OpenVPN Support Forum

Community Support Forum
https://forums.openvpn.net/

Need help with my script...OpenVPN keeps Restarting

https://forums.openvpn.net/viewtopic.php?t=9063

Page 1 of 1

Need help with my script...OpenVPN keeps Restarting

Posted: Fri Oct 21, 2011 1:26 pm
by russdyer
I followed the guide outlined by http://www.howtogeek.com/64433/how-to-i ... rt-router/ but cannot connect.

Here is my config file:

Code: Select all

client
dev tun
proto tcp
remote 76.179.151.200 1194
resolv-retry infinite
nobind
persist-key
persist-tun
script-security 3 system

ca ca.crt
cert client1.crt
key client1.key
ns-cert-type server
cipher AES-128-CBC
comp-lzo
verb 4


Here is my log file:

Code: Select all

Fri Oct 21 09:12:50 2011 us=185000 Current Parameter Settings:
Fri Oct 21 09:12:50 2011 us=185000   config = 'RussLaptop.ovpn'
Fri Oct 21 09:12:50 2011 us=185000   mode = 0
Fri Oct 21 09:12:50 2011 us=185000   show_ciphers = DISABLED
Fri Oct 21 09:12:50 2011 us=185000   show_digests = DISABLED
Fri Oct 21 09:12:50 2011 us=185000   show_engines = DISABLED
Fri Oct 21 09:12:50 2011 us=185000   genkey = DISABLED
Fri Oct 21 09:12:50 2011 us=185000   key_pass_file = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=185000   show_tls_ciphers = DISABLED
Fri Oct 21 09:12:50 2011 us=185000 Connection profiles [default]:
Fri Oct 21 09:12:50 2011 us=185000   proto = tcp-client
Fri Oct 21 09:12:50 2011 us=185000   local = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=185000   local_port = 0
Fri Oct 21 09:12:50 2011 us=185000   remote = 'my.int.ip.addy'
Fri Oct 21 09:12:50 2011 us=185000   remote_port = 1194
Fri Oct 21 09:12:50 2011 us=185000   remote_float = DISABLED
Fri Oct 21 09:12:50 2011 us=185000   bind_defined = DISABLED
Fri Oct 21 09:12:50 2011 us=185000   bind_local = DISABLED
Fri Oct 21 09:12:50 2011 us=185000   connect_retry_seconds = 5
Fri Oct 21 09:12:50 2011 us=185000   connect_timeout = 10
Fri Oct 21 09:12:50 2011 us=185000   connect_retry_max = 0
Fri Oct 21 09:12:50 2011 us=185000   socks_proxy_server = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=185000   socks_proxy_port = 0
Fri Oct 21 09:12:50 2011 us=185000   socks_proxy_retry = DISABLED
Fri Oct 21 09:12:50 2011 us=185000 Connection profiles END
Fri Oct 21 09:12:50 2011 us=185000   remote_random = DISABLED
Fri Oct 21 09:12:50 2011 us=185000   ipchange = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=185000   dev = 'tun'
Fri Oct 21 09:12:50 2011 us=185000   dev_type = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=185000   dev_node = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=185000   lladdr = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=185000   topology = 1
Fri Oct 21 09:12:50 2011 us=185000   tun_ipv6 = DISABLED
Fri Oct 21 09:12:50 2011 us=185000   ifconfig_local = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=185000   ifconfig_remote_netmask = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=185000   ifconfig_noexec = DISABLED
Fri Oct 21 09:12:50 2011 us=185000   ifconfig_nowarn = DISABLED
Fri Oct 21 09:12:50 2011 us=185000   shaper = 0
Fri Oct 21 09:12:50 2011 us=185000   tun_mtu = 1500
Fri Oct 21 09:12:50 2011 us=185000   tun_mtu_defined = ENABLED
Fri Oct 21 09:12:50 2011 us=185000   link_mtu = 1500
