Unidentified network No Internet Access

Need help configuring your VPN? Just post here and you'll get that help.
Forum rules
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
Post Reply
gama99
OpenVpn Newbie
Posts: 6
Joined: Tue Aug 08, 2017 6:36 am

Unidentified network No Internet Access

Post by gama99 » Tue Aug 08, 2017 8:57 am

Hi guys! I'm not so familiar with the VPN networking etc, but have will to learn. I have setup an open VPN server on my asus rt-ac88u:
Both machines server and client are running windows 7. Here is settings from the router:
Image
Image
When i connect throw openvpn client remotely i have get Unidentified network No Internet Access on the client machine. Network can't be change.
Funny part is that i have ping from remotely computer to my computer in home 192.168.xx.xx. Everything is working as it should be here is the client network settings:
Image

The only thing that fix this is on the client side i must manual enter the default gateway 10.8.0.5 witch is the VPN server dhcp server:
Image

Image
The work network subnet mask is 255.255.255.0 same as the openvpn server setup in asus. Tried to chnge the openvpn subnet to 255.255.254.0 and with some others no luck.
The router is with stock asus firmware have bottom of the windows section "custom configuration" for the openvpn.

Wich commands i must have enter so the client network adapter must me recognize guys?

p.s. Tried with route 0.0.0.0 vpn_subnet_mask default_gateway but no luck.

User avatar
TinCanTech
OpenVPN Protagonist
Posts: 2992
Joined: Fri Jun 03, 2016 1:17 pm

Re: Unidentified network No Internet Access

Post by TinCanTech » Tue Aug 08, 2017 1:49 pm

gama99 wrote:Wich commands i must have enter so the client network adapter must me recognize
I believe the TAP Windows Adaptor is always an unidentified network because Windows works that way. There is no need to change the adapter ..
gama99 wrote:Funny part is that i have ping from remotely computer to my computer in home 192.168.xx.xx. Everything is working as it should be
Is your client still in your home when you test ?
gama99 wrote:The only thing that fix this is on the client side i must manual enter the default gateway 10.8.0.5 witch is the VPN server dhcp server
You should not do that.

What you need to do is set --verb 4 in your client config and then post your client --log file here.
See --log & --verb in The Manual v24x

Also Please see:
HOWTO: Request Help ! {2}

gama99
OpenVpn Newbie
Posts: 6
Joined: Tue Aug 08, 2017 6:36 am

Re: Unidentified network No Internet Access

Post by gama99 » Tue Aug 08, 2017 6:17 pm

TinCanTech wrote:Is your client still in your home when you test ?
Client was remote machine. I don't know if this answer your question. Sorry if not not so familiar with Open VPN

User avatar
TinCanTech
OpenVPN Protagonist
Posts: 2992
Joined: Fri Jun 03, 2016 1:17 pm

Re: Unidentified network No Internet Access

Post by TinCanTech » Tue Aug 08, 2017 7:15 pm

gama99 wrote:Client was remote machine. I don't know if this answer your question
Yes, you answered that question.

gama99
OpenVpn Newbie
Posts: 6
Joined: Tue Aug 08, 2017 6:36 am

Re: Unidentified network No Internet Access

Post by gama99 » Tue Aug 08, 2017 7:31 pm

The log without setting --verb 4 from open vpn client:

Mon Aug 07 01:55:08 2017 OpenVPN 2.4.3 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [AEAD] built on Jul 14 2017
Mon Aug 07 01:55:08 2017 Windows version 6.1 (Windows 7) 64bit
Mon Aug 07 01:55:08 2017 library versions: OpenSSL 1.0.2l 25 May 2017, LZO 2.10
Enter Management Password:
Mon Aug 07 01:55:09 2017 WARNING: --ns-cert-type is DEPRECATED. Use --remote-cert-tls instead.
Mon Aug 07 01:55:10 2017 TCP/UDP: Preserving recently used remote address: [AF_INET]213.91.178.244:34873
Mon Aug 07 01:55:10 2017 UDP link local: (not bound)
Mon Aug 07 01:55:10 2017 UDP link remote: [AF_INET]xxx.xxxx.xxx
Mon Aug 07 01:55:10 2017 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Mon Aug 07 01:55:10 2017 [RT-AC88U] Peer Connection Initiated with [AF_INET]xxx.xxx.xxx
Mon Aug 07 01:55:11 2017 open_tun
Mon Aug 07 01:55:11 2017 TAP-WIN32 device [Local Area Connection 2] opened: \\.\Global\{DF4A0EFC-DAD6-4451-AB43-E125C19CA6E1}.tap
Mon Aug 07 01:55:11 2017 Notified TAP-Windows driver to set a DHCP IP/netmask of 10.8.0.6/255.255.255.252 on interface {DF4A0EFC-DAD6-4451-AB43-E125C19CA6E1} [DHCP-serv: 10.8.0.5, lease-time: 31536000]
Mon Aug 07 01:55:11 2017 Successful ARP Flush on interface [38] {DF4A0EFC-DAD6-4451-AB43-E125C19CA6E1}
Mon Aug 07 01:55:11 2017 do_ifconfig, tt->did_ifconfig_ipv6_setup=0
Mon Aug 07 01:55:16 2017 Initialization Sequence Completed
Mon Aug 07 01:55:40 2017 SIGTERM[hard,] received, process exiting

Code: Select all

--verb 4
added in asus custm conifg

Image

added too

Code: Select all

--verb 4
in client config file here is the log:

