Android DNS Problem

Official client software for OpenVPN Access Server and OpenVPN Cloud.
Post Reply
Wuerzminister
OpenVpn Newbie
Posts: 11
Joined: Tue Apr 14, 2015 1:41 pm

Android DNS Problem

Post by Wuerzminister » Tue Apr 14, 2015 10:11 pm

Hi guys!
I am using the OpenVPN Server on my Synology DS215j. It is connected to my Arris Router. I have a no-ip address.
When I connect with my Windows 8.1 Notebook i can use the local network normally. When i use the Internet on my Notebook the traffic doesnt go over the tunnel as expected.
If i change the config and redirect the gateway with this command (client): "redirect-gateway" and "dhcp-option "DNS 8.8.8.8" the whole traffic goes over the tunnel. As expected.

But I have troubles with my Android Smartphone (Samsung Galaxy Note 3 - Android 5.0). If i use "redirect-gateway" and "dhcp-option "DNS 8.8.8.8" the whole traffic goes over the tunnel.
But if I use none of the two options the DNS Service is not working. I can connect to google with the ip-Address. But i am not sure if the traffic goes over the tunnel or not.
How can i configure the client/server, that my Android Smartphone is working correctly? I want to use my home-network over vpn and parallel the "normal" internet as on the notebook to achieve a higher speed?

This is my server config:

Code: Select all

push "route 192.168.0.0 255.255.255.0"
push "route 10.8.0.0 255.255.255.0"
dev tun

management 127.0.0.1 1195

server 10.8.0.0 255.255.255.0


dh /var/packages/VPNCenter/target/etc/openvpn/keys/dh1024.pem
ca /var/packages/VPNCenter/target/etc/openvpn/keys/ca.crt
cert /var/packages/VPNCenter/target/etc/openvpn/keys/server.crt
key /var/packages/VPNCenter/target/etc/openvpn/keys/server.key

max-clients 3

comp-lzo

persist-tun
persist-key

verb 3

#log-append /var/log/openvpn.log

keepalive 10 60
reneg-sec 0

plugin /var/packages/VPNCenter/target/lib/radiusplugin.so /var/packages/VPNCenter/target/etc/openvpn/radiusplugin.cnf
client-cert-not-required
username-as-common-name
duplicate-cn

status /tmp/ovpn_status_2_result 30
status-version 2
proto udp6
port 1194

This is my client config (without redirect or dns):

Code: Select all

dev tun
tls-client

remote "my external no-ip address" 1194




#redirect-gateway
#dhcp-option DNS DNS_IP_ADDRESS

pull

proto udp

script-security 2

ca ca.crt

comp-lzo

reneg-sec 0

auth-user-pass

I hope you can help me!
Kind Regards!
Wuerzminister
Top
User avatar
Traffic
OpenVPN Protagonist
Posts: 4066
Joined: Sat Aug 09, 2014 11:24 am

Re: Android DNS Problem

Post by Traffic » Wed Apr 15, 2015 3:57 pm

FYI:
  • NOTE: your local LAN uses the extremely common subnet address 192.168.0.x or 192.168.1.x. Be aware that this might create routing conflicts if you connect to the VPN server from public locations such as internet cafes that use the same subnet.
Possibly you are having a conflict ..
Top
Wuerzminister
OpenVpn Newbie
Posts: 11
Joined: Tue Apr 14, 2015 1:41 pm

Re: Android DNS Problem

Post by Wuerzminister » Wed Apr 15, 2015 4:18 pm

Hi,
thanks for your answer. But i have only connected from networks with different range...
Maybe I will change my local ip-range for the future.
But I think the main problem is the DNS Server...
A friend of mine has the exact same problem. If he redirects the whole traffic it works. On his notebook it also works without redirecting, same as mine.
Regards
Top
User avatar
Traffic
OpenVPN Protagonist
Posts: 4066
Joined: Sat Aug 09, 2014 11:24 am

Re: Android DNS Problem

Post by Traffic » Thu Apr 16, 2015 12:01 pm

As far as I can tell your VPN is working correctly .. please try to explain the problem only.
Top
Wuerzminister
OpenVpn Newbie
Posts: 11
Joined: Tue Apr 14, 2015 1:41 pm

Re: Android DNS Problem

Post by Wuerzminister » Thu Apr 16, 2015 4:15 pm

Hi!
I want to use the VPN Connection to stream for example music with my smartphone from the NAS and also use it as a cloud. But i don't want to tunnel all the traffic! Only the data between my NAS and my Smartphone. The rest shouldnt go over the VPN.
If i use my notebook it is no problem. I can use the bigger speed from university internet for example and stream from my NAS at the same time.

Kind Regards
Wuerzminister
Top
User avatar
Traffic
OpenVPN Protagonist
Posts: 4066
Joined: Sat Aug 09, 2014 11:24 am

Re: Android DNS Problem

Post by Traffic » Thu Apr 16, 2015 4:50 pm

Wuerzminister wrote:i don't want to tunnel all the traffic! Only the data between my NAS and my Smartphone
disable redirect-gateway for your phone .. then can you ping your NAS from your phone over the vpn ?
Top
Wuerzminister
OpenVpn Newbie
Posts: 11
Joined: Tue Apr 14, 2015 1:41 pm

Re: Android DNS Problem

Post by Wuerzminister » Thu Apr 16, 2015 5:13 pm

Hi!
I have disabled it right now. I can ping my NAS and use it, also my router. I can also ping 8.8.8.8. But i can not browse because of an DNS failure. Maybe an android specific unsolvable problem (without root?). When i traceroute after the 4th station there is no answer (Mobile Network).

If i enable the redirect and use traceroute i can clearly see that the traffic goes over my router at home (also Mobile Network).

Kind Regards!
Top
User avatar
Traffic
OpenVPN Protagonist
Posts: 4066
Joined: Sat Aug 09, 2014 11:24 am

Re: Android DNS Problem

Post by Traffic » Thu Apr 16, 2015 7:01 pm

If you can ping 8.8.8.8 (google DNS) from your phone while connected to your VPN then you can use it for DNS.

What you actually want is only to use your VPN for access to your private LAN while elsewhere.

This is the HOWTO you need to read:
HOWTO: Expanding the scope of the VPN to include additional machines
Top
Wuerzminister
OpenVpn Newbie
Posts: 11
Joined: Tue Apr 14, 2015 1:41 pm

Re: Android DNS Problem

Post by Wuerzminister » Thu Apr 16, 2015 7:15 pm

I can't get it working :(
It should work already with the standard config from my NAS i think.
I assume thats an android problem. On my notebook it is working...
But thanks for your answers!
Kind Regards!
Top
User avatar
Traffic
OpenVPN Protagonist
Posts: 4066
Joined: Sat Aug 09, 2014 11:24 am

Re: Android DNS Problem

Post by Traffic » Thu Apr 16, 2015 7:39 pm

Take your VPN out of the equation ..

Can you browse the internet on your phone without the VPN ?
What DNS server does your phone have without the VPN active ?
Top
Wuerzminister
OpenVpn Newbie
Posts: 11
Joined: Tue Apr 14, 2015 1:41 pm

Re: Android DNS Problem

Post by Wuerzminister » Thu Apr 16, 2015 7:57 pm

Sure - i can browse without the vpn 8-)
When i am connected with the mobile network the DNS server from my Provider.
When i am connected with wlan in the university the DNS server from the University. (Same as on the notebook).
It does not make any difference if i change it.
Top
User avatar
Traffic
OpenVPN Protagonist
Posts: 4066
Joined: Sat Aug 09, 2014 11:24 am

Re: Android DNS Problem

Post by Traffic » Thu Apr 16, 2015 9:17 pm

If your client can resolve your VPN server no-ip name to an address then DNS is working.

Do not use any push "dhcp-option DNS x.x.x.x" from your server and remove from client config.
Do not use any push "redirect-gateway ..." from your server and remove from client config.

The only thing you need is to push the route of your server LAN to the client.
Server config: push "route 192.168.0.0 255.255.255.0"
* Remember that route 192.168.0.0 is a possible route conflict *

I do this all the time .. it is easy :mrgreen:
You need to double check your config files
Re-post your configs if necessary ..
Top
Wuerzminister
OpenVpn Newbie
Posts: 11
Joined: Tue Apr 14, 2015 1:41 pm

Re: Android DNS Problem

Post by Wuerzminister » Fri Apr 17, 2015 5:12 pm

Hi,
i have double checked my config files. Same as in first post. I also tried to remove the push "route 10.8.0.0 255.255.255.0". Doesnt make any difference.
Kind regards.
Top
User avatar
Traffic
OpenVPN Protagonist
Posts: 4066
Joined: Sat Aug 09, 2014 11:24 am

Re: Android DNS Problem

Post by Traffic » Fri Apr 17, 2015 7:31 pm

Please post your CURRENT server and client logs at --verb 4

Traffic wrote:This is the HOWTO you need to read:
HOWTO: Expanding the scope of the VPN to include additional machines
Top
Wuerzminister
OpenVpn Newbie
Posts: 11
Joined: Tue Apr 14, 2015 1:41 pm

Re: Android DNS Problem

Post by Wuerzminister » Sun Apr 19, 2015 12:06 pm

Server log:

