Hope you can help me, cause I spent hours of searching and am at a loss. I've got 2 errors.
1.) (more urgent) I can't connect to the server, because my client want's some management configuration and the web just didn't give any sufficient answer (yeah there was this one point where "enter management password" would be gone after restart, but not the popup and the resulting error).
I even tried to take a look into command line help and do (in the hope it would turn it off but it didn't:) management 0 0
2.) Prior to connecting building the certificates: I could not use new ecliptic curve here. I tried (with that as example) to "set KEY_ALGO=ec" and "set KEY_CURVE=secp521r1" in my vars, but they are not existent in the openssl-1.0.0.cnf (but it would require the KEY_SIZE). Now is there any way to manage this under windows?
3.) (Not a (known) error, but if you see any further mistake, enhancement, unneeded lines, ...... - input is welcome)
1. SERVER CONFIG:
server
;local 0.0.0.0
port 1194
proto udp4
dev tun
dev-node VPN
# Certificates
ca ..\\config\\ca.crt
cert ..\\config\\server.crt
key ..\\config\\server.key
;dh ..\\config\\dh2048.pem #it's there for compat., but not wanted
dh none
# Server-Setup
;topology subnet
server 10.0.0.0 255.255.255.0
ifconfig-pool-persist ..\\log\\ipp.txt
# Client-Settings (incl Special Dir)Files
push "route 1.1.1.2 255.255.255.0"
;push "dhcp-option DNS 0.0.0.0"
# Defaults
;duplicate-cn
keepalive 10 120
;tls-auth ta.key 0
tls-crypt ..\\config\\ta.key 0
cipher AES-256-GCM
ncp-ciphers AES-256-GCM
compress lz4-v2
max-clients 10
persist-key
persist-tun
# Logging
status ..\\log\\openvpn-status.log
verb 3
explicit-exit-notify 1
# Hardening
tls-server
tls-version-min 1.2
tls-cipher TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384:TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384:TLS-DHE-RSA-WITH-AES-256-CBC-SHA256
auth sha512
remote-cert-tls Client #same as below
;remote-cert-ku 80 08 88 // remote-cert-eku "TLS Web Client Authentication"
crl-verify ..\\config\\crl.pem
auth-user-pass-verify ..\\config\\auth.bat via-env
script-security 3
route-delay 5
route-method exe
;ip-win32 netsh
port 1194
proto udp4
dev tun
dev-node VPN
# Certificates
ca ..\\config\\ca.crt
cert ..\\config\\server.crt
key ..\\config\\server.key
;dh ..\\config\\dh2048.pem #it's there for compat., but not wanted
dh none
# Server-Setup
;topology subnet
server 10.0.0.0 255.255.255.0
ifconfig-pool-persist ..\\log\\ipp.txt
# Client-Settings (incl Special Dir)Files
push "route 1.1.1.2 255.255.255.0"
;push "dhcp-option DNS 0.0.0.0"
# Defaults
;duplicate-cn
keepalive 10 120
;tls-auth ta.key 0
tls-crypt ..\\config\\ta.key 0
cipher AES-256-GCM
ncp-ciphers AES-256-GCM
compress lz4-v2
max-clients 10
persist-key
persist-tun
# Logging
status ..\\log\\openvpn-status.log
verb 3
explicit-exit-notify 1
# Hardening
tls-server
tls-version-min 1.2
tls-cipher TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384:TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384:TLS-DHE-RSA-WITH-AES-256-CBC-SHA256
auth sha512
remote-cert-tls Client #same as below
;remote-cert-ku 80 08 88 // remote-cert-eku "TLS Web Client Authentication"
crl-verify ..\\config\\crl.pem
auth-user-pass-verify ..\\config\\auth.bat via-env
script-security 3
route-delay 5
route-method exe
;ip-win32 netsh
client
client
dev tun
dev-node VPN
proto udp4
# Client-Setup
remote 1.1.1.2 1194
resolv-retry infinite
nobind
persist-key
persist-tun
route-up route.bat
script-security 3
dhcp-option DNS 0.0.0.0
# Certificates
ca ca.crt
cert client1.crt
key client1.key
tls-crypt client1-ta.key 1
cipher AES-256-GCM
ncp-ciphers AES-256-GCM
compress lz4-v2
# Logging
verb 3
# Hardening
redirect-gateway def1
verify-x509-name 'C=changeme, O=changeme, CN=changeme' name
tls-version-min 1.2
tls-cipher TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384:TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384:TLS-DHE-RSA-WITH-AES-256-CBC-SHA256
auth sha512
remote-cert-tls server #same as below
;remote-cert-ku a0 88 // remote-cert-eku "TLS Web Server Authentication"
;ns-cert-type server #depricated
;tls-verify
;auth-retry none
auth-user-pass client1.txt
auth-nocache
route-delay 5
;route-method exe
dev tun
dev-node VPN
proto udp4
# Client-Setup
remote 1.1.1.2 1194
resolv-retry infinite
nobind
persist-key
persist-tun
route-up route.bat
script-security 3
dhcp-option DNS 0.0.0.0
# Certificates
ca ca.crt
cert client1.crt
key client1.key
tls-crypt client1-ta.key 1
cipher AES-256-GCM
ncp-ciphers AES-256-GCM
compress lz4-v2
# Logging
verb 3
# Hardening
redirect-gateway def1
verify-x509-name 'C=changeme, O=changeme, CN=changeme' name
tls-version-min 1.2
tls-cipher TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384:TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384:TLS-DHE-RSA-WITH-AES-256-CBC-SHA256
auth sha512
remote-cert-tls server #same as below
;remote-cert-ku a0 88 // remote-cert-eku "TLS Web Server Authentication"
;ns-cert-type server #depricated
;tls-verify
;auth-retry none
auth-user-pass client1.txt
auth-nocache
route-delay 5
;route-method exe
Code: Select all
Mon Jun 26 23:36:54 2017 us=600477 Current Parameter Settings:
Mon Jun 26 23:36:54 2017 us=600477 config = 'C:\Program Files\OpenVPN\config\server.ovpn'
Mon Jun 26 23:36:54 2017 us=600477 mode = 1
Mon Jun 26 23:36:54 2017 us=600477 show_ciphers = DISABLED
Mon Jun 26 23:36:54 2017 us=600477 show_digests = DISABLED
Mon Jun 26 23:36:54 2017 us=600477 show_engines = DISABLED
Mon Jun 26 23:36:54 2017 us=600477 genkey = DISABLED
Mon Jun 26 23:36:54 2017 us=600477 key_pass_file = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=600477 show_tls_ciphers = DISABLED
Mon Jun 26 23:36:54 2017 us=600477 connect_retry_max = 0
Mon Jun 26 23:36:54 2017 us=600477 Connection profiles [0]:
Mon Jun 26 23:36:54 2017 us=600477 proto = udp4
