Thanks for the support. Added ncp-disable. Now on server ncp_enabled is DISABLED.
Changed log level to 4. With this log level unfortunately I don't see UDPv4 reads and writes in the log. The problem with ping timeout still exists.
Server log:
Code: Select all
Mon Jul 10 18:12:00 2017 us=150060 Current Parameter Settings:
Mon Jul 10 18:12:00 2017 us=150111 config = '/etc/openvpn/tv.conf'
Mon Jul 10 18:12:00 2017 us=150124 mode = 1
Mon Jul 10 18:12:00 2017 us=150134 persist_config = DISABLED
Mon Jul 10 18:12:00 2017 us=150143 persist_mode = 1
Mon Jul 10 18:12:00 2017 us=150152 show_ciphers = DISABLED
Mon Jul 10 18:12:00 2017 us=150161 show_digests = DISABLED
Mon Jul 10 18:12:00 2017 us=150170 show_engines = DISABLED
Mon Jul 10 18:12:00 2017 us=150180 genkey = DISABLED
Mon Jul 10 18:12:00 2017 us=150189 key_pass_file = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=150198 show_tls_ciphers = DISABLED
Mon Jul 10 18:12:00 2017 us=150207 connect_retry_max = 0
Mon Jul 10 18:12:00 2017 us=150216 Connection profiles [0]:
Mon Jul 10 18:12:00 2017 us=150226 proto = udp
Mon Jul 10 18:12:00 2017 us=150235 local = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=150332 local_port = '1194'
Mon Jul 10 18:12:00 2017 us=150342 remote = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=150351 remote_port = '1194'
Mon Jul 10 18:12:00 2017 us=150360 remote_float = DISABLED
Mon Jul 10 18:12:00 2017 us=150369 bind_defined = DISABLED
Mon Jul 10 18:12:00 2017 us=150379 bind_local = ENABLED
Mon Jul 10 18:12:00 2017 us=150388 bind_ipv6_only = DISABLED
Mon Jul 10 18:12:00 2017 us=150397 connect_retry_seconds = 5
Mon Jul 10 18:12:00 2017 us=150406 connect_timeout = 120
Mon Jul 10 18:12:00 2017 us=150416 socks_proxy_server = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=150429 socks_proxy_port = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=150447 tun_mtu = 1500
Mon Jul 10 18:12:00 2017 us=150462 tun_mtu_defined = ENABLED
Mon Jul 10 18:12:00 2017 us=150472 link_mtu = 1500
Mon Jul 10 18:12:00 2017 us=150481 link_mtu_defined = DISABLED
Mon Jul 10 18:12:00 2017 us=150490 tun_mtu_extra = 32
Mon Jul 10 18:12:00 2017 us=150499 tun_mtu_extra_defined = ENABLED
Mon Jul 10 18:12:00 2017 us=150508 mtu_discover_type = -1
Mon Jul 10 18:12:00 2017 us=150519 fragment = 0
Mon Jul 10 18:12:00 2017 us=150526 mssfix = 1450
Mon Jul 10 18:12:00 2017 us=150533 explicit_exit_notification = 0
Mon Jul 10 18:12:00 2017 us=150540 Connection profiles END
Mon Jul 10 18:12:00 2017 us=150547 remote_random = DISABLED
Mon Jul 10 18:12:00 2017 us=150554 ipchange = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=150561 dev = 'tap0'
Mon Jul 10 18:12:00 2017 us=150567 dev_type = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=150574 dev_node = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=150581 lladdr = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=150588 topology = 1
Mon Jul 10 18:12:00 2017 us=150594 ifconfig_local = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=150601 ifconfig_remote_netmask = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=150607 ifconfig_noexec = DISABLED
Mon Jul 10 18:12:00 2017 us=150614 ifconfig_nowarn = DISABLED
Mon Jul 10 18:12:00 2017 us=150621 ifconfig_ipv6_local = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=150627 ifconfig_ipv6_netbits = 0
Mon Jul 10 18:12:00 2017 us=150634 ifconfig_ipv6_remote = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=150641 shaper = 0