Sun Apr 19 13:49:54 2015 us=259378 Current Parameter Settings:
Sun Apr 19 13:49:54 2015 us=259963 config = 'openvpn.conf'
Sun Apr 19 13:49:54 2015 us=260076 mode = 1
Sun Apr 19 13:49:54 2015 us=260149 persist_config = DISABLED
Sun Apr 19 13:49:54 2015 us=260211 persist_mode = 1
Sun Apr 19 13:49:54 2015 us=260267 show_ciphers = DISABLED
Sun Apr 19 13:49:54 2015 us=260320 show_digests = DISABLED
Sun Apr 19 13:49:54 2015 us=260374 show_engines = DISABLED
Sun Apr 19 13:49:54 2015 us=260426 genkey = DISABLED
Sun Apr 19 13:49:54 2015 us=260480 key_pass_file = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=260553 show_tls_ciphers = DISABLED
Sun Apr 19 13:49:54 2015 us=260641 Connection profiles [default]:
Sun Apr 19 13:49:54 2015 us=260729 proto = udp6
Sun Apr 19 13:49:54 2015 us=260816 local = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=260887 local_port = 1194
Sun Apr 19 13:49:54 2015 us=260943 remote = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=260997 remote_port = 1194
Sun Apr 19 13:49:54 2015 us=261050 remote_float = DISABLED
Sun Apr 19 13:49:54 2015 us=261103 bind_defined = DISABLED
Sun Apr 19 13:49:54 2015 us=261156 bind_local = ENABLED
Sun Apr 19 13:49:54 2015 us=261211 connect_retry_seconds = 5
Sun Apr 19 13:49:54 2015 us=261263 connect_timeout = 10
Sun Apr 19 13:49:54 2015 us=261317 connect_retry_max = 0
Sun Apr 19 13:49:54 2015 us=261372 socks_proxy_server = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=261428 socks_proxy_port = 0
Sun Apr 19 13:49:54 2015 us=261480 socks_proxy_retry = DISABLED
Sun Apr 19 13:49:54 2015 us=261533 tun_mtu = 1500
Sun Apr 19 13:49:54 2015 us=261584 tun_mtu_defined = ENABLED
Sun Apr 19 13:49:54 2015 us=261637 link_mtu = 1500
Sun Apr 19 13:49:54 2015 us=261689 link_mtu_defined = DISABLED
Sun Apr 19 13:49:54 2015 us=261741 tun_mtu_extra = 0
Sun Apr 19 13:49:54 2015 us=261794 tun_mtu_extra_defined = DISABLED
Sun Apr 19 13:49:54 2015 us=261847 mtu_discover_type = -1
Sun Apr 19 13:49:54 2015 us=261900 fragment = 0
Sun Apr 19 13:49:54 2015 us=261953 mssfix = 1450
Sun Apr 19 13:49:54 2015 us=262006 explicit_exit_notification = 0
Sun Apr 19 13:49:54 2015 us=262080 Connection profiles END
Sun Apr 19 13:49:54 2015 us=262160 remote_random = DISABLED
Sun Apr 19 13:49:54 2015 us=262222 ipchange = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=262277 dev = 'tun'
Sun Apr 19 13:49:54 2015 us=262331 dev_type = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=262383 dev_node = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=262434 lladdr = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=262487 topology = 1
Sun Apr 19 13:49:54 2015 us=262542 tun_ipv6 = DISABLED
Sun Apr 19 13:49:54 2015 us=262595 ifconfig_local = '10.8.0.1'
Sun Apr 19 13:49:54 2015 us=262649 ifconfig_remote_netmask = '10.8.0.2'
Sun Apr 19 13:49:54 2015 us=262702 ifconfig_noexec = DISABLED
Sun Apr 19 13:49:54 2015 us=262754 ifconfig_nowarn = DISABLED
Sun Apr 19 13:49:54 2015 us=262805 ifconfig_ipv6_local = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=262858 ifconfig_ipv6_netbits = 0
Sun Apr 19 13:49:54 2015 us=262914 ifconfig_ipv6_remote = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=262966 shaper = 0
Sun Apr 19 13:49:54 2015 us=263019 mtu_test = 0
Sun Apr 19 13:49:54 2015 us=263073 mlock = DISABLED
Sun Apr 19 13:49:54 2015 us=263126 keepalive_ping = 10
Sun Apr 19 13:49:54 2015 us=263181 keepalive_timeout = 60
Sun Apr 19 13:49:54 2015 us=263235 inactivity_timeout = 0
Sun Apr 19 13:49:54 2015 us=263288 ping_send_timeout = 10
Sun Apr 19 13:49:54 2015 us=263340 ping_rec_timeout = 120
Sun Apr 19 13:49:54 2015 us=263393 ping_rec_timeout_action = 2
Sun Apr 19 13:49:54 2015 us=263446 ping_timer_remote = DISABLED
Sun Apr 19 13:49:54 2015 us=263498 remap_sigusr1 = 0
Sun Apr 19 13:49:54 2015 us=263550 persist_tun = ENABLED
Sun Apr 19 13:49:54 2015 us=263604 persist_local_ip = DISABLED
Sun Apr 19 13:49:54 2015 us=263657 persist_remote_ip = DISABLED
Sun Apr 19 13:49:54 2015 us=263709 persist_key = ENABLED
Sun Apr 19 13:49:54 2015 us=263761 passtos = DISABLED
Sun Apr 19 13:49:54 2015 us=263815 resolve_retry_seconds = 1000000000
Sun Apr 19 13:49:54 2015 us=263899 username = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=263959 groupname = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=264014 chroot_dir = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=264068 cd_dir = '/usr/syno/etc/packages/VPNCenter/ openvpn'
Sun Apr 19 13:49:54 2015 us=264122 writepid = '/var/run/ovpn_server.pid'
Sun Apr 19 13:49:54 2015 us=264174 up_script = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=264227 down_script = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=264279 down_pre = DISABLED
Sun Apr 19 13:49:54 2015 us=264331 up_restart = DISABLED
Sun Apr 19 13:49:54 2015 us=264385 up_delay = DISABLED
Sun Apr 19 13:49:54 2015 us=264437 daemon = ENABLED
Sun Apr 19 13:49:54 2015 us=264489 inetd = 0
Sun Apr 19 13:49:54 2015 us=264543 log = ENABLED
Sun Apr 19 13:49:54 2015 us=264595 suppress_timestamps = DISABLED
Sun Apr 19 13:49:54 2015 us=264648 nice = 0
Sun Apr 19 13:49:54 2015 us=264699 verbosity = 4
Sun Apr 19 13:49:54 2015 us=264751 mute = 0
Sun Apr 19 13:49:54 2015 us=264803 gremlin = 0
Sun Apr 19 13:49:54 2015 us=264857 status_file = '/tmp/ovpn_status_2_result'
Sun Apr 19 13:49:54 2015 us=264911 status_file_version = 2
Sun Apr 19 13:49:54 2015 us=264964 status_file_update_freq = 30
Sun Apr 19 13:49:54 2015 us=265016 occ = ENABLED
Sun Apr 19 13:49:54 2015 us=265069 rcvbuf = 65536
Sun Apr 19 13:49:54 2015 us=265121 sndbuf = 65536
Sun Apr 19 13:49:54 2015 us=265173 mark = 0
Sun Apr 19 13:49:54 2015 us=265227 sockflags = 0
Sun Apr 19 13:49:54 2015 us=265279 fast_io = DISABLED
Sun Apr 19 13:49:54 2015 us=265331 lzo = 7
Sun Apr 19 13:49:54 2015 us=265381 route_script = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=265434 route_default_gateway = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=265487 route_default_metric = 0
Sun Apr 19 13:49:54 2015 us=265541 route_noexec = DISABLED
Sun Apr 19 13:49:54 2015 us=265594 route_delay = 0
Sun Apr 19 13:49:54 2015 us=265649 route_delay_window = 30
Sun Apr 19 13:49:54 2015 us=265704 route_delay_defined = DISABLED
Sun Apr 19 13:49:54 2015 us=265758 route_nopull = DISABLED
Sun Apr 19 13:49:54 2015 us=265812 route_gateway_via_dhcp = DISABLED
Sun Apr 19 13:49:54 2015 us=265865 max_routes = 100
Sun Apr 19 13:49:54 2015 us=265918 allow_pull_fqdn = DISABLED
Sun Apr 19 13:49:54 2015 us=265995 route 10.8.0.0/255.255.255.0/nil/nil
Sun Apr 19 13:49:54 2015 us=266080 management_addr = '127.0.0.1'
Sun Apr 19 13:49:54 2015 us=266142 management_port = 1195
Sun Apr 19 13:49:54 2015 us=266199 management_user_pass = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=266255 management_log_history_cache = 250
Sun Apr 19 13:49:54 2015 us=266311 management_echo_buffer_size = 100
Sun Apr 19 13:49:54 2015 us=266366 management_write_peer_info_file = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=266421 management_client_user = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=266476 management_client_group = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=266528 management_flags = 0
Sun Apr 19 13:49:54 2015 us=266608 plugin[0] /var/packages/VPNCenter/target/li b/radiusplugin.so '[/var/packages/VPNCenter/target/lib/radiusplugin.so] [/var/pa ckages/VPNCenter/target/etc/openvpn/radiusplugin.cnf]'
Sun Apr 19 13:49:54 2015 us=266676 shared_secret_file = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=266732 key_direction = 0
Sun Apr 19 13:49:54 2015 us=266788 ciphername_defined = ENABLED
Sun Apr 19 13:49:54 2015 us=266843 ciphername = 'BF-CBC'
Sun Apr 19 13:49:54 2015 us=266896 authname_defined = ENABLED
Sun Apr 19 13:49:54 2015 us=266950 authname = 'SHA1'
Sun Apr 19 13:49:54 2015 us=267003 prng_hash = 'SHA1'