Mon Jun 26 23:36:54 2017 us=600477 local = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=601336 local_port = '1194'
Mon Jun 26 23:36:54 2017 us=601336 remote = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=601336 remote_port = '1194'
Mon Jun 26 23:36:54 2017 us=601336 remote_float = DISABLED
Mon Jun 26 23:36:54 2017 us=601336 bind_defined = DISABLED
Mon Jun 26 23:36:54 2017 us=601336 bind_local = ENABLED
Mon Jun 26 23:36:54 2017 us=601336 bind_ipv6_only = DISABLED
Mon Jun 26 23:36:54 2017 us=601336 connect_retry_seconds = 5
Mon Jun 26 23:36:54 2017 us=601336 connect_timeout = 120
Mon Jun 26 23:36:54 2017 us=601336 socks_proxy_server = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=601336 socks_proxy_port = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=601336 tun_mtu = 1500
Mon Jun 26 23:36:54 2017 us=601336 tun_mtu_defined = ENABLED
Mon Jun 26 23:36:54 2017 us=601336 link_mtu = 1500
Mon Jun 26 23:36:54 2017 us=601336 link_mtu_defined = DISABLED
Mon Jun 26 23:36:54 2017 us=601336 tun_mtu_extra = 0
Mon Jun 26 23:36:54 2017 us=601336 tun_mtu_extra_defined = DISABLED
Mon Jun 26 23:36:54 2017 us=601336 mtu_discover_type = -1
Mon Jun 26 23:36:54 2017 us=601336 fragment = 0
Mon Jun 26 23:36:54 2017 us=601336 mssfix = 1450
Mon Jun 26 23:36:54 2017 us=601336 explicit_exit_notification = 1
Mon Jun 26 23:36:54 2017 us=601336 Connection profiles END
Mon Jun 26 23:36:54 2017 us=601336 remote_random = DISABLED
Mon Jun 26 23:36:54 2017 us=601336 ipchange = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=601336 dev = 'tun'
Mon Jun 26 23:36:54 2017 us=601336 dev_type = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=601336 dev_node = 'VPN'
Mon Jun 26 23:36:54 2017 us=601336 lladdr = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=601336 topology = 1
Mon Jun 26 23:36:54 2017 us=601336 ifconfig_local = '10.0.0.1'
Mon Jun 26 23:36:54 2017 us=601336 ifconfig_remote_netmask = '10.0.0.2'
Mon Jun 26 23:36:54 2017 us=601336 ifconfig_noexec = DISABLED
Mon Jun 26 23:36:54 2017 us=601336 ifconfig_nowarn = DISABLED
Mon Jun 26 23:36:54 2017 us=601336 ifconfig_ipv6_local = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=601336 ifconfig_ipv6_netbits = 0
Mon Jun 26 23:36:54 2017 us=601336 ifconfig_ipv6_remote = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=601336 shaper = 0
Mon Jun 26 23:36:54 2017 us=601336 mtu_test = 0
Mon Jun 26 23:36:54 2017 us=601336 mlock = DISABLED
Mon Jun 26 23:36:54 2017 us=601336 keepalive_ping = 10
Mon Jun 26 23:36:54 2017 us=601336 keepalive_timeout = 120
Mon Jun 26 23:36:54 2017 us=601336 inactivity_timeout = 0
Mon Jun 26 23:36:54 2017 us=601336 ping_send_timeout = 10
Mon Jun 26 23:36:54 2017 us=601336 ping_rec_timeout = 240
Mon Jun 26 23:36:54 2017 us=601336 ping_rec_timeout_action = 2
Mon Jun 26 23:36:54 2017 us=601336 ping_timer_remote = DISABLED
Mon Jun 26 23:36:54 2017 us=601336 remap_sigusr1 = 0
Mon Jun 26 23:36:54 2017 us=601336 persist_tun = ENABLED
Mon Jun 26 23:36:54 2017 us=601336 persist_local_ip = DISABLED
Mon Jun 26 23:36:54 2017 us=601336 persist_remote_ip = DISABLED
Mon Jun 26 23:36:54 2017 us=601336 persist_key = ENABLED
Mon Jun 26 23:36:54 2017 us=601336 passtos = DISABLED
Mon Jun 26 23:36:54 2017 us=601336 resolve_retry_seconds = 1000000000
Mon Jun 26 23:36:54 2017 us=601336 resolve_in_advance = DISABLED
Mon Jun 26 23:36:54 2017 us=601336 username = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=602305 groupname = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=602305 chroot_dir = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=602305 cd_dir = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=602305 writepid = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=602305 up_script = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=602305 down_script = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=602305 down_pre = DISABLED
Mon Jun 26 23:36:54 2017 us=602305 up_restart = DISABLED
Mon Jun 26 23:36:54 2017 us=602305 up_delay = DISABLED
Mon Jun 26 23:36:54 2017 us=602305 daemon = DISABLED
Mon Jun 26 23:36:54 2017 us=602305 inetd = 0
Mon Jun 26 23:36:54 2017 us=602305 log = DISABLED
Mon Jun 26 23:36:54 2017 us=602305 suppress_timestamps = DISABLED
Mon Jun 26 23:36:54 2017 us=602305 machine_readable_output = DISABLED
Mon Jun 26 23:36:54 2017 us=602305 nice = 0
Mon Jun 26 23:36:54 2017 us=602305 verbosity = 4
Mon Jun 26 23:36:54 2017 us=602305 mute = 0
Mon Jun 26 23:36:54 2017 us=602305 gremlin = 0
Mon Jun 26 23:36:54 2017 us=602305 status_file = '..\log\openvpn-status.log'
Mon Jun 26 23:36:54 2017 us=602305 status_file_version = 1
Mon Jun 26 23:36:54 2017 us=602305 status_file_update_freq = 60
Mon Jun 26 23:36:54 2017 us=602305 occ = ENABLED
Mon Jun 26 23:36:54 2017 us=602305 rcvbuf = 0
Mon Jun 26 23:36:54 2017 us=602305 sndbuf = 0
Mon Jun 26 23:36:54 2017 us=602305 sockflags = 0
Mon Jun 26 23:36:54 2017 us=602305 fast_io = DISABLED
Mon Jun 26 23:36:54 2017 us=602305 comp.alg = 11
Mon Jun 26 23:36:54 2017 us=602305 comp.flags = 0
Mon Jun 26 23:36:54 2017 us=602305 route_script = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=602305 route_default_gateway = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=602305 route_default_metric = 0
Mon Jun 26 23:36:54 2017 us=602305 route_noexec = DISABLED
Mon Jun 26 23:36:54 2017 us=602305 route_delay = 5
Mon Jun 26 23:36:54 2017 us=602305 route_delay_window = 30
Mon Jun 26 23:36:54 2017 us=604177 route_delay_defined = DISABLED
Mon Jun 26 23:36:54 2017 us=604177 route_nopull = DISABLED
Mon Jun 26 23:36:54 2017 us=604177 route_gateway_via_dhcp = DISABLED
Mon Jun 26 23:36:54 2017 us=604177 allow_pull_fqdn = DISABLED
Mon Jun 26 23:36:54 2017 us=604177 route 10.0.0.0/255.255.255.0/default (not set)/default (not set)
