OpenVPN Support Forum

Community Support Forum
https://forums.openvpn.net/

[Solved] Connection reset every 15-20s

https://forums.openvpn.net/viewtopic.php?t=8986

Page 1 of 2

Connection reset every 15-20s

Posted: Thu Sep 29, 2011 4:35 am
by the.rahul.nair
Hi,

I am a new N/w Admin and am required to configure the client side OpenVPN on one of our machines here for an overseas client. They have already sent us the certificates and the keys that are required. I have installed OpenVPN on one of the machines here and put in the configurations that they've asked me to. However on checking the status after connecting, this is wat I see:

Thu Sep 29 09:54:53 2011 OpenVPN 2.2.1 Win32-MSVC++ [SSL] [LZO2] built on Jul 1 2011
Thu Sep 29 09:54:53 2011 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Thu Sep 29 09:54:53 2011 Control Channel Authentication: using 'ta.key' as a OpenVPN static key file
Thu Sep 29 09:54:53 2011 LZO compression initialized
Thu Sep 29 09:54:53 2011 Attempting to establish TCP connection with 217.78.4.54:1194
Thu Sep 29 09:54:54 2011 TCP connection established with 217.78.4.54:1194
Thu Sep 29 09:54:54 2011 TCPv4_CLIENT link local: [undef]
Thu Sep 29 09:54:54 2011 TCPv4_CLIENT link remote: 217.78.4.54:1194
Thu Sep 29 09:55:06 2011 [server] Peer Connection Initiated with 217.78.4.54:1194
Thu Sep 29 09:55:09 2011 TAP-WIN32 device [Local Area Connection] opened: \\.\Global\{ED3B354E-659E-42F1-B9E9-BC6D70D4848C}.tap
Thu Sep 29 09:55:09 2011 Notified TAP-Win32 driver to set a DHCP IP/netmask of 10.0.0.50/255.255.255.252 on interface {ED3B354E-659E-42F1-B9E9-BC6D70D4848C} [DHCP-serv: 10.0.0.49, lease-time: 31536000]
Thu Sep 29 09:55:09 2011 Successful ARP Flush on interface [3] {ED3B354E-659E-42F1-B9E9-BC6D70D4848C}
Thu Sep 29 09:55:14 2011 Initialization Sequence Completed
Thu Sep 29 09:55:23 2011 Connection reset, restarting [0]
Thu Sep 29 09:55:23 2011 SIGUSR1[soft,connection-reset] received, process restarting
Thu Sep 29 09:55:29 2011 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Thu Sep 29 09:55:29 2011 Re-using SSL/TLS context
Thu Sep 29 09:55:29 2011 LZO compression initialized
Thu Sep 29 09:55:29 2011 Attempting to establish TCP connection with 217.78.4.54:1194
Thu Sep 29 09:55:29 2011 TCP connection established with 217.78.4.54:1194
Thu Sep 29 09:55:29 2011 TCPv4_CLIENT link local: [undef]
Thu Sep 29 09:55:29 2011 TCPv4_CLIENT link remote: 217.78.4.54:1194
Thu Sep 29 09:55:43 2011 [server] Peer Connection Initiated with 217.78.4.54:1194
Thu Sep 29 09:55:46 2011 Preserving previous TUN/TAP instance: Local Area Connection
Thu Sep 29 09:55:46 2011 Initialization Sequence Completed
Thu Sep 29 09:56:04 2011 Connection reset, restarting [0]
Thu Sep 29 09:56:04 2011 SIGUSR1[soft,connection-reset] received, process restarting
Thu Sep 29 09:56:09 2011 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Thu Sep 29 09:56:09 2011 Re-using SSL/TLS context
Thu Sep 29 09:56:09 2011 LZO compression initialized
Thu Sep 29 09:56:09 2011 Attempting to establish TCP connection with 217.78.4.54:1194
Thu Sep 29 09:56:09 2011 TCP connection established with 217.78.4.54:1194
Thu Sep 29 09:56:09 2011 TCPv4_CLIENT link local: [undef]
Thu Sep 29 09:56:09 2011 TCPv4_CLIENT link remote: 217.78.4.54:1194
Thu Sep 29 09:56:28 2011 [server] Peer Connection Initiated with 217.78.4.54:1194
Thu Sep 29 09:56:31 2011 Preserving previous TUN/TAP instance: Local Area Connection
Thu Sep 29 09:56:31 2011 Initialization Sequence Completed

This is the client.ovpn configuration file:
client
dev tun
proto tcp
remote xxx.xx.x.xx 1194
resolv-retry infinite
nobind
persist-key
persist-tun
tls-client
ca ca.crt
cert jack.crt
key jack.key
ns-cert-type server
tls-auth ta.key 1
cipher AES-128-CBC
comp-lzo


Can anyone help me and tell wat i'm doin' wrong?? Thanks in advance

Re: Connection reset every 15 -20s

Posted: Thu Sep 29, 2011 5:33 am
by Mimiko
Try to add to the config file:

Code: Select all

keepalive 20 60
and see if it is not reset.

Re: Connection reset every 15 -20s

Posted: Thu Sep 29, 2011 6:17 am
by the.rahul.nair
Mimiko wrote:Try to add to the config file:

Code: Select all

keepalive 20 60
and see if it is not reset.

Added this to the config file.. The connection's still being reset.

Re: Connection reset every 15 -20s

Posted: Thu Sep 29, 2011 6:28 am
by Mimiko
Are you sure that internet connection is stable? Try in different command prompt windows parallel pings to 217.78.4.54 and 10.0.0.49.

Re: Connection reset every 15 -20s

Posted: Thu Sep 29, 2011 6:36 am
by the.rahul.nair
Mimiko wrote:Are you sure that internet connection is stable? Try in different command prompt windows parallel pings to 217.78.4.54 and 10.0.0.49.
The ping to 217.78.4.54 was successful whereas the ping to 10.0.0.49 timed out...

Re: Connection reset every 15 -20s

Posted: Thu Sep 29, 2011 6:42 am
by the.rahul.nair
The place where I work uses a proxy to connect to the Internet. The machine that need to be the VPN client is part of this office network. Was wondering whether that was the problem. This is wat the iptables looks like now that I've tried to enable port 1194.

# Generated by iptables-save v1.3.5 on Thu Sep 29 11:44:37 2011
*filter
:INPUT ACCEPT [13197:8205009]
:FORWARD ACCEPT [14795:7058061]
:OUTPUT ACCEPT [4349:2834289]
-A INPUT -p tcp -m tcp --dport 1194 -j ACCEPT
-A INPUT -p udp -m udp --dport 1194 -j ACCEPT
-A INPUT -i tun+ -j ACCEPT
-A FORWARD -i tun+ -o eth0 -j ACCEPT
-A FORWARD -i tun+ -j ACCEPT
-A OUTPUT -o tun+ -j ACCEPT
-A OUTPUT -j ACCEPT
COMMIT
# Completed on Thu Sep 29 11:44:37 2011
# Generated by iptables-save v1.3.5 on Thu Sep 29 11:44:37 2011
*nat
:PREROUTING ACCEPT [3064:290387]
:POSTROUTING ACCEPT [540:45697]
:OUTPUT ACCEPT [1461:141968]
-A POSTROUTING -o eth1 -j MASQUERADE
COMMIT
# Completed on Thu Sep 29 11:44:37 2011


PS: Just wanted to let u know that I am a complete n00b taking baby steps in this field.. Just so u know.

Re: Connection reset every 15 -20s

Posted: Thu Sep 29, 2011 6:51 am
by Mimiko
You write that in your office it is used proxy, yet in config file I don't see any use of proxy and the client is still connected. May be the incoming packet on the OpenVPN server is blocked, that's why you can't ping it, at therefor no packet are send thru tunnel for a while and client is disconnected. I suggest address this question to the one's who administer OpenVPN server.