Mon Jul 10 18:12:00 2017 us=150647 mtu_test = 0
Mon Jul 10 18:12:00 2017 us=150654 mlock = DISABLED
Mon Jul 10 18:12:00 2017 us=150661 keepalive_ping = 10
Mon Jul 10 18:12:00 2017 us=150667 keepalive_timeout = 120
Mon Jul 10 18:12:00 2017 us=150674 inactivity_timeout = 0
Mon Jul 10 18:12:00 2017 us=150681 ping_send_timeout = 10
Mon Jul 10 18:12:00 2017 us=150687 ping_rec_timeout = 240
Mon Jul 10 18:12:00 2017 us=150694 ping_rec_timeout_action = 2
Mon Jul 10 18:12:00 2017 us=150701 ping_timer_remote = DISABLED
Mon Jul 10 18:12:00 2017 us=150707 remap_sigusr1 = 0
Mon Jul 10 18:12:00 2017 us=150714 persist_tun = ENABLED
Mon Jul 10 18:12:00 2017 us=150721 persist_local_ip = DISABLED
Mon Jul 10 18:12:00 2017 us=150727 persist_remote_ip = DISABLED
Mon Jul 10 18:12:00 2017 us=150734 persist_key = ENABLED
Mon Jul 10 18:12:00 2017 us=150741 passtos = DISABLED
Mon Jul 10 18:12:00 2017 us=150750 resolve_retry_seconds = 1000000000
Mon Jul 10 18:12:00 2017 us=150757 resolve_in_advance = DISABLED
Mon Jul 10 18:12:00 2017 us=150770 username = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=150777 groupname = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=150784 chroot_dir = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=150790 cd_dir = '/etc/openvpn'
Mon Jul 10 18:12:00 2017 us=150797 writepid = '/run/openvpn/tv.pid'
Mon Jul 10 18:12:00 2017 us=150803 up_script = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=150810 down_script = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=150817 down_pre = DISABLED
Mon Jul 10 18:12:00 2017 us=150824 up_restart = DISABLED
Mon Jul 10 18:12:00 2017 us=150830 up_delay = DISABLED
Mon Jul 10 18:12:00 2017 us=150837 daemon = ENABLED
Mon Jul 10 18:12:00 2017 us=150844 inetd = 0
Mon Jul 10 18:12:00 2017 us=150851 log = ENABLED
Mon Jul 10 18:12:00 2017 us=150857 suppress_timestamps = DISABLED
Mon Jul 10 18:12:00 2017 us=150864 machine_readable_output = DISABLED
Mon Jul 10 18:12:00 2017 us=150870 nice = -10
Mon Jul 10 18:12:00 2017 us=150877 verbosity = 4
Mon Jul 10 18:12:00 2017 us=150884 mute = 0
Mon Jul 10 18:12:00 2017 us=150890 gremlin = 0
Mon Jul 10 18:12:00 2017 us=150897 status_file = 'openvpn-status.log'
Mon Jul 10 18:12:00 2017 us=150903 status_file_version = 1
Mon Jul 10 18:12:00 2017 us=150910 status_file_update_freq = 10
Mon Jul 10 18:12:00 2017 us=150917 occ = ENABLED
Mon Jul 10 18:12:00 2017 us=150923 rcvbuf = 0
Mon Jul 10 18:12:00 2017 us=150930 sndbuf = 0
Mon Jul 10 18:12:00 2017 us=150937 mark = 0
Mon Jul 10 18:12:00 2017 us=150943 sockflags = 0
Mon Jul 10 18:12:00 2017 us=150950 fast_io = DISABLED
Mon Jul 10 18:12:00 2017 us=150956 comp.alg = 0
Mon Jul 10 18:12:00 2017 us=150963 comp.flags = 0
Mon Jul 10 18:12:00 2017 us=150970 route_script = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=150976 route_default_gateway = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=150983 route_default_metric = 0
Mon Jul 10 18:12:00 2017 us=150990 route_noexec = DISABLED
Mon Jul 10 18:12:00 2017 us=150997 route_delay = 0
Mon Jul 10 18:12:00 2017 us=151003 route_delay_window = 30
Mon Jul 10 18:12:00 2017 us=151010 route_delay_defined = DISABLED
Mon Jul 10 18:12:00 2017 us=151017 route_nopull = DISABLED
Mon Jul 10 18:12:00 2017 us=151023 route_gateway_via_dhcp = DISABLED
Mon Jul 10 18:12:00 2017 us=151030 allow_pull_fqdn = DISABLED
