Operating system:
Code: Select all
[root@serverVPN openvpn]# uname -a
Linux serverVPN 3.10.0-514.26.1.el7.x86_64 #1 SMP Thu Jun 29 16:05:25 UTC 2017 x86_64 x86_64 x86_64 GNU/Linux
Network setup:
Code: Select all
[root@serverVPN openvpn]# ifconfig
enp30s0: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500
inet 192.168.1.229 netmask 255.255.255.0 broadcast 192.168.1.255
ether 1c:c1:de:fa:cc:46 txqueuelen 1000 (Ethernet)
RX packets 54539 bytes 4083872 (3.8 MiB)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 13570 bytes 1838186 (1.7 MiB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
device interrupt 19
lo: flags=73<UP,LOOPBACK,RUNNING> mtu 65536
inet 127.0.0.1 netmask 255.0.0.0
loop txqueuelen 1 (Local Loopback)
RX packets 0 bytes 0 (0.0 B)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 0 bytes 0 (0.0 B)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
tun0: flags=4305<UP,POINTOPOINT,RUNNING,NOARP,MULTICAST> mtu 1500
inet 10.8.0.1 netmask 255.255.255.255 destination 10.8.0.2
unspec 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00 txqueuelen 100 (UNSPEC)
RX packets 0 bytes 0 (0.0 B)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 0 bytes 0 (0.0 B)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
server.conf
Code: Select all
port 1194
proto udp
dev tun
ca /etc/openvpn/easy-rsa/2.0/keys/ca.crt
cert /etc/openvpn/easy-rsa/2.0/keys/serverVPN.crt
key /etc/openvpn/easy-rsa/2.0/keys/serverVPN.key
dh /etc/openvpn/easy-rsa/2.0/keys/dh2048.pem
server 10.8.0.0 255.255.255.0
ifconfig-pool-persist ipp.txt
push "route 192.168.1.0 255.255.255.0"
push "dhcp-option DNS 8.8.8.8"
client-to-client
keepalive 10 120
cipher AES-256-CBC
comp-lzo
max-clients 10
user nobody
group nobody
persist-key
persist-tun
status openvpn-status.log
log /etc/openvpn/config---.log
verb 4
Server log (at --verb 4)
Code: Select all
Sun Jul 16 14:24:48 2017 us=837542 Current Parameter Settings:
Sun Jul 16 14:24:48 2017 us=837659 config = 'server.conf'
Sun Jul 16 14:24:48 2017 us=837683 mode = 1
Sun Jul 16 14:24:48 2017 us=837700 persist_config = DISABLED
Sun Jul 16 14:24:48 2017 us=837715 persist_mode = 1
Sun Jul 16 14:24:48 2017 us=837731 show_ciphers = DISABLED
Sun Jul 16 14:24:48 2017 us=837746 show_digests = DISABLED
Sun Jul 16 14:24:48 2017 us=837761 show_engines = DISABLED
Sun Jul 16 14:24:48 2017 us=837777 genkey = DISABLED
Sun Jul 16 14:24:48 2017 us=837792 key_pass_file = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=837808 show_tls_ciphers = DISABLED
Sun Jul 16 14:24:48 2017 us=837824 connect_retry_max = 0
Sun Jul 16 14:24:48 2017 us=837839 Connection profiles [0]:
Sun Jul 16 14:24:48 2017 us=837855 proto = udp
Sun Jul 16 14:24:48 2017 us=837871 local = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=837886 local_port = '1194'
Sun Jul 16 14:24:48 2017 us=837902 remote = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=837917 remote_port = '1194'
Sun Jul 16 14:24:48 2017 us=837932 remote_float = DISABLED
Sun Jul 16 14:24:48 2017 us=837947 bind_defined = DISABLED
Sun Jul 16 14:24:48 2017 us=837962 bind_local = ENABLED
Sun Jul 16 14:24:48 2017 us=837977 bind_ipv6_only = DISABLED
Sun Jul 16 14:24:48 2017 us=837993 connect_retry_seconds = 5
Sun Jul 16 14:24:48 2017 us=838008 connect_timeout = 120
Sun Jul 16 14:24:48 2017 us=838023 socks_proxy_server = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=838039 socks_proxy_port = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=838054 tun_mtu = 1500
Sun Jul 16 14:24:48 2017 us=838069 tun_mtu_defined = ENABLED
Sun Jul 16 14:24:48 2017 us=838085 link_mtu = 1500
Sun Jul 16 14:24:48 2017 us=838100 link_mtu_defined = DISABLED
Sun Jul 16 14:24:48 2017 us=838115 tun_mtu_extra = 0
Sun Jul 16 14:24:48 2017 us=838130 tun_mtu_extra_defined = DISABLED
Sun Jul 16 14:24:48 2017 us=838145 mtu_discover_type = -1
Sun Jul 16 14:24:48 2017 us=838165 fragment = 0
Sun Jul 16 14:24:48 2017 us=838181 mssfix = 1450
Sun Jul 16 14:24:48 2017 us=838199 explicit_exit_notification = 0
Sun Jul 16 14:24:48 2017 us=838215 Connection profiles END
Sun Jul 16 14:24:48 2017 us=838230 remote_random = DISABLED
Sun Jul 16 14:24:48 2017 us=838264 ipchange = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=838282 dev = 'tun'
