cannot succesfully run "openvpn --config openvpn.cfg"
Posted: Wed Sep 11, 2019 1:46 am
Have been using expressvpn over hotel wifi successfully for several months. Suddenly, problems. Unable
to maintain connectivity. Have talked with technical support of hotel IT support and Expressvpn support. Issue
is unresolved today and has been an issue for a week. Issue has been escalated at Expressvpn to a higher level.
Any suggetions?
Script started on 2019-09-10 19:14:59-06:00 [TERM="mlterm" TTY="/dev/pts/0" COLUMNS="90" LINES="34"]
root>> trifid:~ # openvn --version
OpenVPN 2.4.7 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Feb 20 2019
library versions: OpenSSL 1.1.1c 28 May 2019, LZO 2.10
Originally developed by James Yonan
Copyright (C) 2002-2018 OpenVPN Inc <sales@openvpn.net>
Compile time defines: enable_async_push=no enable_comp_stub=no enable_crypto=yes enable_crypto_ofb_cfb=yes enable_debug=yes enable_def_auth=yes enable_dependency_tracking=no enable_dlopen=unknown enable_dlopen_self=unknown enable_dlopen_self_static=unknown enable_fast_install=needless enable_fragment=yes enable_iproute2=yes enable_libtool_lock=yes enable_lz4=yes enable_lzo=yes enable_maintainer_mode=no enable_management=yes enable_multihome=yes enable_pam_dlopen=no enable_pedantic=no enable_pf=yes enable_pkcs11=yes enable_plugin_auth_pam=yes enable_plugin_down_root=yes enable_plugins=yes enable_port_share=yes enable_selinux=no enable_server=yes enable_shared=yes enable_shared_with_static_runtimes=no enable_silent_rules=no enable_small=no enable_static=yes enable_strict=no enable_strict_options=no enable_systemd=yes enable_werror=no enable_win32_dll=yes enable_x509_alt_username=yes with_aix_soname=aix with_crypto_library=openssl with_gnu_ld=yes with_mem_check=no with_sysroot=no
root>> trifid:~ # openvpn --config ~stephen/VPN/USA_freeopenvpn_udp.ovpn
Tue Sep 10 19:19:29 2019 DEPRECATED OPTION: --max-routes option ignored.The number of routes is unlimited as of OpenVPN 2.4. This option will be removed in a future version, please remove it from your configuration.
Tue Sep 10 19:19:29 2019 OpenVPN 2.4.7 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Feb 20 2019
Tue Sep 10 19:19:29 2019 library versions: OpenSSL 1.1.1c 28 May 2019, LZO 2.10
Enter Auth Username: calm-plateau-7494
Enter Auth Password: ********************************
Tue Sep 10 19:19:56 2019 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Tue Sep 10 19:19:56 2019 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Tue Sep 10 19:19:56 2019 TCP/UDP: Preserving recently used remote address: [AF_INET]38.84.132.167:10558
Tue Sep 10 19:19:56 2019 UDP link local: (not bound)
Tue Sep 10 19:19:56 2019 UDP link remote: [AF_INET]38.84.132.167:10558
Tue Sep 10 19:19:56 2019 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Tue Sep 10 19:19:56 2019 VERIFY OK: depth=1, O=5ac77a471997ee2ef780b5f7, CN=5ac77a471997ee2ef780b5f8
Tue Sep 10 19:19:56 2019 VERIFY KU OK
Tue Sep 10 19:19:56 2019 Validating certificate extended key usage
Tue Sep 10 19:19:56 2019 NOTE: --mute triggered...
Tue Sep 10 19:19:56 2019 4 variation(s) on previous 3 message(s) suppressed by --mute
Tue Sep 10 19:19:56 2019 [5ac77a471997ee2ef780b609] Peer Connection Initiated with [AF_INET]38.84.132.167:10558
Tue Sep 10 19:19:57 2019 AUTH: Received control message: AUTH_FAILED,CRV1:R:b08e12a42ad949cdae5c30d8eb562b30:bmls:Enter Pin
Tue Sep 10 19:19:57 2019 SIGTERM[soft,auth-failure] received, process exiting
Script done on 2019-09-10 19:20:03-06:00 [COMMAND_EXIT_CODE="0"]
And here is the configuration file I was using (less the ca & keys) :
[oconf=]
###############################
# FreeOpenVPN.Org config file #
# https://www.freeopenvpn.org #
###############################
setenv UV_ID ********************************
setenv UV_NAME calm-plateau-7494
client
dev tun
dev-type tun
remote us1.freeopenvpn.org 10558 udp
remote-random
nobind
persist-tun
cipher AES-128-CBC
auth SHA1
verb 2
mute 3
push-peer-info
ping 10
ping-restart 60
hand-window 70
server-poll-timeout 4
reneg-sec 2592000
sndbuf 393216
rcvbuf 393216
max-routes 1000
remote-cert-tls server
comp-lzo no
auth-user-pass
key-direction 1
[/oconf]
to maintain connectivity. Have talked with technical support of hotel IT support and Expressvpn support. Issue
is unresolved today and has been an issue for a week. Issue has been escalated at Expressvpn to a higher level.