Mon Jul 10 18:12:00 2017 us=151037 management_addr = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=151043 management_port = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=151050 management_user_pass = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=151057 management_log_history_cache = 250
Mon Jul 10 18:12:00 2017 us=151063 management_echo_buffer_size = 100
Mon Jul 10 18:12:00 2017 us=151070 management_write_peer_info_file = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=151077 management_client_user = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=151084 management_client_group = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=151090 management_flags = 0
Mon Jul 10 18:12:00 2017 us=151097 shared_secret_file = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=151104 key_direction = 0
Mon Jul 10 18:12:00 2017 us=151111 ciphername = 'none'
Mon Jul 10 18:12:00 2017 us=151117 ncp_enabled = DISABLED
Mon Jul 10 18:12:00 2017 us=151124 ncp_ciphers = 'AES-256-GCM:AES-128-GCM'
Mon Jul 10 18:12:00 2017 us=151131 authname = 'SHA1'
Mon Jul 10 18:12:00 2017 us=151137 prng_hash = 'SHA1'
Mon Jul 10 18:12:00 2017 us=151144 prng_nonce_secret_len = 16
Mon Jul 10 18:12:00 2017 us=151151 keysize = 0
Mon Jul 10 18:12:00 2017 us=151158 engine = DISABLED
Mon Jul 10 18:12:00 2017 us=151164 replay = ENABLED
Mon Jul 10 18:12:00 2017 us=151171 mute_replay_warnings = DISABLED
Mon Jul 10 18:12:00 2017 us=151178 replay_window = 64
Mon Jul 10 18:12:00 2017 us=151184 replay_time = 15
Mon Jul 10 18:12:00 2017 us=151191 packet_id_file = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=151198 use_iv = ENABLED
Mon Jul 10 18:12:00 2017 us=151204 test_crypto = DISABLED
Mon Jul 10 18:12:00 2017 us=151211 tls_server = ENABLED
Mon Jul 10 18:12:00 2017 us=151218 tls_client = DISABLED
Mon Jul 10 18:12:00 2017 us=151229 key_method = 2
Mon Jul 10 18:12:00 2017 us=151236 ca_file = '/etc/openvpn/ca.crt'
Mon Jul 10 18:12:00 2017 us=151243 ca_path = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=151249 dh_file = '/etc/openvpn/dh1024.pem'
Mon Jul 10 18:12:00 2017 us=151256 cert_file = '/etc/openvpn/server.crt'
Mon Jul 10 18:12:00 2017 us=151263 extra_certs_file = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=151270 priv_key_file = '/etc/openvpn/server.key'
Mon Jul 10 18:12:00 2017 us=151277 pkcs12_file = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=151284 cipher_list = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=151290 tls_verify = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=151297 tls_export_cert = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=151304 verify_x509_type = 0
Mon Jul 10 18:12:00 2017 us=151311 verify_x509_name = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=151318 crl_file = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=151325 ns_cert_type = 0
Mon Jul 10 18:12:00 2017 us=151332 remote_cert_ku[i] = 0
Mon Jul 10 18:12:00 2017 us=151338 remote_cert_ku[i] = 0
Mon Jul 10 18:12:00 2017 us=151345 remote_cert_ku[i] = 0
Mon Jul 10 18:12:00 2017 us=151352 remote_cert_ku[i] = 0
Mon Jul 10 18:12:00 2017 us=151359 remote_cert_ku[i] = 0
Mon Jul 10 18:12:00 2017 us=151365 remote_cert_ku[i] = 0
Mon Jul 10 18:12:00 2017 us=151372 remote_cert_ku[i] = 0
Mon Jul 10 18:12:00 2017 us=151379 remote_cert_ku[i] = 0
Mon Jul 10 18:12:00 2017 us=151385 remote_cert_ku[i] = 0
Mon Jul 10 18:12:00 2017 us=151392 remote_cert_ku[i] = 0
Mon Jul 10 18:12:00 2017 us=151399 remote_cert_ku[i] = 0
Mon Jul 10 18:12:00 2017 us=151405 remote_cert_ku[i] = 0
