Push route - not working

akirkby · Post by **akirkby** » Mon Jul 04, 2011 8:48 pm

Hi.

I have installed OpenVPN GUI v1.0.3 (OpenVPN 2.2.0 Win32-MSVC++ [SSL] [LZO2] built on Apr 26 2011) on WHS (2003) and a Windows 7 Laptop.

The VPN setup is very simple (see below), however I am having issues with pushing the route to the server 'LAN' subnet through to the client. Everything connects and I can reach the IP's at both ends of the tunnel - 10.8.0.0, however I cannot reach anything on the WHS LAN side - 192.168.23.0 - The DG for the LAN has a route back to 10.8.0.0 via the WHS and IP forwarding is enabled. The Win-7 client does not appear to put the route into its tables - route print included below -

Can anyone suggest what is wrong?

Andy

Client Config

Code: Select all

remote 192.168.0.254
dev tun
ifconfig 10.8.0.2 10.8.0.1
secret static.key
script-security 2
route-method exe
route-delay 2
verb 5

Server Config

Code: Select all

dev tun
ifconfig 10.8.0.1 10.8.0.2
secret static.key
push "route 192.168.23.0 255.255.255.0 10.8.0.1"
verb 5

Client Log

Code: Select all

Mon Jul 04 21:41:22 2011 us=26000 Current Parameter Settings:
Mon Jul 04 21:41:22 2011 us=26000   config = 'callhome.ovpn'
Mon Jul 04 21:41:22 2011 us=26000   mode = 0
Mon Jul 04 21:41:22 2011 us=26000   show_ciphers = DISABLED
Mon Jul 04 21:41:22 2011 us=26000   show_digests = DISABLED
Mon Jul 04 21:41:22 2011 us=26000   show_engines = DISABLED
Mon Jul 04 21:41:22 2011 us=26000   genkey = DISABLED
Mon Jul 04 21:41:22 2011 us=26000   key_pass_file = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=26000   show_tls_ciphers = DISABLED
Mon Jul 04 21:41:22 2011 us=26000 Connection profiles [default]:
Mon Jul 04 21:41:22 2011 us=26000   proto = udp
Mon Jul 04 21:41:22 2011 us=26000   local = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=26000   local_port = 1194
Mon Jul 04 21:41:22 2011 us=26000   remote = '192.168.0.254'
Mon Jul 04 21:41:22 2011 us=26000   remote_port = 1194
Mon Jul 04 21:41:22 2011 us=26000   remote_float = DISABLED
Mon Jul 04 21:41:22 2011 us=26000   bind_defined = DISABLED
Mon Jul 04 21:41:22 2011 us=26000   bind_local = ENABLED
Mon Jul 04 21:41:22 2011 us=26000   connect_retry_seconds = 5
Mon Jul 04 21:41:22 2011 us=26000   connect_timeout = 10
Mon Jul 04 21:41:22 2011 us=26000   connect_retry_max = 0
Mon Jul 04 21:41:22 2011 us=26000   socks_proxy_server = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=26000   socks_proxy_port = 0
Mon Jul 04 21:41:22 2011 us=26000   socks_proxy_retry = DISABLED
Mon Jul 04 21:41:22 2011 us=26000 Connection profiles END
Mon Jul 04 21:41:22 2011 us=26000   remote_random = DISABLED
Mon Jul 04 21:41:22 2011 us=26000   ipchange = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=26000   dev = 'tun'
Mon Jul 04 21:41:22 2011 us=26000   dev_type = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=26000   dev_node = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=26000   lladdr = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=26000   topology = 1
Mon Jul 04 21:41:22 2011 us=26000   tun_ipv6 = DISABLED
Mon Jul 04 21:41:22 2011 us=26000   ifconfig_local = '10.8.0.2'
Mon Jul 04 21:41:22 2011 us=26000   ifconfig_remote_netmask = '10.8.0.1'
Mon Jul 04 21:41:22 2011 us=26000   ifconfig_noexec = DISABLED
Mon Jul 04 21:41:22 2011 us=26000   ifconfig_nowarn = DISABLED
Mon Jul 04 21:41:22 2011 us=26000   shaper = 0
Mon Jul 04 21:41:22 2011 us=26000   tun_mtu = 1500
Mon Jul 04 21:41:22 2011 us=26000   tun_mtu_defined = ENABLED
Mon Jul 04 21:41:22 2011 us=26000   link_mtu = 1500
Mon Jul 04 21:41:22 2011 us=26000   link_mtu_defined = DISABLED
Mon Jul 04 21:41:22 2011 us=26000   tun_mtu_extra = 0
Mon Jul 04 21:41:22 2011 us=26000   tun_mtu_extra_defined = DISABLED
Mon Jul 04 21:41:22 2011 us=26000   fragment = 0
Mon Jul 04 21:41:22 2011 us=26000   mtu_discover_type = -1
Mon Jul 04 21:41:22 2011 us=26000   mtu_test = 0
Mon Jul 04 21:41:22 2011 us=26000   mlock = DISABLED
Mon Jul 04 21:41:22 2011 us=26000   keepalive_ping = 0
Mon Jul 04 21:41:22 2011 us=26000   keepalive_timeout = 0
Mon Jul 04 21:41:22 2011 us=26000   inactivity_timeout = 0
Mon Jul 04 21:41:22 2011 us=26000   ping_send_timeout = 0
Mon Jul 04 21:41:22 2011 us=26000   ping_rec_timeout = 0
Mon Jul 04 21:41:22 2011 us=26000   ping_rec_timeout_action = 0
Mon Jul 04 21:41:22 2011 us=26000   ping_timer_remote = DISABLED
Mon Jul 04 21:41:22 2011 us=26000   remap_sigusr1 = 0
Mon Jul 04 21:41:22 2011 us=26000   explicit_exit_notification = 0
Mon Jul 04 21:41:22 2011 us=26000   persist_tun = DISABLED
Mon Jul 04 21:41:22 2011 us=26000   persist_local_ip = DISABLED
Mon Jul 04 21:41:22 2011 us=26000   persist_remote_ip = DISABLED
Mon Jul 04 21:41:22 2011 us=26000   persist_key = DISABLED
Mon Jul 04 21:41:22 2011 us=26000   mssfix = 1450
Mon Jul 04 21:41:22 2011 us=26000   resolve_retry_seconds = 1000000000
Mon Jul 04 21:41:22 2011 us=26000   username = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=26000   groupname = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=26000   chroot_dir = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=26000   cd_dir = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=26000   writepid = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=26000   up_script = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=26000   down_script = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=228000   down_pre = DISABLED
Mon Jul 04 21:41:22 2011 us=228000   up_restart = DISABLED
Mon Jul 04 21:41:22 2011 us=228000   up_delay = DISABLED
Mon Jul 04 21:41:22 2011 us=228000   daemon = DISABLED
Mon Jul 04 21:41:22 2011 us=228000   inetd = 0
Mon Jul 04 21:41:22 2011 us=228000   log = DISABLED
Mon Jul 04 21:41:22 2011 us=228000   suppress_timestamps = DISABLED
Mon Jul 04 21:41:22 2011 us=228000   nice = 0
Mon Jul 04 21:41:22 2011 us=228000   verbosity = 5
Mon Jul 04 21:41:22 2011 us=228000   mute = 0
Mon Jul 04 21:41:22 2011 us=228000   gremlin = 0
Mon Jul 04 21:41:22 2011 us=228000   status_file = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=228000   status_file_version = 1
Mon Jul 04 21:41:22 2011 us=228000   status_file_update_freq = 60
Mon Jul 04 21:41:22 2011 us=228000   occ = ENABLED
Mon Jul 04 21:41:22 2011 us=228000   rcvbuf = 0
Mon Jul 04 21:41:22 2011 us=228000   sndbuf = 0
Mon Jul 04 21:41:22 2011 us=228000   sockflags = 0
Mon Jul 04 21:41:22 2011 us=244000   fast_io = DISABLED
Mon Jul 04 21:41:22 2011 us=244000   lzo = 0
Mon Jul 04 21:41:22 2011 us=244000   route_script = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=244000   route_default_gateway = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=244000   route_default_metric = 0
Mon Jul 04 21:41:22 2011 us=244000   route_noexec = DISABLED
Mon Jul 04 21:41:22 2011 us=244000   route_delay = 2
Mon Jul 04 21:41:22 2011 us=244000   route_delay_window = 30
Mon Jul 04 21:41:22 2011 us=244000   route_delay_defined = ENABLED
Mon Jul 04 21:41:22 2011 us=244000   route_nopull = DISABLED
Mon Jul 04 21:41:22 2011 us=244000   route_gateway_via_dhcp = DISABLED
Mon Jul 04 21:41:22 2011 us=244000   max_routes = 100
Mon Jul 04 21:41:22 2011 us=244000   allow_pull_fqdn = DISABLED
Mon Jul 04 21:41:22 2011 us=244000   management_addr = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=244000   management_port = 0
Mon Jul 04 21:41:22 2011 us=244000   management_user_pass = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=275000   management_log_history_cache = 250
Mon Jul 04 21:41:22 2011 us=275000   management_echo_buffer_size = 100
Mon Jul 04 21:41:22 2011 us=275000   management_write_peer_info_file = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=275000   management_client_user = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=275000   management_client_group = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=275000   management_flags = 0
Mon Jul 04 21:41:22 2011 us=275000   shared_secret_file = 'static.key'
Mon Jul 04 21:41:22 2011 us=275000   key_direction = 0
Mon Jul 04 21:41:22 2011 us=275000   ciphername_defined = ENABLED
Mon Jul 04 21:41:22 2011 us=275000   ciphername = 'BF-CBC'
Mon Jul 04 21:41:22 2011 us=275000   authname_defined = ENABLED
Mon Jul 04 21:41:22 2011 us=275000   authname = 'SHA1'
Mon Jul 04 21:41:22 2011 us=275000   prng_hash = 'SHA1'
Mon Jul 04 21:41:22 2011 us=275000   prng_nonce_secret_len = 16
Mon Jul 04 21:41:22 2011 us=275000   keysize = 0
Mon Jul 04 21:41:22 2011 us=306000   engine = DISABLED
Mon Jul 04 21:41:22 2011 us=306000   replay = ENABLED
Mon Jul 04 21:41:22 2011 us=306000   mute_replay_warnings = DISABLED
Mon Jul 04 21:41:22 2011 us=306000   replay_window = 64
Mon Jul 04 21:41:22 2011 us=306000   replay_time = 15
Mon Jul 04 21:41:22 2011 us=306000   packet_id_file = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=306000   use_iv = ENABLED
