Cannot connect to DDWRT router

Need help configuring your VPN? Just post here and you'll get that help.

Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech

Forum rules
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
Post Reply
estarna
OpenVpn Newbie
Posts: 9
Joined: Thu Aug 17, 2017 6:02 pm

Cannot connect to DDWRT router

Post by estarna » Thu Aug 17, 2017 6:23 pm

Hi there,

I have a DDWRT Router configured as OpenVPN server. I have trouble to connect to it from outside from a Windows 10 Pro 64Bit.

It is quite new to me, I learned a few thing in the last days, but now I''m stuck.

Also the status indicator of OpenVPN is yellow.

Server is configured as followed. Certificates are in place and no additionnals commands are added.

My lan is 10.0.0.x

OpenVPN: Enable
Start Type WAN Up
Config as Server
Server modeRouter (TUN)
Network 10.0.0.40.0
Netmask 255.255.255.0
Port 2255
Tunnel Protocol TCP
Encryption Cipher AES-128-CBC
Hash Algorithm SHA256
Tunnel MTU setting 1500



My client is configured as followed:

client
dev tun
proto tcp
remote xx.xx.xx.xx 2255
resolv-retry infinite
nobind
persist-key
persist-tun
ca ca.crt
cert client.crt
key client.key
remote-cert-tls server
cipher AES-128-CBC
verb 5

My last log from Open VPN Windows client:

Thu Aug 17 13:57:00 2017 us=788696 Current Parameter Settings:
Thu Aug 17 13:57:00 2017 us=788696 config = 'client.ovpn'
Thu Aug 17 13:57:00 2017 us=788696 mode = 0
Thu Aug 17 13:57:00 2017 us=788696 show_ciphers = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 show_digests = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 show_engines = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 genkey = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 key_pass_file = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 show_tls_ciphers = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 connect_retry_max = 0
Thu Aug 17 13:57:00 2017 us=788696 Connection profiles [0]:
Thu Aug 17 13:57:00 2017 us=788696 proto = tcp-client
Thu Aug 17 13:57:00 2017 us=788696 local = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 local_port = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 remote = 'xx.xx.xx.xx'
Thu Aug 17 13:57:00 2017 us=788696 remote_port = '2255'
Thu Aug 17 13:57:00 2017 us=788696 remote_float = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 bind_defined = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 bind_local = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 bind_ipv6_only = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 connect_retry_seconds = 5
Thu Aug 17 13:57:00 2017 us=788696 connect_timeout = 120
Thu Aug 17 13:57:00 2017 us=788696 socks_proxy_server = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 socks_proxy_port = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 tun_mtu = 1500
Thu Aug 17 13:57:00 2017 us=788696 tun_mtu_defined = ENABLED
Thu Aug 17 13:57:00 2017 us=788696 link_mtu = 1500
Thu Aug 17 13:57:00 2017 us=788696 link_mtu_defined = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 tun_mtu_extra = 0
Thu Aug 17 13:57:00 2017 us=788696 tun_mtu_extra_defined = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 mtu_discover_type = -1
Thu Aug 17 13:57:00 2017 us=788696 fragment = 0
Thu Aug 17 13:57:00 2017 us=788696 mssfix = 1450
Thu Aug 17 13:57:00 2017 us=788696 explicit_exit_notification = 0
Thu Aug 17 13:57:00 2017 us=788696 Connection profiles END
Thu Aug 17 13:57:00 2017 us=788696 remote_random = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 ipchange = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 dev = 'tun'
Thu Aug 17 13:57:00 2017 us=788696 dev_type = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 dev_node = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 lladdr = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 topology = 1
Thu Aug 17 13:57:00 2017 us=788696 ifconfig_local = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 ifconfig_remote_netmask = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 ifconfig_noexec = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 ifconfig_nowarn = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 ifconfig_ipv6_local = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 ifconfig_ipv6_netbits = 0
Thu Aug 17 13:57:00 2017 us=788696 ifconfig_ipv6_remote = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 shaper = 0
Thu Aug 17 13:57:00 2017 us=788696 mtu_test = 0
Thu Aug 17 13:57:00 2017 us=788696 mlock = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 keepalive_ping = 0
Thu Aug 17 13:57:00 2017 us=788696 keepalive_timeout = 0
Thu Aug 17 13:57:00 2017 us=788696 inactivity_timeout = 0
Thu Aug 17 13:57:00 2017 us=788696 ping_send_timeout = 0
Thu Aug 17 13:57:00 2017 us=788696 ping_rec_timeout = 0
Thu Aug 17 13:57:00 2017 us=788696 ping_rec_timeout_action = 0
Thu Aug 17 13:57:00 2017 us=788696 ping_timer_remote = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 remap_sigusr1 = 0
Thu Aug 17 13:57:00 2017 us=788696 persist_tun = ENABLED
Thu Aug 17 13:57:00 2017 us=788696 persist_local_ip = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 persist_remote_ip = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 persist_key = ENABLED
Thu Aug 17 13:57:00 2017 us=788696 passtos = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 resolve_retry_seconds = 1000000000
Thu Aug 17 13:57:00 2017 us=788696 resolve_in_advance = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 username = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 groupname = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 chroot_dir = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 cd_dir = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 writepid = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 up_script = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 down_script = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 down_pre = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 up_restart = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 up_delay = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 daemon = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 inetd = 0
Thu Aug 17 13:57:00 2017 us=788696 log = ENABLED
Thu Aug 17 13:57:00 2017 us=788696 suppress_timestamps = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 machine_readable_output = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 nice = 0
Thu Aug 17 13:57:00 2017 us=788696 verbosity = 5
Thu Aug 17 13:57:00 2017 us=788696 mute = 0
Thu Aug 17 13:57:00 2017 us=788696 gremlin = 0
Thu Aug 17 13:57:00 2017 us=788696 status_file = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 status_file_version = 1
Thu Aug 17 13:57:00 2017 us=788696 status_file_update_freq = 60
Thu Aug 17 13:57:00 2017 us=788696 occ = ENABLED
Thu Aug 17 13:57:00 2017 us=788696 rcvbuf = 0
Thu Aug 17 13:57:00 2017 us=788696 sndbuf = 0
Thu Aug 17 13:57:00 2017 us=788696 sockflags = 0
Thu Aug 17 13:57:00 2017 us=788696 fast_io = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 comp.alg = 0
Thu Aug 17 13:57:00 2017 us=788696 comp.flags = 0
Thu Aug 17 13:57:00 2017 us=788696 route_script = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 route_default_gateway = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 route_default_metric = 0
Thu Aug 17 13:57:00 2017 us=788696 route_noexec = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 route_delay = 5
Thu Aug 17 13:57:00 2017 us=788696 route_delay_window = 30
Thu Aug 17 13:57:00 2017 us=788696 route_delay_defined = ENABLED
Thu Aug 17 13:57:00 2017 us=788696 route_nopull = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 route_gateway_via_dhcp = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 allow_pull_fqdn = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 management_addr = '127.0.0.1'
Thu Aug 17 13:57:00 2017 us=788696 management_port = '25341'
Thu Aug 17 13:57:00 2017 us=788696 management_user_pass = 'stdin'
Thu Aug 17 13:57:00 2017 us=788696 management_log_history_cache = 250
Thu Aug 17 13:57:00 2017 us=788696 management_echo_buffer_size = 100
Thu Aug 17 13:57:00 2017 us=788696 management_write_peer_info_file = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 management_client_user = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 management_client_group = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 management_flags = 6
Thu Aug 17 13:57:00 2017 us=788696 shared_secret_file = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 key_direction = 0
Thu Aug 17 13:57:00 2017 us=788696 ciphername = 'AES-128-CBC'
Thu Aug 17 13:57:00 2017 us=788696 ncp_enabled = ENABLED
Thu Aug 17 13:57:00 2017 us=788696 ncp_ciphers = 'AES-256-GCM:AES-128-GCM'
Thu Aug 17 13:57:00 2017 us=788696 authname = 'SHA1'
Thu Aug 17 13:57:00 2017 us=788696 prng_hash = 'SHA1'
Thu Aug 17 13:57:00 2017 us=788696 prng_nonce_secret_len = 16
Thu Aug 17 13:57:00 2017 us=788696 keysize = 0
Thu Aug 17 13:57:00 2017 us=788696 engine = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 replay = ENABLED
Thu Aug 17 13:57:00 2017 us=788696 mute_replay_warnings = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 replay_window = 64
Thu Aug 17 13:57:00 2017 us=788696 replay_time = 15
Thu Aug 17 13:57:00 2017 us=788696 packet_id_file = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 use_iv = ENABLED
Thu Aug 17 13:57:00 2017 us=788696 test_crypto = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 tls_server = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 tls_client = ENABLED
Thu Aug 17 13:57:00 2017 us=788696 key_method = 2
