API tools faq
paste
Advertisement
Guest User

Sophos Log

a guest
Jun 24th, 2016
67
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 31.86 KB | None | 0 0
raw download clone embed print report
  1. 2016:06:24-17:06:56 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43344 Connection reset, restarting [0]
  2. 2016:06:24-17:06:56 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43344 SIGUSR1[soft,connection-reset] received, client-instance restarting
  3. 2016:06:24-17:06:56 utm-2 openvpn[25983]: id="2204" severity="info" sys="SecureNet" sub="vpn" event="Site-to-site VPN down" variant="ssl" connection="REF_SslSerXXX" address="217.xxx.xxx.xxx"
  4. 2016:06:24-17:06:56 utm-2 openvpn[25983]: PLUGIN_CALL: POST /usr/lib/openvpn/plugins/openvpn-plugin-utm.so/PLUGIN_CLIENT_DISCONNECT status=0
  5. 2016:06:24-17:06:56 utm-2 openvpn[25983]: TCP/UDP: Closing socket
  6. 2016:06:24-17:06:56 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:38481 TCPv4_SERVER READ [133] from [AF_INET]37.xxx.xxx.xxx:38481 (via [AF_INET]217.xxx.xxx.xxx:443): P_DATA_V1 kid=0 DATA len=132
  7. 2016:06:24-17:06:56 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:38481 IP packet with unknown IP version=15 seen
  8. 2016:06:24-17:06:57 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:38481 TCPv4_SERVER READ [133] from [AF_INET]37.xxx.xxx.xxx:38481 (via [AF_INET]217.xxx.xxx.xxx:443): P_DATA_V1 kid=0 DATA len=132
  9. 2016:06:24-17:06:57 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:38481 IP packet with unknown IP version=15 seen
  10. 2016:06:24-17:06:58 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:38481 TCPv4_SERVER READ [85] from [AF_INET]37.xxx.xxx.xxx:38481 (via [AF_INET]217.xxx.xxx.xxx:443): P_DATA_V1 kid=0 DATA len=84
  11. 2016:06:24-17:06:58 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:38481 IP packet with unknown IP version=15 seen
  12. 2016:06:24-17:06:58 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:38481 TCPv4_SERVER READ [133] from [AF_INET]37.xxx.xxx.xxx:38481 (via [AF_INET]217.xxx.xxx.xxx:443): P_DATA_V1 kid=0 DATA len=132
  13. 2016:06:24-17:06:58 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:38481 IP packet with unknown IP version=15 seen
  14. 2016:06:24-17:06:59 utm-2 openvpn[25983]: MULTI: multi_create_instance called
  15. 2016:06:24-17:06:59 utm-2 openvpn[25983]: Re-using SSL/TLS context
  16. 2016:06:24-17:06:59 utm-2 openvpn[25983]: LZO compression initialized
  17. 2016:06:24-17:06:59 utm-2 openvpn[25983]: Control Channel MTU parms [ L:1560 D:1210 EF:40 EB:0 ET:0 EL:3 ]
  18. 2016:06:24-17:06:59 utm-2 openvpn[25983]: Data Channel MTU parms [ L:1560 D:1450 EF:60 EB:143 ET:0 EL:3 AF:3/1 ]
  19. 2016:06:24-17:06:59 utm-2 openvpn[25983]: Local Options String: 'V4,dev-type tun,link-mtu 1560,tun-mtu 1500,proto TCPv4_SERVER,comp-lzo,cipher AES-128-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
  20. 2016:06:24-17:06:59 utm-2 openvpn[25983]: Expected Remote Options String: 'V4,dev-type tun,link-mtu 1560,tun-mtu 1500,proto TCPv4_CLIENT,comp-lzo,cipher AES-128-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
  21. 2016:06:24-17:06:59 utm-2 openvpn[25983]: Local Options hash (VER=V4): 'b695cb4a'
  22. 2016:06:24-17:06:59 utm-2 openvpn[25983]: Expected Remote Options hash (VER=V4): 'bc07730e'
  23. 2016:06:24-17:06:59 utm-2 openvpn[25983]: TCP connection established with [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443)
  24. 2016:06:24-17:06:59 utm-2 openvpn[25983]: TCPv4_SERVER link local: [undef]
  25. 2016:06:24-17:06:59 utm-2 openvpn[25983]: TCPv4_SERVER link remote: [AF_INET]37.xxx.xxx.xxx:43345
  26. 2016:06:24-17:06:59 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:38481 TCPv4_SERVER READ [133] from [AF_INET]37.xxx.xxx.xxx:38481 (via [AF_INET]217.xxx.xxx.xxx:443): P_DATA_V1 kid=0 DATA len=132
  27. 2016:06:24-17:06:59 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:38481 IP packet with unknown IP version=15 seen
  28. 2016:06:24-17:07:00 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:43345 TCPv4_SERVER READ [14] from [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443): P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
  29. 2016:06:24-17:07:00 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:43345 TLS: Initial packet from [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443), sid=feaac6e7 e56c8ab4
  30. 2016:06:24-17:07:00 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:43345 TCPv4_SERVER WRITE [26] to [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443): P_CONTROL_HARD_RESET_SERVER_V2 kid=0 [ 0 ] pid=0 DATA len=0
