OpenVPN - TAP - Can't ping LAN

Need help configuring your VPN? Just post here and you'll get that help.
Forum rules
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
Post Reply
o14p
OpenVpn Newbie
Posts: 7
Joined: Tue Mar 10, 2020 6:07 pm

OpenVPN - TAP - Can't ping LAN

Post by o14p » Thu Jul 29, 2021 12:57 pm

Hi all,

I can't get the OpenVPN to work properly anymore. Does anyone see the mistake or know the trick to get it to work?

RUTX10 - OpenVPN Server Config
  • See screenshot
  • RUTX10 DHCP enabled and is working for local connections (wired and wireless). Internet connection also works.
  • Router IP: 192.168.14.254
Image

OpenVPN - Client - Config
  • Windows 10
  • OpenVPN 2.5.3 (Community download)
.OVPN Client Config file:
Client Config

client
dev tap
dev-node MyTap
proto udp
remote 5.206.212.114 1194
resolv-retry infinite
nobind
persist-key
;persist-tun
ca ca.crt
cert opa.crt
key opa.key
remote-cert-tls server
cipher AES-256-CBC
verb 3


Client LOG file

2021-07-29 14:48:04 DEPRECATED OPTION: --cipher set to 'AES-256-CBC' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'AES-256-CBC' to --data-ciphers or change --cipher 'AES-256-CBC' to --data-ciphers-fallback 'AES-256-CBC' to silence this warning.

2021-07-29 14:48:04 OpenVPN 2.5.3 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [AEAD] built on Jun 17 2021

2021-07-29 14:48:04 Windows version 10.0 (Windows 10 or greater) 64bit

2021-07-29 14:48:04 library versions: OpenSSL 1.1.1k 25 Mar 2021, LZO 2.10

Enter Management Password:

2021-07-29 14:48:04 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:25340

2021-07-29 14:48:04 Need hold release from management interface, waiting...

2021-07-29 14:48:05 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:25340

2021-07-29 14:48:05 MANAGEMENT: CMD 'state on'

2021-07-29 14:48:05 MANAGEMENT: CMD 'log all on'

2021-07-29 14:48:05 MANAGEMENT: CMD 'echo all on'

2021-07-29 14:48:05 MANAGEMENT: CMD 'bytecount 5'

2021-07-29 14:48:05 MANAGEMENT: CMD 'hold off'

2021-07-29 14:48:05 MANAGEMENT: CMD 'hold release'

2021-07-29 14:48:05 TCP/UDP: Preserving recently used remote address: [AF_INET]5.206.212.114:1194

2021-07-29 14:48:05 Socket Buffers: R=[65536->65536] S=[65536->65536]

2021-07-29 14:48:05 UDP link local: (not bound)

2021-07-29 14:48:05 UDP link remote: [AF_INET]5.206.212.114:1194

2021-07-29 14:48:05 MANAGEMENT: >STATE:1627562885,WAIT,,,,,,

2021-07-29 14:48:05 MANAGEMENT: >STATE:1627562885,AUTH,,,,,,

2021-07-29 14:48:05 TLS: Initial packet from [AF_INET]5.206.212.114:1194, sid=a548adfc ae1986ff

2021-07-29 14:48:05 VERIFY OK: depth=1, CN=server

2021-07-29 14:48:05 VERIFY KU OK

2021-07-29 14:48:05 Validating certificate extended key usage

2021-07-29 14:48:05 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication

2021-07-29 14:48:05 VERIFY EKU OK

2021-07-29 14:48:05 VERIFY OK: depth=0, CN=server

2021-07-29 14:48:05 Control Channel: TLSv1.3, cipher TLSv1.3 TLS_CHACHA20_POLY1305_SHA256, peer certificate: 2048 bit RSA, signature: RSA-SHA256

2021-07-29 14:48:05 [server] Peer Connection Initiated with [AF_INET]5.206.212.114:1194

2021-07-29 14:48:05 PUSH: Received control message: 'PUSH_REPLY,route 192.168.14.0 255.255.255.0,ping 10,ping-restart 120,peer-id 0,cipher AES-256-GCM'

2021-07-29 14:48:05 OPTIONS IMPORT: timers and/or timeouts modified

2021-07-29 14:48:05 OPTIONS IMPORT: route options modified

2021-07-29 14:48:05 OPTIONS IMPORT: peer-id set

2021-07-29 14:48:05 OPTIONS IMPORT: adjusting link_mtu to 1656

2021-07-29 14:48:05 OPTIONS IMPORT: data channel crypto options modified

2021-07-29 14:48:05 Data Channel: using negotiated cipher 'AES-256-GCM'

2021-07-29 14:48:05 Outgoing Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key

2021-07-29 14:48:05 Incoming Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key

2021-07-29 14:48:05 interactive service msg_channel=572

2021-07-29 14:48:05 ROUTE_GATEWAY 192.168.30.254/255.255.255.0 I=10 HWADDR=3c:a9:f4:b3:35:d4

2021-07-29 14:48:05 OpenVPN ROUTE: OpenVPN needs a gateway parameter for a --route option and no default was specified by either --route-gateway or --ifconfig options

2021-07-29 14:48:05 OpenVPN ROUTE: failed to parse/resolve route for host/network: 192.168.14.0


2021-07-29 14:48:05 open_tun

2021-07-29 14:48:05 tap-windows6 device [MyTap] opened

2021-07-29 14:48:05 TAP-Windows Driver Version 9.24

2021-07-29 14:48:05 Successful ARP Flush on interface [12] {5D1C80BC-5199-43F9-A8F6-F6F929E19591}

2021-07-29 14:48:05 MANAGEMENT: >STATE:1627562885,ASSIGN_IP,,,,,,

2021-07-29 14:48:10 TEST ROUTES: 0/0 succeeded len=-1 ret=1 a=0 u/d=up

2021-07-29 14:48:10 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this

2021-07-29 14:48:10 Initialization Sequence Completed

2021-07-29 14:48:10 MANAGEMENT: >STATE:1627562890,CONNECTED,SUCCESS,,5.206.212.114,1194,,

2021-07-29 14:48:21 Closing TUN/TAP interface

2021-07-29 14:48:21 TAP: DHCP address released

2021-07-29 14:48:21 SIGTERM[hard,] received, process exiting

2021-07-29 14:48:21 MANAGEMENT: >STATE:1627562901,EXITING,SIGTERM,,,,,

Notes
  • VPN is able to connnect.
  • The client receives a correct IP: 192.168.14.188
Client is not able to ping to local lan of VPN server (192.168.14.254)

Print route on client after connecting
Image


Thank you.

