connecting to ovenvpn as
hello,
i have installed openvpn as on centos everythings are work fine but when i tried to connect from client to server it's just stop on connection and noting happen, i tried to connect over tcp and over udp but the same problem is still. the server test tool give me that it's ok and when i tried to check the as i see the client request but no status. so where is the problem? thanks. |
What's in the logs?
|
hello thanks for your replay:
Tue Feb 21 11:30:11 2012 OpenVPNAS 2.1.8OAS Win32-MSVC++ [SSL] [LZO2] built on Aug 4 2011 Tue Feb 21 11:30:11 2012 MANAGEMENT: Connected to management server at 127.0.0.1:57854 Tue Feb 21 11:30:11 2012 MANAGEMENT: CMD 'state on' Tue Feb 21 11:30:11 2012 MANAGEMENT: CMD 'echo on' Tue Feb 21 11:30:11 2012 MANAGEMENT: CMD 'bytecount 5' Tue Feb 21 11:30:11 2012 MANAGEMENT: CMD 'hold off' Tue Feb 21 11:30:11 2012 MANAGEMENT: CMD 'hold release' Tue Feb 21 11:30:11 2012 MANAGEMENT: CMD 'username "Auth" "openvpnsy"' Tue Feb 21 11:30:11 2012 MANAGEMENT: CMD 'password [...]' Tue Feb 21 11:30:11 2012 NOTE: OpenVPNAS 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables Tue Feb 21 11:30:11 2012 Control Channel Authentication: tls-auth using INLINE static key file Tue Feb 21 11:30:11 2012 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication Tue Feb 21 11:30:11 2012 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication Tue Feb 21 11:30:11 2012 Socket Buffers: R=[8192->100000] S=[8192->100000] Tue Feb 21 11:30:11 2012 Attempting to establish TCP connection with 208.67.18.35:443 Tue Feb 21 11:30:11 2012 MANAGEMENT: >STATE:1329816611,TCP_CONNECT,,, Tue Feb 21 11:30:12 2012 TCP connection established with 208.67.18.35:443 Tue Feb 21 11:30:12 2012 TCPv4_CLIENT link local: [undef] Tue Feb 21 11:30:12 2012 TCPv4_CLIENT link remote: 208.67.18.35:443 Tue Feb 21 11:30:12 2012 MANAGEMENT: >STATE:1329816612,WAIT,,, Tue Feb 21 11:30:12 2012 MANAGEMENT: >STATE:1329816612,AUTH,,, Tue Feb 21 11:30:12 2012 TLS: Initial packet from 208.67.18.35:443, sid=d51f1686 0a1bef74 Tue Feb 21 11:30:54 2012 read TCPv4_CLIENT: Connection timed out (WSAETIMEDOUT) (code=10060) Tue Feb 21 11:30:54 2012 Connection reset, restarting [-1] Tue Feb 21 11:30:54 2012 SIGUSR1[soft,connection-reset] received, process restarting Tue Feb 21 11:30:54 2012 MANAGEMENT: >STATE:1329816654,RECONNECTING,connection-reset,, Tue Feb 21 11:30:54 2012 Restart pause, 5 second(s) Tue Feb 21 11:30:59 2012 MANAGEMENT: CMD 'username "Auth" "openvpnsy"' Tue Feb 21 11:30:59 2012 MANAGEMENT: CMD 'password [...]' Tue Feb 21 11:30:59 2012 NOTE: OpenVPNAS 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables Tue Feb 21 11:30:59 2012 Control Channel Authentication: tls-auth using INLINE static key file Tue Feb 21 11:30:59 2012 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication Tue Feb 21 11:30:59 2012 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication Tue Feb 21 11:30:59 2012 Socket Buffers: R=[8192->100000] S=[8192->100000] Tue Feb 21 11:30:59 2012 Attempting to establish TCP connection with 208.67.18.35:443 Tue Feb 21 11:30:59 2012 MANAGEMENT: >STATE:1329816659,TCP_CONNECT,,, Tue Feb 21 11:30:59 2012 TCP connection established with 208.67.18.35:443 Tue Feb 21 11:30:59 2012 TCPv4_CLIENT link local: [undef] Tue Feb 21 11:30:59 2012 TCPv4_CLIENT link remote: 208.67.18.35:443 Tue Feb 21 11:30:59 2012 MANAGEMENT: >STATE:1329816659,WAIT,,, Tue Feb 21 11:31:00 2012 MANAGEMENT: >STATE:1329816660,AUTH,,, Tue Feb 21 11:31:00 2012 TLS: Initial packet from 208.67.18.35:443, sid=279e9177 f51f539c Tue Feb 21 11:31:35 2012 read TCPv4_CLIENT: Connection timed out (WSAETIMEDOUT) (code=10060) Tue Feb 21 11:31:35 2012 Connection reset, restarting [-1] Tue Feb 21 11:31:35 2012 SIGUSR1[soft,connection-reset] received, process restarting Tue Feb 21 11:31:35 2012 MANAGEMENT: >STATE:1329816695,RECONNECTING,connection-reset,, Tue Feb 21 11:31:35 2012 Restart pause, 5 second(s) Tue Feb 21 11:31:40 2012 MANAGEMENT: CMD 'username "Auth" "openvpnsy"' Tue Feb 21 11:31:40 2012 MANAGEMENT: CMD 'password [...]' Tue Feb 21 11:31:40 2012 NOTE: OpenVPNAS 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables Tue Feb 21 11:31:40 2012 Control Channel Authentication: tls-auth using INLINE static key file Tue Feb 21 11:31:40 