Fri Oct 21 09:12:50 2011 us=185000   link_mtu_defined = DISABLED
Fri Oct 21 09:12:50 2011 us=185000   tun_mtu_extra = 0
Fri Oct 21 09:12:50 2011 us=185000   tun_mtu_extra_defined = DISABLED
Fri Oct 21 09:12:50 2011 us=185000   fragment = 0
Fri Oct 21 09:12:50 2011 us=185000   mtu_discover_type = -1
Fri Oct 21 09:12:50 2011 us=185000   mtu_test = 0
Fri Oct 21 09:12:50 2011 us=185000   mlock = DISABLED
Fri Oct 21 09:12:50 2011 us=185000   keepalive_ping = 0
Fri Oct 21 09:12:50 2011 us=185000   keepalive_timeout = 0
Fri Oct 21 09:12:50 2011 us=185000   inactivity_timeout = 0
Fri Oct 21 09:12:50 2011 us=185000   ping_send_timeout = 0
Fri Oct 21 09:12:50 2011 us=185000   ping_rec_timeout = 0
Fri Oct 21 09:12:50 2011 us=185000   ping_rec_timeout_action = 0
Fri Oct 21 09:12:50 2011 us=185000   ping_timer_remote = DISABLED
Fri Oct 21 09:12:50 2011 us=185000   remap_sigusr1 = 0
Fri Oct 21 09:12:50 2011 us=185000   explicit_exit_notification = 0
Fri Oct 21 09:12:50 2011 us=185000   persist_tun = ENABLED
Fri Oct 21 09:12:50 2011 us=185000   persist_local_ip = DISABLED
Fri Oct 21 09:12:50 2011 us=185000   persist_remote_ip = DISABLED
Fri Oct 21 09:12:50 2011 us=185000   persist_key = ENABLED
Fri Oct 21 09:12:50 2011 us=185000   mssfix = 1450
Fri Oct 21 09:12:50 2011 us=185000   resolve_retry_seconds = 1000000000
Fri Oct 21 09:12:50 2011 us=185000   username = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=185000   groupname = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=185000   chroot_dir = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=185000   cd_dir = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=185000   writepid = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=419000   up_script = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=419000   down_script = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=419000   down_pre = DISABLED
Fri Oct 21 09:12:50 2011 us=419000   up_restart = DISABLED
Fri Oct 21 09:12:50 2011 us=419000   up_delay = DISABLED
Fri Oct 21 09:12:50 2011 us=419000   daemon = DISABLED
Fri Oct 21 09:12:50 2011 us=419000   inetd = 0
Fri Oct 21 09:12:50 2011 us=419000   log = DISABLED
Fri Oct 21 09:12:50 2011 us=419000   suppress_timestamps = DISABLED
Fri Oct 21 09:12:50 2011 us=419000   nice = 0
Fri Oct 21 09:12:50 2011 us=419000   verbosity = 4
Fri Oct 21 09:12:50 2011 us=419000   mute = 0
Fri Oct 21 09:12:50 2011 us=419000   gremlin = 0
Fri Oct 21 09:12:50 2011 us=419000   status_file = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=419000   status_file_version = 1
Fri Oct 21 09:12:50 2011 us=419000   status_file_update_freq = 60
Fri Oct 21 09:12:50 2011 us=419000   occ = ENABLED
Fri Oct 21 09:12:50 2011 us=419000   rcvbuf = 0
Fri Oct 21 09:12:50 2011 us=435000   sndbuf = 0
Fri Oct 21 09:12:50 2011 us=435000   sockflags = 0
Fri Oct 21 09:12:50 2011 us=435000   fast_io = DISABLED
Fri Oct 21 09:12:50 2011 us=435000   lzo = 7
Fri Oct 21 09:12:50 2011 us=435000   route_script = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=435000   route_default_gateway = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=435000   route_default_metric = 0
Fri Oct 21 09:12:50 2011 us=435000   route_noexec = DISABLED
Fri Oct 21 09:12:50 2011 us=435000   route_delay = 5