Olivier

User avatar
TinCanTech
Forum Team
Posts: 9657
Joined: Fri Jun 03, 2016 1:17 pm

Re: OpenVPN - TAP - Can't ping LAN

Post by TinCanTech » Thu Jul 29, 2021 1:28 pm

Your server is not pushing an IP address to your client for the TUN interface.

o14p
OpenVpn Newbie
Posts: 7
Joined: Tue Mar 10, 2020 6:07 pm

Re: OpenVPN - TAP - Can't ping LAN

Post by o14p » Thu Jul 29, 2021 1:37 pm

TinCanTech wrote:
Thu Jul 29, 2021 1:28 pm
Your server is not pushing an IP address to your client for the TUN interface.
Can you give some more information please? I have a TAP setup. And the TAP interface "MyTap" receives an IP address: 192.168.14.188 with the gateway 192.168.14.254

Image

User avatar
TinCanTech
Forum Team
Posts: 9657
Joined: Fri Jun 03, 2016 1:17 pm

Re: OpenVPN - TAP - Can't ping LAN

Post by TinCanTech » Thu Jul 29, 2021 1:43 pm

Sorry, I don't have any information about your router.

o14p
OpenVpn Newbie
Posts: 7
Joined: Tue Mar 10, 2020 6:07 pm

Re: OpenVPN - TAP - Can't ping LAN

Post by o14p » Mon Aug 09, 2021 4:50 pm

UPDATE:

Current network setup:

WAN -> ROUTER 1 (192.168.1.1) -> ROUTER 2 (WAN-192.168.1.123 - 192.168.14.1), VPN Server is running on Router 3.

This works:

- Connect to VPN and have access to LAN when connecting via Router 1 using 192.168.1.123

This doesn't work:

- I can connect to the VPN via WAN (using public IP) but I can't ping. I however get following messages in the log (not when connecting via Router 1)

us=88247 Recursive routing detected, drop tun packet to [AF_INET]public_IP:1195

Does this help anyone?

Thank you.

User avatar
TinCanTech
Forum Team
Posts: 9657
Joined: Fri Jun 03, 2016 1:17 pm

Re: OpenVPN - TAP - Can't ping LAN

Post by TinCanTech » Mon Aug 09, 2021 8:00 pm

Do you understand what recursive routing means ?

o14p
OpenVpn Newbie
Posts: 7
Joined: Tue Mar 10, 2020 6:07 pm

Re: OpenVPN - TAP - Can't ping LAN

Post by o14p » Tue Aug 10, 2021 1:15 pm

TinCanTech wrote:
Mon Aug 09, 2021 8:00 pm
Do you understand what recursive routing means ?
No I do not, so feel free to help me ;)

o14p
OpenVpn Newbie
Posts: 7
Joined: Tue Mar 10, 2020 6:07 pm

Re: OpenVPN - TAP - Can't ping LAN

Post by o14p » Tue Aug 10, 2021 1:18 pm

Connecting via Tunnelblick on MacOS works as it should with the same client.ovpn file.

Client.ovpn (on macOS)
client

dev tap
;dev-node MyTap1
proto udp
remote publicIP 1194
resolv-retry infinite
ca ca.crt
cert opa.crt
key opa.key
remote-cert-tls server
cipher AES-256-CBC
comp-lzo
verb 4


macOS
  • High Sierra v10.13.6
    Client: Tunnelblick 3.8.5 (build 5671)
    Connection works as required (Log below)
[olog]2021-08-10 14:57:50.894807 *Tunnelblick: macOS 10.13.6 (17G14042); Tunnelblick 3.8.5a (build 5671); prior version 3.7.9a (build 5321)

2021-08-10 14:57:51.562156 *Tunnelblick: Attempting connection with opa; Set nameserver = 769; monitoring connection

2021-08-10 14:57:51.564055 *Tunnelblick: openvpnstart start opa.tblk 54326 769 0 3 0 1098098 -ptADGNWradsgnw 2.4.11-openssl-1.1.1k

2021-08-10 14:57:51.649348 *Tunnelblick: openvpnstart starting OpenVPN

2021-08-10 14:57:52.098188 OpenVPN 2.4.11 x86_64-apple-darwin [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [MH/RECVDA] [AEAD] built on Apr 21 2021

2021-08-10 14:57:52.099923 library versions: OpenSSL 1.1.1k 25 Mar 2021, LZO 2.10

2021-08-10 14:57:52.105798 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:54326

2021-08-10 14:57:52.105907 Need hold release from management interface, waiting...

2021-08-10 14:57:52.190384 *Tunnelblick: openvpnstart log:

OpenVPN started successfully.

Command used to start OpenVPN (one argument per displayed line):

/Applications/Tunnelblick.app/Contents/Resources/openvpn/openvpn-2.4.11-openssl-1.1.1k/openvpn

--daemon

--log /Library/Application Support/Tunnelblick/Logs/-SLibrary-SApplication Support-STunnelblick-SShared-Sopa.tblk-SContents-SResources-Sconfig.ovpn.769_0_3_0_1098098.54326.openvpn.log

--cd /Library/Application Support/Tunnelblick/Shared/opa.tblk/Contents/Resources

--machine-readable-output

--setenv IV_GUI_VER "net.tunnelblick.tunnelblick 5671 3.8.5a (build 5671)"

--verb 3

--config /Library/Application Support/Tunnelblick/Shared/opa.tblk/Contents/Resources/config.ovpn

--setenv TUNNELBLICK_CONFIG_FOLDER /Library/Application Support/Tunnelblick/Shared/opa.tblk/Contents/Resources

--verb 3

--cd /Library/Application Support/Tunnelblick/Shared/opa.tblk/Contents/Resources

--management 127.0.0.1 54326 /Library/Application Support/Tunnelblick/dmapookmondnpndmiebnejhlfjeheiedeipmojob.mip

--management-query-passwords

--management-hold

--script-security 2

--route-up /Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -9 -a -d -f -m -w -ptADGNWradsgnw

--down /Applications/Tunnelblick.app/Contents/Resources/client.down.tunnelblick.sh -9 -a -d -f -m -w -ptADGNWradsgnw

--route-pre-down /Applications/Tunnelblick.app/Contents/Resources/client.route-pre-down.tunnelblick.sh -9 -a -d -f -m -w -ptADGNWradsgnw

2021-08-10 14:57:52.218899 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:54326

2021-08-10 14:57:52.315176 MANAGEMENT: CMD 'pid'

2021-08-10 14:57:52.315379 MANAGEMENT: CMD 'auth-retry interact'

2021-08-10 14:57:52.315627 MANAGEMENT: CMD 'state on'

2021-08-10 14:57:52.315738 MANAGEMENT: CMD 'state'

2021-08-10 14:57:52.316829 MANAGEMENT: CMD 'bytecount 1'

2021-08-10 14:57:52.325650 *Tunnelblick: Established communication with OpenVPN

2021-08-10 14:57:52.356666 *Tunnelblick: >INFO:OpenVPN Management Interface Version 1 -- type 'help' for more info

2021-08-10 14:57:52.365937 MANAGEMENT: CMD 'hold release'

2021-08-10 14:57:52.377132 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts

2021-08-10 14:57:52.440883 TCP/UDP: Preserving recently used remote address: [AF_INET]publicIP:1194

2021-08-10 14:57:52.441097 Socket Buffers: R=[196724->196724] S=[9216->9216]

2021-08-10 14:57:52.441214 UDP link local (bound): [AF_INET][undef]:1194

2021-08-10 14:57:52.441287 UDP link remote: [AF_INET]publicIP:1194

2021-08-10 14:57:52.441579 MANAGEMENT: >STATE:1628600272,WAIT,,,,,,

2021-08-10 14:57:52.484659 MANAGEMENT: >STATE:1628600272,AUTH,,,,,,

2021-08-10 14:57:52.484849 TLS: Initial packet from [AF_INET]publicIP:1194, sid=94ff5f06 2432d6fd

2021-08-10 14:57:52.579300 VERIFY OK: depth=1, CN=server

2021-08-10 14:57:52.586554 VERIFY KU OK

2021-08-10 14:57:52.586683 Validating certificate extended key usage

2021-08-10 14:57:52.586752 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication

2021-08-10 14:57:52.586812 VERIFY EKU OK

2021-08-10 14:57:52.586868 VERIFY OK: depth=0, CN=server

2021-08-10 14:57:52.681236 Control Channel: TLSv1.3, cipher TLSv1.3 TLS_CHACHA20_POLY1305_SHA256, 2048 bit RSA

2021-08-10 14:57:52.681414 [server] Peer Connection Initiated with [AF_INET]publicIP:1194

2021-08-10 14:57:53.111629 MANAGEMENT: >STATE:1628600273,GET_CONFIG,,,,,,

2021-08-10 14:57:53.111974 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)

2021-08-10 14:57:53.154936 PUSH: Received control message: 'PUSH_REPLY,route 192.168.14.0 255.255.255.0,ping 10,ping-restart 120,peer-id 0,cipher AES-256-GCM'

2021-08-10 14:57:53.155256 OPTIONS IMPORT: timers and/or timeouts modified

2021-08-10 14:57:53.155307 OPTIONS IMPORT: route options modified

2021-08-10 14:57:53.155342 OPTIONS IMPORT: peer-id set

2021-08-10 14:57:53.155375 OPTIONS IMPORT: adjusting link_mtu to 1657

2021-08-10 14:57:53.155450 OPTIONS IMPORT: data channel crypto options modified

2021-08-10 14:57:53.155577 Data Channel: using negotiated cipher 'AES-256-GCM'

2021-08-10 14:57:53.156051 Outgoing Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key

2021-08-10 14:57:53.156129 Incoming Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key

2021-08-10 14:57:53.156810 OpenVPN ROUTE: OpenVPN needs a gateway parameter for a --route option and no default was specified by either --route-gateway or --ifconfig options

2021-08-10 14:57:53.156881 OpenVPN ROUTE: failed to parse/resolve route for host/network: 192.168.14.0

2021-08-10 14:57:53.157482 TUN/TAP device /dev/tap0 opened

14:57:53 *Tunnelblick: **********************************************

14:57:53 *Tunnelblick: Start of output from client.up.tunnelblick.sh

WARNING: $route_vpn_gateway is empty

14:57:55 *Tunnelblick: Using DHCP because route_vpn_gateway = '' and there tap0 has no IP configuration

14:57:55 *Tunnelblick: Did 'ipconfig set "tap0" DHCP'

14:57:55 *Tunnelblick: Configuring tap DNS via DHCP asynchronously

14:57:55 *Tunnelblick: End of output from client.up.tunnelblick.sh

14:57:55 *Tunnelblick: **********************************************

2021-08-10 14:57:55.866647 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this

2021-08-10 14:57:55.866854 Initialization Sequence Completed

2021-08-10 14:57:55.867044 MANAGEMENT: >STATE:1628600275,CONNECTED,SUCCESS,,publicIP,1194,,

14:57:55 *Tunnelblick: Sleeping for 1 seconds to wait for DHCP to finish setup.

14:57:57 *Tunnelblick: Sleeping for 1 seconds to wait for DHCP to finish setup.

2021-08-10 14:57:57.113601 *Tunnelblick: Routing info stdout:

route to: 127.0.0.1

destination: 127.0.0.1

interface: lo0

flags: <UP,HOST,DONE,LOCAL>

recvpipe sendpipe ssthresh rtt,msec rttvar hopcount mtu expire

49152 49152 0 0 0 0 16384 0

stderr:

2021-08-10 14:57:57.125074 *Tunnelblick: Warning: DNS server address 127.0.0.1 is not a public IP address and is not being routed through the VPN.

14:57:58 *Tunnelblick: Sleeping for 1 seconds to wait for DHCP to finish setup.

14:57:59 *Tunnelblick: Sleeping for 1 seconds to wait for DHCP to finish setup.

14:58:00 *Tunnelblick: Sleeping for 1 seconds to wait for DHCP to finish setup.

14:58:01 *Tunnelblick: Sleeping for 1 seconds to wait for DHCP to finish setup.

14:58:03 *Tunnelblick: Retrieved from DHCP/BOOTP packet: name server(s) [ 192.168.14.254 ], domain name [ lan ], search domain(s) [ ] and SMB server(s) [ ]

14:58:03 *Tunnelblick: Not aggregating ServerAddresses because running on macOS 10.6 or higher

14:58:03 *Tunnelblick: Setting search domains to 'lan' because the search domains were not set manually (or are allowed to be changed) and 'Prepend domain name to search domains' was not selected

14:58:12 *Tunnelblick: Saved the DNS and SMB configurations so they can be restored

14:58:12 *Tunnelblick: Changed DNS ServerAddresses setting from '172.20.10.1' to '192.168.14.254'

14:58:13 *Tunnelblick: Changed DNS SearchDomains setting from '' to 'lan'

14:58:13 *Tunnelblick: Changed DNS DomainName setting from '' to 'lan'

14:58:13 *Tunnelblick: Did not change SMB NetBIOSName setting of ''

14:58:13 *Tunnelblick: Did not change SMB Workgroup setting of ''

14:58:13 *Tunnelblick: Did not change SMB WINSAddresses setting of ''

14:58:13 *Tunnelblick: DNS servers '192.168.14.254' will be used for DNS queries when the VPN is active

14:58:14 *Tunnelblick: NOTE: The DNS servers do not include any free public DNS servers known to Tunnelblick. This may cause DNS queries to fail or be intercepted or falsified even if they are directed through the VPN. Specify only known public DNS servers or DNS servers located on the VPN network to avoid such problems.