Sun Jul 16 14:24:48 2017 us=838298 dev_type = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=838313 dev_node = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=838328 lladdr = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=838344 topology = 1
Sun Jul 16 14:24:48 2017 us=838359 ifconfig_local = '10.8.0.1'
Sun Jul 16 14:24:48 2017 us=838375 ifconfig_remote_netmask = '10.8.0.2'
Sun Jul 16 14:24:48 2017 us=838390 ifconfig_noexec = DISABLED
Sun Jul 16 14:24:48 2017 us=838405 ifconfig_nowarn = DISABLED
Sun Jul 16 14:24:48 2017 us=838420 ifconfig_ipv6_local = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=838436 ifconfig_ipv6_netbits = 0
Sun Jul 16 14:24:48 2017 us=838451 ifconfig_ipv6_remote = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=838466 shaper = 0
Sun Jul 16 14:24:48 2017 us=838481 mtu_test = 0
Sun Jul 16 14:24:48 2017 us=838497 mlock = DISABLED
Sun Jul 16 14:24:48 2017 us=838512 keepalive_ping = 10
Sun Jul 16 14:24:48 2017 us=838528 keepalive_timeout = 120
Sun Jul 16 14:24:48 2017 us=838543 inactivity_timeout = 0
Sun Jul 16 14:24:48 2017 us=838558 ping_send_timeout = 10
Sun Jul 16 14:24:48 2017 us=838573 ping_rec_timeout = 240
Sun Jul 16 14:24:48 2017 us=838589 ping_rec_timeout_action = 2
Sun Jul 16 14:24:48 2017 us=838604 ping_timer_remote = DISABLED
Sun Jul 16 14:24:48 2017 us=838619 remap_sigusr1 = 0
Sun Jul 16 14:24:48 2017 us=838634 persist_tun = ENABLED
Sun Jul 16 14:24:48 2017 us=838650 persist_local_ip = DISABLED
Sun Jul 16 14:24:48 2017 us=838665 persist_remote_ip = DISABLED
Sun Jul 16 14:24:48 2017 us=838680 persist_key = ENABLED
Sun Jul 16 14:24:48 2017 us=838695 passtos = DISABLED
Sun Jul 16 14:24:48 2017 us=838711 resolve_retry_seconds = 1000000000
Sun Jul 16 14:24:48 2017 us=838726 resolve_in_advance = DISABLED
Sun Jul 16 14:24:48 2017 us=838751 username = 'nobody'
Sun Jul 16 14:24:48 2017 us=838769 groupname = 'nobody'
Sun Jul 16 14:24:48 2017 us=838784 chroot_dir = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=838799 cd_dir = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=838814 selinux_context = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=838829 writepid = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=838844 up_script = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=838859 down_script = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=838875 down_pre = DISABLED
Sun Jul 16 14:24:48 2017 us=838890 up_restart = DISABLED
Sun Jul 16 14:24:48 2017 us=838905 up_delay = DISABLED
Sun Jul 16 14:24:48 2017 us=838920 daemon = DISABLED
Sun Jul 16 14:24:48 2017 us=838935 inetd = 0
Sun Jul 16 14:24:48 2017 us=838950 log = ENABLED
Sun Jul 16 14:24:48 2017 us=838965 suppress_timestamps = DISABLED
Sun Jul 16 14:24:48 2017 us=838980 machine_readable_output = DISABLED
Sun Jul 16 14:24:48 2017 us=838996 nice = 0
Sun Jul 16 14:24:48 2017 us=839011 verbosity = 4
Sun Jul 16 14:24:48 2017 us=839026 mute = 0
Sun Jul 16 14:24:48 2017 us=839041 gremlin = 0
Sun Jul 16 14:24:48 2017 us=839056 status_file = 'openvpn-status.log'
Sun Jul 16 14:24:48 2017 us=839071 status_file_version = 1
Sun Jul 16 14:24:48 2017 us=839086 status_file_update_freq = 60
Sun Jul 16 14:24:48 2017 us=839102 occ = ENABLED
Sun Jul 16 14:24:48 2017 us=839117 rcvbuf = 0
Sun Jul 16 14:24:48 2017 us=839132 sndbuf = 0
Sun Jul 16 14:24:48 2017 us=839147 mark = 0
Sun Jul 16 14:24:48 2017 us=839162 sockflags = 0
Sun Jul 16 14:24:48 2017 us=839177 fast_io = DISABLED
Sun Jul 16 14:24:48 2017 us=839211 comp.alg = 2
Sun Jul 16 14:24:48 2017 us=839229 comp.flags = 1
Sun Jul 16 14:24:48 2017 us=839245 route_script = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=839260 route_default_gateway = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=839276 route_default_metric = 0
Sun Jul 16 14:24:48 2017 us=839291 route_noexec = DISABLED
Sun Jul 16 14:24:48 2017 us=839307 route_delay = 0
Sun Jul 16 14:24:48 2017 us=839322 route_delay_window = 30
Sun Jul 16 14:24:48 2017 us=839337 route_delay_defined = DISABLED
Sun Jul 16 14:24:48 2017 us=839353 route_nopull = DISABLED
Sun Jul 16 14:24:48 2017 us=839369 route_gateway_via_dhcp = DISABLED
Sun Jul 16 14:24:48 2017 us=839384 allow_pull_fqdn = DISABLED
