OpenVPN client routing issue

This forum is for general conversation and user-user networking.

Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech

Post Reply
jeyj
OpenVpn Newbie
Posts: 2
Joined: Sun Oct 13, 2019 12:11 am

OpenVPN client routing issue

Post by jeyj » Sun Oct 13, 2019 1:11 am

i've been googling this issue for a while now but all i find related to my issue talks about openvpn servers but i'm only using client with the files provided by my vpn provider so i'm not sure they're related but i hope someone is able to help me out.

i have no experience with vpn commands but this is my log

Code: Select all

Sun Oct 13 01:50:17 2019 OpenVPN 2.4.7 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [AEAD] built on Apr 25 2019
Sun Oct 13 01:50:17 2019 Windows version 6.2 (Windows 8 or greater) 64bit
Sun Oct 13 01:50:17 2019 library versions: OpenSSL 1.1.0j  20 Nov 2018, LZO 2.10
Sun Oct 13 01:50:17 2019 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:25340
Sun Oct 13 01:50:17 2019 Need hold release from management interface, waiting...
Sun Oct 13 01:50:18 2019 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:25340
Sun Oct 13 01:50:18 2019 MANAGEMENT: CMD 'state on'
Sun Oct 13 01:50:18 2019 MANAGEMENT: CMD 'log all on'
Sun Oct 13 01:50:18 2019 MANAGEMENT: CMD 'echo all on'
Sun Oct 13 01:50:18 2019 MANAGEMENT: CMD 'bytecount 5'
Sun Oct 13 01:50:18 2019 MANAGEMENT: CMD 'hold off'
Sun Oct 13 01:50:18 2019 MANAGEMENT: CMD 'hold release'
Sun Oct 13 01:50:24 2019 MANAGEMENT: CMD 'username "Auth" "..."'
Sun Oct 13 01:50:24 2019 MANAGEMENT: CMD 'password [...]'
Sun Oct 13 01:50:24 2019 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Sun Oct 13 01:50:24 2019 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Sun Oct 13 01:50:24 2019 MANAGEMENT: >STATE:1570924224,RESOLVE,,,,,,
Sun Oct 13 01:50:24 2019 TCP/UDP: Preserving recently used remote address: [AF_INET]85.24.253.2:1196
Sun Oct 13 01:50:24 2019 Socket Buffers: R=[65536->65536] S=[65536->65536]
Sun Oct 13 01:50:24 2019 UDP link local: (not bound)
Sun Oct 13 01:50:24 2019 UDP link remote: [AF_INET]85.24.253.2:1196
Sun Oct 13 01:50:24 2019 MANAGEMENT: >STATE:1570924224,WAIT,,,,,,
Sun Oct 13 01:50:24 2019 MANAGEMENT: >STATE:1570924224,AUTH,,,,,,
Sun Oct 13 01:50:24 2019 TLS: Initial packet from [AF_INET]85.24.253.2:1196, sid=d2f45699 9ef3f397
Sun Oct 13 01:50:24 2019 [color=#FF0000]WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this[/color]
Sun Oct 13 01:50:24 2019 VERIFY OK: depth=1, C=SE, ST=S, L=Stockholm, O=5july.org, OU=integrityvpn, CN=integrity, name=integrity vpn, emailAddress=...
Sun Oct 13 01:50:24 2019 VERIFY KU OK
Sun Oct 13 01:50:24 2019 Validating certificate extended key usage
Sun Oct 13 01:50:24 2019 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
Sun Oct 13 01:50:24 2019 VERIFY EKU OK
Sun Oct 13 01:50:24 2019 VERIFY OK: depth=0, C=SE, ST=S, L=Stockholm, O=5july.org, OU=integrity_vpn, CN=integrity, name=integrity, emailAddress=admin@integrity.st
Sun Oct 13 01:50:24 2019 Control Channel: TLSv1.2, cipher TLSv1.2 DHE-RSA-AES256-GCM-SHA384, 2048 bit RSA
Sun Oct 13 01:50:24 2019 [integrity] Peer Connection Initiated with [AF_INET]85.24.253.2:1196
Sun Oct 13 01:50:25 2019 MANAGEMENT: >STATE:1570924225,GET_CONFIG,,,,,,
Sun Oct 13 01:50:25 2019 SENT CONTROL [integrity]: 'PUSH_REQUEST' (status=1)
Sun Oct 13 01:50:25 2019 PUSH: Received control message: 'PUSH_REPLY,route-gateway 10.251.14.1,topology subnet,route 85.24.253.2 255.255.255.255 net_gateway,redirect-gateway def1,dhcp-option DNS 213.80.98.2,dhcp-option DNS 213.80.101.3,dhcp-option DNS 79.136.77.113,ping 5,ping-restart 30,ifconfig 10.251.14.205 255.255.255.0'