14:58:14 *Tunnelblick: Flushed the DNS cache via dscacheutil

14:58:14 *Tunnelblick: /usr/sbin/discoveryutil not present. Not flushing the DNS cache via discoveryutil

14:58:14 *Tunnelblick: Notified mDNSResponder that the DNS cache was flushed

14:58:14 *Tunnelblick: Not notifying mDNSResponderHelper that the DNS cache was flushed because it is not running

14:58:14 *Tunnelblick: Setting up to monitor system configuration with process-network-changes

2021-08-10 14:57:57.208467 *Tunnelblick: Routing info stdout:

route to: 172.20.10.1

destination: 172.20.10.1

interface: en0

flags: <UP,HOST,DONE,LLINFO,WASCLONED,IFSCOPE,IFREF,ROUTER>

recvpipe sendpipe ssthresh rtt,msec rttvar hopcount mtu expire

0 0 0 0 0 0 1500 1179

stderr:

2021-08-10 14:57:57.221912 *Tunnelblick: Warning: DNS server address 172.20.10.1 is not a public IP address and is not being routed through the VPN.[/olog]

Client.ovpn (on Windows 10)
client

dev tap
dev-node MyTap1
proto udp
remote publicIP 1194
resolv-retry infinite
ca ca.crt
cert opa.crt
key opa.key
remote-cert-tls server
cipher AES-256-CBC
comp-lzo
verb 4