Mon Jun 26 23:36:54 2017 us=604177 management_addr = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=604177 management_port = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=604177 management_user_pass = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=604177 management_log_history_cache = 250
Mon Jun 26 23:36:54 2017 us=604177 management_echo_buffer_size = 100
Mon Jun 26 23:36:54 2017 us=604177 management_write_peer_info_file = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=604177 management_client_user = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=604177 management_client_group = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=604177 management_flags = 0
Mon Jun 26 23:36:54 2017 us=604177 shared_secret_file = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=604177 key_direction = 0
Mon Jun 26 23:36:54 2017 us=604177 ciphername = 'AES-256-GCM'
Mon Jun 26 23:36:54 2017 us=604177 ncp_enabled = ENABLED
Mon Jun 26 23:36:54 2017 us=604177 ncp_ciphers = 'AES-256-GCM'
Mon Jun 26 23:36:54 2017 us=604177 authname = 'sha512'
Mon Jun 26 23:36:54 2017 us=604177 prng_hash = 'SHA1'
Mon Jun 26 23:36:54 2017 us=604177 prng_nonce_secret_len = 16
Mon Jun 26 23:36:54 2017 us=604177 keysize = 0
Mon Jun 26 23:36:54 2017 us=604177 engine = DISABLED
Mon Jun 26 23:36:54 2017 us=604177 replay = ENABLED
Mon Jun 26 23:36:54 2017 us=604177 mute_replay_warnings = DISABLED
Mon Jun 26 23:36:54 2017 us=604177 replay_window = 64
Mon Jun 26 23:36:54 2017 us=604177 replay_time = 15
Mon Jun 26 23:36:54 2017 us=604177 packet_id_file = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=604177 use_iv = ENABLED
Mon Jun 26 23:36:54 2017 us=604177 test_crypto = DISABLED
Mon Jun 26 23:36:54 2017 us=604177 tls_server = ENABLED
Mon Jun 26 23:36:54 2017 us=604177 tls_client = DISABLED
Mon Jun 26 23:36:54 2017 us=604177 key_method = 2
Mon Jun 26 23:36:54 2017 us=604177 ca_file = '..\config\ca.crt'
Mon Jun 26 23:36:54 2017 us=604177 ca_path = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=604177 dh_file = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=604177 cert_file = '..\config\server.crt'
Mon Jun 26 23:36:54 2017 us=604177 extra_certs_file = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=604177 priv_key_file = '..\config\server.key'
Mon Jun 26 23:36:54 2017 us=604177 pkcs12_file = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=604177 cryptoapi_cert = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=604177 cipher_list = 'TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384:TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384:TLS-DHE-RSA-WITH-AES-256-CBC-SHA256'
Mon Jun 26 23:36:54 2017 us=604177 tls_verify = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=604177 tls_export_cert = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=604177 verify_x509_type = 0
Mon Jun 26 23:36:54 2017 us=604177 verify_x509_name = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=604177 crl_file = '..\config\crl.pem'
Mon Jun 26 23:36:54 2017 us=604177 ns_cert_type = 0
Mon Jun 26 23:36:54 2017 us=604177 remote_cert_ku[i] = 65535
Mon Jun 26 23:36:54 2017 us=604177 remote_cert_ku[i] = 0
Mon Jun 26 23:36:54 2017 us=604177 remote_cert_ku[i] = 0
Mon Jun 26 23:36:54 2017 us=604177 remote_cert_ku[i] = 0
Mon Jun 26 23:36:54 2017 us=604177 remote_cert_ku[i] = 0
Mon Jun 26 23:36:54 2017 us=604177 remote_cert_ku[i] = 0
Mon Jun 26 23:36:54 2017 us=604177 remote_cert_ku[i] = 0
Mon Jun 26 23:36:54 2017 us=604177 remote_cert_ku[i] = 0
Mon Jun 26 23:36:54 2017 us=604177 remote_cert_ku[i] = 0
Mon Jun 26 23:36:54 2017 us=604177 remote_cert_ku[i] = 0
Mon Jun 26 23:36:54 2017 us=604177 remote_cert_ku[i] = 0
Mon Jun 26 23:36:54 2017 us=604177 remote_cert_ku[i] = 0
Mon Jun 26 23:36:54 2017 us=604177 remote_cert_ku[i] = 0
Mon Jun 26 23:36:54 2017 us=604177 remote_cert_ku[i] = 0
Mon Jun 26 23:36:54 2017 us=604177 remote_cert_ku[i] = 0
Mon Jun 26 23:36:54 2017 us=604177 remote_cert_ku[i] = 0
Mon Jun 26 23:36:54 2017 us=604177 remote_cert_eku = 'TLS Web Client Authentication'
Mon Jun 26 23:36:54 2017 us=604177 ssl_flags = 192
Mon Jun 26 23:36:54 2017 us=604177 tls_timeout = 2
Mon Jun 26 23:36:54 2017 us=604177 renegotiate_bytes = -1
Mon Jun 26 23:36:54 2017 us=604177 renegotiate_packets = 0
Mon Jun 26 23:36:54 2017 us=604177 renegotiate_seconds = 3600
Mon Jun 26 23:36:54 2017 us=604177 handshake_window = 60
Mon Jun 26 23:36:54 2017 us=604177 transition_window = 3600
Mon Jun 26 23:36:54 2017 us=604177 single_session = DISABLED
Mon Jun 26 23:36:54 2017 us=604177 push_peer_info = DISABLED
Mon Jun 26 23:36:54 2017 us=604177 tls_exit = DISABLED
Mon Jun 26 23:36:54 2017 us=604177 tls_auth_file = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=604177 tls_crypt_file = '..\config\ta.key'
Mon Jun 26 23:36:54 2017 us=604177 pkcs11_protected_authentication = DISABLED
Mon Jun 26 23:36:54 2017 us=604177 pkcs11_protected_authentication = DISABLED
Mon Jun 26 23:36:54 2017 us=604177 pkcs11_protected_authentication = DISABLED
Mon Jun 26 23:36:54 2017 us=604177 pkcs11_protected_authentication = DISABLED
Mon Jun 26 23:36:54 2017 us=604177 pkcs11_protected_authentication = DISABLED
Mon Jun 26 23:36:54 2017 us=604177 pkcs11_protected_authentication = DISABLED
Mon Jun 26 23:36:54 2017 us=604177 pkcs11_protected_authentication = DISABLED
Mon Jun 26 23:36:54 2017 us=604177 pkcs11_protected_authentication = DISABLED
Mon Jun 26 23:36:54 2017 us=604177 pkcs11_protected_authentication = DISABLED
Mon Jun 26 23:36:54 2017 us=604177 pkcs11_protected_authentication = DISABLED
Mon Jun 26 23:36:54 2017 us=604177 pkcs11_protected_authentication = DISABLED
Mon Jun 26 23:36:54 2017 us=604177 pkcs11_protected_authentication = DISABLED
Mon Jun 26 23:36:54 2017 us=604177 pkcs11_protected_authentication = DISABLED
Mon Jun 26 23:36:54 2017 us=604177 pkcs11_protected_authentication = DISABLED
Mon Jun 26 23:36:54 2017 us=604177 pkcs11_protected_authentication = DISABLED