Re: Connection reset every 15 -20s

Posted: Thu Sep 29, 2011 7:02 am
by the.rahul.nair
Mimiko wrote:You write that in your office it is used proxy, yet in config file I don't see any use of proxy and the client is still connected. May be the incoming packet on the OpenVPN server is blocked, that's why you can't ping it, at therefor no packet are send thru tunnel for a while and client is disconnected. I suggest address this question to the one's who administer OpenVPN server.

ok.. will ask. btw port 1194 is open on 217.78.4.54 (Openvpn server) but on our side, it shows closed even after I added the iptables rules.(checked using http://www.yougetsignal.com/tools/open-ports/). could that one of the problems?

And tried connecting from a machine that has a direct internet connection too - with pretty much the same results

Re: Connection reset every 15 -20s

Posted: Thu Sep 29, 2011 7:05 am
by Mimiko
If you whant to be sure, increase the verbosity in config file to "verb 4" to see more steps and post it here

Re: Connection reset every 15 -20s

Posted: Thu Sep 29, 2011 7:16 am
by the.rahul.nair
Beginning part (verb 4)

Thu Sep 29 12:41:46 2011 us=484000 local_port = 0
Thu Sep 29 12:41:46 2011 us=484000 remote = '217.78.4.54'
Thu Sep 29 12:41:46 2011 us=484000 remote_port = 1194
Thu Sep 29 12:41:46 2011 us=484000 remote_float = DISABLED
Thu Sep 29 12:41:46 2011 us=484000 bind_defined = DISABLED
Thu Sep 29 12:41:46 2011 us=484000 bind_local = DISABLED
Thu Sep 29 12:41:46 2011 us=484000 connect_retry_seconds = 5
Thu Sep 29 12:41:46 2011 us=484000 connect_timeout = 10
Thu Sep 29 12:41:46 2011 us=484000 connect_retry_max = 0
Thu Sep 29 12:41:46 2011 us=484000 socks_proxy_server = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=484000 socks_proxy_port = 0
Thu Sep 29 12:41:46 2011 us=484000 socks_proxy_retry = DISABLED
Thu Sep 29 12:41:46 2011 us=484000 Connection profiles END
Thu Sep 29 12:41:46 2011 us=484000 remote_random = DISABLED
Thu Sep 29 12:41:46 2011 us=484000 ipchange = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=484000 dev = 'tun'
Thu Sep 29 12:41:46 2011 us=500000 dev_type = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=500000 dev_node = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=500000 lladdr = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=500000 topology = 1
Thu Sep 29 12:41:46 2011 us=500000 tun_ipv6 = DISABLED
Thu Sep 29 12:41:46 2011 us=500000 ifconfig_local = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=500000 ifconfig_remote_netmask = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=515000 ifconfig_noexec = DISABLED
Thu Sep 29 12:41:46 2011 us=515000 ifconfig_nowarn = DISABLED
Thu Sep 29 12:41:46 2011 us=515000 shaper = 0
Thu Sep 29 12:41:46 2011 us=515000 tun_mtu = 1500
Thu Sep 29 12:41:46 2011 us=515000 tun_mtu_defined = ENABLED
Thu Sep 29 12:41:46 2011 us=515000 link_mtu = 1500
Thu Sep 29 12:41:46 2011 us=531000 link_mtu_defined = DISABLED
Thu Sep 29 12:41:46 2011 us=531000 tun_mtu_extra = 0
Thu Sep 29 12:41:46 2011 us=531000 tun_mtu_extra_defined = DISABLED
Thu Sep 29 12:41:46 2011 us=531000 fragment = 0
Thu Sep 29 12:41:46 2011 us=531000 mtu_discover_type = -1
Thu Sep 29 12:41:46 2011 us=531000 mtu_test = 0
Thu Sep 29 12:41:46 2011 us=546000 mlock = DISABLED
Thu Sep 29 12:41:46 2011 us=546000 keepalive_ping = 0
Thu Sep 29 12:41:46 2011 us=546000 keepalive_timeout = 0
Thu Sep 29 12:41:46 2011 us=546000 inactivity_timeout = 0
Thu Sep 29 12:41:46 2011 us=546000 ping_send_timeout = 0
Thu Sep 29 12:41:46 2011 us=546000 ping_rec_timeout = 0
Thu Sep 29 12:41:46 2011 us=546000 ping_rec_timeout_action = 0
Thu Sep 29 12:41:46 2011 us=562000 ping_timer_remote = DISABLED
Thu Sep 29 12:41:46 2011 us=562000 remap_sigusr1 = 0
Thu Sep 29 12:41:46 2011 us=562000 explicit_exit_notification = 0
Thu Sep 29 12:41:46 2011 us=562000 persist_tun = ENABLED
Thu Sep 29 12:41:46 2011 us=562000 persist_local_ip = DISABLED
Thu Sep 29 12:41:46 2011 us=562000 persist_remote_ip = DISABLED
Thu Sep 29 12:41:46 2011 us=562000 persist_key = ENABLED
Thu Sep 29 12:41:46 2011 us=578000 mssfix = 1450
Thu Sep 29 12:41:46 2011 us=578000 resolve_retry_seconds = 1000000000
Thu Sep 29 12:41:46 2011 us=578000 username = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=578000 groupname = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=593000 chroot_dir = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=593000 cd_dir = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=593000 writepid = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=593000 up_script = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=593000 down_script = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=593000 down_pre = DISABLED
Thu Sep 29 12:41:46 2011 us=609000 up_restart = DISABLED
Thu Sep 29 12:41:46 2011 us=609000 up_delay = DISABLED
Thu Sep 29 12:41:46 2011 us=609000 daemon = DISABLED
Thu Sep 29 12:41:46 2011 us=609000 inetd = 0
Thu Sep 29 12:41:46 2011 us=609000 log = DISABLED
Thu Sep 29 12:41:46 2011 us=625000 suppress_timestamps = DISABLED
Thu Sep 29 12:41:46 2011 us=625000 nice = 0
Thu Sep 29 12:41:46 2011 us=625000 verbosity = 4
Thu Sep 29 12:41:46 2011 us=625000 mute = 0
Thu Sep 29 12:41:46 2011 us=625000 gremlin = 0
Thu Sep 29 12:41:46 2011 us=640000 status_file = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=640000 status_file_version = 1
Thu Sep 29 12:41:46 2011 us=640000 status_file_update_freq = 60
Thu Sep 29 12:41:46 2011 us=640000 occ = ENABLED
Thu Sep 29 12:41:46 2011 us=640000 rcvbuf = 0
Thu Sep 29 12:41:46 2011 us=656000 sndbuf = 0
Thu Sep 29 12:41:46 2011 us=656000 sockflags = 0
Thu Sep 29 12:41:46 2011 us=656000 fast_io = DISABLED
Thu Sep 29 12:41:46 2011 us=656000 lzo = 7
Thu Sep 29 12:41:46 2011 us=656000 route_script = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=656000 route_default_gateway = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=671000 route_default_metric = 0
Thu Sep 29 12:41:46 2011 us=671000 route_noexec = DISABLED
Thu Sep 29 12:41:46 2011 us=671000 route_delay = 5
Thu Sep 29 12:41:46 2011 us=671000 route_delay_window = 30
Thu Sep 29 12:41:46 2011 us=671000 route_delay_defined = ENABLED
Thu Sep 29 12:41:46 2011 us=671000 route_nopull = DISABLED
Thu Sep 29 12:41:46 2011 us=671000 route_gateway_via_dhcp = DISABLED
Thu Sep 29 12:41:46 2011 us=687000 max_routes = 100
Thu Sep 29 12:41:46 2011 us=687000 allow_pull_fqdn = DISABLED
Thu Sep 29 12:41:46 2011 us=687000 management_addr = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=687000 management_port = 0
Thu Sep 29 12:41:46 2011 us=687000 management_user_pass = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=703000 management_log_history_cache = 250
Thu Sep 29 12:41:46 2011 us=703000 management_echo_buffer_size = 100
Thu Sep 29 12:41:46 2011 us=703000 management_write_peer_info_file = '[UNDEF]'