Mon Jul 10 18:12:00 2017 us=151412 remote_cert_ku[i] = 0
Mon Jul 10 18:12:00 2017 us=151419 remote_cert_ku[i] = 0
Mon Jul 10 18:12:00 2017 us=151425 remote_cert_ku[i] = 0
Mon Jul 10 18:12:00 2017 us=151432 remote_cert_ku[i] = 0
Mon Jul 10 18:12:00 2017 us=151439 remote_cert_eku = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=151446 ssl_flags = 0
Mon Jul 10 18:12:00 2017 us=151452 tls_timeout = 2
Mon Jul 10 18:12:00 2017 us=151459 renegotiate_bytes = -1
Mon Jul 10 18:12:00 2017 us=151466 renegotiate_packets = 0
Mon Jul 10 18:12:00 2017 us=151472 renegotiate_seconds = 3600
Mon Jul 10 18:12:00 2017 us=151479 handshake_window = 60
Mon Jul 10 18:12:00 2017 us=151486 transition_window = 3600
Mon Jul 10 18:12:00 2017 us=151492 single_session = DISABLED
Mon Jul 10 18:12:00 2017 us=151499 push_peer_info = DISABLED
Mon Jul 10 18:12:00 2017 us=151506 tls_exit = DISABLED
Mon Jul 10 18:12:00 2017 us=151512 tls_auth_file = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=151519 tls_crypt_file = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=151526 pkcs11_protected_authentication = DISABLED
Mon Jul 10 18:12:00 2017 us=151533 pkcs11_protected_authentication = DISABLED
Mon Jul 10 18:12:00 2017 us=151540 pkcs11_protected_authentication = DISABLED
Mon Jul 10 18:12:00 2017 us=151546 pkcs11_protected_authentication = DISABLED
Mon Jul 10 18:12:00 2017 us=151553 pkcs11_protected_authentication = DISABLED
Mon Jul 10 18:12:00 2017 us=151560 pkcs11_protected_authentication = DISABLED
Mon Jul 10 18:12:00 2017 us=151566 pkcs11_protected_authentication = DISABLED
Mon Jul 10 18:12:00 2017 us=151573 pkcs11_protected_authentication = DISABLED
Mon Jul 10 18:12:00 2017 us=151580 pkcs11_protected_authentication = DISABLED
Mon Jul 10 18:12:00 2017 us=151586 pkcs11_protected_authentication = DISABLED
Mon Jul 10 18:12:00 2017 us=151593 pkcs11_protected_authentication = DISABLED
Mon Jul 10 18:12:00 2017 us=151600 pkcs11_protected_authentication = DISABLED
Mon Jul 10 18:12:00 2017 us=151606 pkcs11_protected_authentication = DISABLED
Mon Jul 10 18:12:00 2017 us=151613 pkcs11_protected_authentication = DISABLED
Mon Jul 10 18:12:00 2017 us=151620 pkcs11_protected_authentication = DISABLED
Mon Jul 10 18:12:00 2017 us=151626 pkcs11_protected_authentication = DISABLED
Mon Jul 10 18:12:00 2017 us=151633 pkcs11_private_mode = 00000000
Mon Jul 10 18:12:00 2017 us=151640 pkcs11_private_mode = 00000000
Mon Jul 10 18:12:00 2017 us=151651 pkcs11_private_mode = 00000000
Mon Jul 10 18:12:00 2017 us=151658 pkcs11_private_mode = 00000000
Mon Jul 10 18:12:00 2017 us=151664 pkcs11_private_mode = 00000000
Mon Jul 10 18:12:00 2017 us=151671 pkcs11_private_mode = 00000000
Mon Jul 10 18:12:00 2017 us=151678 pkcs11_private_mode = 00000000
Mon Jul 10 18:12:00 2017 us=151685 pkcs11_private_mode = 00000000
Mon Jul 10 18:12:00 2017 us=151691 pkcs11_private_mode = 00000000
Mon Jul 10 18:12:00 2017 us=151698 pkcs11_private_mode = 00000000
Mon Jul 10 18:12:00 2017 us=151705 pkcs11_private_mode = 00000000
Mon Jul 10 18:12:00 2017 us=151711 pkcs11_private_mode = 00000000
Mon Jul 10 18:12:00 2017 us=151718 pkcs11_private_mode = 00000000
Mon Jul 10 18:12:00 2017 us=151725 pkcs11_private_mode = 00000000
Mon Jul 10 18:12:00 2017 us=151732 pkcs11_private_mode = 00000000
Mon Jul 10 18:12:00 2017 us=151738 pkcs11_private_mode = 00000000
Mon Jul 10 18:12:00 2017 us=151745 pkcs11_cert_private = DISABLED
Mon Jul 10 18:12:00 2017 us=151752 pkcs11_cert_private = DISABLED