Sun Apr 19 13:49:54 2015 us=267057 prng_nonce_secret_len = 16
Sun Apr 19 13:49:54 2015 us=267112 keysize = 0
Sun Apr 19 13:49:54 2015 us=267166 engine = DISABLED
Sun Apr 19 13:49:54 2015 us=267234 replay = ENABLED
Sun Apr 19 13:49:54 2015 us=267305 mute_replay_warnings = DISABLED
Sun Apr 19 13:49:54 2015 us=267364 replay_window = 64
Sun Apr 19 13:49:54 2015 us=267420 replay_time = 15
Sun Apr 19 13:49:54 2015 us=267475 packet_id_file = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=267554 use_iv = ENABLED
Sun Apr 19 13:49:54 2015 us=267613 test_crypto = DISABLED
Sun Apr 19 13:49:54 2015 us=267668 tls_server = ENABLED
Sun Apr 19 13:49:54 2015 us=267719 tls_client = DISABLED
Sun Apr 19 13:49:54 2015 us=267773 key_method = 2
Sun Apr 19 13:49:54 2015 us=267829 ca_file = '/var/packages/VPNCenter/target/e tc/openvpn/keys/ca.crt'
Sun Apr 19 13:49:54 2015 us=267884 ca_path = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=267936 dh_file = '/var/packages/VPNCenter/target/e tc/openvpn/keys/dh1024.pem'
Sun Apr 19 13:49:54 2015 us=267992 cert_file = '/var/packages/VPNCenter/target /etc/openvpn/keys/server.crt'
Sun Apr 19 13:49:54 2015 us=268048 priv_key_file = '/var/packages/VPNCenter/ta rget/etc/openvpn/keys/server.key'
Sun Apr 19 13:49:54 2015 us=268104 pkcs12_file = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=268159 cipher_list = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=268212 tls_verify = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=268267 tls_export_cert = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=268320 verify_x509_type = 0
Sun Apr 19 13:49:54 2015 us=268372 verify_x509_name = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=268425 crl_file = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=268477 ns_cert_type = 0
Sun Apr 19 13:49:54 2015 us=268530 remote_cert_ku = 0
Sun Apr 19 13:49:54 2015 us=268620 remote_cert_ku = 0
Sun Apr 19 13:49:54 2015 us=268680 remote_cert_ku = 0
Sun Apr 19 13:49:54 2015 us=268736 remote_cert_ku = 0
Sun Apr 19 13:49:54 2015 us=268791 remote_cert_ku = 0
Sun Apr 19 13:49:54 2015 us=268845 remote_cert_ku = 0
Sun Apr 19 13:49:54 2015 us=268897 remote_cert_ku = 0
Sun Apr 19 13:49:54 2015 us=268952 remote_cert_ku = 0
Sun Apr 19 13:49:54 2015 us=269003 remote_cert_ku = 0
Sun Apr 19 13:49:54 2015 us=269058 remote_cert_ku = 0
Sun Apr 19 13:49:54 2015 us=269113 remote_cert_ku[i] = 0
Sun Apr 19 13:49:54 2015 us=269166 remote_cert_ku[i] = 0
Sun Apr 19 13:49:54 2015 us=269220 remote_cert_ku[i] = 0
Sun Apr 19 13:49:54 2015 us=269274 remote_cert_ku[i] = 0
Sun Apr 19 13:49:54 2015 us=269328 remote_cert_ku[i] = 0
Sun Apr 19 13:49:54 2015 us=269381 remote_cert_ku[i] = 0
Sun Apr 19 13:49:54 2015 us=269436 remote_cert_eku = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=269492 ssl_flags = 3
Sun Apr 19 13:49:54 2015 us=269547 tls_timeout = 2
Sun Apr 19 13:49:54 2015 us=269599 renegotiate_bytes = 0
Sun Apr 19 13:49:54 2015 us=269652 renegotiate_packets = 0
Sun Apr 19 13:49:54 2015 us=269706 renegotiate_seconds = 0
Sun Apr 19 13:49:54 2015 us=269759 handshake_window = 60
Sun Apr 19 13:49:54 2015 us=269814 transition_window = 3600
Sun Apr 19 13:49:54 2015 us=269867 single_session = DISABLED
Sun Apr 19 13:49:54 2015 us=269921 push_peer_info = DISABLED
Sun Apr 19 13:49:54 2015 us=269973 tls_exit = DISABLED
Sun Apr 19 13:49:54 2015 us=270027 tls_auth_file = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=270090 server_network = 10.8.0.0
Sun Apr 19 13:49:54 2015 us=270154 server_netmask = 255.255.255.0
Sun Apr 19 13:49:54 2015 us=270251 server_network_ipv6 = ::
Sun Apr 19 13:49:54 2015 us=270320 server_netbits_ipv6 = 0
Sun Apr 19 13:49:54 2015 us=270383 server_bridge_ip = 0.0.0.0
Sun Apr 19 13:49:54 2015 us=270442 server_bridge_netmask = 0.0.0.0
Sun Apr 19 13:49:54 2015 us=270503 server_bridge_pool_start = 0.0.0.0
Sun Apr 19 13:49:54 2015 us=270560 server_bridge_pool_end = 0.0.0.0
Sun Apr 19 13:49:54 2015 us=270616 push_entry = 'route 192.168.0.0 255.255.255 .0'
Sun Apr 19 13:49:54 2015 us=270671 push_entry = 'route 10.8.0.0 255.255.255.0'
Sun Apr 19 13:49:54 2015 us=270726 push_entry = 'route 10.8.0.1'
Sun Apr 19 13:49:54 2015 us=270781 push_entry = 'topology net30'
Sun Apr 19 13:49:54 2015 us=270834 push_entry = 'ping 10'
Sun Apr 19 13:49:54 2015 us=270889 push_entry = 'ping-restart 60'
Sun Apr 19 13:49:54 2015 us=270944 ifconfig_pool_defined = ENABLED
Sun Apr 19 13:49:54 2015 us=271002 ifconfig_pool_start = 10.8.0.4
Sun Apr 19 13:49:54 2015 us=271062 ifconfig_pool_end = 10.8.0.251
Sun Apr 19 13:49:54 2015 us=271147 ifconfig_pool_netmask = 0.0.0.0
Sun Apr 19 13:49:54 2015 us=271208 ifconfig_pool_persist_filename = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=271265 ifconfig_pool_persist_refresh_freq = 600
Sun Apr 19 13:49:54 2015 us=271320 ifconfig_ipv6_pool_defined = DISABLED
Sun Apr 19 13:49:54 2015 us=271378 ifconfig_ipv6_pool_base = ::
Sun Apr 19 13:49:54 2015 us=271434 ifconfig_ipv6_pool_netbits = 0
Sun Apr 19 13:49:54 2015 us=271489 n_bcast_buf = 256
Sun Apr 19 13:49:54 2015 us=271541 tcp_queue_limit = 64
Sun Apr 19 13:49:54 2015 us=271595 real_hash_size = 256
Sun Apr 19 13:49:54 2015 us=271649 virtual_hash_size = 256
Sun Apr 19 13:49:54 2015 us=271702 client_connect_script = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=271757 learn_address_script = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=271812 client_disconnect_script = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=271865 client_config_dir = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=271920 ccd_exclusive = DISABLED
Sun Apr 19 13:49:54 2015 us=271974 tmp_dir = '/tmp'
Sun Apr 19 13:49:54 2015 us=272029 push_ifconfig_defined = DISABLED
Sun Apr 19 13:49:54 2015 us=272088 push_ifconfig_local = 0.0.0.0
Sun Apr 19 13:49:54 2015 us=272147 push_ifconfig_remote_netmask = 0.0.0.0
Sun Apr 19 13:49:54 2015 us=272201 push_ifconfig_ipv6_defined = DISABLED
Sun Apr 19 13:49:54 2015 us=272258 push_ifconfig_ipv6_local = ::/0
Sun Apr 19 13:49:54 2015 us=272315 push_ifconfig_ipv6_remote = ::
Sun Apr 19 13:49:54 2015 us=272369 enable_c2c = DISABLED
Sun Apr 19 13:49:54 2015 us=272423 duplicate_cn = ENABLED
Sun Apr 19 13:49:54 2015 us=272477 cf_max = 0
Sun Apr 19 13:49:54 2015 us=272532 cf_per = 0
Sun Apr 19 13:49:54 2015 us=272586 max_clients = 3
Sun Apr 19 13:49:54 2015 us=272640 max_routes_per_client = 256
Sun Apr 19 13:49:54 2015 us=272695 auth_user_pass_verify_script = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=272749 auth_user_pass_verify_script_via_file = DIS ABLED
Sun Apr 19 13:49:54 2015 us=272803 port_share_host = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=272858 port_share_port = 0
Sun Apr 19 13:49:54 2015 us=272911 client = DISABLED
Sun Apr 19 13:49:54 2015 us=272963 pull = DISABLED
Sun Apr 19 13:49:54 2015 us=273016 auth_user_pass_file = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=273077 OpenVPN 2.3.6 armle-unknown-linux-gnu [SSL (O penSSL)] [LZO] [EPOLL] [MH] [IPv6] built on Mar 10 2015
Sun Apr 19 13:49:54 2015 us=273184 library versions: OpenSSL 1.0.1m-fips 19 Mar 2015, LZO 2.08
Sun Apr 19 13:49:54 2015 us=273702 MANAGEMENT: TCP Socket listening on [AF_INET] 127.0.0.1:1195
Sun Apr 19 13:49:54 2015 us=274542 NOTE: your local LAN uses the extremely commo n subnet address 192.168.0.x or 192.168.1.x. Be aware that this might create ro uting conflicts if you connect to the VPN server from public locations such as i nternet cafes that use the same subnet.
Sun Apr 19 13:49:54 2015 RADIUS-PLUGIN: Configfile name: /var/packages/VPNCenter /target/etc/openvpn/radiusplugin.cnf.
Sun Apr 19 13:49:54 2015 us=281722 PLUGIN_INIT: POST /var/packages/VPNCenter/tar get/lib/radiusplugin.so '[/var/packages/VPNCenter/target/lib/radiusplugin.so] [/ var/packages/VPNCenter/target/etc/openvpn/radiusplugin.cnf]' intercepted=PLUGIN_ AUTH_USER_PASS_VERIFY|PLUGIN_CLIENT_CONNECT|PLUGIN_CLIENT_DISCONNECT