Tue Aug 08 22:40:58 2017 us=546345 Current Parameter Settings:
Tue Aug 08 22:40:58 2017 us=546345 config = 'client.ovpn'
Tue Aug 08 22:40:58 2017 us=546345 mode = 0
Tue Aug 08 22:40:58 2017 us=546345 show_ciphers = DISABLED
Tue Aug 08 22:40:58 2017 us=546345 show_digests = DISABLED
Tue Aug 08 22:40:58 2017 us=546345 show_engines = DISABLED
Tue Aug 08 22:40:58 2017 us=546345 genkey = DISABLED
Tue Aug 08 22:40:58 2017 us=546345 key_pass_file = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=546345 show_tls_ciphers = DISABLED
Tue Aug 08 22:40:58 2017 us=546345 connect_retry_max = 0
Tue Aug 08 22:40:58 2017 us=546345 Connection profiles [0]:
Tue Aug 08 22:40:58 2017 us=546345 proto = udp
Tue Aug 08 22:40:58 2017 us=546345 local = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=546345 local_port = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=546345 remote = '213.91.178.244'
Tue Aug 08 22:40:58 2017 us=546345 remote_port = '34873'
Tue Aug 08 22:40:58 2017 us=546345 remote_float = ENABLED
Tue Aug 08 22:40:58 2017 us=546345 bind_defined = DISABLED
Tue Aug 08 22:40:58 2017 us=546345 bind_local = DISABLED
Tue Aug 08 22:40:58 2017 us=546345 bind_ipv6_only = DISABLED
Tue Aug 08 22:40:58 2017 us=546345 connect_retry_seconds = 5
Tue Aug 08 22:40:58 2017 us=546345 connect_timeout = 120
Tue Aug 08 22:40:58 2017 us=546345 socks_proxy_server = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=546345 socks_proxy_port = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=546345 tun_mtu = 1500
Tue Aug 08 22:40:58 2017 us=546345 tun_mtu_defined = ENABLED
Tue Aug 08 22:40:58 2017 us=546345 link_mtu = 1500
Tue Aug 08 22:40:58 2017 us=546345 link_mtu_defined = DISABLED
Tue Aug 08 22:40:58 2017 us=547345 tun_mtu_extra = 0
Tue Aug 08 22:40:58 2017 us=547345 tun_mtu_extra_defined = DISABLED
Tue Aug 08 22:40:58 2017 us=547345 mtu_discover_type = -1
Tue Aug 08 22:40:58 2017 us=547345 fragment = 0
Tue Aug 08 22:40:58 2017 us=547345 mssfix = 1450
Tue Aug 08 22:40:58 2017 us=547345 explicit_exit_notification = 0
Tue Aug 08 22:40:58 2017 us=547345 Connection profiles END
Tue Aug 08 22:40:58 2017 us=547345 remote_random = DISABLED
Tue Aug 08 22:40:58 2017 us=547345 ipchange = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=547345 dev = 'tun'
Tue Aug 08 22:40:58 2017 us=547345 dev_type = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=547345 dev_node = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=547345 lladdr = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=547345 topology = 1
Tue Aug 08 22:40:58 2017 us=547345 ifconfig_local = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=547345 ifconfig_remote_netmask = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=547345 ifconfig_noexec = DISABLED
Tue Aug 08 22:40:58 2017 us=547345 ifconfig_nowarn = DISABLED
Tue Aug 08 22:40:58 2017 us=547345 ifconfig_ipv6_local = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=547345 ifconfig_ipv6_netbits = 0
Tue Aug 08 22:40:58 2017 us=547345 ifconfig_ipv6_remote = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=547345 shaper = 0
Tue Aug 08 22:40:58 2017 us=547345 mtu_test = 0
Tue Aug 08 22:40:58 2017 us=547345 mlock = DISABLED
Tue Aug 08 22:40:58 2017 us=547345 keepalive_ping = 15
Tue Aug 08 22:40:58 2017 us=547345 keepalive_timeout = 60
Tue Aug 08 22:40:58 2017 us=547345 inactivity_timeout = 0
Tue Aug 08 22:40:58 2017 us=547345 ping_send_timeout = 15
Tue Aug 08 22:40:58 2017 us=547345 ping_rec_timeout = 60
Tue Aug 08 22:40:58 2017 us=547345 ping_rec_timeout_action = 2
Tue Aug 08 22:40:58 2017 us=547345 ping_timer_remote = DISABLED
Tue Aug 08 22:40:58 2017 us=547345 remap_sigusr1 = 0
Tue Aug 08 22:40:58 2017 us=547345 persist_tun = DISABLED
Tue Aug 08 22:40:58 2017 us=547345 persist_local_ip = DISABLED
Tue Aug 08 22:40:58 2017 us=547345 persist_remote_ip = DISABLED
Tue Aug 08 22:40:58 2017 us=547345 persist_key = DISABLED
Tue Aug 08 22:40:58 2017 us=547345 passtos = DISABLED
Tue Aug 08 22:40:58 2017 us=547345 resolve_retry_seconds = 1000000000
Tue Aug 08 22:40:58 2017 us=547345 resolve_in_advance = DISABLED
Tue Aug 08 22:40:58 2017 us=547345 username = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=547345 groupname = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=547345 chroot_dir = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=547345 cd_dir = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=547345 writepid = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=547345 up_script = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=547345 down_script = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=547345 down_pre = DISABLED
Tue Aug 08 22:40:58 2017 us=547345 up_restart = DISABLED
Tue Aug 08 22:40:58 2017 us=547345 up_delay = DISABLED
Tue Aug 08 22:40:58 2017 us=547345 daemon = DISABLED
Tue Aug 08 22:40:58 2017 us=547345 inetd = 0
Tue Aug 08 22:40:58 2017 us=547345 log = ENABLED
Tue Aug 08 22:40:58 2017 us=547345 suppress_timestamps = DISABLED
Tue Aug 08 22:40:58 2017 us=547345 machine_readable_output = DISABLED
Tue Aug 08 22:40:58 2017 us=547345 nice = 0
Tue Aug 08 22:40:58 2017 us=547345 verbosity = 4
Tue Aug 08 22:40:58 2017 us=547345 mute = 0
Tue Aug 08 22:40:58 2017 us=547345 gremlin = 0
Tue Aug 08 22:40:58 2017 us=547345 status_file = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=547345 status_file_version = 1
Tue Aug 08 22:40:58 2017 us=547345 status_file_update_freq = 60
Tue Aug 08 22:40:58 2017 us=547345 occ = ENABLED
Tue Aug 08 22:40:58 2017 us=547345 rcvbuf = 0
Tue Aug 08 22:40:58 2017 us=547345 sndbuf = 0
Tue Aug 08 22:40:58 2017 us=547345 sockflags = 0
Tue Aug 08 22:40:58 2017 us=547345 fast_io = DISABLED
Tue Aug 08 22:40:58 2017 us=547345 comp.alg = 2
Tue Aug 08 22:40:58 2017 us=548346 comp.flags = 1
Tue Aug 08 22:40:58 2017 us=548346 route_script = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=548346 route_default_gateway = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=548346 route_default_metric = 0
Tue Aug 08 22:40:58 2017 us=548346 route_noexec = DISABLED
Tue Aug 08 22:40:58 2017 us=548346 route_delay = 5
Tue Aug 08 22:40:58 2017 us=548346 route_delay_window = 30
Tue Aug 08 22:40:58 2017 us=578347 route_delay_defined = ENABLED
Tue Aug 08 22:40:58 2017 us=578347 route_nopull = DISABLED
Tue Aug 08 22:40:58 2017 us=578347 route_gateway_via_dhcp = DISABLED
Tue Aug 08 22:40:58 2017 us=578347 allow_pull_fqdn = DISABLED
Tue Aug 08 22:40:58 2017 us=578347 management_addr = '127.0.0.1'
Tue Aug 08 22:40:58 2017 us=578347 management_port = '25340'
Tue Aug 08 22:40:58 2017 us=578347 management_user_pass = 'stdin'
Tue Aug 08 22:40:58 2017 us=578347 management_log_history_cache = 250
Tue Aug 08 22:40:58 2017 us=578347 management_echo_buffer_size = 100
Tue Aug 08 22:40:58 2017 us=578347 management_write_peer_info_file = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=578347 management_client_user = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=578347 management_client_group = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=578347 management_flags = 6
Tue Aug 08 22:40:58 2017 us=578347 shared_secret_file = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=578347 key_direction = 0
Tue Aug 08 22:40:58 2017 us=578347 ciphername = 'AES-256-CBC'
Tue Aug 08 22:40:58 2017 us=578347 ncp_enabled = ENABLED
Tue Aug 08 22:40:58 2017 us=578347 ncp_ciphers = 'AES-256-GCM:AES-128-GCM'
Tue Aug 08 22:40:58 2017 us=578347 authname = 'SHA1'
Tue Aug 08 22:40:58 2017 us=578347 prng_hash = 'SHA1'
Tue Aug 08 22:40:58 2017 us=578347 prng_nonce_secret_len = 16
Tue Aug 08 22:40:58 2017 us=578347 keysize = 0
Tue Aug 08 22:40:58 2017 us=578347 engine = DISABLED
Tue Aug 08 22:40:58 2017 us=578347 replay = ENABLED
Tue Aug 08 22:40:58 2017 us=578347 mute_replay_warnings = DISABLED
Tue Aug 08 22:40:58 2017 us=578347 replay_window = 64
Tue Aug 08 22:40:58 2017 us=578347 replay_time = 15
Tue Aug 08 22:40:58 2017 us=578347 packet_id_file = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=578347 use_iv = ENABLED
Tue Aug 08 22:40:58 2017 us=578347 test_crypto = DISABLED
Tue Aug 08 22:40:58 2017 us=578347 tls_server = DISABLED
Tue Aug 08 22:40:58 2017 us=578347 tls_client = ENABLED