Mon Jul 10 18:12:00 2017 us=151758 pkcs11_cert_private = DISABLED
Mon Jul 10 18:12:00 2017 us=151765 pkcs11_cert_private = DISABLED
Mon Jul 10 18:12:00 2017 us=151772 pkcs11_cert_private = DISABLED
Mon Jul 10 18:12:00 2017 us=151778 pkcs11_cert_private = DISABLED
Mon Jul 10 18:12:00 2017 us=151785 pkcs11_cert_private = DISABLED
Mon Jul 10 18:12:00 2017 us=151792 pkcs11_cert_private = DISABLED
Mon Jul 10 18:12:00 2017 us=151798 pkcs11_cert_private = DISABLED
Mon Jul 10 18:12:00 2017 us=151805 pkcs11_cert_private = DISABLED
Mon Jul 10 18:12:00 2017 us=151812 pkcs11_cert_private = DISABLED
Mon Jul 10 18:12:00 2017 us=151819 pkcs11_cert_private = DISABLED
Mon Jul 10 18:12:00 2017 us=151825 pkcs11_cert_private = DISABLED
Mon Jul 10 18:12:00 2017 us=151832 pkcs11_cert_private = DISABLED
Mon Jul 10 18:12:00 2017 us=151838 pkcs11_cert_private = DISABLED
Mon Jul 10 18:12:00 2017 us=151845 pkcs11_cert_private = DISABLED
Mon Jul 10 18:12:00 2017 us=151852 pkcs11_pin_cache_period = -1
Mon Jul 10 18:12:00 2017 us=151859 pkcs11_id = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=151865 pkcs11_id_management = DISABLED
Mon Jul 10 18:12:00 2017 us=151873 server_network = 0.0.0.0
Mon Jul 10 18:12:00 2017 us=151880 server_netmask = 0.0.0.0
Mon Jul 10 18:12:00 2017 us=151888 server_network_ipv6 = ::
Mon Jul 10 18:12:00 2017 us=151895 server_netbits_ipv6 = 0
Mon Jul 10 18:12:00 2017 us=151902 server_bridge_ip = 10.225.128.1
Mon Jul 10 18:12:00 2017 us=151910 server_bridge_netmask = 255.255.240.0
Mon Jul 10 18:12:00 2017 us=151917 server_bridge_pool_start = 10.225.128.3
Mon Jul 10 18:12:00 2017 us=151924 server_bridge_pool_end = 10.225.128.4
Mon Jul 10 18:12:00 2017 us=151931 push_entry = 'route-gateway 10.225.128.1'
Mon Jul 10 18:12:00 2017 us=151938 push_entry = 'ping 10'
Mon Jul 10 18:12:00 2017 us=151945 push_entry = 'ping-restart 120'
Mon Jul 10 18:12:00 2017 us=151952 ifconfig_pool_defined = ENABLED
Mon Jul 10 18:12:00 2017 us=151962 ifconfig_pool_start = 10.225.128.3
Mon Jul 10 18:12:00 2017 us=151970 ifconfig_pool_end = 10.225.128.4
Mon Jul 10 18:12:00 2017 us=151977 ifconfig_pool_netmask = 255.255.240.0
Mon Jul 10 18:12:00 2017 us=151984 ifconfig_pool_persist_filename = 'ipp.txt'
Mon Jul 10 18:12:00 2017 us=151991 ifconfig_pool_persist_refresh_freq = 600
Mon Jul 10 18:12:00 2017 us=151998 ifconfig_ipv6_pool_defined = DISABLED
Mon Jul 10 18:12:00 2017 us=152005 ifconfig_ipv6_pool_base = ::
Mon Jul 10 18:12:00 2017 us=152012 ifconfig_ipv6_pool_netbits = 0
Mon Jul 10 18:12:00 2017 us=152019 n_bcast_buf = 256
Mon Jul 10 18:12:00 2017 us=152026 tcp_queue_limit = 64
Mon Jul 10 18:12:00 2017 us=152033 real_hash_size = 256
Mon Jul 10 18:12:00 2017 us=152040 virtual_hash_size = 256
Mon Jul 10 18:12:00 2017 us=152047 client_connect_script = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=152053 learn_address_script = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=152060 client_disconnect_script = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=152070 client_config_dir = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=152078 ccd_exclusive = DISABLED
Mon Jul 10 18:12:00 2017 us=152085 tmp_dir = '/tmp'
Mon Jul 10 18:12:00 2017 us=152092 push_ifconfig_defined = DISABLED
Mon Jul 10 18:12:00 2017 us=152099 push_ifconfig_local = 0.0.0.0
Mon Jul 10 18:12:00 2017 us=152107 push_ifconfig_remote_netmask = 0.0.0.0
Mon Jul 10 18:12:00 2017 us=152114 push_ifconfig_ipv6_defined = DISABLED
