[OpenVPN home] [Date Prev] [Date Index] [Date Next]
[OpenVPN mailing lists] [Thread Prev] [Thread Index] [Thread Next]
Google
 
Web openvpn.net

Re: [Openvpn-users] Some help needed using client files


  • Subject: Re: [Openvpn-users] Some help needed using client files
  • From: "Rijke, Paul" <prijke@xxxxxxxxxxxx>
  • Date: Mon, 16 Jul 2007 22:50:12 +0200

 
Thx Erich,

I think it is.

>From the certificate:
   Subject: C=NL, ST=NH, O=CIT, OU=MGT, CN=paul/emailAddress=xxxx@xxxxxxxx

Here's the server log
Mon Jul 16 22:33:03 2007 us=996475 Current Parameter Settings:
Mon Jul 16 22:33:03 2007 us=997476   config = 'openvpn.conf'
Mon Jul 16 22:33:03 2007 us=997510   mode = 1
Mon Jul 16 22:33:03 2007 us=997539   persist_config = DISABLED
Mon Jul 16 22:33:03 2007 us=997567   persist_mode = 1
Mon Jul 16 22:33:03 2007 us=997595   show_ciphers = DISABLED
Mon Jul 16 22:33:03 2007 us=997622   show_digests = DISABLED
Mon Jul 16 22:33:03 2007 us=997650   show_engines = DISABLED
Mon Jul 16 22:33:03 2007 us=997677   genkey = DISABLED
Mon Jul 16 22:33:03 2007 us=997706   key_pass_file = '[UNDEF]'
Mon Jul 16 22:33:03 2007 us=998342   show_tls_ciphers = DISABLED
Mon Jul 16 22:33:03 2007 us=998370   proto = 0
Mon Jul 16 22:33:03 2007 us=998398   local = '[UNDEF]'
Mon Jul 16 22:33:03 2007 us=998425   remote_list = NULL
Mon Jul 16 22:33:03 2007 us=998452   remote_random = DISABLED
Mon Jul 16 22:33:03 2007 us=998478   local_port = 1194
Mon Jul 16 22:33:03 2007 us=998505   remote_port = 1194
Mon Jul 16 22:33:03 2007 us=998532   remote_float = DISABLED
Mon Jul 16 22:33:03 2007 us=998558   ipchange = '[UNDEF]'
Mon Jul 16 22:33:03 2007 us=998585   bind_local = ENABLED
Mon Jul 16 22:33:03 2007 us=998612   dev = 'tun0'
Mon Jul 16 22:33:03 2007 us=998639   dev_type = '[UNDEF]'
Mon Jul 16 22:33:03 2007 us=998665   dev_node = '[UNDEF]'
Mon Jul 16 22:33:03 2007 us=998692   tun_ipv6 = DISABLED
Mon Jul 16 22:33:03 2007 us=998719   ifconfig_local = '10.0.1.1'
Mon Jul 16 22:33:03 2007 us=998805   ifconfig_remote_netmask = '10.0.1.2'
Mon Jul 16 22:33:03 2007 us=998836   ifconfig_noexec = DISABLED
Mon Jul 16 22:33:03 2007 us=998862   ifconfig_nowarn = DISABLED
Mon Jul 16 22:33:03 2007 us=998889   shaper = 0
Mon Jul 16 22:33:03 2007 us=998916   tun_mtu = 1500
Mon Jul 16 22:33:03 2007 us=998943   tun_mtu_defined = ENABLED
Mon Jul 16 22:33:03 2007 us=998970   link_mtu = 1500
Mon Jul 16 22:33:03 2007 us=998997   link_mtu_defined = DISABLED
Mon Jul 16 22:33:03 2007 us=999024   tun_mtu_extra = 0
Mon Jul 16 22:33:03 2007 us=999051   tun_mtu_extra_defined = DISABLED
Mon Jul 16 22:33:03 2007 us=999312   fragment = 0
Mon Jul 16 22:33:03 2007 us=999349   mtu_discover_type = -1
Mon Jul 16 22:33:03 2007 us=999376   mtu_test = 0
Mon Jul 16 22:33:03 2007 us=999403   mlock = DISABLED
Mon Jul 16 22:33:03 2007 us=999430   keepalive_ping = 10
Mon Jul 16 22:33:03 2007 us=999457   keepalive_timeout = 120