Mon Jun 26 23:36:54 2017 us=604177 pkcs11_protected_authentication = DISABLED
Mon Jun 26 23:36:54 2017 us=604177 pkcs11_private_mode = 00000000
Mon Jun 26 23:36:54 2017 us=604177 pkcs11_private_mode = 00000000
Mon Jun 26 23:36:54 2017 us=604177 pkcs11_private_mode = 00000000
Mon Jun 26 23:36:54 2017 us=604177 pkcs11_private_mode = 00000000
Mon Jun 26 23:36:54 2017 us=604177 pkcs11_private_mode = 00000000
Mon Jun 26 23:36:54 2017 us=604177 pkcs11_private_mode = 00000000
Mon Jun 26 23:36:54 2017 us=604177 pkcs11_private_mode = 00000000
Mon Jun 26 23:36:54 2017 us=604177 pkcs11_private_mode = 00000000
Mon Jun 26 23:36:54 2017 us=604177 pkcs11_private_mode = 00000000
Mon Jun 26 23:36:54 2017 us=604177 pkcs11_private_mode = 00000000
Mon Jun 26 23:36:54 2017 us=604177 pkcs11_private_mode = 00000000
Mon Jun 26 23:36:54 2017 us=604177 pkcs11_private_mode = 00000000
Mon Jun 26 23:36:54 2017 us=604177 pkcs11_private_mode = 00000000
Mon Jun 26 23:36:54 2017 us=604177 pkcs11_private_mode = 00000000
Mon Jun 26 23:36:54 2017 us=604177 pkcs11_private_mode = 00000000
Mon Jun 26 23:36:54 2017 us=604177 pkcs11_private_mode = 00000000
Mon Jun 26 23:36:54 2017 us=606015 pkcs11_cert_private = DISABLED
Mon Jun 26 23:36:54 2017 us=606015 pkcs11_cert_private = DISABLED
Mon Jun 26 23:36:54 2017 us=606015 pkcs11_cert_private = DISABLED
Mon Jun 26 23:36:54 2017 us=606015 pkcs11_cert_private = DISABLED
Mon Jun 26 23:36:54 2017 us=606015 pkcs11_cert_private = DISABLED
Mon Jun 26 23:36:54 2017 us=606015 pkcs11_cert_private = DISABLED
Mon Jun 26 23:36:54 2017 us=606015 pkcs11_cert_private = DISABLED
Mon Jun 26 23:36:54 2017 us=606015 pkcs11_cert_private = DISABLED
Mon Jun 26 23:36:54 2017 us=606406 pkcs11_cert_private = DISABLED
Mon Jun 26 23:36:54 2017 us=606406 pkcs11_cert_private = DISABLED
Mon Jun 26 23:36:54 2017 us=606406 pkcs11_cert_private = DISABLED
Mon Jun 26 23:36:54 2017 us=606406 pkcs11_cert_private = DISABLED
Mon Jun 26 23:36:54 2017 us=606462 pkcs11_cert_private = DISABLED
Mon Jun 26 23:36:54 2017 us=606462 pkcs11_cert_private = DISABLED
Mon Jun 26 23:36:54 2017 us=606462 pkcs11_cert_private = DISABLED
Mon Jun 26 23:36:54 2017 us=606462 pkcs11_cert_private = DISABLED
Mon Jun 26 23:36:54 2017 us=606462 pkcs11_pin_cache_period = -1
Mon Jun 26 23:36:54 2017 us=606462 pkcs11_id = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=606462 pkcs11_id_management = DISABLED
Mon Jun 26 23:36:54 2017 us=606462 server_network = 10.0.0.0
Mon Jun 26 23:36:54 2017 us=606462 server_netmask = 255.255.255.0
Mon Jun 26 23:36:54 2017 us=606462 server_network_ipv6 = ::
Mon Jun 26 23:36:54 2017 us=606462 server_netbits_ipv6 = 0
Mon Jun 26 23:36:54 2017 us=606462 server_bridge_ip = 0.0.0.0
Mon Jun 26 23:36:54 2017 us=606462 server_bridge_netmask = 0.0.0.0
Mon Jun 26 23:36:54 2017 us=606462 server_bridge_pool_start = 0.0.0.0
Mon Jun 26 23:36:54 2017 us=606462 server_bridge_pool_end = 0.0.0.0
Mon Jun 26 23:36:54 2017 us=606462 push_entry = 'route 1.1.1.2 255.255.255.0'
Mon Jun 26 23:36:54 2017 us=606462 push_entry = 'route 10.0.0.1'
Mon Jun 26 23:36:54 2017 us=606462 push_entry = 'topology net30'
Mon Jun 26 23:36:54 2017 us=606462 push_entry = 'ping 10'
Mon Jun 26 23:36:54 2017 us=606462 push_entry = 'ping-restart 120'
Mon Jun 26 23:36:54 2017 us=606462 ifconfig_pool_defined = ENABLED
Mon Jun 26 23:36:54 2017 us=606462 ifconfig_pool_start = 10.0.0.4
Mon Jun 26 23:36:54 2017 us=606462 ifconfig_pool_end = 10.0.0.251
Mon Jun 26 23:36:54 2017 us=606462 ifconfig_pool_netmask = 0.0.0.0
Mon Jun 26 23:36:54 2017 us=606462 ifconfig_pool_persist_filename = '..\log\ipp.txt'
Mon Jun 26 23:36:54 2017 us=606462 ifconfig_pool_persist_refresh_freq = 600
Mon Jun 26 23:36:54 2017 us=606462 ifconfig_ipv6_pool_defined = DISABLED
Mon Jun 26 23:36:54 2017 us=606462 ifconfig_ipv6_pool_base = ::
Mon Jun 26 23:36:54 2017 us=606462 ifconfig_ipv6_pool_netbits = 0
Mon Jun 26 23:36:54 2017 us=606462 n_bcast_buf = 256
Mon Jun 26 23:36:54 2017 us=606462 tcp_queue_limit = 64
Mon Jun 26 23:36:54 2017 us=606462 real_hash_size = 256
Mon Jun 26 23:36:54 2017 us=606462 virtual_hash_size = 256
Mon Jun 26 23:36:54 2017 us=606462 client_connect_script = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=606462 learn_address_script = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=606462 client_disconnect_script = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=606462 client_config_dir = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=606462 ccd_exclusive = DISABLED
Mon Jun 26 23:36:54 2017 us=606462 tmp_dir = 'C:\Windows\TEMP\'
Mon Jun 26 23:36:54 2017 us=606462 push_ifconfig_defined = DISABLED
Mon Jun 26 23:36:54 2017 us=606462 push_ifconfig_local = 0.0.0.0
Mon Jun 26 23:36:54 2017 us=606462 push_ifconfig_remote_netmask = 0.0.0.0
Mon Jun 26 23:36:54 2017 us=606462 push_ifconfig_ipv6_defined = DISABLED
Mon Jun 26 23:36:54 2017 us=606462 push_ifconfig_ipv6_local = ::/0
Mon Jun 26 23:36:54 2017 us=606462 push_ifconfig_ipv6_remote = ::
Mon Jun 26 23:36:54 2017 us=606462 enable_c2c = DISABLED
Mon Jun 26 23:36:54 2017 us=606462 duplicate_cn = DISABLED
Mon Jun 26 23:36:54 2017 us=606462 cf_max = 0
Mon Jun 26 23:36:54 2017 us=606462 cf_per = 0
Mon Jun 26 23:36:54 2017 us=606462 max_clients = 10
Mon Jun 26 23:36:54 2017 us=606462 max_routes_per_client = 256
Mon Jun 26 23:36:54 2017 us=606462 auth_user_pass_verify_script = 'C:\Program Files\OpenVPN\config\auth.bat'
Mon Jun 26 23:36:54 2017 us=606462 auth_user_pass_verify_script_via_file = DISABLED
Mon Jun 26 23:36:54 2017 us=606462 auth_token_generate = DISABLED
Mon Jun 26 23:36:54 2017 us=606462 auth_token_lifetime = 0
Mon Jun 26 23:36:54 2017 us=606462 client = DISABLED
Mon Jun 26 23:36:54 2017 us=606462 pull = DISABLED
Mon Jun 26 23:36:54 2017 us=606462 auth_user_pass_file = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=606462 show_net_up = DISABLED