Any suggetions?
Script started on 2019-09-10 19:14:59-06:00 [TERM="mlterm" TTY="/dev/pts/0" COLUMNS="90" LINES="34"]
root>> trifid:~ # openvn --version
OpenVPN 2.4.7 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Feb 20 2019
library versions: OpenSSL 1.1.1c 28 May 2019, LZO 2.10
Originally developed by James Yonan
Copyright (C) 2002-2018 OpenVPN Inc <sales@openvpn.net>
Compile time defines: enable_async_push=no enable_comp_stub=no enable_crypto=yes enable_crypto_ofb_cfb=yes enable_debug=yes enable_def_auth=yes enable_dependency_tracking=no enable_dlopen=unknown enable_dlopen_self=unknown enable_dlopen_self_static=unknown enable_fast_install=needless enable_fragment=yes enable_iproute2=yes enable_libtool_lock=yes enable_lz4=yes enable_lzo=yes enable_maintainer_mode=no enable_management=yes enable_multihome=yes enable_pam_dlopen=no enable_pedantic=no enable_pf=yes enable_pkcs11=yes enable_plugin_auth_pam=yes enable_plugin_down_root=yes enable_plugins=yes enable_port_share=yes enable_selinux=no enable_server=yes enable_shared=yes enable_shared_with_static_runtimes=no enable_silent_rules=no enable_small=no enable_static=yes enable_strict=no enable_strict_options=no enable_systemd=yes enable_werror=no enable_win32_dll=yes enable_x509_alt_username=yes with_aix_soname=aix with_crypto_library=openssl with_gnu_ld=yes with_mem_check=no with_sysroot=no
root>> trifid:~ # openvpn --config ~stephen/VPN/USA_freeopenvpn_udp.ovpn
Tue Sep 10 19:19:29 2019 DEPRECATED OPTION: --max-routes option ignored.The number of routes is unlimited as of OpenVPN 2.4. This option will be removed in a future version, please remove it from your configuration.
Tue Sep 10 19:19:29 2019 OpenVPN 2.4.7 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Feb 20 2019
Tue Sep 10 19:19:29 2019 library versions: OpenSSL 1.1.1c 28 May 2019, LZO 2.10
Enter Auth Username: calm-plateau-7494
Enter Auth Password: ********************************
Tue Sep 10 19:19:56 2019 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Tue Sep 10 19:19:56 2019 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Tue Sep 10 19:19:56 2019 TCP/UDP: Preserving recently used remote address: [AF_INET]38.84.132.167:10558
Tue Sep 10 19:19:56 2019 UDP link local: (not bound)
Tue Sep 10 19:19:56 2019 UDP link remote: [AF_INET]38.84.132.167:10558
Tue Sep 10 19:19:56 2019 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Tue Sep 10 19:19:56 2019 VERIFY OK: depth=1, O=5ac77a471997ee2ef780b5f7, CN=5ac77a471997ee2ef780b5f8
Tue Sep 10 19:19:56 2019 VERIFY KU OK
Tue Sep 10 19:19:56 2019 Validating certificate extended key usage
Tue Sep 10 19:19:56 2019 NOTE: --mute triggered...
Tue Sep 10 19:19:56 2019 4 variation(s) on previous 3 message(s) suppressed by --mute
Tue Sep 10 19:19:56 2019 [5ac77a471997ee2ef780b609] Peer Connection Initiated with [AF_INET]38.84.132.167:10558
Tue Sep 10 19:19:57 2019 AUTH: Received control message: AUTH_FAILED,CRV1:R:b08e12a42ad949cdae5c30d8eb562b30:bmls:Enter Pin
Tue Sep 10 19:19:57 2019 SIGTERM[soft,auth-failure] received, process exiting
Script done on 2019-09-10 19:20:03-06:00 [COMMAND_EXIT_CODE="0"]
And here is the configuration file I was using (less the ca & keys) :
[oconf=]
###############################
# FreeOpenVPN.Org config file #
# https://www.freeopenvpn.org #
###############################
setenv UV_ID ********************************
setenv UV_NAME calm-plateau-7494
client
dev tun
dev-type tun
remote us1.freeopenvpn.org 10558 udp
remote-random
nobind
persist-tun
cipher AES-128-CBC
auth SHA1
verb 2
mute 3
push-peer-info
ping 10
ping-restart 60
hand-window 70
server-poll-timeout 4
reneg-sec 2592000
sndbuf 393216
rcvbuf 393216
max-routes 1000
remote-cert-tls server
comp-lzo no
auth-user-pass
key-direction 1
[/oconf]