I see lot of messages like the ones below in the log, with a distance of a few seconds.
The tun interface is working correctly. All traffic originated from a segregated network namespace is
succesfully routed via it using policy routing. The wan interface is also working well.
I am using openvpn 2.4.0 on the latest Linux kernel distributed with Arch Linux.
I assume these are packets originated by a local process and directed to the VPN server, but routed via
the tun interface instead of via the wan interface. However, if I add in all tables and chains of the iptables firewall
the rules like this
Code: Select all
iptables -I OUTPUT 1 -d 212.138.35.25 -p udp -m udp --dport 443 ! -o vpn -j LOG --log-prefix "BAD PACKET"
How can I debug this further, is there a way I can hack openvpn source code to display more info on these packets?
Thanks
Code: Select all
Feb 13 19:01:11 archimede openvpn[537]: Recursive routing detected, drop tun packet to [AF_INET]212.138.35.25:443
Feb 13 19:01:12 archimede openvpn[537]: Recursive routing detected, drop tun packet to [AF_INET]212.138.35.25:443
Feb 13 19:01:14 archimede openvpn[537]: Recursive routing detected, drop tun packet to [AF_INET]212.138.35.25:443
Feb 13 19:01:15 archimede openvpn[537]: NOTE: --mute triggered...
Feb 13 19:02:05 archimede openvpn[537]: 5 variation(s) on previous 3 message(s) suppressed by --mute
Feb 13 19:02:05 archimede openvpn[537]: PID_ERR replay-window backtrack occurred [3] [SSL-7 [0___000000000000000000000000000000000000000000000000001111111111] 0:4180 0:4177 t=1486983725[0] r=[-2,64,15,3,1] sl=[44,64,64,528]
Feb 13 19:02:50 archimede openvpn[537]: Recursive routing detected, drop tun packet to [AF_INET]212.138.35.25:443
Feb 13 19:05:14 archimede openvpn[537]: Recursive routing detected, drop tun packet to [AF_INET]212.138.35.25:443
Feb 13 19:05:14 archimede openvpn[537]: Recursive routing detected, drop tun packet to [AF_INET]212.138.35.25:443
Feb 13 19:05:14 archimede openvpn[537]: NOTE: --mute triggered...
Feb 13 19:06:38 archimede openvpn[537]: 4 variation(s) on previous 3 message(s) suppressed by --mute
Feb 13 19:06:38 archimede openvpn[537]: PID_ERR replay-window backtrack occurred [4] [SSL-7 [0____00000000000000000000000000000000000000000000000011111111111] 0:16738 0:16734 t=1486983998[0] r=[0,64,15,4,1] sl=[30,64,64,528]