Tue Aug 08 22:40:58 2017 us=578347 key_method = 2
Tue Aug 08 22:40:58 2017 us=578347 ca_file = '[[INLINE]]'
Tue Aug 08 22:40:58 2017 us=578347 ca_path = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=578347 dh_file = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=578347 cert_file = '[[INLINE]]'
Tue Aug 08 22:40:58 2017 us=578347 extra_certs_file = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=578347 priv_key_file = '[[INLINE]]'
Tue Aug 08 22:40:58 2017 us=578347 pkcs12_file = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=578347 cryptoapi_cert = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=578347 cipher_list = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=578347 tls_verify = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=578347 tls_export_cert = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=578347 verify_x509_type = 0
Tue Aug 08 22:40:58 2017 us=578347 verify_x509_name = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=578347 crl_file = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=578347 ns_cert_type = 1
Tue Aug 08 22:40:58 2017 us=578347 remote_cert_ku = 0
Tue Aug 08 22:40:58 2017 us=578347 remote_cert_ku = 0
Tue Aug 08 22:40:58 2017 us=578347 remote_cert_ku = 0
Tue Aug 08 22:40:58 2017 us=578347 remote_cert_ku = 0
Tue Aug 08 22:40:58 2017 us=578347 remote_cert_ku = 0
Tue Aug 08 22:40:58 2017 us=578347 remote_cert_ku = 0
Tue Aug 08 22:40:58 2017 us=579347 remote_cert_ku = 0
Tue Aug 08 22:40:58 2017 us=579347 remote_cert_ku = 0
Tue Aug 08 22:40:58 2017 us=579347 remote_cert_ku = 0
Tue Aug 08 22:40:58 2017 us=579347 remote_cert_ku = 0
Tue Aug 08 22:40:58 2017 us=579347 remote_cert_ku[i] = 0
Tue Aug 08 22:40:58 2017 us=579347 remote_cert_ku[i] = 0
Tue Aug 08 22:40:58 2017 us=579347 remote_cert_ku[i] = 0
Tue Aug 08 22:40:58 2017 us=579347 remote_cert_ku[i] = 0
Tue Aug 08 22:40:58 2017 us=579347 remote_cert_ku[i] = 0
Tue Aug 08 22:40:58 2017 us=579347 remote_cert_ku[i] = 0
Tue Aug 08 22:40:58 2017 us=579347 remote_cert_eku = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=579347 ssl_flags = 0
Tue Aug 08 22:40:58 2017 us=579347 tls_timeout = 2
Tue Aug 08 22:40:58 2017 us=579347 renegotiate_bytes = -1
Tue Aug 08 22:40:58 2017 us=579347 renegotiate_packets = 0
Tue Aug 08 22:40:58 2017 us=579347 renegotiate_seconds = 3600
Tue Aug 08 22:40:58 2017 us=579347 handshake_window = 60
Tue Aug 08 22:40:58 2017 us=579347 transition_window = 3600
Tue Aug 08 22:40:58 2017 us=579347 single_session = DISABLED
Tue Aug 08 22:40:58 2017 us=579347 push_peer_info = DISABLED
Tue Aug 08 22:40:58 2017 us=579347 tls_exit = DISABLED
Tue Aug 08 22:40:58 2017 us=579347 tls_auth_file = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=579347 tls_crypt_file = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=579347 pkcs11_protected_authentication = DISABLED
Tue Aug 08 22:40:58 2017 us=579347 pkcs11_protected_authentication = DISABLED
Tue Aug 08 22:40:58 2017 us=579347 pkcs11_protected_authentication = DISABLED
Tue Aug 08 22:40:58 2017 us=579347 pkcs11_protected_authentication = DISABLED
Tue Aug 08 22:40:58 2017 us=579347 pkcs11_protected_authentication = DISABLED
Tue Aug 08 22:40:58 2017 us=579347 pkcs11_protected_authentication = DISABLED
Tue Aug 08 22:40:58 2017 us=579347 pkcs11_protected_authentication = DISABLED
Tue Aug 08 22:40:58 2017 us=579347 pkcs11_protected_authentication = DISABLED
Tue Aug 08 22:40:58 2017 us=579347 pkcs11_protected_authentication = DISABLED
Tue Aug 08 22:40:58 2017 us=579347 pkcs11_protected_authentication = DISABLED
Tue Aug 08 22:40:58 2017 us=579347 pkcs11_protected_authentication = DISABLED
Tue Aug 08 22:40:58 2017 us=579347 pkcs11_protected_authentication = DISABLED
Tue Aug 08 22:40:58 2017 us=579347 pkcs11_protected_authentication = DISABLED
Tue Aug 08 22:40:58 2017 us=579347 pkcs11_protected_authentication = DISABLED
Tue Aug 08 22:40:58 2017 us=579347 pkcs11_protected_authentication = DISABLED
Tue Aug 08 22:40:58 2017 us=579347 pkcs11_protected_authentication = DISABLED
Tue Aug 08 22:40:58 2017 us=579347 pkcs11_private_mode = 00000000
Tue Aug 08 22:40:58 2017 us=579347 pkcs11_private_mode = 00000000
Tue Aug 08 22:40:58 2017 us=579347 pkcs11_private_mode = 00000000
Tue Aug 08 22:40:58 2017 us=579347 pkcs11_private_mode = 00000000
Tue Aug 08 22:40:58 2017 us=579347 pkcs11_private_mode = 00000000
Tue Aug 08 22:40:58 2017 us=579347 pkcs11_private_mode = 00000000
Tue Aug 08 22:40:58 2017 us=579347 pkcs11_private_mode = 00000000
Tue Aug 08 22:40:58 2017 us=579347 pkcs11_private_mode = 00000000
Tue Aug 08 22:40:58 2017 us=579347 pkcs11_private_mode = 00000000
Tue Aug 08 22:40:58 2017 us=579347 pkcs11_private_mode = 00000000
Tue Aug 08 22:40:58 2017 us=579347 pkcs11_private_mode = 00000000
Tue Aug 08 22:40:58 2017 us=579347 pkcs11_private_mode = 00000000
Tue Aug 08 22:40:58 2017 us=579347 pkcs11_private_mode = 00000000
Tue Aug 08 22:40:58 2017 us=579347 pkcs11_private_mode = 00000000
Tue Aug 08 22:40:58 2017 us=579347 pkcs11_private_mode = 00000000
Tue Aug 08 22:40:58 2017 us=579347 pkcs11_private_mode = 00000000
Tue Aug 08 22:40:58 2017 us=579347 pkcs11_cert_private = DISABLED
Tue Aug 08 22:40:58 2017 us=579347 pkcs11_cert_private = DISABLED
Tue Aug 08 22:40:58 2017 us=579347 pkcs11_cert_private = DISABLED
Tue Aug 08 22:40:58 2017 us=579347 pkcs11_cert_private = DISABLED
Tue Aug 08 22:40:58 2017 us=579347 pkcs11_cert_private = DISABLED
Tue Aug 08 22:40:58 2017 us=579347 pkcs11_cert_private = DISABLED
Tue Aug 08 22:40:58 2017 us=579347 pkcs11_cert_private = DISABLED
Tue Aug 08 22:40:58 2017 us=579347 pkcs11_cert_private = DISABLED
Tue Aug 08 22:40:58 2017 us=579347 pkcs11_cert_private = DISABLED
Tue Aug 08 22:40:58 2017 us=580347 pkcs11_cert_private = DISABLED
Tue Aug 08 22:40:58 2017 us=580347 pkcs11_cert_private = DISABLED
Tue Aug 08 22:40:58 2017 us=580347 pkcs11_cert_private = DISABLED
Tue Aug 08 22:40:58 2017 us=580347 pkcs11_cert_private = DISABLED
Tue Aug 08 22:40:58 2017 us=580347 pkcs11_cert_private = DISABLED
Tue Aug 08 22:40:58 2017 us=580347 pkcs11_cert_private = DISABLED
Tue Aug 08 22:40:58 2017 us=580347 pkcs11_cert_private = DISABLED
Tue Aug 08 22:40:58 2017 us=580347 pkcs11_pin_cache_period = -1
Tue Aug 08 22:40:58 2017 us=580347 pkcs11_id = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=580347 pkcs11_id_management = DISABLED
Tue Aug 08 22:40:58 2017 us=580347 server_network = 0.0.0.0
Tue Aug 08 22:40:58 2017 us=580347 server_netmask = 0.0.0.0
Tue Aug 08 22:40:58 2017 us=580347 server_network_ipv6 = ::
Tue Aug 08 22:40:58 2017 us=580347 server_netbits_ipv6 = 0
Tue Aug 08 22:40:58 2017 us=580347 server_bridge_ip = 0.0.0.0
Tue Aug 08 22:40:58 2017 us=580347 server_bridge_netmask = 0.0.0.0
Tue Aug 08 22:40:58 2017 us=580347 server_bridge_pool_start = 0.0.0.0
Tue Aug 08 22:40:58 2017 us=580347 server_bridge_pool_end = 0.0.0.0
Tue Aug 08 22:40:58 2017 us=580347 ifconfig_pool_defined = DISABLED
Tue Aug 08 22:40:58 2017 us=580347 ifconfig_pool_start = 0.0.0.0
Tue Aug 08 22:40:58 2017 us=580347 ifconfig_pool_end = 0.0.0.0
Tue Aug 08 22:40:58 2017 us=580347 ifconfig_pool_netmask = 0.0.0.0
Tue Aug 08 22:40:58 2017 us=580347 ifconfig_pool_persist_filename = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=580347 ifconfig_pool_persist_refresh_freq = 600
Tue Aug 08 22:40:58 2017 us=580347 ifconfig_ipv6_pool_defined = DISABLED
Tue Aug 08 22:40:58 2017 us=580347 ifconfig_ipv6_pool_base = ::
Tue Aug 08 22:40:58 2017 us=580347 ifconfig_ipv6_pool_netbits = 0
Tue Aug 08 22:40:58 2017 us=580347 n_bcast_buf = 256
Tue Aug 08 22:40:58 2017 us=580347 tcp_queue_limit = 64
Tue Aug 08 22:40:58 2017 us=580347 real_hash_size = 256
Tue Aug 08 22:40:58 2017 us=580347 virtual_hash_size = 256
Tue Aug 08 22:40:58 2017 us=580347 client_connect_script = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=580347 learn_address_script = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=580347 client_disconnect_script = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=580347 client_config_dir = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=580347 ccd_exclusive = DISABLED
Tue Aug 08 22:40:58 2017 us=580347 tmp_dir = 'C:\Users\xxxxx\AppData\Local\Temp\'
Tue Aug 08 22:40:58 2017 us=580347 push_ifconfig_defined = DISABLED
