[resolved] WIN XP SP3-Connected but cant ping, WIN 7 works

[alanreeves]

Hi,
I'm a novice with VPN. I'm hoping someone can give me some guidance (that I can understand!), on a problem I have.
(a) I have a VPN server running (in Ethernet-bridged mode), in a workgroup network of 20 WIN XP SP3 pc's.

(a) I have a VPN client running Windows 7 Home Edition. With this client I can connect to the server, ping any device on the remote LAN, and access any pc with Windows Remote Desktop -in other words, it all works fine.

(c) I am trying to set up another VPN client on a pc running WIN XP SP3, using the same configuration as the WIN 7 client. When I first tried this I got "Initialization completed (with Errors)", but I managed to resolve that problem by following the advice in this excellent article:
http://michaelellerbeck.com/2008/10/27/ ... s-instead/
So now, in XP I can get connected without errors, but I cannot ping any of my remote pc's, or access them with remote desktop.

(d) I have tried disabling the client firewall, but this does not resolve the problem.

(e) I can't see that the server firewall can be a problem, because the WIN 7 client works fine.

(f) Has anyone any idea what might be the problem with the XP client, when the WIN 7 client works fine?

Thanks very much for your attention
Alan Reeves

[janjust]

post the client config and the client log file during a connect, preferably with 'verb 5' set - in most cases it's XP which connects just fine and Win7 which has a harder time...

[alanreeves]

Hi, thanks for looking at this, it is appreciated.
Here's the client config:

client
dev tap
dev-node MYTAP
proto udp
remote 92.xx.xx.xx 1194
resolv-retry infinite
nobind
persist-key
persist-tun
ca "C:\\Program Files\\OpenVpn\\easy-rsa\\keys\\ca.crt"
cert "C:\\Program Files\\OpenVpn\\easy-rsa\\keys\\ALANDELL.crt"
key "C:\\Program Files\\OpenVpn\\easy-rsa\\keys\\ALANDELL.key"
ns-cert-type server
comp-lzo
verb 5
route-method exe
route-delay 10
ping 5
ip-win32 netsh