Mon Jul 04 21:41:22 2011 us=306000   test_crypto = DISABLED
Mon Jul 04 21:41:22 2011 us=306000   tls_server = DISABLED
Mon Jul 04 21:41:22 2011 us=306000   tls_client = DISABLED
Mon Jul 04 21:41:22 2011 us=306000   key_method = 2
Mon Jul 04 21:41:22 2011 us=306000   ca_file = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=306000   ca_path = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=306000   dh_file = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=306000   cert_file = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=306000   priv_key_file = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=306000   pkcs12_file = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=322000   cryptoapi_cert = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=322000   cipher_list = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=322000   tls_verify = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=322000   tls_export_cert = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=322000   tls_remote = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=322000   crl_file = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=322000   ns_cert_type = 0
Mon Jul 04 21:41:22 2011 us=322000   remote_cert_ku[i] = 0
Mon Jul 04 21:41:22 2011 us=322000   remote_cert_ku[i] = 0
Mon Jul 04 21:41:22 2011 us=322000   remote_cert_ku[i] = 0
Mon Jul 04 21:41:22 2011 us=322000   remote_cert_ku[i] = 0
Mon Jul 04 21:41:22 2011 us=322000   remote_cert_ku[i] = 0
Mon Jul 04 21:41:22 2011 us=322000   remote_cert_ku[i] = 0
Mon Jul 04 21:41:22 2011 us=322000   remote_cert_ku[i] = 0
Mon Jul 04 21:41:22 2011 us=322000   remote_cert_ku[i] = 0
Mon Jul 04 21:41:22 2011 us=322000   remote_cert_ku[i] = 0
Mon Jul 04 21:41:22 2011 us=353000   remote_cert_ku[i] = 0
Mon Jul 04 21:41:22 2011 us=353000   remote_cert_ku[i] = 0
Mon Jul 04 21:41:22 2011 us=353000   remote_cert_ku[i] = 0
Mon Jul 04 21:41:22 2011 us=353000   remote_cert_ku[i] = 0
Mon Jul 04 21:41:22 2011 us=353000   remote_cert_ku[i] = 0
Mon Jul 04 21:41:22 2011 us=353000   remote_cert_ku[i] = 0
Mon Jul 04 21:41:22 2011 us=353000   remote_cert_ku[i] = 0
Mon Jul 04 21:41:22 2011 us=353000   remote_cert_eku = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=353000   tls_timeout = 2
Mon Jul 04 21:41:22 2011 us=353000   renegotiate_bytes = 0
Mon Jul 04 21:41:22 2011 us=353000   renegotiate_packets = 0
Mon Jul 04 21:41:22 2011 us=353000   renegotiate_seconds = 3600
Mon Jul 04 21:41:22 2011 us=353000   handshake_window = 60
Mon Jul 04 21:41:22 2011 us=353000   transition_window = 3600
Mon Jul 04 21:41:22 2011 us=353000   single_session = DISABLED
Mon Jul 04 21:41:22 2011 us=353000   push_peer_info = DISABLED
Mon Jul 04 21:41:22 2011 us=353000   tls_exit = DISABLED
Mon Jul 04 21:41:22 2011 us=384000   tls_auth_file = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=384000   server_network = 0.0.0.0
Mon Jul 04 21:41:22 2011 us=384000   server_netmask = 0.0.0.0
Mon Jul 04 21:41:22 2011 us=384000   server_bridge_ip = 0.0.0.0
Mon Jul 04 21:41:22 2011 us=384000   server_bridge_netmask = 0.0.0.0
Mon Jul 04 21:41:22 2011 us=384000   server_bridge_pool_start = 0.0.0.0
Mon Jul 04 21:41:22 2011 us=384000   server_bridge_pool_end = 0.0.0.0
Mon Jul 04 21:41:22 2011 us=384000   ifconfig_pool_defined = DISABLED
Mon Jul 04 21:41:22 2011 us=384000   ifconfig_pool_start = 0.0.0.0
Mon Jul 04 21:41:22 2011 us=384000   ifconfig_pool_end = 0.0.0.0
Mon Jul 04 21:41:22 2011 us=384000   ifconfig_pool_netmask = 0.0.0.0
Mon Jul 04 21:41:22 2011 us=384000   ifconfig_pool_persist_filename = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=384000   ifconfig_pool_persist_refresh_freq = 600
Mon Jul 04 21:41:22 2011 us=384000   n_bcast_buf = 256
Mon Jul 04 21:41:22 2011 us=384000   tcp_queue_limit = 64
Mon Jul 04 21:41:22 2011 us=400000   real_hash_size = 256
Mon Jul 04 21:41:22 2011 us=400000   virtual_hash_size = 256
Mon Jul 04 21:41:22 2011 us=400000   client_connect_script = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=400000   learn_address_script = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=400000   client_disconnect_script = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=400000   client_config_dir = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=400000   ccd_exclusive = DISABLED
Mon Jul 04 21:41:22 2011 us=400000   tmp_dir = 'C:\Users\ANDREW~1\AppData\Local\Temp\'
Mon Jul 04 21:41:22 2011 us=400000   push_ifconfig_defined = DISABLED
Mon Jul 04 21:41:22 2011 us=400000   push_ifconfig_local = 0.0.0.0
Mon Jul 04 21:41:22 2011 us=400000   push_ifconfig_remote_netmask = 0.0.0.0
Mon Jul 04 21:41:22 2011 us=400000   enable_c2c = DISABLED
Mon Jul 04 21:41:22 2011 us=400000   duplicate_cn = DISABLED
Mon Jul 04 21:41:22 2011 us=400000   cf_max = 0
Mon Jul 04 21:41:22 2011 us=400000   cf_per = 0
Mon Jul 04 21:41:22 2011 us=431000   max_clients = 1024
Mon Jul 04 21:41:22 2011 us=431000   max_routes_per_client = 256
Mon Jul 04 21:41:22 2011 us=431000   auth_user_pass_verify_script = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=431000   auth_user_pass_verify_script_via_file = DISABLED
Mon Jul 04 21:41:22 2011 us=431000   ssl_flags = 0
Mon Jul 04 21:41:22 2011 us=431000   client = DISABLED
Mon Jul 04 21:41:22 2011 us=431000   pull = DISABLED
Mon Jul 04 21:41:22 2011 us=431000   auth_user_pass_file = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=431000   show_net_up = DISABLED
Mon Jul 04 21:41:22 2011 us=431000   route_method = 2
Mon Jul 04 21:41:22 2011 us=431000   ip_win32_defined = DISABLED
Mon Jul 04 21:41:22 2011 us=431000   ip_win32_type = 3
Mon Jul 04 21:41:22 2011 us=431000   dhcp_masq_offset = 0
Mon Jul 04 21:41:22 2011 us=431000   dhcp_lease_time = 31536000
Mon Jul 04 21:41:22 2011 us=431000   tap_sleep = 0
Mon Jul 04 21:41:22 2011 us=431000   dhcp_options = DISABLED
Mon Jul 04 21:41:22 2011 us=447000   dhcp_renew = DISABLED
Mon Jul 04 21:41:22 2011 us=447000   dhcp_pre_release = DISABLED
Mon Jul 04 21:41:22 2011 us=447000   dhcp_release = DISABLED
Mon Jul 04 21:41:22 2011 us=447000   domain = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=447000   netbios_scope = '[UNDEF]'
Mon Jul 04 21:41:22 2011 us=447000   netbios_node_type = 0
Mon Jul 04 21:41:22 2011 us=447000   disable_nbt = DISABLED
Mon Jul 04 21:41:22 2011 us=447000 OpenVPN 2.2.0 Win32-MSVC++ [SSL] [LZO2] built on Apr 26 2011
Mon Jul 04 21:41:22 2011 us=447000 IMPORTANT: OpenVPN's default port number is now 1194, based on an official port number assignment by IANA.  OpenVPN 2.0-beta16 and earlier used 5000 as the default port.
Mon Jul 04 21:41:22 2011 us=447000 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Mon Jul 04 21:41:22 2011 us=447000 Static Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
Mon Jul 04 21:41:22 2011 us=478000 Static Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Mon Jul 04 21:41:22 2011 us=478000 Static Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
Mon Jul 04 21:41:22 2011 us=478000 Static Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Mon Jul 04 21:41:22 2011 us=478000 Socket Buffers: R=[8192->8192] S=[8192->8192]
Mon Jul 04 21:41:22 2011 us=509000 TAP-WIN32 device [Local Area Connection 4] opened: \\.\Global\{EEE58AC5-30AF-4A1B-BF96-68288F9CFA66}.tap
Mon Jul 04 21:41:22 2011 us=509000 TAP-Win32 Driver Version 9.8 
Mon Jul 04 21:41:22 2011 us=509000 TAP-Win32 MTU=1500
Mon Jul 04 21:41:22 2011 us=509000 Notified TAP-Win32 driver to set a DHCP IP/netmask of 10.8.0.2/255.255.255.252 on interface {EEE58AC5-30AF-4A1B-BF96-68288F9CFA66} [DHCP-serv: 10.8.0.1, lease-time: 31536000]
Mon Jul 04 21:41:22 2011 us=509000 Successful ARP Flush on interface [32] {EEE58AC5-30AF-4A1B-BF96-68288F9CFA66}
Mon Jul 04 21:41:22 2011 us=525000 Data Channel MTU parms [ L:1544 D:1450 EF:44 EB:4 ET:0 EL:0 ]
Mon Jul 04 21:41:22 2011 us=525000 Local Options String: 'V4,dev-type tun,link-mtu 1544,tun-mtu 1500,proto UDPv4,ifconfig 10.8.0.1 10.8.0.2,cipher BF-CBC,auth SHA1,keysize 128,secret'
Mon Jul 04 21:41:22 2011 us=525000 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1544,tun-mtu 1500,proto UDPv4,ifconfig 10.8.0.2 10.8.0.1,cipher BF-CBC,auth SHA1,keysize 128,secret'
Mon Jul 04 21:41:22 2011 us=525000 Local Options hash (VER=V4): 'd3880969'
Mon Jul 04 21:41:22 2011 us=525000 Expected Remote Options hash (VER=V4): 'c41bf3b8'
Mon Jul 04 21:41:22 2011 us=525000 UDPv4 link local (bound): [undef]:1194
Mon Jul 04 21:41:22 2011 us=525000 UDPv4 link remote: 192.168.0.254:1194
Mon Jul 04 21:41:32 2011 us=290000 Peer Connection Initiated with 192.168.0.254:1194
Mon Jul 04 21:41:35 2011 us=707000 TEST ROUTES: 0/0 succeeded len=-1 ret=1 a=0 u/d=up
Mon Jul 04 21:41:35 2011 us=707000 Initialization Sequence Completed

