[Openvpn-users] Connection between server and one client stops working

[Misty Stanley-Jones <misty@xxxxxxxxxxxxxx>]

This has happened to me three times now (I have been running OpenVPN since 
April).  One day I will have no trouble with my VPN at all.  The next day, 
one client (always the same one!!) cannot cnnect.  The server and client are 
both Linux, both running OpenVPN 2.0 compiled from source.  The client is a 
gateway into another network.  I am using the tls-auth.

The errors I get are like this:

(from server)

Sep  1 14:26:31 furnsrv openvpn[19585]: MULTI: multi_create_instance called
Sep  1 14:26:31 furnsrv openvpn[19585]: 65.173.83.110:12946 Re-using SSL/TLS 
context
Sep  1 14:26:31 furnsrv openvpn[19585]: 65.173.83.110:12946 LZO compression 
initialized
Sep  1 14:26:31 furnsrv openvpn[19585]: 65.173.83.110:12946 Control Channel 
MTU parms [ L:1542 D:166 EF:66 EB:0 ET:0 EL:0 ]
Sep  1 14:26:31 furnsrv openvpn[19585]: 65.173.83.110:12946 Data Channel MTU 
parms [ L:1542 D:1450 EF:42 EB:23 ET:0 EL:0 AF:3/1 ]
Sep  1 14:26:31 furnsrv openvpn[19585]: 65.173.83.110:12946 Local Options 
String: 'V4,dev-type tun,link-mtu 1542,tun-mtu 1500,proto 
UDPv4,comp-lzo,keydir 0,cipher BF-CBC,auth SHA1,keysize 
128,tls-auth,key-method 2,tls-server'
Sep  1 14:26:31 furnsrv openvpn[19585]: 65.173.83.110:12946 Expected Remote 
Options String: 'V4,dev-type tun,link-mtu 1542,tun-mtu 1500,proto 
UDPv4,comp-lzo,keydir 1,cipher BF-CBC,auth SHA1,keysize 
128,tls-auth,key-method 2,tls-client'
Sep  1 14:26:31 furnsrv openvpn[19585]: 65.173.83.110:12946 Local Options hash 
(VER=V4): '14168603'
Sep  1 14:26:31 furnsrv openvpn[19585]: 65.173.83.110:12946 Expected Remote 
Options hash (VER=V4): '504e774e'
Sep  1 14:26:31 furnsrv openvpn[19585]: 65.173.83.110:12946 TLS: Initial 
packet from 65.173.83.110:12946, sid=aeb79fcb a0f5326f
Sep  1 14:26:47 furnsrv openvpn[19585]: 65.173.83.110:12946 TLS: new session 
incoming connection from 65.173.83.110:12946


(from client:)

Sep  1 14:27:11 dutchsrv openvpn[13998]: Control Channel Authentication: using 
'/usr/local/openvpn/etc/ta.key' as a OpenVPN static key file
Sep  1 14:27:11 dutchsrv openvpn[13998]: Outgoing Control Channel 
Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Sep  1 14:27:11 dutchsrv openvpn[13998]: Incoming Control Channel 
Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Sep  1 14:27:11 dutchsrv openvpn[13998]: LZO compression initialized
Sep  1 14:27:11 dutchsrv openvpn[13998]: Control Channel MTU parms [ L:1542 
D:166 EF:66 EB:0 ET:0 EL:0 ]
Sep  1 14:27:11 dutchsrv openvpn[13998]: Data Channel MTU parms [ L:1542 
D:1450 EF:42 EB:23 ET:0 EL:0 AF:3/1 ]
Sep  1 14:27:11 dutchsrv openvpn[13998]: Local Options String: 'V4,dev-type 
tun,link-mtu 1542,tun-mtu 1500,proto UDPv4,comp-lzo,keydir 1,cipher 
BF-CBC,auth SHA1,keysize 128,tls-auth,key-method 2,tls-client'
Sep  1 14:27:11 dutchsrv openvpn[13998]: Expected Remote Options String: 
'V4,dev-type tun,link-mtu 1542,tun-mtu 1500,proto UDPv4,comp-lzo,keydir 
0,cipher BF-CBC,auth SHA1,keysize 128,tls-auth,key-method 2,tls-server'
Sep  1 14:27:11 dutchsrv openvpn[13998]: Local Options hash (VER=V4): 
'504e774e'
Sep  1 14:27:11 dutchsrv openvpn[13998]: Expected Remote Options hash 
(VER=V4): '14168603'
Sep  1 14:27:11 dutchsrv openvpn[13998]: Socket Buffers: R=[111616->131072] 
S=[111616->131072]
Sep  1 14:27:11 dutchsrv openvpn[13998]: UDPv4 link local (bound): 
[undef]:1194
Sep  1 14:27:11 dutchsrv openvpn[13998]: UDPv4 link remote: 65.40.78.243:119

I do not change a thing, an d no files are changed, in between.

My keys are all set to last for a year without expiring.

Please help!

Thanks,
Misty

____________________________________________
Openvpn-users mailing list
Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/openvpn-users