The setup was successful, My client computers can connect to the VPN server and open the shared folders on the server. But I noticed the server will disconnect itself when no client was connected, which is a PITA because servers are supposed to wait for client connections, and they cannot disconnect themselves.
When the client is connected, the server stays connected. When clients disconnected, the server disconnects itself within an hour
Here's the log when the server first connects, and then disconnect itself after 40 seconds.
Code: Select all
Fri Jul 12 12:51:51 2013 OpenVPN 2.3.2 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [PKCS11] [eurephia] [IPv6] built on Jun 3 2013
Enter Management Password:
Fri Jul 12 12:51:51 2013 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:25340
Fri Jul 12 12:51:51 2013 Need hold release from management interface, waiting...
Fri Jul 12 12:51:51 2013 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:25340
Fri Jul 12 12:51:51 2013 MANAGEMENT: CMD 'state on'
Fri Jul 12 12:51:51 2013 MANAGEMENT: CMD 'log all on'
Fri Jul 12 12:51:51 2013 MANAGEMENT: CMD 'hold off'
Fri Jul 12 12:51:51 2013 MANAGEMENT: CMD 'hold release'
Fri Jul 12 12:51:51 2013 WARNING: --ifconfig-pool-persist will not work with --duplicate-cn
Fri Jul 12 12:51:51 2013 Diffie-Hellman initialized with 2048 bit key
Fri Jul 12 12:51:54 2013 MANAGEMENT: CMD 'password [...]'
Fri Jul 12 12:51:54 2013 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Fri Jul 12 12:51:55 2013 Control Channel Authentication: using 'jla.key' as a OpenVPN static key file
Fri Jul 12 12:51:55 2013 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Fri Jul 12 12:51:55 2013 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Fri Jul 12 12:51:55 2013 Socket Buffers: R=[8192->8192] S=[8192->8192]
Fri Jul 12 12:51:55 2013 do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
Fri Jul 12 12:51:55 2013 MANAGEMENT: >STATE:1373604715,ASSIGN_IP,,10.8.0.1,
Fri Jul 12 12:51:55 2013 open_tun, tt->ipv6=0
Fri Jul 12 12:51:55 2013 TAP-WIN32 device [Local Area Connection 3] opened: \\.\Global\{EB31E9D4-A25E-44F7-BC53-88192434A3AC}.tap
Fri Jul 12 12:51:55 2013 TAP-Windows Driver Version 9.9
Fri Jul 12 12:51:55 2013 Notified TAP-Windows driver to set a DHCP IP/netmask of 10.8.0.1/255.255.255.252 on interface {EB31E9D4-A25E-44F7-BC53-88192434A3AC} [DHCP-serv: 10.8.0.2, lease-time: 31536000]
Fri Jul 12 12:51:55 2013 Sleeping for 10 seconds...
Fri Jul 12 12:52:05 2013 Successful ARP Flush on interface [13] {EB31E9D4-A25E-44F7-BC53-88192434A3AC}
Fri Jul 12 12:52:05 2013 MANAGEMENT: >STATE:1373604725,ADD_ROUTES,,,
Fri Jul 12 12:52:05 2013 C:\Windows\system32\route.exe ADD 10.8.0.0 MASK 255.255.255.0 10.8.0.2
Fri Jul 12 12:52:05 2013 ROUTE: CreateIpForwardEntry succeeded with dwForwardMetric1=30 and dwForwardType=4
Fri Jul 12 12:52:05 2013 Route addition via IPAPI succeeded [adaptive]
Fri Jul 12 12:52:05 2013 UDPv4 link local (bound): [AF_INET](my_ip_address):(my_port)
Fri Jul 12 12:52:05 2013 UDPv4 link remote: [undef]
Fri Jul 12 12:52:05 2013 MULTI: multi_init called, r=256 v=256
Fri Jul 12 12:52:05 2013 IFCONFIG POOL: base=10.8.0.4 size=62, ipv6=0
Fri Jul 12 12:52:05 2013 ifconfig_pool_read(), in='Louis Li,10.8.0.4', TODO: IPv6
Fri Jul 12 12:52:05 2013 succeeded -> ifconfig_pool_set()
Fri Jul 12 12:52:05 2013 IFCONFIG POOL LIST
Fri Jul 12 12:52:05 2013 Louis Li,10.8.0.4
Fri Jul 12 12:52:05 2013 Initialization Sequence Completed
Fri Jul 12 12:52:05 2013 MANAGEMENT: >STATE:1373604725,CONNECTED,SUCCESS,10.8.0.1,
Fri Jul 12 12:52:46 2013 C:\Windows\system32\route.exe DELETE 10.8.0.0 MASK 255.255.255.0 10.8.0.2
Fri Jul 12 12:52:46 2013 Route deletion via IPAPI succeeded [adaptive]
Fri Jul 12 12:52:46 2013 Closing TUN/TAP interface
Fri Jul 12 12:52:46 2013 SIGTERM[hard,] received, process exiting
Fri Jul 12 12:52:46 2013 MANAGEMENT: >STATE:1373604766,EXITING,SIGTERM,,
Code: Select all
Fri Jul 12 11:45:36 2013 OpenVPN 2.3.2 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [PKCS11] [eurephia] [IPv6] built on Jun 3 2013
Enter Management Password:
Fri Jul 12 11:45:37 2013 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:25340
Fri Jul 12 11:45:37 2013 Need hold release from management interface, waiting...
