Hey everyone!
I'm having a bit of a problem with my OpenVPN server and I could really use some help. So, here's the deal: I've got my OpenVPN server all set up and I can connect to it using the .ovpn file, but for some reason, I can't access the internet. It's really bugging me!
I keep getting this weird message that says "Blocking outside dns using service succeeded." It sounds strange, but I don't think it's that important. In the past, I've had OpenVPN servers that worked perfectly fine, but now I just can't seem to get it right. Even the good ol' "ping" command works fine for local machines, but not for DNS servers like 1.1.1.1 or 8.8.8.8.
Any ideas on what might be causing this? I'd appreciate any suggestions or tips you guys have. Thanks a bunch!
LOG:
Mon May 22 19:46:43 2023 OpenVPN 2.4.8 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [AEAD] built on Oct 31 2019
Mon May 22 19:46:43 2023 Windows version 6.2 (Windows 8 or greater) 64bit
Mon May 22 19:46:43 2023 library versions: OpenSSL 1.1.0l 10 Sep 2019, LZO 2.10
Enter Management Password:
Mon May 22 19:46:43 2023 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:25342
Mon May 22 19:46:43 2023 Need hold release from management interface, waiting...
Mon May 22 19:46:44 2023 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:25342
Mon May 22 19:46:44 2023 MANAGEMENT: CMD 'state on'
Mon May 22 19:46:44 2023 MANAGEMENT: CMD 'log all on'
Mon May 22 19:46:44 2023 MANAGEMENT: CMD 'echo all on'
Mon May 22 19:46:44 2023 MANAGEMENT: CMD 'bytecount 5'
Mon May 22 19:46:44 2023 MANAGEMENT: CMD 'hold off'
Mon May 22 19:46:44 2023 MANAGEMENT: CMD 'hold release'
Mon May 22 19:46:44 2023 MANAGEMENT: CMD 'password [...]'
Mon May 22 19:46:44 2023 Outgoing Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mon May 22 19:46:44 2023 Outgoing Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mon May 22 19:46:44 2023 Incoming Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mon May 22 19:46:44 2023 Incoming Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mon May 22 19:46:44 2023 TCP/UDP: Preserving recently used remote address: [AF_INET]143.47.X.X:1194
Mon May 22 19:46:44 2023 Socket Buffers: R=[65536->65536] S=[64512->64512]
Mon May 22 19:46:44 2023 UDP link local: (not bound)
Mon May 22 19:46:44 2023 UDP link remote: [AF_INET]143.47.X.X:1194
Mon May 22 19:46:44 2023 MANAGEMENT: >STATE:1684777604,WAIT,,,,,,
Mon May 22 19:46:44 2023 MANAGEMENT: >STATE:1684777604,AUTH,,,,,,
Mon May 22 19:46:44 2023 TLS: Initial packet from [AF_INET]143.47.X.X:1194, sid=4e5cd7c9 1b89e853
Mon May 22 19:46:44 2023 VERIFY OK: depth=1, CN=Easy-RSA CA
Mon May 22 19:46:44 2023 VERIFY KU OK
Mon May 22 19:46:44 2023 Validating certificate extended key usage
Mon May 22 19:46:44 2023 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
Mon May 22 19:46:44 2023 VERIFY EKU OK
Mon May 22 19:46:44 2023 VERIFY X509NAME OK: CN=accloud_9a5c3817-78a2-4242-b9d6-4a28f5fc5e71
Mon May 22 19:46:44 2023 VERIFY OK: depth=0, CN=accloud_9a5c3817-78a2-4242-b9d6-4a28f5fc5e71
Mon May 22 19:46:44 2023 Control Channel: TLSv1.2, cipher TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384, 256 bit EC, curve: prime256v1
Mon May 22 19:46:44 2023 [accloud_9a5c3817-78a2-4242-b9d6-4a28f5fc5e71] Peer Connection Initiated with [AF_INET]143.47.X.X:1194
Mon May 22 19:46:45 2023 MANAGEMENT: >STATE:1684777605,GET_CONFIG,,,,,,
Mon May 22 19:46:45 2023 SENT CONTROL [accloud_9a5c3817-78a2-4242-b9d6-4a28f5fc5e71]: 'PUSH_REQUEST' (status=1)