Thu Aug 17 13:57:00 2017 us=788696 ca_file = 'ca.crt'
Thu Aug 17 13:57:00 2017 us=788696 ca_path = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 dh_file = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 cert_file = 'client.crt'
Thu Aug 17 13:57:00 2017 us=788696 extra_certs_file = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 priv_key_file = 'client.key'
Thu Aug 17 13:57:00 2017 us=788696 pkcs12_file = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 cryptoapi_cert = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 cipher_list = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 tls_verify = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 tls_export_cert = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 verify_x509_type = 0
Thu Aug 17 13:57:00 2017 us=788696 verify_x509_name = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 crl_file = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 ns_cert_type = 0
Thu Aug 17 13:57:00 2017 us=788696 remote_cert_ku = 65535
Thu Aug 17 13:57:00 2017 us=788696 remote_cert_ku = 0
Thu Aug 17 13:57:00 2017 us=788696 remote_cert_ku = 0
Thu Aug 17 13:57:00 2017 us=788696 remote_cert_ku = 0
Thu Aug 17 13:57:00 2017 us=788696 remote_cert_ku = 0
Thu Aug 17 13:57:00 2017 us=788696 remote_cert_ku = 0
Thu Aug 17 13:57:00 2017 us=788696 remote_cert_ku = 0
Thu Aug 17 13:57:00 2017 us=788696 remote_cert_ku = 0
Thu Aug 17 13:57:00 2017 us=788696 remote_cert_ku = 0
Thu Aug 17 13:57:00 2017 us=788696 remote_cert_ku = 0
Thu Aug 17 13:57:00 2017 us=788696 remote_cert_ku[i] = 0
Thu Aug 17 13:57:00 2017 us=788696 remote_cert_ku[i] = 0
Thu Aug 17 13:57:00 2017 us=788696 remote_cert_ku[i] = 0
Thu Aug 17 13:57:00 2017 us=788696 remote_cert_ku[i] = 0
Thu Aug 17 13:57:00 2017 us=788696 remote_cert_ku[i] = 0
Thu Aug 17 13:57:00 2017 us=788696 remote_cert_ku[i] = 0
Thu Aug 17 13:57:00 2017 us=788696 remote_cert_eku = 'TLS Web Server Authentication'
Thu Aug 17 13:57:00 2017 us=788696 ssl_flags = 0
Thu Aug 17 13:57:00 2017 us=788696 tls_timeout = 2
Thu Aug 17 13:57:00 2017 us=788696 renegotiate_bytes = -1
Thu Aug 17 13:57:00 2017 us=788696 renegotiate_packets = 0
Thu Aug 17 13:57:00 2017 us=788696 renegotiate_seconds = 3600
Thu Aug 17 13:57:00 2017 us=788696 handshake_window = 60
Thu Aug 17 13:57:00 2017 us=788696 transition_window = 3600
Thu Aug 17 13:57:00 2017 us=788696 single_session = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 push_peer_info = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 tls_exit = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 tls_auth_file = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 tls_crypt_file = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_protected_authentication = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_protected_authentication = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_protected_authentication = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_protected_authentication = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_protected_authentication = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_protected_authentication = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_protected_authentication = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_protected_authentication = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_protected_authentication = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_protected_authentication = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_protected_authentication = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_protected_authentication = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_protected_authentication = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_protected_authentication = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_protected_authentication = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_protected_authentication = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_private_mode = 00000000
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_private_mode = 00000000
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_private_mode = 00000000
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_private_mode = 00000000
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_private_mode = 00000000
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_private_mode = 00000000
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_private_mode = 00000000
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_private_mode = 00000000
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_private_mode = 00000000
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_private_mode = 00000000
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_private_mode = 00000000
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_private_mode = 00000000
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_private_mode = 00000000
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_private_mode = 00000000
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_private_mode = 00000000
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_private_mode = 00000000
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_cert_private = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_cert_private = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_cert_private = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_cert_private = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_cert_private = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_cert_private = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_cert_private = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_cert_private = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_cert_private = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_cert_private = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_cert_private = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_cert_private = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_cert_private = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_cert_private = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_cert_private = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_cert_private = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_pin_cache_period = -1
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_id = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 pkcs11_id_management = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 server_network = 0.0.0.0
Thu Aug 17 13:57:00 2017 us=788696 server_netmask = 0.0.0.0
Thu Aug 17 13:57:00 2017 us=788696 server_network_ipv6 = ::
Thu Aug 17 13:57:00 2017 us=788696 server_netbits_ipv6 = 0
Thu Aug 17 13:57:00 2017 us=788696 server_bridge_ip = 0.0.0.0
Thu Aug 17 13:57:00 2017 us=788696 server_bridge_netmask = 0.0.0.0
Thu Aug 17 13:57:00 2017 us=788696 server_bridge_pool_start = 0.0.0.0
Thu Aug 17 13:57:00 2017 us=788696 server_bridge_pool_end = 0.0.0.0
Thu Aug 17 13:57:00 2017 us=788696 ifconfig_pool_defined = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 ifconfig_pool_start = 0.0.0.0
Thu Aug 17 13:57:00 2017 us=788696 ifconfig_pool_end = 0.0.0.0
Thu Aug 17 13:57:00 2017 us=788696 ifconfig_pool_netmask = 0.0.0.0
Thu Aug 17 13:57:00 2017 us=788696 ifconfig_pool_persist_filename = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 ifconfig_pool_persist_refresh_freq = 600
Thu Aug 17 13:57:00 2017 us=788696 ifconfig_ipv6_pool_defined = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 ifconfig_ipv6_pool_base = ::
Thu Aug 17 13:57:00 2017 us=788696 ifconfig_ipv6_pool_netbits = 0
Thu Aug 17 13:57:00 2017 us=788696 n_bcast_buf = 256
Thu Aug 17 13:57:00 2017 us=788696 tcp_queue_limit = 64
Thu Aug 17 13:57:00 2017 us=788696 real_hash_size = 256
Thu Aug 17 13:57:00 2017 us=788696 virtual_hash_size = 256
Thu Aug 17 13:57:00 2017 us=788696 client_connect_script = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 learn_address_script = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 client_disconnect_script = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 client_config_dir = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 ccd_exclusive = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 tmp_dir = 'C:\Users\UTILIS~1\AppData\Local\Temp\'