  31. 2016:06:24-17:07:00 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:43345 TCPv4_SERVER READ [22] from [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443): P_ACK_V1 kid=0 [ 0 ]
  32. 2016:06:24-17:07:00 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:43345 TCPv4_SERVER READ [283] from [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443): P_CONTROL_V1 kid=0 [ ] pid=1 DATA len=269
  33. 2016:06:24-17:07:00 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:43345 TCPv4_SERVER WRITE [1196] to [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443): P_CONTROL_V1 kid=0 [ 1 ] pid=1 DATA len=1170
  34. 2016:06:24-17:07:00 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:43345 TCPv4_SERVER WRITE [1184] to [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443): P_CONTROL_V1 kid=0 [ ] pid=2 DATA len=1170
  35. 2016:06:24-17:07:00 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:43345 TCPv4_SERVER WRITE [576] to [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443): P_CONTROL_V1 kid=0 [ ] pid=3 DATA len=562
  36. 2016:06:24-17:07:00 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:43345 TCPv4_SERVER READ [22] from [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443): P_ACK_V1 kid=0 [ 1 ]
  37. 2016:06:24-17:07:00 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:43345 TCPv4_SERVER READ [22] from [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443): P_ACK_V1 kid=0 [ 2 ]
  38. 2016:06:24-17:07:00 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:38481 TCPv4_SERVER READ [133] from [AF_INET]37.xxx.xxx.xxx:38481 (via [AF_INET]217.xxx.xxx.xxx:443): P_DATA_V1 kid=0 DATA len=132
  39. 2016:06:24-17:07:00 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:38481 IP packet with unknown IP version=15 seen
  40. 2016:06:24-17:07:01 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:43345 TCPv4_SERVER READ [1196] from [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443): P_CONTROL_V1 kid=0 [ 3 ] pid=2 DATA len=1170
  41. 2016:06:24-17:07:01 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:43345 TCPv4_SERVER WRITE [22] to [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443): P_ACK_V1 kid=0 [ 2 ]
  42. 2016:06:24-17:07:01 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:43345 TCPv4_SERVER READ [1184] from [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443): P_CONTROL_V1 kid=0 [ ] pid=3 DATA len=1170
  43. 2016:06:24-17:07:01 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:43345 VERIFY OK: depth=0, C=de, L=Hattingen, O=XXX, CN=REF_SslSerXXX
  44. 2016:06:24-17:07:01 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:43345 VERIFY OK: depth=1, C=de, L=Hattingen, O=XXX, CN=XXX VPN CA, emailAddress=edv@XXX.com
  45. 2016:06:24-17:07:01 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:43345 VERIFY OK: depth=1, C=de, L=Hattingen, O=XXX, CN=XXX VPN CA, emailAddress=edv@XXX.com
  46. 2016:06:24-17:07:01 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:43345 VERIFY OK: depth=0, C=de, L=Hattingen, O=XXX, CN=REF_SslSerXXX
  47. 2016:06:24-17:07:01 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:43345 TCPv4_SERVER WRITE [22] to [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443): P_ACK_V1 kid=0 [ 3 ]
  48. 2016:06:24-17:07:01 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:43345 TCPv4_SERVER READ [293] from [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443): P_CONTROL_V1 kid=0 [ ] pid=4 DATA len=279
  49. 2016:06:24-17:07:01 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:43345 TCPv4_SERVER WRITE [77] to [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443): P_CONTROL_V1 kid=0 [ 4 ] pid=4 DATA len=51
  50. 2016:06:24-17:07:01 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:43345 TCPv4_SERVER READ [403] from [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443): P_CONTROL_V1 kid=0 [ 4 ] pid=5 DATA len=377
  51. 2016:06:24-17:07:01 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:43345 PLUGIN_CALL: POST /usr/lib/openvpn/plugins/openvpn-plugin-utm.so/PLUGIN_AUTH_USER_PASS_VERIFY status=2
  52. 2016:06:24-17:07:01 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:43345 TLS: Username/Password authentication deferred for username 'REF_AaaUse1' [CN SET]
  53. 2016:06:24-17:07:01 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:43345 Data Channel Encrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
  54. 2016:06:24-17:07:01 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:43345 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
