[OpenVPN home] [Date Prev] [Date Index] [Date Next]
[OpenVPN mailing lists] [Thread Prev] [Thread Index] [Thread Next]
Google
 
Web openvpn.net

Re: [Openvpn-users] Connection listening on wrong IP


  • Subject: Re: [Openvpn-users] Connection listening on wrong IP
  • From: hotzenpoltz@xxxxxxxxxxxxxx
  • Date: Mon, 14 May 2007 14:35:20 +0200

Hello,

yes, i am on windows. and ipconfig shows both the IP that OpenVPN uses for listening (the wrong one which leads to another network) and the one i want to use. so both exist and work. if i define the one with the internet connection via the --local option, everything works. but when i remove this option, OpenVPN autonomously sets the wrong adress as the only on to listen on.
Here is the server log. As you vcan see in Line 011, local is [undef], but in line 193 it is defined. I am quiet confused...

001   us=53492 Current Parameter Settings:
002   us=53627   config = 'serverconfigTCP.ovpn'
003   us=53642   mode = 1
004   us=53654   show_ciphers = DISABLED
005   us=53665   show_digests = DISABLED
006   us=53675   show_engines = DISABLED
007   us=53685   genkey = DISABLED
008   us=53695   key_pass_file = '[UNDEF]'
009   us=53706   show_tls_ciphers = DISABLED
010   us=53716   proto = 1
011   us=53726   local = '[UNDEF]'
012   us=53736   remote_list = NULL
013   us=53746   remote_random = DISABLED
014   us=53757   local_port = 1194
015   us=53767   remote_port = 1194
016   us=53777   remote_float = ENABLED
017   us=53787   ipchange = '[UNDEF]'
018   us=53797   bind_local = ENABLED
019   us=53807   dev = 'tap'
020   us=53818   dev_type = '[UNDEF]'
021   us=53828   dev_node = 'TAP-VPN'
022   us=53838   tun_ipv6 = DISABLED
023   us=53849   ifconfig_local = '192.168.1.1'
024   us=53860   ifconfig_remote_netmask = '255.255.255.0'
025   us=53870   ifconfig_noexec = DISABLED
026   us=53880   ifconfig_nowarn = DISABLED
027   us=53890   shaper = 0
028   us=53900   tun_mtu = 1500
029   us=53910   tun_mtu_defined = ENABLED
030   us=53920   link_mtu = 1500
031   us=53930   link_mtu_defined = DISABLED
032   us=53940   tun_mtu_extra = 32
033   us=53950   tun_mtu_extra_defined = ENABLED
034   us=53960   fragment = 0
035   us=53970   mtu_discover_type = -1
036   us=53980   mtu_test = 0
037   us=53989   mlock = DISABLED
038   us=53999   keepalive_ping = 10
039   us=54009   keepalive_timeout = 60
040   us=54019   inactivity_timeout = 0
041   us=54029   ping_send_timeout = 10
042   us=54039   ping_rec_timeout = 120
043   us=54049   ping_rec_timeout_action = 2
044   us=54060   ping_timer_remote = DISABLED
045   us=54070   remap_sigusr1 = 0
046   us=54080   explicit_exit_notification = 0
047   us=54090   persist_tun = DISABLED
048   us=54100   persist_local_ip = DISABLED
049   us=54110   persist_remote_ip = DISABLED
050   us=54120   persist_key = DISABLED
051   us=54134   mssfix = 1450
052   us=54146   resolve_retry_seconds = 1000000000
053   us=54157   connect_retry_seconds = 5
054   us=54167   username = '[UNDEF]'
055   us=54176   groupname = '[UNDEF]'
056   us=54186   chroot_dir = '[UNDEF]'
057   us=54196   cd_dir = '[UNDEF]'
058   us=54206   writepid = '[UNDEF]'
059   us=54216   up_script = '[UNDEF]'
060   us=54225   down_script = '[UNDEF]'
061   us=54235   down_pre = DISABLED
062   us=54245   up_restart = DISABLED
063   us=54255   up_delay = DISABLED
064   us=54264   daemon = DISABLED
065   us=54274   inetd = 0
066   us=54284   log = DISABLED
067   us=54294   suppress_timestamps = DISABLED
068   us=54304   nice = 0
069   us=54313   verbosity = 6
070   us=54323   mute = 300
071   us=54339   gremlin = 0
072   us=54349   status_file = '[UNDEF]'
073   us=54360   status_file_version = 1
074   us=54370   status_file_update_freq = 60
075   us=54380   occ = ENABLED
076   us=54390   rcvbuf = 0
077   us=54399   sndbuf = 0
078   us=54410   socks_proxy_server = '[UNDEF]'
079   us=54431   socks_proxy_port = 0
080   us=54442   socks_proxy_retry = DISABLED
081   us=54452   fast_io = DISABLED
082   us=54462   comp_lzo = DISABLED
083   us=54472   comp_lzo_adaptive = ENABLED
084   us=54482   route_script = '[UNDEF]'
085   us=54492   route_default_gateway = '[UNDEF]'
086   us=54502   route_noexec = DISABLED
087   us=54512   route_delay = 0
088   us=54522   route_delay_window = 30
089   us=54532   route_delay_defined = DISABLED
090   us=54616   shared_secret_file = '[UNDEF]'
091   us=54627   key_direction = 0
092   us=54637   ciphername_defined = ENABLED
093   us=54647   ciphername = 'BF-CBC'
094   us=54658   authname_defined = ENABLED
095   us=54668   authname = 'SHA1'
096   us=54678   keysize = 0
097   us=54689   engine = DISABLED
098   us=54699   replay = ENABLED
099   us=54710   mute_replay_warnings = DISABLED
100   us=54719   replay_window = 0
101   us=54729   replay_time = 0
