SHOW:
|
|
- or go back to the newest paste.
1 | when client gets connected, internet goes off on client side | |
2 | server ip is 168.235.66.43 | |
3 | trying to make a tunnel and route all traffic of client through server. | |
4 | ||
5 | ||
6 | ||
7 | client | |
8 | == | |
9 | $ sudo ip route ls | |
10 | 0.0.0.0/1 via 10.8.0.5 dev tun0 | |
11 | default via 192.168.0.1 dev wlan0 proto static | |
12 | 10.8.0.1 via 10.8.0.5 dev tun0 | |
13 | 10.8.0.5 dev tun0 proto kernel scope link src 10.8.0.6 | |
14 | 128.0.0.0/1 via 10.8.0.5 dev tun0 | |
15 | 168.235.66.43 via 192.168.0.1 dev wlan0 | |
16 | 192.168.0.0/24 dev wlan0 proto kernel scope link src 192.168.0.100 metric 9 | |
17 | ||
18 | ||
19 | server | |
20 | == | |
21 | # ip route ls | |
22 | 10.8.0.2 dev tun0 proto kernel scope link src 10.8.0.1 | |
23 | 10.8.0.0/24 via 10.8.0.2 dev tun0 | |
24 | default dev venet0 scope link | |
25 | ||
26 | ||
27 | ||
28 | ||
29 | ||
30 | client - new | |
31 | =---------- | |
32 | ||
33 | Jan 8 03:37:29 user1-PC-D630 ovpn-client[7037]: OpenVPN 2.3.2 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [PKCS11] [eurephia] [MH] [IPv6] built on Dec 1 2014 | |
34 | Jan 8 03:37:29 user1-PC-D630 ovpn-client[7037]: Socket Buffers: R=[212992->131072] S=[212992->131072] | |
35 | Jan 8 03:37:29 user1-PC-D630 ovpn-client[7038]: NOTE: UID/GID downgrade will be delayed because of --client, --pull, or --up-delay | |
36 | Jan 8 03:37:29 user1-PC-D630 ovpn-client[7038]: UDPv4 link local: [undef] | |
37 | Jan 8 03:37:29 user1-PC-D630 ovpn-client[7038]: UDPv4 link remote: [AF_INET]168.235.66.43:1194 | |
38 | Jan 8 03:37:29 user1-PC-D630 ovpn-client[7038]: TLS: Initial packet from [AF_INET]168.235.66.43:1194, sid=9fe790f3 ea20c63e | |
39 | Jan 8 03:37:31 user1-PC-D630 ovpn-client[7038]: VERIFY OK: depth=1, C=US, ST=NC, L=Winston-Salem, O=CQ Technologies, OU=MyOrganizationalUnit, CN=CQ Technologies CA, name=EasyRSA, emailAddress=support@cqtechnologies.com | |
40 | Jan 8 03:37:31 user1-PC-D630 ovpn-client[7038]: VERIFY OK: nsCertType=SERVER | |
41 | Jan 8 03:37:31 user1-PC-D630 ovpn-client[7038]: VERIFY OK: depth=0, C=US, ST=NC, L=Winston-Salem, O=CQ Technologies, OU=MyOrganizationalUnit, CN=server, name=EasyRSA, emailAddress=support@cqtechnologies.com | |
42 | Jan 8 03:37:36 user1-PC-D630 ovpn-client[7038]: Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key | |
43 | Jan 8 03:37:36 user1-PC-D630 ovpn-client[7038]: Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication | |
44 | Jan 8 03:37:36 user1-PC-D630 ovpn-client[7038]: Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key | |
45 | Jan 8 03:37:36 user1-PC-D630 ovpn-client[7038]: Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication | |
46 | Jan 8 03:37:36 user1-PC-D630 ovpn-client[7038]: Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA | |
47 | Jan 8 03:37:36 user1-PC-D630 ovpn-client[7038]: [server] Peer Connection Initiated with [AF_INET]168.235.66.43:1194 | |
48 | Jan 8 03:37:38 user1-PC-D630 ovpn-client[7038]: SENT CONTROL [server]: 'PUSH_REQUEST' (status=1) | |
49 | Jan 8 03:37:38 user1-PC-D630 ovpn-client[7038]: PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1 bypass-dhcp,route 10.8.0.1,topology net30,ping 10,ping-restart 120,ifconfig 10.8.0.6 10.8.0.5' | |
50 | Jan 8 03:37:38 user1-PC-D630 ovpn-client[7038]: OPTIONS IMPORT: timers and/or timeouts modified | |
51 | Jan 8 03:37:38 user1-PC-D630 ovpn-client[7038]: OPTIONS IMPORT: --ifconfig/up options modified | |
52 | Jan 8 03:37:38 user1-PC-D630 ovpn-client[7038]: OPTIONS IMPORT: route options modified | |
53 | Jan 8 03:37:38 user1-PC-D630 ovpn-client[7038]: ROUTE_GATEWAY 192.168.0.1/255.255.255.0 IFACE=wlan0 HWADDR=00:16:44:d8:1e:f4 | |
54 | Jan 8 03:37:38 user1-PC-D630 ovpn-client[7038]: TUN/TAP device tun0 opened | |
55 | Jan 8 03:37:38 user1-PC-D630 ovpn-client[7038]: TUN/TAP TX queue length set to 100 | |
56 | Jan 8 03:37:38 user1-PC-D630 ovpn-client[7038]: do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0 | |
57 | Jan 8 03:37:38 user1-PC-D630 ovpn-client[7038]: /sbin/ip link set dev tun0 up mtu 1500 | |
58 | Jan 8 03:37:38 user1-PC-D630 NetworkManager[921]: SCPlugin-Ifupdown: devices added (path: /sys/devices/virtual/net/tun0, iface: tun0) | |
59 | Jan 8 03:37:38 user1-PC-D630 NetworkManager[921]: SCPlugin-Ifupdown: device added (path: /sys/devices/virtual/net/tun0, iface: tun0): no ifupdown configuration found. | |
60 | Jan 8 03:37:38 user1-PC-D630 NetworkManager[921]: <warn> /sys/devices/virtual/net/tun0: couldn't determine device driver; ignoring... | |
61 | Jan 8 03:37:38 user1-PC-D630 ovpn-client[7038]: /sbin/ip addr add dev tun0 local 10.8.0.6 peer 10.8.0.5 | |
62 | Jan 8 03:37:38 user1-PC-D630 ovpn-client[7038]: /sbin/ip route add 168.235.66.43/32 via 192.168.0.1 | |
63 | Jan 8 03:37:38 user1-PC-D630 ovpn-client[7038]: /sbin/ip route add 0.0.0.0/1 via 10.8.0.5 | |
64 | Jan 8 03:37:38 user1-PC-D630 ovpn-client[7038]: /sbin/ip route add 128.0.0.0/1 via 10.8.0.5 | |
65 | Jan 8 03:37:38 user1-PC-D630 ovpn-client[7038]: /sbin/ip route add 10.8.0.1/32 via 10.8.0.5 | |
66 | Jan 8 03:37:38 user1-PC-D630 ovpn-client[7038]: GID set to openvpn | |
67 | Jan 8 03:37:38 user1-PC-D630 ovpn-client[7038]: UID set to openvpn | |
68 | Jan 8 03:37:38 user1-PC-D630 ovpn-client[7038]: Initialization Sequence Completed | |
69 | Jan 8 03:37:46 user1-PC-D630 ovpn-client[7038]: event_wait : Interrupted system call (code=4) | |
70 | Jan 8 03:37:46 user1-PC-D630 ovpn-client[7038]: /sbin/ip route del 10.8.0.1/32 | |
71 | Jan 8 03:37:46 user1-PC-D630 ovpn-client[7038]: ERROR: Linux route delete command failed: external program exited with error status: 2 | |
72 | Jan 8 03:37:46 user1-PC-D630 ovpn-client[7038]: /sbin/ip route del 168.235.66.43/32 | |