2012 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication Tue Feb 21 11:31:40 2012 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication Tue Feb 21 11:31:40 2012 Socket Buffers: R=[8192->100000] S=[8192->100000] Tue Feb 21 11:31:40 2012 Attempting to establish TCP connection with 208.67.18.35:443 Tue Feb 21 11:31:40 2012 MANAGEMENT: >STATE:1329816700,TCP_CONNECT,,, Tue Feb 21 11:31:40 2012 TCP connection established with 208.67.18.35:443 Tue Feb 21 11:31:40 2012 TCPv4_CLIENT link local: [undef] Tue Feb 21 11:31:40 2012 TCPv4_CLIENT link remote: 208.67.18.35:443 Tue Feb 21 11:31:40 2012 MANAGEMENT: >STATE:1329816700,WAIT,,, Tue Feb 21 11:31:41 2012 MANAGEMENT: >STATE:1329816701,AUTH,,, Tue Feb 21 11:31:41 2012 TLS: Initial packet from 208.67.18.35:443, sid=9e63bcc2 537ff18b Tue Feb 21 11:32:15 2012 read TCPv4_CLIENT: Connection timed out (WSAETIMEDOUT) (code=10060) Tue Feb 21 11:32:15 2012 Connection reset, restarting [-1] Tue Feb 21 11:32:15 2012 SIGUSR1[soft,connection-reset] received, process restarting Tue Feb 21 11:32:15 2012 MANAGEMENT: >STATE:1329816735,RECONNECTING,connection-reset,, Tue Feb 21 11:32:15 2012 Restart pause, 5 second(s) Tue Feb 21 11:32:20 2012 MANAGEMENT: CMD 'username "Auth" "openvpnsy"' Tue Feb 21 11:32:20 2012 MANAGEMENT: CMD 'password [...]' Tue Feb 21 11:32:20 2012 NOTE: OpenVPNAS 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables Tue Feb 21 11:32:20 2012 Control Channel Authentication: tls-auth using INLINE static key file Tue Feb 21 11:32:20 2012 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication Tue Feb 21 11:32:20 2012 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication Tue Feb 21 11:32:20 2012 Socket Buffers: R=[8192->100000] S=[8192->100000] Tue Feb 21 11:32:20 2012 Attempting to establish TCP connection with 208.67.18.35:443 Tue Feb 21 11:32:20 2012 MANAGEMENT: >STATE:1329816740,TCP_CONNECT,,, Tue Feb 21 11:32:20 2012 TCP connection established with 208.67.18.35:443 Tue Feb 21 11:32:20 2012 TCPv4_CLIENT link local: [undef] Tue Feb 21 11:32:20 2012 TCPv4_CLIENT link remote: 208.67.18.35:443 Tue Feb 21 11:32:20 2012 MANAGEMENT: >STATE:1329816740,WAIT,,, Tue Feb 21 11:32:20 2012 MANAGEMENT: >STATE:1329816740,AUTH,,, Tue Feb 21 11:32:20 2012 TLS: Initial packet from 208.67.18.35:443, sid=4a95bda8 fc2350a4 thnanks. |
pls not theat is the same problem if i tried to access using admin account.
thanks. |
hello there is the full log:
Tue Feb 21 11:34:25 2012 OpenVPNAS 2.1.8OAS Win32-MSVC++ [SSL] [LZO2] built on Aug 4 2011 Tue Feb 21 11:34:25 2012 MANAGEMENT: Connected to management server at 127.0.0.1:52124 Tue Feb 21 11:34:25 2012 MANAGEMENT: CMD 'state on' Tue Feb 21 11:34:25 2012 MANAGEMENT: CMD 'echo on' Tue Feb 21 11:34:25 2012 MANAGEMENT: CMD 'bytecount 5' Tue Feb 21 11:34:25 2012 MANAGEMENT: CMD 'hold off' Tue Feb 21 11:34:25 2012 MANAGEMENT: CMD 'hold release' Tue Feb 21 11:34:25 2012 MANAGEMENT: CMD 'username "Auth" "openvpn"' Tue Feb 21 11:34:25 2012 MANAGEMENT: CMD 'password [...]' Tue Feb 21 11:34:25 2012 NOTE: OpenVPNAS 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables Tue Feb 21 11:34:25 2012 Control Channel Authentication: tls-auth using INLINE static key file Tue Feb 21 11:34:25 2012 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication Tue Feb 21 11:34:25 2012 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication Tue Feb 21 11:34:25 2012 Socket Buffers: R=[8192->100000] S=[8192->100000] Tue Feb 21 11:34:25 2012 Attempting to establish TCP connection with 208.67.18.35:443 Tue Feb 21 11:34:25 2012 MANAGEMENT: >STATE:1329816865,TCP_CONNECT,,, Tue Feb 21 11:34:26 2012 TCP connection established with 208.67.18.35:443 Tue Feb 21 11:34:26 2012 TCPv4_CLIENT link local: [undef] Tue Feb 21 11:34:26 2012 TCPv4_CLIENT link remote: 208.67.18.35:443 Tue Feb 21 11:34:26 2012 MANAGEMENT: >STATE:1329816866,WAIT,,, Tue Feb 21 11:34:26 2012 MANAGEMENT: >STATE:1329816866,AUTH,,, Tue Feb 21 11:34:26 2012 TLS: Initial packet from 208.67.18.35:443, sid=eb4e748a 0f313940 Tue Feb 21 11:35:01 2012 read TCPv4_CLIENT: Connection timed out (WSAETIMEDOUT) (code=10060) Tue Feb 21 11:35:01 2012 Connection reset, restarting [-1] Tue Feb 21 11:35:01 2012 SIGUSR1[soft,connection-reset] received, process restarting Tue Feb 21 11:35:01 2012 MANAGEMENT: >STATE:1329816901,RECONNECTING,connection-reset,, Tue Feb 21 11:35:01 2012 Restart pause, 5 second(s) Tue Feb 21 11:35:06 2012 MANAGEMENT: CMD 'username "Auth" "openvpn"' Tue Feb 21 11:35:06 2012 MANAGEMENT: CMD 'password [...]' Tue Feb 21 11:35:06 2012 NOTE: OpenVPNAS 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables Tue Feb 21 11:35:06 2012 Control Channel Authentication: tls-auth using INLINE static key file Tue Feb 21 11:35:06 2012 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication Tue Feb 21 11:35:06 2012 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication Tue Feb 21 11:35:06 2012 Socket Buffers: R=[8192->100000] S=[8192->100000] Tue Feb 21 11:35:06 2012 Attempting to establish TCP connection with 208.67.18.35:443 Tue Feb 21 11:35:06 2012 MANAGEMENT: >STATE:1329816906,TCP_CONNECT,,, Tue Feb 21 11:35:07 2012 TCP connection established with 208.67.18.35:443 Tue Feb 21 11:35:07 2012 TCPv4_CLIENT link local: [undef] Tue Feb 21 11:35:07 2012 TCPv4_CLIENT link remote: 208.67.18.35:443 Tue Feb 21 11:35:07 2012 MANAGEMENT: >STATE:1329816907,WAIT,,, Tue Feb 21 11:35:07 2012 MANAGEMENT: >STATE:1329816907,AUTH,,, Tue Feb 21 11:35:07 2012 TLS: Initial packet from 208.67.18.35:443, sid=23ade7f7 91c59fcb Tue Feb 21 11:35:42 2012 read TCPv4_CLIENT: Connection timed out (WSAETIMEDOUT) (code=10060) Tue Feb 21 11:35:42 2012 Connection reset, restarting [-1] Tue Feb 21 11:35:42 2012 SIGUSR1[soft,connection-reset] received, process restarting Tue Feb 21 11:35:42 2012 MANAGEMENT: >STATE:1329816942,RECONNECTING,connection-reset,, Tue Feb 21 11:35:42 2012 Restart pause, 5 second(s) Tue Feb 21 11:35:47 2012 MANAGEMENT: CMD 'username "Auth" "openvpn"' Tue Feb 21 11:35:47 2012 MANAGEMENT: CMD 'password [...]' Tue Feb 21 11:35:47 2012 NOTE: OpenVPNAS 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables Tue Feb 21 11:35:47 2012 Control Channel Authentication: tls-auth using INLINE static key file Tue Feb 21 11:35:47 2012 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication Tue Feb 21 11:35:47 2012 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication Tue Feb 21 11:35:47 2012 Socket Buffers: R=[8192->100000] S=[8192->100000] Tue Feb 21 11:35:47 2012 Attempting to establish TCP connection with 208.67.18.35:443 Tue Feb 21 11:35:47 2012 MANAGEMENT: >STATE:1329816947,TCP_CONNECT,,, Tue Feb 21 11:35:47 2012 TCP connection established with 208.67.18.35:443 Tue Feb 21 11:35:47 2012 TCPv4_CLIENT link local: [undef] Tue Feb 21 11:35:47 2012 TCPv4_CLIENT link remote: 208.67.18.35:443 Tue Feb 21 11:35:47 2012 MANAGEMENT: >STATE:1329816947,WAIT,,, Tue Feb 21 11:35:48 2012 MANAGEMENT: >STATE:1329816948,AUTH,,, Tue Feb 21 11:35:48 2012 TLS: Initial packet from 208.67.18.35:443, sid=ad295444 57a9ebc8 Tue Feb 21 11:36:28 2012 read TCPv4_CLIENT: Connection timed out (WSAETIMEDOUT) (code=10060) Tue Feb 21 11:36:28 2012 Connection reset, restarting [-1] Tue Feb 21 11:36:28 2012 SIGUSR1[soft,connection-reset] received, process restarting Tue Feb 21 11:36:28 2012 MANAGEMENT: >STATE:1329816988,RECONNECTING,connection-reset,, Tue Feb 21 11:36:28 2012 Restart pause, 5 second(s) Tue Feb 21 11:36:33 2012 MANAGEMENT: CMD 'username "Auth" "openvpn"' Tue Feb 21 11:36:33 2012 MANAGEMENT: CMD 'password [...]' Tue Feb 21 11:36:33 2012 NOTE: OpenVPNAS 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables Tue Feb 21 11:36:33 2012 Control Channel Authentication: tls-auth using INLINE static key file Tue Feb 21 11:36:33 2012 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication Tue Feb 21 11:36:33 2012 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication Tue Feb 21 11:36:33 2012 Socket Buffers: R=[8192->100000] S=[8192->100000] Tue Feb 21 11:36:33 2012 Attempting to establish TCP connection with 208.67.18.35:443 Tue Feb 21 11:36:33 2012 MANAGEMENT: >STATE:1329816993,TCP_CONNECT,,, Tue Feb 21 11:36:34 2012 TCP connection established with 208.67.18.35:443 Tue Feb 21 11:36:34 2012 TCPv4_CLIENT link local: [undef] Tue Feb 21 11:36:34 2012 TCPv4_CLIENT link remote: 208.67.18.35:443 Tue Feb 21 11:36:34 2012 MANAGEMENT: >STATE:1329816994,WAIT,,, Tue Feb 21 11:36:34 2012 MANAGEMENT: >STATE:1329816994,AUTH,,, Tue Feb 21 11:36:34 2012 TLS: Initial packet from 208.67.18.35:443, sid=be95f7f3 1b3c2f98 Tue Feb 21 