  55. 2016:06:24-17:07:01 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:43345 Data Channel Decrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
  56. 2016:06:24-17:07:01 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:43345 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
  57. 2016:06:24-17:07:01 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:43345 TCPv4_SERVER WRITE [268] to [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443): P_CONTROL_V1 kid=0 [ 5 ] pid=5 DATA len=242
  58. 2016:06:24-17:07:01 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:43345 TCPv4_SERVER READ [22] from [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443): P_ACK_V1 kid=0 [ 5 ]
  59. 2016:06:24-17:07:01 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:43345 Control Channel: TLSv1.2, cipher TLSv1/SSLv3 DHE-RSA-AES256-GCM-SHA384, 2048 bit RSA
  60. 2016:06:24-17:07:01 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:43345 [REF_AaaUse1] Peer Connection Initiated with [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443)
  61. 2016:06:24-17:07:01 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 OPTIONS IMPORT: reading client specific options from: /etc/openvpn/conf.d/REF_AaaUse1
  62. 2016:06:24-17:07:01 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 MULTI_sva: pool returned IPv4=10.242.2.3, IPv6=(Not enabled)
  63. 2016:06:24-17:07:01 utm-2 openvpn[25983]: id="2203" severity="info" sys="SecureNet" sub="vpn" event="Site-to-site VPN up" variant="ssl" connection="REF_SslSerXXX" address="217.xxx.xxx.xxx"
  64. 2016:06:24-17:07:01 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 PLUGIN_CALL: POST /usr/lib/openvpn/plugins/openvpn-plugin-utm.so/PLUGIN_CLIENT_CONNECT status=0
  65. 2016:06:24-17:07:01 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 OPTIONS IMPORT: reading client specific options from: /tmp/openvpn_cc_7c49b3ae4e48020c88ef800a41410007.tmp
  66. 2016:06:24-17:07:01 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 MULTI: Learn: 10.242.2.3 -> REF_AaaUse1/37.xxx.xxx.xxx:43345
  67. 2016:06:24-17:07:01 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 MULTI: primary virtual IP for REF_AaaUse1/37.xxx.xxx.xxx:43345: 10.242.2.3
  68. 2016:06:24-17:07:01 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 MULTI: internal route 10.0.5.0/24 -> REF_AaaUse1/37.xxx.xxx.xxx:43345
  69. 2016:06:24-17:07:01 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 MULTI: Learn: 10.0.5.0/24 -> REF_AaaUse1/37.xxx.xxx.xxx:43345
  70. 2016:06:24-17:07:01 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:38481 TCPv4_SERVER READ [133] from [AF_INET]37.xxx.xxx.xxx:38481 (via [AF_INET]217.xxx.xxx.xxx:443): P_DATA_V1 kid=0 DATA len=132
  71. 2016:06:24-17:07:01 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:38481 IP packet with unknown IP version=15 seen
  72. 2016:06:24-17:07:02 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:38481 TCPv4_SERVER READ [133] from [AF_INET]37.xxx.xxx.xxx:38481 (via [AF_INET]217.xxx.xxx.xxx:443): P_DATA_V1 kid=0 DATA len=132
  73. 2016:06:24-17:07:02 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:38481 IP packet with unknown IP version=15 seen
  74. 2016:06:24-17:07:03 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 TCPv4_SERVER READ [56] from [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443): P_CONTROL_V1 kid=0 [ ] pid=6 DATA len=42
  75. 2016:06:24-17:07:03 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 PUSH: Received control message: 'PUSH_REQUEST'
  76. 2016:06:24-17:07:03 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 send_push_reply(): safe_cap=940
  77. 2016:06:24-17:07:03 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 SENT CONTROL [REF_AaaUse1]: 'PUSH_REPLY,topology subnet,route-gateway 10.242.2.1,route 10.10.20.0 255.255.255.0,route 172.16.0.0 255.255.255.0,route 10.10.30.0 255.255.255.0,route 10.10.40.0 255.255.255.0,route 172.16.1.0 255.255.255.0,setenv-safe remote_network_1 10.10.20.0/24,setenv-safe remote_network_2 172.16.0.0/24,setenv-safe remote_network_3 10.10.30.0/24,setenv-safe remote_network_4 10.10.40.0/24,setenv-safe remote_network_5 172.16.1.0/24,setenv-safe local_network_1 10.0.5.0/24,ifconfig 10.242.2.3 255.255.255.0' (status=1)
  78. 2016:06:24-17:07:03 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 TCPv4_SERVER WRITE [22] to [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443): P_ACK_V1 kid=0 [ 6 ]
  79. 2016:06:24-17:07:03 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 TCPv4_SERVER WRITE [539] to [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443): P_CONTROL_V1 kid=0 [ ] pid=6 DATA len=525
  80.  
