Disabled client-to-client

antoinef · Post by **antoinef** » Mon Nov 16, 2020 3:49 pm

Hi,

I have set up a working Openvpn server. However for some of our needs we would like our customers not to be able to communicate with each other. I disabled the client-to-client option but they still manage to communicate.

When I do a Tracert client1 to client2 I see that the requeste packet do client1> server> client 2.

How to make so that the servers can communicate with the clients, the clients with the server but the clients cannot communicate with each other?

antoinef · Post by **antoinef** » Mon Nov 16, 2020 3:59 pm

my server configuration :

server config

port 1194
proto udp
dev tun
topology subnet
server 10.8.0.0 255.255.255.0
ca "C:\\Program Files\\OpenVPN\\config\\ca.crt"
cert "C:\\Program Files\\OpenVPN\\config\\Titanweb_entourage.crt"
key "C:\\Program Files\\OpenVPN\\config\\Titanweb_entourage.key"
dh "C:\\Program Files\\OpenVPN\\config\\dh2048.pem"
ifconfig-pool-persist ipp.txt
ifconfig 10.8.0.1 255.255.255.0
push "route 10.8.0.0 255.255.255.0 10.8.0.1"
client-config-dir ccd
keepalive 10 120
cipher AES-256-CBC
persist-key
persist-tun
status openvpn-status.log
verb 3
explicit-exit-notify 1
management localhost 7505

TinCanTech · Post by **TinCanTech** » Mon Nov 16, 2020 4:01 pm

antoinef wrote: ↑
Mon Nov 16, 2020 3:49 pm
How to make so that the servers can communicate with the clients, the clients with the server but the clients cannot communicate with each other?

You don't push the route ..

antoinef wrote: ↑
Mon Nov 16, 2020 3:59 pm
push "route 10.8.0.0 255.255.255.0 10.8.0.1"

And if you don't trust your clients you block them with your server firewall.

antoinef · Post by **antoinef** » Tue Nov 17, 2020 8:05 am

But if I don't push the route, the server and the client can't comunicate ?

TinCanTech · Post by **TinCanTech** » Tue Nov 17, 2020 4:29 pm

antoinef wrote: ↑
Tue Nov 17, 2020 8:05 am
But if I don't push the route, the server and the client can't comunicate ?

Wrong ..

antoinef · Post by **antoinef** » Wed Nov 18, 2020 8:16 am

Ok thanks. But now I have an other problem. Ideleted the route. When I restart the openvpn server, it does not assign itself an IP address. I do ipconfig /all and there is nothing.

what can be the source of the problem?