11:37:34 2012 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity) Tue Feb 21 11:37:34 2012 TLS Error: TLS handshake failed Tue Feb 21 11:37:34 2012 Fatal TLS error (check_tls_errors_co), restarting Tue Feb 21 11:37:34 2012 SIGUSR1[soft,tls-error] received, process restarting Tue Feb 21 11:37:34 2012 MANAGEMENT: >STATE:1329817054,RECONNECTING,tls-error,, Tue Feb 21 11:37:34 2012 Restart pause, 5 second(s) Tue Feb 21 11:37:39 2012 MANAGEMENT: CMD 'username "Auth" "openvpn"' Tue Feb 21 11:37:39 2012 MANAGEMENT: CMD 'password [...]' Tue Feb 21 11:37:39 2012 NOTE: OpenVPNAS 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables Tue Feb 21 11:37:39 2012 Control Channel Authentication: tls-auth using INLINE static key file Tue Feb 21 11:37:39 2012 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication Tue Feb 21 11:37:39 2012 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication Tue Feb 21 11:37:39 2012 Socket Buffers: R=[8192->100000] S=[8192->100000] Tue Feb 21 11:37:39 2012 Attempting to establish TCP connection with 208.67.18.35:443 Tue Feb 21 11:37:39 2012 MANAGEMENT: >STATE:1329817059,TCP_CONNECT,,, Tue Feb 21 11:37:39 2012 TCP connection established with 208.67.18.35:443 Tue Feb 21 11:37:39 2012 TCPv4_CLIENT link local: [undef] Tue Feb 21 11:37:39 2012 TCPv4_CLIENT link remote: 208.67.18.35:443 Tue Feb 21 11:37:39 2012 MANAGEMENT: >STATE:1329817059,WAIT,,, Tue Feb 21 11:37:40 2012 MANAGEMENT: >STATE:1329817060,AUTH,,, Tue Feb 21 11:37:40 2012 TLS: Initial packet from 208.67.18.35:443, sid=19ef6379 9af77edc Tue Feb 21 11:38:39 2012 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity) Tue Feb 21 11:38:39 2012 TLS Error: TLS handshake failed Tue Feb 21 11:38:39 2012 Fatal TLS error (check_tls_errors_co), restarting Tue Feb 21 11:38:39 2012 SIGUSR1[soft,tls-error] received, process restarting Tue Feb 21 11:38:39 2012 MANAGEMENT: >STATE:1329817119,RECONNECTING,tls-error,, Tue Feb 21 11:38:39 2012 Restart pause, 5 second(s) |
Is the client 208.67.18.35? The log seems to be saying that initial contact was made but there was a loss of network connectivity during authorisation.
Are there any firewalls (client or server) that could be allowing the initial connection but not subsequently allowing authorisation? |
helo,
208.67.18.35 is openvpn server. i disable the firewall on the client and also it's work normal on the system. how i can check of the problem from the centos firewall ! but as i told you the access server log show me that the client is tried to connect but no errors. thanks. |
Sorry -- I know something about OpenVPN but have no experience of OpenVPNAS. Hopefully that will not matter too much.
Just to be clear, what is the OS and IP address of the server and the client? Which were the logs from? when you wrote "i disable the firewall on the client and also it's work normal on the system" does that mean disabling the firewall on the client fixed the problem? |
the os is centos and the ip is that show above.
the firwal that is normal is the server and i desable the client firewall this log is from openvpn client. thanks. |
What is the OS and IP address of the server and the client?
|
server:
os:centos ip:208.67.18.35 Client os:windows 7 ip is an internet ip |
Thanks, that's clear now.
When you wrote "i disable the firewall on the client and also it's work normal on the system" does that mean disabling the firewall on the client fixed the problem? Is the client log from when the firewall was up or disabled? |
yes
|
hello,
i tried to connect througe ssto and use openvpn over it its work fine. so the isp is block somting how i can know it and bypass it regarding the log above? thanks, |
Quote:
|
Quote:
If it really is the ISP that is blocking the network traffic between OpenVPN client and server, they are probably blocking particular ports. I would use a packet-sniffer (such as Wireshark) on each end to see which packets are being filtered out and then look into configuring OpenVPN to use other ports. There may be a simpler way. |
regarding my last replay :
i tried to connect througe ssto and use openvpn over it its work fine. so the isp is block somting how i can know it and bypass it regarding the log above? thanks, |
Hey aminbaik, it would help me to help you if you answered my questions.