Mon Jul 16 22:33:03 2007 us=999484   inactivity_timeout = 0
Mon Jul 16 22:33:03 2007 us=999511   ping_send_timeout = 10
Mon Jul 16 22:33:03 2007 us=999538   ping_rec_timeout = 240
Mon Jul 16 22:33:03 2007 us=999565   ping_rec_timeout_action = 2
Mon Jul 16 22:33:03 2007 us=999592   ping_timer_remote = DISABLED
Mon Jul 16 22:33:03 2007 us=999620   remap_sigusr1 = 0
Mon Jul 16 22:33:03 2007 us=999694   explicit_exit_notification = 0
Mon Jul 16 22:33:03 2007 us=999723   persist_tun = ENABLED
Mon Jul 16 22:33:03 2007 us=999750   persist_local_ip = DISABLED
Mon Jul 16 22:33:03 2007 us=999777   persist_remote_ip = DISABLED
Mon Jul 16 22:33:03 2007 us=999804   persist_key = ENABLED
Mon Jul 16 22:33:03 2007 us=999831   mssfix = 1450
Mon Jul 16 22:33:03 2007 us=999858   passtos = DISABLED
Mon Jul 16 22:33:03 2007 us=999885   resolve_retry_seconds = 1000000000
Mon Jul 16 22:33:03 2007 us=999913   connect_retry_seconds = 5
Mon Jul 16 22:33:03 2007 us=999940   username = 'nobody'
Mon Jul 16 22:33:03 2007 us=999967   groupname = 'nobody'
Mon Jul 16 22:33:03 2007 us=999994   chroot_dir = '[UNDEF]'
Mon Jul 16 22:33:04 2007 us=21   cd_dir = '/etc/openvpn'
Mon Jul 16 22:33:04 2007 us=48   writepid = '/var/run/openvpn/openvpn.pid'
Mon Jul 16 22:33:04 2007 us=303   up_script = '[UNDEF]'
Mon Jul 16 22:33:04 2007 us=340   down_script = '[UNDEF]'
Mon Jul 16 22:33:04 2007 us=367   down_pre = DISABLED
Mon Jul 16 22:33:04 2007 us=393   up_restart = DISABLED
Mon Jul 16 22:33:04 2007 us=420   up_delay = DISABLED
Mon Jul 16 22:33:04 2007 us=447   daemon = ENABLED
Mon Jul 16 22:33:04 2007 us=474   inetd = 0
Mon Jul 16 22:33:04 2007 us=501   log = ENABLED
Mon Jul 16 22:33:04 2007 us=528   suppress_timestamps = DISABLED
Mon Jul 16 22:33:04 2007 us=590   nice = 0
Mon Jul 16 22:33:04 2007 us=1176   verbosity = 4
Mon Jul 16 22:33:04 2007 us=1258   mute = 0
Mon Jul 16 22:33:04 2007 us=1288   gremlin = 0
Mon Jul 16 22:33:04 2007 us=1315   status_file = 'openvpn-status.log'
Mon Jul 16 22:33:04 2007 us=1343   status_file_version = 1
Mon Jul 16 22:33:04 2007 us=1370   status_file_update_freq = 60
Mon Jul 16 22:33:04 2007 us=1397   occ = ENABLED
Mon Jul 16 22:33:04 2007 us=1424   rcvbuf = 65536
Mon Jul 16 22:33:04 2007 us=1451   sndbuf = 65536
Mon Jul 16 22:33:04 2007 us=1479   socks_proxy_server = '[UNDEF]'
Mon Jul 16 22:33:04 2007 us=1506   socks_proxy_port = 0
Mon Jul 16 22:33:04 2007 us=1533   socks_proxy_retry = DISABLED
Mon Jul 16 22:33:04 2007 us=1560   fast_io = DISABLED
Mon Jul 16 22:33:04 2007 us=1587   route_script = '[UNDEF]'
Mon Jul 16 22:33:04 2007 us=1614   route_default_gateway = '[UNDEF]'
Mon Jul 16 22:33:04 2007 us=1642   route_noexec = DISABLED
Mon Jul 16 22:33:04 2007 us=1669   route_delay = 0
Mon Jul 16 22:33:04 2007 us=1696   route_delay_window = 30
Mon Jul 16 22:33:04 2007 us=1723   route_delay_defined = DISABLED
Mon Jul 16 22:33:04 2007 us=2322   route 10.0.2.0/255.255.255.0/nil/nil
