Frequent OpenVPN client Disconnects

Official client software for OpenVPN Access Server and OpenVPN Cloud.
Post Reply
mlynch
OpenVpn Newbie
Posts: 3
Joined: Tue Dec 20, 2022 5:08 pm

Frequent OpenVPN client Disconnects

Post by mlynch » Tue Dec 20, 2022 5:27 pm

Hi,

We are using OpenVPN to connect to our corporate Azure resources. The server is in Virginia. The clients are mainly in Philadelphia, but also NJ, NY, Indiana and Miami. Some folks have very frequent disconnects, 10-15 times a day. Others once or twice a day. Here is a client-side log from one of my Philadelphia users who is experiencing alot of disconnects. Any help would be greatly appreciated:


⏎[Dec 20, 2022, 07:51:02] Connecting to [20.228.149.10]:1194 (20.228.149.10) via TCPv4
⏎[Dec 20, 2022, 07:51:02] EVENT: CONNECTING ⏎[Dec 20, 2022, 07:51:02] Tunnel Options:V4,dev-type tun,link-mtu 1523,tun-mtu 1500,proto TCPv4_CLIENT,cipher AES-256-GCM,auth [null-digest],keysize 256,key-method 2,tls-client
⏎[Dec 20, 2022, 07:51:02] Creds: Username/Password
⏎[Dec 20, 2022, 07:51:02] Peer Info:
IV_VER=3.git::d3f8b18b
IV_PLAT=win
IV_NCP=2
IV_TCPNL=1
IV_PROTO=30
IV_CIPHERS=AES-256-GCM:AES-128-GCM:CHACHA20-POLY1305
IV_GUI_VER=OCWindows_3.3.6-2752
IV_SSO=webauth,openurl,crtext

⏎[Dec 20, 2022, 07:51:02] SSL Handshake: peer certificate: CN=OpenVPN Server/emailAddress=support@peplink.com, 2048 bit RSA, cipher: TLS_AES_256_GCM_SHA384 TLSv1.3 Kx=any Au=any Enc=AESGCM(256) Mac=AEAD

⏎[Dec 20, 2022, 07:51:02] Session is ACTIVE
⏎[Dec 20, 2022, 07:51:02] EVENT: GET_CONFIG ⏎[Dec 20, 2022, 07:51:02] Sending PUSH_REQUEST to server...
⏎[Dec 20, 2022, 07:51:03] Sending PUSH_REQUEST to server...
⏎[Dec 20, 2022, 07:51:04] Ignored due to route-nopull: [route] [172.16.1.0] [255.255.255.0]
⏎[Dec 20, 2022, 07:51:04] Ignored due to route-nopull: [dhcp-option] [DNS] [172.16.1.100]
⏎[Dec 20, 2022, 07:51:04] OPTIONS:
0 [route] [10.1.0.0] [255.255.0.0] [vpn_gateway]
1 [route] [odnfileshare.file.core.windows.net] [255.255.255.255] [vpn_gateway]
2 [redirect-gateway] [def1]
3 [dhcp-option] [DNS] [10.1.0.10,10.1.0.11]
4 [topology] [subnet]
5 [route-gateway] [172.16.1.100]
6 [ping] [10]
7 [ping-restart] [120]
8 [ifconfig] [172.16.1.85] [255.255.255.0]
9 [peer-id] [0]
10 [auth-token] ...
11 [cipher] [AES-256-GCM]

⏎[Dec 20, 2022, 07:51:04] Session token: [redacted]
⏎[Dec 20, 2022, 07:51:04] PROTOCOL OPTIONS:
cipher: AES-256-GCM
digest: NONE
key-derivation: OpenVPN PRF
compress: NONE
peer ID: 0
control channel: tls-crypt enabled
⏎[Dec 20, 2022, 07:51:04] EVENT: ASSIGN_IP ⏎[Dec 20, 2022, 07:51:04] exception parsing IPv4 route: [route] [odnfileshare.file.core.windows.net] [255.255.255.255] [vpn_gateway] : addr_pair_mask_parse_error: AddrMaskPair parse error 'route': odnfileshare.file.core.windows.net/255.255.255.255 : ip_exception: error parsing route IP address 'odnfileshare.file.core.windows.net' : An invalid argument was supplied.
⏎[Dec 20, 2022, 07:51:04] exception parsing dhcp-option: [dhcp-option] [DNS] [10.1.0.10,10.1.0.11] : ip_exception: error parsing dns-server-ip IP address '10.1.0.10,10.1.0.11' : An invalid argument was supplied.
⏎[Dec 20, 2022, 07:51:04] CAPTURED OPTIONS:
Session Name: 20.228.149.10
Layer: OSI_LAYER_3
Remote Address: 20.228.149.10
Tunnel Addresses:
172.16.1.85/24 -> 172.16.1.100
Reroute Gateway: IPv4=1 IPv6=0 flags=[ ENABLE REROUTE_GW DEF1 IPv4 ]
Block IPv6: no
Add Routes:
10.1.0.0/16
Exclude Routes:
DNS Servers:
Search Domains:

⏎[Dec 20, 2022, 07:51:05] SetupClient: transmitting tun setup list to \\.\pipe\agent_ovpnconnect
{
"allow_local_dns_resolvers" : false,
"confirm_event" : "d809000000000000",
"destroy_event" : "b80f000000000000",
"tun" :
{
"adapter_domain_suffix" : "",
"add_routes" :
[
{
"address" : "10.1.0.0",
"gateway" : "",
"ipv6" : false,
"metric" : -1,
"net30" : false,
"prefix_length" : 16
}
],
"block_ipv6" : false,
"layer" : 3,
"mtu" : 0,
"remote_address" :
{
"address" : "20.228.149.10",
"ipv6" : false
},
"reroute_gw" :
{
"flags" : 275,
"ipv4" : true,
"ipv6" : false
},
"route_metric_default" : -1,
"session_name" : "20.228.149.10",
"tunnel_address_index_ipv4" : 0,
"tunnel_address_index_ipv6" : -1,
"tunnel_addresses" :
[
{
"address" : "172.16.1.85",
"gateway" : "172.16.1.100",
"ipv6" : false,
"metric" : -1,
"net30" : false,
"prefix_length" : 24
}
]
},
"wintun" : false
}
POST np://[\\.\pipe\agent_ovpnconnect]/tun-setup : 200 OK
TAP ADAPTERS:
guid='{C6CBBD35-8894-4DF7-83E4-00FCF6F8ACEB}' index=19 name='Local Area Connection 2'
Open TAP device "Local Area Connection 2" PATH="\\.\Global\{C6CBBD35-8894-4DF7-83E4-00FCF6F8ACEB}.tap" SUCCEEDED
TAP-Windows Driver Version 9.24
ActionDeleteAllRoutesOnInterface iface_index=19
netsh interface ip set interface 19 metric=1
Ok.
netsh interface ip set address 19 static 172.16.1.85 255.255.255.0 gateway=172.16.1.100 store=active
IPHelper: add route 10.1.0.0/16 19 172.16.1.100 metric=-1
netsh interface ip add route 20.228.149.10/32 15 192.168.0.1 store=active
The object already exists.
netsh interface ip add route 0.0.0.0/1 19 172.16.1.100 store=active
Ok.
netsh interface ip add route 128.0.0.0/1 19 172.16.1.100 store=active
Ok.
ipconfig /flushdns
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
TAP: ARP flush succeeded
TAP handle: f80e000000000000
⏎[Dec 20, 2022, 07:51:05] Connected via TUN_WIN
⏎[Dec 20, 2022, 07:51:05] EVENT: CONNECTED amiller@20.228.149.10:1194 (20.228.149.10) via /TCPv4 on TUN_WIN/172.16.1.85/ gw=[172.16.1.100/]⏎[Dec 20, 2022, 08:06:22] SetupClient: signaling tun destroy event
⏎[Dec 20, 2022, 08:06:22] EVENT: DISCONNECTED ⏎[Dec 20, 2022, 08:06:25] OpenVPN core 3.git::d3f8b18b win x86_64 64-bit built on Mar 17 2022 11:42:02
⏎[Dec 20, 2022, 08:06:25] Frame=512/2048/512 mssfix-ctrl=1250
⏎[Dec 20, 2022, 08:06:25] UNUSED OPTIONS
5 [resolv-retry] [infinite]
6 [nobind]
7 [persist-key]
8 [persist-tun]
10 [verb] [3]
13 [tls-client]
20 [allow-pull-fqdn]
⏎[Dec 20, 2022, 08:06:25] EVENT: RESOLVE ⏎[Dec 20, 2022, 08:06:25] EVENT: WAIT ⏎[Dec 20, 2022, 08:06:25] WinCommandAgent: transmitting bypass route to 20.228.149.10
{
"host" : "20.228.149.10",
"ipv6" : false
}