And here's the log file:
Tue Oct 11 22:31:04 2011 us=63000 Current Parameter Settings:
Tue Oct 11 22:31:04 2011 us=63000 config = 'alandell.ovpn'
Tue Oct 11 22:31:04 2011 us=63000 mode = 0
Tue Oct 11 22:31:04 2011 us=63000 show_ciphers = DISABLED
Tue Oct 11 22:31:04 2011 us=63000 show_digests = DISABLED
Tue Oct 11 22:31:04 2011 us=63000 show_engines = DISABLED
Tue Oct 11 22:31:04 2011 us=63000 genkey = DISABLED
Tue Oct 11 22:31:04 2011 us=63000 key_pass_file = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=63000 show_tls_ciphers = DISABLED
Tue Oct 11 22:31:04 2011 us=63000 Connection profiles [default]:
Tue Oct 11 22:31:04 2011 us=63000 proto = udp
Tue Oct 11 22:31:04 2011 us=63000 local = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=63000 local_port = 0
Tue Oct 11 22:31:04 2011 us=63000 remote = '92.xx.xx.xx'
Tue Oct 11 22:31:04 2011 us=63000 remote_port = 1194
Tue Oct 11 22:31:04 2011 us=63000 remote_float = DISABLED
Tue Oct 11 22:31:04 2011 us=63000 bind_defined = DISABLED
Tue Oct 11 22:31:04 2011 us=63000 bind_local = DISABLED
Tue Oct 11 22:31:04 2011 us=63000 connect_retry_seconds = 5
Tue Oct 11 22:31:04 2011 us=63000 connect_timeout = 10
Tue Oct 11 22:31:04 2011 us=63000 connect_retry_max = 0
Tue Oct 11 22:31:04 2011 us=63000 socks_proxy_server = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=63000 socks_proxy_port = 0
Tue Oct 11 22:31:04 2011 us=63000 socks_proxy_retry = DISABLED
Tue Oct 11 22:31:04 2011 us=63000 Connection profiles END
Tue Oct 11 22:31:04 2011 us=63000 remote_random = DISABLED
Tue Oct 11 22:31:04 2011 us=63000 ipchange = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=63000 dev = 'tap'
Tue Oct 11 22:31:04 2011 us=63000 dev_type = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=63000 dev_node = 'MYTAP'
Tue Oct 11 22:31:04 2011 us=63000 lladdr = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=63000 topology = 1
Tue Oct 11 22:31:04 2011 us=63000 tun_ipv6 = DISABLED
Tue Oct 11 22:31:04 2011 us=63000 ifconfig_local = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=63000 ifconfig_remote_netmask = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=63000 ifconfig_noexec = DISABLED
Tue Oct 11 22:31:04 2011 us=63000 ifconfig_nowarn = DISABLED
Tue Oct 11 22:31:04 2011 us=63000 shaper = 0
Tue Oct 11 22:31:04 2011 us=63000 tun_mtu = 1500
Tue Oct 11 22:31:04 2011 us=63000 tun_mtu_defined = ENABLED
Tue Oct 11 22:31:04 2011 us=63000 link_mtu = 1500
Tue Oct 11 22:31:04 2011 us=63000 link_mtu_defined = DISABLED
Tue Oct 11 22:31:04 2011 us=63000 tun_mtu_extra = 32
Tue Oct 11 22:31:04 2011 us=63000 tun_mtu_extra_defined = ENABLED
Tue Oct 11 22:31:04 2011 us=63000 fragment = 0
Tue Oct 11 22:31:04 2011 us=63000 mtu_discover_type = -1
Tue Oct 11 22:31:04 2011 us=63000 mtu_test = 0
Tue Oct 11 22:31:04 2011 us=63000 mlock = DISABLED
Tue Oct 11 22:31:04 2011 us=63000 keepalive_ping = 0
Tue Oct 11 22:31:04 2011 us=63000 keepalive_timeout = 0
Tue Oct 11 22:31:04 2011 us=63000 inactivity_timeout = 0
Tue Oct 11 22:31:04 2011 us=63000 ping_send_timeout = 5
Tue Oct 11 22:31:04 2011 us=63000 ping_rec_timeout = 0
Tue Oct 11 22:31:04 2011 us=63000 ping_rec_timeout_action = 0
Tue Oct 11 22:31:04 2011 us=63000 ping_timer_remote = DISABLED
Tue Oct 11 22:31:04 2011 us=63000 remap_sigusr1 = 0
Tue Oct 11 22:31:04 2011 us=63000 explicit_exit_notification = 0
Tue Oct 11 22:31:04 2011 us=63000 persist_tun = ENABLED
Tue Oct 11 22:31:04 2011 us=63000 persist_local_ip = DISABLED
Tue Oct 11 22:31:04 2011 us=63000 persist_remote_ip = DISABLED
Tue Oct 11 22:31:04 2011 us=63000 persist_key = ENABLED
Tue Oct 11 22:31:04 2011 us=63000 mssfix = 1450
Tue Oct 11 22:31:04 2011 us=63000 resolve_retry_seconds = 1000000000