TinCanTech · Post by **TinCanTech** » Wed Nov 18, 2020 2:47 pm

Start openvpn and then post your log file at --verb 4

antoinef · Post by **antoinef** » Thu Nov 19, 2020 1:43 pm

Code: Select all

2020-11-19 14:41:51 us=385610 --pull-filter ignored for --mode server
2020-11-19 14:41:51 us=386521 Current Parameter Settings:
2020-11-19 14:41:51 us=386521   config = 'servertitanweb.ovpn'
2020-11-19 14:41:51 us=386521   mode = 1
2020-11-19 14:41:51 us=513603   show_ciphers = DISABLED
2020-11-19 14:41:51 us=513603   show_digests = DISABLED
2020-11-19 14:41:51 us=513603   show_engines = DISABLED
2020-11-19 14:41:51 us=513603   genkey = DISABLED
2020-11-19 14:41:51 us=513603   genkey_filename = '[UNDEF]'
2020-11-19 14:41:51 us=513603   key_pass_file = '[UNDEF]'
2020-11-19 14:41:51 us=513603   show_tls_ciphers = DISABLED
2020-11-19 14:41:51 us=513603   connect_retry_max = 0
2020-11-19 14:41:51 us=513603 Connection profiles [0]:
2020-11-19 14:41:51 us=513603   proto = udp
2020-11-19 14:41:51 us=513603   local = '[UNDEF]'
2020-11-19 14:41:51 us=513603   local_port = '1194'
2020-11-19 14:41:51 us=513603   remote = '[UNDEF]'
2020-11-19 14:41:51 us=513603   remote_port = '1194'
2020-11-19 14:41:51 us=513603   remote_float = DISABLED
2020-11-19 14:41:51 us=513603   bind_defined = DISABLED
2020-11-19 14:41:51 us=513603   bind_local = ENABLED
2020-11-19 14:41:51 us=513603   bind_ipv6_only = DISABLED
2020-11-19 14:41:51 us=513603   connect_retry_seconds = 5
2020-11-19 14:41:51 us=513603   connect_timeout = 120
2020-11-19 14:41:51 us=513603   socks_proxy_server = '[UNDEF]'
2020-11-19 14:41:51 us=513603   socks_proxy_port = '[UNDEF]'
2020-11-19 14:41:51 us=513603   tun_mtu = 1500
2020-11-19 14:41:51 us=513603   tun_mtu_defined = ENABLED
2020-11-19 14:41:51 us=513603   link_mtu = 1500
2020-11-19 14:41:51 us=513603   link_mtu_defined = DISABLED
2020-11-19 14:41:51 us=513603   tun_mtu_extra = 0
2020-11-19 14:41:51 us=513603   tun_mtu_extra_defined = DISABLED
2020-11-19 14:41:51 us=513603   mtu_discover_type = -1
2020-11-19 14:41:51 us=513603   fragment = 0
2020-11-19 14:41:51 us=513603   mssfix = 1450
2020-11-19 14:41:51 us=513603   explicit_exit_notification = 1
2020-11-19 14:41:51 us=513603   tls_auth_file = '[UNDEF]'
2020-11-19 14:41:51 us=513603   key_direction = not set
2020-11-19 14:41:51 us=513603   tls_crypt_file = '[UNDEF]'
2020-11-19 14:41:51 us=513603   tls_crypt_v2_file = '[UNDEF]'
2020-11-19 14:41:51 us=513603 Connection profiles END
2020-11-19 14:41:51 us=514565   remote_random = DISABLED
2020-11-19 14:41:51 us=514565   ipchange = '[UNDEF]'
2020-11-19 14:41:51 us=514565   dev = 'tun'
2020-11-19 14:41:51 us=514565   dev_type = '[UNDEF]'
2020-11-19 14:41:51 us=514565   dev_node = '[UNDEF]'
2020-11-19 14:41:51 us=514565   lladdr = '[UNDEF]'
2020-11-19 14:41:51 us=514565   topology = 3
2020-11-19 14:41:51 us=514565   ifconfig_local = '10.8.0.1'
2020-11-19 14:41:51 us=514565   ifconfig_remote_netmask = '255.255.255.0'
2020-11-19 14:41:51 us=514565   ifconfig_noexec = DISABLED
2020-11-19 14:41:51 us=514565   ifconfig_nowarn = DISABLED
2020-11-19 14:41:51 us=514565   ifconfig_ipv6_local = '[UNDEF]'
2020-11-19 14:41:51 us=514565   ifconfig_ipv6_netbits = 0
2020-11-19 14:41:51 us=514565   ifconfig_ipv6_remote = '[UNDEF]'
2020-11-19 14:41:51 us=514565   shaper = 0
2020-11-19 14:41:51 us=514565   mtu_test = 0
2020-11-19 14:41:51 us=514565   mlock = DISABLED
2020-11-19 14:41:51 us=514565   keepalive_ping = 10
2020-11-19 14:41:51 us=514565   keepalive_timeout = 120