Fri Jul 12 11:45:37 2013 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:25340
Fri Jul 12 11:45:37 2013 MANAGEMENT: CMD 'state on'
Fri Jul 12 11:45:37 2013 MANAGEMENT: CMD 'log all on'
Fri Jul 12 11:45:37 2013 MANAGEMENT: CMD 'hold off'
Fri Jul 12 11:45:37 2013 MANAGEMENT: CMD 'hold release'
Fri Jul 12 11:45:37 2013 Diffie-Hellman initialized with 2048 bit key
Fri Jul 12 11:45:37 2013 Control Channel Authentication: using 'jla.key' as a OpenVPN static key file
Fri Jul 12 11:45:37 2013 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Fri Jul 12 11:45:37 2013 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Fri Jul 12 11:45:37 2013 Socket Buffers: R=[8192->8192] S=[8192->8192]
Fri Jul 12 11:45:37 2013 do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
Fri Jul 12 11:45:37 2013 MANAGEMENT: >STATE:1373600737,ASSIGN_IP,,10.8.0.1,
Fri Jul 12 11:45:37 2013 open_tun, tt->ipv6=0
Fri Jul 12 11:45:37 2013 TAP-WIN32 device [Local Area Connection 3] opened: \\.\Global\{EB31E9D4-A25E-44F7-BC53-88192434A3AC}.tap
Fri Jul 12 11:45:37 2013 TAP-Windows Driver Version 9.9
Fri Jul 12 11:45:37 2013 Notified TAP-Windows driver to set a DHCP IP/netmask of 10.8.0.1/255.255.255.252 on interface {EB31E9D4-A25E-44F7-BC53-88192434A3AC} [DHCP-serv: 10.8.0.2, lease-time: 31536000]
Fri Jul 12 11:45:37 2013 Sleeping for 10 seconds...
Fri Jul 12 11:45:47 2013 Successful ARP Flush on interface [13] {EB31E9D4-A25E-44F7-BC53-88192434A3AC}
Fri Jul 12 11:45:47 2013 MANAGEMENT: >STATE:1373600747,ADD_ROUTES,,,
Fri Jul 12 11:45:47 2013 C:\Windows\system32\route.exe ADD 10.8.0.0 MASK 255.255.255.0 10.8.0.2
Fri Jul 12 11:45:47 2013 ROUTE: CreateIpForwardEntry succeeded with dwForwardMetric1=30 and dwForwardType=4
Fri Jul 12 11:45:47 2013 Route addition via IPAPI succeeded [adaptive]
Fri Jul 12 11:45:47 2013 UDPv4 link local (bound): [AF_INET](my_ip_address):(my_port)
Fri Jul 12 11:45:47 2013 UDPv4 link remote: [undef]
Fri Jul 12 11:45:47 2013 MULTI: multi_init called, r=256 v=256
Fri Jul 12 11:45:47 2013 IFCONFIG POOL: base=10.8.0.4 size=62, ipv6=0
Fri Jul 12 11:45:47 2013 ifconfig_pool_read(), in='Louis Li,10.8.0.4', TODO: IPv6
Fri Jul 12 11:45:47 2013 succeeded -> ifconfig_pool_set()
Fri Jul 12 11:45:47 2013 IFCONFIG POOL LIST
Fri Jul 12 11:45:47 2013 Louis Li,10.8.0.4
Fri Jul 12 11:45:47 2013 Initialization Sequence Completed
Fri Jul 12 11:45:47 2013 MANAGEMENT: >STATE:1373600747,CONNECTED,SUCCESS,10.8.0.1,
Fri Jul 12 11:50:15 2013 192.168.1.108:52582 TLS: Initial packet from [AF_INET]192.168.1.108:52582, sid=0b55ede2 3388e4ac
Fri Jul 12 11:50:29 2013 192.168.1.108:52582 VERIFY OK: (my_cert_info)
Fri Jul 12 11:50:29 2013 192.168.1.108:52582 VERIFY OK: (my_cert_info)
Fri Jul 12 11:50:32 2013 192.168.1.108:52582 Data Channel Encrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
Fri Jul 12 11:50:32 2013 192.168.1.108:52582 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Fri Jul 12 11:50:32 2013 192.168.1.108:52582 Data Channel Decrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