Tue Aug 08 22:40:58 2017 us=580347 push_ifconfig_local = 0.0.0.0
Tue Aug 08 22:40:58 2017 us=580347 push_ifconfig_remote_netmask = 0.0.0.0
Tue Aug 08 22:40:58 2017 us=580347 push_ifconfig_ipv6_defined = DISABLED
Tue Aug 08 22:40:58 2017 us=580347 push_ifconfig_ipv6_local = ::/0
Tue Aug 08 22:40:58 2017 us=580347 push_ifconfig_ipv6_remote = ::
Tue Aug 08 22:40:58 2017 us=580347 enable_c2c = DISABLED
Tue Aug 08 22:40:58 2017 us=580347 duplicate_cn = DISABLED
Tue Aug 08 22:40:58 2017 us=580347 cf_max = 0
Tue Aug 08 22:40:58 2017 us=580347 cf_per = 0
Tue Aug 08 22:40:58 2017 us=580347 max_clients = 1024
Tue Aug 08 22:40:58 2017 us=580347 max_routes_per_client = 256
Tue Aug 08 22:40:58 2017 us=580347 auth_user_pass_verify_script = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=580347 auth_user_pass_verify_script_via_file = DISABLED
Tue Aug 08 22:40:58 2017 us=580347 auth_token_generate = DISABLED
Tue Aug 08 22:40:58 2017 us=580347 auth_token_lifetime = 0
Tue Aug 08 22:40:58 2017 us=580347 client = ENABLED
Tue Aug 08 22:40:58 2017 us=580347 pull = ENABLED
Tue Aug 08 22:40:58 2017 us=580347 auth_user_pass_file = 'stdin'
Tue Aug 08 22:40:58 2017 us=580347 show_net_up = DISABLED
Tue Aug 08 22:40:58 2017 us=580347 route_method = 0
Tue Aug 08 22:40:58 2017 us=580347 block_outside_dns = DISABLED
Tue Aug 08 22:40:58 2017 us=580347 ip_win32_defined = DISABLED
Tue Aug 08 22:40:58 2017 us=580347 ip_win32_type = 3
Tue Aug 08 22:40:58 2017 us=580347 dhcp_masq_offset = 0
Tue Aug 08 22:40:58 2017 us=581347 dhcp_lease_time = 31536000
Tue Aug 08 22:40:58 2017 us=581347 tap_sleep = 0
Tue Aug 08 22:40:58 2017 us=581347 dhcp_options = DISABLED
Tue Aug 08 22:40:58 2017 us=581347 dhcp_renew = DISABLED
Tue Aug 08 22:40:58 2017 us=581347 dhcp_pre_release = DISABLED
Tue Aug 08 22:40:58 2017 us=581347 domain = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=581347 netbios_scope = '[UNDEF]'
Tue Aug 08 22:40:58 2017 us=581347 netbios_node_type = 0
Tue Aug 08 22:40:58 2017 us=581347 disable_nbt = DISABLED
Tue Aug 08 22:40:58 2017 us=581347 OpenVPN 2.4.3 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [AEAD] built on Jul 14 2017
Tue Aug 08 22:40:58 2017 us=581347 Windows version 6.1 (Windows 7) 64bit
Tue Aug 08 22:40:58 2017 us=581347 library versions: OpenSSL 1.0.2l 25 May 2017, LZO 2.10
Enter Management Password:
Tue Aug 08 22:40:58 2017 us=582347 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:25340
Tue Aug 08 22:40:58 2017 us=582347 Need hold release from management interface, waiting...
Tue Aug 08 22:40:59 2017 us=2371 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:25340
Tue Aug 08 22:40:59 2017 us=102377 MANAGEMENT: CMD 'state on'
Tue Aug 08 22:40:59 2017 us=102377 MANAGEMENT: CMD 'log all on'
Tue Aug 08 22:40:59 2017 us=218384 MANAGEMENT: CMD 'echo all on'
Tue Aug 08 22:40:59 2017 us=219384 MANAGEMENT: CMD 'hold off'
Tue Aug 08 22:40:59 2017 us=221384 MANAGEMENT: CMD 'hold release'
Tue Aug 08 22:41:00 2017 us=199440 MANAGEMENT: CMD 'username "Auth" "xxxxxx"'
Tue Aug 08 22:41:00 2017 us=204440 MANAGEMENT: CMD 'password [...]'
Tue Aug 08 22:41:00 2017 us=205440 WARNING: --ns-cert-type is DEPRECATED. Use --remote-cert-tls instead.
Tue Aug 08 22:41:00 2017 us=408452 LZO compression initializing
Tue Aug 08 22:41:00 2017 us=408452 Control Channel MTU parms [ L:1622 D:1212 EF:38 EB:0 ET:0 EL:3 ]
Tue Aug 08 22:41:00 2017 us=408452 Data Channel MTU parms [ L:1622 D:1450 EF:122 EB:406 ET:0 EL:3 ]
Tue Aug 08 22:41:00 2017 us=408452 Local Options String (VER=V4): 'V4,dev-type tun,link-mtu 1558,tun-mtu 1500,proto UDPv4,comp-lzo,cipher AES-256-CBC,auth SHA1,keysize 256,key-method 2,tls-client'
Tue Aug 08 22:41:00 2017 us=408452 Expected Remote Options String (VER=V4): 'V4,dev-type tun,link-mtu 1558,tun-mtu 1500,proto UDPv4,comp-lzo,cipher AES-256-CBC,auth SHA1,keysize 256,key-method 2,tls-server'
Tue Aug 08 22:41:00 2017 us=408452 TCP/UDP: Preserving recently used remote address: [AF_INET]213.91.178.244:34873
Tue Aug 08 22:41:00 2017 us=409452 Socket Buffers: R=[8192->8192] S=[8192->8192]
Tue Aug 08 22:41:00 2017 us=409452 UDP link local: (not bound)
Tue Aug 08 22:41:00 2017 us=409452 UDP link remote: [AF_INET]213.91.178.244:34873
Tue Aug 08 22:41:00 2017 us=409452 MANAGEMENT: >STATE:1502221260,WAIT,,,,,,
Tue Aug 08 22:41:00 2017 us=412452 MANAGEMENT: >STATE:1502221260,AUTH,,,,,,
Tue Aug 08 22:41:00 2017 us=412452 TLS: Initial packet from [AF_INET]213.91.178.244:34873, sid=47dff45b c34f719c
Tue Aug 08 22:41:00 2017 us=412452 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Tue Aug 08 22:41:00 2017 us=430453 VERIFY OK: depth=1, C=TW, ST=TW, L=Taipei, O=ASUS, CN=RT-AC88U, emailAddress=me@myhost.mydomain
Tue Aug 08 22:41:00 2017 us=431453 VERIFY OK: nsCertType=SERVER
Tue Aug 08 22:41:00 2017 us=431453 VERIFY OK: depth=0, C=TW, ST=TW, L=Taipei, O=ASUS, CN=RT-AC88U, emailAddress=me@myhost.mydomain
Tue Aug 08 22:41:00 2017 us=476456 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
Tue Aug 08 22:41:00 2017 us=476456 [RT-AC88U] Peer Connection Initiated with [AF_INET]213.91.178.244:34873
Tue Aug 08 22:41:01 2017 us=663524 MANAGEMENT: >STATE:1502221261,GET_CONFIG,,,,,,
Tue Aug 08 22:41:01 2017 us=663524 SENT CONTROL [RT-AC88U]: 'PUSH_REQUEST' (status=1)
Tue Aug 08 22:41:01 2017 us=665524 PUSH: Received control message: 'PUSH_REPLY,route 192.168.2.0 255.255.255.0 vpn_gateway 500,dhcp-option DNS 192.168.2.1,route 10.8.8.1,topology net30,ping 15,ping-restart 60,ifconfig 10.8.8.10 10.8.8.9'
Tue Aug 08 22:41:01 2017 us=665524 OPTIONS IMPORT: timers and/or timeouts modified
Tue Aug 08 22:41:01 2017 us=665524 OPTIONS IMPORT: --ifconfig/up options modified
Tue Aug 08 22:41:01 2017 us=665524 OPTIONS IMPORT: route options modified
Tue Aug 08 22:41:01 2017 us=665524 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Tue Aug 08 22:41:01 2017 us=665524 Data Channel MTU parms [ L:1558 D:1450 EF:58 EB:406 ET:0 EL:3 ]
Tue Aug 08 22:41:01 2017 us=665524 Data Channel Encrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
Tue Aug 08 22:41:01 2017 us=665524 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Tue Aug 08 22:41:01 2017 us=665524 Data Channel Decrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
Tue Aug 08 22:41:01 2017 us=665524 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Tue Aug 08 22:41:01 2017 us=665524 interactive service msg_channel=0
Tue Aug 08 22:41:01 2017 us=668524 ROUTE_GATEWAY 192.168.2.1/255.255.255.0 I=11 HWADDR=f0:de:f1:9d:50:77
Tue Aug 08 22:41:01 2017 us=668524 open_tun
Tue Aug 08 22:41:01 2017 us=669524 TAP-WIN32 device [Local Area Connection 2] opened: \\.\Global\{DF4A0EFC-DAD6-4451-AB43-E125C19CA6E1}.tap
Tue Aug 08 22:41:01 2017 us=669524 TAP-Windows Driver Version 9.21
Tue Aug 08 22:41:01 2017 us=669524 TAP-Windows MTU=1500
Tue Aug 08 22:41:01 2017 us=671524 Notified TAP-Windows driver to set a DHCP IP/netmask of 10.8.8.10/255.255.255.252 on interface {DF4A0EFC-DAD6-4451-AB43-E125C19CA6E1} [DHCP-serv: 10.8.8.9, lease-time: 31536000]
Tue Aug 08 22:41:01 2017 us=671524 DHCP option string: 0604c0a8 0201
Tue Aug 08 22:41:01 2017 us=671524 Successful ARP Flush on interface [19] {DF4A0EFC-DAD6-4451-AB43-E125C19CA6E1}
Tue Aug 08 22:41:01 2017 us=674524 do_ifconfig, tt->did_ifconfig_ipv6_setup=0
Tue Aug 08 22:41:01 2017 us=674524 MANAGEMENT: >STATE:1502221261,ASSIGN_IP,,10.8.8.10,,,,
Tue Aug 08 22:41:06 2017 us=62775 TEST ROUTES: 2/2 succeeded len=2 ret=1 a=0 u/d=up
Tue Aug 08 22:41:06 2017 us=62775 MANAGEMENT: >STATE:1502221266,ADD_ROUTES,,,,,,
Tue Aug 08 22:41:06 2017 us=62775 C:\Windows\system32\route.exe ADD 192.168.2.0 MASK 255.255.255.0 10.8.8.9 METRIC 500
Tue Aug 08 22:41:06 2017 us=64775 Route addition via IPAPI succeeded [adaptive]
Tue Aug 08 22:41:06 2017 us=64775 C:\Windows\system32\route.exe ADD 10.8.8.1 MASK 255.255.255.255 10.8.8.9
Tue Aug 08 22:41:06 2017 us=67776 ROUTE: CreateIpForwardEntry succeeded with dwForwardMetric1=20 and dwForwardType=4
Tue Aug 08 22:41:06 2017 us=67776 Route addition via IPAPI succeeded [adaptive]
Tue Aug 08 22:41:06 2017 us=67776 Initialization Sequence Completed
Tue Aug 08 22:41:06 2017 us=67776 MANAGEMENT: >STATE:1502221266,CONNECTED,SUCCESS,10.8.8.10,xxxxxxxxxxxxxxxxxxxx,,