Mon Jun 26 23:36:54 2017 us=606462 route_method = 2
Mon Jun 26 23:36:54 2017 us=606462 block_outside_dns = DISABLED
Mon Jun 26 23:36:54 2017 us=606462 ip_win32_defined = DISABLED
Mon Jun 26 23:36:54 2017 us=606462 ip_win32_type = 3
Mon Jun 26 23:36:54 2017 us=606462 dhcp_masq_offset = 0
Mon Jun 26 23:36:54 2017 us=606462 dhcp_lease_time = 31536000
Mon Jun 26 23:36:54 2017 us=606462 tap_sleep = 5
Mon Jun 26 23:36:54 2017 us=606462 dhcp_options = DISABLED
Mon Jun 26 23:36:54 2017 us=606462 dhcp_renew = DISABLED
Mon Jun 26 23:36:54 2017 us=606462 dhcp_pre_release = DISABLED
Mon Jun 26 23:36:54 2017 us=606462 domain = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=606462 netbios_scope = '[UNDEF]'
Mon Jun 26 23:36:54 2017 us=606462 netbios_node_type = 0
Mon Jun 26 23:36:54 2017 us=606462 disable_nbt = DISABLED
Mon Jun 26 23:36:54 2017 us=606462 OpenVPN 2.4.3 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [AEAD] built on Jun 20 2017
Mon Jun 26 23:36:54 2017 us=606462 Windows version 6.2 (Windows 8 or greater) 64bit
Mon Jun 26 23:36:54 2017 us=606462 library versions: OpenSSL 1.0.2l 25 May 2017, LZO 2.10
Mon Jun 26 23:36:54 2017 us=612090 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Mon Jun 26 23:36:54 2017 us=900159 Outgoing Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mon Jun 26 23:36:54 2017 us=900159 Outgoing Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mon Jun 26 23:36:54 2017 us=900159 Incoming Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mon Jun 26 23:36:54 2017 us=900159 Incoming Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mon Jun 26 23:36:54 2017 us=900159 TLS-Auth MTU parms [ L:1622 D:1156 EF:94 EB:0 ET:0 EL:3 ]
Mon Jun 26 23:36:54 2017 us=900159 interactive service msg_channel=0
Mon Jun 26 23:36:54 2017 us=905012 ROUTE_GATEWAY 1.1.1.1/255.255.255.0 I=14 HWADDR=00:00:00:00:00:00
Mon Jun 26 23:36:54 2017 us=905012 open_tun
Mon Jun 26 23:36:54 2017 us=905012 TAP-WIN32 device [VPN] opened: \\.\Global\{D96D5C1D-}.tap
Mon Jun 26 23:36:54 2017 us=905012 TAP-Windows Driver Version 9.21
Mon Jun 26 23:36:54 2017 us=905012 TAP-Windows MTU=1500
Mon Jun 26 23:36:54 2017 us=909445 Notified TAP-Windows driver to set a DHCP IP/netmask of 10.0.0.1/255.255.255.252 on interface {D96D5C1D-F453-4648-A76B-B261196CD130} [DHCP-serv: 10.0.0.2, lease-time: 31536000]
Mon Jun 26 23:36:54 2017 us=910087 Sleeping for 5 seconds...
Mon Jun 26 23:36:59 2017 us=910907 Successful ARP Flush on interface [15] {D96D5C1D-F453-4648-A76B-B261196CD130}
Mon Jun 26 23:36:59 2017 us=912864 do_ifconfig, tt->did_ifconfig_ipv6_setup=0
Mon Jun 26 23:36:59 2017 us=912864 C:\Windows\system32\route.exe ADD 10.0.0.0 MASK 255.255.255.0 10.0.0.2
Mon Jun 26 23:36:59 2017 us=912864 env_block: add PATH=C:\Windows\System32;C:\Windows;C:\Windows\System32\Wbem
Mon Jun 26 23:36:59 2017 us=966869 Data Channel MTU parms [ L:1622 D:1450 EF:122 EB:406 ET:0 EL:3 ]
Mon Jun 26 23:36:59 2017 us=967546 Socket Buffers: R=[65536->65536] S=[65536->65536]
Mon Jun 26 23:36:59 2017 us=967546 UDPv4 link local (bound): [AF_INET][undef]:1194
Mon Jun 26 23:36:59 2017 us=967546 UDPv4 link remote: [AF_UNSPEC]
Mon Jun 26 23:36:59 2017 us=967546 MULTI: multi_init called, r=256 v=256
Mon Jun 26 23:36:59 2017 us=968528 IFCONFIG POOL: base=10.0.0.4 size=62, ipv6=0
Mon Jun 26 23:36:59 2017 us=968528 IFCONFIG POOL LIST
Mon Jun 26 23:36:59 2017 us=968528 Initialization Sequence Completed
Code: Select all
Mon Jun 26 21:03:37 2017 us=375812 Current Parameter Settings:
Mon Jun 26 21:03:37 2017 us=375812 config = 'client.ovpn'
Mon Jun 26 21:03:37 2017 us=375812 mode = 0
Mon Jun 26 21:03:37 2017 us=375812 show_ciphers = DISABLED
Mon Jun 26 21:03:37 2017 us=375812 show_digests = DISABLED
Mon Jun 26 21:03:37 2017 us=375812 show_engines = DISABLED
Mon Jun 26 21:03:37 2017 us=375812 genkey = DISABLED
Mon Jun 26 21:03:37 2017 us=375812 key_pass_file = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=375812 show_tls_ciphers = DISABLED
Mon Jun 26 21:03:37 2017 us=375812 connect_retry_max = 0
Mon Jun 26 21:03:37 2017 us=375812 Connection profiles [0]:
Mon Jun 26 21:03:37 2017 us=375812 proto = udp4
Mon Jun 26 21:03:37 2017 us=375812 local = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=375812 local_port = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=375812 remote = '1.1.1.2'
Mon Jun 26 21:03:37 2017 us=375812 remote_port = '1194'
Mon Jun 26 21:03:37 2017 us=375812 remote_float = DISABLED
Mon Jun 26 21:03:37 2017 us=375812 bind_defined = DISABLED
Mon Jun 26 21:03:37 2017 us=375812 bind_local = DISABLED
Mon Jun 26 21:03:37 2017 us=375812 bind_ipv6_only = DISABLED
Mon Jun 26 21:03:37 2017 us=375812 connect_retry_seconds = 5
Mon Jun 26 21:03:37 2017 us=375812 connect_timeout = 120
Mon Jun 26 21:03:37 2017 us=375812 socks_proxy_server = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=375812 socks_proxy_port = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=375812 tun_mtu = 1500
Mon Jun 26 21:03:37 2017 us=375812 tun_mtu_defined = ENABLED
Mon Jun 26 21:03:37 2017 us=375812 link_mtu = 1500
Mon Jun 26 21:03:37 2017 us=375812 link_mtu_defined = DISABLED
Mon Jun 26 21:03:37 2017 us=376311 tun_mtu_extra = 0
Mon Jun 26 21:03:37 2017 us=376311 tun_mtu_extra_defined = DISABLED
Mon Jun 26 21:03:37 2017 us=376311 mtu_discover_type = -1
Mon Jun 26 21:03:37 2017 us=376311 fragment = 0
Mon Jun 26 21:03:37 2017 us=376311 mssfix = 1450
Mon Jun 26 21:03:37 2017 us=376311 explicit_exit_notification = 0
Mon Jun 26 21:03:37 2017 us=376311 Connection profiles END
Mon Jun 26 21:03:37 2017 us=376311 remote_random = DISABLED
Mon Jun 26 21:03:37 2017 us=376311 ipchange = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=376311 dev = 'tun'
Mon Jun 26 21:03:37 2017 us=376311 dev_type = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=376311 dev_node = 'VPN'