Thu Sep 29 12:41:46 2011 us=703000 management_client_user = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=703000 management_client_group = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=703000 management_flags = 0
Thu Sep 29 12:41:46 2011 us=718000 shared_secret_file = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=718000 key_direction = 2
Thu Sep 29 12:41:46 2011 us=718000 ciphername_defined = ENABLED
Thu Sep 29 12:41:46 2011 us=718000 ciphername = 'AES-128-CBC'
Thu Sep 29 12:41:46 2011 us=718000 authname_defined = ENABLED
Thu Sep 29 12:41:46 2011 us=718000 authname = 'SHA1'
Thu Sep 29 12:41:46 2011 us=718000 prng_hash = 'SHA1'
Thu Sep 29 12:41:46 2011 us=734000 prng_nonce_secret_len = 16
Thu Sep 29 12:41:46 2011 us=734000 keysize = 0
Thu Sep 29 12:41:46 2011 us=734000 engine = DISABLED
Thu Sep 29 12:41:46 2011 us=734000 replay = ENABLED
Thu Sep 29 12:41:46 2011 us=734000 mute_replay_warnings = DISABLED
Thu Sep 29 12:41:46 2011 us=734000 replay_window = 64
Thu Sep 29 12:41:46 2011 us=750000 replay_time = 15
Thu Sep 29 12:41:46 2011 us=750000 packet_id_file = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=750000 use_iv = ENABLED
Thu Sep 29 12:41:46 2011 us=750000 test_crypto = DISABLED
Thu Sep 29 12:41:46 2011 us=750000 tls_server = DISABLED
Thu Sep 29 12:41:46 2011 us=750000 tls_client = ENABLED
Thu Sep 29 12:41:46 2011 us=765000 key_method = 2
Thu Sep 29 12:41:46 2011 us=765000 ca_file = 'ca.crt'
Thu Sep 29 12:41:46 2011 us=765000 ca_path = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=765000 dh_file = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=765000 cert_file = 'sreeraj.crt'
Thu Sep 29 12:41:46 2011 us=765000 priv_key_file = 'sreeraj.key'
Thu Sep 29 12:41:46 2011 us=781000 pkcs12_file = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=781000 cryptoapi_cert = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=781000 cipher_list = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=781000 tls_verify = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=796000 tls_export_cert = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=796000 tls_remote = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=796000 crl_file = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=796000 ns_cert_type = 64
Thu Sep 29 12:41:46 2011 us=812000 remote_cert_ku = 0
Thu Sep 29 12:41:46 2011 us=812000 remote_cert_ku = 0
Thu Sep 29 12:41:46 2011 us=812000 remote_cert_ku = 0
Thu Sep 29 12:41:46 2011 us=812000 remote_cert_ku = 0
Thu Sep 29 12:41:46 2011 us=812000 remote_cert_ku = 0
Thu Sep 29 12:41:46 2011 us=812000 remote_cert_ku = 0
Thu Sep 29 12:41:46 2011 us=828000 remote_cert_ku = 0
Thu Sep 29 12:41:46 2011 us=828000 remote_cert_ku = 0
Thu Sep 29 12:41:46 2011 us=828000 remote_cert_ku = 0
Thu Sep 29 12:41:46 2011 us=828000 remote_cert_ku[i] = 0
Thu Sep 29 12:41:46 2011 us=828000 remote_cert_ku[i] = 0
Thu Sep 29 12:41:46 2011 us=843000 remote_cert_ku[i] = 0
Thu Sep 29 12:41:46 2011 us=843000 remote_cert_ku[i] = 0
Thu Sep 29 12:41:46 2011 us=843000 remote_cert_ku[i] = 0
Thu Sep 29 12:41:46 2011 us=843000 remote_cert_ku[i] = 0
Thu Sep 29 12:41:46 2011 us=843000 remote_cert_ku[i] = 0
Thu Sep 29 12:41:46 2011 us=843000 remote_cert_eku = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=859000 tls_timeout = 2
Thu Sep 29 12:41:46 2011 us=859000 renegotiate_bytes = 0
Thu Sep 29 12:41:46 2011 us=859000 renegotiate_packets = 0
Thu Sep 29 12:41:46 2011 us=859000 renegotiate_seconds = 3600
Thu Sep 29 12:41:46 2011 us=859000 handshake_window = 60
Thu Sep 29 12:41:46 2011 us=859000 transition_window = 3600
Thu Sep 29 12:41:46 2011 us=859000 single_session = DISABLED
Thu Sep 29 12:41:46 2011 us=875000 push_peer_info = DISABLED
Thu Sep 29 12:41:46 2011 us=875000 tls_exit = DISABLED
Thu Sep 29 12:41:46 2011 us=875000 tls_auth_file = 'ta.key'
Thu Sep 29 12:41:46 2011 us=875000 server_network = 0.0.0.0
Thu Sep 29 12:41:46 2011 us=875000 server_netmask = 0.0.0.0
Thu Sep 29 12:41:46 2011 us=875000 server_bridge_ip = 0.0.0.0
Thu Sep 29 12:41:46 2011 us=890000 server_bridge_netmask = 0.0.0.0
Thu Sep 29 12:41:46 2011 us=890000 server_bridge_pool_start = 0.0.0.0
Thu Sep 29 12:41:46 2011 us=890000 server_bridge_pool_end = 0.0.0.0
Thu Sep 29 12:41:46 2011 us=890000 ifconfig_pool_defined = DISABLED
Thu Sep 29 12:41:46 2011 us=890000 ifconfig_pool_start = 0.0.0.0
Thu Sep 29 12:41:46 2011 us=890000 ifconfig_pool_end = 0.0.0.0
Thu Sep 29 12:41:46 2011 us=890000 ifconfig_pool_netmask = 0.0.0.0
Thu Sep 29 12:41:46 2011 us=906000 ifconfig_pool_persist_filename = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=906000 ifconfig_pool_persist_refresh_freq = 600
Thu Sep 29 12:41:46 2011 us=906000 n_bcast_buf = 256
Thu Sep 29 12:41:46 2011 us=906000 tcp_queue_limit = 64
Thu Sep 29 12:41:46 2011 us=906000 real_hash_size = 256
Thu Sep 29 12:41:46 2011 us=906000 virtual_hash_size = 256
Thu Sep 29 12:41:46 2011 us=921000 client_connect_script = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=921000 learn_address_script = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=921000 client_disconnect_script = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=921000 client_config_dir = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=921000 ccd_exclusive = DISABLED
Thu Sep 29 12:41:46 2011 us=921000 tmp_dir = 'C:\DOCUME~1\ADMINI~1\LOCALS~1\Te
mp\'
Thu Sep 29 12:41:46 2011 us=937000 push_ifconfig_defined = DISABLED
Thu Sep 29 12:41:46 2011 us=937000 push_ifconfig_local = 0.0.0.0
Thu Sep 29 12:41:46 2011 us=937000 push_ifconfig_remote_netmask = 0.0.0.0
Thu Sep 29 12:41:46 2011 us=937000 enable_c2c = DISABLED
Thu Sep 29 12:41:46 2011 us=937000 duplicate_cn = DISABLED
Thu Sep 29 12:41:46 2011 us=953000 cf_max = 0
Thu Sep 29 12:41:46 2011 us=953000 cf_per = 0
Thu Sep 29 12:41:46 2011 us=953000 max_clients = 1024
Thu Sep 29 12:41:46 2011 us=953000 max_routes_per_client = 256
Thu Sep 29 12:41:46 2011 us=953000 auth_user_pass_verify_script = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=953000 auth_user_pass_verify_script_via_file = DIS
ABLED
Thu Sep 29 12:41:46 2011 us=968000 ssl_flags = 0
Thu Sep 29 12:41:46 2011 us=968000 client = ENABLED
Thu Sep 29 12:41:46 2011 us=968000 pull = ENABLED
Thu Sep 29 12:41:46 2011 us=968000 auth_user_pass_file = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=968000 show_net_up = DISABLED
Thu Sep 29 12:41:46 2011 us=968000 route_method = 0
Thu Sep 29 12:41:46 2011 us=984000 ip_win32_defined = DISABLED
Thu Sep 29 12:41:46 2011 us=984000 ip_win32_type = 3
Thu Sep 29 12:41:46 2011 us=984000 dhcp_masq_offset = 0
Thu Sep 29 12:41:46 2011 us=984000 dhcp_lease_time = 31536000
Thu Sep 29 12:41:46 2011 us=984000 tap_sleep = 0
Thu Sep 29 12:41:46 2011 us=984000 dhcp_options = DISABLED
Thu Sep 29 12:41:47 2011 dhcp_renew = DISABLED
Thu Sep 29 12:41:47 2011 dhcp_pre_release = DISABLED
Thu Sep 29 12:41:47 2011 dhcp_release = DISABLED
Thu Sep 29 12:41:47 2011 domain = '[UNDEF]'
Thu Sep 29 12:41:47 2011 netbios_scope = '[UNDEF]'
Thu Sep 29 12:41:47 2011 netbios_node_type = 0
Thu Sep 29 12:41:47 2011 disable_nbt = DISABLED