Mon Jul 10 18:12:00 2017 us=152121 push_ifconfig_ipv6_local = ::/0
Mon Jul 10 18:12:00 2017 us=152129 push_ifconfig_ipv6_remote = ::
Mon Jul 10 18:12:00 2017 us=152136 enable_c2c = DISABLED
Mon Jul 10 18:12:00 2017 us=152143 duplicate_cn = DISABLED
Mon Jul 10 18:12:00 2017 us=152149 cf_max = 0
Mon Jul 10 18:12:00 2017 us=152156 cf_per = 0
Mon Jul 10 18:12:00 2017 us=152163 max_clients = 1024
Mon Jul 10 18:12:00 2017 us=152170 max_routes_per_client = 256
Mon Jul 10 18:12:00 2017 us=152176 auth_user_pass_verify_script = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=152183 auth_user_pass_verify_script_via_file = DISABLED
Mon Jul 10 18:12:00 2017 us=152190 auth_token_generate = DISABLED
Mon Jul 10 18:12:00 2017 us=152197 auth_token_lifetime = 0
Mon Jul 10 18:12:00 2017 us=152204 port_share_host = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=152210 port_share_port = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=152217 client = DISABLED
Mon Jul 10 18:12:00 2017 us=152224 pull = DISABLED
Mon Jul 10 18:12:00 2017 us=152231 auth_user_pass_file = '[UNDEF]'
Mon Jul 10 18:12:00 2017 us=152239 OpenVPN 2.4.0 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Jun 22 2017
Mon Jul 10 18:12:00 2017 us=152251 library versions: OpenSSL 1.0.2l 25 May 2017, LZO 2.08
Mon Jul 10 18:12:00 2017 us=152743 NOTE: when bridging your LAN adapter with the TAP adapter, note that the new bridge adapter will often take on its own IP address that is different from what the LAN adapter was previously set to
Mon Jul 10 18:12:00 2017 us=153206 Diffie-Hellman initialized with 1024 bit key
Mon Jul 10 18:12:00 2017 us=153644 ******* WARNING *******: null cipher specified, no encryption will be used
Mon Jul 10 18:12:00 2017 us=153680 TLS-Auth MTU parms [ L:1653 D:1212 EF:38 EB:0 ET:0 EL:3 ]
Mon Jul 10 18:12:00 2017 us=154115 TUN/TAP device tap0 opened
Mon Jul 10 18:12:00 2017 us=154147 TUN/TAP TX queue length set to 100
Mon Jul 10 18:12:00 2017 us=154196 Data Channel MTU parms [ L:1653 D:1450 EF:121 EB:411 ET:32 EL:3 AF:14/121 ]
Mon Jul 10 18:12:00 2017 us=154222 WARNING: nice -10 failed: Operation not permitted: Operation not permitted (errno=1)
Mon Jul 10 18:12:00 2017 us=154239 Could not determine IPv4/IPv6 protocol. Using AF_INET
Mon Jul 10 18:12:00 2017 us=154274 Socket Buffers: R=[212992->212992] S=[212992->212992]
Mon Jul 10 18:12:00 2017 us=154298 UDPv4 link local (bound): [AF_INET][undef]:1194
Mon Jul 10 18:12:00 2017 us=154315 UDPv4 link remote: [AF_UNSPEC]
Mon Jul 10 18:12:00 2017 us=154334 MULTI: multi_init called, r=256 v=256
Mon Jul 10 18:12:00 2017 us=154367 IFCONFIG POOL: base=10.225.128.3 size=2, ipv6=0
Mon Jul 10 18:12:00 2017 us=154395 ifconfig_pool_read(), in='lieta,10.225.128.3', TODO: IPv6
Mon Jul 10 18:12:00 2017 us=154437 succeeded -> ifconfig_pool_set()
Mon Jul 10 18:12:00 2017 us=154458 IFCONFIG POOL LIST
Mon Jul 10 18:12:00 2017 us=154475 lieta,10.225.128.3
Mon Jul 10 18:12:00 2017 us=154533 Initialization Sequence Completed
Mon Jul 10 18:12:23 2017 us=924891 MULTI: multi_create_instance called
Mon Jul 10 18:12:23 2017 us=924967 85.255.64.158:55214 Re-using SSL/TLS context
Mon Jul 10 18:12:23 2017 us=925087 85.255.64.158:55214 Control Channel MTU parms [ L:1653 D:1212 EF:38 EB:0 ET:0 EL:3 ]
Mon Jul 10 18:12:23 2017 us=925108 85.255.64.158:55214 Data Channel MTU parms [ L:1653 D:1450 EF:121 EB:411 ET:32 EL:3 AF:14/121 ]