Tue Oct 11 22:31:04 2011 us=63000 username = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=63000 groupname = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=63000 chroot_dir = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=63000 cd_dir = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=63000 writepid = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=63000 up_script = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=63000 down_script = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=103000 down_pre = DISABLED
Tue Oct 11 22:31:04 2011 us=103000 up_restart = DISABLED
Tue Oct 11 22:31:04 2011 us=103000 up_delay = DISABLED
Tue Oct 11 22:31:04 2011 us=103000 daemon = DISABLED
Tue Oct 11 22:31:04 2011 us=103000 inetd = 0
Tue Oct 11 22:31:04 2011 us=103000 log = DISABLED
Tue Oct 11 22:31:04 2011 us=103000 suppress_timestamps = DISABLED
Tue Oct 11 22:31:04 2011 us=103000 nice = 0
Tue Oct 11 22:31:04 2011 us=103000 verbosity = 5
Tue Oct 11 22:31:04 2011 us=103000 mute = 0
Tue Oct 11 22:31:04 2011 us=103000 gremlin = 0
Tue Oct 11 22:31:04 2011 us=103000 status_file = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=103000 status_file_version = 1
Tue Oct 11 22:31:04 2011 us=103000 status_file_update_freq = 60
Tue Oct 11 22:31:04 2011 us=103000 occ = ENABLED
Tue Oct 11 22:31:04 2011 us=103000 rcvbuf = 0
Tue Oct 11 22:31:04 2011 us=103000 sndbuf = 0
Tue Oct 11 22:31:04 2011 us=103000 sockflags = 0
Tue Oct 11 22:31:04 2011 us=113000 fast_io = DISABLED
Tue Oct 11 22:31:04 2011 us=113000 lzo = 7
Tue Oct 11 22:31:04 2011 us=113000 route_script = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=113000 route_default_gateway = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=113000 route_default_metric = 0
Tue Oct 11 22:31:04 2011 us=113000 route_noexec = DISABLED
Tue Oct 11 22:31:04 2011 us=113000 route_delay = 10
Tue Oct 11 22:31:04 2011 us=113000 route_delay_window = 30
Tue Oct 11 22:31:04 2011 us=113000 route_delay_defined = ENABLED
Tue Oct 11 22:31:04 2011 us=113000 route_nopull = DISABLED
Tue Oct 11 22:31:04 2011 us=113000 route_gateway_via_dhcp = DISABLED
Tue Oct 11 22:31:04 2011 us=113000 max_routes = 100
Tue Oct 11 22:31:04 2011 us=113000 allow_pull_fqdn = DISABLED
Tue Oct 11 22:31:04 2011 us=113000 management_addr = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=113000 management_port = 0
Tue Oct 11 22:31:04 2011 us=113000 management_user_pass = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=153000 management_log_history_cache = 250
Tue Oct 11 22:31:04 2011 us=153000 management_echo_buffer_size = 100
Tue Oct 11 22:31:04 2011 us=153000 management_write_peer_info_file = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=153000 management_client_user = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=153000 management_client_group = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=153000 management_flags = 0
Tue Oct 11 22:31:04 2011 us=153000 shared_secret_file = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=153000 key_direction = 0
Tue Oct 11 22:31:04 2011 us=153000 ciphername_defined = ENABLED
Tue Oct 11 22:31:04 2011 us=153000 ciphername = 'BF-CBC'
Tue Oct 11 22:31:04 2011 us=153000 authname_defined = ENABLED
Tue Oct 11 22:31:04 2011 us=153000 authname = 'SHA1'
Tue Oct 11 22:31:04 2011 us=153000 prng_hash = 'SHA1'
Tue Oct 11 22:31:04 2011 us=153000 prng_nonce_secret_len = 16
Tue Oct 11 22:31:04 2011 us=153000 keysize = 0
Tue Oct 11 22:31:04 2011 us=153000 engine = DISABLED
Tue Oct 11 22:31:04 2011 us=183000 replay = ENABLED
Tue Oct 11 22:31:04 2011 us=183000 mute_replay_warnings = DISABLED
Tue Oct 11 22:31:04 2011 us=183000 replay_window = 64
Tue Oct 11 22:31:04 2011 us=183000 replay_time = 15
Tue Oct 11 22:31:04 2011 us=183000 packet_id_file = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=183000 use_iv = ENABLED
Tue Oct 11 22:31:04 2011 us=183000 test_crypto = DISABLED