102   us=54739   packet_id_file = '[UNDEF]'
103   us=54749   use_iv = ENABLED
104   us=54759   test_crypto = DISABLED
105   us=54768   tls_server = ENABLED
106   us=54778   tls_client = DISABLED
107   us=54788   key_method = 2
108   us=54798   ca_file = '\\confserver\CA\CACertificate.crt'
109   us=54809   dh_file = '\\confserver\CA\dh1024.pem'
110   us=54820   cert_file = '\\confserver\CA\ServerCertificate.crt'
111   us=54831   priv_key_file = '\\confserver\CA\ServerKey.key'
112   us=54841   pkcs12_file = '[UNDEF]'
113   us=54851   cryptoapi_cert = '[UNDEF]'
114   us=54861   cipher_list = '[UNDEF]'
115   us=54871   tls_verify = '[UNDEF]'
116   us=54881   tls_remote = '[UNDEF]'
117   us=54891   crl_file = '\\confserver\CA\crlist.pem'
118   us=54902   ns_cert_type = 0
119   us=54911   tls_timeout = 2
120   us=54921   renegotiate_bytes = 0
121   us=54931   renegotiate_packets = 0
122   us=54941   renegotiate_seconds = 3600
123   us=54951   handshake_window = 60
124   us=54962   transition_window = 3600
125   us=54972   single_session = DISABLED
126   us=54981   tls_exit = DISABLED
127   us=54992   tls_auth_file = '[UNDEF]'
128   us=55005   server_network = 0.0.0.0
129   us=55017   server_netmask = 0.0.0.0
130   us=55033   server_bridge_ip = 0.0.0.0
131   us=55045   server_bridge_netmask = 0.0.0.0
132   us=55056   server_bridge_pool_start = 0.0.0.0
133   us=55068   server_bridge_pool_end = 0.0.0.0
134   us=55079   push_list = 'ping 10,ping-restart 60'
135   us=55089   ifconfig_pool_defined = ENABLED
136   us=55102   ifconfig_pool_start = 192.168.1.10
137   us=55114   ifconfig_pool_end = 192.168.1.50
138   us=55126   ifconfig_pool_netmask = 0.0.0.0
139   us=55139   ifconfig_pool_persist_filename = '[UNDEF]'
140   us=55151   ifconfig_pool_persist_refresh_freq = 600
141   us=55162   ifconfig_pool_linear = DISABLED
142   us=55173   n_bcast_buf = 256
143   us=55183   tcp_queue_limit = 64
144   us=55193   real_hash_size = 256
145   us=55202   virtual_hash_size = 256
146   us=55212   client_connect_script = '[UNDEF]'
147   us=55223   learn_address_script = '[UNDEF]'
148   us=55233   client_disconnect_script = '[UNDEF]'
149   us=55244   client_config_dir = '[UNDEF]'
150   us=55253   ccd_exclusive = DISABLED
151   us=55263   tmp_dir = '[UNDEF]'
152   us=55273   push_ifconfig_defined = DISABLED
153   us=55284   push_ifconfig_local = 0.0.0.0
154   us=55296   push_ifconfig_remote_netmask = 0.0.0.0
155   us=55307   enable_c2c = DISABLED
156   us=55316   duplicate_cn = DISABLED
157   us=55326   cf_max = 0
158   us=55335   cf_per = 0
159   us=55346   max_clients = 1024
160   us=55357   max_routes_per_client = 256
161   us=55367   client_cert_not_required = DISABLED
162   us=55378   username_as_common_name = DISABLED
163   us=55389   auth_user_pass_verify_script = '[UNDEF]'
164   us=55400   auth_user_pass_verify_script_via_file = DISABLED
165   us=55410   client = DISABLED
166   us=55420   pull = DISABLED
167   us=55430   auth_user_pass_file = '[UNDEF]'
168   us=55443   show_net_up = DISABLED
169   us=55453   route_method = 0
170   us=55462   ip_win32_defined = DISABLED
171   us=55472   ip_win32_type = 0
172   us=55482   dhcp_masq_offset = 0
173   us=55492   dhcp_lease_time = 31536000
174   us=55502   tap_sleep = 10
175   us=55512   dhcp_options = DISABLED
176   us=55521   dhcp_renew = DISABLED
177   us=55531   dhcp_pre_release = DISABLED
178   us=55540   dhcp_release = DISABLED
179   us=55550   domain = '[UNDEF]'
180   us=55560   netbios_scope = '[UNDEF]'
181   us=55569   netbios_node_type = 0
182   us=55579   disable_nbt = DISABLED
183   us=55600 OpenVPN 2.0.7 Win32-MinGW [SSL] [LZO] built on Apr 12 2006
184   us=95634 Diffie-Hellman initialized with 1024 bit key
185   us=97030 TLS-Auth MTU parms [ L:1575 D:140 EF:40 EB:0 ET:0 EL:0 ]
186   us=98170 ******** NOTE:  Please manually set the IP/netmask of 'TAP-VPN' to 192.168.1.1/255.255.255.0 (if it is not already set)
187   us=99038 TAP-WIN32 device [TAP-VPN] opened: \\.\Global\{7E2CE1B4-503C-4DDD-8C61-4043CC9EAB5F}.tap
188   us=99068 TAP-Win32 Driver Version 8.1 
189   us=99084 TAP-Win32 MTU=1500
190   us=99238 Sleeping for 10 seconds...
191   us=903508 Successful ARP Flush on interface [3] {7E2CE1B4-503C-4DDD-8C61-4043CC9EAB5F}
192   us=903560 Data Channel MTU parms [ L:1575 D:1450 EF:43 EB:4 ET:32 EL:0 ]
193   us=903589 Listening for incoming TCP connection on 10.10.7.1:1194
194   us=904562 Socket Buffers: R=[8192->8192] S=[8192->8192]
195   us=904595 TCPv4_SERVER link local (bound): 10.10.7.1:1194
196   us=904607 TCPv4_SERVER link remote: [undef]
197   us=904625 MULTI: multi_init called, r=256 v=256
198   us=904663 IFCONFIG POOL: base=192.168.1.10 size=41
199   us=904687 MULTI: TCP INIT maxclients=60 maxevents=64
200   us=904720 Initialization Sequence Completed
 