Sun Jul 16 14:24:48 2017 us=839401 route 10.8.0.0/255.255.255.0/default (not set)/default (not set)
Sun Jul 16 14:24:48 2017 us=839417 management_addr = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=839432 management_port = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=839448 management_user_pass = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=839463 management_log_history_cache = 250
Sun Jul 16 14:24:48 2017 us=839479 management_echo_buffer_size = 100
Sun Jul 16 14:24:48 2017 us=839495 management_write_peer_info_file = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=839510 management_client_user = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=839525 management_client_group = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=839541 management_flags = 0
Sun Jul 16 14:24:48 2017 us=839556 shared_secret_file = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=839572 key_direction = 0
Sun Jul 16 14:24:48 2017 us=839588 ciphername = 'AES-256-CBC'
Sun Jul 16 14:24:48 2017 us=839604 ncp_enabled = ENABLED
Sun Jul 16 14:24:48 2017 us=839619 ncp_ciphers = 'AES-256-GCM:AES-128-GCM'
Sun Jul 16 14:24:48 2017 us=839635 authname = 'SHA1'
Sun Jul 16 14:24:48 2017 us=839650 prng_hash = 'SHA1'
Sun Jul 16 14:24:48 2017 us=839665 prng_nonce_secret_len = 16
Sun Jul 16 14:24:48 2017 us=839681 keysize = 0
Sun Jul 16 14:24:48 2017 us=839696 engine = DISABLED
Sun Jul 16 14:24:48 2017 us=839711 replay = ENABLED
Sun Jul 16 14:24:48 2017 us=839726 mute_replay_warnings = DISABLED
Sun Jul 16 14:24:48 2017 us=839742 replay_window = 64
Sun Jul 16 14:24:48 2017 us=839757 replay_time = 15
Sun Jul 16 14:24:48 2017 us=839773 packet_id_file = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=839788 use_iv = ENABLED
Sun Jul 16 14:24:48 2017 us=839803 test_crypto = DISABLED
Sun Jul 16 14:24:48 2017 us=839831 tls_server = ENABLED
Sun Jul 16 14:24:48 2017 us=839848 tls_client = DISABLED
Sun Jul 16 14:24:48 2017 us=839864 key_method = 2
Sun Jul 16 14:24:48 2017 us=839880 ca_file = '/etc/openvpn/easy-rsa/2.0/keys/ca.crt'
Sun Jul 16 14:24:48 2017 us=839895 ca_path = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=839911 dh_file = '/etc/openvpn/easy-rsa/2.0/keys/dh2048.pem'
Sun Jul 16 14:24:48 2017 us=839927 cert_file = '/etc/openvpn/easy-rsa/2.0/keys/serverVPN.crt'
Sun Jul 16 14:24:48 2017 us=839943 extra_certs_file = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=839959 priv_key_file = '/etc/openvpn/easy-rsa/2.0/keys/serverVPN.key'
Sun Jul 16 14:24:48 2017 us=839975 pkcs12_file = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=839990 cipher_list = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=840006 tls_verify = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=840021 tls_export_cert = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=840036 verify_x509_type = 0
Sun Jul 16 14:24:48 2017 us=840052 verify_x509_name = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=840067 crl_file = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=840082 ns_cert_type = 0
Sun Jul 16 14:24:48 2017 us=840097 remote_cert_ku[i] = 0
Sun Jul 16 14:24:48 2017 us=840112 remote_cert_ku[i] = 0
Sun Jul 16 14:24:48 2017 us=840127 remote_cert_ku[i] = 0
Sun Jul 16 14:24:48 2017 us=840142 remote_cert_ku[i] = 0
Sun Jul 16 14:24:48 2017 us=840157 remote_cert_ku[i] = 0
Sun Jul 16 14:24:48 2017 us=840172 remote_cert_ku[i] = 0
Sun Jul 16 14:24:48 2017 us=840202 remote_cert_ku[i] = 0
Sun Jul 16 14:24:48 2017 us=840219 remote_cert_ku[i] = 0
Sun Jul 16 14:24:48 2017 us=840234 remote_cert_ku[i] = 0
Sun Jul 16 14:24:48 2017 us=840249 remote_cert_ku[i] = 0
Sun Jul 16 14:24:48 2017 us=840264 remote_cert_ku[i] = 0
Sun Jul 16 14:24:48 2017 us=840279 remote_cert_ku[i] = 0
Sun Jul 16 14:24:48 2017 us=840294 remote_cert_ku[i] = 0
Sun Jul 16 14:24:48 2017 us=840309 remote_cert_ku[i] = 0
Sun Jul 16 14:24:48 2017 us=840324 remote_cert_ku[i] = 0
Sun Jul 16 14:24:48 2017 us=840339 remote_cert_ku[i] = 0
Sun Jul 16 14:24:48 2017 us=840354 remote_cert_eku = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=840370 ssl_flags = 0
Sun Jul 16 14:24:48 2017 us=840385 tls_timeout = 2
Sun Jul 16 14:24:48 2017 us=840400 renegotiate_bytes = -1