Mon Jun 26 21:03:37 2017 us=376311 lladdr = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=376311 topology = 1
Mon Jun 26 21:03:37 2017 us=376311 ifconfig_local = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=376311 ifconfig_remote_netmask = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=376311 ifconfig_noexec = DISABLED
Mon Jun 26 21:03:37 2017 us=376311 ifconfig_nowarn = DISABLED
Mon Jun 26 21:03:37 2017 us=376311 ifconfig_ipv6_local = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=376311 ifconfig_ipv6_netbits = 0
Mon Jun 26 21:03:37 2017 us=376311 ifconfig_ipv6_remote = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=376311 shaper = 0
Mon Jun 26 21:03:37 2017 us=376311 mtu_test = 0
Mon Jun 26 21:03:37 2017 us=376311 mlock = DISABLED
Mon Jun 26 21:03:37 2017 us=376311 keepalive_ping = 0
Mon Jun 26 21:03:37 2017 us=376311 keepalive_timeout = 0
Mon Jun 26 21:03:37 2017 us=376311 inactivity_timeout = 0
Mon Jun 26 21:03:37 2017 us=376311 ping_send_timeout = 0
Mon Jun 26 21:03:37 2017 us=376311 ping_rec_timeout = 0
Mon Jun 26 21:03:37 2017 us=376311 ping_rec_timeout_action = 0
Mon Jun 26 21:03:37 2017 us=376311 ping_timer_remote = DISABLED
Mon Jun 26 21:03:37 2017 us=376311 remap_sigusr1 = 0
Mon Jun 26 21:03:37 2017 us=376311 persist_tun = ENABLED
Mon Jun 26 21:03:37 2017 us=376311 persist_local_ip = DISABLED
Mon Jun 26 21:03:37 2017 us=376311 persist_remote_ip = DISABLED
Mon Jun 26 21:03:37 2017 us=376311 persist_key = ENABLED
Mon Jun 26 21:03:37 2017 us=376311 passtos = DISABLED
Mon Jun 26 21:03:37 2017 us=376311 resolve_retry_seconds = 1000000000
Mon Jun 26 21:03:37 2017 us=376311 resolve_in_advance = DISABLED
Mon Jun 26 21:03:37 2017 us=376311 username = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=376311 groupname = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=376811 chroot_dir = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=376811 cd_dir = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=376811 writepid = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=376811 up_script = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=376811 down_script = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=376811 down_pre = DISABLED
Mon Jun 26 21:03:37 2017 us=376811 up_restart = DISABLED
Mon Jun 26 21:03:37 2017 us=376811 up_delay = DISABLED
Mon Jun 26 21:03:37 2017 us=376811 daemon = DISABLED
Mon Jun 26 21:03:37 2017 us=376811 inetd = 0
Mon Jun 26 21:03:37 2017 us=376811 log = ENABLED
Mon Jun 26 21:03:37 2017 us=376811 suppress_timestamps = DISABLED
Mon Jun 26 21:03:37 2017 us=376811 machine_readable_output = DISABLED
Mon Jun 26 21:03:37 2017 us=376811 nice = 0
Mon Jun 26 21:03:37 2017 us=376811 verbosity = 4
Mon Jun 26 21:03:37 2017 us=376811 mute = 0
Mon Jun 26 21:03:37 2017 us=376811 gremlin = 0
Mon Jun 26 21:03:37 2017 us=376811 status_file = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=376811 status_file_version = 1
Mon Jun 26 21:03:37 2017 us=376811 status_file_update_freq = 60
Mon Jun 26 21:03:37 2017 us=376811 occ = ENABLED
Mon Jun 26 21:03:37 2017 us=376811 rcvbuf = 0
Mon Jun 26 21:03:37 2017 us=376811 sndbuf = 0
Mon Jun 26 21:03:37 2017 us=376811 sockflags = 0
Mon Jun 26 21:03:37 2017 us=376811 fast_io = DISABLED
Mon Jun 26 21:03:37 2017 us=376811 comp.alg = 11
Mon Jun 26 21:03:37 2017 us=376811 comp.flags = 0
Mon Jun 26 21:03:37 2017 us=376811 route_script = 'route.bat'
Mon Jun 26 21:03:37 2017 us=376811 route_default_gateway = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=376811 route_default_metric = 0
Mon Jun 26 21:03:37 2017 us=376811 route_noexec = DISABLED
Mon Jun 26 21:03:37 2017 us=376811 route_delay = 5
Mon Jun 26 21:03:37 2017 us=376811 route_delay_window = 30
Mon Jun 26 21:03:37 2017 us=376811 route_delay_defined = ENABLED
Mon Jun 26 21:03:37 2017 us=376811 route_nopull = DISABLED
Mon Jun 26 21:03:37 2017 us=376811 route_gateway_via_dhcp = DISABLED
Mon Jun 26 21:03:37 2017 us=376811 allow_pull_fqdn = DISABLED
Mon Jun 26 21:03:37 2017 us=376811 [redirect_default_gateway local=0]
Mon Jun 26 21:03:37 2017 us=376811 management_addr = '127.0.0.1'
Mon Jun 26 21:03:37 2017 us=376811 management_port = '25340'
Mon Jun 26 21:03:37 2017 us=376811 management_user_pass = 'stdin'
Mon Jun 26 21:03:37 2017 us=376811 management_log_history_cache = 250
Mon Jun 26 21:03:37 2017 us=376811 management_echo_buffer_size = 100
Mon Jun 26 21:03:37 2017 us=376811 management_write_peer_info_file = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=376811 management_client_user = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=377309 management_client_group = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=377309 management_flags = 6
Mon Jun 26 21:03:37 2017 us=377309 shared_secret_file = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=377309 key_direction = 0
Mon Jun 26 21:03:37 2017 us=377309 ciphername = 'AES-256-GCM'
Mon Jun 26 21:03:37 2017 us=377309 ncp_enabled = ENABLED
Mon Jun 26 21:03:37 2017 us=377309 ncp_ciphers = 'AES-256-GCM'
Mon Jun 26 21:03:37 2017 us=377309 authname = 'sha512'
Mon Jun 26 21:03:37 2017 us=377309 prng_hash = 'SHA1'
Mon Jun 26 21:03:37 2017 us=377309 prng_nonce_secret_len = 16
Mon Jun 26 21:03:37 2017 us=377309 keysize = 0
Mon Jun 26 21:03:37 2017 us=377309 engine = DISABLED
Mon Jun 26 21:03:37 2017 us=377309 replay = ENABLED
Mon Jun 26 21:03:37 2017 us=377309 mute_replay_warnings = DISABLED
Mon Jun 26 21:03:37 2017 us=377309 replay_window = 64
Mon Jun 26 21:03:37 2017 us=377309 replay_time = 15
Mon Jun 26 21:03:37 2017 us=377309 packet_id_file = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=377309 use_iv = ENABLED
Mon Jun 26 21:03:37 2017 us=377309 test_crypto = DISABLED
Mon Jun 26 21:03:37 2017 us=377309 tls_server = DISABLED
Mon Jun 26 21:03:37 2017 us=377309 tls_client = ENABLED
Mon Jun 26 21:03:37 2017 us=377309 key_method = 2