Thu Aug 17 13:57:00 2017 us=788696 push_ifconfig_defined = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 push_ifconfig_local = 0.0.0.0
Thu Aug 17 13:57:00 2017 us=788696 push_ifconfig_remote_netmask = 0.0.0.0
Thu Aug 17 13:57:00 2017 us=788696 push_ifconfig_ipv6_defined = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 push_ifconfig_ipv6_local = ::/0
Thu Aug 17 13:57:00 2017 us=788696 push_ifconfig_ipv6_remote = ::
Thu Aug 17 13:57:00 2017 us=788696 enable_c2c = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 duplicate_cn = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 cf_max = 0
Thu Aug 17 13:57:00 2017 us=788696 cf_per = 0
Thu Aug 17 13:57:00 2017 us=788696 max_clients = 1024
Thu Aug 17 13:57:00 2017 us=788696 max_routes_per_client = 256
Thu Aug 17 13:57:00 2017 us=788696 auth_user_pass_verify_script = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 auth_user_pass_verify_script_via_file = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 auth_token_generate = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 auth_token_lifetime = 0
Thu Aug 17 13:57:00 2017 us=788696 client = ENABLED
Thu Aug 17 13:57:00 2017 us=788696 pull = ENABLED
Thu Aug 17 13:57:00 2017 us=788696 auth_user_pass_file = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 show_net_up = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 route_method = 0
Thu Aug 17 13:57:00 2017 us=788696 block_outside_dns = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 ip_win32_defined = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 ip_win32_type = 3
Thu Aug 17 13:57:00 2017 us=788696 dhcp_masq_offset = 0
Thu Aug 17 13:57:00 2017 us=788696 dhcp_lease_time = 31536000
Thu Aug 17 13:57:00 2017 us=788696 tap_sleep = 0
Thu Aug 17 13:57:00 2017 us=788696 dhcp_options = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 dhcp_renew = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 dhcp_pre_release = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 domain = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 netbios_scope = '[UNDEF]'
Thu Aug 17 13:57:00 2017 us=788696 netbios_node_type = 0
Thu Aug 17 13:57:00 2017 us=788696 disable_nbt = DISABLED
Thu Aug 17 13:57:00 2017 us=788696 OpenVPN 2.4.3 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [AEAD] built on Jul 14 2017
Thu Aug 17 13:57:00 2017 us=788696 Windows version 6.2 (Windows 8 or greater) 64bit
Thu Aug 17 13:57:00 2017 us=788696 library versions: OpenSSL 1.0.2l 25 May 2017, LZO 2.10
Enter Management Password:
Thu Aug 17 13:57:00 2017 us=788696 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:25341
Thu Aug 17 13:57:00 2017 us=788696 Need hold release from management interface, waiting...
Thu Aug 17 13:57:01 2017 us=288737 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:25341
Thu Aug 17 13:57:01 2017 us=398114 MANAGEMENT: CMD 'state on'
Thu Aug 17 13:57:01 2017 us=398114 MANAGEMENT: CMD 'log all on'
Thu Aug 17 13:57:01 2017 us=944982 MANAGEMENT: CMD 'echo all on'
Thu Aug 17 13:57:01 2017 us=944982 MANAGEMENT: CMD 'hold off'
Thu Aug 17 13:57:01 2017 us=960586 MANAGEMENT: CMD 'hold release'
Thu Aug 17 13:57:02 2017 us=38724 Control Channel MTU parms [ L:1623 D:1210 EF:40 EB:0 ET:0 EL:3 ]
Thu Aug 17 13:57:02 2017 us=38724 Data Channel MTU parms [ L:1623 D:1450 EF:123 EB:406 ET:0 EL:3 ]
Thu Aug 17 13:57:02 2017 us=38724 Local Options String (VER=V4): 'V4,dev-type tun,link-mtu 1559,tun-mtu 1500,proto TCPv4_CLIENT,cipher AES-128-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Thu Aug 17 13:57:02 2017 us=38724 Expected Remote Options String (VER=V4): 'V4,dev-type tun,link-mtu 1559,tun-mtu 1500,proto TCPv4_SERVER,cipher AES-128-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Thu Aug 17 13:57:02 2017 us=38724 TCP/UDP: Preserving recently used remote address: [AF_INET]xx.xx.xx.xx:2255
Thu Aug 17 13:57:02 2017 us=38724 Socket Buffers: R=[65536->65536] S=[65536->65536]
Thu Aug 17 13:57:02 2017 us=38724 Attempting to establish TCP connection with [AF_INET]xx.xx.xx.xx:2255 [nonblock]
Thu Aug 17 13:57:02 2017 us=38724 MANAGEMENT: >STATE:1502992622,TCP_CONNECT,,,,,,
Thu Aug 17 13:57:07 2017 us=491927 MANAGEMENT: CMD 'signal SIGHUP'
Thu Aug 17 13:57:07 2017 us=491927 TCP/UDP: Closing socket
Thu Aug 17 13:57:07 2017 us=491927 SIGHUP[hard,init_instance] received, process restarting
Thu Aug 17 13:57:07 2017 us=491927 MANAGEMENT: >STATE:1502992627,RECONNECTING,init_instance,,,,,
Thu Aug 17 13:57:07 2017 us=491927 Current Parameter Settings:
Thu Aug 17 13:57:07 2017 us=491927 config = 'client.ovpn'
Thu Aug 17 13:57:07 2017 us=491927 mode = 0
Thu Aug 17 13:57:07 2017 us=491927 show_ciphers = DISABLED
Thu Aug 17 13:57:07 2017 us=491927 show_digests = DISABLED
Thu Aug 17 13:57:07 2017 us=491927 show_engines = DISABLED
Thu Aug 17 13:57:07 2017 us=491927 genkey = DISABLED
Thu Aug 17 13:57:07 2017 us=491927 key_pass_file = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=491927 show_tls_ciphers = DISABLED
Thu Aug 17 13:57:07 2017 us=491927 connect_retry_max = 0
Thu Aug 17 13:57:07 2017 us=491927 Connection profiles [0]:
Thu Aug 17 13:57:07 2017 us=491927 proto = tcp-client
Thu Aug 17 13:57:07 2017 us=491927 local = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=491927 local_port = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=491927 remote = 'xx.xx.xx.xx'
Thu Aug 17 13:57:07 2017 us=491927 remote_port = '2255'
Thu Aug 17 13:57:07 2017 us=491927 remote_float = DISABLED
Thu Aug 17 13:57:07 2017 us=491927 bind_defined = DISABLED
Thu Aug 17 13:57:07 2017 us=491927 bind_local = DISABLED
Thu Aug 17 13:57:07 2017 us=491927 bind_ipv6_only = DISABLED
Thu Aug 17 13:57:07 2017 us=491927 connect_retry_seconds = 5
Thu Aug 17 13:57:07 2017 us=491927 connect_timeout = 120
Thu Aug 17 13:57:07 2017 us=491927 socks_proxy_server = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=491927 socks_proxy_port = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=491927 tun_mtu = 1500
Thu Aug 17 13:57:07 2017 us=491927 tun_mtu_defined = ENABLED
Thu Aug 17 13:57:07 2017 us=491927 link_mtu = 1500
Thu Aug 17 13:57:07 2017 us=491927 link_mtu_defined = DISABLED
Thu Aug 17 13:57:07 2017 us=491927 tun_mtu_extra = 0
Thu Aug 17 13:57:07 2017 us=491927 tun_mtu_extra_defined = DISABLED
Thu Aug 17 13:57:07 2017 us=491927 mtu_discover_type = -1
Thu Aug 17 13:57:07 2017 us=491927 fragment = 0
Thu Aug 17 13:57:07 2017 us=491927 mssfix = 1450
Thu Aug 17 13:57:07 2017 us=491927 explicit_exit_notification = 0
Thu Aug 17 13:57:07 2017 us=491927 Connection profiles END
Thu Aug 17 13:57:07 2017 us=491927 remote_random = DISABLED
Thu Aug 17 13:57:07 2017 us=491927 ipchange = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=491927 dev = 'tun'
Thu Aug 17 13:57:07 2017 us=491927 dev_type = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=491927 dev_node = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=491927 lladdr = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=491927 topology = 1
Thu Aug 17 13:57:07 2017 us=491927 ifconfig_local = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=491927 ifconfig_remote_netmask = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=491927 ifconfig_noexec = DISABLED
Thu Aug 17 13:57:07 2017 us=491927 ifconfig_nowarn = DISABLED
Thu Aug 17 13:57:07 2017 us=491927 ifconfig_ipv6_local = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=491927 ifconfig_ipv6_netbits = 0
Thu Aug 17 13:57:07 2017 us=491927 ifconfig_ipv6_remote = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=491927 shaper = 0
Thu Aug 17 13:57:07 2017 us=491927 mtu_test = 0
Thu Aug 17 13:57:07 2017 us=491927 mlock = DISABLED
Thu Aug 17 13:57:07 2017 us=491927 keepalive_ping = 0
Thu Aug 17 13:57:07 2017 us=491927 keepalive_timeout = 0
Thu Aug 17 13:57:07 2017 us=491927 inactivity_timeout = 0
Thu Aug 17 13:57:07 2017 us=491927 ping_send_timeout = 0
Thu Aug 17 13:57:07 2017 us=491927 ping_rec_timeout = 0
Thu Aug 17 13:57:07 2017 us=491927 ping_rec_timeout_action = 0
Thu Aug 17 13:57:07 2017 us=491927 ping_timer_remote = DISABLED
Thu Aug 17 13:57:07 2017 us=491927 remap_sigusr1 = 0
Thu Aug 17 13:57:07 2017 us=491927 persist_tun = ENABLED
Thu Aug 17 13:57:07 2017 us=491927 persist_local_ip = DISABLED
Thu Aug 17 13:57:07 2017 us=491927 persist_remote_ip = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 persist_key = ENABLED