2020-11-19 14:41:51 us=514565   inactivity_timeout = 0
2020-11-19 14:41:51 us=514565   ping_send_timeout = 10
2020-11-19 14:41:51 us=514565   ping_rec_timeout = 240
2020-11-19 14:41:51 us=514565   ping_rec_timeout_action = 2
2020-11-19 14:41:51 us=514565   ping_timer_remote = DISABLED
2020-11-19 14:41:51 us=514565   remap_sigusr1 = 0
2020-11-19 14:41:51 us=514565   persist_tun = ENABLED
2020-11-19 14:41:51 us=514565   persist_local_ip = DISABLED
2020-11-19 14:41:51 us=514565   persist_remote_ip = DISABLED
2020-11-19 14:41:51 us=514565   persist_key = ENABLED
2020-11-19 14:41:51 us=514565   passtos = DISABLED
2020-11-19 14:41:51 us=514565   resolve_retry_seconds = 1000000000
2020-11-19 14:41:51 us=514565   resolve_in_advance = DISABLED
2020-11-19 14:41:51 us=514565   username = '[UNDEF]'
2020-11-19 14:41:51 us=514565   groupname = '[UNDEF]'
2020-11-19 14:41:51 us=514565   chroot_dir = '[UNDEF]'
2020-11-19 14:41:51 us=514565   cd_dir = '[UNDEF]'
2020-11-19 14:41:51 us=514565   writepid = '[UNDEF]'
2020-11-19 14:41:51 us=514565   up_script = '[UNDEF]'
2020-11-19 14:41:51 us=514565   down_script = '[UNDEF]'
2020-11-19 14:41:51 us=514565   down_pre = DISABLED
2020-11-19 14:41:51 us=514565   up_restart = DISABLED
2020-11-19 14:41:51 us=514565   up_delay = DISABLED
2020-11-19 14:41:51 us=514565   daemon = DISABLED
2020-11-19 14:41:51 us=514565   inetd = 0
2020-11-19 14:41:51 us=514565   log = ENABLED
2020-11-19 14:41:51 us=514565   suppress_timestamps = DISABLED
2020-11-19 14:41:51 us=514565   machine_readable_output = DISABLED
2020-11-19 14:41:51 us=514565   nice = 0
2020-11-19 14:41:51 us=514565   verbosity = 4
2020-11-19 14:41:51 us=514565   mute = 0
2020-11-19 14:41:51 us=514565   gremlin = 0
2020-11-19 14:41:51 us=514565   status_file = 'openvpn-status.log'
2020-11-19 14:41:51 us=514565   status_file_version = 1
2020-11-19 14:41:51 us=514565   status_file_update_freq = 60
2020-11-19 14:41:51 us=514565   occ = ENABLED
2020-11-19 14:41:51 us=514565   rcvbuf = 0
2020-11-19 14:41:51 us=514565   sndbuf = 0
2020-11-19 14:41:51 us=514565   sockflags = 0
2020-11-19 14:41:51 us=514565   fast_io = DISABLED
2020-11-19 14:41:51 us=514565   comp.alg = 0
2020-11-19 14:41:51 us=514565   comp.flags = 0
2020-11-19 14:41:51 us=514565   route_script = '[UNDEF]'
2020-11-19 14:41:51 us=514565   route_default_gateway = '10.8.0.2'
2020-11-19 14:41:51 us=514565   route_default_metric = 0
2020-11-19 14:41:51 us=514565   route_noexec = DISABLED
2020-11-19 14:41:51 us=514565   route_delay = 0
2020-11-19 14:41:51 us=514565   route_delay_window = 30
2020-11-19 14:41:51 us=514565   route_delay_defined = DISABLED
2020-11-19 14:41:51 us=514565   route_nopull = DISABLED
2020-11-19 14:41:51 us=514565   route_gateway_via_dhcp = DISABLED
2020-11-19 14:41:51 us=514565   allow_pull_fqdn = DISABLED
2020-11-19 14:41:51 us=514565   Pull filters:
2020-11-19 14:41:51 us=514565     ignore "route-method"
2020-11-19 14:41:51 us=514565   management_addr = '127.0.0.1'
2020-11-19 14:41:51 us=514565   management_port = '25340'
2020-11-19 14:41:51 us=514565   management_user_pass = 'stdin'
2020-11-19 14:41:51 us=514565   management_log_history_cache = 250
2020-11-19 14:41:51 us=514565   management_echo_buffer_size = 100
2020-11-19 14:41:51 us=514565   management_write_peer_info_file = '[UNDEF]'
2020-11-19 14:41:51 us=514565   management_client_user = '[UNDEF]'
2020-11-19 14:41:51 us=514565   management_client_group = '[UNDEF]'
2020-11-19 14:41:51 us=514565   management_flags = 6
