I am running a vpn server which allows people to use internet from behind firewall, proxy, etc. In the past few weeks some friends told me they are having issues: they have random drops and because my server still thinks they are connected, they cannot reconnect for a few minutes.
All these drops happened when using openvpn behind http proxy, but only with some and the same people. All started about a month ago but i know of know change at that time. They are using various operating systems, with openvpn 2.1.1. I tried getting more info with verb, but even in debug level (6+) im getting only
I was thinking maybe the proxy admin did something, but ... that makes no sense. To get rid of vpns he would ban the ip or something, but setting up something that dcs vpns?Connection reset, restarting [-1]
TCP/UDP: Closing socket
SIGUSR1[soft,connection-reset] received, process restarting
server (2.1.1)
Code: Select all
mode server
dev tap
fast-io
port 443
proto tcp-server
local xx.xx.xx.xx
tls-server
dh /etc/openvpn/ssl/dh1024.pem
cert /etc/openvpn/ssl/server.crt
key /etc/openvpn/ssl/server.key
ca /etc/openvpn/ssl/ca.crt
reneg-sec 216000
server 10.0.10.0 255.255.255.0 nopool
ifconfig-pool 10.0.10.2 10.0.10.254
push "dhcp-option DNS xx.xx.xx.xx"
push "dhcp-option DNS xx.xx.xx.xx"
push "redirect-gateway def1"
keepalive 5 60
comp-lzo
user nobody
group nobody
persist-key
persist-tun
log /var/log/openvpn/vpn1.log
verb 1
mute 10
username-as-common-name
tun-mtu 1500
tun-mtu-extra 32
max-clients 253
auth-user-pass-verify "/etc/openvpn/auth.sh" via-env
script-security 3
tmp-dir "/etc/openvpn/temp"
tcp-queue-limit 128
txqueuelen 200
tcp-nodelay
inactive 600
client-connect /etc/openvpn/clientconnect
client-disconnect /etc/openvpn/clientdisconnect
Code: Select all
client
dev tap
proto tcp-client
remote xx.xx.xx.xx 443
remote-random
auto-proxy
resolv-retry infinite
nobind
comp-lzo
persist-key
persist-tun
verb 3
mute 10
auth-user-pass
pull
ns-cert-type server
cert client.crt
key client.key
ca ca.crt
tls-client
reneg-sec 0Thanks,
Hadeor