Fri Oct 21 09:12:50 2011 us=435000   route_delay_window = 30
Fri Oct 21 09:12:50 2011 us=435000   route_delay_defined = ENABLED
Fri Oct 21 09:12:50 2011 us=435000   route_nopull = DISABLED
Fri Oct 21 09:12:50 2011 us=435000   route_gateway_via_dhcp = DISABLED
Fri Oct 21 09:12:50 2011 us=435000   max_routes = 100
Fri Oct 21 09:12:50 2011 us=435000   allow_pull_fqdn = DISABLED
Fri Oct 21 09:12:50 2011 us=435000   management_addr = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=466000   management_port = 0
Fri Oct 21 09:12:50 2011 us=466000   management_user_pass = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=466000   management_log_history_cache = 250
Fri Oct 21 09:12:50 2011 us=466000   management_echo_buffer_size = 100
Fri Oct 21 09:12:50 2011 us=466000   management_write_peer_info_file = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=466000   management_client_user = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=466000   management_client_group = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=466000   management_flags = 0
Fri Oct 21 09:12:50 2011 us=466000   shared_secret_file = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=466000   key_direction = 0
Fri Oct 21 09:12:50 2011 us=466000   ciphername_defined = ENABLED
Fri Oct 21 09:12:50 2011 us=466000   ciphername = 'AES-128-CBC'
Fri Oct 21 09:12:50 2011 us=466000   authname_defined = ENABLED
Fri Oct 21 09:12:50 2011 us=466000   authname = 'SHA1'
Fri Oct 21 09:12:50 2011 us=466000   prng_hash = 'SHA1'
Fri Oct 21 09:12:50 2011 us=466000   prng_nonce_secret_len = 16
Fri Oct 21 09:12:50 2011 us=482000   keysize = 0
Fri Oct 21 09:12:50 2011 us=482000   engine = DISABLED
Fri Oct 21 09:12:50 2011 us=482000   replay = ENABLED
Fri Oct 21 09:12:50 2011 us=482000   mute_replay_warnings = DISABLED
Fri Oct 21 09:12:50 2011 us=482000   replay_window = 64
Fri Oct 21 09:12:50 2011 us=482000   replay_time = 15
Fri Oct 21 09:12:50 2011 us=482000   packet_id_file = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=482000   use_iv = ENABLED
Fri Oct 21 09:12:50 2011 us=482000   test_crypto = DISABLED
Fri Oct 21 09:12:50 2011 us=482000   tls_server = DISABLED
Fri Oct 21 09:12:50 2011 us=482000   tls_client = ENABLED
Fri Oct 21 09:12:50 2011 us=482000   key_method = 2
Fri Oct 21 09:12:50 2011 us=482000   ca_file = 'ca.crt'
Fri Oct 21 09:12:50 2011 us=482000   ca_path = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=482000   dh_file = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=482000   cert_file = 'RussLaptop.crt'
Fri Oct 21 09:12:50 2011 us=482000   priv_key_file = 'RussLaptop.key'
Fri Oct 21 09:12:50 2011 us=497000   pkcs12_file = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=497000   cryptoapi_cert = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=497000   cipher_list = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=497000   tls_verify = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=497000   tls_export_cert = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=497000   tls_remote = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=497000   crl_file = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=497000   ns_cert_type = 64
Fri Oct 21 09:12:50 2011 us=497000   remote_cert_ku[i] = 0
Fri Oct 21 09:12:50 2011 us=497000   remote_cert_ku[i] = 0