Tue Oct 11 22:31:04 2011 us=183000 tls_server = DISABLED
Tue Oct 11 22:31:04 2011 us=183000 tls_client = ENABLED
Tue Oct 11 22:31:04 2011 us=183000 key_method = 2
Tue Oct 11 22:31:04 2011 us=183000 ca_file = 'C:\Program Files\OpenVpn\easy-rsa\keys\ca.crt'
Tue Oct 11 22:31:04 2011 us=183000 ca_path = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=183000 dh_file = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=183000 cert_file = 'C:\Program Files\OpenVpn\easy-rsa\keys\ALANDELL.crt'
Tue Oct 11 22:31:04 2011 us=183000 priv_key_file = 'C:\Program Files\OpenVpn\easy-rsa\keys\ALANDELL.key'
Tue Oct 11 22:31:04 2011 us=224000 pkcs12_file = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=224000 cryptoapi_cert = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=224000 cipher_list = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=224000 tls_verify = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=224000 tls_export_cert = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=224000 tls_remote = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=224000 crl_file = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=224000 ns_cert_type = 64
Tue Oct 11 22:31:04 2011 us=224000 remote_cert_ku = 0
Tue Oct 11 22:31:04 2011 us=224000 remote_cert_ku = 0
Tue Oct 11 22:31:04 2011 us=224000 remote_cert_ku = 0
Tue Oct 11 22:31:04 2011 us=224000 remote_cert_ku = 0
Tue Oct 11 22:31:04 2011 us=224000 remote_cert_ku = 0
Tue Oct 11 22:31:04 2011 us=224000 remote_cert_ku = 0
Tue Oct 11 22:31:04 2011 us=224000 remote_cert_ku = 0
Tue Oct 11 22:31:04 2011 us=254000 remote_cert_ku = 0
Tue Oct 11 22:31:04 2011 us=254000 remote_cert_ku = 0
Tue Oct 11 22:31:04 2011 us=254000 remote_cert_ku = 0
Tue Oct 11 22:31:04 2011 us=254000 remote_cert_ku[i] = 0
Tue Oct 11 22:31:04 2011 us=254000 remote_cert_ku[i] = 0
Tue Oct 11 22:31:04 2011 us=254000 remote_cert_ku[i] = 0
Tue Oct 11 22:31:04 2011 us=254000 remote_cert_ku[i] = 0
Tue Oct 11 22:31:04 2011 us=254000 remote_cert_ku[i] = 0
Tue Oct 11 22:31:04 2011 us=254000 remote_cert_ku[i] = 0
Tue Oct 11 22:31:04 2011 us=254000 remote_cert_eku = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=254000 tls_timeout = 2
Tue Oct 11 22:31:04 2011 us=254000 renegotiate_bytes = 0
Tue Oct 11 22:31:04 2011 us=254000 renegotiate_packets = 0
Tue Oct 11 22:31:04 2011 us=254000 renegotiate_seconds = 3600
Tue Oct 11 22:31:04 2011 us=254000 handshake_window = 60
Tue Oct 11 22:31:04 2011 us=254000 transition_window = 3600
Tue Oct 11 22:31:04 2011 us=254000 single_session = DISABLED
Tue Oct 11 22:31:04 2011 us=294000 push_peer_info = DISABLED
Tue Oct 11 22:31:04 2011 us=294000 tls_exit = DISABLED
Tue Oct 11 22:31:04 2011 us=294000 tls_auth_file = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=294000 server_network = 0.0.0.0
Tue Oct 11 22:31:04 2011 us=294000 server_netmask = 0.0.0.0
Tue Oct 11 22:31:04 2011 us=294000 server_bridge_ip = 0.0.0.0
Tue Oct 11 22:31:04 2011 us=294000 server_bridge_netmask = 0.0.0.0
Tue Oct 11 22:31:04 2011 us=294000 server_bridge_pool_start = 0.0.0.0
Tue Oct 11 22:31:04 2011 us=294000 server_bridge_pool_end = 0.0.0.0
Tue Oct 11 22:31:04 2011 us=294000 ifconfig_pool_defined = DISABLED
Tue Oct 11 22:31:04 2011 us=294000 ifconfig_pool_start = 0.0.0.0
Tue Oct 11 22:31:04 2011 us=294000 ifconfig_pool_end = 0.0.0.0
Tue Oct 11 22:31:04 2011 us=294000 ifconfig_pool_netmask = 0.0.0.0
Tue Oct 11 22:31:04 2011 us=294000 ifconfig_pool_persist_filename = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=294000 ifconfig_pool_persist_refresh_freq = 600
Tue Oct 11 22:31:04 2011 us=324000 n_bcast_buf = 256
Tue Oct 11 22:31:04 2011 us=324000 tcp_queue_limit = 64
Tue Oct 11 22:31:04 2011 us=324000 real_hash_size = 256
Tue Oct 11 22:31:04 2011 us=324000 virtual_hash_size = 256