2020-11-19 14:41:51 us=514565   shared_secret_file = '[UNDEF]'
2020-11-19 14:41:51 us=514565   key_direction = not set
2020-11-19 14:41:51 us=514565   ciphername = 'AES-256-GCM'
2020-11-19 14:41:51 us=514565   ncp_enabled = ENABLED
2020-11-19 14:41:51 us=514565   ncp_ciphers = 'AES-256-GCM:AES-128-GCM'
2020-11-19 14:41:51 us=514565   authname = 'SHA1'
2020-11-19 14:41:51 us=514565   prng_hash = 'SHA1'
2020-11-19 14:41:51 us=514565   prng_nonce_secret_len = 16
2020-11-19 14:41:51 us=514565   keysize = 0
2020-11-19 14:41:51 us=514565   engine = DISABLED
2020-11-19 14:41:51 us=514565   replay = ENABLED
2020-11-19 14:41:51 us=514565   mute_replay_warnings = DISABLED
2020-11-19 14:41:51 us=514565   replay_window = 64
2020-11-19 14:41:51 us=514565   replay_time = 15
2020-11-19 14:41:51 us=514565   packet_id_file = '[UNDEF]'
2020-11-19 14:41:51 us=514565   test_crypto = DISABLED
2020-11-19 14:41:51 us=514565   tls_server = ENABLED
2020-11-19 14:41:51 us=514565   tls_client = DISABLED
2020-11-19 14:41:51 us=514565   ca_file = 'C:\Program Files\OpenVPN\config\ca.crt'
2020-11-19 14:41:51 us=514565   ca_path = '[UNDEF]'
2020-11-19 14:41:51 us=514565   dh_file = 'C:\Program Files\OpenVPN\config\dh2048.pem'
2020-11-19 14:41:51 us=514565   cert_file = 'C:\Program Files\OpenVPN\config\Titanweb_entourage.crt'
2020-11-19 14:41:51 us=514565   extra_certs_file = '[UNDEF]'
2020-11-19 14:41:51 us=514565   priv_key_file = 'C:\Program Files\OpenVPN\config\Titanweb_entourage.key'
2020-11-19 14:41:51 us=514565   pkcs12_file = '[UNDEF]'
2020-11-19 14:41:51 us=514565   cryptoapi_cert = '[UNDEF]'
2020-11-19 14:41:51 us=514565   cipher_list = '[UNDEF]'
2020-11-19 14:41:51 us=514565   cipher_list_tls13 = '[UNDEF]'
2020-11-19 14:41:51 us=514565   tls_cert_profile = '[UNDEF]'
2020-11-19 14:41:51 us=514565   tls_verify = '[UNDEF]'
2020-11-19 14:41:51 us=514565   tls_export_cert = '[UNDEF]'
2020-11-19 14:41:51 us=514565   verify_x509_type = 0
2020-11-19 14:41:51 us=514565   verify_x509_name = '[UNDEF]'
2020-11-19 14:41:51 us=514565   crl_file = '[UNDEF]'
2020-11-19 14:41:51 us=514565   ns_cert_type = 0
2020-11-19 14:41:51 us=514565   remote_cert_ku[i] = 0
2020-11-19 14:41:51 us=514565   remote_cert_ku[i] = 0
2020-11-19 14:41:51 us=514565   remote_cert_ku[i] = 0
2020-11-19 14:41:51 us=514565   remote_cert_ku[i] = 0
2020-11-19 14:41:51 us=514565   remote_cert_ku[i] = 0
2020-11-19 14:41:51 us=514565   remote_cert_ku[i] = 0
2020-11-19 14:41:51 us=514565   remote_cert_ku[i] = 0
2020-11-19 14:41:51 us=514565   remote_cert_ku[i] = 0
2020-11-19 14:41:51 us=514565   remote_cert_ku[i] = 0
2020-11-19 14:41:51 us=514565   remote_cert_ku[i] = 0
2020-11-19 14:41:51 us=514565   remote_cert_ku[i] = 0
2020-11-19 14:41:51 us=514565   remote_cert_ku[i] = 0
2020-11-19 14:41:51 us=514565   remote_cert_ku[i] = 0
2020-11-19 14:41:51 us=514565   remote_cert_ku[i] = 0
2020-11-19 14:41:51 us=514565   remote_cert_ku[i] = 0
2020-11-19 14:41:51 us=514565   remote_cert_ku[i] = 0
2020-11-19 14:41:51 us=514565   remote_cert_eku = '[UNDEF]'
2020-11-19 14:41:51 us=514565   ssl_flags = 0
2020-11-19 14:41:51 us=514565   tls_timeout = 2
2020-11-19 14:41:51 us=515565   renegotiate_bytes = -1
2020-11-19 14:41:51 us=515565   renegotiate_packets = 0
2020-11-19 14:41:51 us=515565   renegotiate_seconds = 3600
2020-11-19 14:41:51 us=515565   handshake_window = 60
2020-11-19 14:41:51 us=515565   transition_window = 3600
2020-11-19 14:41:51 us=515565   single_session = DISABLED
2020-11-19 14:41:51 us=515565   push_peer_info = DISABLED
