server log | how did i do ?
Posted: Thu May 21, 2015 9:34 pm
below is my log off my server that i started and stopped (verb 6) can any tell me how i did and any input would be much appreciated
cat openvpn.log
Thu May 21 17:29:06 2015 us=72008 Current Parameter Settings:
Thu May 21 17:29:06 2015 us=72069 config = 'server.conf'
Thu May 21 17:29:06 2015 us=72088 mode = 1
Thu May 21 17:29:06 2015 us=72099 persist_config = DISABLED
Thu May 21 17:29:06 2015 us=72109 persist_mode = 1
Thu May 21 17:29:06 2015 us=72119 show_ciphers = DISABLED
Thu May 21 17:29:06 2015 us=72129 show_digests = DISABLED
Thu May 21 17:29:06 2015 us=72139 show_engines = DISABLED
Thu May 21 17:29:06 2015 us=72148 genkey = DISABLED
Thu May 21 17:29:06 2015 us=72158 key_pass_file = '[UNDEF]'
Thu May 21 17:29:06 2015 us=72167 show_tls_ciphers = DISABLED
Thu May 21 17:29:06 2015 us=72178 Connection profiles [default]:
Thu May 21 17:29:06 2015 us=72188 proto = udp
Thu May 21 17:29:06 2015 us=72198 local = '255.***.***.***'
Thu May 21 17:29:06 2015 us=72207 local_port = 443
Thu May 21 17:29:06 2015 us=72217 remote = '[UNDEF]'
Thu May 21 17:29:06 2015 us=72227 remote_port = 443
Thu May 21 17:29:06 2015 us=72236 remote_float = DISABLED
Thu May 21 17:29:06 2015 us=72246 bind_defined = DISABLED
Thu May 21 17:29:06 2015 us=72255 bind_local = ENABLED
Thu May 21 17:29:06 2015 us=72265 NOTE: --mute triggered...
Thu May 21 17:29:06 2015 us=72284 264 variation(s) on previous 20 message(s) suppressed by --mute
Thu May 21 17:29:06 2015 us=72296 OpenVPN 2.3.6 i686-redhat-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [PKCS11] [MH] [IPv6] built on Dec 2 2014
Thu May 21 17:29:06 2015 us=72311 library versions: OpenSSL 1.0.1e-fips 11 Feb 2013, LZO 2.03
Thu May 21 17:29:06 2015 us=290083 Diffie-Hellman initialized with 4096 bit key
Thu May 21 17:29:06 2015 us=290806 Control Channel Authentication: using 'ta.key' as a OpenVPN static key file
Thu May 21 17:29:06 2015 us=290836 Outgoing Control Channel Authentication: Using 256 bit message hash 'SHA256' for HMAC authentication
Thu May 21 17:29:06 2015 us=290850 Incoming Control Channel Authentication: Using 256 bit message hash 'SHA256' for HMAC authentication
Thu May 21 17:29:06 2015 us=290874 TLS-Auth MTU parms [ L:1602 D:178 EF:78 EB:0 ET:0 EL:0 ]
Thu May 21 17:29:06 2015 us=290898 Socket Buffers: R=[133120->131072] S=[133120->131072]
Thu May 21 17:29:06 2015 us=291066 ROUTE_GATEWAY ON_LINK IFACE=venet0 HWADDR=00:00:00:00:00:00
Thu May 21 17:29:06 2015 us=291586 TUN/TAP device tun0 opened
Thu May 21 17:29:06 2015 us=291608 TUN/TAP TX queue length set to 100
Thu May 21 17:29:06 2015 us=291625 do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
Thu May 21 17:29:06 2015 us=291653 /sbin/ip link set dev tun0 up mtu 1500
Thu May 21 17:29:06 2015 us=303722 /sbin/ip addr add dev tun0 local 10.8.0.1 peer 10.8.0.2
Thu May 21 17:29:06 2015 us=304636 /sbin/ip route add 10.8.0.0/24 via 10.8.0.2
Thu May 21 17:29:06 2015 us=310272 Data Channel MTU parms [ L:1602 D:1450 EF:70 EB:135 ET:32 EL:0 AF:3/1 ]
Thu May 21 17:29:06 2015 us=311049 GID set to nobody
Thu May 21 17:29:06 2015 us=311101 UID set to nobody