Sun Apr 19 13:49:54 2015 us=303949 Diffie-Hellman initialized with 1024 bit key
Sun Apr 19 13:49:54 2015 us=304165 WARNING: POTENTIALLY DANGEROUS OPTION --clien t-cert-not-required may accept clients which do not present a certificate
Sun Apr 19 13:49:54 2015 us=308007 TLS-Auth MTU parms [ L:1542 D:138 EF:38 EB:0 ET:0 EL:0 ]
Sun Apr 19 13:49:54 2015 us=308261 Socket Buffers: R=[163840->131072] S=[163840- >131072]
Sun Apr 19 13:49:54 2015 us=308994 ROUTE_GATEWAY 192.168.0.1/255.255.255.0 IFACE =eth0 HWADDR=00:11:32:3b:18:9b
Sun Apr 19 13:49:54 2015 us=310679 TUN/TAP device tun0 opened
Sun Apr 19 13:49:54 2015 us=310901 TUN/TAP TX queue length set to 100
Sun Apr 19 13:49:54 2015 us=311045 do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv 6_setup=0
Sun Apr 19 13:49:54 2015 us=311227 /sbin/ifconfig tun0 10.8.0.1 pointopoint 10.8 .0.2 mtu 1500
Sun Apr 19 13:49:54 2015 us=320891 /sbin/route add -net 10.8.0.0 netmask 255.255 .255.0 gw 10.8.0.2
Sun Apr 19 13:49:54 2015 us=326454 Data Channel MTU parms [ L:1542 D:1450 EF:42 EB:135 ET:0 EL:0 AF:3/1 ]
Sun Apr 19 13:49:54 2015 us=329046 UDPv6 link local (bound): [undef]
Sun Apr 19 13:49:54 2015 us=329314 UDPv6 link remote: [undef]
Sun Apr 19 13:49:54 2015 us=329462 MULTI: multi_init called, r=256 v=256
Sun Apr 19 13:49:54 2015 us=330046 IFCONFIG POOL: base=10.8.0.4 size=62, ipv6=0
Sun Apr 19 13:49:54 2015 us=330316 Initialization Sequence Completed
Sun Apr 19 13:51:33 2015 us=279650 MULTI: multi_create_instance called
Sun Apr 19 13:51:33 2015 us=279985 ::ffff:89.144.197.11(3365) Re-using SSL/TLS c ontext
Sun Apr 19 13:51:33 2015 us=280214 ::ffff:89.144.197.11(3365) LZO compression in itialized
Sun Apr 19 13:51:33 2015 us=281148 ::ffff:89.144.197.11(3365) Control Channel MT U parms [ L:1542 D:138 EF:38 EB:0 ET:0 EL:0 ]
Sun Apr 19 13:51:33 2015 us=281293 ::ffff:89.144.197.11(3365) Data Channel MTU p arms [ L:1542 D:1450 EF:42 EB:135 ET:0 EL:0 AF:3/1 ]
Sun Apr 19 13:51:33 2015 us=281633 ::ffff:89.144.197.11(3365) Local Options Stri ng: 'V4,dev-type tun,link-mtu 1542,tun-mtu 1500,proto UDPv4,comp-lzo,cipher BF-C BC,auth SHA1,keysize 128,key-method 2,tls-server'
Sun Apr 19 13:51:33 2015 us=281742 ::ffff:89.144.197.11(3365) Expected Remote Op tions String: 'V4,dev-type tun,link-mtu 1542,tun-mtu 1500,proto UDPv4,comp-lzo,c ipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Sun Apr 19 13:51:33 2015 us=281890 ::ffff:89.144.197.11(3365) Local Options hash (VER=V4): '530fdded'
Sun Apr 19 13:51:33 2015 us=282015 ::ffff:89.144.197.11(3365) Expected Remote Op tions hash (VER=V4): '41690919'
Sun Apr 19 13:51:33 2015 us=282288 ::ffff:89.144.197.11(3365) TLS: Initial packe t from [AF_INET6]::ffff:89.144.197.11:3365, sid=23145dea 7c4c6c5b
Sun Apr 19 13:51:33 2015 RADIUS-PLUGIN: FOREGROUND THREAD: Auth_user_pass_verify thread started.
Sun Apr 19 13:51:33 2015 RADIUS-PLUGIN: FOREGROUND THREAD: New user.
Sun Apr 19 13:51:34 2015 RADIUS-PLUGIN: No attributes Acct Interim Interval or b ad length.
Sun Apr 19 13:51:34 2015 RADIUS-PLUGIN: Client config file was not written, over writeccfiles is false
.Sun Apr 19 13:51:34 2015 RADIUS-PLUGIN: FOREGROUND THREAD: Add user to map.
Sun Apr 19 13:51:34 2015 us=112769 ::ffff:89.144.197.11(3365) PLUGIN_CALL: POST /var/packages/VPNCenter/target/lib/radiusplugin.so/PLUGIN_AUTH_USER_PASS_VERIFY status=0
Sun Apr 19 13:51:34 2015 us=113038 ::ffff:89.144.197.11(3365) TLS: Username/Pass word authentication succeeded for username 'admin' [CN SET]
Sun Apr 19 13:51:34 2015 us=114285 ::ffff:89.144.197.11(3365) Data Channel Encry pt: Cipher 'BF-CBC' initialized with 128 bit key
Sun Apr 19 13:51:34 2015 us=114473 ::ffff:89.144.197.11(3365) Data Channel Encry pt: Using 160 bit message hash 'SHA1' for HMAC authentication
Sun Apr 19 13:51:34 2015 us=114909 ::ffff:89.144.197.11(3365) Data Channel Decry pt: Cipher 'BF-CBC' initialized with 128 bit key
Sun Apr 19 13:51:34 2015 us=115120 ::ffff:89.144.197.11(3365) Data Channel Decry pt: Using 160 bit message hash 'SHA1' for HMAC authentication
Sun Apr 19 13:51:34 2015 us=159441 ::ffff:89.144.197.11(3365) Control Channel: T LSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA
Sun Apr 19 13:51:34 2015 us=159717 ::ffff:89.144.197.11(3365) [admin] Peer Conne ction Initiated with [AF_INET6]::ffff:89.144.197.11:3365
Sun Apr 19 13:51:34 2015 us=159941 admin/::ffff:89.144.197.11(3365) MULTI_sva: p ool returned IPv4=10.8.0.6, IPv6=(Not enabled)
Sun Apr 19 13:51:34 2015 us=173500 admin/::ffff:89.144.197.11(3365) PLUGIN_CALL: POST /var/packages/VPNCenter/target/lib/radiusplugin.so/PLUGIN_CLIENT_CONNECT s tatus=0
Sun Apr 19 13:51:34 2015 us=173759 admin/::ffff:89.144.197.11(3365) OPTIONS IMPO RT: reading client specific options from: /tmp/openvpn_cc_d12927141f026ac744b36b 4ab5446eec.tmp
Sun Apr 19 13:51:34 2015 us=174152 admin/::ffff:89.144.197.11(3365) MULTI: Learn : 10.8.0.6 -> admin/::ffff:89.144.197.11(3365)
Sun Apr 19 13:51:34 2015 us=174297 admin/::ffff:89.144.197.11(3365) MULTI: prima ry virtual IP for admin/::ffff:89.144.197.11(3365): 10.8.0.6
Sun Apr 19 13:51:34 2015 us=175184 admin/::ffff:89.144.197.11(3365) PUSH: Receiv ed control message: 'PUSH_REQUEST'
Sun Apr 19 13:51:34 2015 us=175323 admin/::ffff:89.144.197.11(3365) send_push_re ply(): safe_cap=940
Sun Apr 19 13:51:34 2015 us=175682 admin/::ffff:89.144.197.11(3365) SENT CONTROL [admin]: 'PUSH_REPLY,route 192.168.0.0 255.255.255.0,route 10.8.0.0 255.255.255 .0,route 10.8.0.1,topology net30,ping 10,ping-restart 60,ifconfig 10.8.0.6 10.8. 0.5' (status=1)
Konter> cat /var/log/openvpn.log
Sun Apr 19 13:49:54 2015 us=259378 Current Parameter Settings:
Sun Apr 19 13:49:54 2015 us=259963 config = 'openvpn.conf'
Sun Apr 19 13:49:54 2015 us=260076 mode = 1
Sun Apr 19 13:49:54 2015 us=260149 persist_config = DISABLED
Sun Apr 19 13:49:54 2015 us=260211 persist_mode = 1
Sun Apr 19 13:49:54 2015 us=260267 show_ciphers = DISABLED
Sun Apr 19 13:49:54 2015 us=260320 show_digests = DISABLED
Sun Apr 19 13:49:54 2015 us=260374 show_engines = DISABLED
Sun Apr 19 13:49:54 2015 us=260426 genkey = DISABLED
Sun Apr 19 13:49:54 2015 us=260480 key_pass_file = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=260553 show_tls_ciphers = DISABLED
Sun Apr 19 13:49:54 2015 us=260641 Connection profiles [default]:
Sun Apr 19 13:49:54 2015 us=260729 proto = udp6
Sun Apr 19 13:49:54 2015 us=260816 local = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=260887 local_port = 1194
Sun Apr 19 13:49:54 2015 us=260943 remote = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=260997 remote_port = 1194
Sun Apr 19 13:49:54 2015 us=261050 remote_float = DISABLED
Sun Apr 19 13:49:54 2015 us=261103 bind_defined = DISABLED
Sun Apr 19 13:49:54 2015 us=261156 bind_local = ENABLED
Sun Apr 19 13:49:54 2015 us=261211 connect_retry_seconds = 5
Sun Apr 19 13:49:54 2015 us=261263 connect_timeout = 10
Sun Apr 19 13:49:54 2015 us=261317 connect_retry_max = 0
Sun Apr 19 13:49:54 2015 us=261372 socks_proxy_server = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=261428 socks_proxy_port = 0
Sun Apr 19 13:49:54 2015 us=261480 socks_proxy_retry = DISABLED
Sun Apr 19 13:49:54 2015 us=261533 tun_mtu = 1500
Sun Apr 19 13:49:54 2015 us=261584 tun_mtu_defined = ENABLED
Sun Apr 19 13:49:54 2015 us=261637 link_mtu = 1500
Sun Apr 19 13:49:54 2015 us=261689 link_mtu_defined = DISABLED
Sun Apr 19 13:49:54 2015 us=261741 tun_mtu_extra = 0
Sun Apr 19 13:49:54 2015 us=261794 tun_mtu_extra_defined = DISABLED
Sun Apr 19 13:49:54 2015 us=261847 mtu_discover_type = -1
Sun Apr 19 13:49:54 2015 us=261900 fragment = 0
Sun Apr 19 13:49:54 2015 us=261953 mssfix = 1450
Sun Apr 19 13:49:54 2015 us=262006 explicit_exit_notification = 0
Sun Apr 19 13:49:54 2015 us=262080 Connection profiles END