2020-11-19 14:41:51 us=515565   tls_exit = DISABLED
2020-11-19 14:41:51 us=515565   tls_crypt_v2_metadata = '[UNDEF]'
2020-11-19 14:41:51 us=515565   pkcs11_protected_authentication = DISABLED
2020-11-19 14:41:51 us=515565   pkcs11_protected_authentication = DISABLED
2020-11-19 14:41:51 us=515565   pkcs11_protected_authentication = DISABLED
2020-11-19 14:41:51 us=515565   pkcs11_protected_authentication = DISABLED
2020-11-19 14:41:51 us=515565   pkcs11_protected_authentication = DISABLED
2020-11-19 14:41:51 us=515565   pkcs11_protected_authentication = DISABLED
2020-11-19 14:41:51 us=515565   pkcs11_protected_authentication = DISABLED
2020-11-19 14:41:51 us=515565   pkcs11_protected_authentication = DISABLED
2020-11-19 14:41:51 us=515565   pkcs11_protected_authentication = DISABLED
2020-11-19 14:41:51 us=515565   pkcs11_protected_authentication = DISABLED
2020-11-19 14:41:51 us=515565   pkcs11_protected_authentication = DISABLED
2020-11-19 14:41:51 us=515565   pkcs11_protected_authentication = DISABLED
2020-11-19 14:41:51 us=515565   pkcs11_protected_authentication = DISABLED
2020-11-19 14:41:51 us=515565   pkcs11_protected_authentication = DISABLED
2020-11-19 14:41:51 us=515565   pkcs11_protected_authentication = DISABLED
2020-11-19 14:41:51 us=515565   pkcs11_protected_authentication = DISABLED
2020-11-19 14:41:51 us=515565   pkcs11_private_mode = 00000000
2020-11-19 14:41:51 us=515565   pkcs11_private_mode = 00000000
2020-11-19 14:41:51 us=515565   pkcs11_private_mode = 00000000
2020-11-19 14:41:51 us=515565   pkcs11_private_mode = 00000000
2020-11-19 14:41:51 us=515565   pkcs11_private_mode = 00000000
2020-11-19 14:41:51 us=515565   pkcs11_private_mode = 00000000
2020-11-19 14:41:51 us=515565   pkcs11_private_mode = 00000000
2020-11-19 14:41:51 us=515565   pkcs11_private_mode = 00000000
2020-11-19 14:41:51 us=515565   pkcs11_private_mode = 00000000
2020-11-19 14:41:51 us=515565   pkcs11_private_mode = 00000000
2020-11-19 14:41:51 us=515565   pkcs11_private_mode = 00000000
2020-11-19 14:41:51 us=515565   pkcs11_private_mode = 00000000
2020-11-19 14:41:51 us=515565   pkcs11_private_mode = 00000000
2020-11-19 14:41:51 us=515565   pkcs11_private_mode = 00000000
2020-11-19 14:41:51 us=515565   pkcs11_private_mode = 00000000
2020-11-19 14:41:51 us=515565   pkcs11_private_mode = 00000000
2020-11-19 14:41:51 us=515565   pkcs11_cert_private = DISABLED
2020-11-19 14:41:51 us=515565   pkcs11_cert_private = DISABLED
2020-11-19 14:41:51 us=515565   pkcs11_cert_private = DISABLED
2020-11-19 14:41:51 us=515565   pkcs11_cert_private = DISABLED
2020-11-19 14:41:51 us=515565   pkcs11_cert_private = DISABLED
2020-11-19 14:41:51 us=515565   pkcs11_cert_private = DISABLED
2020-11-19 14:41:51 us=515565   pkcs11_cert_private = DISABLED
2020-11-19 14:41:51 us=515565   pkcs11_cert_private = DISABLED
2020-11-19 14:41:51 us=515565   pkcs11_cert_private = DISABLED
2020-11-19 14:41:51 us=515565   pkcs11_cert_private = DISABLED
2020-11-19 14:41:51 us=515565   pkcs11_cert_private = DISABLED
2020-11-19 14:41:51 us=515565   pkcs11_cert_private = DISABLED
2020-11-19 14:41:51 us=515565   pkcs11_cert_private = DISABLED
2020-11-19 14:41:51 us=515565   pkcs11_cert_private = DISABLED
2020-11-19 14:41:51 us=515565   pkcs11_cert_private = DISABLED
2020-11-19 14:41:51 us=515565   pkcs11_cert_private = DISABLED
2020-11-19 14:41:51 us=515565   pkcs11_pin_cache_period = -1
2020-11-19 14:41:51 us=515565   pkcs11_id = '[UNDEF]'
2020-11-19 14:41:51 us=515565   pkcs11_id_management = DISABLED