Sun Jul 16 14:24:48 2017 us=840416 renegotiate_packets = 0
Sun Jul 16 14:24:48 2017 us=840431 renegotiate_seconds = 3600
Sun Jul 16 14:24:48 2017 us=840447 handshake_window = 60
Sun Jul 16 14:24:48 2017 us=840463 transition_window = 3600
Sun Jul 16 14:24:48 2017 us=840478 single_session = DISABLED
Sun Jul 16 14:24:48 2017 us=840494 push_peer_info = DISABLED
Sun Jul 16 14:24:48 2017 us=840509 tls_exit = DISABLED
Sun Jul 16 14:24:48 2017 us=840525 tls_auth_file = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=840541 tls_crypt_file = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=840556 pkcs11_protected_authentication = DISABLED
Sun Jul 16 14:24:48 2017 us=840572 pkcs11_protected_authentication = DISABLED
Sun Jul 16 14:24:48 2017 us=840588 pkcs11_protected_authentication = DISABLED
Sun Jul 16 14:24:48 2017 us=840603 pkcs11_protected_authentication = DISABLED
Sun Jul 16 14:24:48 2017 us=840618 pkcs11_protected_authentication = DISABLED
Sun Jul 16 14:24:48 2017 us=840634 pkcs11_protected_authentication = DISABLED
Sun Jul 16 14:24:48 2017 us=840649 pkcs11_protected_authentication = DISABLED
Sun Jul 16 14:24:48 2017 us=840664 pkcs11_protected_authentication = DISABLED
Sun Jul 16 14:24:48 2017 us=840680 pkcs11_protected_authentication = DISABLED
Sun Jul 16 14:24:48 2017 us=840695 pkcs11_protected_authentication = DISABLED
Sun Jul 16 14:24:48 2017 us=840710 pkcs11_protected_authentication = DISABLED
Sun Jul 16 14:24:48 2017 us=840726 pkcs11_protected_authentication = DISABLED
Sun Jul 16 14:24:48 2017 us=840741 pkcs11_protected_authentication = DISABLED
Sun Jul 16 14:24:48 2017 us=840756 pkcs11_protected_authentication = DISABLED
Sun Jul 16 14:24:48 2017 us=840772 pkcs11_protected_authentication = DISABLED
Sun Jul 16 14:24:48 2017 us=840795 pkcs11_protected_authentication = DISABLED
Sun Jul 16 14:24:48 2017 us=840813 pkcs11_private_mode = 00000000
Sun Jul 16 14:24:48 2017 us=840829 pkcs11_private_mode = 00000000
Sun Jul 16 14:24:48 2017 us=840845 pkcs11_private_mode = 00000000
Sun Jul 16 14:24:48 2017 us=840861 pkcs11_private_mode = 00000000
Sun Jul 16 14:24:48 2017 us=840876 pkcs11_private_mode = 00000000
Sun Jul 16 14:24:48 2017 us=840891 pkcs11_private_mode = 00000000
Sun Jul 16 14:24:48 2017 us=840907 pkcs11_private_mode = 00000000
Sun Jul 16 14:24:48 2017 us=840922 pkcs11_private_mode = 00000000
Sun Jul 16 14:24:48 2017 us=840937 pkcs11_private_mode = 00000000
Sun Jul 16 14:24:48 2017 us=840952 pkcs11_private_mode = 00000000
Sun Jul 16 14:24:48 2017 us=840968 pkcs11_private_mode = 00000000
Sun Jul 16 14:24:48 2017 us=840983 pkcs11_private_mode = 00000000
Sun Jul 16 14:24:48 2017 us=840998 pkcs11_private_mode = 00000000
Sun Jul 16 14:24:48 2017 us=841013 pkcs11_private_mode = 00000000
Sun Jul 16 14:24:48 2017 us=841028 pkcs11_private_mode = 00000000
Sun Jul 16 14:24:48 2017 us=841044 pkcs11_private_mode = 00000000
Sun Jul 16 14:24:48 2017 us=841059 pkcs11_cert_private = DISABLED
Sun Jul 16 14:24:48 2017 us=841075 pkcs11_cert_private = DISABLED
Sun Jul 16 14:24:48 2017 us=841090 pkcs11_cert_private = DISABLED
Sun Jul 16 14:24:48 2017 us=841105 pkcs11_cert_private = DISABLED
Sun Jul 16 14:24:48 2017 us=841120 pkcs11_cert_private = DISABLED
Sun Jul 16 14:24:48 2017 us=841136 pkcs11_cert_private = DISABLED
Sun Jul 16 14:24:48 2017 us=841151 pkcs11_cert_private = DISABLED
Sun Jul 16 14:24:48 2017 us=841166 pkcs11_cert_private = DISABLED
Sun Jul 16 14:24:48 2017 us=841182 pkcs11_cert_private = DISABLED
Sun Jul 16 14:24:48 2017 us=841197 pkcs11_cert_private = DISABLED
Sun Jul 16 14:24:48 2017 us=841212 pkcs11_cert_private = DISABLED
Sun Jul 16 14:24:48 2017 us=841228 pkcs11_cert_private = DISABLED
Sun Jul 16 14:24:48 2017 us=841258 pkcs11_cert_private = DISABLED
Sun Jul 16 14:24:48 2017 us=841275 pkcs11_cert_private = DISABLED
Sun Jul 16 14:24:48 2017 us=841291 pkcs11_cert_private = DISABLED
Sun Jul 16 14:24:48 2017 us=841306 pkcs11_cert_private = DISABLED
Sun Jul 16 14:24:48 2017 us=841322 pkcs11_pin_cache_period = -1
Sun Jul 16 14:24:48 2017 us=841338 pkcs11_id = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=841354 pkcs11_id_management = DISABLED
Sun Jul 16 14:24:48 2017 us=841371 server_network = 10.8.0.0
Sun Jul 16 14:24:48 2017 us=841394 server_netmask = 255.255.255.0