Sun Apr 19 13:49:54 2015 us=262160 remote_random = DISABLED
Sun Apr 19 13:49:54 2015 us=262222 ipchange = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=262277 dev = 'tun'
Sun Apr 19 13:49:54 2015 us=262331 dev_type = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=262383 dev_node = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=262434 lladdr = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=262487 topology = 1
Sun Apr 19 13:49:54 2015 us=262542 tun_ipv6 = DISABLED
Sun Apr 19 13:49:54 2015 us=262595 ifconfig_local = '10.8.0.1'
Sun Apr 19 13:49:54 2015 us=262649 ifconfig_remote_netmask = '10.8.0.2'
Sun Apr 19 13:49:54 2015 us=262702 ifconfig_noexec = DISABLED
Sun Apr 19 13:49:54 2015 us=262754 ifconfig_nowarn = DISABLED
Sun Apr 19 13:49:54 2015 us=262805 ifconfig_ipv6_local = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=262858 ifconfig_ipv6_netbits = 0
Sun Apr 19 13:49:54 2015 us=262914 ifconfig_ipv6_remote = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=262966 shaper = 0
Sun Apr 19 13:49:54 2015 us=263019 mtu_test = 0
Sun Apr 19 13:49:54 2015 us=263073 mlock = DISABLED
Sun Apr 19 13:49:54 2015 us=263126 keepalive_ping = 10
Sun Apr 19 13:49:54 2015 us=263181 keepalive_timeout = 60
Sun Apr 19 13:49:54 2015 us=263235 inactivity_timeout = 0
Sun Apr 19 13:49:54 2015 us=263288 ping_send_timeout = 10
Sun Apr 19 13:49:54 2015 us=263340 ping_rec_timeout = 120
Sun Apr 19 13:49:54 2015 us=263393 ping_rec_timeout_action = 2
Sun Apr 19 13:49:54 2015 us=263446 ping_timer_remote = DISABLED
Sun Apr 19 13:49:54 2015 us=263498 remap_sigusr1 = 0
Sun Apr 19 13:49:54 2015 us=263550 persist_tun = ENABLED
Sun Apr 19 13:49:54 2015 us=263604 persist_local_ip = DISABLED
Sun Apr 19 13:49:54 2015 us=263657 persist_remote_ip = DISABLED
Sun Apr 19 13:49:54 2015 us=263709 persist_key = ENABLED
Sun Apr 19 13:49:54 2015 us=263761 passtos = DISABLED
Sun Apr 19 13:49:54 2015 us=263815 resolve_retry_seconds = 1000000000
Sun Apr 19 13:49:54 2015 us=263899 username = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=263959 groupname = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=264014 chroot_dir = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=264068 cd_dir = '/usr/syno/etc/packages/VPNCenter/openvpn'
Sun Apr 19 13:49:54 2015 us=264122 writepid = '/var/run/ovpn_server.pid'
Sun Apr 19 13:49:54 2015 us=264174 up_script = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=264227 down_script = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=264279 down_pre = DISABLED
Sun Apr 19 13:49:54 2015 us=264331 up_restart = DISABLED
Sun Apr 19 13:49:54 2015 us=264385 up_delay = DISABLED
Sun Apr 19 13:49:54 2015 us=264437 daemon = ENABLED
Sun Apr 19 13:49:54 2015 us=264489 inetd = 0
Sun Apr 19 13:49:54 2015 us=264543 log = ENABLED
Sun Apr 19 13:49:54 2015 us=264595 suppress_timestamps = DISABLED
Sun Apr 19 13:49:54 2015 us=264648 nice = 0
Sun Apr 19 13:49:54 2015 us=264699 verbosity = 4
Sun Apr 19 13:49:54 2015 us=264751 mute = 0
Sun Apr 19 13:49:54 2015 us=264803 gremlin = 0
Sun Apr 19 13:49:54 2015 us=264857 status_file = '/tmp/ovpn_status_2_result'
Sun Apr 19 13:49:54 2015 us=264911 status_file_version = 2
Sun Apr 19 13:49:54 2015 us=264964 status_file_update_freq = 30
Sun Apr 19 13:49:54 2015 us=265016 occ = ENABLED
Sun Apr 19 13:49:54 2015 us=265069 rcvbuf = 65536
Sun Apr 19 13:49:54 2015 us=265121 sndbuf = 65536
Sun Apr 19 13:49:54 2015 us=265173 mark = 0
Sun Apr 19 13:49:54 2015 us=265227 sockflags = 0
Sun Apr 19 13:49:54 2015 us=265279 fast_io = DISABLED
Sun Apr 19 13:49:54 2015 us=265331 lzo = 7
Sun Apr 19 13:49:54 2015 us=265381 route_script = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=265434 route_default_gateway = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=265487 route_default_metric = 0
Sun Apr 19 13:49:54 2015 us=265541 route_noexec = DISABLED
Sun Apr 19 13:49:54 2015 us=265594 route_delay = 0
Sun Apr 19 13:49:54 2015 us=265649 route_delay_window = 30
Sun Apr 19 13:49:54 2015 us=265704 route_delay_defined = DISABLED
Sun Apr 19 13:49:54 2015 us=265758 route_nopull = DISABLED
Sun Apr 19 13:49:54 2015 us=265812 route_gateway_via_dhcp = DISABLED
Sun Apr 19 13:49:54 2015 us=265865 max_routes = 100
Sun Apr 19 13:49:54 2015 us=265918 allow_pull_fqdn = DISABLED
Sun Apr 19 13:49:54 2015 us=265995 route 10.8.0.0/255.255.255.0/nil/nil
Sun Apr 19 13:49:54 2015 us=266080 management_addr = '127.0.0.1'
Sun Apr 19 13:49:54 2015 us=266142 management_port = 1195
Sun Apr 19 13:49:54 2015 us=266199 management_user_pass = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=266255 management_log_history_cache = 250
Sun Apr 19 13:49:54 2015 us=266311 management_echo_buffer_size = 100
Sun Apr 19 13:49:54 2015 us=266366 management_write_peer_info_file = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=266421 management_client_user = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=266476 management_client_group = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=266528 management_flags = 0
Sun Apr 19 13:49:54 2015 us=266608 plugin[0] /var/packages/VPNCenter/target/lib/radiusplugin.so '[/var/packages/VPNCenter/target/lib/radiusplugin.so] [/var/packages/VPNCenter/target/etc/openvpn/radiusplugin.cnf]'
Sun Apr 19 13:49:54 2015 us=266676 shared_secret_file = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=266732 key_direction = 0
Sun Apr 19 13:49:54 2015 us=266788 ciphername_defined = ENABLED
Sun Apr 19 13:49:54 2015 us=266843 ciphername = 'BF-CBC'
Sun Apr 19 13:49:54 2015 us=266896 authname_defined = ENABLED
Sun Apr 19 13:49:54 2015 us=266950 authname = 'SHA1'
Sun Apr 19 13:49:54 2015 us=267003 prng_hash = 'SHA1'
Sun Apr 19 13:49:54 2015 us=267057 prng_nonce_secret_len = 16
Sun Apr 19 13:49:54 2015 us=267112 keysize = 0
Sun Apr 19 13:49:54 2015 us=267166 engine = DISABLED
Sun Apr 19 13:49:54 2015 us=267234 replay = ENABLED
Sun Apr 19 13:49:54 2015 us=267305 mute_replay_warnings = DISABLED
Sun Apr 19 13:49:54 2015 us=267364 replay_window = 64
Sun Apr 19 13:49:54 2015 us=267420 replay_time = 15
Sun Apr 19 13:49:54 2015 us=267475 packet_id_file = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=267554 use_iv = ENABLED
Sun Apr 19 13:49:54 2015 us=267613 test_crypto = DISABLED
Sun Apr 19 13:49:54 2015 us=267668 tls_server = ENABLED
Sun Apr 19 13:49:54 2015 us=267719 tls_client = DISABLED
Sun Apr 19 13:49:54 2015 us=267773 key_method = 2
Sun Apr 19 13:49:54 2015 us=267829 ca_file = '/var/packages/VPNCenter/target/etc/openvpn/keys/ca.crt'
Sun Apr 19 13:49:54 2015 us=267884 ca_path = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=267936 dh_file = '/var/packages/VPNCenter/target/etc/openvpn/keys/dh1024.pem'
Sun Apr 19 13:49:54 2015 us=267992 cert_file = '/var/packages/VPNCenter/target/etc/openvpn/keys/server.crt'
Sun Apr 19 13:49:54 2015 us=268048 priv_key_file = '/var/packages/VPNCenter/target/etc/openvpn/keys/server.key'
Sun Apr 19 13:49:54 2015 us=268104 pkcs12_file = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=268159 cipher_list = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=268212 tls_verify = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=268267 tls_export_cert = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=268320 verify_x509_type = 0
Sun Apr 19 13:49:54 2015 us=268372 verify_x509_name = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=268425 crl_file = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=268477 ns_cert_type = 0
Sun Apr 19 13:49:54 2015 us=268530 remote_cert_ku[i] = 0
Sun Apr 19 13:49:54 2015 us=268620 remote_cert_ku[i] = 0
Sun Apr 19 13:49:54 2015 us=268680 remote_cert_ku[i] = 0
Sun Apr 19 13:49:54 2015 us=268736 remote_cert_ku[i] = 0
Sun Apr 19 13:49:54 2015 us=268791 remote_cert_ku[i] = 0
Sun Apr 19 13:49:54 2015 us=268845 remote_cert_ku[i] = 0
Sun Apr 19 13:49:54 2015 us=268897 remote_cert_ku[i] = 0