2020-11-19 14:41:51 us=515565   server_network = 10.8.0.0
2020-11-19 14:41:51 us=515565   server_netmask = 255.255.255.0
2020-11-19 14:41:51 us=515565   server_network_ipv6 = ::
2020-11-19 14:41:51 us=515565   server_netbits_ipv6 = 0
2020-11-19 14:41:51 us=515565   server_bridge_ip = 0.0.0.0
2020-11-19 14:41:51 us=515565   server_bridge_netmask = 0.0.0.0
2020-11-19 14:41:51 us=515565   server_bridge_pool_start = 0.0.0.0
2020-11-19 14:41:51 us=515565   server_bridge_pool_end = 0.0.0.0
2020-11-19 14:41:51 us=515565   push_entry = 'route-gateway 10.8.0.1'
2020-11-19 14:41:51 us=515565   push_entry = 'topology subnet'
2020-11-19 14:41:51 us=515565   push_entry = 'ping 10'
2020-11-19 14:41:51 us=515565   push_entry = 'ping-restart 120'
2020-11-19 14:41:51 us=515565   ifconfig_pool_defined = ENABLED
2020-11-19 14:41:51 us=515565   ifconfig_pool_start = 10.8.0.2
2020-11-19 14:41:51 us=515565   ifconfig_pool_end = 10.8.0.253
2020-11-19 14:41:51 us=515565   ifconfig_pool_netmask = 255.255.255.0
2020-11-19 14:41:51 us=515565   ifconfig_pool_persist_filename = 'ipp.txt'
2020-11-19 14:41:51 us=515565   ifconfig_pool_persist_refresh_freq = 600
2020-11-19 14:41:51 us=515565   ifconfig_ipv6_pool_defined = DISABLED
2020-11-19 14:41:51 us=515565   ifconfig_ipv6_pool_base = ::
2020-11-19 14:41:51 us=515565   ifconfig_ipv6_pool_netbits = 0
2020-11-19 14:41:51 us=515565   n_bcast_buf = 256
2020-11-19 14:41:51 us=515565   tcp_queue_limit = 64
2020-11-19 14:41:51 us=515565   real_hash_size = 256
2020-11-19 14:41:51 us=515565   virtual_hash_size = 256
2020-11-19 14:41:51 us=515565   client_connect_script = '[UNDEF]'
2020-11-19 14:41:51 us=515565   learn_address_script = '[UNDEF]'
2020-11-19 14:41:51 us=515565   client_disconnect_script = '[UNDEF]'
2020-11-19 14:41:51 us=515565   client_config_dir = 'ccd'
2020-11-19 14:41:51 us=515565   ccd_exclusive = DISABLED
2020-11-19 14:41:51 us=515565   tmp_dir = 'C:\Users\ADMINI~1\AppData\Local\Temp\'
2020-11-19 14:41:51 us=515565   push_ifconfig_defined = DISABLED
2020-11-19 14:41:51 us=515565   push_ifconfig_local = 0.0.0.0
2020-11-19 14:41:51 us=515565   push_ifconfig_remote_netmask = 0.0.0.0
2020-11-19 14:41:51 us=515565   push_ifconfig_ipv6_defined = DISABLED
2020-11-19 14:41:51 us=515565   push_ifconfig_ipv6_local = ::/0
2020-11-19 14:41:51 us=515565   push_ifconfig_ipv6_remote = ::
2020-11-19 14:41:51 us=515565   enable_c2c = DISABLED
2020-11-19 14:41:51 us=515565   duplicate_cn = DISABLED
2020-11-19 14:41:51 us=515565   cf_max = 0
2020-11-19 14:41:51 us=515565   cf_per = 0
2020-11-19 14:41:51 us=515565   max_clients = 1024
2020-11-19 14:41:51 us=515565   max_routes_per_client = 256
2020-11-19 14:41:51 us=515565   auth_user_pass_verify_script = '[UNDEF]'
2020-11-19 14:41:51 us=515565   auth_user_pass_verify_script_via_file = DISABLED
2020-11-19 14:41:51 us=515565   auth_token_generate = DISABLED
2020-11-19 14:41:51 us=515565   auth_token_lifetime = 0
2020-11-19 14:41:51 us=515565   auth_token_secret_file = '[UNDEF]'
2020-11-19 14:41:51 us=515565   vlan_tagging = DISABLED
2020-11-19 14:41:51 us=515565   vlan_accept = all
2020-11-19 14:41:51 us=515565   vlan_pvid = 1
2020-11-19 14:41:51 us=515565   client = DISABLED
2020-11-19 14:41:51 us=515565   pull = DISABLED
2020-11-19 14:41:51 us=515565   auth_user_pass_file = '[UNDEF]'
2020-11-19 14:41:51 us=515565   show_net_up = DISABLED
2020-11-19 14:41:51 us=515565   route_method = 3
2020-11-19 14:41:51 us=515565   block_outside_dns = DISABLED
2020-11-19 14:41:51 us=515565   ip_win32_defined = DISABLED