User avatar
TinCanTech
OpenVPN Protagonist
Posts: 2992
Joined: Fri Jun 03, 2016 1:17 pm

Re: Unidentified network No Internet Access

Post by TinCanTech » Tue Aug 08, 2017 8:17 pm

gama99 wrote:Re: <snip> No Internet Access
You should have normal internet access because you have not redirected your client gateway .. but everything looks normal otherwise.

Please see:
HOWTO: Routing all client traffic (including web-traffic) through the VPN
gama99 wrote:--verb 4
added in asus custm conifg
You can also use

Code: Select all

push "block-outside-dns"
added to that field.

See --block-outside-dns in The Manual v24x

gama99
OpenVpn Newbie
Posts: 6
Joined: Tue Aug 08, 2017 6:36 am

Re: Unidentified network No Internet Access

Post by gama99 » Wed Aug 09, 2017 8:35 am

Hi! Thank you very much for the help. About HOWTO: Routing all client traffic (including web-traffic) through the VPN: In my rt-ac88u i have:


Direct clients to redirect Internet traffic - Option is not checked.
Direct clients to redirect internet traffic: If this feature is enabled all traffic will go via the router and depending on your bandwidth speeds it can be very slow on the clients receiving end.

Ideally the majority of users should keep the Redirect Internet Traffic option disabled. It means the remote client will still use his own WAN access for all Internet traffic, and only use the VPN tunnel when trying to access a resource in the home LAN network. This is what VPNs were originally designed to do.[/b]


About DNS i have checked in router config these: Respond to DNS and Advertise DNS

Respond to DNS - Respond to DNS: enable this along with Advertise DNS to clients and when you connect you will be using the DNS of the VPN server.


For to be sure I will add is asus custom configuration:

Code: Select all

push "block-outside-dns"

User avatar
TinCanTech
OpenVPN Protagonist
Posts: 2992
Joined: Fri Jun 03, 2016 1:17 pm

Re: Unidentified network No Internet Access

Post by TinCanTech » Wed Aug 09, 2017 10:29 am

gama99 wrote:Direct clients to redirect Internet traffic - Option is not checked.
Direct clients to redirect internet traffic: If this feature is enabled all traffic will go via the router and depending on your bandwidth speeds it can be very slow on the clients receiving end.

Ideally the majority of users should keep the Redirect Internet Traffic option disabled. It means the remote client will still use his own WAN access for all Internet traffic, and only use the VPN tunnel when trying to access a resource in the home LAN network. This is what VPNs were originally designed to do.[/b]
That is ok if all you want is access to your LAN while elsewhere .. but if you use your client in an untrusted network (eg. a cake! shop. we have one near me) do you want your unencrypted data on their network ? That is up to you.

With that in mind .. although you use 192.168.2.0/24 on your LAN that is still a very common subnet so ..
  • NOTE: your local LAN uses the extremely common subnet address 192.168.0.x or 192.168.1.x. Be aware that this might create routing conflicts if you connect to the VPN server from public locations such as internet cafes that use the same subnet.
:arrow: Never use 192.168.0.0/24 or 192.168.1.0/24 (or other common subnets) for your OpenVPN Server LAN :!:
  • You are advised to change your server LAN to a more unique RFC1918 compliant subnet.
    For example: 192.168.143.0/24
One other thing you should consider is --tls-auth .. See:
Hardening OpenVPN Security

gama99
OpenVpn Newbie
Posts: 6
Joined: Tue Aug 08, 2017 6:36 am

Re: Unidentified network No Internet Access

Post by gama99 » Sun Aug 13, 2017 5:06 pm

Hi! Can't configurate the client or the server to force using VPN DNS, I have tried so far in asus stock firmaware custom config to add:

Code: Select all

push "block-outside-dns"
, restart the router, get new generated client file no luck.

Into the client running win7 tried:

Code: Select all

push "block-outside-dns" 
no luck get me an error
tried with

Code: Select all

--block-outside-dns
no luck either.

Log:

Sun Aug 13 19:41:05 2017 us=500869 Current Parameter Settings:
Sun Aug 13 19:41:05 2017 us=500869 config = 'client.ovpn'
Sun Aug 13 19:41:05 2017 us=500869 mode = 0
Sun Aug 13 19:41:05 2017 us=500869 show_ciphers = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 show_digests = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 show_engines = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 genkey = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 key_pass_file = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=500869 show_tls_ciphers = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 connect_retry_max = 0
Sun Aug 13 19:41:05 2017 us=500869 Connection profiles [0]:
Sun Aug 13 19:41:05 2017 us=500869 proto = udp
Sun Aug 13 19:41:05 2017 us=500869 local = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=500869 local_port = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=500869 remote = xxxx.xxxxx.xxxxx
Sun Aug 13 19:41:05 2017 us=500869 remote_port = '33091'
Sun Aug 13 19:41:05 2017 us=500869 remote_float = ENABLED
Sun Aug 13 19:41:05 2017 us=500869 bind_defined = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 bind_local = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 bind_ipv6_only = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 connect_retry_seconds = 5
Sun Aug 13 19:41:05 2017 us=500869 connect_timeout = 120
Sun Aug 13 19:41:05 2017 us=500869 socks_proxy_server = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=500869 socks_proxy_port = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=500869 tun_mtu = 1500
Sun Aug 13 19:41:05 2017 us=500869 tun_mtu_defined = ENABLED
Sun Aug 13 19:41:05 2017 us=500869 link_mtu = 1500
Sun Aug 13 19:41:05 2017 us=500869 link_mtu_defined = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 tun_mtu_extra = 0
Sun Aug 13 19:41:05 2017 us=500869 tun_mtu_extra_defined = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 mtu_discover_type = -1
Sun Aug 13 19:41:05 2017 us=500869 fragment = 0
Sun Aug 13 19:41:05 2017 us=500869 mssfix = 1450
Sun Aug 13 19:41:05 2017 us=500869 explicit_exit_notification = 0
Sun Aug 13 19:41:05 2017 us=500869 Connection profiles END
Sun Aug 13 19:41:05 2017 us=500869 remote_random = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 ipchange = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=500869 dev = 'tun'
Sun Aug 13 19:41:05 2017 us=500869 dev_type = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=500869 dev_node = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=500869 lladdr = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=500869 topology = 1
Sun Aug 13 19:41:05 2017 us=500869 ifconfig_local = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=500869 ifconfig_remote_netmask = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=500869 ifconfig_noexec = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 ifconfig_nowarn = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 ifconfig_ipv6_local = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=500869 ifconfig_ipv6_netbits = 0
Sun Aug 13 19:41:05 2017 us=500869 ifconfig_ipv6_remote = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=500869 shaper = 0
Sun Aug 13 19:41:05 2017 us=500869 mtu_test = 0
Sun Aug 13 19:41:05 2017 us=500869 mlock = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 keepalive_ping = 15
Sun Aug 13 19:41:05 2017 us=500869 keepalive_timeout = 60
Sun Aug 13 19:41:05 2017 us=500869 inactivity_timeout = 0
Sun Aug 13 19:41:05 2017 us=500869 ping_send_timeout = 15
Sun Aug 13 19:41:05 2017 us=500869 ping_rec_timeout = 60
Sun Aug 13 19:41:05 2017 us=500869 ping_rec_timeout_action = 2
Sun Aug 13 19:41:05 2017 us=500869 ping_timer_remote = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 remap_sigusr1 = 0
Sun Aug 13 19:41:05 2017 us=500869 persist_tun = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 persist_local_ip = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 persist_remote_ip = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 persist_key = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 passtos = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 resolve_retry_seconds = 1000000000
Sun Aug 13 19:41:05 2017 us=500869 resolve_in_advance = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 username = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=500869 groupname = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=500869 chroot_dir = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=500869 cd_dir = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=500869 writepid = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=500869 up_script = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=500869 down_script = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=500869 down_pre = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 up_restart = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 up_delay = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 daemon = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 inetd = 0
Sun Aug 13 19:41:05 2017 us=500869 log = ENABLED
Sun Aug 13 19:41:05 2017 us=500869 suppress_timestamps = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 machine_readable_output = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 nice = 0
Sun Aug 13 19:41:05 2017 us=500869 verbosity = 4
Sun Aug 13 19:41:05 2017 us=500869 mute = 0
Sun Aug 13 19:41:05 2017 us=500869 gremlin = 0
Sun Aug 13 19:41:05 2017 us=500869 status_file = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=500869 status_file_version = 1
Sun Aug 13 19:41:05 2017 us=500869 status_file_update_freq = 60
Sun Aug 13 19:41:05 2017 us=500869 occ = ENABLED
Sun Aug 13 19:41:05 2017 us=500869 rcvbuf = 0
Sun Aug 13 19:41:05 2017 us=500869 sndbuf = 0
Sun Aug 13 19:41:05 2017 us=500869 sockflags = 0
Sun Aug 13 19:41:05 2017 us=500869 fast_io = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 comp.alg = 2
Sun Aug 13 19:41:05 2017 us=500869 comp.flags = 1
Sun Aug 13 19:41:05 2017 us=500869 route_script = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=500869 route_default_gateway = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=500869 route_default_metric = 0
Sun Aug 13 19:41:05 2017 us=500869 route_noexec = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 route_delay = 5
Sun Aug 13 19:41:05 2017 us=500869 route_delay_window = 30
Sun Aug 13 19:41:05 2017 us=500869 route_delay_defined = ENABLED
Sun Aug 13 19:41:05 2017 us=500869 route_nopull = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 route_gateway_via_dhcp = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 allow_pull_fqdn = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 management_addr = '127.0.0.1'
Sun Aug 13 19:41:05 2017 us=500869 management_port = '25340'
Sun Aug 13 19:41:05 2017 us=500869 management_user_pass = 'stdin'
Sun Aug 13 19:41:05 2017 us=500869 management_log_history_cache = 250
Sun Aug 13 19:41:05 2017 us=500869 management_echo_buffer_size = 100
Sun Aug 13 19:41:05 2017 us=500869 management_write_peer_info_file = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=500869 management_client_user = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=500869 management_client_group = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=500869 management_flags = 6
Sun Aug 13 19:41:05 2017 us=500869 shared_secret_file = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=500869 key_direction = 2
Sun Aug 13 19:41:05 2017 us=500869 ciphername = 'AES-256-CBC'
Sun Aug 13 19:41:05 2017 us=500869 ncp_enabled = ENABLED
Sun Aug 13 19:41:05 2017 us=500869 ncp_ciphers = 'AES-256-GCM:AES-128-GCM'
Sun Aug 13 19:41:05 2017 us=500869 authname = 'SHA1'
Sun Aug 13 19:41:05 2017 us=500869 prng_hash = 'SHA1'
Sun Aug 13 19:41:05 2017 us=500869 prng_nonce_secret_len = 16
Sun Aug 13 19:41:05 2017 us=500869 keysize = 0
Sun Aug 13 19:41:05 2017 us=500869 engine = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 replay = ENABLED
Sun Aug 13 19:41:05 2017 us=500869 mute_replay_warnings = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 replay_window = 64
Sun Aug 13 19:41:05 2017 us=500869 replay_time = 15
Sun Aug 13 19:41:05 2017 us=500869 packet_id_file = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=500869 use_iv = ENABLED
Sun Aug 13 19:41:05 2017 us=500869 test_crypto = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 tls_server = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 tls_client = ENABLED