Mon May 22 19:46:45 2023 PUSH: Received control message: 'PUSH_REPLY,dhcp-option DNS 1.1.1.1,dhcp-option DNS 1.0.0.1,block-outside-dns,redirect-gateway def1,route-gateway 10.135.30.1,topology subnet,ping 15,ping-restart 120,ifconfig 10.135.30.2 255.255.255.0,peer-id 0,cipher AES-256-GCM'
Mon May 22 19:46:45 2023 OPTIONS IMPORT: timers and/or timeouts modified
Mon May 22 19:46:45 2023 OPTIONS IMPORT: --ifconfig/up options modified
Mon May 22 19:46:45 2023 OPTIONS IMPORT: route options modified
Mon May 22 19:46:45 2023 OPTIONS IMPORT: route-related options modified
Mon May 22 19:46:45 2023 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Mon May 22 19:46:45 2023 OPTIONS IMPORT: peer-id set
Mon May 22 19:46:45 2023 OPTIONS IMPORT: adjusting link_mtu to 1624
Mon May 22 19:46:45 2023 OPTIONS IMPORT: data channel crypto options modified
Mon May 22 19:46:45 2023 Data Channel: using negotiated cipher 'AES-256-GCM'
Mon May 22 19:46:45 2023 Outgoing Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
Mon May 22 19:46:45 2023 Incoming Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
Mon May 22 19:46:45 2023 interactive service msg_channel=676
Mon May 22 19:46:45 2023 ROUTE_GATEWAY 192.168.1.1/255.255.255.0 I=9 HWADDR=6c:62:6d:d4:f2:fc
Mon May 22 19:46:45 2023 open_tun
Mon May 22 19:46:45 2023 TAP-WIN32 device [Local Area Connection] opened: \\.\Global\{17A8E6D9-3CC3-4880-B87C-7C892C8B3CDD}.tap
Mon May 22 19:46:45 2023 TAP-Windows Driver Version 9.24
Mon May 22 19:46:45 2023 Set TAP-Windows TUN subnet mode network/local/netmask = 10.135.30.0/10.135.30.2/255.255.255.0 [SUCCEEDED]
Mon May 22 19:46:45 2023 Notified TAP-Windows driver to set a DHCP IP/netmask of 10.135.30.2/255.255.255.0 on interface {17A8E6D9-3CC3-4880-B87C-7C892C8B3CDD} [DHCP-serv: 10.135.30.254, lease-time: 31536000]
Mon May 22 19:46:45 2023 Successful ARP Flush on interface [4] {17A8E6D9-3CC3-4880-B87C-7C892C8B3CDD}
Mon May 22 19:46:45 2023 MANAGEMENT: >STATE:1684777605,ASSIGN_IP,,10.135.30.2,,,,
Mon May 22 19:46:45 2023 Blocking outside dns using service succeeded.
Mon May 22 19:46:50 2023 TEST ROUTES: 1/1 succeeded len=0 ret=1 a=0 u/d=up
Mon May 22 19:46:50 2023 C:\Windows\system32\route.exe ADD 143.47.X.X MASK 255.255.255.255 192.168.1.1
Mon May 22 19:46:50 2023 Route addition via service succeeded
Mon May 22 19:46:50 2023 C:\Windows\system32\route.exe ADD 0.0.0.0 MASK 128.0.0.0 10.135.30.1
Mon May 22 19:46:50 2023 Route addition via service succeeded
Mon May 22 19:46:50 2023 C:\Windows\system32\route.exe ADD 128.0.0.0 MASK 128.0.0.0 10.135.30.1
Mon May 22 19:46:50 2023 Route addition via service succeeded
Mon May 22 19:46:50 2023 Initialization Sequence Completed
Mon May 22 19:46:50 2023 MANAGEMENT: >STATE:1684777610,CONNECTED,SUCCESS,10.135.30.2,143.47.X.X,1194,,
Config file:
client
dev tun
proto udp
remote 143.47.X.X 1194
resolv-retry infinite
nobind
remote-cert-tls server
tls-version-min 1.2
verify-x509-name accloud_9a5c3817-78a2-4242-b9d6-4a28f5fc5e71 name
cipher AES-256-CBC
auth SHA256
auth-nocache
verb 3
<ca>
-----BEGIN CERTIFICATE-----
-----END CERTIFICATE-----
</ca>
<cert>
-----BEGIN CERTIFICATE-----
-----END CERTIFICATE-----
</cert>
<key>
-----BEGIN ENCRYPTED PRIVATE KEY-----
-----END ENCRYPTED PRIVATE KEY-----
</key>
<tls-crypt>
#
# 2048 bit OpenVPN static key
#
-----BEGIN OpenVPN Static key V1-----
-----END OpenVPN Static key V1-----
</tls-crypt>
I can connect but cannot access the Internet, going crazy
Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech
Forum rules
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
-
superx335
- OpenVpn Newbie
- Posts: 1
- Joined: Mon May 22, 2023 5:43 pm