73 | Jan 8 03:37:46 user1-PC-D630 ovpn-client[7038]: ERROR: Linux route delete command failed: external program exited with error status: 2 | |
74 | Jan 8 03:37:46 user1-PC-D630 ovpn-client[7038]: /sbin/ip route del 0.0.0.0/1 | |
75 | Jan 8 03:37:46 user1-PC-D630 ovpn-client[7038]: ERROR: Linux route delete command failed: external program exited with error status: 2 | |
76 | Jan 8 03:37:46 user1-PC-D630 ovpn-client[7038]: /sbin/ip route del 128.0.0.0/1 | |
77 | Jan 8 03:37:46 user1-PC-D630 ovpn-client[7038]: ERROR: Linux route delete command failed: external program exited with error status: 2 | |
78 | Jan 8 03:37:46 user1-PC-D630 ovpn-client[7038]: Closing TUN/TAP interface | |
79 | Jan 8 03:37:46 user1-PC-D630 ovpn-client[7038]: /sbin/ip addr del dev tun0 local 10.8.0.6 peer 10.8.0.5 | |
80 | Jan 8 03:37:46 user1-PC-D630 ovpn-client[7038]: Linux ip addr del failed: external program exited with error status: 2 | |
81 | Jan 8 03:37:46 user1-PC-D630 NetworkManager[921]: SCPlugin-Ifupdown: devices removed (path: /sys/devices/virtual/net/tun0, iface: tun0) | |
82 | Jan 8 03:37:46 user1-PC-D630 ovpn-client[7038]: SIGTERM[hard,] received, process exiting | |
83 | ||
84 | ||
85 | ||
86 | ||
87 | ||
88 | client - old | |
89 | --------- | |
90 | ||
91 | user1@user1-PC-D630:/etc/openvpn$ tail -f /var/log/syslog | |
92 | Jan 8 03:17:44 user1-PC-D630 ovpn-client[6592]: ERROR: Linux route delete command failed: external program exited with error status: 2 | |
93 | Jan 8 03:17:44 user1-PC-D630 ovpn-client[6592]: Closing TUN/TAP interface | |
94 | Jan 8 03:17:44 user1-PC-D630 ovpn-client[6592]: /sbin/ip addr del dev tun0 local 10.8.0.6 peer 10.8.0.5 | |
95 | Jan 8 03:17:44 user1-PC-D630 ovpn-client[6592]: Linux ip addr del failed: external program exited with error status: 2 | |
96 | Jan 8 03:17:44 user1-PC-D630 avahi-daemon[720]: Withdrawing workstation service for tun0. | |
97 | Jan 8 03:17:44 user1-PC-D630 NetworkManager[921]: SCPlugin-Ifupdown: devices removed (path: /sys/devices/virtual/net/tun0, iface: tun0) | |
98 | Jan 8 03:17:44 user1-PC-D630 ovpn-client[6592]: SIGTERM[hard,] received, process exiting | |
99 | Jan 8 03:20:23 user1-PC-D630 wpa_supplicant[1014]: message repeated 29 times: [ wlan0: CTRL-EVENT-SCAN-STARTED ] | |
100 | Jan 8 03:20:36 user1-PC-D630 wpa_supplicant[1014]: wlan0: WPA: Group rekeying completed with 9a:6c:f5:5e:30:20 [GTK=TKIP] | |
101 | Jan 8 03:22:23 user1-PC-D630 wpa_supplicant[1014]: wlan0: CTRL-EVENT-SCAN-STARTED | |
102 | Jan 8 03:23:36 user1-PC-D630 ovpn-client[6858]: OpenVPN 2.3.2 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [PKCS11] [eurephia] [MH] [IPv6] built on Dec 1 2014 | |
103 | Jan 8 03:23:36 user1-PC-D630 ovpn-client[6858]: Socket Buffers: R=[212992->131072] S=[212992->131072] | |
104 | Jan 8 03:23:36 user1-PC-D630 ovpn-client[6859]: NOTE: UID/GID downgrade will be delayed because of --client, --pull, or --up-delay | |