Sun Apr 19 13:49:54 2015 us=268952 remote_cert_ku[i] = 0
Sun Apr 19 13:49:54 2015 us=269003 remote_cert_ku[i] = 0
Sun Apr 19 13:49:54 2015 us=269058 remote_cert_ku[i] = 0
Sun Apr 19 13:49:54 2015 us=269113 remote_cert_ku[i] = 0
Sun Apr 19 13:49:54 2015 us=269166 remote_cert_ku[i] = 0
Sun Apr 19 13:49:54 2015 us=269220 remote_cert_ku[i] = 0
Sun Apr 19 13:49:54 2015 us=269274 remote_cert_ku[i] = 0
Sun Apr 19 13:49:54 2015 us=269328 remote_cert_ku[i] = 0
Sun Apr 19 13:49:54 2015 us=269381 remote_cert_ku[i] = 0
Sun Apr 19 13:49:54 2015 us=269436 remote_cert_eku = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=269492 ssl_flags = 3
Sun Apr 19 13:49:54 2015 us=269547 tls_timeout = 2
Sun Apr 19 13:49:54 2015 us=269599 renegotiate_bytes = 0
Sun Apr 19 13:49:54 2015 us=269652 renegotiate_packets = 0
Sun Apr 19 13:49:54 2015 us=269706 renegotiate_seconds = 0
Sun Apr 19 13:49:54 2015 us=269759 handshake_window = 60
Sun Apr 19 13:49:54 2015 us=269814 transition_window = 3600
Sun Apr 19 13:49:54 2015 us=269867 single_session = DISABLED
Sun Apr 19 13:49:54 2015 us=269921 push_peer_info = DISABLED
Sun Apr 19 13:49:54 2015 us=269973 tls_exit = DISABLED
Sun Apr 19 13:49:54 2015 us=270027 tls_auth_file = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=270090 server_network = 10.8.0.0
Sun Apr 19 13:49:54 2015 us=270154 server_netmask = 255.255.255.0
Sun Apr 19 13:49:54 2015 us=270251 server_network_ipv6 = ::
Sun Apr 19 13:49:54 2015 us=270320 server_netbits_ipv6 = 0
Sun Apr 19 13:49:54 2015 us=270383 server_bridge_ip = 0.0.0.0
Sun Apr 19 13:49:54 2015 us=270442 server_bridge_netmask = 0.0.0.0
Sun Apr 19 13:49:54 2015 us=270503 server_bridge_pool_start = 0.0.0.0
Sun Apr 19 13:49:54 2015 us=270560 server_bridge_pool_end = 0.0.0.0
Sun Apr 19 13:49:54 2015 us=270616 push_entry = 'route 192.168.0.0 255.255.255.0'
Sun Apr 19 13:49:54 2015 us=270671 push_entry = 'route 10.8.0.0 255.255.255.0'
Sun Apr 19 13:49:54 2015 us=270726 push_entry = 'route 10.8.0.1'
Sun Apr 19 13:49:54 2015 us=270781 push_entry = 'topology net30'
Sun Apr 19 13:49:54 2015 us=270834 push_entry = 'ping 10'
Sun Apr 19 13:49:54 2015 us=270889 push_entry = 'ping-restart 60'
Sun Apr 19 13:49:54 2015 us=270944 ifconfig_pool_defined = ENABLED
Sun Apr 19 13:49:54 2015 us=271002 ifconfig_pool_start = 10.8.0.4
Sun Apr 19 13:49:54 2015 us=271062 ifconfig_pool_end = 10.8.0.251
Sun Apr 19 13:49:54 2015 us=271147 ifconfig_pool_netmask = 0.0.0.0
Sun Apr 19 13:49:54 2015 us=271208 ifconfig_pool_persist_filename = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=271265 ifconfig_pool_persist_refresh_freq = 600
Sun Apr 19 13:49:54 2015 us=271320 ifconfig_ipv6_pool_defined = DISABLED
Sun Apr 19 13:49:54 2015 us=271378 ifconfig_ipv6_pool_base = ::
Sun Apr 19 13:49:54 2015 us=271434 ifconfig_ipv6_pool_netbits = 0
Sun Apr 19 13:49:54 2015 us=271489 n_bcast_buf = 256
Sun Apr 19 13:49:54 2015 us=271541 tcp_queue_limit = 64
Sun Apr 19 13:49:54 2015 us=271595 real_hash_size = 256
Sun Apr 19 13:49:54 2015 us=271649 virtual_hash_size = 256
Sun Apr 19 13:49:54 2015 us=271702 client_connect_script = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=271757 learn_address_script = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=271812 client_disconnect_script = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=271865 client_config_dir = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=271920 ccd_exclusive = DISABLED
Sun Apr 19 13:49:54 2015 us=271974 tmp_dir = '/tmp'
Sun Apr 19 13:49:54 2015 us=272029 push_ifconfig_defined = DISABLED
Sun Apr 19 13:49:54 2015 us=272088 push_ifconfig_local = 0.0.0.0
Sun Apr 19 13:49:54 2015 us=272147 push_ifconfig_remote_netmask = 0.0.0.0
Sun Apr 19 13:49:54 2015 us=272201 push_ifconfig_ipv6_defined = DISABLED
Sun Apr 19 13:49:54 2015 us=272258 push_ifconfig_ipv6_local = ::/0
Sun Apr 19 13:49:54 2015 us=272315 push_ifconfig_ipv6_remote = ::
Sun Apr 19 13:49:54 2015 us=272369 enable_c2c = DISABLED
Sun Apr 19 13:49:54 2015 us=272423 duplicate_cn = ENABLED
Sun Apr 19 13:49:54 2015 us=272477 cf_max = 0
Sun Apr 19 13:49:54 2015 us=272532 cf_per = 0
Sun Apr 19 13:49:54 2015 us=272586 max_clients = 3
Sun Apr 19 13:49:54 2015 us=272640 max_routes_per_client = 256
Sun Apr 19 13:49:54 2015 us=272695 auth_user_pass_verify_script = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=272749 auth_user_pass_verify_script_via_file = DISABLED
Sun Apr 19 13:49:54 2015 us=272803 port_share_host = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=272858 port_share_port = 0
Sun Apr 19 13:49:54 2015 us=272911 client = DISABLED
Sun Apr 19 13:49:54 2015 us=272963 pull = DISABLED
Sun Apr 19 13:49:54 2015 us=273016 auth_user_pass_file = '[UNDEF]'
Sun Apr 19 13:49:54 2015 us=273077 OpenVPN 2.3.6 armle-unknown-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [MH] [IPv6] built on Mar 10 2015
Sun Apr 19 13:49:54 2015 us=273184 library versions: OpenSSL 1.0.1m-fips 19 Mar 2015, LZO 2.08
Sun Apr 19 13:49:54 2015 us=273702 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:1195
Sun Apr 19 13:49:54 2015 us=274542 NOTE: your local LAN uses the extremely common subnet address 192.168.0.x or 192.168.1.x. Be aware that this might create routing conflicts if you connect to the VPN server from public locations such as internet cafes that use the same subnet.
Sun Apr 19 13:49:54 2015 RADIUS-PLUGIN: Configfile name: /var/packages/VPNCenter/target/etc/openvpn/radiusplugin.cnf.
Sun Apr 19 13:49:54 2015 us=281722 PLUGIN_INIT: POST /var/packages/VPNCenter/target/lib/radiusplugin.so '[/var/packages/VPNCenter/target/lib/radiusplugin.so] [/var/packages/VPNCenter/target/etc/openvpn/radiusplugin.cnf]' intercepted=PLUGIN_AUTH_USER_PASS_VERIFY|PLUGIN_CLIENT_CONNECT|PLUGIN_CLIENT_DISCONNECT
Sun Apr 19 13:49:54 2015 us=303949 Diffie-Hellman initialized with 1024 bit key
Sun Apr 19 13:49:54 2015 us=304165 WARNING: POTENTIALLY DANGEROUS OPTION --client-cert-not-required may accept clients which do not present a certificate
Sun Apr 19 13:49:54 2015 us=308007 TLS-Auth MTU parms [ L:1542 D:138 EF:38 EB:0 ET:0 EL:0 ]
Sun Apr 19 13:49:54 2015 us=308261 Socket Buffers: R=[163840->131072] S=[163840->131072]
Sun Apr 19 13:49:54 2015 us=308994 ROUTE_GATEWAY 192.168.0.1/255.255.255.0 IFACE=eth0 HWADDR=00:11:32:3b:18:9b
Sun Apr 19 13:49:54 2015 us=310679 TUN/TAP device tun0 opened
Sun Apr 19 13:49:54 2015 us=310901 TUN/TAP TX queue length set to 100
Sun Apr 19 13:49:54 2015 us=311045 do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
Sun Apr 19 13:49:54 2015 us=311227 /sbin/ifconfig tun0 10.8.0.1 pointopoint 10.8.0.2 mtu 1500
Sun Apr 19 13:49:54 2015 us=320891 /sbin/route add -net 10.8.0.0 netmask 255.255.255.0 gw 10.8.0.2
Sun Apr 19 13:49:54 2015 us=326454 Data Channel MTU parms [ L:1542 D:1450 EF:42 EB:135 ET:0 EL:0 AF:3/1 ]
Sun Apr 19 13:49:54 2015 us=329046 UDPv6 link local (bound): [undef]
Sun Apr 19 13:49:54 2015 us=329314 UDPv6 link remote: [undef]
Sun Apr 19 13:49:54 2015 us=329462 MULTI: multi_init called, r=256 v=256
Sun Apr 19 13:49:54 2015 us=330046 IFCONFIG POOL: base=10.8.0.4 size=62, ipv6=0
Sun Apr 19 13:49:54 2015 us=330316 Initialization Sequence Completed
Sun Apr 19 13:51:33 2015 us=279650 MULTI: multi_create_instance called
Sun Apr 19 13:51:33 2015 us=279985 ::ffff:89.144.197.11(3365) Re-using SSL/TLS context
Sun Apr 19 13:51:33 2015 us=280214 ::ffff:89.144.197.11(3365) LZO compression initialized
Sun Apr 19 13:51:33 2015 us=281148 ::ffff:89.144.197.11(3365) Control Channel MTU parms [ L:1542 D:138 EF:38 EB:0 ET:0 EL:0 ]
Sun Apr 19 13:51:33 2015 us=281293 ::ffff:89.144.197.11(3365) Data Channel MTU parms [ L:1542 D:1450 EF:42 EB:135 ET:0 EL:0 AF:3/1 ]
