Question about OpenVPN client configuration
Posted: Sun Apr 05, 2015 8:50 am
Hello,
How do I fix:
Apr 2 19:58:57 openvpn[571]: OpenVPN 2.3.2 mipsel-unknown-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [eurephia] [MH] [IPv6] built on Feb 12 2015
Apr 2 19:58:58 openvpn[571]: Control Channel Authentication: using 'static.key' as a OpenVPN static key file
Apr 2 19:58:58 openvpn[571]: Outgoing Control Channel Authentication: Using 256 bit message hash 'SHA256' for HMAC authentication
Apr 2 19:58:58 openvpn[571]: Incoming Control Channel Authentication: Using 256 bit message hash 'SHA256' for HMAC authentication
Apr 2 19:58:58 openvpn[571]: Socket Buffers: R=[118784->200000] S=[118784->200000]
Apr 2 19:58:58 openvpn[576]: UDPv4 link local: [undef]
Apr 2 19:58:58 openvpn[576]: UDPv4 link remote: [AF_INET]
Apr 2 19:58:58 openvpn[576]: TLS: Initial packet from [AF_INET], sid=cff06684 41229248
Apr 2 19:58:58 openvpn[576]: WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Apr 2 19:58:59 openvpn[576]: VERIFY OK: depth=1,
Apr 2 19:58:59 openvpn[576]: VERIFY OK: nsCertType=SERVER
Apr 2 19:58:59 openvpn[576]: VERIFY OK: depth=0,
Apr 2 19:59:17 openvpn[576]: Data Channel Encrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
Apr 2 19:59:17 openvpn[576]: Data Channel Encrypt: Using 256 bit message hash 'SHA256' for HMAC authentication
Apr 2 19:59:17 openvpn[576]: Data Channel Decrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
Apr 2 19:59:17 openvpn[576]: Data Channel Decrypt: Using 256 bit message hash 'SHA256' for HMAC authentication
Apr 2 19:59:17 openvpn[576]: Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 4096 bit RSA
Apr 2 19:59:17 openvpn[576]: [isvpn.net] Peer Connection Initiated with [AF_INET]
Apr 2 19:59:19 openvpn[576]: SENT CONTROL []: 'PUSH_REQUEST' (status=1)
Apr 2 19:59:19 openvpn[576]: PUSH: Received control message: 'PUSH_REPLY,explicit-exit-notify,topology-subnet,mssfix 1400,comp-lzo adaptive,route-delay 5 30,dhcp-pre-release,dhcp-renew,dhcp-release,dhcp-option DNS 25.0.0.1,dhcp-option DISABLE-NBT,redirect-gateway def1,redirect-gateway bypass-dhcp,redirect-gateway autolocal,register-dns,block-ipv6,route-gateway 25.0.8.1,topology subnet,ping 12,ping-restart 50,ifconfig 25.0.8.5 255.255.255.0'
Apr 2 19:59:19 openvpn[576]: Unrecognized option or missing parameter(s) in [PUSH-OPTIONS]:2: topology-subnet (2.3.2)
Apr 2 19:59:19 openvpn[576]: Options error: option 'mssfix' cannot be used in this context ([PUSH-OPTIONS])
Apr 2 19:59:19 openvpn[576]: Unrecognized option or missing parameter(s) in [PUSH-OPTIONS]:6: dhcp-pre-release (2.3.2)
Apr 2 19:59:19 openvpn[576]: Unrecognized option or missing parameter(s) in [PUSH-OPTIONS]:7: dhcp-renew (2.3.2)
Apr 2 19:59:19 openvpn[576]: Unrecognized option or missing parameter(s) in [PUSH-OPTIONS]:8: dhcp-release (2.3.2)
Apr 2 19:59:19 openvpn[576]: Unrecognized option or missing parameter(s) in [PUSH-OPTIONS]:14: register-dns (2.3.2)
Apr 2 19:59:19 openvpn[576]: Unrecognized option or missing parameter(s) in [PUSH-OPTIONS]:15: block-ipv6 (2.3.2)
Apr 2 19:59:19 openvpn[576]: OPTIONS IMPORT: timers and/or timeouts modified
Apr 2 19:59:19 openvpn[576]: OPTIONS IMPORT: explicit notify parm(s) modified
Apr 2 19:59:24 openvpn[576]: /sbin/route add -net netmask 255.255.255.255 gw
Apr 2 19:59:24 openvpn[576]: /sbin/route add -net 0.0.0.0 netmask 128.0.0.0 gw 25.0.8.1
Apr 2 19:59:24 openvpn[576]: /sbin/route add -net 128.0.0.0 netmask 128.0.0.0 gw 25.0.8.1
Apr 2 19:59:24 openvpn[576]: Initialization Sequence Completed
setenv FORWARD_COMPATIBLE 1
client
push-peer-info
server-poll-timeout 5
dev tun
dev-type tun
nobind
persist-key
persist-tun
auth-user-pass
ns-cert-type server
comp-lzo no
verb 3
cipher AES-256-CBC
auth SHA256
reneg-sec 0