Sun Jul 16 14:24:48 2017 us=841419 server_network_ipv6 = ::
Sun Jul 16 14:24:48 2017 us=841435 server_netbits_ipv6 = 0
Sun Jul 16 14:24:48 2017 us=841453 server_bridge_ip = 0.0.0.0
Sun Jul 16 14:24:48 2017 us=841471 server_bridge_netmask = 0.0.0.0
Sun Jul 16 14:24:48 2017 us=841488 server_bridge_pool_start = 0.0.0.0
Sun Jul 16 14:24:48 2017 us=841505 server_bridge_pool_end = 0.0.0.0
Sun Jul 16 14:24:48 2017 us=841521 push_entry = 'route 192.168.1.0 255.255.255.0'
Sun Jul 16 14:24:48 2017 us=841537 push_entry = 'dhcp-option DNS 8.8.8.8'
Sun Jul 16 14:24:48 2017 us=841553 push_entry = 'route 10.8.0.0 255.255.255.0'
Sun Jul 16 14:24:48 2017 us=841568 push_entry = 'topology net30'
Sun Jul 16 14:24:48 2017 us=841584 push_entry = 'ping 10'
Sun Jul 16 14:24:48 2017 us=841599 push_entry = 'ping-restart 120'
Sun Jul 16 14:24:48 2017 us=841614 ifconfig_pool_defined = ENABLED
Sun Jul 16 14:24:48 2017 us=841631 ifconfig_pool_start = 10.8.0.4
Sun Jul 16 14:24:48 2017 us=841649 ifconfig_pool_end = 10.8.0.251
Sun Jul 16 14:24:48 2017 us=841667 ifconfig_pool_netmask = 0.0.0.0
Sun Jul 16 14:24:48 2017 us=841682 ifconfig_pool_persist_filename = 'ipp.txt'
Sun Jul 16 14:24:48 2017 us=841698 ifconfig_pool_persist_refresh_freq = 600
Sun Jul 16 14:24:48 2017 us=841714 ifconfig_ipv6_pool_defined = DISABLED
Sun Jul 16 14:24:48 2017 us=841731 ifconfig_ipv6_pool_base = ::
Sun Jul 16 14:24:48 2017 us=841746 ifconfig_ipv6_pool_netbits = 0
Sun Jul 16 14:24:48 2017 us=841762 n_bcast_buf = 256
Sun Jul 16 14:24:48 2017 us=841786 tcp_queue_limit = 64
Sun Jul 16 14:24:48 2017 us=841803 real_hash_size = 256
Sun Jul 16 14:24:48 2017 us=841819 virtual_hash_size = 256
Sun Jul 16 14:24:48 2017 us=841835 client_connect_script = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=841851 learn_address_script = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=841867 client_disconnect_script = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=841883 client_config_dir = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=841898 ccd_exclusive = DISABLED
Sun Jul 16 14:24:48 2017 us=841914 tmp_dir = '/tmp'
Sun Jul 16 14:24:48 2017 us=841930 push_ifconfig_defined = DISABLED
Sun Jul 16 14:24:48 2017 us=841947 push_ifconfig_local = 0.0.0.0
Sun Jul 16 14:24:48 2017 us=841965 push_ifconfig_remote_netmask = 0.0.0.0
Sun Jul 16 14:24:48 2017 us=841981 push_ifconfig_ipv6_defined = DISABLED
Sun Jul 16 14:24:48 2017 us=841997 push_ifconfig_ipv6_local = ::/0
Sun Jul 16 14:24:48 2017 us=842014 push_ifconfig_ipv6_remote = ::
Sun Jul 16 14:24:48 2017 us=842030 enable_c2c = ENABLED
Sun Jul 16 14:24:48 2017 us=842045 duplicate_cn = DISABLED
Sun Jul 16 14:24:48 2017 us=842061 cf_max = 0
Sun Jul 16 14:24:48 2017 us=842077 cf_per = 0
Sun Jul 16 14:24:48 2017 us=842092 max_clients = 10
Sun Jul 16 14:24:48 2017 us=842107 max_routes_per_client = 256
Sun Jul 16 14:24:48 2017 us=842123 auth_user_pass_verify_script = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=842139 auth_user_pass_verify_script_via_file = DISABLED
Sun Jul 16 14:24:48 2017 us=842154 auth_token_generate = DISABLED
Sun Jul 16 14:24:48 2017 us=842169 auth_token_lifetime = 0
Sun Jul 16 14:24:48 2017 us=842196 port_share_host = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=842218 port_share_port = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=842234 client = DISABLED
Sun Jul 16 14:24:48 2017 us=842250 pull = DISABLED
Sun Jul 16 14:24:48 2017 us=842266 auth_user_pass_file = '[UNDEF]'
Sun Jul 16 14:24:48 2017 us=842284 OpenVPN 2.4.3 x86_64-redhat-linux-gnu [Fedora EPEL patched] [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Jun 21 2017
Sun Jul 16 14:24:48 2017 us=842309 library versions: OpenSSL 1.0.1e-fips 11 Feb 2013, LZO 2.06
Sun Jul 16 14:24:48 2017 us=842651 NOTE: your local LAN uses the extremely common subnet address 192.168.0.x or 192.168.1.x. Be aware that this might create routing conflicts if you connect to the VPN server from public locations such as internet cafes that use the same subnet.
Sun Jul 16 14:24:48 2017 us=862802 Diffie-Hellman initialized with 2048 bit key
Sun Jul 16 14:24:48 2017 us=863640 Failed to extract curve from certificate (UNDEF), using secp384r1 instead.