In post 16 I suggested a way of determining which ports the ISP is blocking and bypassing it. |
hello,
please understanf my problem and read this carfuly, when i tried to connect througe sstp is work and when i tried to connect normaly it's not. when i tried to connect througe private tunnel commpany it's work normal without sstp. in this case the problem is with my server configuration. private tunnel company work under portc tcp 443 and me two but i not that the they use a certifcate regarding the log. now there is the log when i am try to connect to my server: ==== Tue Feb 21 15:51:21 2012 OpenVPNAS 2.1.8OAS Win32-MSVC++ [SSL] [LZO2] built on Aug 4 2011 Tue Feb 21 15:51:21 2012 MANAGEMENT: Connected to management server at 127.0.0.1:36981 Tue Feb 21 15:51:21 2012 MANAGEMENT: CMD 'state on' Tue Feb 21 15:51:21 2012 MANAGEMENT: CMD 'echo on' Tue Feb 21 15:51:21 2012 MANAGEMENT: CMD 'bytecount 5' Tue Feb 21 15:51:21 2012 MANAGEMENT: CMD 'hold off' Tue Feb 21 15:51:21 2012 MANAGEMENT: CMD 'hold release' Tue Feb 21 15:51:21 2012 MANAGEMENT: CMD 'username "Auth" "openvpn"' Tue Feb 21 15:51:21 2012 MANAGEMENT: CMD 'password [...]' Tue Feb 21 15:51:21 2012 MANAGEMENT: CMD 'remote ACCEPT' Tue Feb 21 15:51:22 2012 NOTE: OpenVPNAS 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables Tue Feb 21 15:51:23 2012 Control Channel Authentication: tls-auth using INLINE static key file Tue Feb 21 15:51:23 2012 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication Tue Feb 21 15:51:23 2012 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication Tue Feb 21 15:51:23 2012 Socket Buffers: R=[8192->100000] S=[8192->100000] Tue Feb 21 15:51:23 2012 UDPv4 link local: [undef] Tue Feb 21 15:51:23 2012 UDPv4 link remote: 208.67.18.35:1194 Tue Feb 21 15:51:23 2012 MANAGEMENT: >STATE:1329832283,WAIT,,, Tue Feb 21 15:51:23 2012 MANAGEMENT: >STATE:1329832283,AUTH,,, Tue Feb 21 15:51:23 2012 TLS: Initial packet from 208.67.18.35:1194, sid=f0dd7fe9 8dc9f0df Tue Feb 21 15:52:23 2012 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity) Tue Feb 21 15:52:23 2012 TLS Error: TLS handshake failed Tue Feb 21 15:52:23 2012 SIGUSR1[soft,tls-error] received, process restarting Tue Feb 21 15:52:23 2012 MANAGEMENT: >STATE:1329832343,RECONNECTING,tls-error,, Tue Feb 21 15:52:23 2012 Restart pause, 2 second(s) Tue Feb 21 15:52:25 2012 MANAGEMENT: CMD 'username "Auth" "openvpn"' Tue Feb 21 15:52:25 2012 MANAGEMENT: CMD 'password [...]' Tue Feb 21 15:52:25 2012 MANAGEMENT: CMD 'remote ACCEPT' Tue Feb 21 15:52:26 2012 NOTE: OpenVPNAS 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables Tue Feb 21 15:52:26 2012 Control Channel Authentication: tls-auth using INLINE static key file Tue Feb 21 15:52:26 2012 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication Tue Feb 21 15:52:26 2012 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication Tue Feb 21 15:52:26 2012 Socket Buffers: R=[8192->100000] S=[8192->100000] Tue Feb 21 15:52:26 2012 UDPv4 link local: [undef] Tue Feb 21 15:52:26 2012 UDPv4 link remote: 208.67.18.35:1194 Tue Feb 21 15:52:26 2012 MANAGEMENT: >STATE:1329832346,WAIT,,, Tue Feb 21 15:52:26 2012 MANAGEMENT: >STATE:1329832346,AUTH,,, Tue Feb 21 15:52:26 2012 TLS: Initial packet from 208.67.18.35:1194, sid=38a690ba dc3e5627 Tue Feb 21 15:53:26 2012 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity) Tue Feb 21 15:53:26 2012 TLS Error: TLS handshake failed Tue Feb 21 15:53:26 2012 SIGUSR1[soft,tls-error] received, process restarting Tue Feb 21 15:53:26 2012 MANAGEMENT: >STATE:1329832406,RECONNECTING,tls-error,, Tue Feb 21 15:53:26 2012 Restart pause, 2 second(s) Tue Feb 21 15:53:28 2012 MANAGEMENT: CMD 'username "Auth" "openvpn"' Tue Feb 21 15:53:28 2012 MANAGEMENT: CMD 'password [...]' Tue Feb 21 15:53:28 2012 MANAGEMENT: CMD 'remote ACCEPT' Tue Feb 21 15:53:29 2012 NOTE: OpenVPNAS 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables Tue Feb 21 15:53:29 2012 Control Channel Authentication: tls-auth using INLINE static key file Tue Feb 21 15:53:29 2012 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication Tue Feb 21 15:53:29 2012 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication Tue Feb 21 15:53:29 2012 Socket Buffers: R=[8192->100000] S=[8192->100000] Tue Feb 21 15:53:29 2012 Attempting to establish TCP connection with 208.67.18.35:443 Tue Feb 21 15:53:29 2012 MANAGEMENT: >STATE:1329832409,TCP_CONNECT,,, Tue Feb 21 15:53:29 2012 TCP connection established with 208.67.18.35:443 Tue Feb 21 15:53:29 2012 TCPv4_CLIENT link local: [undef] Tue Feb 21 15:53:29 2012 TCPv4_CLIENT link remote: 208.67.18.35:443 Tue Feb 21 15:53:29 2012 MANAGEMENT: >STATE:1329832409,WAIT,,, Tue Feb 21 15:53:29 2012 MANAGEMENT: >STATE:1329832409,AUTH,,, Tue Feb 21 15:53:29 2012 TLS: Initial packet from 208.67.18.35:443, sid=a3f67d87 22e47db4 Tue Feb 21 15:54:18 2012 read TCPv4_CLIENT: Connection timed out (WSAETIMEDOUT) (code=10060) Tue Feb 21 15:54:18 2012 Connection reset, restarting [-1] Tue Feb 21 15:54:18 2012 SIGUSR1[soft,connection-reset] received, process restarting Tue Feb 21 15:54:18 2012 MANAGEMENT: >STATE:1329832458,RECONNECTING,connection-reset,, Tue Feb 21 15:54:18 2012 Restart pause, 5 second(s) Tue Feb 21 15:54:23 2012 MANAGEMENT: CMD 'username "Auth" "openvpn"' Tue Feb 21 15:54:23 2012 MANAGEMENT: CMD 'password [...]' Tue Feb 21 15:54:23 2012 MANAGEMENT: CMD 'remote ACCEPT' Tue Feb 21 15:54:24 2012 NOTE: OpenVPNAS 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables Tue Feb 21 15:54:24 2012 Control Channel Authentication: tls-auth using INLINE static key file Tue Feb 21 15:54:24 2012 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication Tue Feb 21 15:54:24 2012 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication Tue Feb 21 15:54:24 2012 Socket Buffers: R=[8192->100000] S=[8192->100000] Tue Feb 21 15:54:24 2012 UDPv4 link local: [undef] Tue Feb 21 15:54:24 2012 UDPv4 link remote: 208.67.18.35:1194 Tue Feb 21 15:54:24 2012 MANAGEMENT: >STATE:1329832464,WAIT,,, Tue Feb 21 15:54:25 2012 MANAGEMENT: >STATE:1329832465,AUTH,,, Tue Feb 21 15:54:25 2012 TLS: Initial packet from 208.67.18.35:1194, sid=5d7efec5 d86fdf83 Tue Feb 21 15:55:24 2012 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity) Tue Feb 21 15:55:24 2012 TLS Error: TLS handshake failed Tue Feb 21 15:55:24 2012 SIGUSR1[soft,tls-error] received, process restarting Tue Feb 21 15:55:24 2012 MANAGEMENT: >STATE:1329832524,RECONNECTING,tls-error,, Tue Feb 21 15:55:24 2012 Restart pause, 2 second(s) Tue Feb 21 15:55:26 2012 MANAGEMENT: CMD 'username "Auth" "openvpn"' Tue Feb 21 15:55:26 2012 MANAGEMENT: CMD 'password [...]' Tue Feb 21 15:55:26 2012 MANAGEMENT: CMD 'remote ACCEPT' Tue Feb 21 15:55:27 2012 NOTE: OpenVPNAS 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables Tue Feb 21 15:55:27 2012 Control Channel Authentication: tls-auth using INLINE static key file Tue Feb 21 15:55:27 2012 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication Tue Feb 21 15:55:27 2012 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication Tue Feb 21 15:55:27 2012 Socket Buffers: R=[8192->100000] S=[8192->100000] Tue Feb 21 15:55:27 2012 UDPv4 link local: [undef] Tue Feb 21 15:55:27 2012 UDPv4 link remote: 208.67.18.35:1194 Tue Feb 21 15:55:27 2012 MANAGEMENT: >STATE:1329832527,WAIT,,, Tue Feb 21 15:55:28 2012 MANAGEMENT: >STATE:1329832528,AUTH,,, Tue Feb 21 15:55:28 2012 TLS: Initial packet from 208.67.18.35:1194, sid=a27753c0 fb1c2706 ==== and this when i try to connect to private-tunnel server: ===== Tue Feb 21 18:54:58 2012 OpenVPNAS 2.1.18OAS Win32-MSVC++ [SSL] [LZO2] built on Nov 12 2011 Tue Feb 21 18:54:58 2012 MANAGEMENT: Connected to management server at 127.0.0.1:33050 Tue Feb 21 18:54:58 2012 MANAGEMENT: CMD 'state on' Tue Feb 21 18:54:58 2012 MANAGEMENT: CMD 'echo on' Tue Feb 21 18:54:58 2012 MANAGEMENT: CMD 'bytecount 1' Tue Feb 21 18:54:58 2012 MANAGEMENT: CMD 'hold off' Tue Feb 21 18:54:58 2012 MANAGEMENT: CMD 'hold release' Tue Feb 21 18:54:58 2012 MANAGEMENT: CMD 'remote ACCEPT' Tue Feb 21 18:54:59 2012 NOTE: OpenVPNAS 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables Tue Feb 21 18:54:59 2012 Control Channel Authentication: tls-auth using INLINE static key file Tue Feb 21 18:54:59 2012 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication Tue Feb 21 18:54:59 2012 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication Tue Feb 21 18:54:59 2012 Socket Buffers: R=[8192->100000] S=[8192->100000] Tue Feb 21 18:54:59 2012 MANAGEMENT: >STATE:1329843299,RESOLVE,,, Tue Feb 21 18:54:59 2012 UDPv4 link local: [undef] Tue Feb 21 18:54:59 2012 UDPv4 link remote: 69.46.69.194:1194 Tue Feb 21 18:54:59 2012 MANAGEMENT: >STATE:1329843299,WAIT,,, Tue Feb 21 18:55:00 2012 MANAGEMENT: >STATE:1329843300,AUTH,,, Tue