105 | Jan 8 03:23:36 user1-PC-D630 ovpn-client[6859]: UDPv4 link local: [undef] | |
106 | Jan 8 03:23:36 user1-PC-D630 ovpn-client[6859]: UDPv4 link remote: [AF_INET]168.235.66.43:1194 | |
107 | Jan 8 03:23:36 user1-PC-D630 ovpn-client[6859]: TLS: Initial packet from [AF_INET]168.235.66.43:1194, sid=620ed142 a6a98f9e | |
108 | Jan 8 03:23:38 user1-PC-D630 ovpn-client[6859]: VERIFY OK: depth=1, C=US, ST=NC, L=Winston-Salem, O=CQ Technologies, OU=MyOrganizationalUnit, CN=CQ Technologies CA, name=EasyRSA, emailAddress=support@cqtechnologies.com | |
109 | Jan 8 03:23:38 user1-PC-D630 ovpn-client[6859]: VERIFY OK: nsCertType=SERVER | |
110 | Jan 8 03:23:38 user1-PC-D630 ovpn-client[6859]: VERIFY OK: depth=0, C=US, ST=NC, L=Winston-Salem, O=CQ Technologies, OU=MyOrganizationalUnit, CN=server, name=EasyRSA, emailAddress=support@cqtechnologies.com | |
111 | Jan 8 03:23:43 user1-PC-D630 ovpn-client[6859]: Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key | |
112 | Jan 8 03:23:43 user1-PC-D630 ovpn-client[6859]: Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication | |
113 | Jan 8 03:23:43 user1-PC-D630 ovpn-client[6859]: Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key | |
114 | Jan 8 03:23:43 user1-PC-D630 ovpn-client[6859]: Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication | |
115 | Jan 8 03:23:43 user1-PC-D630 ovpn-client[6859]: Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA | |
116 | Jan 8 03:23:43 user1-PC-D630 ovpn-client[6859]: [server] Peer Connection Initiated with [AF_INET]168.235.66.43:1194 | |
117 | Jan 8 03:23:45 user1-PC-D630 ovpn-client[6859]: SENT CONTROL [server]: 'PUSH_REQUEST' (status=1) | |
118 | Jan 8 03:23:46 user1-PC-D630 ovpn-client[6859]: PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1 bypass-dhcp,route 10.8.0.1,topology net30,ping 10,ping-restart 120,ifconfig 10.8.0.6 10.8.0.5' | |
119 | Jan 8 03:23:46 user1-PC-D630 ovpn-client[6859]: OPTIONS IMPORT: timers and/or timeouts modified | |
120 | Jan 8 03:23:46 user1-PC-D630 ovpn-client[6859]: OPTIONS IMPORT: --ifconfig/up options modified | |
121 | Jan 8 03:23:46 user1-PC-D630 ovpn-client[6859]: OPTIONS IMPORT: route options modified | |
122 | Jan 8 03:23:46 user1-PC-D630 ovpn-client[6859]: ROUTE_GATEWAY 192.168.0.1/255.255.255.0 IFACE=wlan0 HWADDR=00:16:44:d8:1e:f4 | |
123 | Jan 8 03:23:46 user1-PC-D630 ovpn-client[6859]: TUN/TAP device tun0 opened | |
124 | Jan 8 03:23:46 user1-PC-D630 ovpn-client[6859]: TUN/TAP TX queue length set to 100 | |
125 | Jan 8 03:23:46 user1-PC-D630 ovpn-client[6859]: do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0 | |
126 | Jan 8 03:23:46 user1-PC-D630 ovpn-client[6859]: /sbin/ip link set dev tun0 up mtu 1500 | |
127 | Jan 8 03:23:46 user1-PC-D630 NetworkManager[921]: <warn> /sys/devices/virtual/net/tun0: couldn't determine device driver; ignoring... | |