Thu Aug 17 13:57:07 2017 us=507518 passtos = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 resolve_retry_seconds = 1000000000
Thu Aug 17 13:57:07 2017 us=507518 resolve_in_advance = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 username = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=507518 groupname = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=507518 chroot_dir = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=507518 cd_dir = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=507518 writepid = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=507518 up_script = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=507518 down_script = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=507518 down_pre = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 up_restart = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 up_delay = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 daemon = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 inetd = 0
Thu Aug 17 13:57:07 2017 us=507518 log = ENABLED
Thu Aug 17 13:57:07 2017 us=507518 suppress_timestamps = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 machine_readable_output = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 nice = 0
Thu Aug 17 13:57:07 2017 us=507518 verbosity = 5
Thu Aug 17 13:57:07 2017 us=507518 mute = 0
Thu Aug 17 13:57:07 2017 us=507518 gremlin = 0
Thu Aug 17 13:57:07 2017 us=507518 status_file = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=507518 status_file_version = 1
Thu Aug 17 13:57:07 2017 us=507518 status_file_update_freq = 60
Thu Aug 17 13:57:07 2017 us=507518 occ = ENABLED
Thu Aug 17 13:57:07 2017 us=507518 rcvbuf = 0
Thu Aug 17 13:57:07 2017 us=507518 sndbuf = 0
Thu Aug 17 13:57:07 2017 us=507518 sockflags = 0
Thu Aug 17 13:57:07 2017 us=507518 fast_io = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 comp.alg = 0
Thu Aug 17 13:57:07 2017 us=507518 comp.flags = 0
Thu Aug 17 13:57:07 2017 us=507518 route_script = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=507518 route_default_gateway = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=507518 route_default_metric = 0
Thu Aug 17 13:57:07 2017 us=507518 route_noexec = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 route_delay = 5
Thu Aug 17 13:57:07 2017 us=507518 route_delay_window = 30
Thu Aug 17 13:57:07 2017 us=507518 route_delay_defined = ENABLED
Thu Aug 17 13:57:07 2017 us=507518 route_nopull = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 route_gateway_via_dhcp = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 allow_pull_fqdn = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 management_addr = '127.0.0.1'
Thu Aug 17 13:57:07 2017 us=507518 management_port = '25341'
Thu Aug 17 13:57:07 2017 us=507518 management_user_pass = 'stdin'
Thu Aug 17 13:57:07 2017 us=507518 management_log_history_cache = 250
Thu Aug 17 13:57:07 2017 us=507518 management_echo_buffer_size = 100
Thu Aug 17 13:57:07 2017 us=507518 management_write_peer_info_file = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=507518 management_client_user = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=507518 management_client_group = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=507518 management_flags = 6
Thu Aug 17 13:57:07 2017 us=507518 shared_secret_file = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=507518 key_direction = 0
Thu Aug 17 13:57:07 2017 us=507518 ciphername = 'AES-128-CBC'
Thu Aug 17 13:57:07 2017 us=507518 ncp_enabled = ENABLED
Thu Aug 17 13:57:07 2017 us=507518 ncp_ciphers = 'AES-256-GCM:AES-128-GCM'
Thu Aug 17 13:57:07 2017 us=507518 authname = 'SHA1'
Thu Aug 17 13:57:07 2017 us=507518 prng_hash = 'SHA1'
Thu Aug 17 13:57:07 2017 us=507518 prng_nonce_secret_len = 16
Thu Aug 17 13:57:07 2017 us=507518 keysize = 0
Thu Aug 17 13:57:07 2017 us=507518 engine = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 replay = ENABLED
Thu Aug 17 13:57:07 2017 us=507518 mute_replay_warnings = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 replay_window = 64
Thu Aug 17 13:57:07 2017 us=507518 replay_time = 15
Thu Aug 17 13:57:07 2017 us=507518 packet_id_file = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=507518 use_iv = ENABLED
Thu Aug 17 13:57:07 2017 us=507518 test_crypto = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 tls_server = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 tls_client = ENABLED
Thu Aug 17 13:57:07 2017 us=507518 key_method = 2
Thu Aug 17 13:57:07 2017 us=507518 ca_file = 'ca.crt'
Thu Aug 17 13:57:07 2017 us=507518 ca_path = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=507518 dh_file = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=507518 cert_file = 'client.crt'
Thu Aug 17 13:57:07 2017 us=507518 extra_certs_file = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=507518 priv_key_file = 'client.key'
Thu Aug 17 13:57:07 2017 us=507518 pkcs12_file = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=507518 cryptoapi_cert = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=507518 cipher_list = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=507518 tls_verify = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=507518 tls_export_cert = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=507518 verify_x509_type = 0
Thu Aug 17 13:57:07 2017 us=507518 verify_x509_name = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=507518 crl_file = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=507518 ns_cert_type = 0
Thu Aug 17 13:57:07 2017 us=507518 remote_cert_ku[i] = 65535
Thu Aug 17 13:57:07 2017 us=507518 remote_cert_ku[i] = 0
Thu Aug 17 13:57:07 2017 us=507518 remote_cert_ku[i] = 0
Thu Aug 17 13:57:07 2017 us=507518 remote_cert_ku[i] = 0
Thu Aug 17 13:57:07 2017 us=507518 remote_cert_ku[i] = 0
Thu Aug 17 13:57:07 2017 us=507518 remote_cert_ku[i] = 0
Thu Aug 17 13:57:07 2017 us=507518 remote_cert_ku[i] = 0
Thu Aug 17 13:57:07 2017 us=507518 remote_cert_ku[i] = 0
Thu Aug 17 13:57:07 2017 us=507518 remote_cert_ku[i] = 0
Thu Aug 17 13:57:07 2017 us=507518 remote_cert_ku[i] = 0
Thu Aug 17 13:57:07 2017 us=507518 remote_cert_ku[i] = 0
Thu Aug 17 13:57:07 2017 us=507518 remote_cert_ku[i] = 0
Thu Aug 17 13:57:07 2017 us=507518 remote_cert_ku[i] = 0
Thu Aug 17 13:57:07 2017 us=507518 remote_cert_ku[i] = 0
Thu Aug 17 13:57:07 2017 us=507518 remote_cert_ku[i] = 0
Thu Aug 17 13:57:07 2017 us=507518 remote_cert_ku[i] = 0
Thu Aug 17 13:57:07 2017 us=507518 remote_cert_eku = 'TLS Web Server Authentication'
Thu Aug 17 13:57:07 2017 us=507518 ssl_flags = 0
Thu Aug 17 13:57:07 2017 us=507518 tls_timeout = 2
Thu Aug 17 13:57:07 2017 us=507518 renegotiate_bytes = -1
Thu Aug 17 13:57:07 2017 us=507518 renegotiate_packets = 0
Thu Aug 17 13:57:07 2017 us=507518 renegotiate_seconds = 3600
Thu Aug 17 13:57:07 2017 us=507518 handshake_window = 60
Thu Aug 17 13:57:07 2017 us=507518 transition_window = 3600
Thu Aug 17 13:57:07 2017 us=507518 single_session = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 push_peer_info = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 tls_exit = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 tls_auth_file = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=507518 tls_crypt_file = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_protected_authentication = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_protected_authentication = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_protected_authentication = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_protected_authentication = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_protected_authentication = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_protected_authentication = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_protected_authentication = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_protected_authentication = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_protected_authentication = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_protected_authentication = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_protected_authentication = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_protected_authentication = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_protected_authentication = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_protected_authentication = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_protected_authentication = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_protected_authentication = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_private_mode = 00000000