Sun Apr 19 13:51:33 2015 us=281633 ::ffff:89.144.197.11(3365) Local Options String: 'V4,dev-type tun,link-mtu 1542,tun-mtu 1500,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Sun Apr 19 13:51:33 2015 us=281742 ::ffff:89.144.197.11(3365) Expected Remote Options String: 'V4,dev-type tun,link-mtu 1542,tun-mtu 1500,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Sun Apr 19 13:51:33 2015 us=281890 ::ffff:89.144.197.11(3365) Local Options hash (VER=V4): '530fdded'
Sun Apr 19 13:51:33 2015 us=282015 ::ffff:89.144.197.11(3365) Expected Remote Options hash (VER=V4): '41690919'
Sun Apr 19 13:51:33 2015 us=282288 ::ffff:89.144.197.11(3365) TLS: Initial packet from [AF_INET6]::ffff:89.144.197.11:3365, sid=23145dea 7c4c6c5b
Sun Apr 19 13:51:33 2015 RADIUS-PLUGIN: FOREGROUND THREAD: Auth_user_pass_verify thread started.
Sun Apr 19 13:51:33 2015 RADIUS-PLUGIN: FOREGROUND THREAD: New user.
Sun Apr 19 13:51:34 2015 RADIUS-PLUGIN: No attributes Acct Interim Interval or bad length.
Sun Apr 19 13:51:34 2015 RADIUS-PLUGIN: Client config file was not written, overwriteccfiles is false
.Sun Apr 19 13:51:34 2015 RADIUS-PLUGIN: FOREGROUND THREAD: Add user to map.
Sun Apr 19 13:51:34 2015 us=112769 ::ffff:89.144.197.11(3365) PLUGIN_CALL: POST /var/packages/VPNCenter/target/lib/radiusplugin.so/PLUGIN_AUTH_USER_PASS_VERIFY status=0
Sun Apr 19 13:51:34 2015 us=113038 ::ffff:89.144.197.11(3365) TLS: Username/Password authentication succeeded for username 'admin' [CN SET]
Sun Apr 19 13:51:34 2015 us=114285 ::ffff:89.144.197.11(3365) Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
Sun Apr 19 13:51:34 2015 us=114473 ::ffff:89.144.197.11(3365) Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Sun Apr 19 13:51:34 2015 us=114909 ::ffff:89.144.197.11(3365) Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
Sun Apr 19 13:51:34 2015 us=115120 ::ffff:89.144.197.11(3365) Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Sun Apr 19 13:51:34 2015 us=159441 ::ffff:89.144.197.11(3365) Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA
Sun Apr 19 13:51:34 2015 us=159717 ::ffff:89.144.197.11(3365) [admin] Peer Connection Initiated with [AF_INET6]::ffff:89.144.197.11:3365
Sun Apr 19 13:51:34 2015 us=159941 admin/::ffff:89.144.197.11(3365) MULTI_sva: pool returned IPv4=10.8.0.6, IPv6=(Not enabled)
Sun Apr 19 13:51:34 2015 us=173500 admin/::ffff:89.144.197.11(3365) PLUGIN_CALL: POST /var/packages/VPNCenter/target/lib/radiusplugin.so/PLUGIN_CLIENT_CONNECT status=0
Sun Apr 19 13:51:34 2015 us=173759 admin/::ffff:89.144.197.11(3365) OPTIONS IMPORT: reading client specific options from: /tmp/openvpn_cc_d12927141f026ac744b36b4ab5446eec.tmp
Sun Apr 19 13:51:34 2015 us=174152 admin/::ffff:89.144.197.11(3365) MULTI: Learn: 10.8.0.6 -> admin/::ffff:89.144.197.11(3365)
Sun Apr 19 13:51:34 2015 us=174297 admin/::ffff:89.144.197.11(3365) MULTI: primary virtual IP for admin/::ffff:89.144.197.11(3365): 10.8.0.6
Sun Apr 19 13:51:34 2015 us=175184 admin/::ffff:89.144.197.11(3365) PUSH: Received control message: 'PUSH_REQUEST'
Sun Apr 19 13:51:34 2015 us=175323 admin/::ffff:89.144.197.11(3365) send_push_reply(): safe_cap=940
Sun Apr 19 13:51:34 2015 us=175682 admin/::ffff:89.144.197.11(3365) SENT CONTROL [admin]: 'PUSH_REPLY,route 192.168.0.0 255.255.255.0,route 10.8.0.0 255.255.255.0,route 10.8.0.1,topology net30,ping 10,ping-restart 60,ifconfig 10.8.0.6 10.8.0.5' (status=1)
Sun Apr 19 13:52:18 2015 us=268858 admin/::ffff:89.144.197.11(3365) SIGTERM[soft,remote-exit] received, client-instance exiting
Sun Apr 19 13:52:18 2015 RADIUS-PLUGIN: BACKGROUND ACCT: No accounting data was found for admin,::ffff:89.144.197.11:3365.
Sun Apr 19 13:52:18 2015 us=272689 PLUGIN_CALL: POST /var/packages/VPNCenter/target/lib/radiusplugin.so/PLUGIN_CLIENT_DISCONNECT status=0
Sun Apr 19 13:52:26 2015 us=494065 MULTI: multi_create_instance called
Sun Apr 19 13:52:26 2015 us=494327 ::ffff:89.144.197.11(3366) Re-using SSL/TLS context
Sun Apr 19 13:52:26 2015 us=494466 ::ffff:89.144.197.11(3366) LZO compression initialized
Sun Apr 19 13:52:26 2015 us=494826 ::ffff:89.144.197.11(3366) Control Channel MTU parms [ L:1542 D:138 EF:38 EB:0 ET:0 EL:0 ]
Sun Apr 19 13:52:26 2015 us=494942 ::ffff:89.144.197.11(3366) Data Channel MTU parms [ L:1542 D:1450 EF:42 EB:135 ET:0 EL:0 AF:3/1 ]
Sun Apr 19 13:52:26 2015 us=495101 ::ffff:89.144.197.11(3366) Local Options String: 'V4,dev-type tun,link-mtu 1542,tun-mtu 1500,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Sun Apr 19 13:52:26 2015 us=495181 ::ffff:89.144.197.11(3366) Expected Remote Options String: 'V4,dev-type tun,link-mtu 1542,tun-mtu 1500,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Sun Apr 19 13:52:26 2015 us=495286 ::ffff:89.144.197.11(3366) Local Options hash (VER=V4): '530fdded'
Sun Apr 19 13:52:26 2015 us=495385 ::ffff:89.144.197.11(3366) Expected Remote Options hash (VER=V4): '41690919'
Sun Apr 19 13:52:26 2015 us=495536 ::ffff:89.144.197.11(3366) TLS: Initial packet from [AF_INET6]::ffff:89.144.197.11:3366, sid=8cb92099 58ed1c45
Sun Apr 19 13:52:26 2015 RADIUS-PLUGIN: FOREGROUND THREAD: New user.
Sun Apr 19 13:52:27 2015 RADIUS-PLUGIN: No attributes Acct Interim Interval or bad length.
Sun Apr 19 13:52:27 2015 RADIUS-PLUGIN: Client config file was not written, overwriteccfiles is false
.Sun Apr 19 13:52:27 2015 RADIUS-PLUGIN: FOREGROUND THREAD: Add user to map.
Sun Apr 19 13:52:27 2015 us=352606 ::ffff:89.144.197.11(3366) PLUGIN_CALL: POST /var/packages/VPNCenter/target/lib/radiusplugin.so/PLUGIN_AUTH_USER_PASS_VERIFY status=0
Sun Apr 19 13:52:27 2015 us=352829 ::ffff:89.144.197.11(3366) TLS: Username/Password authentication succeeded for username 'admin' [CN SET]
Sun Apr 19 13:52:27 2015 us=353768 ::ffff:89.144.197.11(3366) Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
Sun Apr 19 13:52:27 2015 us=353901 ::ffff:89.144.197.11(3366) Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Sun Apr 19 13:52:27 2015 us=354306 ::ffff:89.144.197.11(3366) Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
Sun Apr 19 13:52:27 2015 us=354430 ::ffff:89.144.197.11(3366) Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Sun Apr 19 13:52:27 2015 us=467233 ::ffff:89.144.197.11(3366) Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA
Sun Apr 19 13:52:27 2015 us=467462 ::ffff:89.144.197.11(3366) [admin] Peer Connection Initiated with [AF_INET6]::ffff:89.144.197.11:3366
Sun Apr 19 13:52:27 2015 us=467648 admin/::ffff:89.144.197.11(3366) MULTI_sva: pool returned IPv4=10.8.0.6, IPv6=(Not enabled)
Sun Apr 19 13:52:27 2015 us=471013 admin/::ffff:89.144.197.11(3366) PLUGIN_CALL: POST /var/packages/VPNCenter/target/lib/radiusplugin.so/PLUGIN_CLIENT_CONNECT status=0
Sun Apr 19 13:52:27 2015 us=471206 admin/::ffff:89.144.197.11(3366) OPTIONS IMPORT: reading client specific options from: /tmp/openvpn_cc_2684579873ccbf111c5775e3cfb31dd8.tmp
Sun Apr 19 13:52:27 2015 us=471731 admin/::ffff:89.144.197.11(3366) MULTI: Learn: 10.8.0.6 -> admin/::ffff:89.144.197.11(3366)
Sun Apr 19 13:52:27 2015 us=471845 admin/::ffff:89.144.197.11(3366) MULTI: primary virtual IP for admin/::ffff:89.144.197.11(3366): 10.8.0.6
Sun Apr 19 13:52:27 2015 us=473963 admin/::ffff:89.144.197.11(3366) PUSH: Received control message: 'PUSH_REQUEST'
Sun Apr 19 13:52:27 2015 us=474107 admin/::ffff:89.144.197.11(3366) send_push_reply(): safe_cap=940
Sun Apr 19 13:52:27 2015 us=474443 admin/::ffff:89.144.197.11(3366) SENT CONTROL [admin]: 'PUSH_REPLY,route 192.168.0.0 255.255.255.0,route 10.8.0.0 255.255.255.0,route 10.8.0.1,topology net30,ping 10,ping-restart 60,ifconfig 10.8.0.6 10.8.0.5' (status=1)
Sun Apr 19 13:53:32 2015 us=895952 admin/::ffff:89.144.197.11(3366) SIGTERM[soft,remote-exit] received, client-instance exiting
Sun Apr 19 13:53:32 2015 RADIUS-PLUGIN: BACKGROUND ACCT: No accounting data was found for admin,::ffff:89.144.197.11:3366.
Sun Apr 19 13:53:32 2015 us=899493 PLUGIN_CALL: POST /var/packages/VPNCenter/target/lib/radiusplugin.so/PLUGIN_CLIENT_DISCONNECT status=0