⏎[Dec 20, 2022, 08:06:25] Connecting to [20.228.149.10]:1194 (20.228.149.10) via TCPv4
⏎[Dec 20, 2022, 08:06:25] EVENT: CONNECTING ⏎[Dec 20, 2022, 08:06:25] Tunnel Options:V4,dev-type tun,link-mtu 1523,tun-mtu 1500,proto TCPv4_CLIENT,cipher AES-256-GCM,auth [null-digest],keysize 256,key-method 2,tls-client
⏎[Dec 20, 2022, 08:06:25] Creds: Username/Password
⏎[Dec 20, 2022, 08:06:25] Peer Info:
IV_VER=3.git::d3f8b18b
IV_PLAT=win
IV_NCP=2
IV_TCPNL=1
IV_PROTO=30
IV_CIPHERS=AES-256-GCM:AES-128-GCM:CHACHA20-POLY1305
IV_GUI_VER=OCWindows_3.3.6-2752
IV_SSO=webauth,openurl,crtext

⏎[Dec 20, 2022, 08:06:25] SSL Handshake: peer certificate: CN=OpenVPN Server/emailAddress=support@peplink.com, 2048 bit RSA, cipher: TLS_AES_256_GCM_SHA384 TLSv1.3 Kx=any Au=any Enc=AESGCM(256) Mac=AEAD

⏎[Dec 20, 2022, 08:06:25] Session is ACTIVE
⏎[Dec 20, 2022, 08:06:25] EVENT: GET_CONFIG ⏎[Dec 20, 2022, 08:06:25] Sending PUSH_REQUEST to server...
⏎[Dec 20, 2022, 08:06:26] Sending PUSH_REQUEST to server...
⏎[Dec 20, 2022, 08:06:27] Ignored due to route-nopull: [route] [172.16.1.0] [255.255.255.0]
⏎[Dec 20, 2022, 08:06:27] Ignored due to route-nopull: [dhcp-option] [DNS] [172.16.1.100]
⏎[Dec 20, 2022, 08:06:27] OPTIONS:
0 [route] [10.1.0.0] [255.255.0.0] [vpn_gateway]
1 [route] [odnfileshare.file.core.windows.net] [255.255.255.255] [vpn_gateway]
2 [redirect-gateway] [def1]
3 [dhcp-option] [DNS] [10.1.0.10,10.1.0.11]
4 [topology] [subnet]
5 [route-gateway] [172.16.1.100]
6 [ping] [10]
7 [ping-restart] [120]
8 [ifconfig] [172.16.1.68] [255.255.255.0]
9 [peer-id] [0]
10 [auth-token] ...
11 [cipher] [AES-256-GCM]

⏎[Dec 20, 2022, 08:06:27] Session token: [redacted]
⏎[Dec 20, 2022, 08:06:27] PROTOCOL OPTIONS:
cipher: AES-256-GCM
digest: NONE
key-derivation: OpenVPN PRF
compress: NONE
peer ID: 0
control channel: tls-crypt enabled
⏎[Dec 20, 2022, 08:06:27] EVENT: ASSIGN_IP ⏎[Dec 20, 2022, 08:06:27] exception parsing IPv4 route: [route] [odnfileshare.file.core.windows.net] [255.255.255.255] [vpn_gateway] : addr_pair_mask_parse_error: AddrMaskPair parse error 'route': odnfileshare.file.core.windows.net/255.255.255.255 : ip_exception: error parsing route IP address 'odnfileshare.file.core.windows.net' : An invalid argument was supplied.
⏎[Dec 20, 2022, 08:06:27] exception parsing dhcp-option: [dhcp-option] [DNS] [10.1.0.10,10.1.0.11] : ip_exception: error parsing dns-server-ip IP address '10.1.0.10,10.1.0.11' : An invalid argument was supplied.
⏎[Dec 20, 2022, 08:06:27] CAPTURED OPTIONS:
Session Name: 20.228.149.10
Layer: OSI_LAYER_3
Remote Address: 20.228.149.10
Tunnel Addresses:
172.16.1.68/24 -> 172.16.1.100
Reroute Gateway: IPv4=1 IPv6=0 flags=[ ENABLE REROUTE_GW DEF1 IPv4 ]
Block IPv6: no
Add Routes:
10.1.0.0/16
Exclude Routes:
DNS Servers:
Search Domains:

⏎[Dec 20, 2022, 08:06:28] SetupClient: transmitting tun setup list to \\.\pipe\agent_ovpnconnect
{
"allow_local_dns_resolvers" : false,
"confirm_event" : "a80f000000000000",
"destroy_event" : "b40e000000000000",
"tun" :
{
"adapter_domain_suffix" : "",
"add_routes" :
[
{
"address" : "10.1.0.0",
"gateway" : "",
"ipv6" : false,
"metric" : -1,
"net30" : false,
"prefix_length" : 16
}
],
"block_ipv6" : false,
"layer" : 3,
"mtu" : 0,
"remote_address" :
{
"address" : "20.228.149.10",
"ipv6" : false
},
"reroute_gw" :
{
"flags" : 275,
"ipv4" : true,
"ipv6" : false
},
"route_metric_default" : -1,
"session_name" : "20.228.149.10",
"tunnel_address_index_ipv4" : 0,
"tunnel_address_index_ipv6" : -1,
"tunnel_addresses" :
[
{
"address" : "172.16.1.68",
"gateway" : "172.16.1.100",
"ipv6" : false,
"metric" : -1,
"net30" : false,
"prefix_length" : 24
}
]
},
"wintun" : false
}
POST np://[\\.\pipe\agent_ovpnconnect]/tun-setup : 200 OK
TAP ADAPTERS:
guid='{C6CBBD35-8894-4DF7-83E4-00FCF6F8ACEB}' index=19 name='Local Area Connection 2'
Open TAP device "Local Area Connection 2" PATH="\\.\Global\{C6CBBD35-8894-4DF7-83E4-00FCF6F8ACEB}.tap" SUCCEEDED
TAP-Windows Driver Version 9.24
ActionDeleteAllRoutesOnInterface iface_index=19
netsh interface ip set interface 19 metric=1
Ok.
netsh interface ip set address 19 static 172.16.1.68 255.255.255.0 gateway=172.16.1.100 store=active
IPHelper: add route 10.1.0.0/16 19 172.16.1.100 metric=-1
netsh interface ip add route 20.228.149.10/32 15 192.168.0.1 store=active
The object already exists.
netsh interface ip add route 0.0.0.0/1 19 172.16.1.100 store=active
Ok.
netsh interface ip add route 128.0.0.0/1 19 172.16.1.100 store=active
Ok.
ipconfig /flushdns
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
TAP: ARP flush succeeded
TAP handle: 5407000000000000
⏎[Dec 20, 2022, 08:06:28] Connected via TUN_WIN
⏎[Dec 20, 2022, 08:06:28] EVENT: CONNECTED amiller@20.228.149.10:1194 (20.228.149.10) via /TCPv4 on TUN_WIN/172.16.1.68/ gw=[172.16.1.100/]⏎[Dec 20, 2022, 08:45:44] SetupClient: signaling tun destroy event
⏎[Dec 20, 2022, 08:45:44] EVENT: DISCONNECTED ⏎[Dec 20, 2022, 08:45:54] OpenVPN core 3.git::d3f8b18b win x86_64 64-bit built on Mar 17 2022 11:42:02
⏎[Dec 20, 2022, 08:45:54] Frame=512/2048/512 mssfix-ctrl=1250
⏎[Dec 20, 2022, 08:45:54] UNUSED OPTIONS
5 [resolv-retry] [infinite]
6 [nobind]
7 [persist-key]
8 [persist-tun]
10 [verb] [3]
13 [tls-client]
20 [allow-pull-fqdn]
⏎[Dec 20, 2022, 08:45:54] EVENT: RESOLVE ⏎[Dec 20, 2022, 08:45:54] EVENT: WAIT ⏎[Dec 20, 2022, 08:45:54] WinCommandAgent: transmitting bypass route to 20.228.149.10
{
"host" : "20.228.149.10",
"ipv6" : false
}

