NETSH:

All comments and questions related to the functionality of the OpenVPN web pages and forum should go here.

Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech

Post Reply
erg161
OpenVPN User
Posts: 20
Joined: Tue Nov 08, 2011 4:01 pm

NETSH:

Post by erg161 » Fri Feb 17, 2012 1:43 pm

is this normal?

Code: Select all

Fri Feb 17 02:32:58 2012 OpenVPN 2.1_rc19 i686-pc-mingw32 [SSL] [LZO2] built on Oct  5 2011
Fri Feb 17 02:32:59 2012 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
Fri Feb 17 02:32:59 2012 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Fri Feb 17 02:33:01 2012 Control Channel MTU parms [ L:1541 D:138 EF:38 EB:0 ET:0 EL:0 ]
Fri Feb 17 02:33:01 2012 Data Channel MTU parms [ L:1541 D:1450 EF:41 EB:4 ET:0 EL:0 ]
Fri Feb 17 02:33:01 2012 Local Options hash (VER=V4): '3514370b'
Fri Feb 17 02:33:01 2012 Expected Remote Options hash (VER=V4): '239669a8'
Fri Feb 17 02:33:01 2012 Socket Buffers: R=[8192->8192] S=[8192->8192]
Fri Feb 17 02:33:01 2012 UDPv4 link local (bound): [undef]:52
Fri Feb 17 02:33:01 2012 UDPv4 link remote: 0.0.0.0:0
Fri Feb 17 02:33:16 2012 TLS: Initial packet from 0.0.0.0:0, sid=53222886 6d1eda8a
Fri Feb 17 02:33:16 2012 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Fri Feb 17 02:33:17 2012 VERIFY OK: depth=0, /CN=www.g742mr5tkowlxb.net
Fri Feb 17 02:33:17 2012 VERIFY OK: depth=0, /CN=www.g742mr5tkowlxb.net
Fri Feb 17 02:33:17 2012 VERIFY OK: depth=0, /CN=www.g742mr5tkowlxb.net
Fri Feb 17 02:33:19 2012 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
Fri Feb 17 02:33:19 2012 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Fri Feb 17 02:33:19 2012 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
Fri Feb 17 02:33:19 2012 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Fri Feb 17 02:33:19 2012 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
Fri Feb 17 02:33:19 2012 [www.g742mr5tkowlxb.net] Peer Connection Initiated with 0.0.0.0:0
Fri Feb 17 02:33:21 2012 SENT CONTROL [www.g742mr5tkowlxb.net]: 'PUSH_REQUEST' (status=1)
Fri Feb 17 02:33:21 2012 PUSH: Received control message: 'PUSH_REPLY,dhcp-option DOMAIN hshld.com,dhcp-option DISABLE-NBT,redirect-gateway def1 bypass-dhcp,route-delay 5,sndbuf 100000,rcvbuf 100000,inactive 172800 2048,dhcp-option DNS 10.35.48.1,route-gateway 10.35.48.1,topology subnet,ping 10,ping-restart 60,ifconfig 10.35.48.42 255.255.248.0'
Fri Feb 17 02:33:21 2012 OPTIONS IMPORT: timers and/or timeouts modified
Fri Feb 17 02:33:21 2012 OPTIONS IMPORT: --sndbuf/--rcvbuf options modified
Fri Feb 17 02:33:21 2012 Socket Buffers: R=[8192->100000] S=[8192->100000]
Fri Feb 17 02:33:21 2012 OPTIONS IMPORT: --ifconfig/up options modified
Fri Feb 17 02:33:21 2012 OPTIONS IMPORT: route options modified
Fri Feb 17 02:33:21 2012 OPTIONS IMPORT: route-related options modified
Fri Feb 17 02:33:21 2012 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Fri Feb 17 02:33:21 2012 ROUTE default_gateway=10.21.49.209
Fri Feb 17 02:33:23 2012 TAP-WIN32 device [Local Area Connection* 9] opened: \\.\Global\{8D1C749F-B2AE-48A1-8197-905A001815C7}.tap
Fri Feb 17 02:33:23 2012 TAP-Win32 Driver Version 16.4 
Fri Feb 17 02:33:23 2012 TAP-Win32 MTU=1500
[color=#00FF00]Fri Feb 17 02:33:27 2012 NETSH: C:\WINDOWS\system32\netsh.exe interface ip set address Local Area Connection* 9 static 10.35.48.42 255.255.248.0
Fri Feb 17 02:33:47 2012 NETSH: C:\WINDOWS\system32\netsh.exe interface ip delete dns Local Area Connection* 9 all
Fri Feb 17 02:33:58 2012 NETSH: C:\WINDOWS\system32\netsh.exe interface ip set dns Local Area Connection* 9 static 10.35.48.1[/color]
Fri Feb 17 02:34:12 2012 Set TAP-Win32 TUN subnet mode network/local/netmask = 10.35.48.0/10.35.48.42/255.255.248.0 [SUCCEEDED]
Fri Feb 17 02:34:12 2012 Successful ARP Flush on interface [11] {8D1C749F-B2AE-48A1-8197-905A001815C7}
Fri Feb 17 02:34:17 2012 TEST ROUTES: 1/1 succeeded len=0 ret=1 a=0 u/d=up
Fri Feb 17 02:34:17 2012 C:\WINDOWS\system32\route.exe ADD 68.68.107.143 MASK 255.255.255.255 10.21.49.209
Fri Feb 17 02:34:20 2012 C:\WINDOWS\system32\route.exe ADD 0.0.0.0 MASK 128.0.0.0 10.35.48.1
Fri Feb 17 02:34:22 2012 C:\WINDOWS\system32\route.exe ADD 128.0.0.0 MASK 128.0.0.0 10.35.48.1
Fri Feb 17 02:34:23 2012 Initialization Sequence Completed
Fri Feb 17 02:34:43 2012 Replay-window backtrack occurred [1]
Fri Feb 17 02:34:44 2012 Replay-window backtrack occurred [2]