Tue Oct 11 22:31:04 2011 us=324000 client_connect_script = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=324000 learn_address_script = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=324000 client_disconnect_script = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=324000 client_config_dir = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=324000 ccd_exclusive = DISABLED
Tue Oct 11 22:31:04 2011 us=324000 tmp_dir = 'C:\DOCUME~1\ALANRE~1\LOCALS~1\Temp\'
Tue Oct 11 22:31:04 2011 us=324000 push_ifconfig_defined = DISABLED
Tue Oct 11 22:31:04 2011 us=324000 push_ifconfig_local = 0.0.0.0
Tue Oct 11 22:31:04 2011 us=324000 push_ifconfig_remote_netmask = 0.0.0.0
Tue Oct 11 22:31:04 2011 us=324000 enable_c2c = DISABLED
Tue Oct 11 22:31:04 2011 us=324000 duplicate_cn = DISABLED
Tue Oct 11 22:31:04 2011 us=354000 cf_max = 0
Tue Oct 11 22:31:04 2011 us=354000 cf_per = 0
Tue Oct 11 22:31:04 2011 us=354000 max_clients = 1024
Tue Oct 11 22:31:04 2011 us=354000 max_routes_per_client = 256
Tue Oct 11 22:31:04 2011 us=354000 auth_user_pass_verify_script = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=354000 auth_user_pass_verify_script_via_file = DISABLED
Tue Oct 11 22:31:04 2011 us=354000 ssl_flags = 0
Tue Oct 11 22:31:04 2011 us=354000 client = ENABLED
Tue Oct 11 22:31:04 2011 us=354000 pull = ENABLED
Tue Oct 11 22:31:04 2011 us=354000 auth_user_pass_file = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=354000 show_net_up = DISABLED
Tue Oct 11 22:31:04 2011 us=354000 route_method = 2
Tue Oct 11 22:31:04 2011 us=354000 ip_win32_defined = ENABLED
Tue Oct 11 22:31:04 2011 us=354000 ip_win32_type = 1
Tue Oct 11 22:31:04 2011 us=354000 dhcp_masq_offset = 0
Tue Oct 11 22:31:04 2011 us=354000 dhcp_lease_time = 31536000
Tue Oct 11 22:31:04 2011 us=394000 tap_sleep = 0
Tue Oct 11 22:31:04 2011 us=394000 dhcp_options = DISABLED
Tue Oct 11 22:31:04 2011 us=394000 dhcp_renew = DISABLED
Tue Oct 11 22:31:04 2011 us=394000 dhcp_pre_release = DISABLED
Tue Oct 11 22:31:04 2011 us=394000 dhcp_release = DISABLED
Tue Oct 11 22:31:04 2011 us=394000 domain = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=394000 netbios_scope = '[UNDEF]'
Tue Oct 11 22:31:04 2011 us=394000 netbios_node_type = 0
Tue Oct 11 22:31:04 2011 us=394000 disable_nbt = DISABLED
Tue Oct 11 22:31:04 2011 us=394000 OpenVPN 2.2.1 Win32-MSVC++ [SSL] [LZO2] built on Jul 1 2011
Tue Oct 11 22:31:04 2011 us=394000 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Tue Oct 11 22:31:04 2011 us=814000 LZO compression initialized
Tue Oct 11 22:31:04 2011 us=814000 Control Channel MTU parms [ L:1574 D:138 EF:38 EB:0 ET:0 EL:0 ]
Tue Oct 11 22:31:04 2011 us=824000 Socket Buffers: R=[8192->8192] S=[8192->8192]
Tue Oct 11 22:31:04 2011 us=824000 Data Channel MTU parms [ L:1574 D:1450 EF:42 EB:135 ET:32 EL:0 AF:3/1 ]
Tue Oct 11 22:31:04 2011 us=824000 Local Options String: 'V4,dev-type tap,link-mtu 1574,tun-mtu 1532,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Tue Oct 11 22:31:04 2011 us=824000 Expected Remote Options String: 'V4,dev-type tap,link-mtu 1574,tun-mtu 1532,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Tue Oct 11 22:31:04 2011 us=824000 Local Options hash (VER=V4): 'd79ca330'
Tue Oct 11 22:31:04 2011 us=824000 Expected Remote Options hash (VER=V4): 'f7df56b8'
Tue Oct 11 22:31:04 2011 us=844000 UDPv4 link local: [undef]
Tue Oct 11 22:31:04 2011 us=844000 UDPv4 link remote: 92.xx.xx.xx:1194
Tue Oct 11 22:31:04 2011 us=925000 TLS: Initial packet from 92.xx.xx.xx:1194, sid=64185a33 bd7f3e54
Tue Oct 11 22:31:05 2011 us=265000 VERIFY OK: depth=1, /C=UK/ST=WM/L=WALSALL/O=OpenVPN/CN=OPENVPN-ADMIN/emailAddress=alan.reeves@xxxxl.co.uk
Tue Oct 11 22:31:05 2011 us=275000 VERIFY OK: nsCertType=SERVER
Tue Oct 11 22:31:05 2011 us=275000 VERIFY OK: depth=0, /C=UK/ST=WM/L=WALSALL/O=OpenVPN/CN=server/emailAddress=alan.reeves@xxxxx.co.uk