Server Log

Code: Select all

Mon Jul 04 21:35:28 2011 us=546000 Current Parameter Settings:
Mon Jul 04 21:35:28 2011 us=546000   config = 'server.ovpn'
Mon Jul 04 21:35:28 2011 us=546000   mode = 0
Mon Jul 04 21:35:28 2011 us=546000   show_ciphers = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   show_digests = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   show_engines = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   genkey = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   key_pass_file = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   show_tls_ciphers = DISABLED
Mon Jul 04 21:35:28 2011 us=546000 Connection profiles [default]:
Mon Jul 04 21:35:28 2011 us=546000   proto = udp
Mon Jul 04 21:35:28 2011 us=546000   local = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   local_port = 1194
Mon Jul 04 21:35:28 2011 us=546000   remote = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   remote_port = 1194
Mon Jul 04 21:35:28 2011 us=546000   remote_float = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   bind_defined = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   bind_local = ENABLED
Mon Jul 04 21:35:28 2011 us=546000   connect_retry_seconds = 5
Mon Jul 04 21:35:28 2011 us=546000   connect_timeout = 10
Mon Jul 04 21:35:28 2011 us=546000   connect_retry_max = 0
Mon Jul 04 21:35:28 2011 us=546000   socks_proxy_server = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   socks_proxy_port = 0
Mon Jul 04 21:35:28 2011 us=546000   socks_proxy_retry = DISABLED
Mon Jul 04 21:35:28 2011 us=546000 Connection profiles END
Mon Jul 04 21:35:28 2011 us=546000   remote_random = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   ipchange = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   dev = 'tun'
Mon Jul 04 21:35:28 2011 us=546000   dev_type = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   dev_node = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   lladdr = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   topology = 1
Mon Jul 04 21:35:28 2011 us=546000   tun_ipv6 = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   ifconfig_local = '10.8.0.1'
Mon Jul 04 21:35:28 2011 us=546000   ifconfig_remote_netmask = '10.8.0.2'
Mon Jul 04 21:35:28 2011 us=546000   ifconfig_noexec = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   ifconfig_nowarn = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   shaper = 0
Mon Jul 04 21:35:28 2011 us=546000   tun_mtu = 1500
Mon Jul 04 21:35:28 2011 us=546000   tun_mtu_defined = ENABLED
Mon Jul 04 21:35:28 2011 us=546000   link_mtu = 1500
Mon Jul 04 21:35:28 2011 us=546000   link_mtu_defined = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   tun_mtu_extra = 0
Mon Jul 04 21:35:28 2011 us=546000   tun_mtu_extra_defined = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   fragment = 0
Mon Jul 04 21:35:28 2011 us=546000   mtu_discover_type = -1
Mon Jul 04 21:35:28 2011 us=546000   mtu_test = 0
Mon Jul 04 21:35:28 2011 us=546000   mlock = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   keepalive_ping = 0
Mon Jul 04 21:35:28 2011 us=546000   keepalive_timeout = 0
Mon Jul 04 21:35:28 2011 us=546000   inactivity_timeout = 0
Mon Jul 04 21:35:28 2011 us=546000   ping_send_timeout = 0
Mon Jul 04 21:35:28 2011 us=546000   ping_rec_timeout = 0
Mon Jul 04 21:35:28 2011 us=546000   ping_rec_timeout_action = 0
Mon Jul 04 21:35:28 2011 us=546000   ping_timer_remote = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   remap_sigusr1 = 0
Mon Jul 04 21:35:28 2011 us=546000   explicit_exit_notification = 0
Mon Jul 04 21:35:28 2011 us=546000   persist_tun = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   persist_local_ip = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   persist_remote_ip = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   persist_key = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   mssfix = 1450
Mon Jul 04 21:35:28 2011 us=546000   resolve_retry_seconds = 1000000000
Mon Jul 04 21:35:28 2011 us=546000   username = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   groupname = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   chroot_dir = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   cd_dir = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   writepid = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   up_script = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   down_script = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   down_pre = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   up_restart = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   up_delay = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   daemon = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   inetd = 0
Mon Jul 04 21:35:28 2011 us=546000   log = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   suppress_timestamps = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   nice = 0
Mon Jul 04 21:35:28 2011 us=546000   verbosity = 5
Mon Jul 04 21:35:28 2011 us=546000   mute = 0
Mon Jul 04 21:35:28 2011 us=546000   gremlin = 0
Mon Jul 04 21:35:28 2011 us=546000   status_file = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   status_file_version = 1
Mon Jul 04 21:35:28 2011 us=546000   status_file_update_freq = 60
Mon Jul 04 21:35:28 2011 us=546000   occ = ENABLED
Mon Jul 04 21:35:28 2011 us=546000   rcvbuf = 0
Mon Jul 04 21:35:28 2011 us=546000   sndbuf = 0
Mon Jul 04 21:35:28 2011 us=546000   sockflags = 0
Mon Jul 04 21:35:28 2011 us=546000   fast_io = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   lzo = 0
Mon Jul 04 21:35:28 2011 us=546000   route_script = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   route_default_gateway = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   route_default_metric = 0
Mon Jul 04 21:35:28 2011 us=546000   route_noexec = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   route_delay = 5
Mon Jul 04 21:35:28 2011 us=546000   route_delay_window = 30
Mon Jul 04 21:35:28 2011 us=546000   route_delay_defined = ENABLED
Mon Jul 04 21:35:28 2011 us=546000   route_nopull = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   route_gateway_via_dhcp = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   max_routes = 100
Mon Jul 04 21:35:28 2011 us=546000   allow_pull_fqdn = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   management_addr = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   management_port = 0
Mon Jul 04 21:35:28 2011 us=546000   management_user_pass = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   management_log_history_cache = 250
Mon Jul 04 21:35:28 2011 us=546000   management_echo_buffer_size = 100
Mon Jul 04 21:35:28 2011 us=546000   management_write_peer_info_file = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   management_client_user = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   management_client_group = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   management_flags = 0
Mon Jul 04 21:35:28 2011 us=546000   shared_secret_file = 'static.key'
Mon Jul 04 21:35:28 2011 us=546000   key_direction = 0
Mon Jul 04 21:35:28 2011 us=546000   ciphername_defined = ENABLED
Mon Jul 04 21:35:28 2011 us=546000   ciphername = 'BF-CBC'
Mon Jul 04 21:35:28 2011 us=546000   authname_defined = ENABLED
Mon Jul 04 21:35:28 2011 us=546000   authname = 'SHA1'
Mon Jul 04 21:35:28 2011 us=546000   prng_hash = 'SHA1'
Mon Jul 04 21:35:28 2011 us=546000   prng_nonce_secret_len = 16
Mon Jul 04 21:35:28 2011 us=546000   keysize = 0
Mon Jul 04 21:35:28 2011 us=546000   engine = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   replay = ENABLED
Mon Jul 04 21:35:28 2011 us=546000   mute_replay_warnings = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   replay_window = 64
Mon Jul 04 21:35:28 2011 us=546000   replay_time = 15
Mon Jul 04 21:35:28 2011 us=546000   packet_id_file = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   use_iv = ENABLED
Mon Jul 04 21:35:28 2011 us=546000   test_crypto = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   tls_server = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   tls_client = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   key_method = 2
Mon Jul 04 21:35:28 2011 us=546000   ca_file = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   ca_path = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   dh_file = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   cert_file = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   priv_key_file = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   pkcs12_file = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   cryptoapi_cert = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   cipher_list = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   tls_verify = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   tls_export_cert = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   tls_remote = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   crl_file = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   ns_cert_type = 0
Mon Jul 04 21:35:28 2011 us=546000   remote_cert_ku[i] = 0
Mon Jul 04 21:35:28 2011 us=546000   remote_cert_ku[i] = 0
Mon Jul 04 21:35:28 2011 us=546000   remote_cert_ku[i] = 0
Mon Jul 04 21:35:28 2011 us=546000   remote_cert_ku[i] = 0
Mon Jul 04 21:35:28 2011 us=546000   remote_cert_ku[i] = 0
Mon Jul 04 21:35:28 2011 us=546000   remote_cert_ku[i] = 0
Mon Jul 04 21:35:28 2011 us=546000   remote_cert_ku[i] = 0
Mon Jul 04 21:35:28 2011 us=546000   remote_cert_ku[i] = 0
Mon Jul 04 21:35:28 2011 us=546000   remote_cert_ku[i] = 0
Mon Jul 04 21:35:28 2011 us=546000   remote_cert_ku[i] = 0
Mon Jul 04 21:35:28 2011 us=546000   remote_cert_ku[i] = 0
Mon Jul 04 21:35:28 2011 us=546000   remote_cert_ku[i] = 0
Mon Jul 04 21:35:28 2011 us=546000   remote_cert_ku[i] = 0
Mon Jul 04 21:35:28 2011 us=546000   remote_cert_ku[i] = 0
Mon Jul 04 21:35:28 2011 us=546000   remote_cert_ku[i] = 0
Mon Jul 04 21:35:28 2011 us=546000   remote_cert_ku[i] = 0
Mon Jul 04 21:35:28 2011 us=546000   remote_cert_eku = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   tls_timeout = 2
Mon Jul 04 21:35:28 2011 us=546000   renegotiate_bytes = 0
Mon Jul 04 21:35:28 2011 us=546000   renegotiate_packets = 0
Mon Jul 04 21:35:28 2011 us=546000   renegotiate_seconds = 3600
Mon Jul 04 21:35:28 2011 us=546000   handshake_window = 60
Mon Jul 04 21:35:28 2011 us=546000   transition_window = 3600
Mon Jul 04 21:35:28 2011 us=546000   single_session = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   push_peer_info = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   tls_exit = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   tls_auth_file = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   server_network = 0.0.0.0
Mon Jul 04 21:35:28 2011 us=546000   server_netmask = 0.0.0.0
Mon Jul 04 21:35:28 2011 us=546000   server_bridge_ip = 0.0.0.0
Mon Jul 04 21:35:28 2011 us=546000   server_bridge_netmask = 0.0.0.0
Mon Jul 04 21:35:28 2011 us=546000   server_bridge_pool_start = 0.0.0.0
Mon Jul 04 21:35:28 2011 us=546000   server_bridge_pool_end = 0.0.0.0
Mon Jul 04 21:35:28 2011 us=546000   push_entry = 'route 192.168.23.0 255.255.255.0 10.8.0.1'
Mon Jul 04 21:35:28 2011 us=546000   ifconfig_pool_defined = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   ifconfig_pool_start = 0.0.0.0
Mon Jul 04 21:35:28 2011 us=546000   ifconfig_pool_end = 0.0.0.0
Mon Jul 04 21:35:28 2011 us=546000   ifconfig_pool_netmask = 0.0.0.0
Mon Jul 04 21:35:28 2011 us=546000   ifconfig_pool_persist_filename = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   ifconfig_pool_persist_refresh_freq = 600
Mon Jul 04 21:35:28 2011 us=546000   n_bcast_buf = 256
Mon Jul 04 21:35:28 2011 us=546000   tcp_queue_limit = 64
Mon Jul 04 21:35:28 2011 us=546000   real_hash_size = 256
Mon Jul 04 21:35:28 2011 us=546000   virtual_hash_size = 256
Mon Jul 04 21:35:28 2011 us=546000   client_connect_script = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   learn_address_script = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   client_disconnect_script = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   client_config_dir = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   ccd_exclusive = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   tmp_dir = 'C:\WINDOWS\TEMP\'
Mon Jul 04 21:35:28 2011 us=546000   push_ifconfig_defined = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   push_ifconfig_local = 0.0.0.0
Mon Jul 04 21:35:28 2011 us=546000   push_ifconfig_remote_netmask = 0.0.0.0
Mon Jul 04 21:35:28 2011 us=546000   enable_c2c = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   duplicate_cn = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   cf_max = 0
Mon Jul 04 21:35:28 2011 us=546000   cf_per = 0
Mon Jul 04 21:35:28 2011 us=546000   max_clients = 1024
Mon Jul 04 21:35:28 2011 us=546000   max_routes_per_client = 256
Mon Jul 04 21:35:28 2011 us=546000   auth_user_pass_verify_script = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   auth_user_pass_verify_script_via_file = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   ssl_flags = 0
Mon Jul 04 21:35:28 2011 us=546000   client = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   pull = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   auth_user_pass_file = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   show_net_up = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   route_method = 0
Mon Jul 04 21:35:28 2011 us=546000   ip_win32_defined = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   ip_win32_type = 3
Mon Jul 04 21:35:28 2011 us=546000   dhcp_masq_offset = 0
Mon Jul 04 21:35:28 2011 us=546000   dhcp_lease_time = 31536000
Mon Jul 04 21:35:28 2011 us=546000   tap_sleep = 0
Mon Jul 04 21:35:28 2011 us=546000   dhcp_options = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   dhcp_renew = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   dhcp_pre_release = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   dhcp_release = DISABLED
Mon Jul 04 21:35:28 2011 us=546000   domain = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   netbios_scope = '[UNDEF]'
Mon Jul 04 21:35:28 2011 us=546000   netbios_node_type = 0
Mon Jul 04 21:35:28 2011 us=546000   disable_nbt = DISABLED
Mon Jul 04 21:35:28 2011 us=546000 OpenVPN 2.2.0 Win32-MSVC++ [SSL] [LZO2] built on Apr 26 2011
Mon Jul 04 21:35:28 2011 us=546000 IMPORTANT: OpenVPN's default port number is now 1194, based on an official port number assignment by IANA.  OpenVPN 2.0-beta16 and earlier used 5000 as the default port.
Mon Jul 04 21:35:28 2011 us=546000 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Mon Jul 04 21:35:28 2011 us=546000 Static Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
Mon Jul 04 21:35:28 2011 us=546000 Static Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Mon Jul 04 21:35:28 2011 us=546000 Static Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
Mon Jul 04 21:35:28 2011 us=546000 Static Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Mon Jul 04 21:35:28 2011 us=546000 Socket Buffers: R=[8192->8192] S=[8192->8192]
Mon Jul 04 21:35:28 2011 us=578000 TAP-WIN32 device [Local Area Connection 2] opened: \\.\Global\{A8374997-56A6-4452-A3FE-E9DCEEA13820}.tap
Mon Jul 04 21:35:28 2011 us=578000 TAP-Win32 Driver Version 9.8 
Mon Jul 04 21:35:28 2011 us=578000 TAP-Win32 MTU=1500
Mon Jul 04 21:35:28 2011 us=578000 Notified TAP-Win32 driver to set a DHCP IP/netmask of 10.8.0.1/255.255.255.252 on interface {A8374997-56A6-4452-A3FE-E9DCEEA13820} [DHCP-serv: 10.8.0.2, lease-time: 31536000]
Mon Jul 04 21:35:28 2011 us=578000 Successful ARP Flush on interface [65540] {A8374997-56A6-4452-A3FE-E9DCEEA13820}
Mon Jul 04 21:35:28 2011 us=578000 Data Channel MTU parms [ L:1544 D:1450 EF:44 EB:4 ET:0 EL:0 ]
Mon Jul 04 21:35:28 2011 us=578000 Local Options String: 'V4,dev-type tun,link-mtu 1544,tun-mtu 1500,proto UDPv4,ifconfig 10.8.0.2 10.8.0.1,cipher BF-CBC,auth SHA1,keysize 128,secret'
Mon Jul 04 21:35:28 2011 us=578000 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1544,tun-mtu 1500,proto UDPv4,ifconfig 10.8.0.1 10.8.0.2,cipher BF-CBC,auth SHA1,keysize 128,secret'
Mon Jul 04 21:35:28 2011 us=578000 Local Options hash (VER=V4): 'c41bf3b8'
Mon Jul 04 21:35:28 2011 us=578000 Expected Remote Options hash (VER=V4): 'd3880969'
Mon Jul 04 21:35:28 2011 us=578000 UDPv4 link local (bound): [undef]:1194
Mon Jul 04 21:35:28 2011 us=578000 UDPv4 link remote: [undef]
Mon Jul 04 21:36:19 2011 us=921000 Peer Connection Initiated with 192.168.0.2:1194
Mon Jul 04 21:36:25 2011 us=406000 TEST ROUTES: 0/0 succeeded len=-1 ret=1 a=0 u/d=up
Mon Jul 04 21:36:25 2011 us=406000 Initialization Sequence Completed

