[OpenVPN home] [Date Prev] [Date Index] [Date Next]
[OpenVPN mailing lists] [Thread Prev] [Thread Index] [Thread Next]
Google
 
Web openvpn.net

Re: [Openvpn-users] Connection between server and one client stops working

  • Subject: Re: [Openvpn-users] Connection between server and one client stops working
  • From: James Yonan <jim@xxxxxxxxx>
  • Date: Thu, 1 Sep 2005 15:16:05 -0600 (MDT)
On Thu, 1 Sep 2005, Misty Stanley-Jones wrote:

> This has happened to me three times now (I have been running OpenVPN since 
> April).  One day I will have no trouble with my VPN at all.  The next day, 
> one client (always the same one!!) cannot cnnect.  The server and client are 
> both Linux, both running OpenVPN 2.0 compiled from source.  The client is a 
> gateway into another network.  I am using the tls-auth.
> 
> The errors I get are like this:
> 
> (from server)
> 
> Sep  1 14:26:31 furnsrv openvpn[19585]: MULTI: multi_create_instance called
> Sep  1 14:26:31 furnsrv openvpn[19585]: 65.173.83.110:12946 Re-using SSL/TLS 
> context
> Sep  1 14:26:31 furnsrv openvpn[19585]: 65.173.83.110:12946 LZO compression 
> initialized
> Sep  1 14:26:31 furnsrv openvpn[19585]: 65.173.83.110:12946 Control Channel 
> MTU parms [ L:1542 D:166 EF:66 EB:0 ET:0 EL:0 ]
> Sep  1 14:26:31 furnsrv openvpn[19585]: 65.173.83.110:12946 Data Channel MTU 
> parms [ L:1542 D:1450 EF:42 EB:23 ET:0 EL:0 AF:3/1 ]
> Sep  1 14:26:31 furnsrv openvpn[19585]: 65.173.83.110:12946 Local Options 
> String: 'V4,dev-type tun,link-mtu 1542,tun-mtu 1500,proto 
> UDPv4,comp-lzo,keydir 0,cipher BF-CBC,auth SHA1,keysize 
> 128,tls-auth,key-method 2,tls-server'
> Sep  1 14:26:31 furnsrv openvpn[19585]: 65.173.83.110:12946 Expected Remote 
> Options String: 'V4,dev-type tun,link-mtu 1542,tun-mtu 1500,proto 
> UDPv4,comp-lzo,keydir 1,cipher BF-CBC,auth SHA1,keysize 
> 128,tls-auth,key-method 2,tls-client'
> Sep  1 14:26:31 furnsrv openvpn[19585]: 65.173.83.110:12946 Local Options hash 
> (VER=V4): '14168603'
> Sep  1 14:26:31 furnsrv openvpn[19585]: 65.173.83.110:12946 Expected Remote 
> Options hash (VER=V4): '504e774e'
> Sep  1 14:26:31 furnsrv openvpn[19585]: 65.173.83.110:12946 TLS: Initial 
> packet from 65.173.83.110:12946, sid=aeb79fcb a0f5326f
> Sep  1 14:26:47 furnsrv openvpn[19585]: 65.173.83.110:12946 TLS: new session 
> incoming connection from 65.173.83.110:12946
> 
> 
> (from client:)
> 
> Sep  1 14:27:11 dutchsrv openvpn[13998]: Control Channel Authentication: using 
> '/usr/local/openvpn/etc/ta.key' as a OpenVPN static key file
> Sep  1 14:27:11 dutchsrv openvpn[13998]: Outgoing Control Channel 
> Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
> Sep  1 14:27:11 dutchsrv openvpn[13998]: Incoming Control Channel 
> Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
> Sep  1 14:27:11 dutchsrv openvpn[13998]: LZO compression initialized
> Sep  1 14:27:11 dutchsrv openvpn[13998]: Control Channel MTU parms [ L:1542 
> D:166 EF:66 EB:0 ET:0 EL:0 ]
> Sep  1 14:27:11 dutchsrv openvpn[13998]: Data Channel MTU parms [ L:1542 
> D:1450 EF:42 EB:23 ET:0 EL:0 AF:3/1 ]
> Sep  1 14:27:11 dutchsrv openvpn[13998]: Local Options String: 'V4,dev-type 
> tun,link-mtu 1542,tun-mtu 1500,proto UDPv4,comp-lzo,keydir 1,cipher 
> BF-CBC,auth SHA1,keysize 128,tls-auth,key-method 2,tls-client'
> Sep  1 14:27:11 dutchsrv openvpn[13998]: Expected Remote Options String: 
> 'V4,dev-type tun,link-mtu 1542,tun-mtu 1500,proto UDPv4,comp-lzo,keydir 
> 0,cipher BF-CBC,auth SHA1,keysize 128,tls-auth,key-method 2,tls-server'
> Sep  1 14:27:11 dutchsrv openvpn[13998]: Local Options hash (VER=V4): 
> '504e774e'
> Sep  1 14:27:11 dutchsrv openvpn[13998]: Expected Remote Options hash 
> (VER=V4): '14168603'
> Sep  1 14:27:11 dutchsrv openvpn[13998]: Socket Buffers: R=[111616->131072] 
> S=[111616->131072]
> Sep  1 14:27:11 dutchsrv openvpn[13998]: UDPv4 link local (bound): 
> [undef]:1194
> Sep  1 14:27:11 dutchsrv openvpn[13998]: UDPv4 link remote: 65.40.78.243:119
> 
> I do not change a thing, an d no files are changed, in between.
> 
> My keys are all set to last for a year without expiring.
> 
> Please help!

>From the log file, it looks like a one-way connection -- the client can 
send UDP packets to the server, but the server -> client direction is 
being blocked.

James


____________________________________________
Openvpn-users mailing list
Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/openvpn-users

Warning: require_once(../../../archive_common.php) [function.require-once]: failed to open stream: No such file or directory in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2005-09/msg00009.html on line 255

Fatal error: require_once() [function.require]: Failed opening required '../../../archive_common.php' (include_path='/usr/local/lib/php') in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2005-09/msg00009.html on line 255