128 | Jan 8 03:23:46 user1-PC-D630 NetworkManager[921]: SCPlugin-Ifupdown: devices added (path: /sys/devices/virtual/net/tun0, iface: tun0) | |
129 | Jan 8 03:23:46 user1-PC-D630 NetworkManager[921]: SCPlugin-Ifupdown: device added (path: /sys/devices/virtual/net/tun0, iface: tun0): no ifupdown configuration found. | |
130 | Jan 8 03:23:46 user1-PC-D630 ovpn-client[6859]: /sbin/ip addr add dev tun0 local 10.8.0.6 peer 10.8.0.5 | |
131 | Jan 8 03:23:46 user1-PC-D630 ovpn-client[6859]: /sbin/ip route add 168.235.66.43/32 via 192.168.0.1 | |
132 | Jan 8 03:23:46 user1-PC-D630 ovpn-client[6859]: ERROR: Linux route add command failed: external program exited with error status: 2 | |
133 | Jan 8 03:23:46 user1-PC-D630 ovpn-client[6859]: /sbin/ip route add 0.0.0.0/1 via 10.8.0.5 | |
134 | Jan 8 03:23:46 user1-PC-D630 ovpn-client[6859]: /sbin/ip route add 128.0.0.0/1 via 10.8.0.5 | |
135 | Jan 8 03:23:46 user1-PC-D630 ovpn-client[6859]: /sbin/ip route add 10.8.0.1/32 via 10.8.0.5 | |
136 | Jan 8 03:23:46 user1-PC-D630 ovpn-client[6859]: GID set to openvpn | |
137 | Jan 8 03:23:46 user1-PC-D630 ovpn-client[6859]: UID set to openvpn | |
138 | Jan 8 03:23:46 user1-PC-D630 ovpn-client[6859]: Initialization Sequence Completed | |
139 | Jan 8 03:23:55 user1-PC-D630 ovpn-client[6859]: event_wait : Interrupted system call (code=4) | |
140 | Jan 8 03:23:55 user1-PC-D630 ovpn-client[6859]: /sbin/ip route del 10.8.0.1/32 | |
141 | Jan 8 03:23:55 user1-PC-D630 ovpn-client[6859]: ERROR: Linux route delete command failed: external program exited with error status: 2 | |
142 | Jan 8 03:23:55 user1-PC-D630 ovpn-client[6859]: /sbin/ip route del 168.235.66.43/32 | |
143 | Jan 8 03:23:55 user1-PC-D630 ovpn-client[6859]: ERROR: Linux route delete command failed: external program exited with error status: 2 | |
144 | Jan 8 03:23:55 user1-PC-D630 ovpn-client[6859]: /sbin/ip route del 0.0.0.0/1 | |
145 | Jan 8 03:23:55 user1-PC-D630 ovpn-client[6859]: ERROR: Linux route delete command failed: external program exited with error status: 2 | |
146 | Jan 8 03:23:55 user1-PC-D630 ovpn-client[6859]: /sbin/ip route del 128.0.0.0/1 | |
147 | Jan 8 03:23:55 user1-PC-D630 ovpn-client[6859]: ERROR: Linux route delete command failed: external program exited with error status: 2 | |
148 | Jan 8 03:23:55 user1-PC-D630 ovpn-client[6859]: Closing TUN/TAP interface | |
149 | Jan 8 03:23:55 user1-PC-D630 ovpn-client[6859]: /sbin/ip addr del dev tun0 local 10.8.0.6 peer 10.8.0.5 | |
150 | Jan 8 03:23:55 user1-PC-D630 ovpn-client[6859]: Linux ip addr del failed: external program exited with error status: 2 | |
151 | Jan 8 03:23:55 user1-PC-D630 NetworkManager[921]: SCPlugin-Ifupdown: devices removed (path: /sys/devices/virtual/net/tun0, iface: tun0) | |
152 | Jan 8 03:23:55 user1-PC-D630 ovpn-client[6859]: SIGTERM[hard,] received, process exiting | |
153 | ||
154 | ||
155 | ||
156 | ||