Route print

Code: Select all

C:\Windows\system32>route print
===========================================================================
Interface List
 32...00 ff ee e5 8a c5 ......TAP-Win32 Adapter V9
 17...00 1a 6b 15 f3 56 ......Bluetooth Device (Personal Area Network)
 11...00 19 d2 41 3d f1 ......Intel(R) PRO/Wireless 3945ABG Network Connectio
 10...00 17 a4 d2 ab 0a ......Broadcom 440x 10/100 Integrated Controller
  1...........................Software Loopback Interface 1
 30...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 28...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
 31...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
 27...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #5
 29...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.0.1      192.168.0.2     25
         10.8.0.0  255.255.255.252         On-link          10.8.0.2    286
         10.8.0.2  255.255.255.255         On-link          10.8.0.2    286
         10.8.0.3  255.255.255.255         On-link          10.8.0.2    286
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.0.0    255.255.255.0         On-link       192.168.0.2    281
      192.168.0.2  255.255.255.255         On-link       192.168.0.2    281
    192.168.0.255  255.255.255.255         On-link       192.168.0.2    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link       192.168.0.2    281
        224.0.0.0        240.0.0.0         On-link          10.8.0.2    286
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link       192.168.0.2    281
  255.255.255.255  255.255.255.255         On-link          10.8.0.2    286
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 29     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 29     58 2001::/32                On-link
 29    306 2001:0:5ef5:79fb:10bd:3910:adeb:f8b2/128
                                    On-link
 29    306 fe80::/64                On-link
 11    281 fe80::/64                On-link
 32    286 fe80::/64                On-link
 29    306 fe80::10bd:3910:adeb:f8b2/128
                                    On-link
 11    281 fe80::4cbf:44c0:4cc4:a347/128
                                    On-link
 32    286 fe80::8842:408d:9dc5:6be5/128
                                    On-link
  1    306 ff00::/8                 On-link
 29    306 ff00::/8                 On-link
 11    281 ff00::/8                 On-link
 32    286 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None

Post by **maikcat** » Tue Jul 05, 2011 7:40 am

hi there,

did you enabled ip forwarding on openvpn server?
did you disabled firewall? (if any)

Michael.

akirkby · Post by **akirkby** » Tue Jul 05, 2011 9:56 am

Hi,

Yes - IP Forwarding is enabled on the server, FW is also disabled. I've also tried disabling the FW on the client but still no routes appearing...

Andy

Post by **maikcat** » Tue Jul 05, 2011 10:01 am

stupid me,

didnt noticed before

>push "route 192.168.23.0 255.255.255.0 10.8.0.1"

change to

push "route 192.168.23.0 255.255.255.0"

also

you must run client with admin priviledges on win7 in order to recieve routes..

Michael.

akirkby · Post by **akirkby** » Tue Jul 05, 2011 10:19 am

Doh!

I'll get that changed back - I changed it during troubleshooting to see if it would work...

I'm running the OpenVPN GUI as administrator already on the Win 7 client.

Andy

Post by **maikcat** » Tue Jul 05, 2011 10:24 am

also it would helped alot if you post logs during the connection of your client...

Michael.

akirkby · Post by **akirkby** » Tue Jul 05, 2011 11:15 am

Thanks for the assistance so far, i'll get the config changed and see what happens.

What logging level would you prefer I use - the logs seem a little large at the moment for posting!

Post by **maikcat** » Tue Jul 05, 2011 12:40 pm

verb 3 and above would be fine....

Michael.

akirkby · Post by **akirkby** » Tue Jul 05, 2011 9:15 pm

Hi,

I've tried the suggestions above but the route is still not getting through, I've checked to ensure that both OpenVPN.exe and openvpn-GUI.exe are both set to run with admin privileges.

Routes

Code: Select all

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.0.1      192.168.0.2     25
         10.8.0.0  255.255.255.252         On-link          10.8.0.2    286
         10.8.0.2  255.255.255.255         On-link          10.8.0.2    286
         10.8.0.3  255.255.255.255         On-link          10.8.0.2    286
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.0.0    255.255.255.0         On-link       192.168.0.2    281
      192.168.0.2  255.255.255.255         On-link       192.168.0.2    281
    192.168.0.255  255.255.255.255         On-link       192.168.0.2    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link          10.8.0.2    286
        224.0.0.0        240.0.0.0         On-link       192.168.0.2    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link          10.8.0.2    286
  255.255.255.255  255.255.255.255         On-link       192.168.0.2    281
===========================================================================
Persistent Routes:
  None

Config & Logs are below

Server Config

Code: Select all

dev tun
ifconfig 10.8.0.1 10.8.0.2
secret static.key
push "route 192.168.23.0 255.255.255.0"
verb 3

Server Log

Code: Select all

Tue Jul 05 21:58:40 2011 OpenVPN 2.2.0 Win32-MSVC++ [SSL] [LZO2] built on Apr 26 2011
Tue Jul 05 21:58:40 2011 IMPORTANT: OpenVPN's default port number is now 1194, based on an official port number assignment by IANA.  OpenVPN 2.0-beta16 and earlier used 5000 as the default port.
Tue Jul 05 21:58:40 2011 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Tue Jul 05 21:58:40 2011 Static Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
Tue Jul 05 21:58:40 2011 Static Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Tue Jul 05 21:58:40 2011 Static Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
Tue Jul 05 21:58:40 2011 Static Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Tue Jul 05 21:58:40 2011 Socket Buffers: R=[8192->8192] S=[8192->8192]
Tue Jul 05 21:58:40 2011 TAP-WIN32 device [Local Area Connection 2] opened: \\.\Global\{A8374997-56A6-4452-A3FE-E9DCEEA13820}.tap
Tue Jul 05 21:58:40 2011 TAP-Win32 Driver Version 9.8 
Tue Jul 05 21:58:40 2011 TAP-Win32 MTU=1500
Tue Jul 05 21:58:40 2011 Notified TAP-Win32 driver to set a DHCP IP/netmask of 10.8.0.1/255.255.255.252 on interface {A8374997-56A6-4452-A3FE-E9DCEEA13820} [DHCP-serv: 10.8.0.2, lease-time: 31536000]
Tue Jul 05 21:58:40 2011 Successful ARP Flush on interface [65540] {A8374997-56A6-4452-A3FE-E9DCEEA13820}
Tue Jul 05 21:58:40 2011 Data Channel MTU parms [ L:1544 D:1450 EF:44 EB:4 ET:0 EL:0 ]
Tue Jul 05 21:58:40 2011 Local Options hash (VER=V4): 'c41bf3b8'
Tue Jul 05 21:58:40 2011 Expected Remote Options hash (VER=V4): 'd3880969'
Tue Jul 05 21:58:40 2011 UDPv4 link local (bound): [undef]:1194
Tue Jul 05 21:58:40 2011 UDPv4 link remote: [undef]
Tue Jul 05 22:03:43 2011 Peer Connection Initiated with 192.168.0.2:1194
Tue Jul 05 22:03:48 2011 TEST ROUTES: 0/0 succeeded len=-1 ret=1 a=0 u/d=up
Tue Jul 05 22:03:48 2011 Initialization Sequence Completed