Fri Jul 12 11:50:32 2013 192.168.1.108:52582 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Fri Jul 12 11:50:32 2013 192.168.1.108:52582 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA
Fri Jul 12 11:50:32 2013 192.168.1.108:52582 [Louis Li] Peer Connection Initiated with [AF_INET]192.168.1.108:52582
Fri Jul 12 11:50:32 2013 Louis Li/192.168.1.108:52582 MULTI_sva: pool returned IPv4=10.8.0.6, IPv6=(Not enabled)
Fri Jul 12 11:50:32 2013 Louis Li/192.168.1.108:52582 MULTI: Learn: 10.8.0.6 -> Louis Li/192.168.1.108:52582
Fri Jul 12 11:50:32 2013 Louis Li/192.168.1.108:52582 MULTI: primary virtual IP for Louis Li/192.168.1.108:52582: 10.8.0.6
Fri Jul 12 11:50:34 2013 Louis Li/192.168.1.108:52582 PUSH: Received control message: 'PUSH_REQUEST'
Fri Jul 12 11:50:34 2013 Louis Li/192.168.1.108:52582 send_push_reply(): safe_cap=940
Fri Jul 12 11:50:34 2013 Louis Li/192.168.1.108:52582 SENT CONTROL [Louis Li]: 'PUSH_REPLY,route 10.8.0.1,topology net30,ping 10,ping-restart 120,ifconfig 10.8.0.6 10.8.0.5' (status=1)
Fri Jul 12 11:57:57 2013 read UDPv4: Connection reset by peer (WSAECONNRESET) (code=10054)
Fri Jul 12 11:58:07 2013 read UDPv4: Connection reset by peer (WSAECONNRESET) (code=10054)
Fri Jul 12 11:58:18 2013 read UDPv4: Connection reset by peer (WSAECONNRESET) (code=10054)
Fri Jul 12 11:58:28 2013 read UDPv4: Connection reset by peer (WSAECONNRESET) (code=10054)
Fri Jul 12 11:58:38 2013 read UDPv4: Connection reset by peer (WSAECONNRESET) (code=10054)
Fri Jul 12 12:01:47 2013 Louis Li/192.168.1.108:52582 [Louis Li] Inactivity timeout (--ping-restart), restarting
Fri Jul 12 12:01:47 2013 Louis Li/192.168.1.108:52582 SIGUSR1[soft,ping-restart] received, client-instance restarting
Fri Jul 12 12:05:54 2013 192.168.1.106:49474 TLS: Initial packet from [AF_INET]192.168.1.106:49474, sid=fa03948a 76e45e03
Fri Jul 12 12:05:54 2013 192.168.1.106:49474 VERIFY OK: (my_cert_info)
Fri Jul 12 12:05:54 2013 192.168.1.106:49474 VERIFY OK: (my_cert_info)
Fri Jul 12 12:05:54 2013 192.168.1.106:49474 Data Channel Encrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
Fri Jul 12 12:05:54 2013 192.168.1.106:49474 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Fri Jul 12 12:05:54 2013 192.168.1.106:49474 Data Channel Decrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
Fri Jul 12 12:05:54 2013 192.168.1.106:49474 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Fri Jul 12 12:05:54 2013 192.168.1.106:49474 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA
Fri Jul 12 12:05:54 2013 192.168.1.106:49474 [Louis Li] Peer Connection Initiated with [AF_INET]192.168.1.106:49474
Fri Jul 12 12:05:54 2013 Louis Li/192.168.1.106:49474 MULTI_sva: pool returned IPv4=10.8.0.6, IPv6=(Not enabled)
Fri Jul 12 12:05:54 2013 Louis Li/192.168.1.106:49474 MULTI: Learn: 10.8.0.6 -> Louis Li/192.168.1.106:49474
Fri Jul 12 12:05:54 2013 Louis Li/192.168.1.106:49474 MULTI: primary virtual IP for Louis Li/192.168.1.106:49474: 10.8.0.6
Fri Jul 12 12:05:56 2013 Louis Li/192.168.1.106:49474 PUSH: Received control message: 'PUSH_REQUEST'
Fri Jul 12 12:05:56 2013 Louis Li/192.168.1.106:49474 send_push_reply(): safe_cap=940