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_private_mode = 00000000
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_private_mode = 00000000
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_private_mode = 00000000
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_private_mode = 00000000
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_private_mode = 00000000
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_private_mode = 00000000
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_private_mode = 00000000
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_private_mode = 00000000
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_private_mode = 00000000
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_private_mode = 00000000
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_private_mode = 00000000
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_private_mode = 00000000
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_private_mode = 00000000
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_private_mode = 00000000
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_private_mode = 00000000
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_cert_private = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_cert_private = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_cert_private = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_cert_private = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_cert_private = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_cert_private = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_cert_private = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_cert_private = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_cert_private = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_cert_private = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_cert_private = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_cert_private = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_cert_private = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_cert_private = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_cert_private = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_cert_private = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_pin_cache_period = -1
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_id = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=507518 pkcs11_id_management = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 server_network = 0.0.0.0
Thu Aug 17 13:57:07 2017 us=507518 server_netmask = 0.0.0.0
Thu Aug 17 13:57:07 2017 us=507518 server_network_ipv6 = ::
Thu Aug 17 13:57:07 2017 us=507518 server_netbits_ipv6 = 0
Thu Aug 17 13:57:07 2017 us=507518 server_bridge_ip = 0.0.0.0
Thu Aug 17 13:57:07 2017 us=507518 server_bridge_netmask = 0.0.0.0
Thu Aug 17 13:57:07 2017 us=507518 server_bridge_pool_start = 0.0.0.0
Thu Aug 17 13:57:07 2017 us=507518 server_bridge_pool_end = 0.0.0.0
Thu Aug 17 13:57:07 2017 us=507518 ifconfig_pool_defined = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 ifconfig_pool_start = 0.0.0.0
Thu Aug 17 13:57:07 2017 us=507518 ifconfig_pool_end = 0.0.0.0
Thu Aug 17 13:57:07 2017 us=507518 ifconfig_pool_netmask = 0.0.0.0
Thu Aug 17 13:57:07 2017 us=507518 ifconfig_pool_persist_filename = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=507518 ifconfig_pool_persist_refresh_freq = 600
Thu Aug 17 13:57:07 2017 us=507518 ifconfig_ipv6_pool_defined = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 ifconfig_ipv6_pool_base = ::
Thu Aug 17 13:57:07 2017 us=507518 ifconfig_ipv6_pool_netbits = 0
Thu Aug 17 13:57:07 2017 us=507518 n_bcast_buf = 256
Thu Aug 17 13:57:07 2017 us=507518 tcp_queue_limit = 64
Thu Aug 17 13:57:07 2017 us=507518 real_hash_size = 256
Thu Aug 17 13:57:07 2017 us=507518 virtual_hash_size = 256
Thu Aug 17 13:57:07 2017 us=507518 client_connect_script = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=507518 learn_address_script = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=507518 client_disconnect_script = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=507518 client_config_dir = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=507518 ccd_exclusive = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 tmp_dir = 'C:\Users\UTILIS~1\AppData\Local\Temp\'
Thu Aug 17 13:57:07 2017 us=507518 push_ifconfig_defined = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 push_ifconfig_local = 0.0.0.0
Thu Aug 17 13:57:07 2017 us=507518 push_ifconfig_remote_netmask = 0.0.0.0
Thu Aug 17 13:57:07 2017 us=507518 push_ifconfig_ipv6_defined = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 push_ifconfig_ipv6_local = ::/0
Thu Aug 17 13:57:07 2017 us=507518 push_ifconfig_ipv6_remote = ::
Thu Aug 17 13:57:07 2017 us=507518 enable_c2c = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 duplicate_cn = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 cf_max = 0
Thu Aug 17 13:57:07 2017 us=507518 cf_per = 0
Thu Aug 17 13:57:07 2017 us=507518 max_clients = 1024
Thu Aug 17 13:57:07 2017 us=507518 max_routes_per_client = 256
Thu Aug 17 13:57:07 2017 us=507518 auth_user_pass_verify_script = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=507518 auth_user_pass_verify_script_via_file = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 auth_token_generate = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 auth_token_lifetime = 0
Thu Aug 17 13:57:07 2017 us=507518 client = ENABLED
Thu Aug 17 13:57:07 2017 us=507518 pull = ENABLED
Thu Aug 17 13:57:07 2017 us=507518 auth_user_pass_file = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=507518 show_net_up = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 route_method = 0
Thu Aug 17 13:57:07 2017 us=507518 block_outside_dns = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 ip_win32_defined = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 ip_win32_type = 3
Thu Aug 17 13:57:07 2017 us=507518 dhcp_masq_offset = 0
Thu Aug 17 13:57:07 2017 us=507518 dhcp_lease_time = 31536000
Thu Aug 17 13:57:07 2017 us=507518 tap_sleep = 0
Thu Aug 17 13:57:07 2017 us=507518 dhcp_options = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 dhcp_renew = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 dhcp_pre_release = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 domain = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=507518 netbios_scope = '[UNDEF]'
Thu Aug 17 13:57:07 2017 us=507518 netbios_node_type = 0
Thu Aug 17 13:57:07 2017 us=507518 disable_nbt = DISABLED
Thu Aug 17 13:57:07 2017 us=507518 OpenVPN 2.4.3 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [AEAD] built on Jul 14 2017
Thu Aug 17 13:57:07 2017 us=507518 Windows version 6.2 (Windows 8 or greater) 64bit
Thu Aug 17 13:57:07 2017 us=507518 library versions: OpenSSL 1.0.2l 25 May 2017, LZO 2.10
Thu Aug 17 13:57:07 2017 us=507518 Restart pause, 2 second(s)
Thu Aug 17 13:57:09 2017 us=507574 Control Channel MTU parms [ L:1623 D:1210 EF:40 EB:0 ET:0 EL:3 ]
Thu Aug 17 13:57:09 2017 us=507574 Data Channel MTU parms [ L:1623 D:1450 EF:123 EB:406 ET:0 EL:3 ]
Thu Aug 17 13:57:09 2017 us=507574 Local Options String (VER=V4): 'V4,dev-type tun,link-mtu 1559,tun-mtu 1500,proto TCPv4_CLIENT,cipher AES-128-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Thu Aug 17 13:57:09 2017 us=507574 Expected Remote Options String (VER=V4): 'V4,dev-type tun,link-mtu 1559,tun-mtu 1500,proto TCPv4_SERVER,cipher AES-128-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Thu Aug 17 13:57:09 2017 us=507574 TCP/UDP: Preserving recently used remote address: [AF_INET]xx.xx.xx.xx:2255
Thu Aug 17 13:57:09 2017 us=507574 Socket Buffers: R=[65536->65536] S=[65536->65536]
Thu Aug 17 13:57:09 2017 us=507574 Attempting to establish TCP connection with [AF_INET]xx.xx.xx.xx:2255 [nonblock]
Thu Aug 17 13:57:09 2017 us=507574 MANAGEMENT: >STATE:1502992629,TCP_CONNECT,,,,,,
Thu Aug 17 13:57:12 2017 us=507612 TCP/UDP: Closing socket
Thu Aug 17 13:57:12 2017 us=507612 SIGTERM[hard,init_instance] received, process exiting
Thu Aug 17 13:57:12 2017 us=507612 MANAGEMENT: >STATE:1502992632,EXITING,init_instance,,,,,