Mon Jun 26 21:03:37 2017 us=377309 ca_file = 'ca.crt'
Mon Jun 26 21:03:37 2017 us=377309 ca_path = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=377309 dh_file = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=377309 cert_file = 'client1.crt'
Mon Jun 26 21:03:37 2017 us=377309 extra_certs_file = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=377309 priv_key_file = 'client1.key'
Mon Jun 26 21:03:37 2017 us=377309 pkcs12_file = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=377309 cryptoapi_cert = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=377309 cipher_list = 'TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384:TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384:TLS-DHE-RSA-WITH-AES-256-CBC-SHA256'
Mon Jun 26 21:03:37 2017 us=377309 tls_verify = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=377309 tls_export_cert = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=377309 verify_x509_type = 2
Mon Jun 26 21:03:37 2017 us=377309 verify_x509_name = 'C=changeme, O=changeme, CN=changeme'
Mon Jun 26 21:03:37 2017 us=377309 crl_file = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=377309 ns_cert_type = 1
Mon Jun 26 21:03:37 2017 us=377309 remote_cert_ku[i] = 65535
Mon Jun 26 21:03:37 2017 us=377309 remote_cert_ku[i] = 0
Mon Jun 26 21:03:37 2017 us=377309 remote_cert_ku[i] = 0
Mon Jun 26 21:03:37 2017 us=377309 remote_cert_ku[i] = 0
Mon Jun 26 21:03:37 2017 us=377309 remote_cert_ku[i] = 0
Mon Jun 26 21:03:37 2017 us=377309 remote_cert_ku[i] = 0
Mon Jun 26 21:03:37 2017 us=377309 remote_cert_ku[i] = 0
Mon Jun 26 21:03:37 2017 us=377309 remote_cert_ku[i] = 0
Mon Jun 26 21:03:37 2017 us=377309 remote_cert_ku[i] = 0
Mon Jun 26 21:03:37 2017 us=377809 remote_cert_ku[i] = 0
Mon Jun 26 21:03:37 2017 us=377809 remote_cert_ku[i] = 0
Mon Jun 26 21:03:37 2017 us=377809 remote_cert_ku[i] = 0
Mon Jun 26 21:03:37 2017 us=377809 remote_cert_ku[i] = 0
Mon Jun 26 21:03:37 2017 us=377809 remote_cert_ku[i] = 0
Mon Jun 26 21:03:37 2017 us=377809 remote_cert_ku[i] = 0
Mon Jun 26 21:03:37 2017 us=377809 remote_cert_ku[i] = 0
Mon Jun 26 21:03:37 2017 us=377809 remote_cert_eku = 'TLS Web Server Authentication'
Mon Jun 26 21:03:37 2017 us=377809 ssl_flags = 192
Mon Jun 26 21:03:37 2017 us=377809 tls_timeout = 2
Mon Jun 26 21:03:37 2017 us=377809 renegotiate_bytes = -1
Mon Jun 26 21:03:37 2017 us=377809 renegotiate_packets = 0
Mon Jun 26 21:03:37 2017 us=377809 renegotiate_seconds = 3600
Mon Jun 26 21:03:37 2017 us=377809 handshake_window = 60
Mon Jun 26 21:03:37 2017 us=377809 transition_window = 3600
Mon Jun 26 21:03:37 2017 us=377809 single_session = DISABLED
Mon Jun 26 21:03:37 2017 us=377809 push_peer_info = DISABLED
Mon Jun 26 21:03:37 2017 us=377809 tls_exit = DISABLED
Mon Jun 26 21:03:37 2017 us=377809 tls_auth_file = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=377809 tls_crypt_file = 'ta.key'
Mon Jun 26 21:03:37 2017 us=377809 pkcs11_protected_authentication = DISABLED
Mon Jun 26 21:03:37 2017 us=377809 pkcs11_protected_authentication = DISABLED
Mon Jun 26 21:03:37 2017 us=377809 pkcs11_protected_authentication = DISABLED
Mon Jun 26 21:03:37 2017 us=377809 pkcs11_protected_authentication = DISABLED
Mon Jun 26 21:03:37 2017 us=377809 pkcs11_protected_authentication = DISABLED
Mon Jun 26 21:03:37 2017 us=377809 pkcs11_protected_authentication = DISABLED
Mon Jun 26 21:03:37 2017 us=377809 pkcs11_protected_authentication = DISABLED
Mon Jun 26 21:03:37 2017 us=377809 pkcs11_protected_authentication = DISABLED
Mon Jun 26 21:03:37 2017 us=377809 pkcs11_protected_authentication = DISABLED
Mon Jun 26 21:03:37 2017 us=377809 pkcs11_protected_authentication = DISABLED
Mon Jun 26 21:03:37 2017 us=377809 pkcs11_protected_authentication = DISABLED
Mon Jun 26 21:03:37 2017 us=377809 pkcs11_protected_authentication = DISABLED
Mon Jun 26 21:03:37 2017 us=377809 pkcs11_protected_authentication = DISABLED
Mon Jun 26 21:03:37 2017 us=377809 pkcs11_protected_authentication = DISABLED
Mon Jun 26 21:03:37 2017 us=377809 pkcs11_protected_authentication = DISABLED
Mon Jun 26 21:03:37 2017 us=377809 pkcs11_protected_authentication = DISABLED
Mon Jun 26 21:03:37 2017 us=377809 pkcs11_private_mode = 00000000
Mon Jun 26 21:03:37 2017 us=377809 pkcs11_private_mode = 00000000
Mon Jun 26 21:03:37 2017 us=377809 pkcs11_private_mode = 00000000
Mon Jun 26 21:03:37 2017 us=377809 pkcs11_private_mode = 00000000
Mon Jun 26 21:03:37 2017 us=377809 pkcs11_private_mode = 00000000
Mon Jun 26 21:03:37 2017 us=377809 pkcs11_private_mode = 00000000
Mon Jun 26 21:03:37 2017 us=377809 pkcs11_private_mode = 00000000
Mon Jun 26 21:03:37 2017 us=377809 pkcs11_private_mode = 00000000
Mon Jun 26 21:03:37 2017 us=377809 pkcs11_private_mode = 00000000
Mon Jun 26 21:03:37 2017 us=378309 pkcs11_private_mode = 00000000
Mon Jun 26 21:03:37 2017 us=378309 pkcs11_private_mode = 00000000
Mon Jun 26 21:03:37 2017 us=378309 pkcs11_private_mode = 00000000
Mon Jun 26 21:03:37 2017 us=378309 pkcs11_private_mode = 00000000
Mon Jun 26 21:03:37 2017 us=378309 pkcs11_private_mode = 00000000
Mon Jun 26 21:03:37 2017 us=378309 pkcs11_private_mode = 00000000
Mon Jun 26 21:03:37 2017 us=378309 pkcs11_private_mode = 00000000
Mon Jun 26 21:03:37 2017 us=378309 pkcs11_cert_private = DISABLED
Mon Jun 26 21:03:37 2017 us=378309 pkcs11_cert_private = DISABLED
Mon Jun 26 21:03:37 2017 us=378309 pkcs11_cert_private = DISABLED
Mon Jun 26 21:03:37 2017 us=378309 pkcs11_cert_private = DISABLED
Mon Jun 26 21:03:37 2017 us=378309 pkcs11_cert_private = DISABLED
Mon Jun 26 21:03:37 2017 us=378309 pkcs11_cert_private = DISABLED
Mon Jun 26 21:03:37 2017 us=378309 pkcs11_cert_private = DISABLED
Mon Jun 26 21:03:37 2017 us=378309 pkcs11_cert_private = DISABLED
Mon Jun 26 21:03:37 2017 us=378309 pkcs11_cert_private = DISABLED
Mon Jun 26 21:03:37 2017 us=378309 pkcs11_cert_private = DISABLED