157 | ||
158 | server | |
159 | ----------- | |
160 | Jan 7 17:16:04 cqtechnologies ovpn-server[1647]: 182.189.236.89:55486 VERIFY OK: depth=1, C=US, ST=NC, L=Winston-Salem, O=CQ Technologies, OU=MyOrganizationalUnit, CN=CQ Technologies CA, name=EasyRSA, emailAddress=support@cqtechnologies.com | |
161 | Jan 7 17:16:04 cqtechnologies ovpn-server[1647]: 182.189.236.89:55486 VERIFY OK: depth=0, C=US, ST=NC, L=Winston-Salem, O=CQ Technologies, OU=MyOrganizationalUnit, CN=client, name=EasyRSA, emailAddress=support@cqtechnologies.com | |
162 | Jan 7 17:16:09 cqtechnologies ovpn-server[1647]: 182.189.236.89:55486 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key | |
163 | Jan 7 17:16:09 cqtechnologies ovpn-server[1647]: 182.189.236.89:55486 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication | |
164 | Jan 7 17:16:09 cqtechnologies ovpn-server[1647]: 182.189.236.89:55486 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key | |
165 | Jan 7 17:16:09 cqtechnologies ovpn-server[1647]: 182.189.236.89:55486 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication | |
166 | Jan 7 17:16:09 cqtechnologies ovpn-server[1647]: 182.189.236.89:55486 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA | |
167 | Jan 7 17:16:09 cqtechnologies ovpn-server[1647]: 182.189.236.89:55486 [client] Peer Connection Initiated with [AF_INET]182.189.236.89:55486 | |
168 | Jan 7 17:16:09 cqtechnologies ovpn-server[1647]: client/182.189.236.89:55486 MULTI_sva: pool returned IPv4=10.8.0.6, IPv6=(Not enabled) | |
169 | Jan 7 17:16:09 cqtechnologies ovpn-server[1647]: client/182.189.236.89:55486 MULTI: Learn: 10.8.0.6 -> client/182.189.236.89:55486 | |
170 | Jan 7 17:16:09 cqtechnologies ovpn-server[1647]: client/182.189.236.89:55486 MULTI: primary virtual IP for client/182.189.236.89:55486: 10.8.0.6 | |
171 | Jan 7 17:16:11 cqtechnologies ovpn-server[1647]: client/182.189.236.89:55486 PUSH: Received control message: 'PUSH_REQUEST' | |
172 | Jan 7 17:16:11 cqtechnologies ovpn-server[1647]: client/182.189.236.89:55486 send_push_reply(): safe_cap=940 | |
173 | Jan 7 17:16:11 cqtechnologies ovpn-server[1647]: client/182.189.236.89:55486 SENT CONTROL [client]: 'PUSH_REPLY,redirect-gateway def1 bypass-dhcp,route 10.8.0.1,topology net30,ping 10,ping-restart 120,ifconfig 10.8.0.6 10.8.0.5' (status=1) | |
174 | Jan 7 17:16:15 cqtechnologies ovpn-server[1647]: 182.189.236.89:44895 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity) | |
175 | Jan 7 17:16:15 cqtechnologies ovpn-server[1647]: 182.189.236.89:44895 TLS Error: TLS handshake failed | |
176 | Jan 7 17:16:15 cqtechnologies ovpn-server[1647]: 182.189.236.89:44895 SIGUSR1[soft,tls-error] received, client-instance restarting | |
177 | Jan 7 17:16:19 cqtechnologies ovpn-server[1647]: 182.189.236.89:56514 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity) | |