Any hints is appreciated

Regards,

-Eric

TinCanTech
OpenVPN Protagonist
Posts: 11137
Joined: Fri Jun 03, 2016 1:17 pm

Re: Cannot connect to DDWRT router

Post by TinCanTech » Thu Aug 17, 2017 6:51 pm

estarna wrote:Network 10.0.0.40.0
Netmask 255.255.255.0
Are you sure your server is running ?

estarna
OpenVpn Newbie
Posts: 9
Joined: Thu Aug 17, 2017 6:02 pm

Re: Cannot connect to DDWRT router

Post by estarna » Thu Aug 17, 2017 7:31 pm

Yes it is running, it is enabled on my ddwrt interface.

Thanks.

TinCanTech
OpenVPN Protagonist
Posts: 11137
Joined: Fri Jun 03, 2016 1:17 pm

Re: Cannot connect to DDWRT router

Post by TinCanTech » Thu Aug 17, 2017 8:41 pm

TinCanTech wrote:
estarna wrote:Network 10.0.0.40.0
Netmask 255.255.255.0
Are you sure your server is running ?
estarna wrote:Yes it is running, it is enabled on my ddwrt interface.

Thanks.
Not with those settings .. :geek:

estarna
OpenVpn Newbie
Posts: 9
Joined: Thu Aug 17, 2017 6:02 pm

Re: Cannot connect to DDWRT router

Post by estarna » Thu Aug 17, 2017 8:49 pm

TinCanTech. Thanks !

Waaa.... Typo. Thanks for pointing that.

Learning curve. I guess.

I'm connecting now.

My lan is in the 10.0.0.x range. When connecting via OpenVPN, I'm getting 10.0.40.x address, which is expected.

How can I have access to my 10.0.0.x devices (computer and NAS are in the latter).

Thanks again!

TinCanTech
OpenVPN Protagonist
Posts: 11137
Joined: Fri Jun 03, 2016 1:17 pm

Re: Cannot connect to DDWRT router

Post by TinCanTech » Thu Aug 17, 2017 10:33 pm

estarna wrote:I'm connecting now.
OK
estarna wrote:How can I have access to my 10.0.0.x devices (computer and NAS are in the latter).
HOWTO: Expanding the scope of the VPN to include additional machines

estarna
OpenVpn Newbie
Posts: 9
Joined: Thu Aug 17, 2017 6:02 pm

Re: Cannot connect to DDWRT router

Post by estarna » Fri Aug 18, 2017 12:38 pm

Thanks again.

My lan is 10.0.0.x.
VPN is giving a 10.0.40.x address.

So basicaly I should add:

push "route 10.0.0.0 255.255.255.0" on additional config (server side) on my DDWRT router ?

estarna
OpenVpn Newbie
Posts: 9
Joined: Thu Aug 17, 2017 6:02 pm

Re: Cannot connect to DDWRT router

Post by estarna » Fri Aug 18, 2017 12:51 pm

One other thing, I read on a few forums that UDP is better than TCP in this situation.

Is that so ?

Thanks again!

estarna
OpenVpn Newbie
Posts: 9
Joined: Thu Aug 17, 2017 6:02 pm

Re: Cannot connect to DDWRT router

Post by estarna » Fri Aug 18, 2017 7:50 pm

Thanks TinCanTech!


Still connecting but no access to my devices, like NAS (10.0.0.10) or computer (10.0.0.12)


I followed your "HOWTO: Expanding the scope of the VPN to include additional machines" link.

My config :

Server side:
push "route 10.0.0.0 255.255.255.0"
server 10.10.0.0 255.255.255.0
dev tun0
keepalive 10 120


Client side:
client
dev tun
proto udp
remote 162.253.128.26 2255
resolv-retry infinite
nobind
persist-key
persist-tun
ca ca.crt
cert client.crt
key client.key
remote-cert-tls server
cipher AES-128-CBC
comp-lzo
auth-nocache
verb 3


