Linux client stall at Initialization Sequence Completed

[RyanP]

I am running Openvpn AS vmware server. I have two win7 machines and an OS X box that can connect to the AS server without a problem. When running on ubuntu 10.04 and a angstrom distros, the task hangs after Initialization Sequence Completed. I can never get back to the command line. There has to be something I am overlooking but I can not seem google any answers to this. Any help is greatly appreciated. I have been banging my head against the desk for days now. PLEASE HELP!!

• test@ubuntu:~/Desktop$ sudo openvpn --config client.ovpn
  Tue Dec 14 22:50:25 2010 OpenVPN 2.1.0 x86_64-pc-linux-gnu [SSL] [LZO2] [EPOLL] [PKCS11] [MH] [PF_INET6] [eurephia] built on Jul 12 2010
  Enter Auth Username:openvpn
  Enter Auth Password:
  Tue Dec 14 22:50:33 2010 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
  Tue Dec 14 22:50:33 2010 /usr/bin/openssl-vulnkey -q -b 1024 -m <modulus omitted>
  Tue Dec 14 22:50:33 2010 Control Channel Authentication: tls-auth using INLINE static key file
  Tue Dec 14 22:50:33 2010 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
  Tue Dec 14 22:50:33 2010 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
  Tue Dec 14 22:50:33 2010 LZO compression initialized
  Tue Dec 14 22:50:33 2010 Control Channel MTU parms [ L:1542 D:166 EF:66 EB:0 ET:0 EL:0 ]
  Tue Dec 14 22:50:33 2010 Data Channel MTU parms [ L:1542 D:1450 EF:42 EB:135 ET:0 EL:0 AF:3/1 ]
  Tue Dec 14 22:50:33 2010 Local Options hash (VER=V4): '504e774e'
  Tue Dec 14 22:50:33 2010 Expected Remote Options hash (VER=V4): '14168603'
  Tue Dec 14 22:50:33 2010 Socket Buffers: R=[126976->200000] S=[126976->200000]
  Tue Dec 14 22:50:33 2010 UDPv4 link local: [undef]
  Tue Dec 14 22:50:33 2010 UDPv4 link remote: [AF_INET]10.0.1.16:1194
  Tue Dec 14 22:50:33 2010 TLS: Initial packet from [AF_INET]10.0.1.16:1194, sid=d5382ba0 07cb3a26
  Tue Dec 14 22:50:33 2010 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
  Tue Dec 14 22:50:33 2010 VERIFY OK: depth=1, /CN=OpenVPN_CA
  Tue Dec 14 22:50:33 2010 VERIFY OK: nsCertType=SERVER
  Tue Dec 14 22:50:33 2010 VERIFY OK: depth=0, /CN=OpenVPN_Server
  Tue Dec 14 22:50:33 2010 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
  Tue Dec 14 22:50:33 2010 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
  Tue Dec 14 22:50:33 2010 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
  Tue Dec 14 22:50:33 2010 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
  Tue Dec 14 22:50:33 2010 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
  Tue Dec 14 22:50:33 2010 [OpenVPN_Server] Peer Connection Initiated with [AF_INET]10.0.1.16:1194
  Tue Dec 14 22:50:36 2010 SENT CONTROL [OpenVPN_Server]: 'PUSH_REQUEST' (status=1)
  Tue Dec 14 22:50:36 2010 PUSH: Received control message: 'PUSH_REPLY,explicit-exit-notify,topology subnet,route-delay 5 30,dhcp-pre-release,dhcp-renew,dhcp-release,route-metric 101,ping 5,ping-restart 40,redirect-gateway def1,redirect-gateway bypass-dhcp,redirect-gateway autolocal,route-gateway 5.5.8.1,dhcp-option DNS 10.0.1.1,register-dns,comp-lzo yes,ifconfig 5.5.8.7 255.255.248.0'
  Tue Dec 14 22:50:36 2010 Options error: Unrecognized option or missing parameter(s) in [PUSH-OPTIONS]:4: dhcp-pre-release (2.1.0)
  Tue Dec 14 22:50:36 2010 Options error: Unrecognized option or missing parameter(s) in [PUSH-OPTIONS]:5: dhcp-renew (2.1.0)
  Tue Dec 14 22:50:36 2010 Options error: Unrecognized option or missing parameter(s) in [PUSH-OPTIONS]:6: dhcp-release (2.1.0)
  Tue Dec 14 22:50:36 2010 Options error: Unrecognized option or missing parameter(s) in [PUSH-OPTIONS]:15: register-dns (2.1.0)
  Tue Dec 14 22:50:36 2010 OPTIONS IMPORT: timers and/or timeouts modified
  Tue Dec 14 22:50:36 2010 OPTIONS IMPORT: explicit notify parm(s) modified
  Tue Dec 14 22:50:36 2010 OPTIONS IMPORT: LZO parms modified
  Tue Dec 14 22:50:36 2010 OPTIONS IMPORT: --ifconfig/up options modified
  Tue Dec 14 22:50:36 2010 OPTIONS IMPORT: route options modified
  Tue Dec 14 22:50:36 2010 OPTIONS IMPORT: route-related options modified
  Tue Dec 14 22:50:36 2010 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
  Tue Dec 14 22:50:36 2010 ROUTE default_gateway=10.0.1.1
  Tue Dec 14 22:50:36 2010 TUN/TAP device tun0 opened
  Tue Dec 14 22:50:36 2010 TUN/TAP TX queue length set to 100
  Tue Dec 14 22:50:36 2010 /sbin/ifconfig tun0 5.5.8.7 netmask 255.255.248.0 mtu 1500 broadcast 5.5.15.255
  Tue Dec 14 22:50:41 2010 /sbin/route add -net 10.0.1.16 netmask 255.255.255.255 gw 10.0.1.1
  Tue Dec 14 22:50:41 2010 /sbin/route add -net 0.0.0.0 netmask 128.0.0.0 gw 5.5.8.1
  Tue Dec 14 22:50:41 2010 /sbin/route add -net 128.0.0.0 netmask 128.0.0.0 gw 5.5.8.1
  Tue Dec 14 22:50:41 2010 Initialization Sequence Completed

[gladiatr72]

Hello,

Well, you can add --daemon to the end of your command line, or you can set the AUTOSTART variable in /etc/default/openvpn and use the init script.

-Stephen

[RyanP]

Great I'll give those a try tonight. I was sending the task to the background for a work around for the time being.

[RyanP]

The --daemon argument seems to work with manual CLI input. Can you elaborate more on

you can set the AUTOSTART variable in /etc/default/openvpn and use the init script

. Checked /etc/default/openvpn it doesn't exist. are you talking about from my client config ? If so the command I use is
#openvpn --config client.ovpn --daemon
seems to be working nicely but what if I want to use the .ovpn with the daemon argument ? I am using openvpn AS would I just add it to the additional client side arguments in the advanced area? Let me try that out.

THANKS!

[gladiatr72]

Heya,

I was assuming you were using the ubuntu openvpn package Their package maintainers have put together a startup script which allows for the existence of multiple vpn configuration files in /etc/openvpn. With the init script's configuration file, you can specify what configurations, if any, are started on boot.

-Stephen

[Cephalon]

Or you can run the command with an & at the end and the process goes to background automatically