sndbuf 100000
rcvbuf 100000
Thanks,
Tenaks
How do I fix:
Apr 2 19:58:57 openvpn[571]: OpenVPN 2.3.2 mipsel-unknown-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [eurephia] [MH] [IPv6] built on Feb 12 2015
Apr 2 19:58:58 openvpn[571]: Control Channel Authentication: using 'static.key' as a OpenVPN static key file
Apr 2 19:58:58 openvpn[571]: Outgoing Control Channel Authentication: Using 256 bit message hash 'SHA256' for HMAC authentication
Apr 2 19:58:58 openvpn[571]: Incoming Control Channel Authentication: Using 256 bit message hash 'SHA256' for HMAC authentication
Apr 2 19:58:58 openvpn[571]: Socket Buffers: R=[118784->200000] S=[118784->200000]
Apr 2 19:58:58 openvpn[576]: UDPv4 link local: [undef]
Apr 2 19:58:58 openvpn[576]: UDPv4 link remote: [AF_INET]
Apr 2 19:58:58 openvpn[576]: TLS: Initial packet from [AF_INET], sid=cff06684 41229248
Apr 2 19:58:58 openvpn[576]: WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Apr 2 19:58:59 openvpn[576]: VERIFY OK: depth=1,
Apr 2 19:58:59 openvpn[576]: VERIFY OK: nsCertType=SERVER
Apr 2 19:58:59 openvpn[576]: VERIFY OK: depth=0,
Apr 2 19:59:17 openvpn[576]: Data Channel Encrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
Apr 2 19:59:17 openvpn[576]: Data Channel Encrypt: Using 256 bit message hash 'SHA256' for HMAC authentication
Apr 2 19:59:17 openvpn[576]: Data Channel Decrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
Apr 2 19:59:17 openvpn[576]: Data Channel Decrypt: Using 256 bit message hash 'SHA256' for HMAC authentication
Apr 2 19:59:17 openvpn[576]: Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 4096 bit RSA
Apr 2 19:59:17 openvpn[576]: [isvpn.net] Peer Connection Initiated with [AF_INET]
Apr 2 19:59:19 openvpn[576]: SENT CONTROL []: 'PUSH_REQUEST' (status=1)
Apr 2 19:59:19 openvpn[576]: PUSH: Received control message: 'PUSH_REPLY,explicit-exit-notify,topology-subnet,mssfix 1400,comp-lzo adaptive,route-delay 5 30,dhcp-pre-release,dhcp-renew,dhcp-release,dhcp-option DNS 25.0.0.1,dhcp-option DISABLE-NBT,redirect-gateway def1,redirect-gateway bypass-dhcp,redirect-gateway autolocal,register-dns,block-ipv6,route-gateway 25.0.8.1,topology subnet,ping 12,ping-restart 50,ifconfig 25.0.8.5 255.255.255.0'
Apr 2 19:59:19 openvpn[576]: Unrecognized option or missing parameter(s) in [PUSH-OPTIONS]:2: topology-subnet (2.3.2)
Apr 2 19:59:19 openvpn[576]: Options error: option 'mssfix' cannot be used in this context ([PUSH-OPTIONS])
Apr 2 19:59:19 openvpn[576]: Unrecognized option or missing parameter(s) in [PUSH-OPTIONS]:6: dhcp-pre-release (2.3.2)
Apr 2 19:59:19 openvpn[576]: Unrecognized option or missing parameter(s) in [PUSH-OPTIONS]:7: dhcp-renew (2.3.2)
Apr 2 19:59:19 openvpn[576]: Unrecognized option or missing parameter(s) in [PUSH-OPTIONS]:8: dhcp-release (2.3.2)
Apr 2 19:59:19 openvpn[576]: Unrecognized option or missing parameter(s) in [PUSH-OPTIONS]:14: register-dns (2.3.2)
Apr 2 19:59:19 openvpn[576]: Unrecognized option or missing parameter(s) in [PUSH-OPTIONS]:15: block-ipv6 (2.3.2)
Apr 2 19:59:19 openvpn[576]: OPTIONS IMPORT: timers and/or timeouts modified
Apr 2 19:59:19 openvpn[576]: OPTIONS IMPORT: explicit notify parm(s) modified
Apr 2 19:59:24 openvpn[576]: /sbin/route add -net netmask 255.255.255.255 gw
Apr 2 19:59:24 openvpn[576]: /sbin/route add -net 0.0.0.0 netmask 128.0.0.0 gw 25.0.8.1
Apr 2 19:59:24 openvpn[576]: /sbin/route add -net 128.0.0.0 netmask 128.0.0.0 gw 25.0.8.1
Apr 2 19:59:24 openvpn[576]: Initialization Sequence Completed
setenv FORWARD_COMPATIBLE 1
client
push-peer-info
server-poll-timeout 5
dev tun
dev-type tun
nobind
persist-key
persist-tun
auth-user-pass
ns-cert-type server
comp-lzo no
verb 3
cipher AES-256-CBC
auth SHA256
reneg-sec 0
sndbuf 100000
rcvbuf 100000
Thanks,
Tenaks