Mon Jun 26 21:03:37 2017 us=378309 pkcs11_cert_private = DISABLED
Mon Jun 26 21:03:37 2017 us=378309 pkcs11_cert_private = DISABLED
Mon Jun 26 21:03:37 2017 us=378309 pkcs11_cert_private = DISABLED
Mon Jun 26 21:03:37 2017 us=378309 pkcs11_cert_private = DISABLED
Mon Jun 26 21:03:37 2017 us=378309 pkcs11_cert_private = DISABLED
Mon Jun 26 21:03:37 2017 us=378309 pkcs11_cert_private = DISABLED
Mon Jun 26 21:03:37 2017 us=378309 pkcs11_pin_cache_period = -1
Mon Jun 26 21:03:37 2017 us=378309 pkcs11_id = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=378309 pkcs11_id_management = DISABLED
Mon Jun 26 21:03:37 2017 us=378309 server_network = 0.0.0.0
Mon Jun 26 21:03:37 2017 us=378309 server_netmask = 0.0.0.0
Mon Jun 26 21:03:37 2017 us=378309 server_network_ipv6 = ::
Mon Jun 26 21:03:37 2017 us=378309 server_netbits_ipv6 = 0
Mon Jun 26 21:03:37 2017 us=378309 server_bridge_ip = 0.0.0.0
Mon Jun 26 21:03:37 2017 us=378309 server_bridge_netmask = 0.0.0.0
Mon Jun 26 21:03:37 2017 us=378309 server_bridge_pool_start = 0.0.0.0
Mon Jun 26 21:03:37 2017 us=378309 server_bridge_pool_end = 0.0.0.0
Mon Jun 26 21:03:37 2017 us=378309 ifconfig_pool_defined = DISABLED
Mon Jun 26 21:03:37 2017 us=378309 ifconfig_pool_start = 0.0.0.0
Mon Jun 26 21:03:37 2017 us=378309 ifconfig_pool_end = 0.0.0.0
Mon Jun 26 21:03:37 2017 us=378309 ifconfig_pool_netmask = 0.0.0.0
Mon Jun 26 21:03:37 2017 us=378309 ifconfig_pool_persist_filename = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=378309 ifconfig_pool_persist_refresh_freq = 600
Mon Jun 26 21:03:37 2017 us=378309 ifconfig_ipv6_pool_defined = DISABLED
Mon Jun 26 21:03:37 2017 us=378309 ifconfig_ipv6_pool_base = ::
Mon Jun 26 21:03:37 2017 us=378309 ifconfig_ipv6_pool_netbits = 0
Mon Jun 26 21:03:37 2017 us=378309 n_bcast_buf = 256
Mon Jun 26 21:03:37 2017 us=378309 tcp_queue_limit = 64
Mon Jun 26 21:03:37 2017 us=378810 real_hash_size = 256
Mon Jun 26 21:03:37 2017 us=378810 virtual_hash_size = 256
Mon Jun 26 21:03:37 2017 us=378810 client_connect_script = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=378810 learn_address_script = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=378810 client_disconnect_script = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=378810 client_config_dir = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=378810 ccd_exclusive = DISABLED
Mon Jun 26 21:03:37 2017 us=378810 tmp_dir = 'C:\Users\Install\AppData\Local\Temp\'
Mon Jun 26 21:03:37 2017 us=378810 push_ifconfig_defined = DISABLED
Mon Jun 26 21:03:37 2017 us=378810 push_ifconfig_local = 0.0.0.0
Mon Jun 26 21:03:37 2017 us=378810 push_ifconfig_remote_netmask = 0.0.0.0
Mon Jun 26 21:03:37 2017 us=378810 push_ifconfig_ipv6_defined = DISABLED
Mon Jun 26 21:03:37 2017 us=378810 push_ifconfig_ipv6_local = ::/0
Mon Jun 26 21:03:37 2017 us=378810 push_ifconfig_ipv6_remote = ::
Mon Jun 26 21:03:37 2017 us=378810 enable_c2c = DISABLED
Mon Jun 26 21:03:37 2017 us=378810 duplicate_cn = DISABLED
Mon Jun 26 21:03:37 2017 us=378810 cf_max = 0
Mon Jun 26 21:03:37 2017 us=378810 cf_per = 0
Mon Jun 26 21:03:37 2017 us=378810 max_clients = 1024
Mon Jun 26 21:03:37 2017 us=378810 max_routes_per_client = 256
Mon Jun 26 21:03:37 2017 us=378810 auth_user_pass_verify_script = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=378810 auth_user_pass_verify_script_via_file = DISABLED
Mon Jun 26 21:03:37 2017 us=378810 auth_token_generate = DISABLED
Mon Jun 26 21:03:37 2017 us=378810 auth_token_lifetime = 0
Mon Jun 26 21:03:37 2017 us=378810 client = ENABLED
Mon Jun 26 21:03:37 2017 us=378810 pull = ENABLED
Mon Jun 26 21:03:37 2017 us=378810 auth_user_pass_file = 'client1.txt'
Mon Jun 26 21:03:37 2017 us=378810 show_net_up = DISABLED
Mon Jun 26 21:03:37 2017 us=378810 route_method = 3
Mon Jun 26 21:03:37 2017 us=378810 block_outside_dns = DISABLED
Mon Jun 26 21:03:37 2017 us=378810 ip_win32_defined = DISABLED
Mon Jun 26 21:03:37 2017 us=378810 ip_win32_type = 3
Mon Jun 26 21:03:37 2017 us=378810 dhcp_masq_offset = 0
Mon Jun 26 21:03:37 2017 us=378810 dhcp_lease_time = 31536000
Mon Jun 26 21:03:37 2017 us=378810 tap_sleep = 0
Mon Jun 26 21:03:37 2017 us=378810 dhcp_options = ENABLED
Mon Jun 26 21:03:37 2017 us=378810 dhcp_renew = DISABLED
Mon Jun 26 21:03:37 2017 us=378810 dhcp_pre_release = DISABLED
Mon Jun 26 21:03:37 2017 us=378810 domain = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=378810 netbios_scope = '[UNDEF]'
Mon Jun 26 21:03:37 2017 us=378810 netbios_node_type = 0
Mon Jun 26 21:03:37 2017 us=378810 disable_nbt = DISABLED
Mon Jun 26 21:03:37 2017 us=378810 DNS[0] = 0.0.0.0
Mon Jun 26 21:03:37 2017 us=379309 OpenVPN 2.4.3 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [AEAD] built on Jun 20 2017
Mon Jun 26 21:03:37 2017 us=379309 Windows version 6.2 (Windows 8 or greater) 64bit
Mon Jun 26 21:03:37 2017 us=379309 library versions: OpenSSL 1.0.2l 25 May 2017, LZO 2.10
Enter Management Password:
Mon Jun 26 21:03:37 2017 us=379810 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:25340
Mon Jun 26 21:03:37 2017 us=379810 Need hold release from management interface, waiting...
Mon Jun 26 21:03:37 2017 us=855994 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:25340
Mon Jun 26 21:03:37 2017 us=966037 MANAGEMENT: CMD 'state on'
Mon Jun 26 21:03:37 2017 us=966037 MANAGEMENT: CMD 'log all on'
Mon Jun 26 21:03:38 2017 us=79055 MANAGEMENT: CMD 'echo all on'
Mon Jun 26 21:03:38 2017 us=80054 MANAGEMENT: CMD 'hold off'
Mon Jun 26 21:03:38 2017 us=81557 MANAGEMENT: CMD 'hold release'
Mon Jun 26 21:03:38 2017 us=81557 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Mon Jun 26 21:03:41 2017 us=188976 MANAGEMENT: Client disconnected
Mon Jun 26 21:03:41 2017 us=188976 ERROR: could not read Private Key username/password/ok/string from management interface
Mon Jun 26 21:03:41 2017 us=188976 Exiting due to fatal error