Windows 10
  • Windows 10 Pro 10.0.19042 Build 19042)
    Client: OpenVPN Guid v11.25.0.0
    VPN is able to connect, but no ping or network connection to LAN from VPN server (Log below)
[olog]2021-08-10 15:06:15 WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
2021-08-10 15:06:15 us=562793 DEPRECATED OPTION: --cipher set to 'AES-256-CBC' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). Future OpenVPN version will ignore --cipher for cipher negotiations. Add 'AES-256-CBC' to --data-ciphers or change --cipher 'AES-256-CBC' to --data-ciphers-fallback 'AES-256-CBC' to silence this warning.
2021-08-10 15:06:15 us=563793 Current Parameter Settings:
2021-08-10 15:06:15 us=563793 config = 'opa.ovpn'
2021-08-10 15:06:15 us=563793 mode = 0
2021-08-10 15:06:15 us=563793 show_ciphers = DISABLED
2021-08-10 15:06:15 us=563793 show_digests = DISABLED
2021-08-10 15:06:15 us=563793 show_engines = DISABLED
2021-08-10 15:06:15 us=563793 genkey = DISABLED
2021-08-10 15:06:15 us=563793 genkey_filename = '[UNDEF]'
2021-08-10 15:06:15 us=563793 key_pass_file = '[UNDEF]'
2021-08-10 15:06:15 us=563793 show_tls_ciphers = DISABLED
2021-08-10 15:06:15 us=563793 connect_retry_max = 0
2021-08-10 15:06:15 us=563793 Connection profiles [0]:
2021-08-10 15:06:15 us=563793 proto = udp
2021-08-10 15:06:15 us=563793 local = '[UNDEF]'
2021-08-10 15:06:15 us=563793 local_port = '1194'
2021-08-10 15:06:15 us=563793 remote = 'publicIP'
2021-08-10 15:06:15 us=563793 remote_port = '1194'
2021-08-10 15:06:15 us=563793 remote_float = DISABLED
2021-08-10 15:06:15 us=563793 bind_defined = DISABLED
2021-08-10 15:06:15 us=563793 bind_local = ENABLED
2021-08-10 15:06:15 us=563793 bind_ipv6_only = DISABLED
2021-08-10 15:06:15 us=563793 connect_retry_seconds = 5
2021-08-10 15:06:15 us=563793 connect_timeout = 120
2021-08-10 15:06:15 us=563793 socks_proxy_server = '[UNDEF]'
2021-08-10 15:06:15 us=563793 socks_proxy_port = '[UNDEF]'
2021-08-10 15:06:15 us=563793 tun_mtu = 1500
2021-08-10 15:06:15 us=563793 tun_mtu_defined = ENABLED
2021-08-10 15:06:15 us=563793 link_mtu = 1500
2021-08-10 15:06:15 us=563793 link_mtu_defined = DISABLED
2021-08-10 15:06:15 us=563793 tun_mtu_extra = 32
2021-08-10 15:06:15 us=563793 tun_mtu_extra_defined = ENABLED
2021-08-10 15:06:15 us=563793 mtu_discover_type = -1
2021-08-10 15:06:15 us=563793 fragment = 0
2021-08-10 15:06:15 us=563793 mssfix = 1450
2021-08-10 15:06:15 us=563793 explicit_exit_notification = 0
2021-08-10 15:06:15 us=563793 tls_auth_file = '[UNDEF]'
2021-08-10 15:06:15 us=563793 key_direction = not set
2021-08-10 15:06:15 us=563793 tls_crypt_file = '[UNDEF]'
2021-08-10 15:06:15 us=563793 tls_crypt_v2_file = '[UNDEF]'
2021-08-10 15:06:15 us=563793 Connection profiles END
2021-08-10 15:06:15 us=563793 remote_random = DISABLED
2021-08-10 15:06:15 us=563793 ipchange = '[UNDEF]'
2021-08-10 15:06:15 us=563793 dev = 'tap'
2021-08-10 15:06:15 us=563793 dev_type = '[UNDEF]'
2021-08-10 15:06:15 us=563793 dev_node = 'MyTap1'
2021-08-10 15:06:15 us=563793 lladdr = '[UNDEF]'
2021-08-10 15:06:15 us=563793 topology = 1
2021-08-10 15:06:15 us=563793 ifconfig_local = '[UNDEF]'
2021-08-10 15:06:15 us=563793 ifconfig_remote_netmask = '[UNDEF]'
2021-08-10 15:06:15 us=563793 ifconfig_noexec = DISABLED
2021-08-10 15:06:15 us=563793 ifconfig_nowarn = DISABLED
2021-08-10 15:06:15 us=563793 ifconfig_ipv6_local = '[UNDEF]'
2021-08-10 15:06:15 us=563793 ifconfig_ipv6_netbits = 0
2021-08-10 15:06:15 us=563793 ifconfig_ipv6_remote = '[UNDEF]'
2021-08-10 15:06:15 us=563793 shaper = 0
2021-08-10 15:06:15 us=563793 mtu_test = 0
2021-08-10 15:06:15 us=563793 mlock = DISABLED
2021-08-10 15:06:15 us=563793 keepalive_ping = 0
2021-08-10 15:06:15 us=563793 keepalive_timeout = 0
2021-08-10 15:06:15 us=563793 inactivity_timeout = 0
2021-08-10 15:06:15 us=563793 ping_send_timeout = 0
2021-08-10 15:06:15 us=563793 ping_rec_timeout = 0
2021-08-10 15:06:15 us=563793 ping_rec_timeout_action = 0
2021-08-10 15:06:15 us=563793 ping_timer_remote = DISABLED
2021-08-10 15:06:15 us=563793 remap_sigusr1 = 0
2021-08-10 15:06:15 us=563793 persist_tun = DISABLED
2021-08-10 15:06:15 us=563793 persist_local_ip = DISABLED
2021-08-10 15:06:15 us=563793 persist_remote_ip = DISABLED
2021-08-10 15:06:15 us=563793 persist_key = DISABLED
2021-08-10 15:06:15 us=563793 passtos = DISABLED
2021-08-10 15:06:15 us=563793 resolve_retry_seconds = 1000000000
2021-08-10 15:06:15 us=563793 resolve_in_advance = DISABLED
2021-08-10 15:06:15 us=563793 username = '[UNDEF]'
2021-08-10 15:06:15 us=563793 groupname = '[UNDEF]'
2021-08-10 15:06:15 us=563793 chroot_dir = '[UNDEF]'
2021-08-10 15:06:15 us=563793 cd_dir = '[UNDEF]'
2021-08-10 15:06:15 us=563793 writepid = '[UNDEF]'
2021-08-10 15:06:15 us=563793 up_script = '[UNDEF]'
2021-08-10 15:06:15 us=563793 down_script = '[UNDEF]'
2021-08-10 15:06:15 us=563793 down_pre = DISABLED
2021-08-10 15:06:15 us=563793 up_restart = DISABLED
2021-08-10 15:06:15 us=563793 up_delay = DISABLED
2021-08-10 15:06:15 us=563793 daemon = DISABLED
2021-08-10 15:06:15 us=563793 inetd = 0
2021-08-10 15:06:15 us=563793 log = ENABLED
2021-08-10 15:06:15 us=563793 suppress_timestamps = DISABLED
2021-08-10 15:06:15 us=563793 machine_readable_output = DISABLED
2021-08-10 15:06:15 us=563793 nice = 0
2021-08-10 15:06:15 us=563793 verbosity = 4
2021-08-10 15:06:15 us=563793 mute = 0
2021-08-10 15:06:15 us=563793 gremlin = 0
2021-08-10 15:06:15 us=563793 status_file = '[UNDEF]'
2021-08-10 15:06:15 us=563793 status_file_version = 1
2021-08-10 15:06:15 us=563793 status_file_update_freq = 60
2021-08-10 15:06:15 us=563793 occ = ENABLED
2021-08-10 15:06:15 us=563793 rcvbuf = 0
2021-08-10 15:06:15 us=563793 sndbuf = 0
2021-08-10 15:06:15 us=563793 sockflags = 0
2021-08-10 15:06:15 us=563793 fast_io = DISABLED
2021-08-10 15:06:15 us=563793 comp.alg = 2
2021-08-10 15:06:15 us=563793 comp.flags = 1
2021-08-10 15:06:15 us=563793 route_script = '[UNDEF]'
2021-08-10 15:06:15 us=563793 route_default_gateway = '[UNDEF]'