Mon Jul 10 18:12:23 2017 us=925133 85.255.64.158:55214 Local Options String (VER=V4): 'V4,dev-type tap,link-mtu 1557,tun-mtu 1532,proto UDPv4,cipher [null-cipher],auth SHA1,keysize 0,key-method 2,tls-server'
Mon Jul 10 18:12:23 2017 us=925155 85.255.64.158:55214 Expected Remote Options String (VER=V4): 'V4,dev-type tap,link-mtu 1557,tun-mtu 1532,proto UDPv4,cipher [null-cipher],auth SHA1,keysize 0,key-method 2,tls-client'
Mon Jul 10 18:12:23 2017 us=925192 85.255.64.158:55214 TLS: Initial packet from [AF_INET]85.255.64.158:55214, sid=9e8ea884 450f4ee6
Mon Jul 10 18:12:24 2017 us=317196 85.255.64.158:55214 VERIFY OK: depth=1, C=LV, L=Valmiera, O=private, emailAddress=mp3@hello.lv
Mon Jul 10 18:12:24 2017 us=317410 85.255.64.158:55214 VERIFY OK: depth=0, C=LV, L=Valmiera, O=private, CN=lieta, emailAddress=mp3@hello.lv
Mon Jul 10 18:12:24 2017 us=326535 85.255.64.158:55214 peer info: IV_VER=2.3.6
Mon Jul 10 18:12:24 2017 us=326562 85.255.64.158:55214 peer info: IV_PLAT=linux
Mon Jul 10 18:12:24 2017 us=326574 85.255.64.158:55214 peer info: IV_PROTO=2
Mon Jul 10 18:12:24 2017 us=326587 85.255.64.158:55214 NOTE: Options consistency check may be skewed by version differences
Mon Jul 10 18:12:24 2017 us=326604 85.255.64.158:55214 WARNING: 'version' is used inconsistently, local='version V4', remote='version V0 UNDEF'
Mon Jul 10 18:12:24 2017 us=326618 85.255.64.158:55214 WARNING: 'dev-type' is present in local config but missing in remote config, local='dev-type tap'
Mon Jul 10 18:12:24 2017 us=326630 85.255.64.158:55214 WARNING: 'link-mtu' is present in local config but missing in remote config, local='link-mtu 1557'
Mon Jul 10 18:12:24 2017 us=326643 85.255.64.158:55214 WARNING: 'tun-mtu' is present in local config but missing in remote config, local='tun-mtu 1532'
Mon Jul 10 18:12:24 2017 us=326656 85.255.64.158:55214 WARNING: 'cipher' is present in local config but missing in remote config, local='cipher [null-cipher]'
Mon Jul 10 18:12:24 2017 us=326668 85.255.64.158:55214 WARNING: 'auth' is present in local config but missing in remote config, local='auth SHA1'
Mon Jul 10 18:12:24 2017 us=326680 85.255.64.158:55214 WARNING: 'keysize' is present in local config but missing in remote config, local='keysize 0'
Mon Jul 10 18:12:24 2017 us=326692 85.255.64.158:55214 WARNING: 'key-method' is present in local config but missing in remote config, local='key-method 2'
Mon Jul 10 18:12:24 2017 us=326705 85.255.64.158:55214 WARNING: 'tls-client' is present in local config but missing in remote config, local='tls-client'
Mon Jul 10 18:12:24 2017 us=326827 85.255.64.158:55214 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Mon Jul 10 18:12:24 2017 us=326844 85.255.64.158:55214 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Mon Jul 10 18:12:24 2017 us=334067 85.255.64.158:55214 Control Channel: TLSv1.2, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA256, 1024 bit RSA
Mon Jul 10 18:12:24 2017 us=334108 85.255.64.158:55214 [lieta] Peer Connection Initiated with [AF_INET]85.255.64.158:55214
Mon Jul 10 18:12:24 2017 us=334143 lieta/85.255.64.158:55214 MULTI_sva: pool returned IPv4=10.225.128.3, IPv6=(Not enabled)
Mon Jul 10 18:12:26 2017 us=365547 lieta/85.255.64.158:55214 PUSH: Received control message: 'PUSH_REQUEST'
Mon Jul 10 18:12:26 2017 us=365627 lieta/85.255.64.158:55214 SENT CONTROL [lieta]: 'PUSH_REPLY,route-gateway 10.225.128.1,ping 10,ping-restart 120,ifconfig 10.225.128.3 255.255.240.0,peer-id 0' (status=1)