Sun Jul 16 14:24:48 2017 us=863682 ECDH curve secp384r1 added
Sun Jul 16 14:24:48 2017 us=863869 TLS-Auth MTU parms [ L:1622 D:1212 EF:38 EB:0 ET:0 EL:3 ]
Sun Jul 16 14:24:48 2017 us=864170 ROUTE_GATEWAY 192.168.1.1/255.255.255.0 IFACE=enp30s0 HWADDR=1c:c1:de:fa:cc:46
Sun Jul 16 14:24:48 2017 us=864467 TUN/TAP device tun0 opened
Sun Jul 16 14:24:48 2017 us=864522 TUN/TAP TX queue length set to 100
Sun Jul 16 14:24:48 2017 us=864548 do_ifconfig, tt->did_ifconfig_ipv6_setup=0
Sun Jul 16 14:24:48 2017 us=864576 /sbin/ip link set dev tun0 up mtu 1500
Sun Jul 16 14:24:48 2017 us=866066 /sbin/ip addr add dev tun0 local 10.8.0.1 peer 10.8.0.2
Sun Jul 16 14:24:48 2017 us=867778 /sbin/ip route add 10.8.0.0/24 via 10.8.0.2
Sun Jul 16 14:24:48 2017 us=869847 Data Channel MTU parms [ L:1622 D:1450 EF:122 EB:406 ET:0 EL:3 ]
Sun Jul 16 14:24:48 2017 us=870372 Could not determine IPv4/IPv6 protocol. Using AF_INET
Sun Jul 16 14:24:48 2017 us=870442 Socket Buffers: R=[212992->212992] S=[212992->212992]
Sun Jul 16 14:24:48 2017 us=870478 UDPv4 link local (bound): [AF_INET][undef]:1194
Sun Jul 16 14:24:48 2017 us=870495 UDPv4 link remote: [AF_UNSPEC]
Sun Jul 16 14:24:48 2017 us=870515 GID set to nobody
Sun Jul 16 14:24:48 2017 us=870534 UID set to nobody
Sun Jul 16 14:24:48 2017 us=870560 MULTI: multi_init called, r=256 v=256
Sun Jul 16 14:24:48 2017 us=870601 IFCONFIG POOL: base=10.8.0.4 size=62, ipv6=0
Sun Jul 16 14:24:48 2017 us=870640 ifconfig_pool_read(), in='cliente01,10.8.0.4', TODO: IPv6
Sun Jul 16 14:24:48 2017 us=870661 succeeded -> ifconfig_pool_set()
Sun Jul 16 14:24:48 2017 us=870676 ifconfig_pool_read(), in='cvalencia,10.8.0.8', TODO: IPv6
Sun Jul 16 14:24:48 2017 us=870691 succeeded -> ifconfig_pool_set()
Sun Jul 16 14:24:48 2017 us=870705 ifconfig_pool_read(), in='jbrugman,10.8.0.12', TODO: IPv6
Sun Jul 16 14:24:48 2017 us=870720 succeeded -> ifconfig_pool_set()
Sun Jul 16 14:24:48 2017 us=870734 ifconfig_pool_read(), in='ccorvala,10.8.0.16', TODO: IPv6
Sun Jul 16 14:24:48 2017 us=870748 succeeded -> ifconfig_pool_set()
Sun Jul 16 14:24:48 2017 us=870762 ifconfig_pool_read(), in='nduque,10.8.0.20', TODO: IPv6
Sun Jul 16 14:24:48 2017 us=870776 succeeded -> ifconfig_pool_set()
Sun Jul 16 14:24:48 2017 us=870790 ifconfig_pool_read(), in='ocontrer,10.8.0.24', TODO: IPv6
Sun Jul 16 14:24:48 2017 us=870804 succeeded -> ifconfig_pool_set()
Sun Jul 16 14:24:48 2017 us=870820 IFCONFIG POOL LIST
Sun Jul 16 14:24:48 2017 us=870836 cliente01,10.8.0.4
Sun Jul 16 14:24:48 2017 us=870852 cvalencia,10.8.0.8
Sun Jul 16 14:24:48 2017 us=870867 jbrugman,10.8.0.12
Sun Jul 16 14:24:48 2017 us=870882 ccorvala,10.8.0.16
Sun Jul 16 14:24:48 2017 us=870897 nduque,10.8.0.20
Sun Jul 16 14:24:48 2017 us=870912 ocontrer,10.8.0.24
Sun Jul 16 14:24:48 2017 us=870962 Initialization Sequence Completed
Sun Jul 16 14:24:57 2017 us=890547 event_wait : Interrupted system call (code=4)
Sun Jul 16 14:24:57 2017 us=890791 TCP/UDP: Closing socket
Sun Jul 16 14:24:57 2017 us=890864 /sbin/ip route del 10.8.0.0/24
RTNETLINK answers: Operation not permitted
Sun Jul 16 14:24:57 2017 us=892625 ERROR: Linux route delete command failed: external program exited with error status: 2
Sun Jul 16 14:24:57 2017 us=892673 Closing TUN/TAP interface
Sun Jul 16 14:24:57 2017 us=892711 /sbin/ip addr del dev tun0 local 10.8.0.1 peer 10.8.0.2
RTNETLINK answers: Operation not permitted
Sun Jul 16 14:24:57 2017 us=894467 Linux ip addr del failed: external program exited with error status: 2
Sun Jul 16 14:24:57 2017 us=906437 SIGINT[hard,] received, process exiting
This is the error:
Code: Select all
Sun Jul 16 14:24:57 2017 us=892625 ERROR: Linux route delete command failed: external program exited with error status: 2
Sun Jul 16 14:24:57 2017 us=892673 Closing TUN/TAP interface
Sun Jul 16 14:24:57 2017 us=892711 /sbin/ip addr del dev tun0 local 10.8.0.1 peer 10.8.0.2
RTNETLINK answers: Operation not permitted