2020-11-19 14:41:51 us=515565   ip_win32_type = 3
2020-11-19 14:41:51 us=515565   dhcp_masq_offset = 0
2020-11-19 14:41:51 us=515565   dhcp_lease_time = 31536000
2020-11-19 14:41:51 us=515565   tap_sleep = 10
2020-11-19 14:41:51 us=515565   dhcp_options = DISABLED
2020-11-19 14:41:51 us=515565   dhcp_renew = DISABLED
2020-11-19 14:41:51 us=515565   dhcp_pre_release = DISABLED
2020-11-19 14:41:51 us=515565   domain = '[UNDEF]'
2020-11-19 14:41:51 us=515565   netbios_scope = '[UNDEF]'
2020-11-19 14:41:51 us=515565   netbios_node_type = 0
2020-11-19 14:41:51 us=515565   disable_nbt = DISABLED
2020-11-19 14:41:51 us=515565 OpenVPN 2.5_rc1 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [AEAD] built on Sep 21 2020
2020-11-19 14:41:51 us=515565 Windows version 6.3 (Windows 8.1) 64bit
2020-11-19 14:41:51 us=515565 library versions: OpenSSL 1.1.1g  21 Apr 2020, LZO 2.10
Enter Management Password:
2020-11-19 14:41:51 us=552589 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:25340
2020-11-19 14:41:51 us=552589 Need hold release from management interface, waiting...
2020-11-19 14:41:51 us=628571 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:25340
2020-11-19 14:41:51 us=770587 MANAGEMENT: CMD 'state on'
2020-11-19 14:41:51 us=847563 MANAGEMENT: CMD 'log all on'
2020-11-19 14:41:52 us=14574 MANAGEMENT: CMD 'echo all on'
2020-11-19 14:41:52 us=16573 MANAGEMENT: CMD 'bytecount 5'
2020-11-19 14:41:52 us=18573 MANAGEMENT: CMD 'hold off'
2020-11-19 14:41:52 us=19575 MANAGEMENT: CMD 'hold release'
2020-11-19 14:41:52 us=195584 Diffie-Hellman initialized with 2048 bit key
2020-11-19 14:41:52 us=273602 TLS-Auth MTU parms [ L:1621 D:1212 EF:38 EB:0 ET:0 EL:3 ]
2020-11-19 14:41:52 us=273602 interactive service msg_channel=440
2020-11-19 14:41:52 us=273602 open_tun
2020-11-19 14:41:52 us=289597 tap-windows6 device [Connexion au réseau local 2] opened
2020-11-19 14:41:52 us=290602 TAP-Windows Driver Version 9.24 
2020-11-19 14:41:52 us=290602 TAP-Windows MTU=1500
2020-11-19 14:41:52 us=293605 Set TAP-Windows TUN subnet mode network/local/netmask = 10.8.0.0/10.8.0.1/255.255.255.0 [SUCCEEDED]
2020-11-19 14:41:52 us=293605 Notified TAP-Windows driver to set a DHCP IP/netmask of 10.8.0.1/255.255.255.0 on interface {556A26FC-C02E-498A-8CC3-40B4D69B97CB} [DHCP-serv: 10.8.0.254, lease-time: 31536000]
2020-11-19 14:41:52 us=294593 Sleeping for 10 seconds...
2020-11-19 14:42:02 us=299422 Successful ARP Flush on interface [22] {556A26FC-C02E-498A-8CC3-40B4D69B97CB}
2020-11-19 14:42:02 us=303432 do_ifconfig, ipv4=1, ipv6=0
2020-11-19 14:42:02 us=303432 MANAGEMENT: >STATE:1605793322,ASSIGN_IP,,10.8.0.1,,,,
2020-11-19 14:42:02 us=304424 IPv4 MTU set to 1500 on interface 22 using service
2020-11-19 14:42:02 us=304424 Data Channel MTU parms [ L:1621 D:1450 EF:121 EB:406 ET:0 EL:3 ]
2020-11-19 14:42:02 us=304424 Could not determine IPv4/IPv6 protocol. Using AF_INET6
2020-11-19 14:42:02 us=304424 Socket Buffers: R=[65536->65536] S=[65536->65536]
2020-11-19 14:42:02 us=304424 setsockopt(IPV6_V6ONLY=0)
2020-11-19 14:42:02 us=304424 UDPv6 link local (bound): [AF_INET6][undef]:1194
2020-11-19 14:42:02 us=304424 UDPv6 link remote: [AF_UNSPEC]
2020-11-19 14:42:02 us=318424 MULTI: multi_init called, r=256 v=256
2020-11-19 14:42:02 us=318424 IFCONFIG POOL IPv4: base=10.8.0.2 size=252
2020-11-19 14:42:02 us=318424 IFCONFIG POOL LIST
2020-11-19 14:42:02 us=318424 Initialization Sequence Completed
2020-11-19 14:42:02 us=318424 MANAGEMENT: >STATE:1605793322,CONNECTED,SUCCESS,10.8.0.1,,,,

