[OpenVPN home] [Date Prev] [Date Index] [Date Next]
[OpenVPN mailing lists] [Thread Prev] [Thread Index] [Thread Next]
Google
 
Web openvpn.net

[Openvpn-users] Slow performance/disconnecting sessions


  • Subject: [Openvpn-users] Slow performance/disconnecting sessions
  • From: "Bundy, Tobias" <bundy@xxxxxxxxxxxx>
  • Date: Thu, 31 May 2007 12:50:28 +0200

Hi Everybody,

I am running OpenVPN 2.09 on a Windows Server 2003 SP1. Our users are
complaining about slow performance and disconnecting sessions.
When slow performance or disconnecting sessions accure, the OpenVPN-Log
on the server looks like this:

ed May 30 12:49:18 2007 MULTI: multi_create_instance called
Wed May 30 12:49:18 2007 Re-using SSL/TLS context
Wed May 30 12:49:18 2007 LZO compression initialized
Wed May 30 12:49:18 2007 Control Channel MTU parms [ L:1544 D:168 EF:68
EB:0 ET:0 EL:0 ]
Wed May 30 12:49:18 2007 Data Channel MTU parms [ L:1544 D:1450 EF:44
EB:135 ET:0 EL:0 AF:3/1 ]
Wed May 30 12:49:18 2007 Local Options hash (VER=V4): 'bd577cd1'
Wed May 30 12:49:18 2007 Expected Remote Options hash (VER=V4):
'ee93268d'
Wed May 30 12:49:18 2007 TCP connection established with
80.130.4.155:63025
Wed May 30 12:49:18 2007 TCPv4_SERVER link local: [undef]
Wed May 30 12:49:18 2007 TCPv4_SERVER link remote: 80.130.4.155:63025
Wed May 30 12:49:18 2007 80.130.4.155:63025 TLS: Initial packet from
<client's public ip-address>:63025, sid=3a976d02 c6196e78
Wed May 30 12:49:33 2007 80.130.4.155:63025 Authenticate/Decrypt packet
error: packet HMAC authentication failed
Wed May 30 12:49:33 2007 80.130.4.155:63025 TLS Error: incoming packet
authentication failed from <client's public ip-address>:63025
Wed May 30 12:49:33 2007 80.130.4.155:63025 Fatal TLS error
(check_tls_errors_co), restarting
Wed May 30 12:49:33 2007 80.130.4.155:63025 SIGUSR1[soft,tls-error]
received, client-instance restarting
Wed May 30 12:49:33 2007 TCP/UDP: Closing socket
Wed May 30 12:49:38 2007 MULTI: multi_create_instance called
Wed May 30 12:49:38 2007 Re-using SSL/TLS context
Wed May 30 12:49:38 2007 LZO compression initialized
Wed May 30 12:49:38 2007 Control Channel MTU parms [ L:1544 D:168 EF:68
EB:0 ET:0 EL:0 ]
Wed May 30 12:49:38 2007 Data Channel MTU parms [ L:1544 D:1450 EF:44
EB:135 ET:0 EL:0 AF:3/1 ]
Wed May 30 12:49:38 2007 Local Options hash (VER=V4): 'bd577cd1'
Wed May 30 12:49:38 2007 Expected Remote Options hash (VER=V4):
'ee93268d'
Wed May 30 12:49:38 2007 TCP connection established with <client's
public ip-address>:63026
Wed May 30 12:49:38 2007 TCPv4_SERVER link local: [undef]
Wed May 30 12:49:38 2007 TCPv4_SERVER link remote: <client's public
ip-address>:63026
Wed May 30 12:49:38 2007 <client's public ip-address>:63026 TLS: Initial
packet from 80.130.4.155:63026, sid=259f1291 1f87d086
Wed May 30 12:49:48 2007 <client's public ip-address>:63026 VERIFY OK:
depth=1,
/C=DE/ST=BY/L=Ismaning/O=MSE/OU=MIS/CN=SRV-DEV/emailAddress=<admin@compa
ny.com>
Wed May 30 12:49:48 2007 <client's public ip-address>:63026 VERIFY OK:
depth=0,
/C=DE/ST=BY/O=MSE/OU=MIS/CN=<username>/emailAddress=<user@xxxxxxxxxxx>
Wed May 30 12:49:50 2007 <client's public ip-address>:63026 Data Channel
Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
Wed May 30 12:49:50 2007 <client's public ip-address>:63026 Data Channel
Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Wed May 30 12:49:50 2007 <client's public ip-address>:63026 Data Channel
Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
Wed May 30 12:49:50 2007 <client's public ip-address>:63026 Data Channel
Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Wed May 30 12:49:51 2007 <client's public ip-address>:63026 Control
Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
Wed May 30 12:49:51 2007 <client's public ip-address>:63026 [<username>]
Peer Connection Initiated with <client's public ip-address>:63026
Wed May 30 12:49:51 2007 <username>/80.130.4.155:63026 MULTI: Learn:
172.16.0.18 -> <username>/<client's public ip-address>:63026
Wed May 30 12:49:51 2007 <username>/80.130.4.155:63026 MULTI: primary
virtual IP for <username>/<client's public ip-address>:63026:
172.16.0.18
Wed May 30 12:49:52 2007 <username>/80.130.4.155:63026 PUSH: Received
control message: 'PUSH_REQUEST'
Wed May 30 12:49:52 2007 <username>/80.130.4.155:63026 SENT CONTROL
[<username>]: 'PUSH_REPLY,route 192.168.11.0 255.255.255.0,route
10.7.0.0 255.255.0.0,route 172.16.0.1,ping 10,ping-restart 120,ifconfig
172.16.0.18 172.16.0.17' (status=1)
Wed May 30 13:18:59 2007 <username>/<client's public ip-address>:63026
Connection reset, restarting [-1]
Wed May 30 13:18:59 2007 <username>/<client's public ip-address>:63026
SIGUSR1[soft,connection-reset] received, client-instance restarting
Wed May 30 13:18:59 2007 TCP/UDP: Closing socket

Could anybody gives me a hint on how to solve this issue, please ?
Any advice is highly appreciated. Thank you very much in advance.


Best regards
 
Tobias Bundy

____________________________________________
Openvpn-users mailing list
Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/openvpn-users