Fri Oct 21 09:12:50 2011 us=497000   remote_cert_ku[i] = 0
Fri Oct 21 09:12:50 2011 us=497000   remote_cert_ku[i] = 0
Fri Oct 21 09:12:50 2011 us=497000   remote_cert_ku[i] = 0
Fri Oct 21 09:12:50 2011 us=497000   remote_cert_ku[i] = 0
Fri Oct 21 09:12:50 2011 us=497000   remote_cert_ku[i] = 0
Fri Oct 21 09:12:50 2011 us=497000   remote_cert_ku[i] = 0
Fri Oct 21 09:12:50 2011 us=529000   remote_cert_ku[i] = 0
Fri Oct 21 09:12:50 2011 us=529000   remote_cert_ku[i] = 0
Fri Oct 21 09:12:50 2011 us=529000   remote_cert_ku[i] = 0
Fri Oct 21 09:12:50 2011 us=529000   remote_cert_ku[i] = 0
Fri Oct 21 09:12:50 2011 us=529000   remote_cert_ku[i] = 0
Fri Oct 21 09:12:50 2011 us=529000   remote_cert_ku[i] = 0
Fri Oct 21 09:12:50 2011 us=529000   remote_cert_ku[i] = 0
Fri Oct 21 09:12:50 2011 us=529000   remote_cert_ku[i] = 0
Fri Oct 21 09:12:50 2011 us=529000   remote_cert_eku = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=529000   tls_timeout = 2
Fri Oct 21 09:12:50 2011 us=529000   renegotiate_bytes = 0
Fri Oct 21 09:12:50 2011 us=529000   renegotiate_packets = 0
Fri Oct 21 09:12:50 2011 us=529000   renegotiate_seconds = 3600
Fri Oct 21 09:12:50 2011 us=529000   handshake_window = 60
Fri Oct 21 09:12:50 2011 us=529000   transition_window = 3600
Fri Oct 21 09:12:50 2011 us=529000   single_session = DISABLED
Fri Oct 21 09:12:50 2011 us=544000   push_peer_info = DISABLED
Fri Oct 21 09:12:50 2011 us=544000   tls_exit = DISABLED
Fri Oct 21 09:12:50 2011 us=544000   tls_auth_file = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=544000   server_network = 0.0.0.0
Fri Oct 21 09:12:50 2011 us=544000   server_netmask = 0.0.0.0
Fri Oct 21 09:12:50 2011 us=544000   server_bridge_ip = 0.0.0.0
Fri Oct 21 09:12:50 2011 us=544000   server_bridge_netmask = 0.0.0.0
Fri Oct 21 09:12:50 2011 us=544000   server_bridge_pool_start = 0.0.0.0
Fri Oct 21 09:12:50 2011 us=544000   server_bridge_pool_end = 0.0.0.0
Fri Oct 21 09:12:50 2011 us=544000   ifconfig_pool_defined = DISABLED
Fri Oct 21 09:12:50 2011 us=544000   ifconfig_pool_start = 0.0.0.0
Fri Oct 21 09:12:50 2011 us=544000   ifconfig_pool_end = 0.0.0.0
Fri Oct 21 09:12:50 2011 us=544000   ifconfig_pool_netmask = 0.0.0.0
Fri Oct 21 09:12:50 2011 us=544000   ifconfig_pool_persist_filename = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=544000   ifconfig_pool_persist_refresh_freq = 600
Fri Oct 21 09:12:50 2011 us=560000   n_bcast_buf = 256
Fri Oct 21 09:12:50 2011 us=560000   tcp_queue_limit = 64
Fri Oct 21 09:12:50 2011 us=560000   real_hash_size = 256
Fri Oct 21 09:12:50 2011 us=560000   virtual_hash_size = 256
Fri Oct 21 09:12:50 2011 us=560000   client_connect_script = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=560000   learn_address_script = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=560000   client_disconnect_script = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=560000   client_config_dir = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=560000   ccd_exclusive = DISABLED
Fri Oct 21 09:12:50 2011 us=560000   tmp_dir = 'C:\Users\RUSSDY~1\AppData\Local\Temp\'
Fri Oct 21 09:12:50 2011 us=560000   push_ifconfig_defined = DISABLED
Fri Oct 21 09:12:50 2011 us=560000   push_ifconfig_local = 0.0.0.0
Fri Oct 21 09:12:50 2011 us=560000   push_ifconfig_remote_netmask = 0.0.0.0