Sun Aug 13 19:41:05 2017 us=500869 key_method = 2
Sun Aug 13 19:41:05 2017 us=500869 ca_file = '[[INLINE]]'
Sun Aug 13 19:41:05 2017 us=500869 ca_path = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=500869 dh_file = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=500869 cert_file = '[[INLINE]]'
Sun Aug 13 19:41:05 2017 us=500869 extra_certs_file = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=500869 priv_key_file = '[[INLINE]]'
Sun Aug 13 19:41:05 2017 us=500869 pkcs12_file = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=500869 cryptoapi_cert = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=500869 cipher_list = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=500869 tls_verify = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=500869 tls_export_cert = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=500869 verify_x509_type = 0
Sun Aug 13 19:41:05 2017 us=500869 verify_x509_name = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=500869 crl_file = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=500869 ns_cert_type = 1
Sun Aug 13 19:41:05 2017 us=500869 remote_cert_ku = 0
Sun Aug 13 19:41:05 2017 us=500869 remote_cert_ku = 0
Sun Aug 13 19:41:05 2017 us=500869 remote_cert_ku = 0
Sun Aug 13 19:41:05 2017 us=500869 remote_cert_ku = 0
Sun Aug 13 19:41:05 2017 us=500869 remote_cert_ku = 0
Sun Aug 13 19:41:05 2017 us=500869 remote_cert_ku = 0
Sun Aug 13 19:41:05 2017 us=500869 remote_cert_ku = 0
Sun Aug 13 19:41:05 2017 us=500869 remote_cert_ku = 0
Sun Aug 13 19:41:05 2017 us=500869 remote_cert_ku = 0
Sun Aug 13 19:41:05 2017 us=500869 remote_cert_ku = 0
Sun Aug 13 19:41:05 2017 us=500869 remote_cert_ku[i] = 0
Sun Aug 13 19:41:05 2017 us=500869 remote_cert_ku[i] = 0
Sun Aug 13 19:41:05 2017 us=500869 remote_cert_ku[i] = 0
Sun Aug 13 19:41:05 2017 us=500869 remote_cert_ku[i] = 0
Sun Aug 13 19:41:05 2017 us=500869 remote_cert_ku[i] = 0
Sun Aug 13 19:41:05 2017 us=500869 remote_cert_ku[i] = 0
Sun Aug 13 19:41:05 2017 us=500869 remote_cert_eku = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=500869 ssl_flags = 0
Sun Aug 13 19:41:05 2017 us=500869 tls_timeout = 2
Sun Aug 13 19:41:05 2017 us=500869 renegotiate_bytes = -1
Sun Aug 13 19:41:05 2017 us=500869 renegotiate_packets = 0
Sun Aug 13 19:41:05 2017 us=500869 renegotiate_seconds = 3600
Sun Aug 13 19:41:05 2017 us=500869 handshake_window = 60
Sun Aug 13 19:41:05 2017 us=500869 transition_window = 3600
Sun Aug 13 19:41:05 2017 us=500869 single_session = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 push_peer_info = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 tls_exit = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 tls_auth_file = '[[INLINE]]'
Sun Aug 13 19:41:05 2017 us=500869 tls_crypt_file = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=500869 pkcs11_protected_authentication = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 pkcs11_protected_authentication = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 pkcs11_protected_authentication = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 pkcs11_protected_authentication = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 pkcs11_protected_authentication = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 pkcs11_protected_authentication = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 pkcs11_protected_authentication = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 pkcs11_protected_authentication = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 pkcs11_protected_authentication = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 pkcs11_protected_authentication = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 pkcs11_protected_authentication = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 pkcs11_protected_authentication = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 pkcs11_protected_authentication = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 pkcs11_protected_authentication = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 pkcs11_protected_authentication = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 pkcs11_protected_authentication = DISABLED
Sun Aug 13 19:41:05 2017 us=500869 pkcs11_private_mode = 00000000
Sun Aug 13 19:41:05 2017 us=500869 pkcs11_private_mode = 00000000
Sun Aug 13 19:41:05 2017 us=500869 pkcs11_private_mode = 00000000
Sun Aug 13 19:41:05 2017 us=500869 pkcs11_private_mode = 00000000
Sun Aug 13 19:41:05 2017 us=500869 pkcs11_private_mode = 00000000
Sun Aug 13 19:41:05 2017 us=500869 pkcs11_private_mode = 00000000
Sun Aug 13 19:41:05 2017 us=500869 pkcs11_private_mode = 00000000
Sun Aug 13 19:41:05 2017 us=500869 pkcs11_private_mode = 00000000
Sun Aug 13 19:41:05 2017 us=500869 pkcs11_private_mode = 00000000
Sun Aug 13 19:41:05 2017 us=500869 pkcs11_private_mode = 00000000
Sun Aug 13 19:41:05 2017 us=500869 pkcs11_private_mode = 00000000
Sun Aug 13 19:41:05 2017 us=500869 pkcs11_private_mode = 00000000
Sun Aug 13 19:41:05 2017 us=500869 pkcs11_private_mode = 00000000
Sun Aug 13 19:41:05 2017 us=500869 pkcs11_private_mode = 00000000
Sun Aug 13 19:41:05 2017 us=500869 pkcs11_private_mode = 00000000
Sun Aug 13 19:41:05 2017 us=500869 pkcs11_private_mode = 00000000
Sun Aug 13 19:41:05 2017 us=500869 pkcs11_cert_private = DISABLED
Sun Aug 13 19:41:05 2017 us=516469 pkcs11_cert_private = DISABLED
Sun Aug 13 19:41:05 2017 us=516469 pkcs11_cert_private = DISABLED
Sun Aug 13 19:41:05 2017 us=516469 pkcs11_cert_private = DISABLED
Sun Aug 13 19:41:05 2017 us=516469 pkcs11_cert_private = DISABLED
Sun Aug 13 19:41:05 2017 us=516469 pkcs11_cert_private = DISABLED
Sun Aug 13 19:41:05 2017 us=516469 pkcs11_cert_private = DISABLED
Sun Aug 13 19:41:05 2017 us=516469 pkcs11_cert_private = DISABLED
Sun Aug 13 19:41:05 2017 us=516469 pkcs11_cert_private = DISABLED
Sun Aug 13 19:41:05 2017 us=516469 pkcs11_cert_private = DISABLED
Sun Aug 13 19:41:05 2017 us=516469 pkcs11_cert_private = DISABLED
Sun Aug 13 19:41:05 2017 us=516469 pkcs11_cert_private = DISABLED
Sun Aug 13 19:41:05 2017 us=516469 pkcs11_cert_private = DISABLED
Sun Aug 13 19:41:05 2017 us=516469 pkcs11_cert_private = DISABLED
Sun Aug 13 19:41:05 2017 us=516469 pkcs11_cert_private = DISABLED
Sun Aug 13 19:41:05 2017 us=516469 pkcs11_cert_private = DISABLED
Sun Aug 13 19:41:05 2017 us=516469 pkcs11_pin_cache_period = -1
Sun Aug 13 19:41:05 2017 us=516469 pkcs11_id = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=516469 pkcs11_id_management = DISABLED
Sun Aug 13 19:41:05 2017 us=516469 server_network = 0.0.0.0
Sun Aug 13 19:41:05 2017 us=516469 server_netmask = 0.0.0.0
Sun Aug 13 19:41:05 2017 us=516469 server_network_ipv6 = ::
Sun Aug 13 19:41:05 2017 us=516469 server_netbits_ipv6 = 0
Sun Aug 13 19:41:05 2017 us=516469 server_bridge_ip = 0.0.0.0
Sun Aug 13 19:41:05 2017 us=516469 server_bridge_netmask = 0.0.0.0
Sun Aug 13 19:41:05 2017 us=516469 server_bridge_pool_start = 0.0.0.0
Sun Aug 13 19:41:05 2017 us=516469 server_bridge_pool_end = 0.0.0.0
Sun Aug 13 19:41:05 2017 us=516469 ifconfig_pool_defined = DISABLED
Sun Aug 13 19:41:05 2017 us=516469 ifconfig_pool_start = 0.0.0.0
Sun Aug 13 19:41:05 2017 us=516469 ifconfig_pool_end = 0.0.0.0
Sun Aug 13 19:41:05 2017 us=516469 ifconfig_pool_netmask = 0.0.0.0
Sun Aug 13 19:41:05 2017 us=516469 ifconfig_pool_persist_filename = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=516469 ifconfig_pool_persist_refresh_freq = 600
Sun Aug 13 19:41:05 2017 us=516469 ifconfig_ipv6_pool_defined = DISABLED
Sun Aug 13 19:41:05 2017 us=516469 ifconfig_ipv6_pool_base = ::
Sun Aug 13 19:41:05 2017 us=516469 ifconfig_ipv6_pool_netbits = 0
Sun Aug 13 19:41:05 2017 us=516469 n_bcast_buf = 256
Sun Aug 13 19:41:05 2017 us=516469 tcp_queue_limit = 64
Sun Aug 13 19:41:05 2017 us=516469 real_hash_size = 256
Sun Aug 13 19:41:05 2017 us=516469 virtual_hash_size = 256
Sun Aug 13 19:41:05 2017 us=516469 client_connect_script = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=516469 learn_address_script = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=516469 client_disconnect_script = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=516469 client_config_dir = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=516469 ccd_exclusive = DISABLED
Sun Aug 13 19:41:05 2017 us=516469 tmp_dir =
Sun Aug 13 19:41:05 2017 us=516469 push_ifconfig_defined = DISABLED
Sun Aug 13 19:41:05 2017 us=516469 push_ifconfig_local = 0.0.0.0
