After client disconnect, cannot reconnect

This forum is for admins who are looking to build or expand their OpenVPN setup.
Forum rules
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
Post Reply
jafree
OpenVpn Newbie
Posts: 4
Joined: Thu Dec 13, 2018 9:18 am

After client disconnect, cannot reconnect

Post by jafree » Wed Jan 09, 2019 7:20 am

I have a client and server set up. Both are using the same OpenVPN version:

Code: Select all

OpenVPN 2.4.5 mips-openwrt-linux-gnu [SSL (mbed TLS)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD]
library versions: mbed TLS 2.12.0, LZO 2.10
Originally developed by James Yonan
Copyright (C) 2002-2018 OpenVPN Inc <sales@openvpn.net>
The client/server are configured to use UDP. Connecting the client and server worked. However, I then rebooted the client and when it came back online, it could no longer connect to the server. I saw this message, repeated in the log:

Code: Select all

SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
After about ten minutes, the client still wasn't connecting and was stuck in a loop (connect successfully, then get stuck on PUSH_REQUEST). I gave up and restarted OpenVPN on the server. After that, the client was able to connect without issue.

This seems like a pretty serious bug. Are there workarounds? Is the bug being addressed?

Thanks!

== configutations ==

192.168.100.0/24 network
Client config

client
persist-key
persist-tun
ca ca.crt
cert client.crt
key client.key
cipher BF-CBC
dev tun
dev-type tun

remote <server>
keepalive 10 120
port 1194
proto udp

verb 4
compress

log /tmp/openvpn.log


192.168.2.0/24 network
Server config

client-to-client
persist-key
persist-tun
ca ca.crt
cert server.crt
dh dh.pem
key server.key
cipher BF-CBC
client-config-dir ccd
dev tun
dev-type tun
ifconfig-pool-persist ipp.txt 600
keepalive 10 120
port 1194
proto udp
route 192.168.100.0 255.255.255.0
server 192.168.200.0 255.255.255.0
status /tmp/openvpn-status.log
log /tmp/openvpn.log
verb 3
compress


== log (excerpt) ==

Code: Select all

Wed Jan  9 06:57:33 2019 us=192179 No reply from server after sending 12 push requests
Wed Jan  9 06:57:33 2019 us=193543 TCP/UDP: Closing socket
Wed Jan  9 06:57:33 2019 us=194348 SIGUSR1[soft,no-push-reply] received, process restarting
Wed Jan  9 06:57:33 2019 us=195021 Restart pause, 10 second(s)
Wed Jan  9 06:57:43 2019 us=195704 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
Wed Jan  9 06:57:43 2019 us=196323 Re-using SSL/TLS context
Wed Jan  9 06:57:43 2019 us=198768 Control Channel MTU parms [ L:1622 D:1212 EF:38 EB:0 ET:0 EL:3 ]
Wed Jan  9 06:57:43 2019 us=205474 Data Channel MTU parms [ L:1622 D:1450 EF:122 EB:406 ET:0 EL:3 ]
Wed Jan  9 06:57:43 2019 us=206377 Local Options String (VER=V4): 'V4,dev-type tun,link-mtu 1542,tun-mtu 1500,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Wed Jan  9 06:57:43 2019 us=206948 Expected Remote Options String (VER=V4): 'V4,dev-type tun,link-mtu 1542,tun-mtu 1500,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Wed Jan  9 06:57:43 2019 us=207597 TCP/UDP: Preserving recently used remote address: [AF_INET]<server>:1194
Wed Jan  9 06:57:43 2019 us=208238 Socket Buffers: R=[163840->163840] S=[163840->163840]
Wed Jan  9 06:57:43 2019 us=208899 UDP link local (bound): [AF_INET][undef]:1194
Wed Jan  9 06:57:43 2019 us=209534 UDP link remote: [AF_INET]<server>:1194
Wed Jan  9 06:57:43 2019 us=214629 TLS: Initial packet from [AF_INET]<server>:1194, sid=fb9e9442 46859f0f
Wed Jan  9 06:57:43 2019 us=543569 VERIFY OK: depth=1, CN=private
Wed Jan  9 06:57:43 2019 us=548404 VERIFY OK: depth=0, CN=server
Wed Jan  9 06:57:45 2019 us=226675 Control Channel: TLSv1.2, cipher TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384, 2048 bit key
Wed Jan  9 06:57:45 2019 us=227540 [server] Peer Connection Initiated with [AF_INET]<server>:1194
Wed Jan  9 06:57:46 2019 us=399597 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
Wed Jan  9 06:57:51 2019 us=750022 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
Wed Jan  9 06:57:56 2019 us=929405 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
Wed Jan  9 06:58:02 2019 us=142269 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
Wed Jan  9 06:58:07 2019 us=352258 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
Wed Jan  9 06:58:12 2019 us=449629 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
Wed Jan  9 06:58:17 2019 us=547467 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
Wed Jan  9 06:58:22 2019 us=642268 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
Wed Jan  9 06:58:27 2019 us=741715 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
Wed Jan  9 06:58:32 2019 us=952266 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
Wed Jan  9 06:58:38 2019 us=162263 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
Wed Jan  9 06:58:43 2019 us=282271 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
Wed Jan  9 06:58:48 2019 us=403079 No reply from server after sending 12 push requests

User avatar
TinCanTech
OpenVPN Protagonist
Posts: 5698
Joined: Fri Jun 03, 2016 1:17 pm

Re: After client disconnect, cannot reconnect

Post by TinCanTech » Wed Jan 09, 2019 2:41 pm

You post to Server Administration and then do not post your server log ..

viewtopic.php?f=30&t=22603

Post Reply