[OpenVPN home] [Date Prev] [Date Index] [Date Next]
[OpenVPN mailing lists] [Thread Prev] [Thread Index] [Thread Next]
Google
 
Web openvpn.net

Re: [Openvpn-users] Re: Help tunneling internet connection over VPN TAP connection.


  • Subject: Re: [Openvpn-users] Re: Help tunneling internet connection over VPN TAP connection.
  • From: Christopher Omega <omegaworks@xxxxxxxxx>
  • Date: Tue, 18 Jan 2005 22:26:51 -0600

Its definately enabled. Disabling and reenabling didn't really have an
effect on it.
Im also having lots of problems when the client's TAP device is
bridged with its normal ethernet device. When they're unbridged, the
log file shows "Initilization sequence completed" and Im able to ping
my home network and access my home network's windows shares, connect
to my home computer using remote desktop, etc. Im also able to browse
the internet, though I can see its not through the tunnel, since using
applications that require alternative ports still dont work.

Here's the log file for when its not bridged (the bridged log is below):

Tue Jan 18 21:51:19 2005 us=788953 Current Parameter Settings:
<snip, parameters omitted>
Tue Jan 18 21:51:19 2005 us=798540 OpenVPN 2.0_rc1 Win32-MinGW [SSL]
[LZO] built on Dec  6 2004
Tue Jan 18 21:51:19 2005 us=801249 LZO compression initialized
Tue Jan 18 21:51:19 2005 us=801432 Control Channel MTU parms [ L:1576
D:140 EF:40 EB:0 ET:0 EL:0 ]
Tue Jan 18 21:51:19 2005 us=875910 Data Channel MTU parms [ L:1576
D:1450 EF:44 EB:19 ET:32 EL:0 ]
Tue Jan 18 21:51:19 2005 us=876022 Local Options String: 'V4,dev-type
tap,link-mtu 1576,tun-mtu 1532,proto TCPv4_CLIENT,comp-lzo,cipher
BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Tue Jan 18 21:51:19 2005 us=876049 Expected Remote Options String:
'V4,dev-type tap,link-mtu 1576,tun-mtu 1532,proto
TCPv4_SERVER,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method
2,tls-server'
Tue Jan 18 21:51:19 2005 us=876094 Local Options hash (VER=V4): '31fdf004'
Tue Jan 18 21:51:19 2005 us=876128 Expected Remote Options hash
(VER=V4): '3e6d1056'
Tue Jan 18 21:51:19 2005 us=876178 Attempting to establish TCP
connection with 68.75.177.14:8080
Tue Jan 18 21:51:19 2005 us=910776 TCP connection established with
68.75.177.14:8080
Tue Jan 18 21:51:19 2005 us=910864 Socket Buffers: R=[8192->8192] S=[8192->8192]
Tue Jan 18 21:51:19 2005 us=910904 TCPv4_CLIENT link local: [undef]
Tue Jan 18 21:51:19 2005 us=910928 TCPv4_CLIENT link remote: 68.75.177.14:8080
Tue Jan 18 21:51:19 2005 us=930732 TLS: Initial packet from
68.75.177.14:8080, sid=6a9b3a83 ca702e2d
Tue Jan 18 21:51:20 2005 us=429495 VERIFY OK: depth=1,
/C=us/ST=Illinois/L=Chicago/O=N/a/CN=omegaworks.no-ip.org/emailAddress=omegaworks@xxxxxxxxx
Tue Jan 18 21:51:20 2005 us=430917 VERIFY OK: nsCertType=SERVER
Tue Jan 18 21:51:20 2005 us=430945 VERIFY OK: depth=0,
