|
|
Hi, I need some pointers to solve the following issue. Sometimes, not allways, I get an "IPAPI Failed" message. To fix this I restart the OpenVPN service until the message disappears. If the "IPAPI failed" message appears ont the server side, I see that on the client the OpenVPN software reports that the connection has been establised. I also see that an IP-address has been issued, so that seems to be true. However, a ping to the server results in a time-out. My server setup is as follows: - Windows XP PRO SP2. Dual CPU. - I have a TCP and UDP setup for OpenVPN (UDP for in-house usage, TCP for out door proxy connections) that run simultanious. If I do net get the "IPAPI failed" message, this works just great! The "IPAPI failed" message appears alternating on the TCP and UDP setup. I didn't notice the error on both setups at the same time. - The OpenVPN service is automaticaly started at boottime. - I use a DH-key of 4096 bits (I know, I am paranoid, but you don't realy feel a performance degradation.) - McAfee virusscan, ZoneAlarm PRO firewall (allways on, I cannot live without it.) - My UDP server config-file proto udp dev tun dev-node tun1 ca "c:\\Program Files\\OpenVPN\\easy-rsa\\keys\\ca.crt" cert "c:\\Program Files\\OpenVPN\\easy-rsa\\keys\\server.crt" key "c:\\Program Files\\OpenVPN\\easy-rsa\\keys\\server.key" dh "c:\\Program Files\\OpenVPN\\easy-rsa\\keys\\dh.pem" server 10.9.0.0 255.255.255.0 ifconfig-pool-persist ipp-udp.txt client-to-client keepalive 10 120 tls-auth "c:\\Program Files\\OpenVPN\\easy-rsa\\keys\\ta.key" 0 cipher AES-256-CBC comp-lzo persist-key persist-tun status openvpn-status-udp.log verb 3 - My TCP server config file proto tcp-server dev tun dev-node tun0 ca "c:\\Program Files\\OpenVPN\\easy-rsa\\keys\\ca.crt" cert "c:\\Program Files\\OpenVPN\\easy-rsa\\keys\\server.crt" key "c:\\Program Files\\OpenVPN\\easy-rsa\\keys\\server.key" dh "c:\\Program Files\\OpenVPN\\easy-rsa\\keys\\dh.pem" server 10.8.0.0 255.255.255.0 ifconfig-pool-persist ipp-tcp.txt client-to-client keepalive 10 120 tls-auth "c:\\Program Files\\OpenVPN\\easy-rsa\\keys\\ta.key" 0 cipher AES-256-CBC comp-lzo persist-key persist-tun status openvpn-status-tcp.log verb 3 At client side I run Windows 2000 and Windows XP PRO SP2 in various setups. - My UDP client config file client dev tun proto udp remote xxx.xxx.xxx.xxx 1194 resolv-retry infinite persist-key persist-tun ca "c:\\Program Files\\OpenVPN\\easy-rsa\\keys\\ca.crt" cert "c:\\Program Files\\OpenVPN\\easy-rsa\\keys\\client.crt" key "c:\\Program Files\\OpenVPN\\easy-rsa\\keys\\client.key" ns-cert-type server tls-auth "c:\\Program Files\\OpenVPN\\easy-rsa\\keys\\ta.key" 1 cipher AES-256-CBC comp-lzo verb 3 - My TCP client config file client dev tun proto tcp-client remote xxx.xxx.xxx.xxx 1194 resolv-retry infinite persist-key persist-tun http-proxy-retry http-proxy my.proxy.server portnumber ca "c:\\Program Files\\OpenVPN\\easy-rsa\\keys\\ca.crt" cert "c:\\Program Files\\OpenVPN\\easy-rsa\\keys\\client.crt" key "c:\\Program Files\\OpenVPN\\easy-rsa\\keys\\client.key" ns-cert-type server tls-auth "c:\\Program Files\\OpenVPN\\easy-rsa\\keys\\ta.key" 1 cipher AES-256-CBC comp-lzo verb 3 Any help to solve this issue in order to make the setup more reliable is highly appreciated. ____________________________________________ Openvpn-users mailing list Openvpn-users@xxxxxxxxxxxxxxxxxxxxx https://lists.sourceforge.net/lists/listinfo/openvpn-users Warning: require_once(../../../archive_common.php) [function.require-once]: failed to open stream: No such file or directory in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2005-07/msg00071.html on line 276 Fatal error: require_once() [function.require]: Failed opening required '../../../archive_common.php' (include_path='/usr/local/lib/php') in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2005-07/msg00071.html on line 276 |