Tue Oct 11 22:31:06 2011 us=6000 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
Tue Oct 11 22:31:06 2011 us=6000 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Tue Oct 11 22:31:06 2011 us=6000 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
Tue Oct 11 22:31:06 2011 us=6000 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Tue Oct 11 22:31:06 2011 us=6000 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
Tue Oct 11 22:31:06 2011 us=6000 [server] Peer Connection Initiated with 92.xx.xx.xx:1194
Tue Oct 11 22:31:09 2011 us=10000 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
Tue Oct 11 22:31:09 2011 us=81000 PUSH: Received control message: 'PUSH_REPLY,dhcp-option DNS 208.67.222.222,dhcp-option DNS 208.67.220.220,route-gateway 192.168.1.77,ping 10,ping-restart 120,ifconfig 192.168.1.128 255.255.255.0'
Tue Oct 11 22:31:09 2011 us=81000 OPTIONS IMPORT: timers and/or timeouts modified
Tue Oct 11 22:31:09 2011 us=81000 OPTIONS IMPORT: --ifconfig/up options modified
Tue Oct 11 22:31:09 2011 us=81000 OPTIONS IMPORT: route-related options modified
Tue Oct 11 22:31:09 2011 us=81000 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Tue Oct 11 22:31:09 2011 us=131000 WARNING: potential TUN/TAP adapter subnet conflict between local LAN [192.168.1.0/255.255.255.0] and remote VPN [192.168.1.0/255.255.255.0]
Tue Oct 11 22:31:10 2011 us=132000 NETSH: C:\WINDOWS\system32\netsh.exe interface ip set address MYTAP static 192.168.1.128 255.255.255.0
Ok.
Tue Oct 11 22:31:15 2011 us=780000 NETSH: C:\WINDOWS\system32\netsh.exe interface ip delete dns MYTAP all
Ok.
Tue Oct 11 22:31:20 2011 us=26000 NETSH: C:\WINDOWS\system32\netsh.exe interface ip set dns MYTAP static 208.67.222.222
Ok.
Tue Oct 11 22:31:24 2011 us=222000 NETSH: C:\WINDOWS\system32\netsh.exe interface ip add dns MYTAP 208.67.220.220
Ok.
Tue Oct 11 22:31:28 2011 us=248000 NETSH: C:\WINDOWS\system32\netsh.exe interface ip delete wins MYTAP all
Ok.
Tue Oct 11 22:31:31 2011 us=483000 TAP-WIN32 device [MYTAP] opened: \\.\Global\{7612A439-13FF-454F-A49C-10880FA146C1}.tap
Tue Oct 11 22:31:31 2011 us=483000 TAP-Win32 Driver Version 9.8
Tue Oct 11 22:31:31 2011 us=493000 TAP-Win32 MTU=1500
Tue Oct 11 22:31:31 2011 us=493000 Successful ARP Flush on interface [131075] {7612A439-13FF-454F-A49C-10880FA146C1}
Tue Oct 11 22:31:42 2011 us=8000 TEST ROUTES: 0/0 succeeded len=-1 ret=1 a=0 u/d=up
Tue Oct 11 22:31:42 2011 us=8000 Initialization Sequence Completed

Once again, many thanks
Alan
P.s You'll see a message about a potential subnet conflict. I know about this, but I don't get a problem with this with my WIN7 client

[alanreeves]

Hi,
Any suggestions for lines of investigation I can pursue would be most welcome. I'm completely stuck at the moment.

Thanks
Alan Reeves

[Douglas]

Hi,
Any suggestions for lines of investigation I can pursue would be most welcome. I'm completely stuck at the moment.

Thanks
Alan Reeves

You said there isn't a firewall on the RDP target, correct?

What about a firewall on the XP machine?

[alanreeves]

I've disabled the firewall on the client XP machine. There is a firewall on the XP machine running the OPENVPN server, but, as I say, WIN 7 has no problem with ping or RDP to this machine.

Alan

[frankgtl]

check out viewtopic.php?f=30&t=9154&p=17201&e=17201

the link from Microsoft at the bottom fixed my drop connection issues

[alanreeves]

Hello Frankgtl
Thank you very much for your post. The hotfix you pointed me to has indeed fixed my problem, and my VPN now works fine on WIN XP SP3. I appreciate your taking the trouble to help me out.

Regards
Alan Reeves

[Passion]

Hi guys, thank you and appreciate so much for your sharing. I really benefited from your experience to fix the problem.