After that this is wat is shown.....


Thu Sep 29 12:41:47 2011 us=15000 OpenVPN 2.2.1 Win32-MSVC++ [SSL] [LZO2] built
on Jul 1 2011
Thu Sep 29 12:41:47 2011 us=15000 NOTE: OpenVPN 2.1 requires '--script-security
2' or higher to call user-defined scripts or executables
Thu Sep 29 12:41:47 2011 us=171000 Control Channel Authentication: using 'ta.key
' as a OpenVPN static key file
Thu Sep 29 12:41:47 2011 us=187000 Outgoing Control Channel Authentication: Usin
g 160 bit message hash 'SHA1' for HMAC authentication
Thu Sep 29 12:41:47 2011 us=187000 Incoming Control Channel Authentication: Usin
g 160 bit message hash 'SHA1' for HMAC authentication
Thu Sep 29 12:41:47 2011 us=187000 LZO compression initialized
Thu Sep 29 12:41:47 2011 us=187000 Control Channel MTU parms [ L:1560 D:168 EF:6
8 EB:0 ET:0 EL:0 ]
Thu Sep 29 12:41:47 2011 us=203000 Socket Buffers: R=[8192->8192] S=[8192->8192]

Thu Sep 29 12:41:47 2011 us=203000 Data Channel MTU parms [ L:1560 D:1450 EF:60
EB:135 ET:0 EL:0 AF:3/1 ]
Thu Sep 29 12:41:47 2011 us=218000 Local Options String: 'V4,dev-type tun,link-m
tu 1560,tun-mtu 1500,proto TCPv4_CLIENT,comp-lzo,keydir 1,cipher AES-128-CBC,aut
h SHA1,keysize 128,tls-auth,key-method 2,tls-client'
Thu Sep 29 12:41:47 2011 us=218000 Expected Remote Options String: 'V4,dev-type
tun,link-mtu 1560,tun-mtu 1500,proto TCPv4_SERVER,comp-lzo,keydir 0,cipher AES-1
28-CBC,auth SHA1,keysize 128,tls-auth,key-method 2,tls-server'
Thu Sep 29 12:41:47 2011 us=234000 Local Options hash (VER=V4): '0bdd0804'
Thu Sep 29 12:41:47 2011 us=234000 Expected Remote Options hash (VER=V4): 'a6426
54b'
Thu Sep 29 12:41:47 2011 us=234000 Attempting to establish TCP connection with 2
17.78.4.54:1194
Thu Sep 29 12:41:47 2011 us=500000 TCP connection established with 217.78.4.54:1
194
Thu Sep 29 12:41:47 2011 us=500000 TCPv4_CLIENT link local: [undef]
Thu Sep 29 12:41:47 2011 us=500000 TCPv4_CLIENT link remote: 217.78.4.54:1194
Thu Sep 29 12:41:47 2011 us=718000 TLS: Initial packet from 217.78.4.54:1194, si
d=034f5c64 30cb0929
Thu Sep 29 12:41:51 2011 us=359000 VERIFY OK: depth=1, /C=IE/L=Dublin/O=eSportsM
anager/CN=eSportsManager_CA/emailAddress=admin@esportsmanager.ie
Thu Sep 29 12:41:51 2011 us=359000 VERIFY OK: nsCertType=SERVER
Thu Sep 29 12:41:51 2011 us=359000 VERIFY OK: depth=0, /C=IE/L=Dublin/O=eSportsM
anager/CN=server/emailAddress=admin@esportsmanager.ie
Thu Sep 29 12:41:58 2011 us=671000 Data Channel Encrypt: Cipher 'AES-128-CBC' in
itialized with 128 bit key
Thu Sep 29 12:42:06 2011 us=156000 Data Channel Encrypt: Using 160 bit message h
ash 'SHA1' for HMAC authentication
Thu Sep 29 12:42:06 2011 us=156000 Data Channel Decrypt: Cipher 'AES-128-CBC' in
itialized with 128 bit key
Thu Sep 29 12:42:06 2011 us=156000 Data Channel Decrypt: Using 160 bit message h
ash 'SHA1' for HMAC authentication
Thu Sep 29 12:42:06 2011 us=156000 Control Channel: TLSv1, cipher TLSv1/SSLv3 DH
E-RSA-AES256-SHA, 1024 bit RSA
Thu Sep 29 12:42:06 2011 us=156000 [server] Peer Connection Initiated with 217.7
8.4.54:1194
Thu Sep 29 12:42:08 2011 us=906000 SENT CONTROL [server]: 'PUSH_REQUEST' (status
=1)
Thu Sep 29 12:42:09 2011 us=484000 PUSH: Received control message: 'PUSH_REPLY,d
hcp-option DNS 10.0.0.1,route 10.0.0.0 255.255.255.0,topology net30,ping 10,ping
-restart 120,ifconfig 10.0.0.50 10.0.0.49'
Thu Sep 29 12:42:09 2011 us=484000 OPTIONS IMPORT: timers and/or timeouts modifi
ed
Thu Sep 29 12:42:09 2011 us=484000 OPTIONS IMPORT: --ifconfig/up options modifie
d
Thu Sep 29 12:42:09 2011 us=484000 OPTIONS IMPORT: route options modified
Thu Sep 29 12:42:09 2011 us=484000 OPTIONS IMPORT: --ip-win32 and/or --dhcp-opti
on options modified
Thu Sep 29 12:42:09 2011 us=515000 ROUTE default_gateway=192.168.0.13
Thu Sep 29 12:42:09 2011 us=515000 TAP-WIN32 device [Local Area Connection] open
ed: \\.\Global\{ED3B354E-659E-42F1-B9E9-BC6D70D4848C}.tap
Thu Sep 29 12:42:09 2011 us=515000 TAP-Win32 Driver Version 9.8
Thu Sep 29 12:42:09 2011 us=515000 TAP-Win32 MTU=1500
Thu Sep 29 12:42:09 2011 us=515000 Notified TAP-Win32 driver to set a DHCP IP/ne
tmask of 10.0.0.50/255.255.255.252 on interface {ED3B354E-659E-42F1-B9E9-BC6D70D
4848C} [DHCP-serv: 10.0.0.49, lease-time: 31536000]
Thu Sep 29 12:42:09 2011 us=515000 DHCP option string: 06040a00 0001
Thu Sep 29 12:42:09 2011 us=515000 Successful ARP Flush on interface [3] {ED3B35
4E-659E-42F1-B9E9-BC6D70D4848C}
Thu Sep 29 12:42:14 2011 us=750000 TEST ROUTES: 1/1 succeeded len=1 ret=1 a=0 u/
d=up
Thu Sep 29 12:42:14 2011 us=765000 C:\WINDOWS\system32\route.exe ADD 10.0.0.0 MA
SK 255.255.255.0 10.0.0.49
Thu Sep 29 12:42:15 2011 us=890000 Route addition via IPAPI succeeded [adaptive]