-------- Original-Nachricht --------
Datum: Mon, 14 May 2007 10:44:28 +0300
Von: Alexandros Papadopoulos <apap@xxxxxx>
An: openvpn-users@xxxxxxxxxxxxxxxxxxxxx
Betreff: Re: [Openvpn-users] Connection listening on wrong IP

> On Monday 14 May 2007, Helmut Didong wrote:
> > Thanks, but i did not configure any  --local option, therefore openvpn
> > should listen on all interfaces. but why does it bind to this one
> > autonomously?
> 
> I guess openvpn recons this is your address. What is the output of 
> ipconfig /all ? (I assume you're on Windows)
> 
> Increase the verbosity (verb 6) in the config file, enable logging, and
> look 
> in the log for any information as to how/why this address is configured.
> 
> -A
> 
> -------------------------------------------------------------------------
> This SF.net email is sponsored by DB2 Express
> Download DB2 Express C - the FREE version of DB2 express and take
> control of your XML. No limits. Just data. Click to get it now.
> http://sourceforge.net/powerbar/db2/
> _______________________________________________
> Openvpn-users mailing list
> Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
> https://lists.sourceforge.net/lists/listinfo/openvpn-users
______________________
OpenVPN mailing lists
https://lists.sourceforge.net/lists/listinfo/openvpn-users