Sun Jul 16 14:24:57 2017 us=894467 Linux ip addr del failed: external program exited with error status: 2
Sun Jul 16 14:24:57 2017 us=906437 SIGINT[hard,] received, process exiting
* Client *
Operating system:
Code: Select all
C:\Users\sony>ver
Microsoft Windows [Versión 6.3.9600]
client.ovpn
Code: Select all
client
proto udp
dev tun
ca ca.crt
dh dh2048.pem
cert cliente01.crt
key cliente01.key
remote xxx.xxx.xxx.xxx 1194
cipher AES-256-CBC
verb 4
;mute 20
keepalive 10 120
comp-lzo
persist-key
persist-tun
float
resolv-retry infinite
nobind
Client log (at --verb 4)
Code: Select all
Sun Jul 16 14:42:26 2017 pkcs11_protected_authentication = DISABLED
Sun Jul 16 14:42:26 2017 pkcs11_protected_authentication = DISABLED
Sun Jul 16 14:42:26 2017 pkcs11_private_mode = 00000000
Sun Jul 16 14:42:26 2017 pkcs11_private_mode = 00000000
Sun Jul 16 14:42:26 2017 pkcs11_private_mode = 00000000
Sun Jul 16 14:42:26 2017 pkcs11_private_mode = 00000000
Sun Jul 16 14:42:26 2017 pkcs11_private_mode = 00000000
Sun Jul 16 14:42:26 2017 pkcs11_private_mode = 00000000
Sun Jul 16 14:42:26 2017 pkcs11_private_mode = 00000000
Sun Jul 16 14:42:26 2017 pkcs11_private_mode = 00000000
Sun Jul 16 14:42:26 2017 pkcs11_private_mode = 00000000
Sun Jul 16 14:42:26 2017 pkcs11_private_mode = 00000000
Sun Jul 16 14:42:26 2017 pkcs11_private_mode = 00000000
Sun Jul 16 14:42:26 2017 pkcs11_private_mode = 00000000
Sun Jul 16 14:42:26 2017 pkcs11_private_mode = 00000000
Sun Jul 16 14:42:26 2017 pkcs11_private_mode = 00000000
Sun Jul 16 14:42:26 2017 pkcs11_private_mode = 00000000
Sun Jul 16 14:42:26 2017 pkcs11_private_mode = 00000000
Sun Jul 16 14:42:26 2017 pkcs11_cert_private = DISABLED
Sun Jul 16 14:42:26 2017 pkcs11_cert_private = DISABLED
Sun Jul 16 14:42:26 2017 pkcs11_cert_private = DISABLED
Sun Jul 16 14:42:26 2017 pkcs11_cert_private = DISABLED
Sun Jul 16 14:42:26 2017 pkcs11_cert_private = DISABLED
Sun Jul 16 14:42:26 2017 pkcs11_cert_private = DISABLED
Sun Jul 16 14:42:26 2017 pkcs11_cert_private = DISABLED
Sun Jul 16 14:42:26 2017 pkcs11_cert_private = DISABLED
Sun Jul 16 14:42:26 2017 pkcs11_cert_private = DISABLED
Sun Jul 16 14:42:26 2017 pkcs11_cert_private = DISABLED
Sun Jul 16 14:42:26 2017 pkcs11_cert_private = DISABLED
Sun Jul 16 14:42:26 2017 pkcs11_cert_private = DISABLED
Sun Jul 16 14:42:26 2017 pkcs11_cert_private = DISABLED
Sun Jul 16 14:42:26 2017 pkcs11_cert_private = DISABLED
Sun Jul 16 14:42:26 2017 pkcs11_cert_private = DISABLED
Sun Jul 16 14:42:26 2017 pkcs11_cert_private = DISABLED
Sun Jul 16 14:42:26 2017 pkcs11_pin_cache_period = -1
Sun Jul 16 14:42:26 2017 pkcs11_id = '[UNDEF]'
Sun Jul 16 14:42:26 2017 pkcs11_id_management = DISABLED
Sun Jul 16 14:42:26 2017 server_network = 0.0.0.0
Sun Jul 16 14:42:26 2017 server_netmask = 0.0.0.0
Sun Jul 16 14:42:26 2017 server_network_ipv6 = ::
Sun Jul 16 14:42:26 2017 server_netbits_ipv6 = 0
Sun Jul 16 14:42:26 2017 server_bridge_ip = 0.0.0.0
Sun Jul 16 14:42:26 2017 server_bridge_netmask = 0.0.0.0
Sun Jul 16 14:42:26 2017 server_bridge_pool_start = 0.0.0.0
Sun Jul 16 14:42:26 2017 server_bridge_pool_end = 0.0.0.0
Sun Jul 16 14:42:26 2017 ifconfig_pool_defined = DISABLED
Sun Jul 16 14:42:26 2017 ifconfig_pool_start = 0.0.0.0
Sun Jul 16 14:42:26 2017 ifconfig_pool_end = 0.0.0.0
Sun Jul 16 14:42:26 2017 ifconfig_pool_netmask = 0.0.0.0
Sun Jul 16 14:42:26 2017 ifconfig_pool_persist_filename = '[UNDEF]'
Sun Jul 16 14:42:26 2017 ifconfig_pool_persist_refresh_freq = 600
Sun Jul 16 14:42:26 2017 ifconfig_ipv6_pool_defined = DISABLED
Sun Jul 16 14:42:26 2017 ifconfig_ipv6_pool_base = ::
Sun Jul 16 14:42:26 2017 ifconfig_ipv6_pool_netbits = 0
Sun Jul 16 14:42:26 2017 n_bcast_buf = 256
Sun Jul 16 14:42:26 2017 tcp_queue_limit = 64
Sun Jul 16 14:42:26 2017 real_hash_size = 256
Sun Jul 16 14:42:26 2017 virtual_hash_size = 256
Sun Jul 16 14:42:26 2017 client_connect_script = '[UNDEF]'