Thu Sep 29 12:42:15 2011 us=906000 Initialization Sequence Completed
Thu Sep 29 12:42:23 2011 us=937000 Connection reset, restarting [0]
Thu Sep 29 12:42:24 2011 us=171000 TCP/UDP: Closing socket
Thu Sep 29 12:42:24 2011 us=171000 SIGUSR1[soft,connection-reset] received, proc
ess restarting
Thu Sep 29 12:42:24 2011 us=187000 Restart pause, 5 second(s)
Thu Sep 29 12:41:46 2011 us=625000 suppress_timestamps = DISABLED
Thu Sep 29 12:41:46 2011 us=625000 nice = 0
Thu Sep 29 12:41:46 2011 us=625000 verbosity = 4
Thu Sep 29 12:41:46 2011 us=625000 mute = 0
Thu Sep 29 12:41:46 2011 us=625000 gremlin = 0
Thu Sep 29 12:41:46 2011 us=640000 status_file = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=640000 status_file_version = 1
Thu Sep 29 12:41:46 2011 us=640000 status_file_update_freq = 60
Thu Sep 29 12:41:46 2011 us=640000 occ = ENABLED
Thu Sep 29 12:41:46 2011 us=640000 rcvbuf = 0
Thu Sep 29 12:41:46 2011 us=656000 sndbuf = 0
Thu Sep 29 12:41:46 2011 us=656000 sockflags = 0
Thu Sep 29 12:41:46 2011 us=656000 fast_io = DISABLED
Thu Sep 29 12:41:46 2011 us=656000 lzo = 7
Thu Sep 29 12:41:46 2011 us=656000 route_script = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=656000 route_default_gateway = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=671000 route_default_metric = 0
Thu Sep 29 12:41:46 2011 us=671000 route_noexec = DISABLED
Thu Sep 29 12:41:46 2011 us=671000 route_delay = 5
Thu Sep 29 12:41:46 2011 us=671000 route_delay_window = 30
Thu Sep 29 12:41:46 2011 us=671000 route_delay_defined = ENABLED
Thu Sep 29 12:41:46 2011 us=671000 route_nopull = DISABLED
Thu Sep 29 12:41:46 2011 us=671000 route_gateway_via_dhcp = DISABLED
Thu Sep 29 12:41:46 2011 us=687000 max_routes = 100
Thu Sep 29 12:41:46 2011 us=687000 allow_pull_fqdn = DISABLED
Thu Sep 29 12:41:46 2011 us=687000 management_addr = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=687000 management_port = 0
Thu Sep 29 12:41:46 2011 us=687000 management_user_pass = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=703000 management_log_history_cache = 250
Thu Sep 29 12:41:46 2011 us=703000 management_echo_buffer_size = 100
Thu Sep 29 12:41:46 2011 us=703000 management_write_peer_info_file = '[UNDEF]'