2021-08-10 15:06:15 us=563793 route_default_metric = 0
2021-08-10 15:06:15 us=563793 route_noexec = DISABLED
2021-08-10 15:06:15 us=563793 route_delay = 5
2021-08-10 15:06:15 us=563793 route_delay_window = 30
2021-08-10 15:06:15 us=563793 route_delay_defined = ENABLED
2021-08-10 15:06:15 us=563793 route_nopull = DISABLED
2021-08-10 15:06:15 us=563793 route_gateway_via_dhcp = DISABLED
2021-08-10 15:06:15 us=563793 allow_pull_fqdn = DISABLED
2021-08-10 15:06:15 us=563793 Pull filters:
2021-08-10 15:06:15 us=563793 ignore "route-method"
2021-08-10 15:06:15 us=563793 management_addr = '127.0.0.1'
2021-08-10 15:06:15 us=563793 management_port = '25340'
2021-08-10 15:06:15 us=563793 management_user_pass = 'stdin'
2021-08-10 15:06:15 us=563793 management_log_history_cache = 250
2021-08-10 15:06:15 us=563793 management_echo_buffer_size = 100
2021-08-10 15:06:15 us=563793 management_write_peer_info_file = '[UNDEF]'
2021-08-10 15:06:15 us=563793 management_client_user = '[UNDEF]'
2021-08-10 15:06:15 us=563793 management_client_group = '[UNDEF]'
2021-08-10 15:06:15 us=563793 management_flags = 6
2021-08-10 15:06:15 us=563793 shared_secret_file = '[UNDEF]'
2021-08-10 15:06:15 us=563793 key_direction = not set
2021-08-10 15:06:15 us=563793 ciphername = 'AES-256-CBC'
2021-08-10 15:06:15 us=563793 ncp_enabled = ENABLED
2021-08-10 15:06:15 us=563793 ncp_ciphers = 'AES-256-GCM:AES-128-GCM:AES-256-CBC'
2021-08-10 15:06:15 us=563793 authname = 'SHA1'
2021-08-10 15:06:15 us=563793 prng_hash = 'SHA1'
2021-08-10 15:06:15 us=563793 prng_nonce_secret_len = 16
2021-08-10 15:06:15 us=563793 keysize = 0
2021-08-10 15:06:15 us=563793 engine = DISABLED
2021-08-10 15:06:15 us=563793 replay = ENABLED
2021-08-10 15:06:15 us=563793 mute_replay_warnings = DISABLED
2021-08-10 15:06:15 us=563793 replay_window = 64
2021-08-10 15:06:15 us=563793 replay_time = 15
2021-08-10 15:06:15 us=563793 packet_id_file = '[UNDEF]'
2021-08-10 15:06:15 us=563793 test_crypto = DISABLED
2021-08-10 15:06:15 us=563793 tls_server = DISABLED
2021-08-10 15:06:15 us=563793 tls_client = ENABLED
2021-08-10 15:06:15 us=564792 ca_file = 'ca.crt'
2021-08-10 15:06:15 us=564792 ca_path = '[UNDEF]'
2021-08-10 15:06:15 us=564792 dh_file = '[UNDEF]'
2021-08-10 15:06:15 us=564792 cert_file = 'opa.crt'
2021-08-10 15:06:15 us=564792 extra_certs_file = '[UNDEF]'
2021-08-10 15:06:15 us=564792 priv_key_file = 'opa.key'
2021-08-10 15:06:15 us=564792 pkcs12_file = '[UNDEF]'
2021-08-10 15:06:15 us=564792 cryptoapi_cert = '[UNDEF]'
2021-08-10 15:06:15 us=564792 cipher_list = '[UNDEF]'
2021-08-10 15:06:15 us=564792 cipher_list_tls13 = '[UNDEF]'
2021-08-10 15:06:15 us=564792 tls_cert_profile = '[UNDEF]'
2021-08-10 15:06:15 us=564792 tls_verify = '[UNDEF]'
2021-08-10 15:06:15 us=564792 tls_export_cert = '[UNDEF]'
2021-08-10 15:06:15 us=564792 verify_x509_type = 0
2021-08-10 15:06:15 us=564792 verify_x509_name = '[UNDEF]'
2021-08-10 15:06:15 us=564792 crl_file = '[UNDEF]'
2021-08-10 15:06:15 us=564792 ns_cert_type = 0
2021-08-10 15:06:15 us=564792 remote_cert_ku = 65535
2021-08-10 15:06:15 us=564792 remote_cert_ku = 0
2021-08-10 15:06:15 us=564792 remote_cert_ku = 0
2021-08-10 15:06:15 us=564792 remote_cert_ku = 0
2021-08-10 15:06:15 us=564792 remote_cert_ku = 0
2021-08-10 15:06:15 us=564792 remote_cert_ku = 0
2021-08-10 15:06:15 us=564792 remote_cert_ku = 0
2021-08-10 15:06:15 us=564792 remote_cert_ku = 0
2021-08-10 15:06:15 us=564792 remote_cert_ku = 0
2021-08-10 15:06:15 us=564792 remote_cert_ku = 0
2021-08-10 15:06:15 us=564792 remote_cert_ku[i] = 0
2021-08-10 15:06:15 us=564792 remote_cert_ku[i] = 0
2021-08-10 15:06:15 us=564792 remote_cert_ku[i] = 0
2021-08-10 15:06:15 us=564792 remote_cert_ku[i] = 0
2021-08-10 15:06:15 us=564792 remote_cert_ku[i] = 0
2021-08-10 15:06:15 us=564792 remote_cert_ku[i] = 0
2021-08-10 15:06:15 us=564792 remote_cert_eku = 'TLS Web Server Authentication'
2021-08-10 15:06:15 us=564792 ssl_flags = 0
2021-08-10 15:06:15 us=564792 tls_timeout = 2
2021-08-10 15:06:15 us=564792 renegotiate_bytes = -1
2021-08-10 15:06:15 us=564792 renegotiate_packets = 0
2021-08-10 15:06:15 us=564792 renegotiate_seconds = 3600
2021-08-10 15:06:15 us=564792 handshake_window = 60
2021-08-10 15:06:15 us=564792 transition_window = 3600
2021-08-10 15:06:15 us=564792 single_session = DISABLED
2021-08-10 15:06:15 us=564792 push_peer_info = DISABLED
2021-08-10 15:06:15 us=564792 tls_exit = DISABLED
2021-08-10 15:06:15 us=564792 tls_crypt_v2_metadata = '[UNDEF]'
2021-08-10 15:06:15 us=564792 pkcs11_protected_authentication = DISABLED
2021-08-10 15:06:15 us=564792 pkcs11_protected_authentication = DISABLED
2021-08-10 15:06:15 us=564792 pkcs11_protected_authentication = DISABLED
2021-08-10 15:06:15 us=564792 pkcs11_protected_authentication = DISABLED
2021-08-10 15:06:15 us=564792 pkcs11_protected_authentication = DISABLED
2021-08-10 15:06:15 us=564792 pkcs11_protected_authentication = DISABLED
2021-08-10 15:06:15 us=564792 pkcs11_protected_authentication = DISABLED
2021-08-10 15:06:15 us=564792 pkcs11_protected_authentication = DISABLED
2021-08-10 15:06:15 us=564792 pkcs11_protected_authentication = DISABLED
2021-08-10 15:06:15 us=564792 pkcs11_protected_authentication = DISABLED
2021-08-10 15:06:15 us=564792 pkcs11_protected_authentication = DISABLED
2021-08-10 15:06:15 us=564792 pkcs11_protected_authentication = DISABLED
2021-08-10 15:06:15 us=564792 pkcs11_protected_authentication = DISABLED
2021-08-10 15:06:15 us=564792 pkcs11_protected_authentication = DISABLED
2021-08-10 15:06:15 us=564792 pkcs11_protected_authentication = DISABLED
2021-08-10 15:06:15 us=564792 pkcs11_protected_authentication = DISABLED
2021-08-10 15:06:15 us=564792 pkcs11_private_mode = 00000000
2021-08-10 15:06:15 us=564792 pkcs11_private_mode = 00000000
2021-08-10 15:06:15 us=564792 pkcs11_private_mode = 00000000
2021-08-10 15:06:15 us=564792 pkcs11_private_mode = 00000000
2021-08-10 15:06:15 us=564792 pkcs11_private_mode = 00000000
