Hello
I try to connect to my server (whose IP is x.x.x.x below) from my laptop.
I have no idea why openvpn client won't work this time. It works fine in win7 before.
I re-installed openvpn but it doesn't work neither.
Then I searched for this issue, find that it is possibly caused by disabled DHCP Client service. I checked, and found it was enabled. Still won't work after restarting dhcp client service.
Basic Info:
OS: Windows 7
OpenVPN client: openvpn-2.2.0
DHCP Client Service started.
The following is the log during connecting:
Code:
Wed Jun 08 01:55:16 2011 OpenVPN 2.2.0 Win32-MSVC++ [SSL] [LZO2] built on Apr 26 2011
Wed Jun 08 01:55:16 2011 IMPORTANT: OpenVPN's default port number is now 1194, based on an official port number assignment by IANA. OpenVPN 2.0-beta16 and earlier used 5000 as the default port.
Wed Jun 08 01:55:16 2011 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Wed Jun 08 01:55:16 2011 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Wed Jun 08 01:55:17 2011 LZO compression initialized
Wed Jun 08 01:55:17 2011 Control Channel MTU parms [ L:1562 D:138 EF:38 EB:0 ET:0 EL:0 ]
Wed Jun 08 01:55:17 2011 Socket Buffers: R=[8192->20480] S=[8192->20480]
Wed Jun 08 01:55:17 2011 Data Channel MTU parms [ L:1562 D:1450 EF:62 EB:135 ET:0 EL:0 AF:3/1 ]
Wed Jun 08 01:55:17 2011 Fragmentation MTU parms [ L:1562 D:1300 EF:61 EB:135 ET:1 EL:0 AF:3/1 ]
Wed Jun 08 01:55:17 2011 Local Options hash (VER=V4): 'caff5189'
Wed Jun 08 01:55:17 2011 Expected Remote Options hash (VER=V4): '43a81564'
Wed Jun 08 01:55:17 2011 UDPv4 link local (bound): [undef]:1194
Wed Jun 08 01:55:17 2011 UDPv4 link remote: x.x.x.x:1194
Wed Jun 08 01:55:17 2011 TLS: Initial packet from x.x.x.x:1194, sid=01fe45c9 100c0279
Wed Jun 08 01:55:19 2011 VERIFY OK: depth=1, /C=US/ST=CA/L=SanFrancisco/O=sisca.info/CN=sisca.info_CA/emailAddress=lesca4on@gmail.com
Wed Jun 08 01:55:19 2011 VERIFY OK: depth=0, /C=US/ST=CA/L=SanFrancisco/O=sisca.info/CN=server/emailAddress=lesca4on@gmail.com
Wed Jun 08 01:55:22 2011 Data Channel Encrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
Wed Jun 08 01:55:22 2011 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Wed Jun 08 01:55:22 2011 Data Channel Decrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
Wed Jun 08 01:55:22 2011 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Wed Jun 08 01:55:22 2011 Control Channel: TLSv1, cipher TLSv1/SSLv3 AES256-SHA, 1024 bit RSA
Wed Jun 08 01:55:22 2011 [server] Peer Connection Initiated with x.x.x.x:1194
Wed Jun 08 01:55:24 2011 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
Wed Jun 08 01:55:24 2011 PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1 bypass-dhcp,dhcp-option DNS 8.8.8.8,route 10.8.0.0 255.255.255.0,topology net30,ping 10,ping-restart 120,ifconfig 10.8.0.6 10.8.0.5'
Wed Jun 08 01:55:24 2011 OPTIONS IMPORT: timers and/or timeouts modified
Wed Jun 08 01:55:24 2011 OPTIONS IMPORT: --ifconfig/up options modified
Wed Jun 08 01:55:24 2011 OPTIONS IMPORT: route options modified
Wed Jun 08 01:55:24 2011 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Wed Jun 08 01:55:24 2011 ROUTE default_gateway=121.227.163.97
Wed Jun 08 01:55:24 2011 TAP-WIN32 device [本地连接 2] opened: \\.\Global\{BE9F489A-9DEA-469A-8B33-6B56AA69DDB9}.tap
Wed Jun 08 01:55:24 2011 TAP-Win32 Driver Version 9.8
Wed Jun 08 01:55:24 2011 TAP-Win32 MTU=1500
Wed Jun 08 01:55:24 2011 Notified TAP-Win32 driver to set a DHCP IP/netmask of 10.8.0.6/255.255.255.252 on interface {BE9F489A-9DEA-469A-8B33-6B56AA69DDB9} [DHCP-serv: 10.8.0.5, lease-time: 31536000]
Wed Jun 08 01:55:24 2011 Successful ARP Flush on interface [31] {BE9F489A-9DEA-469A-8B33-6B56AA69DDB9}
Wed Jun 08 01:55:29 2011 TEST ROUTES: 0/0 succeeded len=1 ret=0 a=0 u/d=down
Wed Jun 08 01:55:29 2011 Route: Waiting for TUN/TAP interface to come up...