Thu Sep 29 12:41:46 2011 us=703000 management_client_user = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=703000 management_client_group = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=703000 management_flags = 0
Thu Sep 29 12:41:46 2011 us=718000 shared_secret_file = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=718000 key_direction = 2
Thu Sep 29 12:41:46 2011 us=718000 ciphername_defined = ENABLED
Thu Sep 29 12:41:46 2011 us=718000 ciphername = 'AES-128-CBC'
Thu Sep 29 12:41:46 2011 us=718000 authname_defined = ENABLED
Thu Sep 29 12:41:46 2011 us=718000 authname = 'SHA1'
Thu Sep 29 12:41:46 2011 us=718000 prng_hash = 'SHA1'
Thu Sep 29 12:41:46 2011 us=734000 prng_nonce_secret_len = 16
Thu Sep 29 12:41:46 2011 us=734000 keysize = 0
Thu Sep 29 12:41:46 2011 us=734000 engine = DISABLED
Thu Sep 29 12:41:46 2011 us=734000 replay = ENABLED
Thu Sep 29 12:41:46 2011 us=734000 mute_replay_warnings = DISABLED
Thu Sep 29 12:41:46 2011 us=734000 replay_window = 64
Thu Sep 29 12:41:46 2011 us=750000 replay_time = 15
Thu Sep 29 12:41:46 2011 us=750000 packet_id_file = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=750000 use_iv = ENABLED
Thu Sep 29 12:41:46 2011 us=750000 test_crypto = DISABLED
Thu Sep 29 12:41:46 2011 us=750000 tls_server = DISABLED
Thu Sep 29 12:41:46 2011 us=750000 tls_client = ENABLED
Thu Sep 29 12:41:46 2011 us=765000 key_method = 2
Thu Sep 29 12:41:46 2011 us=765000 ca_file = 'ca.crt'
Thu Sep 29 12:41:46 2011 us=765000 ca_path = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=765000 dh_file = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=765000 cert_file = 'sreeraj.crt'
Thu Sep 29 12:41:46 2011 us=765000 priv_key_file = 'sreeraj.key'
Thu Sep 29 12:41:46 2011 us=781000 pkcs12_file = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=781000 cryptoapi_cert = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=781000 cipher_list = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=781000 tls_verify = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=796000 tls_export_cert = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=796000 tls_remote = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=796000 crl_file = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=796000 ns_cert_type = 64
Thu Sep 29 12:41:46 2011 us=812000 remote_cert_ku[i] = 0
Thu Sep 29 12:41:46 2011 us=812000 remote_cert_ku[i] = 0
Thu Sep 29 12:41:46 2011 us=812000 remote_cert_ku[i] = 0
Thu Sep 29 12:41:46 2011 us=812000 remote_cert_ku[i] = 0
Thu Sep 29 12:41:46 2011 us=812000 remote_cert_ku[i] = 0
Thu Sep 29 12:41:46 2011 us=812000 remote_cert_ku[i] = 0
Thu Sep 29 12:41:46 2011 us=828000 remote_cert_ku[i] = 0
Thu Sep 29 12:41:46 2011 us=828000 remote_cert_ku[i] = 0
Thu Sep 29 12:41:46 2011 us=828000 remote_cert_ku[i] = 0
Thu Sep 29 12:41:46 2011 us=828000 remote_cert_ku[i] = 0
Thu Sep 29 12:41:46 2011 us=828000 remote_cert_ku[i] = 0
Thu Sep 29 12:41:46 2011 us=843000 remote_cert_ku[i] = 0
Thu Sep 29 12:41:46 2011 us=843000 remote_cert_ku[i] = 0
Thu Sep 29 12:41:46 2011 us=843000 remote_cert_ku[i] = 0
Thu Sep 29 12:41:46 2011 us=843000 remote_cert_ku[i] = 0
Thu Sep 29 12:41:46 2011 us=843000 remote_cert_ku[i] = 0
Thu Sep 29 12:41:46 2011 us=843000 remote_cert_eku = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=859000 tls_timeout = 2
Thu Sep 29 12:41:46 2011 us=859000 renegotiate_bytes = 0
Thu Sep 29 12:41:46 2011 us=859000 renegotiate_packets = 0
Thu Sep 29 12:41:46 2011 us=859000 renegotiate_seconds = 3600
Thu Sep 29 12:41:46 2011 us=859000 handshake_window = 60
Thu Sep 29 12:41:46 2011 us=859000 transition_window = 3600
Thu Sep 29 12:41:46 2011 us=859000 single_session = DISABLED
Thu Sep 29 12:41:46 2011 us=875000 push_peer_info = DISABLED
Thu Sep 29 12:41:46 2011 us=875000 tls_exit = DISABLED
Thu Sep 29 12:41:46 2011 us=875000 tls_auth_file = 'ta.key'
Thu Sep 29 12:41:46 2011 us=875000 server_network = 0.0.0.0
Thu Sep 29 12:41:46 2011 us=875000 server_netmask = 0.0.0.0
Thu Sep 29 12:41:46 2011 us=875000 server_bridge_ip = 0.0.0.0
Thu Sep 29 12:41:46 2011 us=890000 server_bridge_netmask = 0.0.0.0
Thu Sep 29 12:41:46 2011 us=890000 server_bridge_pool_start = 0.0.0.0
Thu Sep 29 12:41:46 2011 us=890000 server_bridge_pool_end = 0.0.0.0
Thu Sep 29 12:41:46 2011 us=890000 ifconfig_pool_defined = DISABLED
Thu Sep 29 12:41:46 2011 us=890000 ifconfig_pool_start = 0.0.0.0
Thu Sep 29 12:41:46 2011 us=890000 ifconfig_pool_end = 0.0.0.0
Thu Sep 29 12:41:46 2011 us=890000 ifconfig_pool_netmask = 0.0.0.0
Thu Sep 29 12:41:46 2011 us=906000 ifconfig_pool_persist_filename = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=906000 ifconfig_pool_persist_refresh_freq = 600
Thu Sep 29 12:41:46 2011 us=906000 n_bcast_buf = 256
Thu Sep 29 12:41:46 2011 us=906000 tcp_queue_limit = 64
Thu Sep 29 12:41:46 2011 us=906000 real_hash_size = 256
Thu Sep 29 12:41:46 2011 us=906000 virtual_hash_size = 256
Thu Sep 29 12:41:46 2011 us=921000 client_connect_script = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=921000 learn_address_script = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=921000 client_disconnect_script = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=921000 client_config_dir = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=921000 ccd_exclusive = DISABLED
Thu Sep 29 12:41:46 2011 us=921000 tmp_dir = 'C:\DOCUME~1\ADMINI~1\LOCALS~1\Te
mp\'
Thu Sep 29 12:41:46 2011 us=937000 push_ifconfig_defined = DISABLED
Thu Sep 29 12:41:46 2011 us=937000 push_ifconfig_local = 0.0.0.0
Thu Sep 29 12:41:46 2011 us=937000 push_ifconfig_remote_netmask = 0.0.0.0
Thu Sep 29 12:41:46 2011 us=937000 enable_c2c = DISABLED
Thu Sep 29 12:41:46 2011 us=937000 duplicate_cn = DISABLED
Thu Sep 29 12:41:46 2011 us=953000 cf_max = 0
Thu Sep 29 12:41:46 2011 us=953000 cf_per = 0
Thu Sep 29 12:41:46 2011 us=953000 max_clients = 1024
Thu Sep 29 12:41:46 2011 us=953000 max_routes_per_client = 256
Thu Sep 29 12:41:46 2011 us=953000 auth_user_pass_verify_script = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=953000 auth_user_pass_verify_script_via_file = DIS
ABLED
Thu Sep 29 12:41:46 2011 us=968000 ssl_flags = 0
Thu Sep 29 12:41:46 2011 us=968000 client = ENABLED
Thu Sep 29 12:41:46 2011 us=968000 pull = ENABLED
Thu Sep 29 12:41:46 2011 us=968000 auth_user_pass_file = '[UNDEF]'
Thu Sep 29 12:41:46 2011 us=968000 show_net_up = DISABLED
Thu Sep 29 12:41:46 2011 us=968000 route_method = 0
Thu Sep 29 12:41:46 2011 us=984000 ip_win32_defined = DISABLED
Thu Sep 29 12:41:46 2011 us=984000 ip_win32_type = 3
Thu Sep 29 12:41:46 2011 us=984000 dhcp_masq_offset = 0
Thu Sep 29 12:41:46 2011 us=984000 dhcp_lease_time = 31536000
Thu Sep 29 12:41:46 2011 us=984000 tap_sleep = 0
Thu Sep 29 12:41:46 2011 us=984000 dhcp_options = DISABLED
Thu Sep 29 12:41:47 2011 dhcp_renew = DISABLED
Thu Sep 29 12:41:47 2011 dhcp_pre_release = DISABLED
Thu Sep 29 12:41:47 2011 dhcp_release = DISABLED
Thu Sep 29 12:41:47 2011 domain = '[UNDEF]'
Thu Sep 29 12:41:47 2011 netbios_scope = '[UNDEF]'
Thu Sep 29 12:41:47 2011 netbios_node_type = 0
Thu Sep 29 12:41:47 2011 disable_nbt = DISABLED
Thu Sep 29 12:41:47 2011 us=15000 OpenVPN 2.2.1 Win32-MSVC++ [SSL] [LZO2] built
on Jul 1 2011
Thu Sep 29 12:41:47 2011 us=15000 NOTE: OpenVPN 2.1 requires '--script-security
2' or higher to call user-defined scripts or executables
Thu Sep 29 12:41:47 2011 us=171000 Control Channel Authentication: using 'ta.key
' as a OpenVPN static key file
Thu Sep 29 12:41:47 2011 us=187000 Outgoing Control Channel Authentication: Usin
g 160 bit message hash 'SHA1' for HMAC authentication
Thu Sep 29 12:41:47 2011 us=187000 Incoming Control Channel Authentication: Usin
g 160 bit message hash 'SHA1' for HMAC authentication
Thu Sep 29 12:41:47 2011 us=187000 LZO compression initialized
Thu Sep 29 12:41:47 2011 us=187000 Control Channel MTU parms [ L:1560 D:168 EF:6
8 EB:0 ET:0 EL:0 ]
Thu Sep 29 12:41:47 2011 us=203000 Socket Buffers: R=[8192->8192] S=[8192->8192]