Mon Jul 10 18:12:26 2017 us=413797 lieta/85.255.64.158:55214 MULTI: Learn: 64:70:02:7c:36:47 -> lieta/85.255.64.158:55214
Mon Jul 10 18:16:26 2017 us=18572 lieta/85.255.64.158:55214 [lieta] Inactivity timeout (--ping-restart), restarting
Mon Jul 10 18:16:26 2017 us=18624 lieta/85.255.64.158:55214 SIGUSR1[soft,ping-restart] received, client-instance restarting
Client log:
Code: Select all
Mon Jul 10 18:12:23 2017 us=829251 OpenVPN 2.3.6 mips-openwrt-linux-gnu [SSL (PolarSSL)] [EPOLL] [MH] [IPv6] built on Sep 26 2015
Mon Jul 10 18:12:23 2017 us=829619 library versions: PolarSSL 1.3.11
Mon Jul 10 18:12:23 2017 us=830304 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Mon Jul 10 18:12:23 2017 us=867126 WARNING: file '/etc/openvpn/lieta.key' is group or others accessible
Mon Jul 10 18:12:23 2017 us=869065 ******* WARNING *******: null cipher specified, no encryption will be used
Mon Jul 10 18:12:23 2017 us=871226 Control Channel MTU parms [ L:1557 D:138 EF:38 EB:0 ET:0 EL:0 ]
Mon Jul 10 18:12:23 2017 us=881835 Socket Buffers: R=[163840->131072] S=[163840->131072]
Mon Jul 10 18:12:23 2017 us=923262 Data Channel MTU parms [ L:1557 D:1450 EF:25 EB:4 ET:32 EL:0 AF:14/25 ]
Mon Jul 10 18:12:23 2017 us=923555 UDPv4 link local: [undef]
Mon Jul 10 18:12:23 2017 us=923775 UDPv4 link remote: [AF_INET]46.109.118.19:1194
Mon Jul 10 18:12:23 2017 us=929081 TLS: Initial packet from [AF_INET]46.109.118.19:1194, sid=d6b909e2 e90c134d
Mon Jul 10 18:12:23 2017 us=948059 VERIFY OK: depth=1, C=LV, L=Valmiera, O=private, emailAddress=mp3@hello.lv
Mon Jul 10 18:12:23 2017 us=949587 VERIFY OK: depth=0, C=LV, L=Valmiera, O=private, CN=server, emailAddress=mp3@hello.lv
Mon Jul 10 18:12:24 2017 us=332540 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Mon Jul 10 18:12:24 2017 us=332841 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Mon Jul 10 18:12:24 2017 us=333374 Control Channel: TLSv1.2, cipher TLS-DHE-RSA-WITH-AES-256-CBC-SHA256, 1024 bit RSA
Mon Jul 10 18:12:24 2017 us=333787 [server] Peer Connection Initiated with [AF_INET]46.109.118.19:1194
Mon Jul 10 18:12:26 2017 us=364446 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
Mon Jul 10 18:12:26 2017 us=369812 PUSH: Received control message: 'PUSH_REPLY,route-gateway 10.225.128.1,ping 10,ping-restart 120,ifconfig 10.225.128.3 255.255.240.0,peer-id 0'
Mon Jul 10 18:12:26 2017 us=370495 OPTIONS IMPORT: timers and/or timeouts modified
Mon Jul 10 18:12:26 2017 us=370689 OPTIONS IMPORT: --ifconfig/up options modified
Mon Jul 10 18:12:26 2017 us=370823 OPTIONS IMPORT: route-related options modified
Mon Jul 10 18:12:26 2017 us=370953 OPTIONS IMPORT: peer-id set
Mon Jul 10 18:12:26 2017 us=395401 TUN/TAP device tap0 opened
Mon Jul 10 18:12:26 2017 us=395738 TUN/TAP TX queue length set to 100
Mon Jul 10 18:12:26 2017 us=395949 do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
Mon Jul 10 18:12:26 2017 us=396362 /sbin/ifconfig tap0 10.225.128.3 netmask 255.255.240.0 mtu 1500 broadcast 10.225.143.255
Mon Jul 10 18:12:26 2017 us=410739 Initialization Sequence Completed
Mon Jul 10 18:18:19 2017 us=341626 [server] Inactivity timeout (--ping-restart), restarting
Mon Jul 10 18:18:19 2017 us=343413 TCP/UDP: Closing socket
Mon Jul 10 18:18:19 2017 us=343914 Closing TUN/TAP interface
Mon Jul 10 18:18:19 2017 us=344137 /sbin/ifconfig tap0 0.0.0.0
Mon Jul 10 18:18:19 2017 us=374193 SIGUSR1[soft,ping-restart] received, process restarting
Mon Jul 10 18:18:19 2017 us=374508 Restart pause, 2 second(s)