2021-08-10 15:06:15 us=564792 pkcs11_private_mode = 00000000
2021-08-10 15:06:15 us=564792 pkcs11_private_mode = 00000000
2021-08-10 15:06:15 us=564792 pkcs11_private_mode = 00000000
2021-08-10 15:06:15 us=564792 pkcs11_private_mode = 00000000
2021-08-10 15:06:15 us=564792 pkcs11_private_mode = 00000000
2021-08-10 15:06:15 us=564792 pkcs11_private_mode = 00000000
2021-08-10 15:06:15 us=564792 pkcs11_private_mode = 00000000
2021-08-10 15:06:15 us=564792 pkcs11_private_mode = 00000000
2021-08-10 15:06:15 us=564792 pkcs11_private_mode = 00000000
2021-08-10 15:06:15 us=564792 pkcs11_private_mode = 00000000
2021-08-10 15:06:15 us=564792 pkcs11_private_mode = 00000000
2021-08-10 15:06:15 us=564792 pkcs11_cert_private = DISABLED
2021-08-10 15:06:15 us=564792 pkcs11_cert_private = DISABLED
2021-08-10 15:06:15 us=564792 pkcs11_cert_private = DISABLED
2021-08-10 15:06:15 us=564792 pkcs11_cert_private = DISABLED
2021-08-10 15:06:15 us=564792 pkcs11_cert_private = DISABLED
2021-08-10 15:06:15 us=564792 pkcs11_cert_private = DISABLED
2021-08-10 15:06:15 us=564792 pkcs11_cert_private = DISABLED
2021-08-10 15:06:15 us=564792 pkcs11_cert_private = DISABLED
2021-08-10 15:06:15 us=564792 pkcs11_cert_private = DISABLED
2021-08-10 15:06:15 us=564792 pkcs11_cert_private = DISABLED
2021-08-10 15:06:15 us=564792 pkcs11_cert_private = DISABLED
2021-08-10 15:06:15 us=564792 pkcs11_cert_private = DISABLED
2021-08-10 15:06:15 us=564792 pkcs11_cert_private = DISABLED
2021-08-10 15:06:15 us=564792 pkcs11_cert_private = DISABLED
2021-08-10 15:06:15 us=564792 pkcs11_cert_private = DISABLED
2021-08-10 15:06:15 us=564792 pkcs11_cert_private = DISABLED
2021-08-10 15:06:15 us=564792 pkcs11_pin_cache_period = -1
2021-08-10 15:06:15 us=564792 pkcs11_id = '[UNDEF]'
2021-08-10 15:06:15 us=564792 pkcs11_id_management = DISABLED
2021-08-10 15:06:15 us=564792 server_network = 0.0.0.0
2021-08-10 15:06:15 us=564792 server_netmask = 0.0.0.0
2021-08-10 15:06:15 us=564792 server_network_ipv6 = ::
2021-08-10 15:06:15 us=564792 server_netbits_ipv6 = 0
2021-08-10 15:06:15 us=564792 server_bridge_ip = 0.0.0.0
2021-08-10 15:06:15 us=564792 server_bridge_netmask = 0.0.0.0
2021-08-10 15:06:15 us=564792 server_bridge_pool_start = 0.0.0.0
2021-08-10 15:06:15 us=564792 server_bridge_pool_end = 0.0.0.0
2021-08-10 15:06:15 us=564792 ifconfig_pool_defined = DISABLED
2021-08-10 15:06:15 us=564792 ifconfig_pool_start = 0.0.0.0
2021-08-10 15:06:15 us=564792 ifconfig_pool_end = 0.0.0.0
2021-08-10 15:06:15 us=564792 ifconfig_pool_netmask = 0.0.0.0
2021-08-10 15:06:15 us=564792 ifconfig_pool_persist_filename = '[UNDEF]'
2021-08-10 15:06:15 us=564792 ifconfig_pool_persist_refresh_freq = 600
2021-08-10 15:06:15 us=564792 ifconfig_ipv6_pool_defined = DISABLED
2021-08-10 15:06:15 us=564792 ifconfig_ipv6_pool_base = ::
2021-08-10 15:06:15 us=564792 ifconfig_ipv6_pool_netbits = 0
2021-08-10 15:06:15 us=564792 n_bcast_buf = 256
2021-08-10 15:06:15 us=564792 tcp_queue_limit = 64
2021-08-10 15:06:15 us=564792 real_hash_size = 256
2021-08-10 15:06:15 us=564792 virtual_hash_size = 256
2021-08-10 15:06:15 us=564792 client_connect_script = '[UNDEF]'
2021-08-10 15:06:15 us=564792 learn_address_script = '[UNDEF]'
2021-08-10 15:06:15 us=564792 client_disconnect_script = '[UNDEF]'
2021-08-10 15:06:15 us=564792 client_config_dir = '[UNDEF]'
2021-08-10 15:06:15 us=564792 ccd_exclusive = DISABLED
2021-08-10 15:06:15 us=564792 tmp_dir = 'C:\Users\Olivier\AppData\Local\Temp\'
2021-08-10 15:06:15 us=564792 push_ifconfig_defined = DISABLED
2021-08-10 15:06:15 us=564792 push_ifconfig_local = 0.0.0.0
2021-08-10 15:06:15 us=564792 push_ifconfig_remote_netmask = 0.0.0.0
2021-08-10 15:06:15 us=564792 push_ifconfig_ipv6_defined = DISABLED
2021-08-10 15:06:15 us=564792 push_ifconfig_ipv6_local = ::/0
2021-08-10 15:06:15 us=564792 push_ifconfig_ipv6_remote = ::
2021-08-10 15:06:15 us=564792 enable_c2c = DISABLED
2021-08-10 15:06:15 us=564792 duplicate_cn = DISABLED
2021-08-10 15:06:15 us=564792 cf_max = 0
2021-08-10 15:06:15 us=564792 cf_per = 0
2021-08-10 15:06:15 us=564792 max_clients = 1024
2021-08-10 15:06:15 us=564792 max_routes_per_client = 256
2021-08-10 15:06:15 us=564792 auth_user_pass_verify_script = '[UNDEF]'
2021-08-10 15:06:15 us=564792 auth_user_pass_verify_script_via_file = DISABLED
2021-08-10 15:06:15 us=564792 auth_token_generate = DISABLED
2021-08-10 15:06:15 us=564792 auth_token_lifetime = 0
2021-08-10 15:06:15 us=564792 auth_token_secret_file = '[UNDEF]'
2021-08-10 15:06:15 us=564792 vlan_tagging = DISABLED
2021-08-10 15:06:15 us=564792 vlan_accept = all
2021-08-10 15:06:15 us=564792 vlan_pvid = 1
2021-08-10 15:06:15 us=564792 client = ENABLED
2021-08-10 15:06:15 us=564792 pull = ENABLED
2021-08-10 15:06:15 us=564792 auth_user_pass_file = '[UNDEF]'
2021-08-10 15:06:15 us=564792 show_net_up = DISABLED
2021-08-10 15:06:15 us=564792 route_method = 3
2021-08-10 15:06:15 us=564792 block_outside_dns = DISABLED
2021-08-10 15:06:15 us=564792 ip_win32_defined = DISABLED
2021-08-10 15:06:15 us=564792 ip_win32_type = 3
2021-08-10 15:06:15 us=564792 dhcp_masq_offset = 0
2021-08-10 15:06:15 us=564792 dhcp_lease_time = 31536000
2021-08-10 15:06:15 us=564792 tap_sleep = 0
2021-08-10 15:06:15 us=564792 dhcp_options = DISABLED
2021-08-10 15:06:15 us=564792 dhcp_renew = DISABLED
2021-08-10 15:06:15 us=564792 dhcp_pre_release = DISABLED
2021-08-10 15:06:15 us=564792 domain = '[UNDEF]'
2021-08-10 15:06:15 us=564792 netbios_scope = '[UNDEF]'
2021-08-10 15:06:15 us=564792 netbios_node_type = 0
2021-08-10 15:06:15 us=564792 disable_nbt = DISABLED
2021-08-10 15:06:15 us=564792 OpenVPN 2.5.3 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [AEAD] built on Jun 17 2021
2021-08-10 15:06:15 us=565791 Windows version 10.0 (Windows 10 or greater) 64bit
2021-08-10 15:06:15 us=565791 library versions: OpenSSL 1.1.1k 25 Mar 2021, LZO 2.10
Enter Management Password:
2021-08-10 15:06:15 us=565791 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:25340