Client Config

Code: Select all

remote 192.168.0.254
dev tun

ifconfig 10.8.0.2 10.8.0.1

secret static.key

script-security 2
route-method exe
route-delay 2
verb 3

Client Log

Code: Select all

Tue Jul 05 22:03:28 2011 OpenVPN 2.2.0 Win32-MSVC++ [SSL] [LZO2] built on Apr 26 2011
Tue Jul 05 22:03:28 2011 IMPORTANT: OpenVPN's default port number is now 1194, based on an official port number assignment by IANA.  OpenVPN 2.0-beta16 and earlier used 5000 as the default port.
Tue Jul 05 22:03:28 2011 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Tue Jul 05 22:03:28 2011 Static Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
Tue Jul 05 22:03:28 2011 Static Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Tue Jul 05 22:03:28 2011 Static Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
Tue Jul 05 22:03:28 2011 Static Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Tue Jul 05 22:03:28 2011 Socket Buffers: R=[8192->8192] S=[8192->8192]
Tue Jul 05 22:03:28 2011 TAP-WIN32 device [Local Area Connection 4] opened: \\.\Global\{EEE58AC5-30AF-4A1B-BF96-68288F9CFA66}.tap
Tue Jul 05 22:03:28 2011 TAP-Win32 Driver Version 9.8 
Tue Jul 05 22:03:28 2011 TAP-Win32 MTU=1500
Tue Jul 05 22:03:28 2011 Notified TAP-Win32 driver to set a DHCP IP/netmask of 10.8.0.2/255.255.255.252 on interface {EEE58AC5-30AF-4A1B-BF96-68288F9CFA66} [DHCP-serv: 10.8.0.1, lease-time: 31536000]
Tue Jul 05 22:03:28 2011 Successful ARP Flush on interface [31] {EEE58AC5-30AF-4A1B-BF96-68288F9CFA66}
Tue Jul 05 22:03:28 2011 Data Channel MTU parms [ L:1544 D:1450 EF:44 EB:4 ET:0 EL:0 ]
Tue Jul 05 22:03:28 2011 Local Options hash (VER=V4): 'd3880969'
Tue Jul 05 22:03:28 2011 Expected Remote Options hash (VER=V4): 'c41bf3b8'
Tue Jul 05 22:03:28 2011 UDPv4 link local (bound): [undef]:1194
Tue Jul 05 22:03:28 2011 UDPv4 link remote: 192.168.0.254:1194
Tue Jul 05 22:03:38 2011 Peer Connection Initiated with 192.168.0.254:1194
Tue Jul 05 22:03:41 2011 TEST ROUTES: 0/0 succeeded len=-1 ret=1 a=0 u/d=up
Tue Jul 05 22:03:41 2011 Initialization Sequence Completed

Post by **maikcat** » Wed Jul 06, 2011 6:45 am

increase verb on client and repost logs...

Michael.