My log:
Fri Aug 18 15:39:05 2017 OpenVPN 2.4.3 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [AEAD] built on Jul 14 2017
Fri Aug 18 15:39:05 2017 Windows version 6.2 (Windows 8 or greater) 64bit
Fri Aug 18 15:39:05 2017 library versions: OpenSSL 1.0.2l 25 May 2017, LZO 2.10
Enter Management Password:
Fri Aug 18 15:39:05 2017 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:25342
Fri Aug 18 15:39:05 2017 Need hold release from management interface, waiting...
Fri Aug 18 15:39:05 2017 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:25342
Fri Aug 18 15:39:05 2017 MANAGEMENT: CMD 'state on'
Fri Aug 18 15:39:05 2017 MANAGEMENT: CMD 'log all on'
Fri Aug 18 15:39:05 2017 MANAGEMENT: CMD 'echo all on'
Fri Aug 18 15:39:05 2017 MANAGEMENT: CMD 'hold off'
Fri Aug 18 15:39:05 2017 MANAGEMENT: CMD 'hold release'
Fri Aug 18 15:39:05 2017 TCP/UDP: Preserving recently used remote address: [AF_INET]162.253.128.26:2255
Fri Aug 18 15:39:05 2017 Socket Buffers: R=[65536->65536] S=[65536->65536]
Fri Aug 18 15:39:05 2017 UDP link local: (not bound)
Fri Aug 18 15:39:05 2017 UDP link remote: [AF_INET]162.253.128.26:2255
Fri Aug 18 15:39:05 2017 MANAGEMENT: >STATE:1503085145,WAIT,,,,,,
Fri Aug 18 15:39:05 2017 MANAGEMENT: >STATE:1503085145,AUTH,,,,,,
Fri Aug 18 15:39:05 2017 TLS: Initial packet from [AF_INET]162.253.128.26:2255, sid=7dda5123 a95e7ef8
Fri Aug 18 15:39:06 2017 VERIFY OK: depth=1, C=CA, ST=Quebec, L=Quebec, O=Homeworld, OU=changeme, CN=client, name=client, emailAddress=bla@outlook.com
Fri Aug 18 15:39:06 2017 VERIFY KU OK
Fri Aug 18 15:39:06 2017 Validating certificate extended key usage
Fri Aug 18 15:39:06 2017 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
Fri Aug 18 15:39:06 2017 VERIFY EKU OK
Fri Aug 18 15:39:06 2017 VERIFY OK: depth=0, C=CA, ST=Quebec, L=Quebec, O=Homeworld, OU=changeme, CN=server, name=server, emailAddress=bla@outlook.com
Fri Aug 18 15:39:06 2017 Control Channel: TLSv1.2, cipher TLSv1/SSLv3 ECDHE-RSA-AES256-GCM-SHA384, 4096 bit RSA
Fri Aug 18 15:39:06 2017 [server] Peer Connection Initiated with [AF_INET]162.253.128.26:2255
Fri Aug 18 15:39:07 2017 MANAGEMENT: >STATE:1503085147,GET_CONFIG,,,,,,
Fri Aug 18 15:39:07 2017 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
Fri Aug 18 15:39:07 2017 PUSH: Received control message: 'PUSH_REPLY,route 10.0.0.0 255.255.255.0,route-gateway 10.10.0.1,topology subnet,ping 10,ping-restart 120,ifconfig 10.10.0.2 255.255.255.0,peer-id 0,cipher AES-256-GCM'
Fri Aug 18 15:39:07 2017 OPTIONS IMPORT: timers and/or timeouts modified
Fri Aug 18 15:39:07 2017 OPTIONS IMPORT: --ifconfig/up options modified
Fri Aug 18 15:39:07 2017 OPTIONS IMPORT: route options modified
Fri Aug 18 15:39:07 2017 OPTIONS IMPORT: route-related options modified
Fri Aug 18 15:39:07 2017 OPTIONS IMPORT: peer-id set
Fri Aug 18 15:39:07 2017 OPTIONS IMPORT: adjusting link_mtu to 1625
Fri Aug 18 15:39:07 2017 OPTIONS IMPORT: data channel crypto options modified
Fri Aug 18 15:39:07 2017 Data Channel: using negotiated cipher 'AES-256-GCM'
Fri Aug 18 15:39:07 2017 Data Channel Encrypt: Cipher 'AES-256-GCM' initialized with 256 bit key
Fri Aug 18 15:39:07 2017 Data Channel Decrypt: Cipher 'AES-256-GCM' initialized with 256 bit key
Fri Aug 18 15:39:07 2017 interactive service msg_channel=0
Fri Aug 18 15:39:07 2017 ROUTE_GATEWAY 192.168.0.1/255.255.255.0 I=7 HWADDR=00:23:24:5b:f1:cb
Fri Aug 18 15:39:07 2017 open_tun
Fri Aug 18 15:39:07 2017 TAP-WIN32 device [Ethernet 2] opened: \\.\Global\{EFCDD0A3-9E18-42E9-B442-2F8E63FEC0CF}.tap
Fri Aug 18 15:39:07 2017 TAP-Windows Driver Version 9.21
Fri Aug 18 15:39:07 2017 Set TAP-Windows TUN subnet mode network/local/netmask = 10.10.0.0/10.10.0.2/255.255.255.0 [SUCCEEDED]
Fri Aug 18 15:39:07 2017 Notified TAP-Windows driver to set a DHCP IP/netmask of 10.10.0.2/255.255.255.0 on interface {EFCDD0A3-9E18-42E9-B442-2F8E63FEC0CF} [DHCP-serv: 10.10.0.254, lease-time: 31536000]
Fri Aug 18 15:39:07 2017 Successful ARP Flush on interface [36] {EFCDD0A3-9E18-42E9-B442-2F8E63FEC0CF}
Fri Aug 18 15:39:07 2017 do_ifconfig, tt->did_ifconfig_ipv6_setup=0
Fri Aug 18 15:39:07 2017 MANAGEMENT: >STATE:1503085147,ASSIGN_IP,,10.10.0.2,,,,
Fri Aug 18 15:39:12 2017 TEST ROUTES: 1/1 succeeded len=1 ret=1 a=0 u/d=up
Fri Aug 18 15:39:12 2017 MANAGEMENT: >STATE:1503085152,ADD_ROUTES,,,,,,
Fri Aug 18 15:39:12 2017 C:\WINDOWS\system32\route.exe ADD 10.0.0.0 MASK 255.255.255.0 10.10.0.1
Fri Aug 18 15:39:12 2017 ROUTE: CreateIpForwardEntry succeeded with dwForwardMetric1=35 and dwForwardType=4
Fri Aug 18 15:39:12 2017 Route addition via IPAPI succeeded [adaptive]
Fri Aug 18 15:39:12 2017 Initialization Sequence Completed
Fri Aug 18 15:39:12 2017 MANAGEMENT: >STATE:1503085152,CONNECTED,SUCCESS,10.10.0.2,162.253.128.26,2255,,

TinCanTech
OpenVPN Protagonist
Posts: 11137
Joined: Fri Jun 03, 2016 1:17 pm

Re: Cannot connect to DDWRT router

Post by TinCanTech » Fri Aug 18, 2017 7:57 pm


estarna
OpenVpn Newbie
Posts: 9
Joined: Thu Aug 17, 2017 6:02 pm

Re: Cannot connect to DDWRT router

Post by estarna » Sat Aug 19, 2017 1:28 pm

I added those lines in additional configs on my DD-WRT server section:

push "route 10.0.0.0 255.255.255.0"
server 10.10.0.0 255.255.255.0
dev tun0
keepalive 10 120

If I add: ip route add 10.10.0.0/24 via 10.0.0.2

I get a message : read UDP: Connection reset by peer (WSAECONNRESET) (code=10054)

If not, Can connect.

Also:

I have included those lines in the firewall :

iptables -A INPUT -p udp --dport 2255 -j ACCEPT
iptables -A FORWARD --src 10.10.0.0/24 -j ACCEPT
iptables -A FORWARD --src 10.0.0.00/24 -j ACCEPT
iptables -A FORWARD -i br0 -o tun0 -j ACCEPT
iptables -A FORWARD -i tun0 -o br0 -j ACCEPT

2255 is for the port opened on the Server side.

I'm kind of lost here.

Thanks.

estarna
OpenVpn Newbie
Posts: 9
Joined: Thu Aug 17, 2017 6:02 pm

Re: Cannot connect to DDWRT router

Post by estarna » Sat Aug 19, 2017 1:37 pm

Some pics here...

https://1drv.ms/f/s!Ajwo0CerNYKVhI8EZjviAdBln0S2tA

Thanks for any imputs.

TinCanTech
OpenVPN Protagonist
Posts: 11137
Joined: Fri Jun 03, 2016 1:17 pm

Re: Cannot connect to DDWRT router

Post by TinCanTech » Sat Aug 19, 2017 1:38 pm

estarna wrote:If I add: ip route add 10.10.0.0/24 via 10.0.0.2

I get a message : read UDP: Connection reset by peer (WSAECONNRESET) (code=10054)

If not, Can connect.
So do not add that route .. it is wrong.

Use iptables masquerade .. see this:
HOWTO: Routing all client traffic (including web-traffic) through the VPN

estarna
OpenVpn Newbie
Posts: 9
Joined: Thu Aug 17, 2017 6:02 pm

Re: Cannot connect to DDWRT router

Post by estarna » Thu Oct 12, 2017 12:37 pm

Thanks!

It worked!

I owe you one!

TinCanTech
OpenVPN Protagonist
Posts: 11137
Joined: Fri Jun 03, 2016 1:17 pm

Re: Cannot connect to DDWRT router

Post by TinCanTech » Thu Oct 12, 2017 1:01 pm

Paypal: tincanteksup <at> gmail .. donations welcome 8-)

Post Reply