Feb 21 18:55:00 2012 TLS: Initial packet from 69.46.69.194:1194, sid=5dfc45c7 256914a7 Tue Feb 21 18:55:59 2012 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity) Tue Feb 21 18:55:59 2012 TLS Error: TLS handshake failed Tue Feb 21 18:55:59 2012 SIGUSR1[soft,tls-error] received, process restarting Tue Feb 21 18:55:59 2012 MANAGEMENT: >STATE:1329843359,RECONNECTING,tls-error,, Tue Feb 21 18:55:59 2012 Restart pause, 10 second(s) Tue Feb 21 18:56:09 2012 MANAGEMENT: CMD 'remote ACCEPT' Tue Feb 21 18:56:10 2012 NOTE: OpenVPNAS 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables Tue Feb 21 18:56:10 2012 Control Channel Authentication: tls-auth using INLINE static key file Tue Feb 21 18:56:10 2012 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication Tue Feb 21 18:56:10 2012 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication Tue Feb 21 18:56:10 2012 Socket Buffers: R=[8192->100000] S=[8192->100000] Tue Feb 21 18:56:10 2012 MANAGEMENT: >STATE:1329843370,RESOLVE,,, Tue Feb 21 18:56:10 2012 UDPv4 link local: [undef] Tue Feb 21 18:56:10 2012 UDPv4 link remote: 69.46.69.194:1194 Tue Feb 21 18:56:10 2012 MANAGEMENT: >STATE:1329843370,WAIT,,, Tue Feb 21 18:56:12 2012 MANAGEMENT: >STATE:1329843372,AUTH,,, Tue Feb 21 18:56:12 2012 TLS: Initial packet from 69.46.69.194:1194, sid=dbc6ba57 5a135245 Tue Feb 21 18:57:10 2012 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity) Tue Feb 21 18:57:10 2012 TLS Error: TLS handshake failed Tue Feb 21 18:57:10 2012 SIGUSR1[soft,tls-error] received, process restarting Tue Feb 21 18:57:10 2012 MANAGEMENT: >STATE:1329843430,RECONNECTING,tls-error,, Tue Feb 21 18:57:10 2012 Restart pause, 10 second(s) Tue Feb 21 18:57:20 2012 MANAGEMENT: CMD 'remote ACCEPT' Tue Feb 21 18:57:21 2012 NOTE: OpenVPNAS 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables Tue Feb 21 18:57:21 2012 Control Channel Authentication: tls-auth using INLINE static key file Tue Feb 21 18:57:21 2012 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication Tue Feb 21 18:57:21 2012 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication Tue Feb 21 18:57:21 2012 Socket Buffers: R=[8192->100000] S=[8192->100000] Tue Feb 21 18:57:21 2012 MANAGEMENT: >STATE:1329843441,RESOLVE,,, Tue Feb 21 18:57:21 2012 Attempting to establish TCP connection with 69.46.69.194:443 Tue Feb 21 18:57:21 2012 MANAGEMENT: >STATE:1329843441,TCP_CONNECT,,, Tue Feb 21 18:57:23 2012 TCP connection established with 69.46.69.194:443 Tue Feb 21 18:57:23 2012 TCPv4_CLIENT link local: [undef] Tue Feb 21 18:57:23 2012 TCPv4_CLIENT link remote: 69.46.69.194:443 Tue Feb 21 18:57:23 2012 MANAGEMENT: >STATE:1329843443,WAIT,,, Tue Feb 21 18:57:25 2012 MANAGEMENT: >STATE:1329843445,AUTH,,, Tue Feb 21 18:57:25 2012 TLS: Initial packet from 69.46.69.194:443, sid=6aa870f3 be15f13d Tue Feb 21 18:57:30 2012 VERIFY OK: depth=1, /CN=OpenVPN_CA Tue Feb 21 18:57:30 2012 VERIFY OK: nsCertType=SERVER Tue Feb 21 18:57:30 2012 VERIFY OK: depth=0, /CN=OpenVPN_Server Tue Feb 21 18:57:45 2012 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key Tue Feb 21 18:57:45 2012 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication Tue Feb 21 18:57:45 2012 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key Tue Feb 21 18:57:45 2012 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication Tue Feb 21 18:57:45 2012 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA Tue Feb 21 18:57:45 2012 [OpenVPN_Server] Peer Connection Initiated with 69.46.69.194:443 Tue Feb 21 18:57:46 2012 MANAGEMENT: >STATE:1329843466,GET_CONFIG,,, Tue Feb 21 18:57:47 2012 SENT CONTROL [OpenVPN_Server]: 'PUSH_REQUEST' (status=1) Tue Feb 21 18:57:51 2012 PUSH: Received control message: 'PUSH_REPLY,explicit-exit-notify,topology subnet,route-delay 5 30,dhcp-pre-release,dhcp-renew,dhcp-release,route-metric 101,ping 5,ping-restart 40,socket-flags TCP_NODELAY,redirect-gateway def1,redirect-gateway bypass-dhcp,redirect-gateway autolocal,route-gateway 5.5.0.1,dhcp-option DNS 8.8.8.8,dhcp-option DNS 8.8.4.4,register-dns,comp-lzo yes,ifconfig 5.5.96.130 255.255.0.0' Tue Feb 21 18:57:51 2012 OPTIONS IMPORT: timers and/or timeouts modified Tue Feb 21 18:57:51 2012 OPTIONS IMPORT: --explicit-exit-notify can only be used with --proto udp Tue Feb 21 18:57:51 2012 OPTIONS IMPORT: LZO parms modified Tue Feb 21 18:57:51 2012 OPTIONS IMPORT: --socket-flags option modified Tue Feb 21 18:57:51 2012 Socket flags: TCP_NODELAY=1 succeeded Tue Feb 21 18:57:51 2012 OPTIONS IMPORT: --ifconfig/up options modified Tue Feb 21 18:57:51 2012 OPTIONS IMPORT: route options modified Tue Feb 21 18:57:51 2012 OPTIONS IMPORT: route-related options modified Tue Feb 21 18:57:51 2012 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified Tue Feb 21 18:57:51 2012 ROUTE_GATEWAY 192.168.1.1/255.255.255.0 I=14 HWADDR=48:5d:60:a7:d6:49 Tue Feb 21 18:57:51 2012 MANAGEMENT: >STATE:1329843471,ASSIGN_IP,,5.5.96.130, Tue Feb 21 18:57:51 2012 TAP-WIN32 device [Local Area Connection 2] opened: \\.