akirkby · Post by **akirkby** » Wed Jul 06, 2011 12:36 pm

Hi - updated log below

Code: Select all

Wed Jul 06 13:35:02 2011 us=306000 Current Parameter Settings:
Wed Jul 06 13:35:02 2011 us=306000   config = 'callhome.ovpn'
Wed Jul 06 13:35:02 2011 us=306000   mode = 0
Wed Jul 06 13:35:02 2011 us=306000   show_ciphers = DISABLED
Wed Jul 06 13:35:02 2011 us=306000   show_digests = DISABLED
Wed Jul 06 13:35:02 2011 us=306000   show_engines = DISABLED
Wed Jul 06 13:35:02 2011 us=306000   genkey = DISABLED
Wed Jul 06 13:35:02 2011 us=306000   key_pass_file = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=306000   show_tls_ciphers = DISABLED
Wed Jul 06 13:35:02 2011 us=306000 Connection profiles [default]:
Wed Jul 06 13:35:02 2011 us=306000   proto = udp
Wed Jul 06 13:35:02 2011 us=306000   local = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=306000   local_port = 1194
Wed Jul 06 13:35:02 2011 us=306000   remote = '192.168.0.254'
Wed Jul 06 13:35:02 2011 us=306000   remote_port = 1194
Wed Jul 06 13:35:02 2011 us=306000   remote_float = DISABLED
Wed Jul 06 13:35:02 2011 us=306000   bind_defined = DISABLED
Wed Jul 06 13:35:02 2011 us=306000   bind_local = ENABLED
Wed Jul 06 13:35:02 2011 us=306000   connect_retry_seconds = 5
Wed Jul 06 13:35:02 2011 us=306000   connect_timeout = 10
Wed Jul 06 13:35:02 2011 us=306000   connect_retry_max = 0
Wed Jul 06 13:35:02 2011 us=306000   socks_proxy_server = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=306000   socks_proxy_port = 0
Wed Jul 06 13:35:02 2011 us=306000   socks_proxy_retry = DISABLED
Wed Jul 06 13:35:02 2011 us=306000 Connection profiles END
Wed Jul 06 13:35:02 2011 us=306000   remote_random = DISABLED
Wed Jul 06 13:35:02 2011 us=306000   ipchange = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=306000   dev = 'tun'
Wed Jul 06 13:35:02 2011 us=306000   dev_type = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=306000   dev_node = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=306000   lladdr = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=306000   topology = 1
Wed Jul 06 13:35:02 2011 us=306000   tun_ipv6 = DISABLED
Wed Jul 06 13:35:02 2011 us=306000   ifconfig_local = '10.8.0.2'
Wed Jul 06 13:35:02 2011 us=306000   ifconfig_remote_netmask = '10.8.0.1'
Wed Jul 06 13:35:02 2011 us=306000   ifconfig_noexec = DISABLED
Wed Jul 06 13:35:02 2011 us=306000   ifconfig_nowarn = DISABLED
Wed Jul 06 13:35:02 2011 us=306000   shaper = 0
Wed Jul 06 13:35:02 2011 us=306000   tun_mtu = 1500
Wed Jul 06 13:35:02 2011 us=306000   tun_mtu_defined = ENABLED
Wed Jul 06 13:35:02 2011 us=306000   link_mtu = 1500
Wed Jul 06 13:35:02 2011 us=306000   link_mtu_defined = DISABLED
Wed Jul 06 13:35:02 2011 us=306000   tun_mtu_extra = 0
Wed Jul 06 13:35:02 2011 us=306000   tun_mtu_extra_defined = DISABLED
Wed Jul 06 13:35:02 2011 us=306000   fragment = 0
Wed Jul 06 13:35:02 2011 us=306000   mtu_discover_type = -1
Wed Jul 06 13:35:02 2011 us=306000   mtu_test = 0
Wed Jul 06 13:35:02 2011 us=306000   mlock = DISABLED
Wed Jul 06 13:35:02 2011 us=306000   keepalive_ping = 0
Wed Jul 06 13:35:02 2011 us=306000   keepalive_timeout = 0
Wed Jul 06 13:35:02 2011 us=306000   inactivity_timeout = 0
Wed Jul 06 13:35:02 2011 us=306000   ping_send_timeout = 0
Wed Jul 06 13:35:02 2011 us=306000   ping_rec_timeout = 0
Wed Jul 06 13:35:02 2011 us=306000   ping_rec_timeout_action = 0
Wed Jul 06 13:35:02 2011 us=306000   ping_timer_remote = DISABLED
Wed Jul 06 13:35:02 2011 us=306000   remap_sigusr1 = 0
Wed Jul 06 13:35:02 2011 us=306000   explicit_exit_notification = 0
Wed Jul 06 13:35:02 2011 us=306000   persist_tun = DISABLED
Wed Jul 06 13:35:02 2011 us=306000   persist_local_ip = DISABLED
Wed Jul 06 13:35:02 2011 us=306000   persist_remote_ip = DISABLED
Wed Jul 06 13:35:02 2011 us=306000   persist_key = DISABLED
Wed Jul 06 13:35:02 2011 us=306000   mssfix = 1450
Wed Jul 06 13:35:02 2011 us=306000   resolve_retry_seconds = 1000000000
Wed Jul 06 13:35:02 2011 us=306000   username = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=306000   groupname = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=306000   chroot_dir = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=306000   cd_dir = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=306000   writepid = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=524000   up_script = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=524000   down_script = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=524000   down_pre = DISABLED
Wed Jul 06 13:35:02 2011 us=524000   up_restart = DISABLED
Wed Jul 06 13:35:02 2011 us=524000   up_delay = DISABLED
Wed Jul 06 13:35:02 2011 us=524000   daemon = DISABLED
Wed Jul 06 13:35:02 2011 us=524000   inetd = 0
Wed Jul 06 13:35:02 2011 us=524000   log = DISABLED
Wed Jul 06 13:35:02 2011 us=524000   suppress_timestamps = DISABLED
Wed Jul 06 13:35:02 2011 us=524000   nice = 0
Wed Jul 06 13:35:02 2011 us=524000   verbosity = 5
Wed Jul 06 13:35:02 2011 us=524000   mute = 0
Wed Jul 06 13:35:02 2011 us=524000   gremlin = 0
Wed Jul 06 13:35:02 2011 us=524000   status_file = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=524000   status_file_version = 1
Wed Jul 06 13:35:02 2011 us=524000   status_file_update_freq = 60
Wed Jul 06 13:35:02 2011 us=524000   occ = ENABLED
Wed Jul 06 13:35:02 2011 us=524000   rcvbuf = 0
Wed Jul 06 13:35:02 2011 us=524000   sndbuf = 0
Wed Jul 06 13:35:02 2011 us=540000   sockflags = 0
Wed Jul 06 13:35:02 2011 us=540000   fast_io = DISABLED
Wed Jul 06 13:35:02 2011 us=540000   lzo = 0
Wed Jul 06 13:35:02 2011 us=540000   route_script = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=540000   route_default_gateway = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=540000   route_default_metric = 0
Wed Jul 06 13:35:02 2011 us=540000   route_noexec = DISABLED
Wed Jul 06 13:35:02 2011 us=540000   route_delay = 2
Wed Jul 06 13:35:02 2011 us=540000   route_delay_window = 30
Wed Jul 06 13:35:02 2011 us=540000   route_delay_defined = ENABLED
Wed Jul 06 13:35:02 2011 us=540000   route_nopull = DISABLED
Wed Jul 06 13:35:02 2011 us=540000   route_gateway_via_dhcp = DISABLED
Wed Jul 06 13:35:02 2011 us=540000   max_routes = 100
Wed Jul 06 13:35:02 2011 us=540000   allow_pull_fqdn = DISABLED
Wed Jul 06 13:35:02 2011 us=540000   management_addr = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=540000   management_port = 0
Wed Jul 06 13:35:02 2011 us=571000   management_user_pass = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=571000   management_log_history_cache = 250
Wed Jul 06 13:35:02 2011 us=571000   management_echo_buffer_size = 100
Wed Jul 06 13:35:02 2011 us=571000   management_write_peer_info_file = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=571000   management_client_user = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=571000   management_client_group = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=571000   management_flags = 0
Wed Jul 06 13:35:02 2011 us=571000   shared_secret_file = 'static.key'
Wed Jul 06 13:35:02 2011 us=571000   key_direction = 0
Wed Jul 06 13:35:02 2011 us=571000   ciphername_defined = ENABLED
Wed Jul 06 13:35:02 2011 us=571000   ciphername = 'BF-CBC'
Wed Jul 06 13:35:02 2011 us=571000   authname_defined = ENABLED
Wed Jul 06 13:35:02 2011 us=571000   authname = 'SHA1'
Wed Jul 06 13:35:02 2011 us=571000   prng_hash = 'SHA1'
Wed Jul 06 13:35:02 2011 us=571000   prng_nonce_secret_len = 16
Wed Jul 06 13:35:02 2011 us=571000   keysize = 0
Wed Jul 06 13:35:02 2011 us=602000   engine = DISABLED
Wed Jul 06 13:35:02 2011 us=602000   replay = ENABLED
Wed Jul 06 13:35:02 2011 us=602000   mute_replay_warnings = DISABLED
Wed Jul 06 13:35:02 2011 us=602000   replay_window = 64
Wed Jul 06 13:35:02 2011 us=602000   replay_time = 15
Wed Jul 06 13:35:02 2011 us=602000   packet_id_file = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=602000   use_iv = ENABLED
Wed Jul 06 13:35:02 2011 us=602000   test_crypto = DISABLED
Wed Jul 06 13:35:02 2011 us=602000   tls_server = DISABLED
Wed Jul 06 13:35:02 2011 us=602000   tls_client = DISABLED
Wed Jul 06 13:35:02 2011 us=602000   key_method = 2