/C=us/ST=Illinois/O=N/a/CN=Francisco_Vincent_Saldana/emailAddress=omegaworks@xxxxxxxxx
Tue Jan 18 21:51:21 2005 us=461333 Data Channel Encrypt: Cipher
'BF-CBC' initialized with 128 bit key
Tue Jan 18 21:51:21 2005 us=461420 Data Channel Encrypt: Using 160 bit
message hash 'SHA1' for HMAC authentication
Tue Jan 18 21:51:21 2005 us=461498 Data Channel Decrypt: Cipher
'BF-CBC' initialized with 128 bit key
Tue Jan 18 21:51:21 2005 us=461527 Data Channel Decrypt: Using 160 bit
message hash 'SHA1' for HMAC authentication
Tue Jan 18 21:51:21 2005 us=461711 Control Channel: TLSv1, cipher
TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
Tue Jan 18 21:51:21 2005 us=461769 [Francisco_Vincent_Saldana] Peer
Connection Initiated with 68.75.177.14:8080
Tue Jan 18 21:51:21 2005 us=937290 SENT CONTROL
[Francisco_Vincent_Saldana]: 'PUSH_REQUEST' (status=1)
Tue Jan 18 21:51:22 2005 us=164527 PUSH: Received control message:
'PUSH_REPLY,dhcp-option DNS 206.141.192.60,dhcp-option DNS
206.141.193.55,route-gateway 192.168.1.2,ping 10,ping-restart
120,ifconfig 192.168.1.51 255.255.255.0'
Tue Jan 18 21:51:22 2005 us=164662 OPTIONS IMPORT: timers and/or
timeouts modified
Tue Jan 18 21:51:22 2005 us=164686 OPTIONS IMPORT: --ifconfig/up
options modified
Tue Jan 18 21:51:22 2005 us=164708 OPTIONS IMPORT: route options modified
Tue Jan 18 21:51:22 2005 us=164730 OPTIONS IMPORT: --ip-win32 and/or
--dhcp-option options modified
Tue Jan 18 21:51:22 2005 us=173504 TAP-WIN32 device [OpenVPN] opened:
\\.\Global\{ADE5A39E-8B33-4E6A-B7A8-9A364B1185CC}.tap
Tue Jan 18 21:51:22 2005 us=173585 TAP-Win32 Driver Version 8.1 
Tue Jan 18 21:51:22 2005 us=173612 TAP-Win32 MTU=1500
Tue Jan 18 21:51:22 2005 us=173647 Notified TAP-Win32 driver to set a
DHCP IP/netmask of 192.168.1.51/255.255.255.0 on interface
{ADE5A39E-8B33-4E6A-B7A8-9A364B1185CC} [DHCP-serv: 192.168.1.0,
lease-time: 31536000]
Tue Jan 18 21:51:22 2005 us=173686 DHCP option string: 0608ce8d c03cce8d c137
Tue Jan 18 21:51:22 2005 us=175657 Successful ARP Flush on interface
[393218] {ADE5A39E-8B33-4E6A-B7A8-9A364B1185CC}
Tue Jan 18 21:51:22 2005 us=209979 TEST ROUTES: 0/0 succeeded len=0
ret=0 a=0 u/d=down
Tue Jan 18 21:51:22 2005 us=210041 Route: Waiting for TUN/TAP
interface to come up...
<snip, above two messages repeated>
Tue Jan 18 21:51:27 2005 us=940075 route ADD 68.75.177.14 MASK
255.255.255.255 10.10.1.1
Tue Jan 18 21:51:27 2005 us=941860 Route addition via IPAPI succeeded
Tue Jan 18 21:51:27 2005 us=941934 route DELETE 0.0.0.0
Tue Jan 18 21:51:27 2005 us=971424 Route deletion via IPAPI succeeded
Tue Jan 18 21:51:27 2005 us=971512 route ADD 0.0.0.0 MASK 0.0.0.0 192.168.1.2
Tue Jan 18 21:51:27 2005 us=984366 Route addition via IPAPI succeeded
Tue Jan 18 21:51:27 2005 us=984434 Initialization Sequence Completed