<...Repeats tens of times...>
Wed Jun 08 01:55:58 2011 Route: Waiting for TUN/TAP interface to come up...
Wed Jun 08 01:55:59 2011 TEST ROUTES: 0/0 succeeded len=1 ret=0 a=0 u/d=down
Wed Jun 08 01:55:59 2011 C:\WINDOWS\system32\route.exe ADD x.x.x.x MASK 255.255.255.255 121.227.163.97
Wed Jun 08 01:55:59 2011 ROUTE: CreateIpForwardEntry succeeded with dwForwardMetric1=20 and dwForwardType=4
Wed Jun 08 01:55:59 2011 Route addition via IPAPI succeeded [adaptive]
Wed Jun 08 01:55:59 2011 C:\WINDOWS\system32\route.exe ADD 0.0.0.0 MASK 128.0.0.0 10.8.0.5
Wed Jun 08 01:55:59 2011 Warning: route gateway is not reachable on any active network adapters: 10.8.0.5
Wed Jun 08 01:55:59 2011 Route addition via IPAPI failed [adaptive]
Wed Jun 08 01:55:59 2011 Route addition fallback to route.exe
操作完成!
Wed Jun 08 01:55:59 2011 C:\WINDOWS\system32\route.exe ADD 128.0.0.0 MASK 128.0.0.0 10.8.0.5
Wed Jun 08 01:55:59 2011 Warning: route gateway is not reachable on any active network adapters: 10.8.0.5
Wed Jun 08 01:55:59 2011 Route addition via IPAPI failed [adaptive]
Wed Jun 08 01:55:59 2011 Route addition fallback to route.exe
操作完成!
Wed Jun 08 01:55:59 2011 C:\WINDOWS\system32\route.exe ADD 10.8.0.0 MASK 255.255.255.0 10.8.0.5
Wed Jun 08 01:55:59 2011 Warning: route gateway is not reachable on any active network adapters: 10.8.0.5
Wed Jun 08 01:55:59 2011 Route addition via IPAPI failed [adaptive]
Wed Jun 08 01:55:59 2011 Route addition fallback to route.exe
操作完成!
SYSTEM ROUTING TABLE
0.0.0.0 0.0.0.0 121.227.163.97 p=0 i=34 t=3 pr=3 a=593 h=0 m=21/0/0/0/0
0.0.0.0 128.0.0.0 10.8.0.5 p=0 i=34 t=4 pr=3 a=0 h=0 m=21/0/0/0/0
10.8.0.0 255.255.255.0 10.8.0.5 p=0 i=34 t=4 pr=3 a=0 h=0 m=21/0/0/0/0
121.227.163.97 255.255.255.255 121.227.163.97 p=0 i=34 t=3 pr=3 a=593 h=0 m=276/0/0/0/0
127.0.0.0 255.0.0.0 127.0.0.1 p=0 i=1 t=3 pr=3 a=756 h=0 m=4531/0/0/0/0
127.0.0.1 255.255.255.255 127.0.0.1 p=0 i=1 t=3 pr=3 a=756 h=0 m=4531/0/0/0/0
127.255.255.255 255.255.255.255 127.0.0.1 p=0 i=1 t=3 pr=3 a=756 h=0 m=4531/0/0/0/0
128.0.0.0 128.0.0.0 10.8.0.5 p=0 i=34 t=4 pr=3 a=0 h=0 m=21/0/0/0/0
169.254.0.0 255.255.0.0 169.254.170.211 p=0 i=11 t=3 pr=3 a=677 h=0 m=4501/0/0/0/0
169.254.0.0 255.255.0.0 169.254.101.128 p=0 i=31 t=3 pr=3 a=560 h=0 m=4511/0/0/0/0
169.254.101.128 255.255.255.255 169.254.101.128 p=0 i=31 t=3 pr=3 a=560 h=0 m=4511/0/0/0/0