Wed Jul 06 13:35:02 2011 us=602000   ca_file = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=602000   ca_path = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=602000   dh_file = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=602000   cert_file = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=602000   priv_key_file = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=602000   pkcs12_file = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=618000   cryptoapi_cert = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=618000   cipher_list = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=618000   tls_verify = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=618000   tls_export_cert = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=618000   tls_remote = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=618000   crl_file = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=618000   ns_cert_type = 0
Wed Jul 06 13:35:02 2011 us=618000   remote_cert_ku[i] = 0
Wed Jul 06 13:35:02 2011 us=618000   remote_cert_ku[i] = 0
Wed Jul 06 13:35:02 2011 us=618000   remote_cert_ku[i] = 0
Wed Jul 06 13:35:02 2011 us=618000   remote_cert_ku[i] = 0
Wed Jul 06 13:35:02 2011 us=618000   remote_cert_ku[i] = 0
Wed Jul 06 13:35:02 2011 us=618000   remote_cert_ku[i] = 0
Wed Jul 06 13:35:02 2011 us=618000   remote_cert_ku[i] = 0
Wed Jul 06 13:35:02 2011 us=618000   remote_cert_ku[i] = 0
Wed Jul 06 13:35:02 2011 us=618000   remote_cert_ku[i] = 0
Wed Jul 06 13:35:02 2011 us=649000   remote_cert_ku[i] = 0
Wed Jul 06 13:35:02 2011 us=649000   remote_cert_ku[i] = 0
Wed Jul 06 13:35:02 2011 us=649000   remote_cert_ku[i] = 0
Wed Jul 06 13:35:02 2011 us=649000   remote_cert_ku[i] = 0
Wed Jul 06 13:35:02 2011 us=649000   remote_cert_ku[i] = 0
Wed Jul 06 13:35:02 2011 us=649000   remote_cert_ku[i] = 0
Wed Jul 06 13:35:02 2011 us=649000   remote_cert_ku[i] = 0
Wed Jul 06 13:35:02 2011 us=649000   remote_cert_eku = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=649000   tls_timeout = 2
Wed Jul 06 13:35:02 2011 us=649000   renegotiate_bytes = 0
Wed Jul 06 13:35:02 2011 us=649000   renegotiate_packets = 0
Wed Jul 06 13:35:02 2011 us=649000   renegotiate_seconds = 3600
Wed Jul 06 13:35:02 2011 us=649000   handshake_window = 60
Wed Jul 06 13:35:02 2011 us=649000   transition_window = 3600
Wed Jul 06 13:35:02 2011 us=649000   single_session = DISABLED
Wed Jul 06 13:35:02 2011 us=649000   push_peer_info = DISABLED
Wed Jul 06 13:35:02 2011 us=649000   tls_exit = DISABLED
Wed Jul 06 13:35:02 2011 us=680000   tls_auth_file = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=680000   server_network = 0.0.0.0
Wed Jul 06 13:35:02 2011 us=680000   server_netmask = 0.0.0.0
Wed Jul 06 13:35:02 2011 us=680000   server_bridge_ip = 0.0.0.0
Wed Jul 06 13:35:02 2011 us=680000   server_bridge_netmask = 0.0.0.0
Wed Jul 06 13:35:02 2011 us=680000   server_bridge_pool_start = 0.0.0.0
Wed Jul 06 13:35:02 2011 us=680000   server_bridge_pool_end = 0.0.0.0
Wed Jul 06 13:35:02 2011 us=680000   ifconfig_pool_defined = DISABLED
Wed Jul 06 13:35:02 2011 us=680000   ifconfig_pool_start = 0.0.0.0
Wed Jul 06 13:35:02 2011 us=680000   ifconfig_pool_end = 0.0.0.0
Wed Jul 06 13:35:02 2011 us=680000   ifconfig_pool_netmask = 0.0.0.0
Wed Jul 06 13:35:02 2011 us=680000   ifconfig_pool_persist_filename = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=680000   ifconfig_pool_persist_refresh_freq = 600
Wed Jul 06 13:35:02 2011 us=680000   n_bcast_buf = 256
Wed Jul 06 13:35:02 2011 us=680000   tcp_queue_limit = 64
Wed Jul 06 13:35:02 2011 us=696000   real_hash_size = 256
Wed Jul 06 13:35:02 2011 us=696000   virtual_hash_size = 256
Wed Jul 06 13:35:02 2011 us=696000   client_connect_script = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=696000   learn_address_script = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=696000   client_disconnect_script = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=696000   client_config_dir = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=696000   ccd_exclusive = DISABLED
Wed Jul 06 13:35:02 2011 us=696000   tmp_dir = 'C:\Users\ANDREW~1\AppData\Local\Temp\'
Wed Jul 06 13:35:02 2011 us=696000   push_ifconfig_defined = DISABLED
Wed Jul 06 13:35:02 2011 us=696000   push_ifconfig_local = 0.0.0.0
Wed Jul 06 13:35:02 2011 us=696000   push_ifconfig_remote_netmask = 0.0.0.0
Wed Jul 06 13:35:02 2011 us=696000   enable_c2c = DISABLED
Wed Jul 06 13:35:02 2011 us=696000   duplicate_cn = DISABLED
Wed Jul 06 13:35:02 2011 us=696000   cf_max = 0
Wed Jul 06 13:35:02 2011 us=696000   cf_per = 0
Wed Jul 06 13:35:02 2011 us=727000   max_clients = 1024
Wed Jul 06 13:35:02 2011 us=727000   max_routes_per_client = 256
Wed Jul 06 13:35:02 2011 us=727000   auth_user_pass_verify_script = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=727000   auth_user_pass_verify_script_via_file = DISABLED
Wed Jul 06 13:35:02 2011 us=727000   ssl_flags = 0
Wed Jul 06 13:35:02 2011 us=727000   client = DISABLED
Wed Jul 06 13:35:02 2011 us=727000   pull = DISABLED
Wed Jul 06 13:35:02 2011 us=727000   auth_user_pass_file = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=727000   show_net_up = DISABLED
Wed Jul 06 13:35:02 2011 us=727000   route_method = 2
Wed Jul 06 13:35:02 2011 us=727000   ip_win32_defined = DISABLED
Wed Jul 06 13:35:02 2011 us=727000   ip_win32_type = 3
Wed Jul 06 13:35:02 2011 us=727000   dhcp_masq_offset = 0
Wed Jul 06 13:35:02 2011 us=727000   dhcp_lease_time = 31536000
Wed Jul 06 13:35:02 2011 us=727000   tap_sleep = 0
Wed Jul 06 13:35:02 2011 us=727000   dhcp_options = DISABLED
Wed Jul 06 13:35:02 2011 us=743000   dhcp_renew = DISABLED
Wed Jul 06 13:35:02 2011 us=743000   dhcp_pre_release = DISABLED
Wed Jul 06 13:35:02 2011 us=743000   dhcp_release = DISABLED
Wed Jul 06 13:35:02 2011 us=743000   domain = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=743000   netbios_scope = '[UNDEF]'
Wed Jul 06 13:35:02 2011 us=743000   netbios_node_type = 0
Wed Jul 06 13:35:02 2011 us=743000   disable_nbt = DISABLED
Wed Jul 06 13:35:02 2011 us=743000 OpenVPN 2.2.0 Win32-MSVC++ [SSL] [LZO2] built on Apr 26 2011
Wed Jul 06 13:35:02 2011 us=743000 IMPORTANT: OpenVPN's default port number is now 1194, based on an official port number assignment by IANA.  OpenVPN 2.0-beta16 and earlier used 5000 as the default port.
Wed Jul 06 13:35:02 2011 us=743000 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Wed Jul 06 13:35:02 2011 us=743000 Static Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
Wed Jul 06 13:35:02 2011 us=774000 Static Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Wed Jul 06 13:35:02 2011 us=774000 Static Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
Wed Jul 06 13:35:02 2011 us=774000 Static Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Wed Jul 06 13:35:02 2011 us=774000 Socket Buffers: R=[8192->8192] S=[8192->8192]
Wed Jul 06 13:35:02 2011 us=790000 TAP-WIN32 device [Local Area Connection 4] opened: \\.\Global\{EEE58AC5-30AF-4A1B-BF96-68288F9CFA66}.tap
Wed Jul 06 13:35:02 2011 us=790000 TAP-Win32 Driver Version 9.8 
Wed Jul 06 13:35:02 2011 us=790000 TAP-Win32 MTU=1500
Wed Jul 06 13:35:02 2011 us=790000 Notified TAP-Win32 driver to set a DHCP IP/netmask of 10.8.0.2/255.255.255.252 on interface {EEE58AC5-30AF-4A1B-BF96-68288F9CFA66} [DHCP-serv: 10.8.0.1, lease-time: 31536000]
Wed Jul 06 13:35:02 2011 us=790000 Successful ARP Flush on interface [31] {EEE58AC5-30AF-4A1B-BF96-68288F9CFA66}
Wed Jul 06 13:35:02 2011 us=868000 Data Channel MTU parms [ L:1544 D:1450 EF:44 EB:4 ET:0 EL:0 ]
Wed Jul 06 13:35:02 2011 us=868000 Local Options String: 'V4,dev-type tun,link-mtu 1544,tun-mtu 1500,proto UDPv4,ifconfig 10.8.0.1 10.8.0.2,cipher BF-CBC,auth SHA1,keysize 128,secret'
Wed Jul 06 13:35:02 2011 us=868000 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1544,tun-mtu 1500,proto UDPv4,ifconfig 10.8.0.2 10.8.0.1,cipher BF-CBC,auth SHA1,keysize 128,secret'
Wed Jul 06 13:35:02 2011 us=868000 Local Options hash (VER=V4): 'd3880969'
Wed Jul 06 13:35:02 2011 us=868000 Expected Remote Options hash (VER=V4): 'c41bf3b8'
Wed Jul 06 13:35:02 2011 us=868000 UDPv4 link local (bound): [undef]:1194
Wed Jul 06 13:35:02 2011 us=868000 UDPv4 link remote: 192.168.0.254:1194
Wed Jul 06 13:35:12 2011 us=883000 Peer Connection Initiated with 192.168.0.254:1194
Wed Jul 06 13:35:15 2011 us=769000 TEST ROUTES: 0/0 succeeded len=-1 ret=1 a=0 u/d=up
Wed Jul 06 13:35:15 2011 us=769000 Initialization Sequence Completed