Thu May 21 17:29:06 2015 us=311132 UDPv4 link local (bound): [AF_INET]255.***.***.***:443
Thu May 21 17:29:06 2015 us=311145 UDPv4 link remote: [undef]
Thu May 21 17:29:06 2015 us=311162 MULTI: multi_init called, r=256 v=256
Thu May 21 17:29:06 2015 us=311229 IFCONFIG POOL: base=10.8.0.4 size=62, ipv6=0
Thu May 21 17:29:06 2015 us=311263 Initialization Sequence Completed
Thu May 21 17:29:21 2015 us=996258 event_wait : Interrupted system call (code=4)
Thu May 21 17:29:21 2015 us=996447 TCP/UDP: Closing socket
Thu May 21 17:29:21 2015 us=996513 /sbin/ip route del 10.8.0.0/24
RTNETLINK answers: Operation not permitted
Thu May 21 17:29:21 2015 us=997362 ERROR: Linux route delete command failed: external program exited with error status: 2
Thu May 21 17:29:21 2015 us=997388 Closing TUN/TAP interface
Thu May 21 17:29:21 2015 us=997415 /sbin/ip addr del dev tun0 local 10.8.0.1 peer 10.8.0.2
RTNETLINK answers: Operation not permitted
Thu May 21 17:29:21 2015 us=998423 Linux ip addr del failed: external program exited with error status: 2
Thu May 21 17:29:22 2015 us=34893 SIGTERM[hard,] received, process exiting
____________________________________
server.conf
cat server.conf
local 255.***.***.***
port 443
proto udp
dev tun
tun-mtu 1500
tun-mtu-extra 32
mssfix 1450
reneg-sec 0
ca /etc/openvpn/easy-rsa/keys/ca.crt
cert /etc/openvpn/easy-rsa/keys/server.crt
key /etc/openvpn/easy-rsa/keys/server.key
dh /etc/openvpn/easy-rsa/keys/dh4096.pem
;plugin /usr/share/openvpn/plugin/lib/openvpn-auth-pam.so /etc/pam.d/login
#plugin /etc/openvpn/radiusplugin.so /etc/openvpn/radiusplugin.cnf
user nobody
group nobody
tls-auth ta.key 0
cipher AES-256-CBC
auth sha256
server 10.8.0.0 255.255.255.0
push "redirect-gateway def1"
push "redirect-gateway"
push "dhcp-option DNS 8.8.8.8"
push "dhcp-option DNS 8.8.4.4"
keepalive 5 180
comp-lzo
persist-key
persist-tun
status openvpn-status.log
log /etc/openvpn/openvpn.log
verb 6
mute 20
cat openvpn.log
Thu May 21 17:29:06 2015 us=72008 Current Parameter Settings:
Thu May 21 17:29:06 2015 us=72069 config = 'server.conf'
Thu May 21 17:29:06 2015 us=72088 mode = 1
Thu May 21 17:29:06 2015 us=72099 persist_config = DISABLED
Thu May 21 17:29:06 2015 us=72109 persist_mode = 1
Thu May 21 17:29:06 2015 us=72119 show_ciphers = DISABLED
Thu May 21 17:29:06 2015 us=72129 show_digests = DISABLED
Thu May 21 17:29:06 2015 us=72139 show_engines = DISABLED
Thu May 21 17:29:06 2015 us=72148 genkey = DISABLED
Thu May 21 17:29:06 2015 us=72158 key_pass_file = '[UNDEF]'
Thu May 21 17:29:06 2015 us=72167 show_tls_ciphers = DISABLED
Thu May 21 17:29:06 2015 us=72178 Connection profiles [default]:
Thu May 21 17:29:06 2015 us=72188 proto = udp
Thu May 21 17:29:06 2015 us=72198 local = '255.***.***.***'
Thu May 21 17:29:06 2015 us=72207 local_port = 443
Thu May 21 17:29:06 2015 us=72217 remote = '[UNDEF]'
Thu May 21 17:29:06 2015 us=72227 remote_port = 443
Thu May 21 17:29:06 2015 us=72236 remote_float = DISABLED
Thu May 21 17:29:06 2015 us=72246 bind_defined = DISABLED
Thu May 21 17:29:06 2015 us=72255 bind_local = ENABLED
Thu May 21 17:29:06 2015 us=72265 NOTE: --mute triggered...