178 | Jan 7 17:16:19 cqtechnologies ovpn-server[1647]: 182.189.236.89:56514 TLS Error: TLS handshake failed | |
179 | Jan 7 17:16:19 cqtechnologies ovpn-server[1647]: 182.189.236.89:56514 SIGUSR1[soft,tls-error] received, client-instance restarting | |
180 | Jan 7 17:16:24 cqtechnologies ovpn-server[1647]: 182.189.236.89:36440 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity) | |
181 | Jan 7 17:16:24 cqtechnologies ovpn-server[1647]: 182.189.236.89:36440 TLS Error: TLS handshake failed | |
182 | Jan 7 17:16:24 cqtechnologies ovpn-server[1647]: 182.189.236.89:36440 SIGUSR1[soft,tls-error] received, client-instance restarting | |
183 | Jan 7 17:16:28 cqtechnologies ovpn-server[1647]: 182.189.236.89:34848 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity) | |
184 | Jan 7 17:16:28 cqtechnologies ovpn-server[1647]: 182.189.236.89:34848 TLS Error: TLS handshake failed | |
185 | Jan 7 17:16:28 cqtechnologies ovpn-server[1647]: 182.189.236.89:34848 SIGUSR1[soft,tls-error] received, client-instance restarting | |
186 | Jan 7 17:16:34 cqtechnologies ovpn-server[1647]: 182.189.236.89:45531 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity) | |
187 | Jan 7 17:16:34 cqtechnologies ovpn-server[1647]: 182.189.236.89:45531 TLS Error: TLS handshake failed | |
188 | Jan 7 17:16:34 cqtechnologies ovpn-server[1647]: 182.189.236.89:45531 SIGUSR1[soft,tls-error] received, client-instance restarting | |
189 | ||
190 | ||
191 | ||
192 | ||
193 | ||
194 | ||
195 | ||
196 | server config | |
197 | =========== | |
198 | ||
199 | ||
200 | port 1194 | |
201 | ||
202 | proto udp | |
203 | ||
204 | dev tun | |
205 | ||
206 | ||
207 | ca ca.crt | |
208 | cert server.crt | |
209 | key server.key # This file should be kept secret | |
210 | ||
211 | dh dh2048.pem | |
212 | ||
213 | server 10.8.0.0 255.255.255.0 | |
214 | ||
215 | ifconfig-pool-persist ipp.txt | |
216 | ||
217 | ||
218 | ||
219 | ||
220 | ||
221 | ||
222 | ||
223 | ||
224 | push "redirect-gateway def1 bypass-dhcp" | |
225 | ||
226 | ||
227 | ||
228 | ||
229 | keepalive 10 120 | |
230 | ||
231 | ||
232 | ||
233 | comp-lzo | |
234 | ||
235 | ||
236 | ||
237 | persist-key | |
238 | persist-tun | |
239 | ||
240 | status openvpn-status.log | |
241 | ||
242 | ||
243 | verb 3 | |
244 | ||
245 | ||
246 | ||
247 | ||
248 | ||
249 | ||
250 | Client config | |
251 | =============== | |
252 | ||
253 | ||
254 | client | |
255 | ||
256 | dev tun | |
257 | ||
258 | ||
259 | proto udp | |
260 | ||
261 | remote 168.235.66.43 1194 | |
262 | ||
263 | ||
264 | resolv-retry infinite | |
265 | ||
266 | nobind | |
267 | ||
268 | user openvpn | |
269 | group openvpn | |
270 | ||
271 | persist-key | |
272 | persist-tun | |
273 | ||
274 | ||
275 | ||
276 | ca ca.crt | |
277 | cert client.crt | |
278 | key client.key | |
279 | ||
280 | ns-cert-type server | |
281 | ||
282 | ||
283 | ||
284 | comp-lzo | |
285 | ||
286 | verb 3 |