2021-08-10 15:06:15 us=565791 Need hold release from management interface, waiting...
2021-08-10 15:06:16 us=37429 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:25340
2021-08-10 15:06:16 us=145648 MANAGEMENT: CMD 'state on'
2021-08-10 15:06:16 us=146583 MANAGEMENT: CMD 'log all on'
2021-08-10 15:06:16 us=397431 MANAGEMENT: CMD 'echo all on'
2021-08-10 15:06:16 us=399429 MANAGEMENT: CMD 'bytecount 5'
2021-08-10 15:06:16 us=401428 MANAGEMENT: CMD 'hold off'
2021-08-10 15:06:16 us=403427 MANAGEMENT: CMD 'hold release'
2021-08-10 15:06:16 us=406426 LZO compression initializing
2021-08-10 15:06:16 us=406426 Control Channel MTU parms [ L:1654 D:1212 EF:38 EB:0 ET:0 EL:3 ]
2021-08-10 15:06:16 us=406426 Data Channel MTU parms [ L:1654 D:1450 EF:122 EB:411 ET:32 EL:3 ]
2021-08-10 15:06:16 us=406426 Local Options String (VER=V4): 'V4,dev-type tap,link-mtu 1590,tun-mtu 1532,proto UDPv4,comp-lzo,cipher AES-256-CBC,auth SHA1,keysize 256,key-method 2,tls-client'
2021-08-10 15:06:16 us=406426 Expected Remote Options String (VER=V4): 'V4,dev-type tap,link-mtu 1590,tun-mtu 1532,proto UDPv4,comp-lzo,cipher AES-256-CBC,auth SHA1,keysize 256,key-method 2,tls-server'
2021-08-10 15:06:16 us=406426 TCP/UDP: Preserving recently used remote address: [AF_INET]publicIP:1194
2021-08-10 15:06:16 us=406426 Socket Buffers: R=[65536->65536] S=[65536->65536]
2021-08-10 15:06:16 us=407425 UDP link local (bound): [AF_INET][undef]:1194
2021-08-10 15:06:16 us=407425 UDP link remote: [AF_INET]publicIP:1194
2021-08-10 15:06:16 us=407425 MANAGEMENT: >STATE:1628600776,WAIT,,,,,,
2021-08-10 15:06:16 us=454443 MANAGEMENT: >STATE:1628600776,AUTH,,,,,,
2021-08-10 15:06:16 us=454443 TLS: Initial packet from [AF_INET]publicIP:1194, sid=1a7323f3 a3384164
2021-08-10 15:06:16 us=569766 VERIFY OK: depth=1, CN=server
2021-08-10 15:06:16 us=570766 VERIFY KU OK
2021-08-10 15:06:16 us=570766 Validating certificate extended key usage
2021-08-10 15:06:16 us=570766 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
2021-08-10 15:06:16 us=570766 VERIFY EKU OK
2021-08-10 15:06:16 us=570766 VERIFY OK: depth=0, CN=server
2021-08-10 15:06:16 us=654056 Control Channel: TLSv1.3, cipher TLSv1.3 TLS_CHACHA20_POLY1305_SHA256, peer certificate: 2048 bit RSA, signature: RSA-SHA256
2021-08-10 15:06:16 us=654056 [server] Peer Connection Initiated with [AF_INET]publicIP:1194
2021-08-10 15:06:16 us=686082 PUSH: Received control message: 'PUSH_REPLY,route 192.168.14.0 255.255.255.0,ping 10,ping-restart 120,peer-id 0,cipher AES-256-GCM'
2021-08-10 15:06:16 us=686082 OPTIONS IMPORT: timers and/or timeouts modified
2021-08-10 15:06:16 us=686082 OPTIONS IMPORT: route options modified
2021-08-10 15:06:16 us=686082 OPTIONS IMPORT: peer-id set
2021-08-10 15:06:16 us=686082 OPTIONS IMPORT: adjusting link_mtu to 1657
2021-08-10 15:06:16 us=686082 OPTIONS IMPORT: data channel crypto options modified
2021-08-10 15:06:16 us=686082 Data Channel: using negotiated cipher 'AES-256-GCM'
2021-08-10 15:06:16 us=686082 Data Channel MTU parms [ L:1585 D:1450 EF:53 EB:411 ET:32 EL:3 ]
2021-08-10 15:06:16 us=686082 Outgoing Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
2021-08-10 15:06:16 us=686082 Incoming Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
2021-08-10 15:06:16 us=687040 interactive service msg_channel=588
2021-08-10 15:06:16 us=695034 ROUTE_GATEWAY 192.168.1.1/255.255.255.0 I=7 HWADDR=3c:a9:f4:b3:35:d4
2021-08-10 15:06:16 us=695034 OpenVPN ROUTE: OpenVPN needs a gateway parameter for a --route option and no default was specified by either --route-gateway or --ifconfig options
2021-08-10 15:06:16 us=695034 OpenVPN ROUTE: failed to parse/resolve route for host/network: 192.168.14.0
2021-08-10 15:06:16 us=695034 open_tun
2021-08-10 15:06:16 us=706002 tap-windows6 device [MyTap1] opened
2021-08-10 15:06:16 us=707011 TAP-Windows Driver Version 9.24
2021-08-10 15:06:16 us=707011 TAP-Windows MTU=1500
2021-08-10 15:06:16 us=707011 Successful ARP Flush on interface [17] {B0D13C84-4328-45A3-BD25-0DBAF8160935}
2021-08-10 15:06:16 us=707011 do_ifconfig, ipv4=0, ipv6=0
2021-08-10 15:06:16 us=707011 MANAGEMENT: >STATE:1628600776,ASSIGN_IP,,,,,,
2021-08-10 15:06:19 us=982180 Recursive routing detected, drop tun packet to [AF_INET]publicIP:1194
2021-08-10 15:06:20 us=27153 Recursive routing detected, drop tun packet to [AF_INET]publicIP:1194
2021-08-10 15:06:20 us=27153 Recursive routing detected, drop tun packet to [AF_INET]publicIP:1194
2021-08-10 15:06:20 us=58134 Recursive routing detected, drop tun packet to [AF_INET]publicIP:1194
2021-08-10 15:06:21 us=95765 TEST ROUTES: 0/0 succeeded len=-1 ret=1 a=0 u/d=up
2021-08-10 15:06:21 us=95765 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
2021-08-10 15:06:21 us=95765 Initialization Sequence Completed
2021-08-10 15:06:21 us=95765 MANAGEMENT: >STATE:1628600781,CONNECTED,SUCCESS,,publicIP,1194,,
2021-08-10 15:06:21 us=893150 Recursive routing detected, drop tun packet to [AF_INET]publicIP:1194
2021-08-10 15:06:21 us=894109 Recursive routing detected, drop tun packet to [AF_INET]publicIP:1194
2021-08-10 15:06:22 us=66677 Recursive routing detected, drop tun packet to [AF_INET]publicIP:1194
2021-08-10 15:06:22 us=82667 Recursive routing detected, drop tun packet to [AF_INET]publicIP:1194
2021-08-10 15:06:22 us=285496 Recursive routing detected, drop tun packet to [AF_INET]publicIP:1194
2021-08-10 15:06:22 us=301487 Recursive routing detected, drop tun packet to [AF_INET]publicIP:1194
2021-08-10 15:06:22 us=303486 Recursive routing detected, drop tun packet to [AF_INET]publicIP:1194
2021-08-10 15:06:22 us=617036 Recursive routing detected, drop tun packet to [AF_INET]publicIP:1194
2021-08-10 15:06:22 us=792420 Recursive routing detected, drop tun packet to [AF_INET]publicIP:1194[/olog]

User avatar
TinCanTech
Forum Team
Posts: 9657
Joined: Fri Jun 03, 2016 1:17 pm

Re: OpenVPN - TAP - Can't ping LAN

Post by TinCanTech » Tue Aug 10, 2021 1:45 pm

Have you started the Windows DHCP service ?

Post Reply