Thu May 21 17:29:06 2015 us=72284 264 variation(s) on previous 20 message(s) suppressed by --mute
Thu May 21 17:29:06 2015 us=72296 OpenVPN 2.3.6 i686-redhat-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [PKCS11] [MH] [IPv6] built on Dec 2 2014
Thu May 21 17:29:06 2015 us=72311 library versions: OpenSSL 1.0.1e-fips 11 Feb 2013, LZO 2.03
Thu May 21 17:29:06 2015 us=290083 Diffie-Hellman initialized with 4096 bit key
Thu May 21 17:29:06 2015 us=290806 Control Channel Authentication: using 'ta.key' as a OpenVPN static key file
Thu May 21 17:29:06 2015 us=290836 Outgoing Control Channel Authentication: Using 256 bit message hash 'SHA256' for HMAC authentication
Thu May 21 17:29:06 2015 us=290850 Incoming Control Channel Authentication: Using 256 bit message hash 'SHA256' for HMAC authentication
Thu May 21 17:29:06 2015 us=290874 TLS-Auth MTU parms [ L:1602 D:178 EF:78 EB:0 ET:0 EL:0 ]
Thu May 21 17:29:06 2015 us=290898 Socket Buffers: R=[133120->131072] S=[133120->131072]
Thu May 21 17:29:06 2015 us=291066 ROUTE_GATEWAY ON_LINK IFACE=venet0 HWADDR=00:00:00:00:00:00
Thu May 21 17:29:06 2015 us=291586 TUN/TAP device tun0 opened
Thu May 21 17:29:06 2015 us=291608 TUN/TAP TX queue length set to 100
Thu May 21 17:29:06 2015 us=291625 do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
Thu May 21 17:29:06 2015 us=291653 /sbin/ip link set dev tun0 up mtu 1500
Thu May 21 17:29:06 2015 us=303722 /sbin/ip addr add dev tun0 local 10.8.0.1 peer 10.8.0.2
Thu May 21 17:29:06 2015 us=304636 /sbin/ip route add 10.8.0.0/24 via 10.8.0.2
Thu May 21 17:29:06 2015 us=310272 Data Channel MTU parms [ L:1602 D:1450 EF:70 EB:135 ET:32 EL:0 AF:3/1 ]
Thu May 21 17:29:06 2015 us=311049 GID set to nobody
Thu May 21 17:29:06 2015 us=311101 UID set to nobody
Thu May 21 17:29:06 2015 us=311132 UDPv4 link local (bound): [AF_INET]255.***.***.***:443
Thu May 21 17:29:06 2015 us=311145 UDPv4 link remote: [undef]
Thu May 21 17:29:06 2015 us=311162 MULTI: multi_init called, r=256 v=256
Thu May 21 17:29:06 2015 us=311229 IFCONFIG POOL: base=10.8.0.4 size=62, ipv6=0
Thu May 21 17:29:06 2015 us=311263 Initialization Sequence Completed
Thu May 21 17:29:21 2015 us=996258 event_wait : Interrupted system call (code=4)
Thu May 21 17:29:21 2015 us=996447 TCP/UDP: Closing socket
Thu May 21 17:29:21 2015 us=996513 /sbin/ip route del 10.8.0.0/24
RTNETLINK answers: Operation not permitted
Thu May 21 17:29:21 2015 us=997362 ERROR: Linux route delete command failed: external program exited with error status: 2
Thu May 21 17:29:21 2015 us=997388 Closing TUN/TAP interface
Thu May 21 17:29:21 2015 us=997415 /sbin/ip addr del dev tun0 local 10.8.0.1 peer 10.8.0.2
RTNETLINK answers: Operation not permitted
Thu May 21 17:29:21 2015 us=998423 Linux ip addr del failed: external program exited with error status: 2
Thu May 21 17:29:22 2015 us=34893 SIGTERM[hard,] received, process exiting
____________________________________
server.conf
cat server.conf
local 255.***.***.***
port 443
proto udp
dev tun
tun-mtu 1500
tun-mtu-extra 32
mssfix 1450
reneg-sec 0
ca /etc/openvpn/easy-rsa/keys/ca.crt
cert /etc/openvpn/easy-rsa/keys/server.crt
key /etc/openvpn/easy-rsa/keys/server.key
dh /etc/openvpn/easy-rsa/keys/dh4096.pem
;plugin /usr/share/openvpn/plugin/lib/openvpn-auth-pam.so /etc/pam.d/login
#plugin /etc/openvpn/radiusplugin.so /etc/openvpn/radiusplugin.cnf
user nobody
group nobody
tls-auth ta.key 0
cipher AES-256-CBC
auth sha256
server 10.8.0.0 255.255.255.0
push "redirect-gateway def1"
push "redirect-gateway"
push "dhcp-option DNS 8.8.8.8"
push "dhcp-option DNS 8.8.4.4"
keepalive 5 180
comp-lzo
persist-key
persist-tun
status openvpn-status.log
log /etc/openvpn/openvpn.log
verb 6
mute 20