169.254.170.211 255.255.255.255 169.254.170.211 p=0 i=11 t=3 pr=3 a=677 h=0 m=4501/0/0/0/0
169.254.255.255 255.255.255.255 169.254.170.211 p=0 i=11 t=3 pr=3 a=677 h=0 m=4501/0/0/0/0
169.254.255.255 255.255.255.255 169.254.101.128 p=0 i=31 t=3 pr=3 a=560 h=0 m=4511/0/0/0/0
x.x.x.x 255.255.255.255 121.227.163.97 p=0 i=34 t=3 pr=3 a=0 h=0 m=20/0/0/0/0
224.0.0.0 240.0.0.0 127.0.0.1 p=0 i=1 t=3 pr=3 a=756 h=0 m=4531/0/0/0/0
224.0.0.0 240.0.0.0 169.254.170.211 p=0 i=11 t=3 pr=3 a=748 h=0 m=4502/0/0/0/0
224.0.0.0 240.0.0.0 169.254.101.128 p=0 i=31 t=3 pr=3 a=623 h=0 m=4511/0/0/0/0
224.0.0.0 240.0.0.0 121.227.163.97 p=0 i=34 t=3 pr=3 a=593 h=0 m=21/0/0/0/0
255.255.255.255 255.255.255.255 127.0.0.1 p=0 i=1 t=3 pr=3 a=756 h=0 m=4531/0/0/0/0
255.255.255.255 255.255.255.255 169.254.170.211 p=0 i=11 t=3 pr=3 a=748 h=0 m=4501/0/0/0/0
255.255.255.255 255.255.255.255 169.254.101.128 p=0 i=31 t=3 pr=3 a=623 h=0 m=4511/0/0/0/0
255.255.255.255 255.255.255.255 121.227.163.97 p=0 i=34 t=3 pr=3 a=593 h=0 m=276/0/0/0/0
SYSTEM ADAPTER LIST
szsq
Index = 34
GUID = {B160C660-5C42-4FFD-86B1-2E631C62A9AB}
IP = 121.227.163.97/255.255.255.255
MAC =
GATEWAY = 0.0.0.0/255.255.255.255
DNS SERV = 61.177.7.1/255.255.255.255 221.228.255.1/255.255.255.255
TAP-Win32 Adapter V9
Index = 31
GUID = {BE9F489A-9DEA-469A-8B33-6B56AA69DDB9}
IP = 169.254.101.128/255.255.0.0 <== This IP is strange, it should be 10.8.0.x
MAC = 00:ff:be:9f:48:9a
GATEWAY = 0.0.0.0/255.255.255.255
DHCP SERV = 0.0.0.0/255.255.255.255
DHCP LEASE OBTAINED = Wed Jun 08 01:56:00 2011
DHCP LEASE EXPIRES = Thu Jan 01 08:00:00 1970
DNS SERV =
Broadcom NetLink (TM) Fast Ethernet
Index = 11
GUID = {AC637E48-D141-41A1-AD5E-8CE8E609CA86}
IP = 169.254.170.211/255.255.0.0
MAC = 00:26:22:04:b9:7b
GATEWAY = 0.0.0.0/255.255.255.255
DHCP SERV = 0.0.0.0/255.255.255.255
DHCP LEASE OBTAINED = Wed Jun 08 01:56:00 2011
DHCP LEASE EXPIRES = Thu Jan 01 08:00:00 1970
DNS SERV =
Wed Jun 08 01:56:00 2011 Initialization Sequence Completed With Errors ( see http://openvpn.net/faq.html#dhcpclientserv )
Client End Configure File:
(It works fine on Ubuntu.)
Code:
client
remote x.x.x.x 1194
dev tun
comp-lzo
comp-noadapt
mute-replay-warnings
ca ca.crt
cert lesca.crt
key lesca.key
cipher AES-256-CBC
tls-cipher AES256-SHA
keysize 256
fragment 1300
sndbuf 20480
rcvbuf 20480
verb 3
Any help is welcome!
Thanks!