Fri Oct 21 09:12:50 2011 us=560000   enable_c2c = DISABLED
Fri Oct 21 09:12:50 2011 us=560000   duplicate_cn = DISABLED
Fri Oct 21 09:12:50 2011 us=575000   cf_max = 0
Fri Oct 21 09:12:50 2011 us=575000   cf_per = 0
Fri Oct 21 09:12:50 2011 us=575000   max_clients = 1024
Fri Oct 21 09:12:50 2011 us=575000   max_routes_per_client = 256
Fri Oct 21 09:12:50 2011 us=575000   auth_user_pass_verify_script = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=575000   auth_user_pass_verify_script_via_file = DISABLED
Fri Oct 21 09:12:50 2011 us=575000   ssl_flags = 0
Fri Oct 21 09:12:50 2011 us=575000   client = ENABLED
Fri Oct 21 09:12:50 2011 us=575000   pull = ENABLED
Fri Oct 21 09:12:50 2011 us=575000   auth_user_pass_file = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=575000   show_net_up = DISABLED
Fri Oct 21 09:12:50 2011 us=575000   route_method = 0
Fri Oct 21 09:12:50 2011 us=575000   ip_win32_defined = DISABLED
Fri Oct 21 09:12:50 2011 us=575000   ip_win32_type = 3
Fri Oct 21 09:12:50 2011 us=575000   dhcp_masq_offset = 0
Fri Oct 21 09:12:50 2011 us=575000   dhcp_lease_time = 31536000
Fri Oct 21 09:12:50 2011 us=591000   tap_sleep = 0
Fri Oct 21 09:12:50 2011 us=591000   dhcp_options = DISABLED
Fri Oct 21 09:12:50 2011 us=591000   dhcp_renew = DISABLED
Fri Oct 21 09:12:50 2011 us=591000   dhcp_pre_release = DISABLED
Fri Oct 21 09:12:50 2011 us=591000   dhcp_release = DISABLED
Fri Oct 21 09:12:50 2011 us=591000   domain = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=591000   netbios_scope = '[UNDEF]'
Fri Oct 21 09:12:50 2011 us=591000   netbios_node_type = 0
Fri Oct 21 09:12:50 2011 us=591000   disable_nbt = DISABLED
Fri Oct 21 09:12:50 2011 us=591000 OpenVPN 2.2.1 Win32-MSVC++ [SSL] [LZO2] built on Jul  1 2011
Fri Oct 21 09:12:50 2011 us=591000 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Fri Oct 21 09:12:50 2011 us=591000 NOTE: --script-security method='system' is deprecated due to the fact that passed parameters will be subject to shell expansion
Fri Oct 21 09:12:50 2011 us=794000 LZO compression initialized
Fri Oct 21 09:12:50 2011 us=794000 Control Channel MTU parms [ L:1560 D:140 EF:40 EB:0 ET:0 EL:0 ]
Fri Oct 21 09:12:50 2011 us=794000 Socket Buffers: R=[8192->8192] S=[8192->8192]
Fri Oct 21 09:12:50 2011 us=794000 Data Channel MTU parms [ L:1560 D:1450 EF:60 EB:135 ET:0 EL:0 AF:3/1 ]
Fri Oct 21 09:12:50 2011 us=794000 Local Options String: 'V4,dev-type tun,link-mtu 1560,tun-mtu 1500,proto TCPv4_CLIENT,comp-lzo,cipher AES-128-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Fri Oct 21 09:12:50 2011 us=794000 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1560,tun-mtu 1500,proto TCPv4_SERVER,comp-lzo,cipher AES-128-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Fri Oct 21 09:12:50 2011 us=794000 Local Options hash (VER=V4): 'bc07730e'
Fri Oct 21 09:12:50 2011 us=794000 Expected Remote Options hash (VER=V4): 'b695cb4a'
Fri Oct 21 09:12:50 2011 us=794000 Attempting to establish TCP connection with my.int.ip.addy:1194
Fri Oct 21 09:13:11 2011 us=807000 TCP: connect to my.int.ip.addy:1194 failed, will try again in 5 seconds: Connection timed out (WSAETIMEDOUT)
Fri Oct 21 09:13:16 2011 us=799000 SIGTERM[hard,init_instance] received, process exiting