  81. Viele Reads / Writes entfernt...
  82.  
  83. 2016:06:24-17:11:02 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 TUN WRITE [84]
  84. 2016:06:24-17:11:02 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 TUN READ [84]
  85. 2016:06:24-17:11:02 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 TCPv4_SERVER WRITE [133] to [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443): P_DATA_V1 kid=0 DATA len=132
  86. 2016:06:24-17:11:02 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:38481 [REF_AaaUse1] Inactivity timeout (--ping-restart), restarting
  87. 2016:06:24-17:11:02 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:38481 SIGUSR1[soft,ping-restart] received, client-instance restarting
  88. 2016:06:24-17:11:02 utm-2 openvpn[25983]: id="2204" severity="info" sys="SecureNet" sub="vpn" event="Site-to-site VPN down" variant="ssl" connection="REF_SslSerXXX" address="217.xxx.xxx.xxx"
  89. 2016:06:24-17:11:02 utm-2 openvpn[25983]: PLUGIN_CALL: POST /usr/lib/openvpn/plugins/openvpn-plugin-utm.so/PLUGIN_CLIENT_DISCONNECT status=0
  90. 2016:06:24-17:11:02 utm-2 openvpn[25983]: TCP/UDP: Closing socket
  91. 2016:06:24-17:11:03 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 TCPv4_SERVER READ [133] from [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443): P_DATA_V1 kid=0 DATA len=132
  92. 2016:06:24-17:11:03 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 MULTI: Learn: 10.0.5.248 -> REF_AaaUse1/37.xxx.xxx.xxx:43345
  93. 2016:06:24-17:11:03 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 TUN WRITE [84]
  94. 2016:06:24-17:11:03 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 TUN READ [84]
  95. 2016:06:24-17:11:03 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 TCPv4_SERVER WRITE [133] to [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443): P_DATA_V1 kid=0 DATA len=132
  96. 2016:06:24-17:11:04 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 TCPv4_SERVER READ [133] from [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443): P_DATA_V1 kid=0 DATA len=132
  97. 2016:06:24-17:11:04 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 TUN WRITE [84]
  98. 2016:06:24-17:11:04 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 TUN READ [84]
  99. 2016:06:24-17:11:04 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 TCPv4_SERVER WRITE [133] to [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443): P_DATA_V1 kid=0 DATA len=132
  100. 2016:06:24-17:11:05 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 TCPv4_SERVER READ [133] from [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443): P_DATA_V1 kid=0 DATA len=132
  101. 2016:06:24-17:11:05 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 TUN WRITE [84]
  102. 2016:06:24-17:11:05 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 TUN READ [84]
  103. 2016:06:24-17:11:05 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 TCPv4_SERVER WRITE [133] to [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443): P_DATA_V1 kid=0 DATA len=132
  104. 2016:06:24-17:11:06 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 TCPv4_SERVER READ [133] from [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443): P_DATA_V1 kid=0 DATA len=132
  105. 2016:06:24-17:11:06 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 TUN WRITE [84]
  106. 2016:06:24-17:11:06 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 TUN READ [84]
  107. 2016:06:24-17:11:06 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 TCPv4_SERVER WRITE [133] to [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443): P_DATA_V1 kid=0 DATA len=132
  108. 2016:06:24-17:11:07 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 TCPv4_SERVER READ [133] from [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443): P_DATA_V1 kid=0 DATA len=132
  109. 2016:06:24-17:11:07 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 TUN WRITE [84]