Post by **maikcat** » Wed Jul 06, 2011 12:40 pm

hi there,

i noticed this:pull = DISABLED

add this toclient config

pull

or add this

client

Michael

akirkby · Post by **akirkby** » Wed Jul 06, 2011 12:55 pm

If i add 'pull' I get the following

Options Error: Parameter --pull can only be specified in TLS-Mode

If i add 'client' I get the following

Options Error: specify only one of --tls-server, --tls-client, or --secret

Post by **maikcat** » Wed Jul 06, 2011 1:13 pm

my fault...

you use simple setup (without server) so pull and client dont work

solution (from openvpn docs)

add a static route by hand on your remote side (client) ,like:

route add -net 192.168.23.0 netmask 255.255.255.0 gw 10.8.0.1

i have learned something too... (all my setups involves certs and server to many clients)

thats life.

Michael.

ps: sorry..

akirkby · Post by **akirkby** » Wed Jul 06, 2011 2:41 pm

Hi - i've got the route added to the client, i've also put a route on a host on the server lan side

Host

Code: Select all

Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0     192.168.23.1     192.168.23.3    276
         10.8.0.2  255.255.255.255   192.168.23.168     192.168.23.3     21

I'm running Wireshark on the LAN Host and can see the ping (echo request) leave the interface, on the OpenVPN server I can see it received on the LAN interface, however, I can't see it leave on the TUN interface...

I can ping the LAN interface 192.168.23.168 and also the servers TUN interface 10.8.0.1, just not the far end of the VPN...

I've checked the registery again and IP Forwarding is enabled as per http://support.microsoft.com/kb/323339

I noticed something on one of the forums about enabling promiscuous mode? Does this need to be done - how do I do it?

Post by **maikcat** » Wed Jul 06, 2011 5:47 pm

can you please issue a netstat -nr to both server/client
and post the output here?

Michael.

OpenVPN Support Forum

Push route - not working

Push route - not working

Re: Push route - not working

Re: Push route - not working

Re: Push route - not working

Re: Push route - not working

Re: Push route - not working

Re: Push route - not working

Re: Push route - not working

Re: Push route - not working

Re: Push route - not working

Re: Push route - not working

Re: Push route - not working

Re: Push route - not working

Re: Push route - not working

Re: Push route - not working

Re: Push route - not working