\Global\{F338B583-02ED-42E3-BBBA-299FF986C83B}.tap Tue Feb 21 18:57:51 2012 TAP-Win32 Driver Version 9.7 Tue Feb 21 18:57:51 2012 Set TAP-Win32 TUN subnet mode network/local/netmask = 5.5.0.0/5.5.96.130/255.255.0.0 [SUCCEEDED] Tue Feb 21 18:57:51 2012 Notified TAP-Win32 driver to set a DHCP IP/netmask of 5.5.96.130/255.255.0.0 on interface {F338B583-02ED-42E3-BBBA-299FF986C83B} [DHCP-serv: 5.5.0.1, lease-time: 31536000] Tue Feb 21 18:57:51 2012 Successful ARP Flush on interface [22] {F338B583-02ED-42E3-BBBA-299FF986C83B} Tue Feb 21 18:57:55 2012 TAP: DHCP address released Tue Feb 21 18:57:59 2012 TAP: DHCP address renewal succeeded Tue Feb 21 18:58:04 2012 TEST ROUTES: 1/1 succeeded len=0 ret=1 a=0 u/d=up Tue Feb 21 18:58:04 2012 ROUTE remote_host is NOT LOCAL Tue Feb 21 18:58:04 2012 C:\Windows\system32\route.exe ADD 69.46.69.194 MASK 255.255.255.255 192.168.1.1 Tue Feb 21 18:58:04 2012 ROUTE: CreateIpForwardEntry succeeded with dwForwardMetric1=25 and dwForwardType=4 Tue Feb 21 18:58:04 2012 Route addition via IPAPI succeeded [adaptive] Tue Feb 21 18:58:04 2012 C:\Windows\system32\route.exe ADD 0.0.0.0 MASK 128.0.0.0 5.5.0.1 Tue Feb 21 18:58:04 2012 ROUTE: CreateIpForwardEntry succeeded with dwForwardMetric1=30 and dwForwardType=4 Tue Feb 21 18:58:04 2012 Route addition via IPAPI succeeded [adaptive] Tue Feb 21 18:58:04 2012 C:\Windows\system32\route.exe ADD 128.0.0.0 MASK 128.0.0.0 5.5.0.1 Tue Feb 21 18:58:04 2012 ROUTE: CreateIpForwardEntry succeeded with dwForwardMetric1=30 and dwForwardType=4 Tue Feb 21 18:58:04 2012 Route addition via IPAPI succeeded [adaptive] Tue Feb 21 18:58:04 2012 Initialization Sequence Completed Tue Feb 21 18:58:04 2012 MANAGEMENT: >STATE:1329843484,CONNECTED,SUCCESS,5.5.96.130,69.46.69.194 Tue Feb 21 18:58:04 2012 Start net commands... Tue Feb 21 18:58:04 2012 C:\WINDOWS\system32\net.exe stop dnscache The DNS Client service is stopping. The DNS Client service could not be stopped. Tue Feb 21 18:58:07 2012 C:\WINDOWS\system32\net.exe start dnscache The requested service has already been started. More help is available by typing NET HELPMSG 2182. Tue Feb 21 18:58:07 2012 ERROR: Windows ipconfig command failed: returned error code 2 Tue Feb 21 18:58:07 2012 C:\WINDOWS\system32\ipconfig.exe /flushdns Windows IP Configuration Successfully flushed the DNS Resolver Cache. Tue Feb 21 18:58:07 2012 C:\WINDOWS\system32\ipconfig.exe /registerdns Windows IP Configuration Registration of the DNS resource records for all adapters of this computer has been initiated. Any errors will be reported in the Event Viewer in 15 minutes. Tue Feb 21 18:58:10 2012 End net commands... Tue Feb 21 19:04:25 2012 MANAGEMENT: CMD 'exit' Tue Feb 21 19:04:25 2012 MANAGEMENT: Client disconnected Tue Feb 21 19:04:25 2012 MANAGEMENT: Triggering management exit Tue Feb 21 19:04:25 2012 C:\Windows\system32\route.exe DELETE 69.46.69.194 MASK 255.255.255.255 192.168.1.1 Tue Feb 21 19:04:25 2012 Route deletion via IPAPI succeeded [adaptive] Tue Feb 21 19:04:25 2012 C:\Windows\system32\route.exe DELETE 0.0.0.0 MASK 128.0.0.0 5.5.0.1 Tue Feb 21 19:04:25 2012 Route deletion via IPAPI succeeded [adaptive] Tue Feb 21 19:04:25 2012 C:\Windows\system32\route.exe DELETE 128.0.0.0 MASK 128.0.0.0 5.5.0.1 Tue Feb 21 19:04:25 2012 Route deletion via IPAPI succeeded [adaptive] Tue Feb 21 19:04:25 2012 Closing TUN/TAP interface Tue Feb 21 19:04:25 2012 TAP: DHCP address released Tue Feb 21 19:04:25 2012 SIGTERM[soft,management-exit] received, process exiting Tue Feb 21 19:04:25 2012 MANAGEMENT: >STATE:1329843865,EXITING,management-exit,, ===== as you see that there is a deferent with a certficae issue. so what do u think? please not that the two servers are work under same ports. |
All times are GMT -5. The time now is 03:49 PM. |