  110. 2016:06:24-17:11:07 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 TUN READ [84]
  111. 2016:06:24-17:11:07 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 TCPv4_SERVER WRITE [133] to [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443): P_DATA_V1 kid=0 DATA len=132
  112. 2016:06:24-17:11:07 utm-2 openvpn[25983]: MULTI: multi_create_instance called
  113. 2016:06:24-17:11:07 utm-2 openvpn[25983]: Re-using SSL/TLS context
  114. 2016:06:24-17:11:07 utm-2 openvpn[25983]: LZO compression initialized
  115. 2016:06:24-17:11:07 utm-2 openvpn[25983]: Control Channel MTU parms [ L:1560 D:1210 EF:40 EB:0 ET:0 EL:3 ]
  116. 2016:06:24-17:11:07 utm-2 openvpn[25983]: Data Channel MTU parms [ L:1560 D:1450 EF:60 EB:143 ET:0 EL:3 AF:3/1 ]
  117. 2016:06:24-17:11:07 utm-2 openvpn[25983]: Local Options String: 'V4,dev-type tun,link-mtu 1560,tun-mtu 1500,proto TCPv4_SERVER,comp-lzo,cipher AES-128-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
  118. 2016:06:24-17:11:07 utm-2 openvpn[25983]: Expected Remote Options String: 'V4,dev-type tun,link-mtu 1560,tun-mtu 1500,proto TCPv4_CLIENT,comp-lzo,cipher AES-128-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
  119. 2016:06:24-17:11:07 utm-2 openvpn[25983]: Local Options hash (VER=V4): 'b695cb4a'
  120. 2016:06:24-17:11:07 utm-2 openvpn[25983]: Expected Remote Options hash (VER=V4): 'bc07730e'
  121. 2016:06:24-17:11:07 utm-2 openvpn[25983]: TCP connection established with [AF_INET]37.xxx.xxx.xxx:38482 (via [AF_INET]217.xxx.xxx.xxx:443)
  122. 2016:06:24-17:11:07 utm-2 openvpn[25983]: TCPv4_SERVER link local: [undef]
  123. 2016:06:24-17:11:07 utm-2 openvpn[25983]: TCPv4_SERVER link remote: [AF_INET]37.xxx.xxx.xxx:38482
  124. 2016:06:24-17:11:08 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 TCPv4_SERVER READ [133] from [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443): P_DATA_V1 kid=0 DATA len=132
  125. 2016:06:24-17:11:08 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 TUN WRITE [84]
  126. 2016:06:24-17:11:08 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 TUN READ [84]
  127. 2016:06:24-17:11:08 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 TCPv4_SERVER WRITE [133] to [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443): P_DATA_V1 kid=0 DATA len=132
  128. 2016:06:24-17:11:08 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 TCPv4_SERVER READ [14] from [AF_INET]37.xxx.xxx.xxx:38482 (via [AF_INET]217.xxx.xxx.xxx:443): P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
  129. 2016:06:24-17:11:08 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 TLS: Initial packet from [AF_INET]37.xxx.xxx.xxx:38482 (via [AF_INET]217.xxx.xxx.xxx:443), sid=691b4891 48b85a31
  130. 2016:06:24-17:11:08 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 TCPv4_SERVER WRITE [26] to [AF_INET]37.xxx.xxx.xxx:38482 (via [AF_INET]217.xxx.xxx.xxx:443): P_CONTROL_HARD_RESET_SERVER_V2 kid=0 [ 0 ] pid=0 DATA len=0
  131. 2016:06:24-17:11:08 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 TCPv4_SERVER READ [22] from [AF_INET]37.xxx.xxx.xxx:38482 (via [AF_INET]217.xxx.xxx.xxx:443): P_ACK_V1 kid=0 [ 0 ]
  132. 2016:06:24-17:11:08 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 TCPv4_SERVER READ [114] from [AF_INET]37.xxx.xxx.xxx:38482 (via
  133. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 TCPv4_SERVER READ [114] from [AF_INET]37.xxx.xxx.xxx:38482 (via [AF_INET]217.xxx.xxx.xxx:443): P_CONTROL_V1 kid=0 [ ] pid=23 DATA len=100
  134. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 TCPv4_SERVER WRITE [22] to [AF_INET]37.xxx.xxx.xxx:38482 (via [AF_INET]217.xxx.xxx.xxx:443): P_ACK_V1 kid=0 [ 23 ]
  135. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 TCPv4_SERVER READ [114] from [AF_INET]37.xxx.xxx.xxx:38482 (via [AF_INET]217.xxx.xxx.xxx:443): P_CONTROL_V1 kid=0 [ ] pid=24 DATA len=100
  136. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 VERIFY OK: depth=0, C=de, L=Hattingen, O=XXX, CN=REF_SslSerXXX
