Trivial case of failed connection

[teebe]

I managed the win7/64 install of OpenVPN v2.1.3, prepared all files and moved to proper destination.
My aim is to test OpenVPN on a point to point setup doing a sort of loopback, with one computer only.
- The private net is mastered by adsl-gw and a simple ap makes the wireless, gw ip 192.168.66.254 255.255.0.0, dhcp starting from 192.168.66.240 with 14 nodes available.
- The adsl-gw has a port forwarding on 192.168.68.1, udp/tcp, 1194
- The server is configured to 192.168.68.0 255.255.255.0 and once it is started has 192.168.68.1
- No routes are added, just testing VPN connection
- The client boots but does not connect. Notice that till now there is no ddns so the remote ip is manually added into the client config
- The local fw is turned off (but remain installed)
I tried to switch between tcp and udp without succes, same problem.
What next?

Client log

• Sat Feb 21 12:23:34 2015 us=570000 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
  Sat Feb 21 12:23:34 2015 us=570000 Re-using SSL/TLS context
  Sat Feb 21 12:23:34 2015 us=570000 LZO compression initialized
  Sat Feb 21 12:23:34 2015 us=570000 Control Channel MTU parms [ L:1542 D:138 EF:38 EB:0 ET:0 EL:0 ]
  Sat Feb 21 12:23:34 2015 us=570000 Socket Buffers: R=[8192->8192] S=[8192->8192]
  Sat Feb 21 12:23:34 2015 us=570000 Data Channel MTU parms [ L:1542 D:1450 EF:42 EB:135 ET:0 EL:0 AF:3/1 ]
  Sat Feb 21 12:23:34 2015 us=570000 Local Options String: 'V4,dev-type tun,link-mtu 1542,tun-mtu 1500,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
  Sat Feb 21 12:23:34 2015 us=570000 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1542,tun-mtu 1500,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
  Sat Feb 21 12:23:34 2015 us=570000 Local Options hash (VER=V4): '41690919'
  Sat Feb 21 12:23:34 2015 us=570000 Expected Remote Options hash (VER=V4): '530fdded'
  Sat Feb 21 12:23:34 2015 us=570000 UDPv4 link local: [undef]
  Sat Feb 21 12:23:34 2015 us=570000 UDPv4 link remote: 14.207.137.141:1194
  Sat Feb 21 12:23:34 2015 us=570000 UDPv4 WRITE [14] to 14.207.137.141:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
  Sat Feb 21 12:23:34 2015 us=585000 UDPv4 READ [0] from [undef]: DATA UNDEF len=-1
  Sat Feb 21 12:23:37 2015 us=50000 UDPv4 WRITE [14] to 14.207.137.141:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
  Sat Feb 21 12:23:41 2015 us=996000 UDPv4 WRITE [14] to 14.207.137.141:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
  Sat Feb 21 12:23:49 2015 us=484000 UDPv4 WRITE [14] to 14.207.137.141:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
  Sat Feb 21 12:24:05 2015 us=364000 UDPv4 WRITE [14] to 14.207.137.141:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
  Sat Feb 21 12:24:34 2015 us=505000 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
  Sat Feb 21 12:24:34 2015 us=505000 TLS Error: TLS handshake failed
  Sat Feb 21 12:24:34 2015 us=505000 TCP/UDP: Closing socket
  Sat Feb 21 12:24:34 2015 us=505000 SIGUSR1[soft,tls-error] received, process restarting
  Sat Feb 21 12:24:34 2015 us=505000 Restart pause, 2 second(s)