Sun Aug 13 19:41:05 2017 us=516469 push_ifconfig_remote_netmask = 0.0.0.0
Sun Aug 13 19:41:05 2017 us=516469 push_ifconfig_ipv6_defined = DISABLED
Sun Aug 13 19:41:05 2017 us=516469 push_ifconfig_ipv6_local = ::/0
Sun Aug 13 19:41:05 2017 us=516469 push_ifconfig_ipv6_remote = ::
Sun Aug 13 19:41:05 2017 us=516469 enable_c2c = DISABLED
Sun Aug 13 19:41:05 2017 us=516469 duplicate_cn = DISABLED
Sun Aug 13 19:41:05 2017 us=516469 cf_max = 0
Sun Aug 13 19:41:05 2017 us=516469 cf_per = 0
Sun Aug 13 19:41:05 2017 us=516469 max_clients = 1024
Sun Aug 13 19:41:05 2017 us=516469 max_routes_per_client = 256
Sun Aug 13 19:41:05 2017 us=516469 auth_user_pass_verify_script = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=516469 auth_user_pass_verify_script_via_file = DISABLED
Sun Aug 13 19:41:05 2017 us=516469 auth_token_generate = DISABLED
Sun Aug 13 19:41:05 2017 us=516469 auth_token_lifetime = 0
Sun Aug 13 19:41:05 2017 us=516469 client = ENABLED
Sun Aug 13 19:41:05 2017 us=516469 pull = ENABLED
Sun Aug 13 19:41:05 2017 us=516469 auth_user_pass_file = 'stdin'
Sun Aug 13 19:41:05 2017 us=516469 show_net_up = DISABLED
Sun Aug 13 19:41:05 2017 us=516469 route_method = 0
Sun Aug 13 19:41:05 2017 us=516469 block_outside_dns = DISABLED
Sun Aug 13 19:41:05 2017 us=516469 ip_win32_defined = DISABLED
Sun Aug 13 19:41:05 2017 us=516469 ip_win32_type = 3
Sun Aug 13 19:41:05 2017 us=516469 dhcp_masq_offset = 0
Sun Aug 13 19:41:05 2017 us=516469 dhcp_lease_time = 31536000
Sun Aug 13 19:41:05 2017 us=516469 tap_sleep = 0
Sun Aug 13 19:41:05 2017 us=516469 dhcp_options = DISABLED
Sun Aug 13 19:41:05 2017 us=516469 dhcp_renew = DISABLED
Sun Aug 13 19:41:05 2017 us=516469 dhcp_pre_release = DISABLED
Sun Aug 13 19:41:05 2017 us=516469 domain = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=516469 netbios_scope = '[UNDEF]'
Sun Aug 13 19:41:05 2017 us=516469 netbios_node_type = 0
Sun Aug 13 19:41:05 2017 us=516469 disable_nbt = DISABLED
Sun Aug 13 19:41:05 2017 us=516469 OpenVPN 2.4.3 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [AEAD] built on Jul 14 2017
Sun Aug 13 19:41:05 2017 us=516469 Windows version 6.1 (Windows 7) 64bit
Sun Aug 13 19:41:05 2017 us=516469 library versions: OpenSSL 1.0.2l 25 May 2017, LZO 2.10
Enter Management Password:
Sun Aug 13 19:41:05 2017 us=516469 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:25340
Sun Aug 13 19:41:05 2017 us=516469 Need hold release from management interface, waiting...
Sun Aug 13 19:41:05 2017 us=953270 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:25340
Sun Aug 13 19:41:06 2017 us=62470 MANAGEMENT: CMD 'state on'
Sun Aug 13 19:41:06 2017 us=62470 MANAGEMENT: CMD 'log all on'
Sun Aug 13 19:41:06 2017 us=343270 MANAGEMENT: CMD 'echo all on'
Sun Aug 13 19:41:06 2017 us=343270 MANAGEMENT: CMD 'hold off'
Sun Aug 13 19:41:06 2017 us=358870 MANAGEMENT: CMD 'hold release'
Sun Aug 13 19:41:07 2017 us=827273 MANAGEMENT: CMD 'username "Auth"
Sun Aug 13 19:41:07 2017 us=842873 MANAGEMENT: CMD 'password [...]'
Sun Aug 13 19:41:07 2017 us=842873 WARNING: --ns-cert-type is DEPRECATED. Use --remote-cert-tls instead.
Sun Aug 13 19:41:08 2017 us=326474 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Sun Aug 13 19:41:08 2017 us=326474 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Sun Aug 13 19:41:08 2017 us=326474 LZO compression initializing
Sun Aug 13 19:41:08 2017 us=326474 Control Channel MTU parms [ L:1622 D:1184 EF:66 EB:0 ET:0 EL:3 ]
Sun Aug 13 19:41:08 2017 us=326474 MANAGEMENT: >STATE:1502642468,RESOLVE,,,,,,
Sun Aug 13 19:41:09 2017 us=108475 Data Channel MTU parms [ L:1622 D:1450 EF:122 EB:406 ET:0 EL:3 ]
Sun Aug 13 19:41:09 2017 us=108475 Local Options String (VER=V4): 'V4,dev-type tun,link-mtu 1558,tun-mtu 1500,proto UDPv4,comp-lzo,keydir 1,cipher AES-256-CBC,auth SHA1,keysize 256,tls-auth,key-method 2,tls-client'
Sun Aug 13 19:41:09 2017 us=108475 Expected Remote Options String (VER=V4): 'V4,dev-type tun,link-mtu 1558,tun-mtu 1500,proto UDPv4,comp-lzo,keydir 0,cipher AES-256-CBC,auth SHA1,keysize 256,tls-auth,key-method 2,tls-server'
Sun Aug 13 19:41:09 2017 us=108475 TCP/UDP: Preserving recently used remote address: [AF_INET]6
Sun Aug 13 19:41:09 2017 us=108475 Socket Buffers: R=[8192->8192] S=[8192->8192]
Sun Aug 13 19:41:09 2017 us=108475 UDP link local: (not bound)
Sun Aug 13 19:41:09 2017 us=108475 UDP link remote: [AF_INET]
Sun Aug 13 19:41:09 2017 us=108475 MANAGEMENT: >STATE:1502642469,WAIT,,,,,,
Sun Aug 13 19:41:09 2017 us=326876 MANAGEMENT: >STATE:1502642469,AUTH,,,,,,
Sun Aug 13 19:41:09 2017 us=326876 TLS: Initial packet from [AF_INET]xxx.xxx.xxx, sid=f34d23f6 d2169e0b
Sun Aug 13 19:41:09 2017 us=326876 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Sun Aug 13 19:41:09 2017 us=482876 VERIFY OK: depth=1, C=TW, ST=TW, L=Taipei, O=ASUS, CN=RT-AC88U, emailAddress=me@myhost.mydomain
Sun Aug 13 19:41:09 2017 us=482876 VERIFY OK: nsCertType=SERVER
Sun Aug 13 19:41:09 2017 us=482876 VERIFY OK: depth=0, C=TW, ST=TW, L=Taipei, O=ASUS, CN=RT-AC88U, emailAddress=me@myhost.mydomain
Sun Aug 13 19:41:09 2017 us=638876 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
Sun Aug 13 19:41:09 2017 us=638876 [RT-AC88U] Peer Connection Initiated with [AF_INET]62.73.101.187:33091
Sun Aug 13 19:41:10 2017 us=717278 MANAGEMENT: >STATE:1502642470,GET_CONFIG,,,,,,
Sun Aug 13 19:41:10 2017 us=717278 SENT CONTROL [RT-AC88U]: 'PUSH_REQUEST' (status=1)
Sun Aug 13 19:41:10 2017 us=717278 PUSH: Received control message: 'PUSH_REPLY,route 192.168.33.0 255.255.255.128 vpn_gateway 500,dhcp-option DNS 192.168.33.1,route 10.8.0.1,topology net30,ping 15,ping-restart 60,ifconfig 10.8.0.6 10.8.0.5'
Sun Aug 13 19:41:10 2017 us=717278 OPTIONS IMPORT: timers and/or timeouts modified
Sun Aug 13 19:41:10 2017 us=717278 OPTIONS IMPORT: --ifconfig/up options modified
Sun Aug 13 19:41:10 2017 us=717278 OPTIONS IMPORT: route options modified
Sun Aug 13 19:41:10 2017 us=717278 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Sun Aug 13 19:41:10 2017 us=717278 Data Channel MTU parms [ L:1558 D:1450 EF:58 EB:406 ET:0 EL:3 ]
Sun Aug 13 19:41:10 2017 us=717278 Data Channel Encrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
Sun Aug 13 19:41:10 2017 us=717278 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Sun Aug 13 19:41:10 2017 us=717278 Data Channel Decrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
Sun Aug 13 19:41:10 2017 us=717278 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Sun Aug 13 19:41:10 2017 us=717278 interactive service msg_channel=0
Sun Aug 13 19:41:10 2017 us=717278 ROUTE_GATEWAY xxx.xxx.xxx/255.255.240.0 I=13 HWADDR=xxxx
Sun Aug 13 19:41:10 2017 us=717278 open_tun
Sun Aug 13 19:41:10 2017 us=732878 TAP-WIN32 device [Local Area Connection 2] opened: \\.\Global\{BA781FDE-CD5C-4710-B899-CAD841101219}.tap
Sun Aug 13 19:41:10 2017 us=732878 TAP-Windows Driver Version 9.21
Sun Aug 13 19:41:10 2017 us=732878 TAP-Windows MTU=1500
Sun Aug 13 19:41:10 2017 us=732878 Notified TAP-Windows driver to set a DHCP IP/netmask of 10.8.0.6/255.255.255.252 on interface {BA781FDE-CD5C-4710-B899-CAD841101219} [DHCP-serv: 10.8.0.5, lease-time: 31536000]
Sun Aug 13 19:41:10 2017 us=732878 DHCP option string: 0604c0a8 2101
Sun Aug 13 19:41:10 2017 us=732878 Successful ARP Flush on interface [15] {BA781FDE-CD5C-4710-B899-CAD841101219}
Sun Aug 13 19:41:10 2017 us=826478 do_ifconfig, tt->did_ifconfig_ipv6_setup=0
Sun Aug 13 19:41:10 2017 us=826478 MANAGEMENT: >STATE:1502642470,ASSIGN_IP,,10.8.0.6,,,,
Sun Aug 13 19:41:15 2017 us=918088 TEST ROUTES: 2/2 succeeded len=2 ret=1 a=0 u/d=up
Sun Aug 13 19:41:15 2017 us=918088 MANAGEMENT: >STATE:1502642475,ADD_ROUTES,,,,,,
Sun Aug 13 19:41:15 2017 us=918088 C:\Windows\system32\route.exe ADD 192.168.33.0 MASK 255.255.255.128 10.8.0.5 METRIC 500
Sun Aug 13 19:41:15 2017 us=918088 Route addition via IPAPI succeeded [adaptive]
Sun Aug 13 19:41:15 2017 us=918088 C:\Windows\system32\route.exe ADD 10.8.0.1 MASK 255.255.255.255 10.8.0.5
Sun Aug 13 19:41:15 2017 us=933688 ROUTE: CreateIpForwardEntry succeeded with dwForwardMetric1=20 and dwForwardType=4
Sun Aug 13 19:41:15 2017 us=933688 Route addition via IPAPI succeeded [adaptive]
Sun Aug 13 19:41:15 2017 us=933688 Initialization Sequence Completed
Sun Aug 13 19:41:15 2017 us=933688 MANAGEMENT: >STATE:1502642475,CONNECTED,SUCCESS,10.8.0.6,xxxxxxx,



Client config last lines:

Code: Select all

-----END OpenVPN Static key V1-----</tls-auth>key-direction 1resolv-retry infinitenobind--verb 4--block-outside-dns

Post Reply