  137. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 VERIFY OK: depth=1, C=de, L=Hattingen, O=XXX, CN=XXX VPN CA, emailAddress=edv@XXX.com
  138. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 VERIFY OK: depth=1, C=de, L=Hattingen, O=XXX, CN=XXX VPN CA, emailAddress=edv@XXX.com
  139. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 VERIFY OK: depth=0, C=de, L=Hattingen, O=XXX, CN=REF_SslSerXXX
  140. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 TCPv4_SERVER WRITE [22] to [AF_INET]37.xxx.xxx.xxx:38482 (via [AF_INET]217.xxx.xxx.xxx:443): P_ACK_V1 kid=0 [ 24 ]
  141. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 TCPv4_SERVER READ [114] from [AF_INET]37.xxx.xxx.xxx:38482 (via [AF_INET]217.xxx.xxx.xxx:443): P_CONTROL_V1 kid=0 [ ] pid=25 DATA len=100
  142. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 TCPv4_SERVER WRITE [22] to [AF_INET]37.xxx.xxx.xxx:38482 (via [AF_INET]217.xxx.xxx.xxx:443): P_ACK_V1 kid=0 [ 25 ]
  143. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 TCPv4_SERVER READ [114] from [AF_INET]37.xxx.xxx.xxx:38482 (via [AF_INET]217.xxx.xxx.xxx:443): P_CONTROL_V1 kid=0 [ ] pid=26 DATA len=100
  144. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 TCPv4_SERVER WRITE [22] to [AF_INET]37.xxx.xxx.xxx:38482 (via [AF_INET]217.xxx.xxx.xxx:443): P_ACK_V1 kid=0 [ 26 ]
  145. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 TCPv4_SERVER READ [114] from [AF_INET]37.xxx.xxx.xxx:38482 (via [AF_INET]217.xxx.xxx.xxx:443): P_CONTROL_V1 kid=0 [ ] pid=27 DATA len=100
  146. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 TCPv4_SERVER WRITE [22] to [AF_INET]37.xxx.xxx.xxx:38482 (via [AF_INET]217.xxx.xxx.xxx:443): P_ACK_V1 kid=0 [ 27 ]
  147. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 TCPv4_SERVER READ [114] from [AF_INET]37.xxx.xxx.xxx:38482 (via [AF_INET]217.xxx.xxx.xxx:443): P_CONTROL_V1 kid=0 [ ] pid=28 DATA len=100
  148. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 TCPv4_SERVER WRITE [22] to [AF_INET]37.xxx.xxx.xxx:38482 (via [AF_INET]217.xxx.xxx.xxx:443): P_ACK_V1 kid=0 [ 28 ]
  149. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 TCPv4_SERVER READ [39] from [AF_INET]37.xxx.xxx.xxx:38482 (via [AF_INET]217.xxx.xxx.xxx:443): P_CONTROL_V1 kid=0 [ ] pid=29 DATA len=25
  150. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 TCPv4_SERVER WRITE [85] to [AF_INET]37.xxx.xxx.xxx:38482 (via [AF_INET]217.xxx.xxx.xxx:443): P_CONTROL_V1 kid=0 [ 29 ] pid=4 DATA len=59
  151. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 TCPv4_SERVER READ [126] from [AF_INET]37.xxx.xxx.xxx:38482 (via [AF_INET]217.xxx.xxx.xxx:443): P_CONTROL_V1 kid=0 [ 4 ] pid=30 DATA len=100
  152. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 TCPv4_SERVER WRITE [22] to [AF_INET]37.xxx.xxx.xxx:38482 (via [AF_INET]217.xxx.xxx.xxx:443): P_ACK_V1 kid=0 [ 30 ]
  153. 2016:06:24-17:11:09 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 TCPv4_SERVER READ [133] from [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443): P_DATA_V1 kid=0 DATA len=132
  154. 2016:06:24-17:11:09 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 TUN WRITE [84]
  155. 2016:06:24-17:11:09 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 TUN READ [84]
  156. 2016:06:24-17:11:09 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 TCPv4_SERVER WRITE [133] to [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443): P_DATA_V1 kid=0 DATA len=132
  157. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 TCPv4_SERVER READ [114] from [AF_INET]37.xxx.xxx.xxx:38482 (via [AF_INET]217.xxx.xxx.xxx:443): P_CONTROL_V1 kid=0 [ ] pid=31 DATA len=100
  158. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 TCPv4_SERVER WRITE [22] to [AF_INET]37.xxx.xxx.xxx:38482 (via [AF_INET]217.xxx.xxx.xxx:443): P_ACK_V1 kid=0 [ 31 ]
  159. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 TCPv4_SERVER READ [112] from [AF_INET]37.xxx.xxx.xxx:38482 (via [AF_INET]217.xxx.xxx.xxx:443): P_CONTROL_V1 kid=0 [ ] pid=32 DATA len=98