Thu Sep 29 12:41:47 2011 us=203000 Data Channel MTU parms [ L:1560 D:1450 EF:60
EB:135 ET:0 EL:0 AF:3/1 ]
Thu Sep 29 12:41:47 2011 us=218000 Local Options String: 'V4,dev-type tun,link-m
tu 1560,tun-mtu 1500,proto TCPv4_CLIENT,comp-lzo,keydir 1,cipher AES-128-CBC,aut
h SHA1,keysize 128,tls-auth,key-method 2,tls-client'
Thu Sep 29 12:41:47 2011 us=218000 Expected Remote Options String: 'V4,dev-type
tun,link-mtu 1560,tun-mtu 1500,proto TCPv4_SERVER,comp-lzo,keydir 0,cipher AES-1
28-CBC,auth SHA1,keysize 128,tls-auth,key-method 2,tls-server'
Thu Sep 29 12:41:47 2011 us=234000 Local Options hash (VER=V4): '0bdd0804'
Thu Sep 29 12:41:47 2011 us=234000 Expected Remote Options hash (VER=V4): 'a6426
54b'
Thu Sep 29 12:41:47 2011 us=234000 Attempting to establish TCP connection with 2
17.78.4.54:1194
Thu Sep 29 12:41:47 2011 us=500000 TCP connection established with 217.78.4.54:1
194
Thu Sep 29 12:41:47 2011 us=500000 TCPv4_CLIENT link local: [undef]
Thu Sep 29 12:41:47 2011 us=500000 TCPv4_CLIENT link remote: 217.78.4.54:1194
Thu Sep 29 12:41:47 2011 us=718000 TLS: Initial packet from 217.78.4.54:1194, si
d=034f5c64 30cb0929
Thu Sep 29 12:41:51 2011 us=359000 VERIFY OK: depth=1, /C=IE/L=Dublin/O=eSportsM
anager/CN=eSportsManager_CA/emailAddress=admin@esportsmanager.ie
Thu Sep 29 12:41:51 2011 us=359000 VERIFY OK: nsCertType=SERVER
Thu Sep 29 12:41:51 2011 us=359000 VERIFY OK: depth=0, /C=IE/L=Dublin/O=eSportsM
anager/CN=server/emailAddress=admin@esportsmanager.ie
Thu Sep 29 12:41:58 2011 us=671000 Data Channel Encrypt: Cipher 'AES-128-CBC' in
itialized with 128 bit key
Thu Sep 29 12:42:06 2011 us=156000 Data Channel Encrypt: Using 160 bit message h
ash 'SHA1' for HMAC authentication
Thu Sep 29 12:42:06 2011 us=156000 Data Channel Decrypt: Cipher 'AES-128-CBC' in
itialized with 128 bit key
Thu Sep 29 12:42:06 2011 us=156000 Data Channel Decrypt: Using 160 bit message h
ash 'SHA1' for HMAC authentication
Thu Sep 29 12:42:06 2011 us=156000 Control Channel: TLSv1, cipher TLSv1/SSLv3 DH
E-RSA-AES256-SHA, 1024 bit RSA
Thu Sep 29 12:42:06 2011 us=156000 [server] Peer Connection Initiated with 217.7
8.4.54:1194
Thu Sep 29 12:42:08 2011 us=906000 SENT CONTROL [server]: 'PUSH_REQUEST' (status
=1)
Thu Sep 29 12:42:09 2011 us=484000 PUSH: Received control message: 'PUSH_REPLY,d
hcp-option DNS 10.0.0.1,route 10.0.0.0 255.255.255.0,topology net30,ping 10,ping
-restart 120,ifconfig 10.0.0.50 10.0.0.49'
Thu Sep 29 12:42:09 2011 us=484000 OPTIONS IMPORT: timers and/or timeouts modifi
ed
Thu Sep 29 12:42:09 2011 us=484000 OPTIONS IMPORT: --ifconfig/up options modifie
d
Thu Sep 29 12:42:09 2011 us=484000 OPTIONS IMPORT: route options modified
Thu Sep 29 12:42:09 2011 us=484000 OPTIONS IMPORT: --ip-win32 and/or --dhcp-opti
on options modified
Thu Sep 29 12:42:09 2011 us=515000 ROUTE default_gateway=192.168.0.13
Thu Sep 29 12:42:09 2011 us=515000 TAP-WIN32 device [Local Area Connection] open
ed: \\.\Global\{ED3B354E-659E-42F1-B9E9-BC6D70D4848C}.tap
Thu Sep 29 12:42:09 2011 us=515000 TAP-Win32 Driver Version 9.8
Thu Sep 29 12:42:09 2011 us=515000 TAP-Win32 MTU=1500
Thu Sep 29 12:42:09 2011 us=515000 Notified TAP-Win32 driver to set a DHCP IP/ne
tmask of 10.0.0.50/255.255.255.252 on interface {ED3B354E-659E-42F1-B9E9-BC6D70D
4848C} [DHCP-serv: 10.0.0.49, lease-time: 31536000]
Thu Sep 29 12:42:09 2011 us=515000 DHCP option string: 06040a00 0001
Thu Sep 29 12:42:09 2011 us=515000 Successful ARP Flush on interface [3] {ED3B35
4E-659E-42F1-B9E9-BC6D70D4848C}
Thu Sep 29 12:42:14 2011 us=750000 TEST ROUTES: 1/1 succeeded len=1 ret=1 a=0 u/
d=up
Thu Sep 29 12:42:14 2011 us=765000 C:\WINDOWS\system32\route.exe ADD 10.0.0.0 MA
SK 255.255.255.0 10.0.0.49
Thu Sep 29 12:42:15 2011 us=890000 Route addition via IPAPI succeeded [adaptive]

Thu Sep 29 12:42:15 2011 us=906000 Initialization Sequence Completed
Thu Sep 29 12:42:23 2011 us=937000 Connection reset, restarting [0]
Thu Sep 29 12:42:24 2011 us=171000 TCP/UDP: Closing socket
Thu Sep 29 12:42:24 2011 us=171000 SIGUSR1[soft,connection-reset] received, proc
ess restarting
Thu Sep 29 12:42:24 2011 us=187000 Restart pause, 5 second(s)
Thu Sep 29 12:42:29 2011 us=187000 NOTE: OpenVPN 2.1 requires '--script-security
2' or higher to call user-defined scripts or executables
Thu Sep 29 12:42:31 2011 us=437000 Re-using SSL/TLS context
Thu Sep 29 12:42:31 2011 us=437000 LZO compression initialized
Thu Sep 29 12:42:31 2011 us=437000 Control Channel MTU parms [ L:1560 D:168 EF:6
8 EB:0 ET:0 EL:0 ]
Thu Sep 29 12:42:31 2011 us=453000 Socket Buffers: R=[8192->8192] S=[8192->8192]