Fri Jul 12 12:05:56 2013 Louis Li/192.168.1.106:49474 SENT CONTROL [Louis Li]: 'PUSH_REPLY,route 10.8.0.1,topology net30,ping 10,ping-restart 120,ifconfig 10.8.0.6 10.8.0.5' (status=1)
Fri Jul 12 12:37:11 2013 read UDPv4: Connection reset by peer (WSAECONNRESET) (code=10054)
Fri Jul 12 12:37:21 2013 read UDPv4: Connection reset by peer (WSAECONNRESET) (code=10054)
Fri Jul 12 12:37:31 2013 read UDPv4: Connection reset by peer (WSAECONNRESET) (code=10054)
Fri Jul 12 12:37:41 2013 read UDPv4: Connection reset by peer (WSAECONNRESET) (code=10054)
Fri Jul 12 12:37:51 2013 read UDPv4: Connection reset by peer (WSAECONNRESET) (code=10054)
Fri Jul 12 12:38:01 2013 read UDPv4: Connection reset by peer (WSAECONNRESET) (code=10054)
Fri Jul 12 12:38:11 2013 read UDPv4: Connection reset by peer (WSAECONNRESET) (code=10054)
Fri Jul 12 12:38:22 2013 read UDPv4: Connection reset by peer (WSAECONNRESET) (code=10054)
Fri Jul 12 12:38:32 2013 read UDPv4: Connection reset by peer (WSAECONNRESET) (code=10054)
Fri Jul 12 12:38:42 2013 read UDPv4: Connection reset by peer (WSAECONNRESET) (code=10054)
Fri Jul 12 12:38:52 2013 read UDPv4: Connection reset by peer (WSAECONNRESET) (code=10054)
Fri Jul 12 12:39:02 2013 read UDPv4: Connection reset by peer (WSAECONNRESET) (code=10054)
Fri Jul 12 12:39:12 2013 read UDPv4: Connection reset by peer (WSAECONNRESET) (code=10054)
Fri Jul 12 12:39:22 2013 read UDPv4: Connection reset by peer (WSAECONNRESET) (code=10054)
Fri Jul 12 12:39:33 2013 read UDPv4: Connection reset by peer (WSAECONNRESET) (code=10054)
Fri Jul 12 12:39:43 2013 read UDPv4: Connection reset by peer (WSAECONNRESET) (code=10054)
Fri Jul 12 12:39:53 2013 read UDPv4: Connection reset by peer (WSAECONNRESET) (code=10054)
Fri Jul 12 12:40:03 2013 read UDPv4: Connection reset by peer (WSAECONNRESET) (code=10054)
Fri Jul 12 12:40:14 2013 read UDPv4: Connection reset by peer (WSAECONNRESET) (code=10054)
Fri Jul 12 12:40:24 2013 read UDPv4: Connection reset by peer (WSAECONNRESET) (code=10054)
Fri Jul 12 12:40:25 2013 Louis Li/192.168.1.106:49474 [Louis Li] Inactivity timeout (--ping-restart), restarting
Fri Jul 12 12:40:25 2013 Louis Li/192.168.1.106:49474 SIGUSR1[soft,ping-restart] received, client-instance restarting
Fri Jul 12 12:51:46 2013 C:\Windows\system32\route.exe DELETE 10.8.0.0 MASK 255.255.255.0 10.8.0.2
Fri Jul 12 12:51:46 2013 Route deletion via IPAPI succeeded [adaptive]
Fri Jul 12 12:51:46 2013 Closing TUN/TAP interface
Fri Jul 12 12:51:46 2013 SIGTERM[hard,] received, process exiting
Fri Jul 12 12:51:46 2013 MANAGEMENT: >STATE:1373604706,EXITING,SIGTERM,,
Here's my server config:
Code: Select all
local (my_ip_address)
port (my_port)
proto udp
dev tun
ca ca.crt
cert server.crt
key server.key # This file should be kept secret
dh dh2048.pem
server 10.8.0.0 255.255.255.0
ifconfig-pool-persist ipp.txt
duplicate-cn
keepalive 10 120
inactive 30
tls-auth jla.key 0 # This file is secret
cipher AES-128-CBC # AES
comp-lzo
persist-key
persist-tun
status openvpn-status.log
log-append openvpn.log
verb 3
Thank you very much.