Client log (screenshots - was not able to copy it):
https://drive.google.com/file/d/0Bx0A-O ... sp=sharing
https://drive.google.com/file/d/0Bx0A-O ... sp=sharing
https://drive.google.com/file/d/0Bx0A-O ... sp=sharing
https://drive.google.com/file/d/0Bx0A-O ... sp=sharing

Kind Regards
Top
User avatar
Traffic
OpenVPN Protagonist
Posts: 4066
Joined: Sat Aug 09, 2014 11:24 am

Re: Android DNS Problem

Post by Traffic » Mon Apr 20, 2015 2:08 pm

First:
  • As you use --username-as-common-name and --duplicate-cn .. do you have different usernames for each of your computers or do you use the same username for all ?

    I notice that your phone gets the first ip address in the pool:

    Code: Select all

    ifconfig 10.8.0.6 10.8. 0.5
    I presume you have no other clients connected at the same time ?
Second:
  • does openvpn run on your NAS or your router ?
Third:
  • are you trying to resolve the name of your NAS or are you connecting to it by IP address only ?
Top
Wuerzminister
OpenVpn Newbie
Posts: 11
Joined: Tue Apr 14, 2015 1:41 pm

Re: Android DNS Problem

Post by Wuerzminister » Tue Apr 21, 2015 5:10 am

Hi!
I use different usernames. Should i remove these two options?
I only connect with one client st the same time.

openvpn runs on my Synology DS215J NAS.

I always use the IP-Address and not the Name.
The name is only working when I am at home...

Kind Regards
Top
User avatar
Traffic
OpenVPN Protagonist
Posts: 4066
Joined: Sat Aug 09, 2014 11:24 am

Re: Android DNS Problem

Post by Traffic » Tue Apr 21, 2015 7:58 pm

Traffic wrote:As you use --username-as-common-name and --duplicate-cn ..
Wuerzminister wrote:I use different usernames. Should i remove these two options?
Have you considered using a full PKI with client certs and keys, created with Easy-RSA ?
.. the OpenVPN recommended method.
Wuerzminister wrote:The name is only working when I am at home
What is the name you are trying to resolve ?

I expect the name is not a global DNS name and so you cannot resolve it via public DNS.
I imagine the NAS name is provided via Netbios or Samba on the NAS which is why is it only works on your LAN ..
Top
Wuerzminister
OpenVpn Newbie
Posts: 11
Joined: Tue Apr 14, 2015 1:41 pm

Re: Android DNS Problem

Post by Wuerzminister » Tue Apr 21, 2015 9:19 pm

Thank you for the hint i will read into this in the near future...

The Name is "Konter".
But thats not my problem - i know my internal ip :mrgreen:
A friend has a Galaxy S5 with Android 4.4.2. He will try it the next days. Maybe it is really a Lollipop problem...

Kind Regards
Top
Wuerzminister
OpenVpn Newbie
Posts: 11
Joined: Tue Apr 14, 2015 1:41 pm

Re: Android DNS Problem

Post by Wuerzminister » Sun Apr 26, 2015 12:04 pm

I have tested it on the Galaxy S5 with Android 4.4.2. It is working perfectly.
So it is a lollipop Problem...
Maybe the app will be updated in the future?

Kind Regards
Wuerzminister
Top
Post Reply

Return to “OpenVPN Connect (Android)”