  160. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 PLUGIN_CALL: POST /usr/lib/openvpn/plugins/openvpn-plugin-utm.so/PLUGIN_AUTH_USER_PASS_VERIFY status=2
  161. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 TLS: Username/Password authentication deferred for username 'REF_AaaUse1' [CN SET]
  162. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 NOTE: Options consistency check may be skewed by version differences
  163. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 WARNING: 'version' is used inconsistently, local='version V4', remote='version V0 UNDEF'
  164. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 WARNING: 'dev-type' is present in local config but missing in remote config, local='dev-type tun'
  165. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 WARNING: 'link-mtu' is present in local config but missing in remote config, local='link-mtu 1560'
  166. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 WARNING: 'tun-mtu' is present in local config but missing in remote config, local='tun-mtu 1500'
  167. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 WARNING: 'comp-lzo' is present in local config but missing in remote config, local='comp-lzo'
  168. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 WARNING: 'cipher' is present in local config but missing in remote config, local='cipher AES-128-CBC'
  169. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 WARNING: 'auth' is present in local config but missing in remote config, local='auth SHA1'
  170. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 WARNING: 'keysize' is present in local config but missing in remote config, local='keysize 128'
  171. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 WARNING: 'key-method' is present in local config but missing in remote config, local='key-method 2'
  172. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 WARNING: 'tls-client' is present in local config but missing in remote config, local='tls-client'
  173. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 Downgrading LZO - client does not send compression headers
  174. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 Data Channel Encrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
  175. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
  176. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 Data Channel Decrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
  177. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
  178. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 TCPv4_SERVER WRITE [308] to [AF_INET]37.xxx.xxx.xxx:38482 (via [AF_INET]217.xxx.xxx.xxx:443): P_CONTROL_V1 kid=0 [ 32 ] pid=5 DATA len=282
  179. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 TCPv4_SERVER READ [22] from [AF_INET]37.xxx.xxx.xxx:38482 (via [AF_INET]217.xxx.xxx.xxx:443): P_ACK_V1 kid=0 [ 5 ]
  180. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA
  181. 2016:06:24-17:11:09 utm-2 openvpn[25983]: 37.xxx.xxx.xxx:38482 [REF_AaaUse1] Peer Connection Initiated with [AF_INET]37.xxx.xxx.xxx:38482 (via [AF_INET]217.xxx.xxx.xxx:443)
  182. 2016:06:24-17:11:10 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 TCPv4_SERVER READ [133] from [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443): P_DATA_V1 kid=0 DATA len=132
  183. 2016:06:24-17:11:10 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 TUN WRITE [84]
  184. 2016:06:24-17:11:10 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 TUN READ [84]
  185. 2016:06:24-17:11:10 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 TCPv4_SERVER WRITE [133] to [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443): P_DATA_V1 kid=0 DATA len=132
  186. 2016:06:24-17:11:10 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:38482 OPTIONS IMPORT: reading client specific options from: /etc/openvpn/conf.d/REF_AaaUse1
  187. 2016:06:24-17:11:10 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:38482 MULTI_sva: pool returned IPv4=10.242.2.2, IPv6=(Not enabled)