⏎[Dec 20, 2022, 08:45:54] Connecting to [20.228.149.10]:1194 (20.228.149.10) via TCPv4
⏎[Dec 20, 2022, 08:45:54] EVENT: CONNECTING ⏎[Dec 20, 2022, 08:45:54] Tunnel Options:V4,dev-type tun,link-mtu 1523,tun-mtu 1500,proto TCPv4_CLIENT,cipher AES-256-GCM,auth [null-digest],keysize 256,key-method 2,tls-client
⏎[Dec 20, 2022, 08:45:54] Creds: Username/Password
⏎[Dec 20, 2022, 08:45:54] Peer Info:
IV_VER=3.git::d3f8b18b
IV_PLAT=win
IV_NCP=2
IV_TCPNL=1
IV_PROTO=30
IV_CIPHERS=AES-256-GCM:AES-128-GCM:CHACHA20-POLY1305
IV_GUI_VER=OCWindows_3.3.6-2752
IV_SSO=webauth,openurl,crtext

⏎[Dec 20, 2022, 08:45:54] SSL Handshake: peer certificate: CN=OpenVPN Server/emailAddress=support@peplink.com, 2048 bit RSA, cipher: TLS_AES_256_GCM_SHA384 TLSv1.3 Kx=any Au=any Enc=AESGCM(256) Mac=AEAD

⏎[Dec 20, 2022, 08:45:54] Session is ACTIVE
⏎[Dec 20, 2022, 08:45:54] EVENT: GET_CONFIG ⏎[Dec 20, 2022, 08:45:54] Sending PUSH_REQUEST to server...
⏎[Dec 20, 2022, 08:45:55] Sending PUSH_REQUEST to server...
⏎[Dec 20, 2022, 08:45:56] Ignored due to route-nopull: [route] [172.16.1.0] [255.255.255.0]
⏎[Dec 20, 2022, 08:45:56] Ignored due to route-nopull: [dhcp-option] [DNS] [172.16.1.100]
⏎[Dec 20, 2022, 08:45:56] OPTIONS:
0 [route] [10.1.0.0] [255.255.0.0] [vpn_gateway]
1 [route] [odnfileshare.file.core.windows.net] [255.255.255.255] [vpn_gateway]
2 [redirect-gateway] [def1]
3 [dhcp-option] [DNS] [10.1.0.10,10.1.0.11]
4 [topology] [subnet]
5 [route-gateway] [172.16.1.100]
6 [ping] [10]
7 [ping-restart] [120]
8 [ifconfig] [172.16.1.70] [255.255.255.0]
9 [peer-id] [0]
10 [auth-token] ...
11 [cipher] [AES-256-GCM]

⏎[Dec 20, 2022, 08:45:56] Session token: [redacted]
⏎[Dec 20, 2022, 08:45:56] PROTOCOL OPTIONS:
cipher: AES-256-GCM
digest: NONE
key-derivation: OpenVPN PRF
compress: NONE
peer ID: 0
control channel: tls-crypt enabled
⏎[Dec 20, 2022, 08:45:56] EVENT: ASSIGN_IP ⏎[Dec 20, 2022, 08:45:56] exception parsing IPv4 route: [route] [odnfileshare.file.core.windows.net] [255.255.255.255] [vpn_gateway] : addr_pair_mask_parse_error: AddrMaskPair parse error 'route': odnfileshare.file.core.windows.net/255.255.255.255 : ip_exception: error parsing route IP address 'odnfileshare.file.core.windows.net' : An invalid argument was supplied.
⏎[Dec 20, 2022, 08:45:56] exception parsing dhcp-option: [dhcp-option] [DNS] [10.1.0.10,10.1.0.11] : ip_exception: error parsing dns-server-ip IP address '10.1.0.10,10.1.0.11' : An invalid argument was supplied.
⏎[Dec 20, 2022, 08:45:56] CAPTURED OPTIONS:
Session Name: 20.228.149.10
Layer: OSI_LAYER_3
Remote Address: 20.228.149.10
Tunnel Addresses:
172.16.1.70/24 -> 172.16.1.100
Reroute Gateway: IPv4=1 IPv6=0 flags=[ ENABLE REROUTE_GW DEF1 IPv4 ]
Block IPv6: no
Add Routes:
10.1.0.0/16
Exclude Routes:
DNS Servers:
Search Domains:

⏎[Dec 20, 2022, 08:45:57] SetupClient: transmitting tun setup list to \\.\pipe\agent_ovpnconnect
{
"allow_local_dns_resolvers" : false,
"confirm_event" : "340f000000000000",
"destroy_event" : "a00e000000000000",
"tun" :
{
"adapter_domain_suffix" : "",
"add_routes" :
[
{
"address" : "10.1.0.0",
"gateway" : "",
"ipv6" : false,
"metric" : -1,
"net30" : false,
"prefix_length" : 16
}
],
"block_ipv6" : false,
"layer" : 3,
"mtu" : 0,
"remote_address" :
{
"address" : "20.228.149.10",
"ipv6" : false
},
"reroute_gw" :
{
"flags" : 275,
"ipv4" : true,
"ipv6" : false
},
"route_metric_default" : -1,
"session_name" : "20.228.149.10",
"tunnel_address_index_ipv4" : 0,
"tunnel_address_index_ipv6" : -1,
"tunnel_addresses" :
[
{
"address" : "172.16.1.70",
"gateway" : "172.16.1.100",
"ipv6" : false,
"metric" : -1,
"net30" : false,
"prefix_length" : 24
}
]
},
"wintun" : false
}
POST np://[\\.\pipe\agent_ovpnconnect]/tun-setup : 200 OK
TAP ADAPTERS:
guid='{C6CBBD35-8894-4DF7-83E4-00FCF6F8ACEB}' index=19 name='Local Area Connection 2'
Open TAP device "Local Area Connection 2" PATH="\\.\Global\{C6CBBD35-8894-4DF7-83E4-00FCF6F8ACEB}.tap" SUCCEEDED
TAP-Windows Driver Version 9.24
ActionDeleteAllRoutesOnInterface iface_index=19
netsh interface ip set interface 19 metric=1
Ok.
netsh interface ip set address 19 static 172.16.1.70 255.255.255.0 gateway=172.16.1.100 store=active
IPHelper: add route 10.1.0.0/16 19 172.16.1.100 metric=-1
netsh interface ip add route 20.228.149.10/32 15 192.168.0.1 store=active
The object already exists.
netsh interface ip add route 0.0.0.0/1 19 172.16.1.100 store=active
Ok.
netsh interface ip add route 128.0.0.0/1 19 172.16.1.100 store=active
Ok.
ipconfig /flushdns
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
TAP: ARP flush succeeded
TAP handle: a00e000000000000
⏎[Dec 20, 2022, 08:45:57] Connected via TUN_WIN
⏎[Dec 20, 2022, 08:45:57] EVENT: CONNECTED amiller@20.228.149.10:1194 (20.228.149.10) via /TCPv4 on TUN_WIN/172.16.1.70/ gw=[172.16.1.100/]⏎[Dec 20, 2022, 09:40:19] Tunnel Options:V4,dev-type tun,link-mtu 1523,tun-mtu 1500,proto TCPv4_CLIENT,cipher AES-256-GCM,auth [null-digest],keysize 256,key-method 2,tls-client
⏎[Dec 20, 2022, 09:40:19] Creds: Username/SessionID
⏎[Dec 20, 2022, 09:40:19] Peer Info:
IV_VER=3.git::d3f8b18b
IV_PLAT=win
IV_NCP=2
IV_TCPNL=1
IV_PROTO=30
IV_CIPHERS=AES-256-GCM:AES-128-GCM:CHACHA20-POLY1305
IV_GUI_VER=OCWindows_3.3.6-2752
IV_SSO=webauth,openurl,crtext