Now, with the network bridged, I cant access the internet and I cant
access my home network (even after disabling and reenabling). The log
file looks like this:

Tue Jan 18 21:55:56 2005 us=293955 Current Parameter Settings:
<snip, config omitted>
Tue Jan 18 21:55:56 2005 us=298584 OpenVPN 2.0_rc1 Win32-MinGW [SSL]
[LZO] built on Dec  6 2004
Tue Jan 18 21:55:56 2005 us=306834 LZO compression initialized
Tue Jan 18 21:55:56 2005 us=307019 Control Channel MTU parms [ L:1576
D:140 EF:40 EB:0 ET:0 EL:0 ]
Tue Jan 18 21:55:56 2005 us=352480 RESOLVE: Cannot resolve host
address: frankie.no-ip.org: [NO_DATA] The requested name is valid but
does not have an IP address.
Tue Jan 18 21:55:56 2005 us=352556 Data Channel MTU parms [ L:1576
D:1450 EF:44 EB:19 ET:32 EL:0 ]
Tue Jan 18 21:55:56 2005 us=352622 Local Options String: 'V4,dev-type
tap,link-mtu 1576,tun-mtu 1532,proto TCPv4_CLIENT,comp-lzo,cipher
BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Tue Jan 18 21:55:56 2005 us=352648 Expected Remote Options String:
'V4,dev-type tap,link-mtu 1576,tun-mtu 1532,proto
TCPv4_SERVER,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method
2,tls-server'
Tue Jan 18 21:55:56 2005 us=352694 Local Options hash (VER=V4): '31fdf004'
Tue Jan 18 21:55:56 2005 us=352728 Expected Remote Options hash
(VER=V4): '3e6d1056'
Tue Jan 18 21:55:56 2005 us=353729 RESOLVE: Cannot resolve host
address: frankie.no-ip.org: [NO_DATA] The requested name is valid but
does not have an IP address.
Tue Jan 18 21:56:01 2005 us=426506 Attempting to establish TCP
connection with 68.75.177.14:8080
Tue Jan 18 21:56:01 2005 us=461507 TCP connection established with
68.75.177.14:8080
Tue Jan 18 21:56:01 2005 us=461605 Socket Buffers: R=[8192->8192] S=[8192->8192]
Tue Jan 18 21:56:01 2005 us=461645 TCPv4_CLIENT link local: [undef]
Tue Jan 18 21:56:01 2005 us=461669 TCPv4_CLIENT link remote: 68.75.177.14:8080
Tue Jan 18 21:56:01 2005 us=479667 TLS: Initial packet from
68.75.177.14:8080, sid=46217b22 99807d09
Tue Jan 18 21:56:01 2005 us=993994 VERIFY OK: depth=1,
/C=us/ST=Illinois/L=Chicago/O=N/a/CN=omegaworks.no-ip.org/emailAddress=omegaworks@xxxxxxxxx
Tue Jan 18 21:56:01 2005 us=995418 VERIFY OK: nsCertType=SERVER
Tue Jan 18 21:56:01 2005 us=995446 VERIFY OK: depth=0,
/C=us/ST=Illinois/O=N/a/CN=Francisco_Vincent_Saldana/emailAddress=omegaworks@xxxxxxxxx
Tue Jan 18 21:56:03 2005 us=67407 Data Channel Encrypt: Cipher
'BF-CBC' initialized with 128 bit key
Tue Jan 18 21:56:03 2005 us=67491 Data Channel Encrypt: Using 160 bit
message hash 'SHA1' for HMAC authentication
Tue Jan 18 21:56:03 2005 us=67571 Data Channel Decrypt: Cipher
'BF-CBC' initialized with 128 bit key
Tue Jan 18 21:56:03 2005 us=67599 Data Channel Decrypt: Using 160 bit
message hash 'SHA1' for HMAC authentication
Tue Jan 18 21:56:03 2005 us=67817 Control Channel: TLSv1, cipher
TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
Tue Jan 18 21:56:03 2005 us=67878 [Francisco_Vincent_Saldana] Peer
Connection Initiated with 68.75.177.14:8080
Tue Jan 18 21:56:04 2005 us=82725 SENT CONTROL
[Francisco_Vincent_Saldana]: 'PUSH_REQUEST' (status=1)
Tue Jan 18 21:56:04 2005 us=268648 PUSH: Received control message:
'PUSH_REPLY,dhcp-option DNS 206.141.192.60,dhcp-option DNS
206.141.193.55,route-gateway 192.168.1.2,ping 10,ping-restart
120,ifconfig 192.168.1.51 255.255.255.0'
Tue Jan 18 21:56:04 2005 us=268788 OPTIONS IMPORT: timers and/or
timeouts modified
Tue Jan 18 21:56:04 2005 us=268812 OPTIONS IMPORT: --ifconfig/up
options modified
Tue Jan 18 21:56:04 2005 us=268834 OPTIONS IMPORT: route options modified
Tue Jan 18 21:56:04 2005 us=268856 OPTIONS IMPORT: --ip-win32 and/or
--dhcp-option options modified
Tue Jan 18 21:56:04 2005 us=277606 TAP-WIN32 device [OpenVPN] opened:
\\.\Global\{ADE5A39E-8B33-4E6A-B7A8-9A364B1185CC}.tap
Tue Jan 18 21:56:04 2005 us=277687 TAP-Win32 Driver Version 8.1 
Tue Jan 18 21:56:04 2005 us=277714 TAP-Win32 MTU=1500
Tue Jan 18 21:56:04 2005 us=277749 Notified TAP-Win32 driver to set a
DHCP IP/netmask of 192.168.1.51/255.255.255.0 on interface
{ADE5A39E-8B33-4E6A-B7A8-9A364B1185CC} [DHCP-serv: 192.168.1.0,
lease-time: 31536000]
Tue Jan 18 21:56:04 2005 us=277787 DHCP option string: 0608ce8d c03cce8d c137
Tue Jan 18 21:56:04 2005 us=279961 NOTE: could not get adapter index
for \DEVICE\TCPIP_{ADE5A39E-8B33-4E6A-B7A8-9A364B1185CC}, status=55 :
The specified network resource or device is no longer available.
Tue Jan 18 21:56:04 2005 us=287107 TEST ROUTES: 0/1 succeeded len=0
ret=0 a=0 u/d=up
Tue Jan 18 21:56:04 2005 us=287180 Route: Waiting for TUN/TAP
interface to come up...
<snip, above two messages repeated>
Tue Jan 18 21:56:34 2005 us=116340 TEST ROUTES: 0/1 succeeded len=0
ret=0 a=0 u/d=up
Tue Jan 18 21:56:34 2005 us=116424 route ADD 68.75.177.14 MASK
255.255.255.255 10.10.1.1
Tue Jan 18 21:56:34 2005 us=117975 Route addition via IPAPI succeeded
Tue Jan 18 21:56:34 2005 us=118046 route DELETE 0.0.0.0
Tue Jan 18 21:56:34 2005 us=119638 Route deletion via IPAPI succeeded
Tue Jan 18 21:56:34 2005 us=119707 route ADD 0.0.0.0 MASK 0.0.0.0 192.168.1.2
Tue Jan 18 21:56:34 2005 us=120487 Warning: route gateway is not
reachable on any active network adapters: 192.168.1.2
Tue Jan 18 21:56:34 2005 us=120533 Route addition via IPAPI failed
Tue Jan 18 21:56:34 2005 us=120561 Initialization Sequence Completed With Errors

