openvpn server started but not picking up connections

jlntlanyl · Post by **jlntlanyl** » Sat Jan 03, 2015 6:16 pm

Hi All,

I was trying to get a scrambled openvpn running, but the server isn't picking up connections from clients at all

root@server:/var/log# /usr/sbin/openvpn --writepid /var/run/openvpn/server.pid --cd /etc/openvpn --config server.conf --script-security 2
Sat Jan 3 13:00:22 2015 OpenVPN 2.3.4 x86_64-unknown-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [MH] [IPv6] built on Jan 3 2015
Sat Jan 3 13:00:22 2015 library versions: OpenSSL 1.0.1f 6 Jan 2014, LZO 2.06
Sat Jan 3 13:00:22 2015 Diffie-Hellman initialized with 1024 bit key
Sat Jan 3 13:00:22 2015 Control Channel Authentication: using '/etc/openvpn/ta.key' as a OpenVPN static key file
Sat Jan 3 13:00:22 2015 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Sat Jan 3 13:00:22 2015 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Sat Jan 3 13:00:22 2015 Socket Buffers: R=[212992->131072] S=[212992->131072]
Sat Jan 3 13:00:22 2015 ROUTE_GATEWAY 162.252.240.1/255.255.255.0 IFACE=eth0 HWADDR=00:50:56:89:76:8a
Sat Jan 3 13:00:22 2015 TUN/TAP device tun0 opened
Sat Jan 3 13:00:22 2015 TUN/TAP TX queue length set to 100
Sat Jan 3 13:00:22 2015 do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
Sat Jan 3 13:00:22 2015 /sbin/ifconfig tun0 10.8.0.1 pointopoint 10.8.0.2 mtu 1500
Sat Jan 3 13:00:22 2015 /sbin/route add -net 10.8.0.0 netmask 255.255.255.0 gw 10.8.0.2
Sat Jan 3 13:00:22 2015 UDPv4 link local (bound): [AF_INET] SERVER_IP:445
Sat Jan 3 13:00:22 2015 UDPv4 link remote: [undef]
Sat Jan 3 13:00:22 2015 MULTI: multi_init called, r=256 v=256
Sat Jan 3 13:00:22 2015 IFCONFIG POOL: base=10.8.0.4 size=62, ipv6=0
Sat Jan 3 13:00:22 2015 Initialization Sequence Completed

(interrupted here)
^CSat Jan 3 13:07:02 2015 event_wait : Interrupted system call (code=4)
Sat Jan 3 13:07:02 2015 /sbin/route del -net 10.8.0.0 netmask 255.255.255.0
Sat Jan 3 13:07:02 2015 Closing TUN/TAP interface
Sat Jan 3 13:07:02 2015 /sbin/ifconfig tun0 0.0.0.0
Sat Jan 3 13:07:02 2015 SIGINT[hard,] received, process exiting

server config

local 162.252.240.x #my ip
port 445
proto udp
dev tun
scramble obfuscate random_password
ca /etc/openvpn/ca.crt
cert /etc/openvpn/server.crt
key /etc/openvpn/server.key
tls-auth /etc/openvpn/ta.key 0
dh /etc/openvpn/dh1024.pem
server 10.8.0.0 255.255.255.0
cipher AES-256-CBC
comp-lzo
persist-key
persist-tun
#user nobody # If server fails to start, please change this to an existing user
#group openvpn # If server fails to start, please change this to an existing group
status openvpn-status.log
verb 3
tun-mtu 1500
tun-mtu-extra 32
mssfix 1450
push "redirect-gateway def1"
push "dhcp-option DNS 8.8.8.8"
push "dhcp-option DNS 8.8.4.4"
keepalive 5 30

client config

client
dev tun
scramble obfuscate pw
proto udp
remote 162.252.240.x 445
resolv-retry infinite
nobind
persist-key
persist-tun
ca ca.crt
cert client.crt
key client.key
tls-auth ta.key 1
ns-cert-type server
cipher AES-256-CBC
comp-lzo
verb 3
fast-io
script-security 2

client output

Sat Jan 03 13:18:12 2015 OpenVPN 2.3.2 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [PKCS11] [eurephia] [IPv6] built on Feb 13 2014
Sat Jan 03 13:18:12 2015 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:25342
Sat Jan 03 13:18:12 2015 Need hold release from management interface, waiting...
Sat Jan 03 13:18:13 2015 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:25342
Sat Jan 03 13:18:13 2015 MANAGEMENT: CMD 'state on'
Sat Jan 03 13:18:13 2015 MANAGEMENT: CMD 'log all on'
Sat Jan 03 13:18:13 2015 MANAGEMENT: CMD 'hold off'
Sat Jan 03 13:18:13 2015 MANAGEMENT: CMD 'hold release'
Sat Jan 03 13:18:13 2015 NOTE: --fast-io is disabled since we are running on Windows
Sat Jan 03 13:18:13 2015 Control Channel Authentication: tls-auth using INLINE static key file
Sat Jan 03 13:18:13 2015 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Sat Jan 03 13:18:13 2015 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Sat Jan 03 13:18:13 2015 Socket Buffers: R=[8192->8192] S=[64512->64512]
Sat Jan 03 13:18:13 2015 UDPv4 link local: [undef]
Sat Jan 03 13:18:13 2015 UDPv4 link remote: [AF_INET]162.252.240.197:445
Sat Jan 03 13:18:13 2015 MANAGEMENT: >STATE:1420309093,WAIT,,,

server details: vmware vps
iptables

root@c1718-6244:~# iptables-save
# Generated by iptables-save v1.4.21 on Sat Jan 3 13:18:51 2015
*mangle
REROUTING ACCEPT [207:21027]
:INPUT ACCEPT [207:21027]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [164:20196]
OSTROUTING ACCEPT [164:20196]
COMMIT
# Completed on Sat Jan 3 13:18:51 2015
# Generated by iptables-save v1.4.21 on Sat Jan 3 13:18:51 2015
*filter
:INPUT ACCEPT [207:21027]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [164:20196]
COMMIT
# Completed on Sat Jan 3 13:18:51 2015
# Generated by iptables-save v1.4.21 on Sat Jan 3 13:18:51 2015
*nat
REROUTING ACCEPT [5:682]
:INPUT ACCEPT [5:682]
:OUTPUT ACCEPT [4:266]
OSTROUTING ACCEPT [4:266]
-A POSTROUTING -s 10.8.0.0/24 -o eth0 -j MASQUERADE
COMMIT
# Completed on Sat Jan 3 13:18:51 2015

jlntlanyl · Post by **jlntlanyl** » Sat Jan 03, 2015 6:36 pm

please close this, the issue was the line "scramble obfuscate " was different for client and server.

OpenVPN Support Forum

openvpn server started but not picking up connections

openvpn server started but not picking up connections

Re: openvpn server started but not picking up connections