Re: Need help with my script

Posted: Fri Oct 21, 2011 2:59 pm
by jnorthco
Well, there is a mistake in that tutorial.

They say to put:

Code: Select all

proto tcp
in client.ovpn, but then they say to use:

Code: Select all

iptables -I INPUT 1 -p udp --dport 1194 -j ACCEPT
to allow access.

These protocols should match. The correct firewall rule is:

Code: Select all

iptables -I INPUT 1 -p tcp --dport 1194 -j ACCEPT

Re: Need help with my script

Posted: Fri Oct 21, 2011 9:03 pm
by russdyer
Awesome, nice catch. However, now I'm getting other errors. The connection connects then disconnects and then repeats. Here is some additional log:

Code: Select all

Fri Oct 21 16:59:42 2011 us=710000 NOTE: Options consistency check may be skewed by version differences
Fri Oct 21 16:59:42 2011 us=710000 WARNING: 'version' is used inconsistently, local='version V4', remote='version V0 UNDEF'
Fri Oct 21 16:59:42 2011 us=710000 WARNING: 'dev-type' is present in local config but missing in remote config, local='dev-type tun'
Fri Oct 21 16:59:42 2011 us=710000 WARNING: 'link-mtu' is present in local config but missing in remote config, local='link-mtu 1560'
Fri Oct 21 16:59:42 2011 us=710000 WARNING: 'tun-mtu' is present in local config but missing in remote config, local='tun-mtu 1500'
Fri Oct 21 16:59:42 2011 us=710000 WARNING: 'proto' is present in local config but missing in remote config, local='proto TCPv4_SERVER'
Fri Oct 21 16:59:42 2011 us=710000 WARNING: 'comp-lzo' is present in local config but missing in remote config, local='comp-lzo'
Fri Oct 21 16:59:42 2011 us=710000 WARNING: 'cipher' is present in local config but missing in remote config, local='cipher AES-128-CBC'
Fri Oct 21 16:59:42 2011 us=710000 WARNING: 'auth' is present in local config but missing in remote config, local='auth SHA1'
Fri Oct 21 16:59:42 2011 us=710000 WARNING: 'keysize' is present in local config but missing in remote config, local='keysize 128'
Fri Oct 21 16:59:42 2011 us=710000 WARNING: 'key-method' is present in local config but missing in remote config, local='key-method 2'
Fri Oct 21 16:59:42 2011 us=710000 WARNING: 'tls-server' is present in local config but missing in remote config, local='tls-server'
Fri Oct 21 16:59:42 2011 us=710000 Data Channel Encrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
Fri Oct 21 16:59:42 2011 us=710000 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Fri Oct 21 16:59:42 2011 us=710000 Data Channel Decrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
Fri Oct 21 16:59:42 2011 us=710000 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Fri Oct 21 16:59:42 2011 us=710000 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
Fri Oct 21 16:59:42 2011 us=710000 [OpenVPN-Server] Peer Connection Initiated with my.ext.ip.addy:1194
Fri Oct 21 16:59:44 2011 us=832000 SENT CONTROL [OpenVPN-Server]: 'PUSH_REQUEST' (status=1)
Fri Oct 21 16:59:45 2011 us=113000 PUSH: Received control message: 'PUSH_REPLY,route 192.168.1.0 255.255.255.0,route 10.8.0.1,topology net30,ping 10,ping-restart 120,ifconfig 10.8.0.6 10.8.0.5'
Fri Oct 21 16:59:45 2011 us=113000 OPTIONS IMPORT: timers and/or timeouts modified
Fri Oct 21 16:59:45 2011 us=113000 OPTIONS IMPORT: --ifconfig/up options modified
Fri Oct 21 16:59:45 2011 us=113000 OPTIONS IMPORT: route options modified
Fri Oct 21 16:59:45 2011 us=113000 Preserving previous TUN/TAP instance: Local Area Connection
Fri Oct 21 16:59:45 2011 us=113000 Initialization Sequence Completed

Re: Need help with my script

Posted: Mon Oct 24, 2011 8:52 pm
by russdyer
Does anybody know how to fix this error?

OpenVPN connects, then disconnects, and repeats. Any suggestions?

Re: Need help with my script...OpenVPN keeps Restarting

Posted: Wed Oct 26, 2011 12:58 pm
by janjust
the log message
Fri Oct 21 16:59:42 2011 us=710000 WARNING: 'version' is used inconsistently, local='version V4', remote='version V0 UNDEF'
shows that traffic between client and server is getting mangled - check the MTU size on your network, possibly change the mtu to

Code: Select all

tun-mtu 1400
to both client and server - for windows client you'll need to do this using either a 'netsh.exe' command or using a registry key.
All times are UTC
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/