Server Log

• Sat Feb 21 13:25:13 2015 us=806000 OpenVPN 2.1.3 i686-pc-mingw32 [SSL] [LZO2] [PKCS11] built on Aug 20 2010
  Sat Feb 21 13:25:13 2015 us=806000 NOTE: your local LAN uses the extremely common subnet address 192.168.0.x or 192.168.1.x. Be aware that this might create routing conflicts if you connect to the VPN server from public locations such as internet cafes that use the same subnet.
  Sat Feb 21 13:25:13 2015 us=822000 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
  Sat Feb 21 13:25:13 2015 us=962000 Diffie-Hellman initialized with 1024 bit key
  Sat Feb 21 13:25:13 2015 us=962000 TLS-Auth MTU parms [ L:1544 D:140 EF:40 EB:0 ET:0 EL:0 ]
  Sat Feb 21 13:25:13 2015 us=962000 Socket Buffers: R=[8192->8192] S=[8192->8192]
  Sat Feb 21 13:25:13 2015 us=962000 WARNING: potential TUN/TAP adapter subnet conflict between local LAN [192.168.0.0/255.255.0.0] and remote VPN [192.168.68.1/255.255.255.255]
  Sat Feb 21 13:25:13 2015 us=962000 ROUTE default_gateway=192.168.66.254
  Sat Feb 21 13:25:13 2015 us=993000 TAP-WIN32 device [Local Area Connection] opened: \\.\Global\{0ACE7985-B319-4E88-8531-74C71B239CB6}.tap
  Sat Feb 21 13:25:13 2015 us=993000 TAP-Win32 Driver Version 9.7
  Sat Feb 21 13:25:13 2015 us=993000 TAP-Win32 MTU=1500
  Sat Feb 21 13:25:13 2015 us=993000 Notified TAP-Win32 driver to set a DHCP IP/netmask of 192.168.68.1/255.255.255.252 on interface {0ACE7985-B319-4E88-8531-74C71B239CB6} [DHCP-serv: 192.168.68.2, lease-time: 31536000]
  Sat Feb 21 13:25:13 2015 us=993000 Sleeping for 10 seconds...
  Sat Feb 21 13:25:23 2015 us=993000 NOTE: FlushIpNetTable failed on interface [26] {0ACE7985-B319-4E88-8531-74C71B239CB6} (status=5) : Access is denied.
  Sat Feb 21 13:25:24 2015 us=8000 WARNING: potential route subnet conflict between local LAN [192.168.0.0/255.255.0.0] and remote VPN [192.168.68.0/255.255.255.0]
  Sat Feb 21 13:25:24 2015 us=8000 C:\WINDOWS\system32\route.exe ADD 192.168.68.0 MASK 255.255.255.0 192.168.68.2
  Sat Feb 21 13:25:24 2015 us=8000 ROUTE: route addition failed using CreateIpForwardEntry: Access is denied. [status=5 if_index=26]
  Sat Feb 21 13:25:24 2015 us=8000 Route addition via IPAPI failed [adaptive]
  Sat Feb 21 13:25:24 2015 us=8000 Route addition fallback to route.exe
  The requested operation requires elevation.
  Sat Feb 21 13:25:24 2015 us=40000 ERROR: Windows route add command failed [adaptive]: returned error code 1
  Sat Feb 21 13:25:24 2015 us=40000 Data Channel MTU parms [ L:1544 D:1450 EF:44 EB:135 ET:0 EL:0 AF:3/1 ]
  Sat Feb 21 13:25:24 2015 us=40000 Listening for incoming TCP connection on [undef]:1194
  Sat Feb 21 13:25:24 2015 us=55000 TCPv4_SERVER link local (bound): [undef]:1194
  Sat Feb 21 13:25:24 2015 us=55000 TCPv4_SERVER link remote: [undef]
  Sat Feb 21 13:25:24 2015 us=55000 MULTI: multi_init called, r=256 v=256
  Sat Feb 21 13:25:24 2015 us=55000 IFCONFIG POOL: base=192.168.68.4 size=62
  Sat Feb 21 13:25:24 2015 us=55000 IFCONFIG POOL LIST
  Sat Feb 21 13:25:24 2015 us=55000 MULTI: TCP INIT maxclients=60 maxevents=64
  Sat Feb 21 13:25:24 2015 us=55000 Initialization Sequence Completed
  Sat Feb 21 13:28:11 2015 us=39000 TCP/UDP: Closing socket
  Sat Feb 21 13:28:11 2015 us=39000 Closing TUN/TAP interface
  Sat Feb 21 13:28:11 2015 us=39000 SIGTERM[hard,] received, process exiting

[Traffic]

Server Log

Sat Feb 21 13:25:13 2015 us=806000 OpenVPN 2.1.3 i686-pc-mingw32 [SSL] [LZO2] [PKCS11] built on Aug 20 2010

Please use up to date version.

Server Log

...
Sat Feb 21 13:25:24 2015 us=8000 C:\WINDOWS\system32\route.exe ADD 192.168.68.0 MASK 255.255.255.0 192.168.68.2
Sat Feb 21 13:25:24 2015 us=8000 ROUTE: route addition failed using CreateIpForwardEntry: Access is denied. [status=5 if_index=26]
Sat Feb 21 13:25:24 2015 us=8000 Route addition via IPAPI failed [adaptive]
Sat Feb 21 13:25:24 2015 us=8000 Route addition fallback to route.exe
The requested operation requires elevation.

Run as Administrator.

[lisco2002]

Under Win10 OpenVpn-Gui can't run under Admin on startup, it is possibly run manually by clicking desktop shortcut or exe.
I have the text "The requested operation requires elevation" in myVPN_up.log generated on connecting, I need to route something after VPN is connected. If I run OpenVpn-Gui as Admin manually then there's no problem, but I need OpenVpn-Gui is running under startup as Admin.