan 31 15:20:39 2017 us=10037 Data Channel Decrypt: Cipher 'AES-256-GCM' initialized with 256 bit key
Tue Jan 31 15:20:39 2017 us=10037 interactive service msg_channel=0
Tue Jan 31 15:20:39 2017 us=14037 ROUTE_GATEWAY 192.168.1.1/255.255.255.0 I=13 HWADDR=48:5b:39:d4:45:7d
Tue Jan 31 15:20:39 2017 us=15038 open_tun
Tue Jan 31 15:20:39 2017 us=89042 TAP-WIN32 device [Подключение по локальной сети 4] opened: \\.\Global\{5F15462F-E87F-4145-AC9F-BD20636A827A}.tap
Tue Jan 31 15:20:39 2017 us=89042 TAP-Windows Driver Version 9.21
Tue Jan 31 15:20:39 2017 us=89042 TAP-Windows MTU=1500
Tue Jan 31 15:20:39 2017 us=92042 Set TAP-Windows TUN subnet mode network/local/netmask = 10.5.0.0/10.5.0.49/255.255.255.0 [SUCCEEDED]
Tue Jan 31 15:20:39 2017 us=92042 Notified TAP-Windows driver to set a DHCP IP/netmask of 10.5.0.49/255.255.255.0 on interface {5F15462F-E87F-4145-AC9F-BD20636A827A} [DHCP-serv: 10.5.0.254, lease-time: 31536000]
Tue Jan 31 15:20:39 2017 us=92042 DHCP option string: 0f0c4c65 6e696e67 2e6c6f63 616c0608 c0a800f9 c0a800fb
Tue Jan 31 15:20:39 2017 us=93042 Successful ARP Flush on interface [15] {5F15462F-E87F-4145-AC9F-BD20636A827A}
Tue Jan 31 15:20:39 2017 us=98042 do_ifconfig, tt->did_ifconfig_ipv6_setup=0
Tue Jan 31 15:20:39 2017 us=98042 MANAGEMENT: >STATE:1485858039,ASSIGN_IP,,10.5.0.49,,,,
Tue Jan 31 15:20:44 2017 us=628359 TEST ROUTES: 0/0 succeeded len=-1 ret=0 a=0 u/d=down
Tue Jan 31 15:20:44 2017 us=628359 Route: Waiting for TUN/TAP interface to come up...
Tue Jan 31 15:20:49 2017 us=228622 TEST ROUTES: 0/0 succeeded len=-1 ret=0 a=0 u/d=down
Tue Jan 31 15:20:49 2017 us=228622 Route: Waiting for TUN/TAP interface to come up...
Tue Jan 31 15:20:51 2017 us=27725 TEST ROUTES: 0/0 succeeded len=-1 ret=0 a=0 u/d=down
Tue Jan 31 15:20:51 2017 us=27725 Route: Waiting for TUN/TAP interface to come up...
Tue Jan 31 15:20:52 2017 us=557812 TEST ROUTES: 0/0 succeeded len=-1 ret=0 a=0 u/d=down
Tue Jan 31 15:20:52 2017 us=557812 Route: Waiting for TUN/TAP interface to come up...
Tue Jan 31 15:20:53 2017 us=74842 TEST ROUTES: 2/2 succeeded len=2 ret=1 a=0 u/d=up
Tue Jan 31 15:20:53 2017 us=74842 MANAGEMENT: >STATE:1485858053,ADD_ROUTES,,,,,,
Tue Jan 31 15:20:53 2017 us=74842 C:\Windows\system32\route.exe ADD 192.168.0.0 MASK 255.255.255.0 10.5.0.1
Tue Jan 31 15:20:53 2017 us=77842 ROUTE: CreateIpForwardEntry succeeded with dwForwardMetric1=20 and dwForwardType=4
Tue Jan 31 15:20:53 2017 us=77842 Route addition via IPAPI succeeded [adaptive]
Tue Jan 31 15:20:53 2017 us=77842 C:\Windows\system32\route.exe ADD 10.5.0.0 MASK 255.255.255.0 10.5.0.1
Tue Jan 31 15:20:53 2017 us=79842 ROUTE: CreateIpForwardEntry succeeded with dwForwardMetric1=20 and dwForwardType=4
Tue Jan 31 15:20:53 2017 us=79842 Route addition via IPAPI succeeded [adaptive]
Tue Jan 31 15:20:53 2017 us=79842 Initialization Sequence Completed
Tue Jan 31 15:20:53 2017 us=79842 MANAGEMENT: >STATE:1485858053,CONNECTED,SUCCESS,10.5.0.49,95.78.232.88,1194,,
0.0.0.0 0.0.0.0 192.168.0.10 192.168.0.77 20
10.5.0.0 255.255.255.0 192.168.0.246 192.168.0.77 21
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.0.0 255.255.255.0 On-link 192.168.0.77 276
192.168.0.77 255.255.255.255 On-link 192.168.0.77 276
192.168.0.255 255.255.255.255 On-link 192.168.0.77 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.0.77 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.0.77 276
client route print
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.3 276
10.5.0.0 255.255.255.0 10.5.0.1 10.5.0.49 20
10.5.0.49 255.255.255.255 On-link 10.5.0.49 276
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.0.0 255.255.255.0 10.5.0.1 10.5.0.49 20
192.168.1.0 255.255.255.0 On-link 192.168.1.3 276
192.168.1.3 255.255.255.255 On-link 192.168.1.3 276
192.168.1.255 255.255.255.255 On-link 192.168.1.3 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.3 276
224.0.0.0 240.0.0.0 On-link 10.5.0.49 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.3 276
255.255.255.255 255.255.255.255 On-link 10.5.0.49 276