TinCanTech · Post by **TinCanTech** » Thu Nov 19, 2020 2:02 pm

antoinef wrote: ↑
Wed Nov 18, 2020 8:16 am
When I restart the openvpn server, it does not assign itself an IP address

antoinef wrote: ↑
Thu Nov 19, 2020 1:43 pm
2020-11-19 14:42:02 us=303432 MANAGEMENT: >STATE:1605793322,ASSIGN_IP,,10.8.0.1,,,,
2020-11-19 14:42:02 us=304424 IPv4 MTU set to 1500 on interface 22 using service
2020-11-19 14:42:02 us=304424 Data Channel MTU parms [ L:1621 D:1450 EF:121 EB:406 ET:0 EL:3 ]
2020-11-19 14:42:02 us=304424 Could not determine IPv4/IPv6 protocol. Using AF_INET6
2020-11-19 14:42:02 us=304424 Socket Buffers: R=[65536->65536] S=[65536->65536]
2020-11-19 14:42:02 us=304424 setsockopt(IPV6_V6ONLY=0)
2020-11-19 14:42:02 us=304424 UDPv6 link local (bound): [AF_INET6][undef]:1194
2020-11-19 14:42:02 us=304424 UDPv6 link remote: [AF_UNSPEC]
2020-11-19 14:42:02 us=318424 MULTI: multi_init called, r=256 v=256
2020-11-19 14:42:02 us=318424 IFCONFIG POOL IPv4: base=10.8.0.2 size=252
2020-11-19 14:42:02 us=318424 IFCONFIG POOL LIST
2020-11-19 14:42:02 us=318424 Initialization Sequence Completed
2020-11-19 14:42:02 us=318424 MANAGEMENT: >STATE:1605793322,CONNECTED,SUCCESS,10.8.0.1,,,,

Looks right to me.

OpenVPN Support Forum

Disabled client-to-client

Disabled client-to-client

Re: Disabled client-to-client

Re: Disabled client-to-client

Re: Disabled client-to-client

Re: Disabled client-to-client

Re: Disabled client-to-client

Re: Disabled client-to-client

Re: Disabled client-to-client

Re: Disabled client-to-client