Sun Oct 13 01:50:25 2019 OPTIONS IMPORT: timers and/or timeouts modified
Sun Oct 13 01:50:25 2019 OPTIONS IMPORT: --ifconfig/up options modified
Sun Oct 13 01:50:25 2019 OPTIONS IMPORT: route options modified
Sun Oct 13 01:50:25 2019 OPTIONS IMPORT: route-related options modified
Sun Oct 13 01:50:25 2019 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Sun Oct 13 01:50:25 2019 Outgoing Data Channel: Cipher 'AES-256-CBC' initialized with 256 bit key
Sun Oct 13 01:50:25 2019 Outgoing Data Channel: Using 160 bit message hash 'SHA1' for HMAC authentication
Sun Oct 13 01:50:25 2019 Incoming Data Channel: Cipher 'AES-256-CBC' initialized with 256 bit key
Sun Oct 13 01:50:25 2019 Incoming Data Channel: Using 160 bit message hash 'SHA1' for HMAC authentication
Sun Oct 13 01:50:25 2019 interactive service msg_channel=0
Sun Oct 13 01:50:25 2019 ROUTE_GATEWAY 192.168.1.1/255.255.255.0 I=2 HWADDR=0c:84:dc:02:db:f7
Sun Oct 13 01:50:25 2019 open_tun
Sun Oct 13 01:50:25 2019 TAP-WIN32 device [Ethernet 2] opened: \\.\Global\{111FEB9D-B656-4ED8-BD95-7C2771EB95A1}.tap
Sun Oct 13 01:50:25 2019 TAP-Windows Driver Version 9.23 
Sun Oct 13 01:50:25 2019 Set TAP-Windows TUN subnet mode network/local/netmask = 10.251.14.0/10.251.14.205/255.255.255.0 [SUCCEEDED]
Sun Oct 13 01:50:25 2019 Notified TAP-Windows driver to set a DHCP IP/netmask of 10.251.14.205/255.255.255.0 on interface {111FEB9D-B656-4ED8-BD95-7C2771EB95A1} [DHCP-serv: 10.251.14.254, lease-time: 31536000]
Sun Oct 13 01:50:25 2019 Successful ARP Flush on interface [13] {111FEB9D-B656-4ED8-BD95-7C2771EB95A1}
Sun Oct 13 01:50:25 2019 MANAGEMENT: >STATE:1570924225,ASSIGN_IP,,10.251.14.205,,,,
Sun Oct 13 01:50:30 2019 TEST ROUTES: 2/2 succeeded len=1 ret=1 a=0 u/d=up
Sun Oct 13 01:50:30 2019 C:\WINDOWS\system32\route.exe ADD 85.24.253.2 MASK 255.255.255.255 192.168.1.1
Sun Oct 13 01:50:30 2019 ROUTE: CreateIpForwardEntry succeeded with dwForwardMetric1=20 and dwForwardType=4
Sun Oct 13 01:50:30 2019 Route addition via IPAPI succeeded [adaptive]
Sun Oct 13 01:50:30 2019 C:\WINDOWS\system32\route.exe ADD 0.0.0.0 MASK 128.0.0.0 10.251.14.1
Sun Oct 13 01:50:30 2019 ROUTE: CreateIpForwardEntry succeeded with dwForwardMetric1=10 and dwForwardType=4
Sun Oct 13 01:50:30 2019 Route addition via IPAPI succeeded [adaptive]
Sun Oct 13 01:50:30 2019 C:\WINDOWS\system32\route.exe ADD 128.0.0.0 MASK 128.0.0.0 10.251.14.1
Sun Oct 13 01:50:30 2019 ROUTE: CreateIpForwardEntry succeeded with dwForwardMetric1=10 and dwForwardType=4
Sun Oct 13 01:50:30 2019 Route addition via IPAPI succeeded [adaptive]
Sun Oct 13 01:50:30 2019 MANAGEMENT: >STATE:1570924230,ADD_ROUTES,,,,,,
Sun Oct 13 01:50:30 2019 C:\WINDOWS\system32\route.exe ADD 85.24.253.2 MASK 255.255.255.255 192.168.1.1
Sun Oct 13 01:50:30 2019 [color=#FF0000]ROUTE: route addition failed using CreateIpForwardEntry: Objektet finns redan.   [status=5010 if_index=2][/color]
Sun Oct 13 01:50:30 2019 Route addition via IPAPI failed [adaptive]
Sun Oct 13 01:50:30 2019 Route addition fallback to route.exe
Sun Oct 13 01:50:30 2019 env_block: add PATH=C:\WINDOWS\System32;C:\WINDOWS;C:\WINDOWS\System32\Wbem
Sun Oct 13 01:50:31 2019 Initialization Sequence Completed
Sun Oct 13 01:50:31 2019 MANAGEMENT: >STATE:1570924231,CONNECTED,SUCCESS,10.251.14.205,85.24.253.2,1196,,
objektet finns redan means object already exists
from what i read this is because i already got a connection but this can't be the problem since i always disconnect the correct way and it still happens if i haven't used the vpn at all for ages. my vpn also gives me 10 connections and i'm only using 1.
i'm on windows 8.1 and using the latest openvpn client.
i might as well include the commands in the ovpn file in case there's a problem there