client config:

Code: Select all

client
dev tun
auth-user-pass
route-delay 20
route-method exe
redirect-gateway def1
remote 68.68.107.143 9201
reneg-sec <N>
lport 52
verb 3

<ca>
-----BEGIN CERTIFICATE-----
<Hidden>
-----END CERTIFICATE-----
</ca>

User avatar
janjust
Forum Team
Posts: 2703
Joined: Fri Aug 20, 2010 2:57 pm
Location: Amsterdam
Contact:

Re: NETSH:

Post by janjust » Fri Feb 17, 2012 1:49 pm

if you mean this part:
Fri Feb 17 02:33:27 2012 NETSH: C:\WINDOWS\system32\netsh.exe interface ip set address Local Area Connection* 9 static 10.35.48.42 255.255.248.0
Fri Feb 17 02:33:47 2012 NETSH: C:\WINDOWS\system32\netsh.exe interface ip delete dns Local Area Connection* 9 all
Fri Feb 17 02:33:58 2012 NETSH: C:\WINDOWS\system32\netsh.exe interface ip set dns Local Area Connection* 9 static 10.35.48.1
then the answer is yes , as you're using 'route-method exe' . You also seem to be using a really old version of OpenVPN, as well as a modified version of the tap-win32 driver (version 16.4 ???) ; I strongly recommend to upgrade to 2.2.2

erg161
OpenVPN User
Posts: 20
Joined: Tue Nov 08, 2011 4:01 pm

Re: NETSH:

Post by erg161 » Fri Feb 17, 2012 2:01 pm

I'll do that janjust..thanks..

and why I got this error:
Fri Feb 17 02:34:43 2012 Replay-window backtrack occurred [1]
Fri Feb 17 02:34:44 2012 Replay-window backtrack occurred [2]

User avatar
janjust
Forum Team
Posts: 2703
Joined: Fri Aug 20, 2010 2:57 pm
Location: Amsterdam
Contact:

Re: NETSH:

Post by janjust » Fri Feb 17, 2012 2:02 pm

that could be caused by a jittery (wifi?) connection

erg161
OpenVPN User
Posts: 20
Joined: Tue Nov 08, 2011 4:01 pm

Re: NETSH:

Post by erg161 » Fri Feb 17, 2012 2:24 pm

i use huawei e153u-2

User avatar
janjust
Forum Team
Posts: 2703
Joined: Fri Aug 20, 2010 2:57 pm
Location: Amsterdam
Contact:

Re: NETSH:

Post by janjust » Fri Feb 17, 2012 10:14 pm

a 3G modem? then I am totally not surprised...

erg161
OpenVPN User
Posts: 20
Joined: Tue Nov 08, 2011 4:01 pm

Re: NETSH:

Post by erg161 » Sat Feb 18, 2012 5:07 am

Yes it's a 3G modem..

I'm planning to get a 4G modem by this week
and has a capacity of 20mb speed..

question:
this will change the way it behave?
specifically to this:
Fri Feb 17 02:34:43 2012 Replay-window backtrack occurred [1]
Fri Feb 17 02:34:44 2012 Replay-window backtrack occurred [2]

User avatar
janjust
Forum Team
Posts: 2703
Joined: Fri Aug 20, 2010 2:57 pm
Location: Amsterdam
Contact:

Re: NETSH:

Post by janjust » Mon Feb 20, 2012 12:57 pm

it can still occur - but as I said, that message is a warning: you will/might take a performance hit, but the VPN should remain functional.

Post Reply