I set up a new OpenVPN Server and Client using ca and certificates and tap interface. I've done that several times before with no problems. Now I found a strange behavior on a Windows 10 Client. I use in .ovpn file this line:
Code: Select all
cipher AES-256-CBC
Code: Select all
Mon Feb 13 07:58:33 2017 Uli-Firma-Client/82.198.217.44:50112 Data Channel Encrypt: Cipher 'AES-256-GCM' initialized with 256 bit key
Mon Feb 13 07:58:33 2017 Uli-Firma-Client/82.198.217.44:50112 Data Channel Decrypt: Cipher 'AES-256-GCM' initialized with 256 bit key
M
The result is, the tunnel comes up but no comunication is posible for the first 30 seconds. after that the tunnel works fine and all the "Outgoing TUN queue full, dropped packet" log entrys stopped.
The log file on Server side looks like this:
Code: Select all
Mon Feb 13 07:58:32 2017 82.198.217.44:50112 peer info: IV_VER=2.4.0
Mon Feb 13 07:58:32 2017 82.198.217.44:50112 peer info: IV_PLAT=win
Mon Feb 13 07:58:32 2017 82.198.217.44:50112 peer info: IV_PROTO=2
Mon Feb 13 07:58:32 2017 82.198.217.44:50112 peer info: IV_NCP=2
Mon Feb 13 07:58:32 2017 82.198.217.44:50112 peer info: IV_LZ4=1
Mon Feb 13 07:58:32 2017 82.198.217.44:50112 peer info: IV_LZ4v2=1
Mon Feb 13 07:58:32 2017 82.198.217.44:50112 peer info: IV_LZO=1
Mon Feb 13 07:58:32 2017 82.198.217.44:50112 peer info: IV_COMP_STUB=1
Mon Feb 13 07:58:32 2017 82.198.217.44:50112 peer info: IV_COMP_STUBv2=1
Mon Feb 13 07:58:32 2017 82.198.217.44:50112 peer info: IV_TCPNL=1
Mon Feb 13 07:58:32 2017 82.198.217.44:50112 Control Channel: TLSv1.2, cipher TLSv1/SSLv3 ECDHE-RSA-AES256-GCM-SHA384, 1024 bit RSA
Mon Feb 13 07:58:32 2017 82.198.217.44:50112 [Uli-Firma-Client] Peer Connection Initiated with [AF_INET]82.198.217.44:50112
Mon Feb 13 07:58:32 2017 Uli-Firma-Client/82.198.217.44:50112 OPTIONS IMPORT: reading client specific options from: C:\Program Files\OpenVPN\config\Uli-Firma-Client
Mon Feb 13 07:58:33 2017 Uli-Firma-Client/82.198.217.44:50112 PUSH: Received control message: 'PUSH_REQUEST'
Mon Feb 13 07:58:33 2017 Uli-Firma-Client/82.198.217.44:50112 SENT CONTROL [Uli-Firma-Client]: 'PUSH_REPLY,route-gateway 10.1.1.1,route 192.168.25.0 255.255.255.0,ping 10,ping-restart 120,ifconfig 10.1.1.2 255.255.255.0,peer-id 0,cipher AES-256-GCM' (status=1)
Mon Feb 13 07:58:33 2017 Uli-Firma-Client/82.198.217.44:50112 Data Channel Encrypt: Cipher 'AES-256-GCM' initialized with 256 bit key
Mon Feb 13 07:58:33 2017 Uli-Firma-Client/82.198.217.44:50112 Data Channel Decrypt: Cipher 'AES-256-GCM' initialized with 256 bit key
Mon Feb 13 07:58:33 2017 Uli-Firma-Client/82.198.217.44:50112 MULTI: Learn: 00:ff:1f:cc:a3:0c -> Uli-Firma-Client/82.198.217.44:50112
Mon Feb 13 07:58:37 2017 Uli-Firma-Client/82.198.217.44:50112 MULTI: Outgoing TUN queue full, dropped packet len=42
Mon Feb 13 07:58:38 2017 Uli-Firma-Client/82.198.217.44:50112 MULTI: Outgoing TUN queue full, dropped packet len=666
Mon Feb 13 07:58:39 2017 Uli-Firma-Client/82.198.217.44:50112 MULTI: Outgoing TUN queue full, dropped packet len=110
Mon Feb 13 07:58:40 2017 Uli-Firma-Client/82.198.217.44:50112 MULTI: Outgoing TUN queue full, dropped packet len=92
Mon Feb 13 07:58:41 2017 Uli-Firma-Client/82.198.217.44:50112 MULTI: Outgoing TUN queue full, dropped packet len=179
Mon Feb 13 07:58:42 2017 Uli-Firma-Client/82.198.217.44:50112 MULTI: Outgoing TUN queue full, dropped packet len=110
Mon Feb 13 07:58:43 2017 Uli-Firma-Client/82.198.217.44:50112 MULTI: Outgoing TUN queue full, dropped packet len=92
Mon Feb 13 07:58:44 2017 Uli-Firma-Client/82.198.217.44:50112 MULTI: Outgoing TUN queue full, dropped packet len=92
Mon Feb 13 07:58:45 2017 Uli-Firma-Client/82.198.217.44:50112 MULTI: Outgoing TUN queue full, dropped packet len=92
Mon Feb 13 07:58:46 2017 Uli-Firma-Client/82.198.217.44:50112 MULTI: Outgoing TUN queue full, dropped packet len=66
Mon Feb 13 07:58:47 2017 Uli-Firma-Client/82.198.217.44:50112 MULTI: Outgoing TUN queue full, dropped packet len=66
Server is a Windows 2008R2 System.
Best regards Uli