Code: Select all

client
dev tun
proto udp

remote openvpn.integrity.st 1196
remote openvpn2.integrity.st 1196
remote openvpn3.integrity.st 1196
remote openvpn4.integrity.st 1196

remote-random
resolv-retry infinite
reneg-sec 0
nobind
persist-key
persist-tun
ca ca.crt
remote-cert-tls server
tls-auth tls.key 1
comp-lzo
verb 3
mute 10
auth-user-pass
explicit-exit-notify 2
cipher aes-256-cbc
Top
TinCanTech
OpenVPN Protagonist
Posts: 11139
Joined: Fri Jun 03, 2016 1:17 pm

Re: OpenVPN client routing issue

Post by TinCanTech » Sun Oct 13, 2019 9:42 am

jeyj wrote:
Sun Oct 13, 2019 1:11 am
 my vpn also gives me 10 connections and i'm only using 1
What ever you are doing you are doing it wrong. I have never heard of anybody ever reporting this before so you are the first and I have no idea what you have managed to do.
Top
jeyj
OpenVpn Newbie
Posts: 2
Joined: Sun Oct 13, 2019 12:11 am

Re: OpenVPN client routing issue

Post by jeyj » Tue Oct 15, 2019 11:45 pm

by 10 connections i meant i'm able to use 10 devices and i'm only using one so it can't be that i'm being limited by the number of connections, which i've read elsewhere could be the reason. the issue here is only the error i was talking about, not the part you were quoting

ROUTE: route addition failed using CreateIpForwardEntry: Objektet finns redan. [status=5010 if_index=2]
Route addition via IPAPI failed [adaptive]
Route addition fallback to route.exe
env_block: add PATH=C:\WINDOWS\System32;C:\WINDOWS;C:\WINDOWS\System32\Wbem
Initialization Sequence Completed

the log about is from the windows app, when connecting to my vpn with openvpn through my router instead i get the same problem but described differently

ignore conflicting routing rule

its able to connect and give me a new ip in both cases so i'm not sure if this is something i should be concerned about or something i can ignore
Top
Post Reply

Return to “Off Topic, Related”