Sun Jul 16 14:42:26 2017 learn_address_script = '[UNDEF]'
Sun Jul 16 14:42:26 2017 client_disconnect_script = '[UNDEF]'
Sun Jul 16 14:42:26 2017 client_config_dir = '[UNDEF]'
Sun Jul 16 14:42:26 2017 ccd_exclusive = DISABLED
Sun Jul 16 14:42:26 2017 tmp_dir = 'C:\Users\sony\AppData\Local\Temp\'
Sun Jul 16 14:42:26 2017 push_ifconfig_defined = DISABLED
Sun Jul 16 14:42:26 2017 push_ifconfig_local = 0.0.0.0
Sun Jul 16 14:42:26 2017 push_ifconfig_remote_netmask = 0.0.0.0
Sun Jul 16 14:42:26 2017 push_ifconfig_ipv6_defined = DISABLED
Sun Jul 16 14:42:26 2017 push_ifconfig_ipv6_local = ::/0
Sun Jul 16 14:42:26 2017 push_ifconfig_ipv6_remote = ::
Sun Jul 16 14:42:26 2017 enable_c2c = DISABLED
Sun Jul 16 14:42:26 2017 duplicate_cn = DISABLED
Sun Jul 16 14:42:26 2017 cf_max = 0
Sun Jul 16 14:42:26 2017 cf_per = 0
Sun Jul 16 14:42:26 2017 max_clients = 1024
Sun Jul 16 14:42:26 2017 max_routes_per_client = 256
Sun Jul 16 14:42:26 2017 auth_user_pass_verify_script = '[UNDEF]'
Sun Jul 16 14:42:26 2017 auth_user_pass_verify_script_via_file = DISABLED
Sun Jul 16 14:42:26 2017 client = ENABLED
Sun Jul 16 14:42:26 2017 pull = ENABLED
Sun Jul 16 14:42:26 2017 auth_user_pass_file = '[UNDEF]'
Sun Jul 16 14:42:26 2017 show_net_up = DISABLED
Sun Jul 16 14:42:26 2017 route_method = 0
Sun Jul 16 14:42:26 2017 block_outside_dns = DISABLED
Sun Jul 16 14:42:26 2017 ip_win32_defined = DISABLED
Sun Jul 16 14:42:26 2017 ip_win32_type = 3
Sun Jul 16 14:42:26 2017 dhcp_masq_offset = 0
Sun Jul 16 14:42:26 2017 dhcp_lease_time = 31536000
Sun Jul 16 14:42:26 2017 tap_sleep = 0
Sun Jul 16 14:42:26 2017 dhcp_options = DISABLED
Sun Jul 16 14:42:26 2017 dhcp_renew = DISABLED
Sun Jul 16 14:42:26 2017 dhcp_pre_release = DISABLED
Sun Jul 16 14:42:26 2017 dhcp_release = DISABLED
Sun Jul 16 14:42:26 2017 domain = '[UNDEF]'
Sun Jul 16 14:42:26 2017 netbios_scope = '[UNDEF]'
Sun Jul 16 14:42:26 2017 netbios_node_type = 0
Sun Jul 16 14:42:26 2017 disable_nbt = DISABLED
Sun Jul 16 14:42:26 2017 OpenVPN 2.3.13 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [PKCS11] [IPv6] built on Nov 3 2016
Sun Jul 16 14:42:26 2017 Windows version 6.2 (Windows 8 or greater) 64bit
Sun Jul 16 14:42:26 2017 library versions: OpenSSL 1.0.1u 22 Sep 2016, LZO 2.09
Sun Jul 16 14:42:26 2017 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:25342
Sun Jul 16 14:42:26 2017 Need hold release from management interface, waiting...
Sun Jul 16 14:42:27 2017 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:25342
Sun Jul 16 14:42:27 2017 MANAGEMENT: CMD 'state on'
Sun Jul 16 14:42:27 2017 MANAGEMENT: CMD 'log all on'
Sun Jul 16 14:42:27 2017 MANAGEMENT: CMD 'hold off'
Sun Jul 16 14:42:27 2017 MANAGEMENT: CMD 'hold release'
Sun Jul 16 14:42:27 2017 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Sun Jul 16 14:42:27 2017 LZO compression initialized
Sun Jul 16 14:42:27 2017 Control Channel MTU parms [ L:1558 D:1212 EF:38 EB:0 ET:0 EL:3 ]
Sun Jul 16 14:42:27 2017 Socket Buffers: R=[65536->65536] S=[65536->65536]
Sun Jul 16 14:42:27 2017 Data Channel MTU parms [ L:1558 D:1450 EF:58 EB:143 ET:0 EL:3 AF:3/1 ]
Sun Jul 16 14:42:27 2017 Local Options String: 'V4,dev-type tun,link-mtu 1558,tun-mtu 1500,proto UDPv4,comp-lzo,cipher AES-256-CBC,auth SHA1,keysize 256,key-method 2,tls-client'
Sun Jul 16 14:42:27 2017 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1558,tun-mtu 1500,proto UDPv4,comp-lzo,cipher AES-256-CBC,auth SHA1,keysize 256,key-method 2,tls-server'
Sun Jul 16 14:42:27 2017 Local Options hash (VER=V4): '22188c5b'
Sun Jul 16 14:42:27 2017 Expected Remote Options hash (VER=V4): 'a8f55717'
Sun Jul 16 14:42:27 2017 UDPv4 link local: [undef]
Sun Jul 16 14:42:27 2017 UDPv4 link remote: [AF_INET]xxx.xxx.xxx.xxx:1194
Sun Jul 16 14:42:27 2017 MANAGEMENT: >STATE:1500230547,WAIT,,,
Sun Jul 16 14:42:33 2017 read UDPv4: Connection reset by peer (WSAECONNRESET) (code=10054)
Thank you for your help.