  188. 2016:06:24-17:11:10 utm-2 openvpn[25983]: id="2203" severity="info" sys="SecureNet" sub="vpn" event="Site-to-site VPN up" variant="ssl" connection="REF_SslSerXXX" address="217.xxx.xxx.xxx"
  189. 2016:06:24-17:11:10 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:38482 PLUGIN_CALL: POST /usr/lib/openvpn/plugins/openvpn-plugin-utm.so/PLUGIN_CLIENT_CONNECT status=0
  190. 2016:06:24-17:11:10 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:38482 OPTIONS IMPORT: reading client specific options from: /tmp/openvpn_cc_32d4659b33af9e9bcdeee4ad8c758774.tmp
  191. 2016:06:24-17:11:10 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:38482 MULTI: Learn: 10.242.2.2 -> REF_AaaUse1/37.xxx.xxx.xxx:38482
  192. 2016:06:24-17:11:10 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:38482 MULTI: primary virtual IP for REF_AaaUse1/37.xxx.xxx.xxx:38482: 10.242.2.2
  193. 2016:06:24-17:11:10 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:38482 MULTI: internal route 10.0.5.0/24 -> REF_AaaUse1/37.xxx.xxx.xxx:38482
  194. 2016:06:24-17:11:10 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:38482 MULTI: Learn: 10.0.5.0/24 -> REF_AaaUse1/37.xxx.xxx.xxx:38482
  195. 2016:06:24-17:11:11 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 TCPv4_SERVER READ [133] from [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443): P_DATA_V1 kid=0 DATA len=132
  196. 2016:06:24-17:11:11 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 MULTI: Learn: 10.0.5.248 -> REF_AaaUse1/37.xxx.xxx.xxx:38482
  197. 2016:06:24-17:11:11 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 MULTI: bad source address from client [10.0.5.248], packet dropped
  198. 2016:06:24-17:11:11 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:38482 TCPv4_SERVER READ [104] from [AF_INET]37.xxx.xxx.xxx:38482 (via [AF_INET]217.xxx.xxx.xxx:443): P_CONTROL_V1 kid=0 [ ] pid=33 DATA len=90
  199. 2016:06:24-17:11:11 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:38482 PUSH: Received control message: 'PUSH_REQUEST'
  200. 2016:06:24-17:11:11 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:38482 send_push_reply(): safe_cap=940
  201. 2016:06:24-17:11:11 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:38482 SENT CONTROL [REF_AaaUse1]: 'PUSH_REPLY,topology subnet,route-gateway 10.242.2.1,route 10.10.20.0 255.255.255.0,route 172.16.0.0 255.255.255.0,route 10.10.30.0 255.255.255.0,route 10.10.40.0 255.255.255.0,route 172.16.1.0 255.255.255.0,setenv-safe remote_network_1 10.10.20.0/24,setenv-safe remote_network_2 172.16.0.0/24,setenv-safe remote_network_3 10.10.30.0/24,setenv-safe remote_network_4 10.10.40.0/24,setenv-safe remote_network_5 172.16.1.0/24,setenv-safe local_network_1 10.0.5.0/24,ifconfig 10.242.2.2 255.255.255.0' (status=1)
  202. 2016:06:24-17:11:11 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:38482 TCPv4_SERVER WRITE [22] to [AF_INET]37.xxx.xxx.xxx:38482 (via [AF_INET]217.xxx.xxx.xxx:443): P_ACK_V1 kid=0 [ 33 ]
  203. 2016:06:24-17:11:11 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:38482 TCPv4_SERVER WRITE [584] to [AF_INET]37.xxx.xxx.xxx:38482 (via [AF_INET]217.xxx.xxx.xxx:443): P_CONTROL_V1 kid=0 [ ] pid=6 DATA len=570
  204. 2016:06:24-17:11:12 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:38482 TCPv4_SERVER READ [22] from [AF_INET]37.xxx.xxx.xxx:38482 (via [AF_INET]217.xxx.xxx.xxx:443): P_ACK_V1 kid=0 [ 6 ]
  205. 2016:06:24-17:11:12 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 TCPv4_SERVER READ [133] from [AF_INET]37.xxx.xxx.xxx:43345 (via [AF_INET]217.xxx.xxx.xxx:443): P_DATA_V1 kid=0 DATA len=132
  206. 2016:06:24-17:11:12 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 MULTI: bad source address from client [10.0.5.248], packet dropped
  207. 2016:06:24-17:11:13 utm-2 openvpn[25983]: REF_AaaUse1/37.xxx.xxx.xxx:43345 TCPv4_SERVER READ
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!