On Wed, 19 Jan 2005 03:05:30 +0100 (CET), Mathias Sundman
<mathias@xxxxxxxxxx> wrote:
> On Tue, 18 Jan 2005, Christopher Omega wrote:
> 
> > The server pushes the redirect-gateway directive to the client
> > already.  I believe the client successfully processes it too, the
> > problem is in the very wierd responce in my client log file:
> >
> > Tue Jan 18 18:24:35 2005 us=39425 TAP-WIN32 device [OpenVPN] opened:
> > \\.\Global\{ADE5A39E-8B33-4E6A-B7A8-9A364B1185CC}.tap
> > Tue Jan 18 18:24:35 2005 us=39512 TAP-Win32 Driver Version 8.1
> > Tue Jan 18 18:24:35 2005 us=39539 TAP-Win32 MTU=1500
> > Tue Jan 18 18:24:35 2005 us=39573 Notified TAP-Win32 driver to set a
> > DHCP IP/netmask of 192.168.1.51/255.255.255.0 on interface
> > {ADE5A39E-8B33-4E6A-B7A8-9A364B1185CC} [DHCP-serv: 192.168.1.0,
> > lease-time: 31536000]
> > Tue Jan 18 18:24:35 2005 us=39610 DHCP option string: 0608ce8d c03cce8d c137
> > Tue Jan 18 18:24:35 2005 us=114158 NOTE: could not get adapter index
> > for \DEVICE\TCPIP_{ADE5A39E-8B33-4E6A-B7A8-9A364B1185CC}, status=55 :
> > The specified network resource or device is no longer available.
> 
> You're right, here's the problem.
> 
> Check that the TAP-win32 device is enabled. If it is, then try to disable
> it and then re-enable it again.
> 
> --
> _____________________________________________________________
> Mathias Sundman                  (^)   ASCII Ribbon Campaign
> OpenVPN GUI for Windows           X    NO HTML/RTF in e-mail
> http://www.nilings.se/openvpn    / \   NO Word docs in e-mail
>


-------------------------------------------------------
The SF.Net email is sponsored by: Beat the post-holiday blues
Get a FREE limited edition SourceForge.net t-shirt from ThinkGeek.
It's fun and FREE -- well, almost....http://www.thinkgeek.com/sfshirt
_______________________________________________
Openvpn-users mailing list
Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/openvpn-users