Thu Sep 29 12:42:31 2011 us=453000 Data Channel MTU parms [ L:1560 D:1450 EF:60
EB:135 ET:0 EL:0 AF:3/1 ]
Thu Sep 29 12:42:31 2011 us=468000 Local Options String: 'V4,dev-type tun,link-m
tu 1560,tun-mtu 1500,proto TCPv4_CLIENT,comp-lzo,keydir 1,cipher AES-128-CBC,aut
h SHA1,keysize 128,tls-auth,key-method 2,tls-client'
Thu Sep 29 12:42:31 2011 us=484000 Expected Remote Options String: 'V4,dev-type
tun,link-mtu 1560,tun-mtu 1500,proto TCPv4_SERVER,comp-lzo,keydir 0,cipher AES-1
28-CBC,auth SHA1,keysize 128,tls-auth,key-method 2,tls-server'
Thu Sep 29 12:42:31 2011 us=500000 Local Options hash (VER=V4): '0bdd0804'
Thu Sep 29 12:42:31 2011 us=500000 Expected Remote Options hash (VER=V4): 'a6426
54b'
Thu Sep 29 12:42:31 2011 us=515000 Attempting to establish TCP connection with 2
17.78.4.54:1194
Thu Sep 29 12:42:31 2011 us=812000 TCP connection established with 217.78.4.54:1
194
Thu Sep 29 12:42:31 2011 us=812000 TCPv4_CLIENT link local: [undef]
Thu Sep 29 12:42:31 2011 us=828000 TCPv4_CLIENT link remote: 217.78.4.54:1194
Thu Sep 29 12:42:32 2011 us=46000 TLS: Initial packet from 217.78.4.54:1194, sid
=beb871fb d8b53c22
Thu Sep 29 12:42:36 2011 us=953000 VERIFY OK: depth=1, /C=IE/L=Dublin/O=eSportsM
anager/CN=eSportsManager_CA/emailAddress=admin@esportsmanager.ie
Thu Sep 29 12:42:36 2011 us=953000 VERIFY OK: nsCertType=SERVER
Thu Sep 29 12:42:36 2011 us=968000 VERIFY OK: depth=0, /C=IE/L=Dublin/O=eSportsM
anager/CN=server/emailAddress=admin@esportsmanager.ie
Thu Sep 29 12:42:44 2011 us=656000 Data Channel Encrypt: Cipher 'AES-128-CBC' in
itialized with 128 bit key
Thu Sep 29 12:42:44 2011 us=671000 Data Channel Encrypt: Using 160 bit message h
ash 'SHA1' for HMAC authentication
Thu Sep 29 12:42:44 2011 us=687000 Data Channel Decrypt: Cipher 'AES-128-CBC' in
itialized with 128 bit key
Thu Sep 29 12:42:44 2011 us=687000 Data Channel Decrypt: Using 160 bit message h
ash 'SHA1' for HMAC authentication
Thu Sep 29 12:42:44 2011 us=703000 Control Channel: TLSv1, cipher TLSv1/SSLv3 DH
E-RSA-AES256-SHA, 1024 bit RSA
Thu Sep 29 12:42:44 2011 us=703000 [server] Peer Connection Initiated with 217.7
8.4.54:1194
Thu Sep 29 12:42:47 2011 us=156000 SENT CONTROL [server]: 'PUSH_REQUEST' (status
=1)
Thu Sep 29 12:42:49 2011 us=93000 PUSH: Received control message: 'PUSH_REPLY,dh
cp-option DNS 10.0.0.1,route 10.0.0.0 255.255.255.0,topology net30,ping 10,ping-
restart 120,ifconfig 10.0.0.50 10.0.0.49'
Thu Sep 29 12:42:49 2011 us=109000 OPTIONS IMPORT: timers and/or timeouts modifi
ed
Thu Sep 29 12:42:49 2011 us=125000 OPTIONS IMPORT: --ifconfig/up options modifie
d
Thu Sep 29 12:42:49 2011 us=125000 OPTIONS IMPORT: route options modified
Thu Sep 29 12:42:49 2011 us=140000 OPTIONS IMPORT: --ip-win32 and/or --dhcp-opti
on options modified
Thu Sep 29 12:42:49 2011 us=140000 Preserving previous TUN/TAP instance: Local A
rea Connection
Thu Sep 29 12:42:49 2011 us=156000 Initialization Sequence Completed
Thu Sep 29 12:43:03 2011 us=109000 Connection reset, restarting [0]
Thu Sep 29 12:43:03 2011 us=109000 TCP/UDP: Closing socket
Thu Sep 29 12:43:03 2011 us=125000 SIGUSR1[soft,connection-reset] received, proc
ess restarting
Thu Sep 29 12:43:03 2011 us=125000 Restart pause, 5 second(s)

Re: Connection reset every 15 -20s

Posted: Thu Sep 29, 2011 7:27 am
by janjust
the TCP connection to the server itself is dropped - this can be caused by a firewall or even the ISP; try lowering the MTU or add fragmentation (--fragment 1400) to see if it makes the connection more stable.

If you were in Iran/Syria/Pakistan/China etc I would suspect a government firewall interfering, but you seem to be in Ireland :mrgreen:

Re: Connection reset every 15 -20s

Posted: Thu Sep 29, 2011 7:46 am
by the.rahul.nair
janjust wrote:the TCP connection to the server itself is dropped - this can be caused by a firewall or even the ISP; try lowering the MTU or add fragmentation (--fragment 1400) to see if it makes the connection more stable.
Tried lowering the MTU with the same results and the addition of :

Thu Sep 29 13:10:18 2011 us=484000 WARNING: 'link-mtu' is used inconsistently, l
ocal='link-mtu 1260', remote='link-mtu 1560'
Thu Sep 29 13:10:18 2011 us=500000 WARNING: 'tun-mtu' is used inconsistently, lo
cal='tun-mtu 1200', remote='tun-mtu 1500'

When I tried to add fragmentation this is wat I got...

Options error: --fragment can only be used with --proto udp
Use --help for more information.
Press any key to continue...

:? :?

Re: Connection reset every 15 -20s

Posted: Thu Sep 29, 2011 7:52 am
by janjust
oh doh, yes , of course, --fragment works only in UDP mode;

the mtu needs to be lowered on both ends, AND you need to lower it in the Windows tap-win32 adapter as well. The latter can be done using a 'netsh' command:

Code: Select all

netsh interface ipv4 show subinterfaces
netsh interface ipv4 set subinterface <IF number> mtu=1400

Re: Connection reset every 15 -20s

Posted: Thu Sep 29, 2011 8:54 am
by the.rahul.nair
janjust wrote:oh doh, yes , of course, --fragment works only in UDP mode;

the mtu needs to be lowered on both ends, AND you need to lower it in the Windows tap-win32 adapter as well. The latter can be done using a 'netsh' command:

Code: Select all

netsh interface ipv4 show subinterfaces
netsh interface ipv4 set subinterface <IF number> mtu=1400
Curiouser and curiouser....


C:\>netsh interface ipv4 show subinterfaces
The following command was not found: interface ipv4 show subinterfaces.


is this a n00b mistake? Am I missing something here?

Re: Connection reset every 15 -20s

Posted: Thu Sep 29, 2011 10:27 am
by Mimiko
you are using Windows XP so:

Code: Select all

netsh interface ip show interface
But Windows XP cant change mtu with netsh command. Read this page to change mtu via registry: http://www.pctools.com/guides/registry/detail/280/

[Solved] Connection reset every 15-20s

Posted: Fri Sep 30, 2011 3:32 pm
by the.rahul.nair
will check all of the above over the weekend and will update status on Monday. Thx guys for your help so far!!

Re: Connection reset every 15 -20s

Posted: Fri Oct 07, 2011 8:18 am
by the.rahul.nair
Hi... Sorry for the delay in the reply.

Over the past 3-4 days I have checked and double checked all the client-side config files and the firewall setting s and all that goes along with it. Finally, after checking everything, I tried connecting to the server when no one was around at work (the Internet connection here is shared via Squid proxy). When I was the only one left, I opened a session and connected successfully (FINALLY!!!). The connection was stable and did not time out and remained connected for 2 hrs (till I logged out).

Now the next question is - now that the connection is stable, how exactly to I go about accessing the files on the server?? I mean do i connect using a browser or do I open a remote session?? How do I go about it?

Re: Connection reset every 15 -20s

Posted: Fri Oct 07, 2011 9:25 am
by Mimiko
So the problem is solved? The problem lies in squid proxy that disconnects you automaticaly to allow other to connect. Then you have the same problem with download interruptions when downloading large files.
accessing the files on the server?
On OpenVPN server? Just use

Code: Select all

\\10.0.0.1
assuming samba is running on the server.

Re: Connection reset every 15 -20s

Posted: Fri Oct 07, 2011 10:15 am
by the.rahul.nair
accessing the files on the server?
On OpenVPN server? Just use

Code: Select all

\\10.0.0.1
assuming samba is running on the server.[/quote]

Thanks Mimiko. Going to try this tonite, once all the other users have left. Just to see if I understood right, once I connect from the client to the server, in Run I enter the new Virtual IP that was created on the client system, is that right?

Re: Connection reset every 15 -20s

Posted: Fri Oct 07, 2011 10:23 am
by the.rahul.nair
assuming samba is running on the server.

What if Samba isnt running on the Server? Then is there an alternate way to access the files on the Server?
All times are UTC
Page 1 of 2
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/