⏎[Dec 20, 2022, 09:40:19] SSL Handshake: peer certificate: CN=OpenVPN Server/emailAddress=support@peplink.com, 2048 bit RSA, cipher: TLS_AES_256_GCM_SHA384 TLSv1.3 Kx=any Au=any Enc=AESGCM(256) Mac=AEAD

⏎[Dec 20, 2022, 09:40:19] Session token: [redacted]
⏎[Dec 20, 2022, 09:46:38] SetupClient: signaling tun destroy event
⏎[Dec 20, 2022, 09:46:38] EVENT: DISCONNECTED ⏎[Dec 20, 2022, 09:46:55] OpenVPN core 3.git::d3f8b18b win x86_64 64-bit built on Mar 17 2022 11:42:02
⏎[Dec 20, 2022, 09:46:55] Frame=512/2048/512 mssfix-ctrl=1250
⏎[Dec 20, 2022, 09:46:55] UNUSED OPTIONS
5 [resolv-retry] [infinite]
6 [nobind]
7 [persist-key]
8 [persist-tun]
10 [verb] [3]
13 [tls-client]
20 [allow-pull-fqdn]
⏎[Dec 20, 2022, 09:46:55] EVENT: RESOLVE ⏎[Dec 20, 2022, 09:46:55] EVENT: WAIT ⏎[Dec 20, 2022, 09:46:55] WinCommandAgent: transmitting bypass route to 20.228.149.10
{
"host" : "20.228.149.10",
"ipv6" : false
}

⏎[Dec 20, 2022, 09:46:56] Connecting to [20.228.149.10]:1194 (20.228.149.10) via TCPv4
⏎[Dec 20, 2022, 09:46:56] EVENT: CONNECTING ⏎[Dec 20, 2022, 09:46:56] Tunnel Options:V4,dev-type tun,link-mtu 1523,tun-mtu 1500,proto TCPv4_CLIENT,cipher AES-256-GCM,auth [null-digest],keysize 256,key-method 2,tls-client
⏎[Dec 20, 2022, 09:46:56] Creds: Username/Password
⏎[Dec 20, 2022, 09:46:56] Peer Info:
IV_VER=3.git::d3f8b18b
IV_PLAT=win
IV_NCP=2
IV_TCPNL=1
IV_PROTO=30
IV_CIPHERS=AES-256-GCM:AES-128-GCM:CHACHA20-POLY1305
IV_GUI_VER=OCWindows_3.3.6-2752
IV_SSO=webauth,openurl,crtext

⏎[Dec 20, 2022, 09:46:56] SSL Handshake: peer certificate: CN=OpenVPN Server/emailAddress=support@peplink.com, 2048 bit RSA, cipher: TLS_AES_256_GCM_SHA384 TLSv1.3 Kx=any Au=any Enc=AESGCM(256) Mac=AEAD

⏎[Dec 20, 2022, 09:46:56] Session is ACTIVE
⏎[Dec 20, 2022, 09:46:56] EVENT: GET_CONFIG ⏎[Dec 20, 2022, 09:46:56] Sending PUSH_REQUEST to server...
⏎[Dec 20, 2022, 09:46:57] Sending PUSH_REQUEST to server...
⏎[Dec 20, 2022, 09:46:58] Ignored due to route-nopull: [route] [172.16.1.0] [255.255.255.0]
⏎[Dec 20, 2022, 09:46:58] Ignored due to route-nopull: [dhcp-option] [DNS] [172.16.1.100]
⏎[Dec 20, 2022, 09:46:58] OPTIONS:
0 [route] [10.1.0.0] [255.255.0.0] [vpn_gateway]
1 [route] [odnfileshare.file.core.windows.net] [255.255.255.255] [vpn_gateway]
2 [redirect-gateway] [def1]
3 [dhcp-option] [DNS] [10.1.0.10,10.1.0.11]
4 [topology] [subnet]
5 [route-gateway] [172.16.1.100]
6 [ping] [10]
7 [ping-restart] [120]
8 [ifconfig] [172.16.1.62] [255.255.255.0]
9 [peer-id] [0]
10 [auth-token] ...
11 [cipher] [AES-256-GCM]

⏎[Dec 20, 2022, 09:46:58] Session token: [redacted]
⏎[Dec 20, 2022, 09:46:58] PROTOCOL OPTIONS:
cipher: AES-256-GCM
digest: NONE
key-derivation: OpenVPN PRF
compress: NONE
peer ID: 0
control channel: tls-crypt enabled
⏎[Dec 20, 2022, 09:46:58] EVENT: ASSIGN_IP ⏎[Dec 20, 2022, 09:46:58] exception parsing IPv4 route: [route] [odnfileshare.file.core.windows.net] [255.255.255.255] [vpn_gateway] : addr_pair_mask_parse_error: AddrMaskPair parse error 'route': odnfileshare.file.core.windows.net/255.255.255.255 : ip_exception: error parsing route IP address 'odnfileshare.file.core.windows.net' : An invalid argument was supplied.
⏎[Dec 20, 2022, 09:46:58] exception parsing dhcp-option: [dhcp-option] [DNS] [10.1.0.10,10.1.0.11] : ip_exception: error parsing dns-server-ip IP address '10.1.0.10,10.1.0.11' : An invalid argument was supplied.
⏎[Dec 20, 2022, 09:46:58] CAPTURED OPTIONS:
Session Name: 20.228.149.10
Layer: OSI_LAYER_3
Remote Address: 20.228.149.10
Tunnel Addresses:
172.16.1.62/24 -> 172.16.1.100
Reroute Gateway: IPv4=1 IPv6=0 flags=[ ENABLE REROUTE_GW DEF1 IPv4 ]
Block IPv6: no
Add Routes:
10.1.0.0/16
Exclude Routes:
DNS Servers:
Search Domains:

⏎[Dec 20, 2022, 09:46:59] SetupClient: transmitting tun setup list to \\.\pipe\agent_ovpnconnect
{
"allow_local_dns_resolvers" : false,
"confirm_event" : "0c0e000000000000",
"destroy_event" : "c80c000000000000",
"tun" :
{
"adapter_domain_suffix" : "",
"add_routes" :
[
{
"address" : "10.1.0.0",
"gateway" : "",
"ipv6" : false,
"metric" : -1,
"net30" : false,
"prefix_length" : 16
}
],
"block_ipv6" : false,
"layer" : 3,
"mtu" : 0,
"remote_address" :
{
"address" : "20.228.149.10",
"ipv6" : false
},
"reroute_gw" :
{
"flags" : 275,
"ipv4" : true,
"ipv6" : false
},
"route_metric_default" : -1,
"session_name" : "20.228.149.10",
"tunnel_address_index_ipv4" : 0,
"tunnel_address_index_ipv6" : -1,
"tunnel_addresses" :
[
{
"address" : "172.16.1.62",
"gateway" : "172.16.1.100",
"ipv6" : false,
"metric" : -1,
"net30" : false,
"prefix_length" : 24
}
]
},
"wintun" : false
}
POST np://[\\.\pipe\agent_ovpnconnect]/tun-setup : 200 OK
TAP ADAPTERS:
guid='{C6CBBD35-8894-4DF7-83E4-00FCF6F8ACEB}' index=19 name='Local Area Connection 2'
Open TAP device "Local Area Connection 2" PATH="\\.\Global\{C6CBBD35-8894-4DF7-83E4-00FCF6F8ACEB}.tap" SUCCEEDED
TAP-Windows Driver Version 9.24
ActionDeleteAllRoutesOnInterface iface_index=19
netsh interface ip set interface 19 metric=1
Ok.
netsh interface ip set address 19 static 172.16.1.62 255.255.255.0 gateway=172.16.1.100 store=active
IPHelper: add route 10.1.0.0/16 19 172.16.1.100 metric=-1
netsh interface ip add route 20.228.149.10/32 15 192.168.0.1 store=active
The object already exists.
netsh interface ip add route 0.0.0.0/1 19 172.16.1.100 store=active
Ok.
netsh interface ip add route 128.0.0.0/1 19 172.16.1.100 store=active
Ok.
ipconfig /flushdns
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
TAP: ARP flush succeeded
TAP handle: d809000000000000
⏎[Dec 20, 2022, 09:46:59] Connected via TUN_WIN
⏎[Dec 20, 2022, 09:46:59] EVENT: CONNECTED amiller@20.228.149.10:1194 (20.228.149.10) via /TCPv4 on TUN_WIN/172.16.1.62/ gw=[172.16.1.100/]⏎[Dec 20, 2022, 10:42:07] Tunnel Options:V4,dev-type tun,link-mtu 1523,tun-mtu 1500,proto TCPv4_CLIENT,cipher AES-256-GCM,auth [null-digest],keysize 256,key-method 2,tls-client
⏎[Dec 20, 2022, 10:42:07] Creds: Username/SessionID
⏎[Dec 20, 2022, 10:42:07] Peer Info:
IV_VER=3.git::d3f8b18b
IV_PLAT=win
IV_NCP=2
IV_TCPNL=1
IV_PROTO=30
IV_CIPHERS=AES-256-GCM:AES-128-GCM:CHACHA20-POLY1305
IV_GUI_VER=OCWindows_3.3.6-2752
IV_SSO=webauth,openurl,crtext

⏎[Dec 20, 2022, 10:42:07] SSL Handshake: peer certificate: CN=OpenVPN Server/emailAddress=support@peplink.com, 2048 bit RSA, cipher: TLS_AES_256_GCM_SHA384 TLSv1.3 Kx=any Au=any Enc=AESGCM(256) Mac=AEAD

⏎[Dec 20, 2022, 10:42:07] Session token: [redacted]
⏎[Dec 20, 2022, 10:47:26] SetupClient: signaling tun destroy event
⏎[Dec 20, 2022, 10:47:26] EVENT: DISCONNECTED ⏎[Dec 20, 2022, 10:47:31] OpenVPN core 3.git::d3f8b18b win x86_64 64-bit built on Mar 17 2022 11:42:02
⏎[Dec 20, 2022, 10:47:31] Frame=512/2048/512 mssfix-ctrl=1250
⏎[Dec 20, 2022, 10:47:31] UNUSED OPTIONS
5 [resolv-retry] [infinite]
6 [nobind]
7 [persist-key]
8 [persist-tun]
10 [verb] [3]
13 [tls-client]
20 [allow-pull-fqdn]
⏎[Dec 20, 2022, 10:47:31] EVENT: RESOLVE ⏎[Dec 20, 2022, 10:47:31] EVENT: WAIT ⏎[Dec 20, 2022, 10:47:31] WinCommandAgent: transmitting bypass route to 20.228.149.10
{
"host" : "20.228.149.10",
"ipv6" : false
}

⏎[Dec 20, 2022, 10:47:31] Connecting to [20.228.149.10]:1194 (20.228.149.10) via TCPv4
⏎[Dec 20, 2022, 10:47:31] EVENT: CONNECTING ⏎[Dec 20, 2022, 10:47:31] Tunnel Options:V4,dev-type tun,link-mtu 1523,tun-mtu 1500,proto TCPv4_CLIENT,cipher AES-256-GCM,auth [null-digest],keysize 256,key-method 2,tls-client
⏎[Dec 20, 2022, 10:47:31] Creds: Username/Password
⏎[Dec 20, 2022, 10:47:31] Peer Info:
IV_VER=3.git::d3f8b18b
IV_PLAT=win
IV_NCP=2
IV_TCPNL=1
IV_PROTO=30
IV_CIPHERS=AES-256-GCM:AES-128-GCM:CHACHA20-POLY1305
IV_GUI_VER=OCWindows_3.3.6-2752
IV_SSO=webauth,openurl,crtext

⏎[Dec 20, 2022, 10:47:31] SSL Handshake: peer certificate: CN=OpenVPN Server/emailAddress=support@peplink.com, 2048 bit RSA, cipher: TLS_AES_256_GCM_SHA384 TLSv1.3 Kx=any Au=any Enc=AESGCM(256) Mac=AEAD

⏎[Dec 20, 2022, 10:47:31] Session is ACTIVE
⏎[Dec 20, 2022, 10:47:31] EVENT: GET_CONFIG ⏎[Dec 20, 2022, 10:47:31] Sending PUSH_REQUEST to server...
⏎[Dec 20, 2022, 10:47:32] Sending PUSH_REQUEST to server...
⏎[Dec 20, 2022, 10:47:33] Ignored due to route-nopull: [route] [172.16.1.0] [255.255.255.0]
⏎[Dec 20, 2022, 10:47:33] Ignored due to route-nopull: [dhcp-option] [DNS] [172.16.1.100]
⏎[Dec 20, 2022, 10:47:33] OPTIONS:
0 [route] [10.1.0.0] [255.255.0.0] [vpn_gateway]
1 [route] [odnfileshare.file.core.windows.net] [255.255.255.255] [vpn_gateway]
2 [redirect-gateway] [def1]
3 [dhcp-option] [DNS] [10.1.0.10,10.1.0.11]
4 [topology] [subnet]
5 [route-gateway] [172.16.1.100]
6 [ping] [10]
7 [ping-restart] [120]
8 [ifconfig] [172.16.1.77] [255.255.255.0]
9 [peer-id] [0]
10 [auth-token] ...
11 [cipher] [AES-256-GCM]

⏎[Dec 20, 2022, 10:47:33] Session token: [redacted]
⏎[Dec 20, 2022, 10:47:33] PROTOCOL OPTIONS:
cipher: AES-256-GCM
digest: NONE
key-derivation: OpenVPN PRF
compress: NONE
peer ID: 0
control channel: tls-crypt enabled
⏎[Dec 20, 2022, 10:47:33] EVENT: ASSIGN_IP ⏎[Dec 20, 2022, 10:47:33] exception parsing IPv4 route: [route] [odnfileshare.file.core.windows.net] [255.255.255.255] [vpn_gateway] : addr_pair_mask_parse_error: AddrMaskPair parse error 'route': odnfileshare.file.core.windows.net/255.255.255.255 : ip_exception: error parsing route IP address 'odnfileshare.file.core.windows.net' : An invalid argument was supplied.
⏎[Dec 20, 2022, 10:47:33] exception parsing dhcp-option: [dhcp-option] [DNS] [10.1.0.10,10.1.0.11] : ip_exception: error parsing dns-server-ip IP address '10.1.0.10,10.1.0.11' : An invalid argument was supplied.
⏎[Dec 20, 2022, 10:47:33] CAPTURED OPTIONS:
Session Name: 20.228.149.10
Layer: OSI_LAYER_3
Remote Address: 20.228.149.10
Tunnel Addresses:
172.16.1.77/24 -> 172.16.1.100
Reroute Gateway: IPv4=1 IPv6=0 flags=[ ENABLE REROUTE_GW DEF1 IPv4 ]
Block IPv6: no
Add Routes:
10.1.0.0/16
Exclude Routes:
DNS Servers:
Search Domains:

⏎[Dec 20, 2022, 10:47:34] SetupClient: transmitting tun setup list to \\.\pipe\agent_ovpnconnect
{
"allow_local_dns_resolvers" : false,
"confirm_event" : "a80e000000000000",
"destroy_event" : "e00f000000000000",
"tun" :
{
"adapter_domain_suffix" : "",
"add_routes" :
[
{
"address" : "10.1.0.0",
"gateway" : "",
"ipv6" : false,
"metric" : -1,
"net30" : false,
"prefix_length" : 16
}
],
"block_ipv6" : false,
"layer" : 3,
"mtu" : 0,
"remote_address" :
{
"address" : "20.228.149.10",
"ipv6" : false
},
"reroute_gw" :
{
"flags" : 275,
"ipv4" : true,
"ipv6" : false
},
"route_metric_default" : -1,
"session_name" : "20.228.149.10",
"tunnel_address_index_ipv4" : 0,
"tunnel_address_index_ipv6" : -1,
"tunnel_addresses" :
[
{
"address" : "172.16.1.77",
"gateway" : "172.16.1.100",
"ipv6" : false,
"metric" : -1,
"net30" : false,
"prefix_length" : 24
}
]
},
"wintun" : false
}
POST np://[\\.\pipe\agent_ovpnconnect]/tun-setup : 200 OK
TAP ADAPTERS:
guid='{C6CBBD35-8894-4DF7-83E4-00FCF6F8ACEB}' index=19 name='Local Area Connection 2'
Open TAP device "Local Area Connection 2" PATH="\\.\Global\{C6CBBD35-8894-4DF7-83E4-00FCF6F8ACEB}.tap" SUCCEEDED
TAP-Windows Driver Version 9.24
ActionDeleteAllRoutesOnInterface iface_index=19
netsh interface ip set interface 19 metric=1
Ok.
netsh interface ip set address 19 static 172.16.1.77 255.255.255.0 gateway=172.16.1.100 store=active
IPHelper: add route 10.1.0.0/16 19 172.16.1.100 metric=-1
netsh interface ip add route 20.228.149.10/32 15 192.168.0.1 store=active
The object already exists.
netsh interface ip add route 0.0.0.0/1 19 172.16.1.100 store=active
Ok.
netsh interface ip add route 128.0.0.0/1 19 172.16.1.100 store=active
Ok.
ipconfig /flushdns
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
TAP: ARP flush succeeded
TAP handle: e40d000000000000
⏎[Dec 20, 2022, 10:47:34] Connected via TUN_WIN
⏎[Dec 20, 2022, 10:47:34] EVENT: CONNECTED amiller@20.228.149.10:1194 (20.228.149.10) via /TCPv4 on TUN_WIN/172.16.1.77/ gw=[172.16.1.100/]⏎[Dec 20, 2022, 10:54:23] SetupClient: signaling tun destroy event
⏎[Dec 20, 2022, 10:54:23] EVENT: DISCONNECTED ⏎[Dec 20, 2022, 10:54:29] OpenVPN core 3.git::d3f8b18b win x86_64 64-bit built on Mar 17 2022 11:42:02
⏎[Dec 20, 2022, 10:54:29] Frame=512/2048/512 mssfix-ctrl=1250
⏎[Dec 20, 2022, 10:54:29] UNUSED OPTIONS
5 [resolv-retry] [infinite]
6 [nobind]
7 [persist-key]
8 [persist-tun]
10 [verb] [3]
13 [tls-client]
20 [allow-pull-fqdn]
⏎[Dec 20, 2022, 10:54:29] EVENT: RESOLVE ⏎[Dec 20, 2022, 10:54:29] EVENT: WAIT ⏎[Dec 20, 2022, 10:54:29] WinCommandAgent: transmitting bypass route to 20.228.149.10
{
"host" : "20.228.149.10",
"ipv6" : false
}

⏎[Dec 20, 2022, 10:54:29] Connecting to [20.228.149.10]:1194 (20.228.149.10) via TCPv4
⏎[Dec 20, 2022, 10:54:29] EVENT: CONNECTING ⏎[Dec 20, 2022, 10:54:29] Tunnel Options:V4,dev-type tun,link-mtu 1523,tun-mtu 1500,proto TCPv4_CLIENT,cipher AES-256-GCM,auth [null-digest],keysize 256,key-method 2,tls-client
⏎[Dec 20, 2022, 10:54:29] Creds: Username/Password
⏎[Dec 20, 2022, 10:54:29] Peer Info:
IV_VER=3.git::d3f8b18b
IV_PLAT=win
IV_NCP=2
IV_TCPNL=1
IV_PROTO=30
IV_CIPHERS=AES-256-GCM:AES-128-GCM:CHACHA20-POLY1305
IV_GUI_VER=OCWindows_3.3.6-2752
IV_SSO=webauth,openurl,crtext

⏎[Dec 20, 2022, 10:54:30] SSL Handshake: peer certificate: CN=OpenVPN Server/emailAddress=support@peplink.com, 2048 bit RSA, cipher: TLS_AES_256_GCM_SHA384 TLSv1.3 Kx=any Au=any Enc=AESGCM(256) Mac=AEAD

⏎[Dec 20, 2022, 10:54:30] Session is ACTIVE
⏎[Dec 20, 2022, 10:54:30] EVENT: GET_CONFIG ⏎[Dec 20, 2022, 10:54:30] Sending PUSH_REQUEST to server...
⏎[Dec 20, 2022, 10:54:31] Sending PUSH_REQUEST to server...
⏎[Dec 20, 2022, 10:54:32] Ignored due to route-nopull: [route] [172.16.1.0] [255.255.255.0]
⏎[Dec 20, 2022, 10:54:32] Ignored due to route-nopull: [dhcp-option] [DNS] [172.16.1.100]
⏎[Dec 20, 2022, 10:54:32] OPTIONS:
0 [route] [10.1.0.0] [255.255.0.0] [vpn_gateway]
1 [route] [odnfileshare.file.core.windows.net] [255.255.255.255] [vpn_gateway]
2 [redirect-gateway] [def1]
3 [dhcp-option] [DNS] [10.1.0.10,10.1.0.11]
4 [topology] [subnet]
5 [route-gateway] [172.16.1.100]
6 [ping] [10]
7 [ping-restart] [120]
8 [ifconfig] [172.16.1.62] [255.255.255.0]
9 [peer-id] [0]
10 [auth-token] ...
11 [cipher] [AES-256-GCM]

⏎[Dec 20, 2022, 10:54:32] Session token: [redacted]
⏎[Dec 20, 2022, 10:54:32] PROTOCOL OPTIONS:
cipher: AES-256-GCM
digest: NONE
key-derivation: OpenVPN PRF
compress: NONE
peer ID: 0
control channel: tls-crypt enabled
⏎[Dec 20, 2022, 10:54:32] EVENT: ASSIGN_IP ⏎[Dec 20, 2022, 10:54:32] exception parsing IPv4 route: [route] [odnfileshare.file.core.windows.net] [255.255.255.255] [vpn_gateway] : addr_pair_mask_parse_error: AddrMaskPair parse error 'route': odnfileshare.file.core.windows.net/255.255.255.255 : ip_exception: error parsing route IP address 'odnfileshare.file.core.windows.net' : An invalid argument was supplied.
⏎[Dec 20, 2022, 10:54:32] exception parsing dhcp-option: [dhcp-option] [DNS] [10.1.0.10,10.1.0.11] : ip_exception: error parsing dns-server-ip IP address '10.1.0.10,10.1.0.11' : An invalid argument was supplied.
⏎[Dec 20, 2022, 10:54:32] CAPTURED OPTIONS:
Session Name: 20.228.149.10
Layer: OSI_LAYER_3
Remote Address: 20.228.149.10
Tunnel Addresses:
172.16.1.62/24 -> 172.16.1.100
Reroute Gateway: IPv4=1 IPv6=0 flags=[ ENABLE REROUTE_GW DEF1 IPv4 ]
Block IPv6: no
Add Routes:
10.1.0.0/16
Exclude Routes:
DNS Servers:
Search Domains:

⏎[Dec 20, 2022, 10:54:33] SetupClient: transmitting tun setup list to \\.\pipe\agent_ovpnconnect
{
"allow_local_dns_resolvers" : false,
"confirm_event" : "fc0d000000000000",
"destroy_event" : "c00c000000000000",
"tun" :
{
"adapter_domain_suffix" : "",
"add_routes" :
[
{
"address" : "10.1.0.0",
"gateway" : "",
"ipv6" : false,
"metric" : -1,
"net30" : false,
"prefix_length" : 16
}
],
"block_ipv6" : false,
"layer" : 3,
"mtu" : 0,
"remote_address" :
{
"address" : "20.228.149.10",
"ipv6" : false
},
"reroute_gw" :
{
"flags" : 275,
"ipv4" : true,
"ipv6" : false
},
"route_metric_default" : -1,
"session_name" : "20.228.149.10",
"tunnel_address_index_ipv4" : 0,
"tunnel_address_index_ipv6" : -1,
"tunnel_addresses" :
[
{
"address" : "172.16.1.62",
"gateway" : "172.16.1.100",
"ipv6" : false,
"metric" : -1,
"net30" : false,
"prefix_length" : 24
}
]
},
"wintun" : false
}
POST np://[\\.\pipe\agent_ovpnconnect]/tun-setup : 200 OK
TAP ADAPTERS:
guid='{C6CBBD35-8894-4DF7-83E4-00FCF6F8ACEB}' index=19 name='Local Area Connection 2'
Open TAP device "Local Area Connection 2" PATH="\\.\Global\{C6CBBD35-8894-4DF7-83E4-00FCF6F8ACEB}.tap" SUCCEEDED
TAP-Windows Driver Version 9.24
ActionDeleteAllRoutesOnInterface iface_index=19
netsh interface ip set interface 19 metric=1
Ok.
netsh interface ip set address 19 static 172.16.1.62 255.255.255.0 gateway=172.16.1.100 store=active
IPHelper: add route 10.1.0.0/16 19 172.16.1.100 metric=-1
netsh interface ip add route 20.228.149.10/32 15 192.168.0.1 store=active
The object already exists.
netsh interface ip add route 0.0.0.0/1 19 172.16.1.100 store=active
Ok.
netsh interface ip add route 128.0.0.0/1 19 172.16.1.100 store=active
Ok.
ipconfig /flushdns
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
TAP: ARP flush succeeded
TAP handle: d80e000000000000
⏎[Dec 20, 2022, 10:54:33] Connected via TUN_WIN
⏎[Dec 20, 2022, 10:54:33] EVENT: CONNECTED amiller@20.228.149.10:1194 (20.228.149.10) via /TCPv4 on TUN_WIN/172.16.1.62/ gw=[172.16.1.100/]⏎[Dec 20, 2022, 11:48:28] SetupClient: signaling tun destroy event
⏎[Dec 20, 2022, 11:48:28] EVENT: DISCONNECTED ⏎[Dec 20, 2022, 11:48:45] OpenVPN core 3.git::d3f8b18b win x86_64 64-bit built on Mar 17 2022 11:42:02
⏎[Dec 20, 2022, 11:48:45] Frame=512/2048/512 mssfix-ctrl=1250
⏎[Dec 20, 2022, 11:48:45] UNUSED OPTIONS
5 [resolv-retry] [infinite]
6 [nobind]
7 [persist-key]
8 [persist-tun]
10 [verb] [3]
13 [tls-client]
20 [allow-pull-fqdn]
⏎[Dec 20, 2022, 11:48:45] EVENT: RESOLVE ⏎[Dec 20, 2022, 11:48:45] EVENT: WAIT ⏎[Dec 20, 2022, 11:48:45] WinCommandAgent: transmitting bypass route to 20.228.149.10
{
"host" : "20.228.149.10",
"ipv6" : false
}

⏎[Dec 20, 2022, 11:48:45] Connecting to [20.228.149.10]:1194 (20.228.149.10) via TCPv4
⏎[Dec 20, 2022, 11:48:45] EVENT: CONNECTING ⏎[Dec 20, 2022, 11:48:45] Tunnel Options:V4,dev-type tun,link-mtu 1523,tun-mtu 1500,proto TCPv4_CLIENT,cipher AES-256-GCM,auth [null-digest],keysize 256,key-method 2,tls-client
⏎[Dec 20, 2022, 11:48:45] Creds: Username/Password
⏎[Dec 20, 2022, 11:48:45] Peer Info:
IV_VER=3.git::d3f8b18b
IV_PLAT=win
IV_NCP=2
IV_TCPNL=1
IV_PROTO=30
IV_CIPHERS=AES-256-GCM:AES-128-GCM:CHACHA20-POLY1305
IV_GUI_VER=OCWindows_3.3.6-2752
IV_SSO=webauth,openurl,crtext

⏎[Dec 20, 2022, 11:48:45] SSL Handshake: peer certificate: CN=OpenVPN Server/emailAddress=support@peplink.com, 2048 bit RSA, cipher: TLS_AES_256_GCM_SHA384 TLSv1.3 Kx=any Au=any Enc=AESGCM(256) Mac=AEAD

⏎[Dec 20, 2022, 11:48:45] Session is ACTIVE
⏎[Dec 20, 2022, 11:48:45] EVENT: GET_CONFIG ⏎[Dec 20, 2022, 11:48:45] Sending PUSH_REQUEST to server...
⏎[Dec 20, 2022, 11:48:46] Sending PUSH_REQUEST to server...
⏎[Dec 20, 2022, 11:48:47] Ignored due to route-nopull: [route] [172.16.1.0] [255.255.255.0]
⏎[Dec 20, 2022, 11:48:47] Ignored due to route-nopull: [dhcp-option] [DNS] [172.16.1.100]
⏎[Dec 20, 2022, 11:48:47] OPTIONS:
0 [route] [10.1.0.0] [255.255.0.0] [vpn_gateway]
1 [route] [odnfileshare.file.core.windows.net] [255.255.255.255] [vpn_gateway]
2 [redirect-gateway] [def1]
3 [dhcp-option] [DNS] [10.1.0.10,10.1.0.11]
4 [topology] [subnet]
5 [route-gateway] [172.16.1.100]
6 [ping] [10]
7 [ping-restart] [120]
8 [ifconfig] [172.16.1.56] [255.255.255.0]
9 [peer-id] [0]
10 [auth-token] ...
11 [cipher] [AES-256-GCM]

⏎[Dec 20, 2022, 11:48:47] Session token: [redacted]
⏎[Dec 20, 2022, 11:48:47] PROTOCOL OPTIONS:
cipher: AES-256-GCM
digest: NONE
key-derivation: OpenVPN PRF
compress: NONE
peer ID: 0
control channel: tls-crypt enabled
⏎[Dec 20, 2022, 11:48:47] EVENT: ASSIGN_IP ⏎[Dec 20, 2022, 11:48:47] exception parsing IPv4 route: [route] [odnfileshare.file.core.windows.net] [255.255.255.255] [vpn_gateway] : addr_pair_mask_parse_error: AddrMaskPair parse error 'route': odnfileshare.file.core.windows.net/255.255.255.255 : ip_exception: error parsing route IP address 'odnfileshare.file.core.windows.net' : An invalid argument was supplied.
⏎[Dec 20, 2022, 11:48:47] exception parsing dhcp-option: [dhcp-option] [DNS] [10.1.0.10,10.1.0.11] : ip_exception: error parsing dns-server-ip IP address '10.1.0.10,10.1.0.11' : An invalid argument was supplied.
⏎[Dec 20, 2022, 11:48:47] CAPTURED OPTIONS:
Session Name: 20.228.149.10
Layer: OSI_LAYER_3
Remote Address: 20.228.149.10
Tunnel Addresses:
172.16.1.56/24 -> 172.16.1.100
Reroute Gateway: IPv4=1 IPv6=0 flags=[ ENABLE REROUTE_GW DEF1 IPv4 ]
Block IPv6: no
Add Routes:
10.1.0.0/16
Exclude Routes:
DNS Servers:
Search Domains:

⏎[Dec 20, 2022, 11:48:48] SetupClient: transmitting tun setup list to \\.\pipe\agent_ovpnconnect
{
"allow_local_dns_resolvers" : false,
"confirm_event" : "8013000000000000",
"destroy_event" : "1813000000000000",
"tun" :
{
"adapter_domain_suffix" : "",
"add_routes" :
[
{
"address" : "10.1.0.0",
"gateway" : "",
"ipv6" : false,
"metric" : -1,
"net30" : false,
"prefix_length" : 16
}
],
"block_ipv6" : false,
"layer" : 3,
"mtu" : 0,
"remote_address" :
{
"address" : "20.228.149.10",
"ipv6" : false
},
"reroute_gw" :
{
"flags" : 275,
"ipv4" : true,
"ipv6" : false
},
"route_metric_default" : -1,
"session_name" : "20.228.149.10",
"tunnel_address_index_ipv4" : 0,
"tunnel_address_index_ipv6" : -1,
"tunnel_addresses" :
[
{
"address" : "172.16.1.56",
"gateway" : "172.16.1.100",
"ipv6" : false,
"metric" : -1,
"net30" : false,
"prefix_length" : 24
}
]
},
"wintun" : false
}
POST np://[\\.\pipe\agent_ovpnconnect]/tun-setup : 200 OK
TAP ADAPTERS:
guid='{C6CBBD35-8894-4DF7-83E4-00FCF6F8ACEB}' index=19 name='Local Area Connection 2'
Open TAP device "Local Area Connection 2" PATH="\\.\Global\{C6CBBD35-8894-4DF7-83E4-00FCF6F8ACEB}.tap" SUCCEEDED
TAP-Windows Driver Version 9.24
ActionDeleteAllRoutesOnInterface iface_index=19
netsh interface ip set interface 19 metric=1
Ok.
netsh interface ip set address 19 static 172.16.1.56 255.255.255.0 gateway=172.16.1.100 store=active
IPHelper: add route 10.1.0.0/16 19 172.16.1.100 metric=-1
netsh interface ip add route 20.228.149.10/32 15 192.168.0.1 store=active
The object already exists.
netsh interface ip add route 0.0.0.0/1 19 172.16.1.100 store=active
Ok.
netsh interface ip add route 128.0.0.0/1 19 172.16.1.100 store=active
Ok.
ipconfig /flushdns
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
TAP: ARP flush succeeded
TAP handle: a012000000000000
⏎[Dec 20, 2022, 11:48:48] Connected via TUN_WIN
⏎[Dec 20, 2022, 11:48:48] EVENT: CONNECTED amiller@20.228.149.10:1194 (20.228.149.10) via /TCPv4 on TUN_WIN/172.16.1.56/ gw=[172.16.1.100/]⏎

User avatar
openvpn_inc
OpenVPN Inc.
Posts: 1332
Joined: Tue Feb 16, 2021 10:41 am

Re: Frequent OpenVPN client Disconnects

Post by openvpn_inc » Tue Dec 20, 2022 9:41 pm

Hello,

You're passing an invalid parameter:
exception parsing IPv4 route: [route] [odnfileshare.file.core.windows.net]
You can't specify a domain, you have to use an IP and range.

You're passing another invalid parameter:
[dhcp-option] [DNS] [10.1.0.10,10.1.0.11]
Only 1 DNS server per line. Specify multiple lines to specify multiple DNS servers.

That doesn't really explain the disconnects though, it seems it proceeds to connect despite misconfigurations like these. And then it gets disconnected by what seems to be a user action:
[Dec 20, 2022, 10:54:23] SetupClient: signaling tun destroy event

I would suggest to try installing and using OpenVPN GUI that comes with the open source OpenVPN program and loading the configuration file in there and connecting that. I also recommend to tell the user not to touch the disconnect button. And ensure that the system doesn't go to sleep after some time, but keep it awake. And if the problems still occur to send us an OpenVPN GUI log of the problem occurring. And to verify that the underlying Internet connection is actually 100% stable during these times that you lose OpenVPN connectivity.

Kind regards,
Johan
Image OpenVPN Inc.
Answers provided by OpenVPN Inc. staff members here are provided on a voluntary best-effort basis, and no rights can be claimed on the basis of answers posted in this public forum. If you wish to get official support from OpenVPN Inc. please use the official support ticket system: https://openvpn.net/support

User avatar
Pippin
Forum Team
Posts: 1200
Joined: Wed Jul 01, 2015 8:03 am
Location: irc://irc.libera.chat:6697/openvpn

Re: Frequent OpenVPN client Disconnects

Post by Pippin » Wed Dec 21, 2022 12:37 am

openvpn_inc wrote:
Tue Dec 20, 2022 9:41 pm
And to verify that the underlying Internet connection is actually 100% stable during these times that you lose OpenVPN connectivity.
Which looks to be 4G/5G...
.
I gloomily came to the ironic conclusion that if you take a highly intelligent person and give them the best possible, elite education, then you will most likely wind up with an academic who is completely impervious to reality.
Halton Arp

mlynch
OpenVpn Newbie
Posts: 3
Joined: Tue Dec 20, 2022 5:08 pm

Re: Frequent OpenVPN client Disconnects

Post by mlynch » Wed Feb 01, 2023 5:33 pm

Johan,
Thanks for your response. Sorry for the late reply. Holidays and crazy work schedule. I am still having issues with some users. So you know, the users who are having problems are using the OpenVPN Connect client to connect to a Peplink SpeedFusion hub as the VPN endpoint. The most pressing issue at the moment is that when these users are on a Teams or Zoom meeting, with video, either the VPN cuts out, or the performance is so bad they have to shut off the VPN. The everything works fine. Is there a way to configure split tunneling with the OpenVPN client config? This is the config file we use:

client
dev tun
proto tcp-client
remote 20.228.149.10 1194

server-poll-timeout 15
resolv-retry infinite
nobind
persist-key
persist-tun
auth-user-pass
verb 3
setenv CLIENT_CERT 0
remote-cert-tls server
tls-client
reneg-sec 3600
cipher AES-256-GCM
dhcp-option DNS 10.1.0.10
dhcp-option DNS 10.1.0.11
redirect-gateway def1
route-nopull
route 10.1.0.0 255.255.0.0 vpn_gateway
allow-pull-fqdn
route odnfileshare.file.core.windows.net 255.255.255.255 vpn_gateway

<ca>
--
</ca>
<tls-crypt>
--
</tls-crypt>

User avatar
openvpn_inc
OpenVPN Inc.
Posts: 1332
Joined: Tue Feb 16, 2021 10:41 am

Re: Frequent OpenVPN client Disconnects

Post by openvpn_inc » Fri Feb 03, 2023 12:16 pm

Hello mlynch,

I took the liberty of removing tls-crypt and ca keys/certs from your post. Never a good idea to post such things in a public forum.

So basically this is your problem:
redirect-gateway def1

That tells the client to redirect all Internet traffic through the VPN tunnel. Remove that and only specified items will route through the VPN tunnel.

Good luck.
Johan
Image OpenVPN Inc.
Answers provided by OpenVPN Inc. staff members here are provided on a voluntary best-effort basis, and no rights can be claimed on the basis of answers posted in this public forum. If you wish to get official support from OpenVPN Inc. please use the official support ticket system: https://openvpn.net/support

Post Reply