Mon Jul 16 22:33:04 2007 us=2356   route 10.0.3.0/255.255.255.0/nil/nil
Mon Jul 16 22:33:04 2007 us=2384   route 10.0.1.0/255.255.255.0/nil/nil
Mon Jul 16 22:33:04 2007 us=2412   management_addr = '[UNDEF]'
Mon Jul 16 22:33:04 2007 us=2439   management_port = 0
Mon Jul 16 22:33:04 2007 us=2466   management_user_pass = '[UNDEF]'
Mon Jul 16 22:33:04 2007 us=2493   management_log_history_cache = 250
Mon Jul 16 22:33:04 2007 us=2521   management_echo_buffer_size = 100
Mon Jul 16 22:33:04 2007 us=2548   management_query_passwords = DISABLED
Mon Jul 16 22:33:04 2007 us=2575   management_hold = DISABLED
Mon Jul 16 22:33:04 2007 us=2603   shared_secret_file = '[UNDEF]'
Mon Jul 16 22:33:04 2007 us=2631   key_direction = 0
Mon Jul 16 22:33:04 2007 us=2658   ciphername_defined = ENABLED
Mon Jul 16 22:33:04 2007 us=2686   ciphername = 'BF-CBC'
Mon Jul 16 22:33:04 2007 us=2713   authname_defined = ENABLED
Mon Jul 16 22:33:04 2007 us=2740   authname = 'SHA1'
Mon Jul 16 22:33:04 2007 us=2767   keysize = 0
Mon Jul 16 22:33:04 2007 us=2794   engine = DISABLED
Mon Jul 16 22:33:04 2007 us=2821   replay = ENABLED
Mon Jul 16 22:33:04 2007 us=2848   mute_replay_warnings = DISABLED
Mon Jul 16 22:33:04 2007 us=2876   replay_window = 64
Mon Jul 16 22:33:04 2007 us=2903   replay_time = 15
Mon Jul 16 22:33:04 2007 us=2931   packet_id_file = '[UNDEF]'
Mon Jul 16 22:33:04 2007 us=2957   use_iv = ENABLED
Mon Jul 16 22:33:04 2007 us=2984   test_crypto = DISABLED
Mon Jul 16 22:33:04 2007 us=3011   tls_server = ENABLED
Mon Jul 16 22:33:04 2007 us=3038   tls_client = DISABLED
Mon Jul 16 22:33:04 2007 us=3201   key_method = 2
Mon Jul 16 22:33:04 2007 us=3233   ca_file = '/etc/openvpn/keys/ca.crt'
Mon Jul 16 22:33:04 2007 us=3261   dh_file = '/etc/openvpn/keys/dh1024.pem'
Mon Jul 16 22:33:04 2007 us=3288   cert_file =
'/etc/openvpn/keys/server.crt'
Mon Jul 16 22:33:04 2007 us=3316   priv_key_file =
'/etc/openvpn/keys/server.key'
Mon Jul 16 22:33:04 2007 us=3344   pkcs12_file = '[UNDEF]'
Mon Jul 16 22:33:04 2007 us=3371   cipher_list = '[UNDEF]'
Mon Jul 16 22:33:04 2007 us=3398   tls_verify = '[UNDEF]'
Mon Jul 16 22:33:04 2007 us=3425   tls_remote = '[UNDEF]'
Mon Jul 16 22:33:04 2007 us=3452   crl_file = '[UNDEF]'
Mon Jul 16 22:33:04 2007 us=3479   ns_cert_type = 0
Mon Jul 16 22:33:04 2007 us=3507   tls_timeout = 2
Mon Jul 16 22:33:04 2007 us=3534   renegotiate_bytes = 0
Mon Jul 16 22:33:04 2007 us=3561   renegotiate_packets = 0
Mon Jul 16 22:33:04 2007 us=3588   renegotiate_seconds = 3600
Mon Jul 16 22:33:04 2007 us=3616   handshake_window = 60
Mon Jul 16 22:33:04 2007 us=3643   transition_window = 3600
Mon Jul 16 22:33:04 2007 us=3670   single_session = DISABLED
Mon Jul 16 22:33:04 2007 us=3698   tls_exit = DISABLED
Mon Jul 16 22:33:04 2007 us=3725   tls_auth_file = '[UNDEF]'
Mon Jul 16 22:33:04 2007 us=3755   server_network = 10.0.1.0
Mon Jul 16 22:33:04 2007 us=3785   server_netmask = 255.255.255.0
Mon Jul 16 22:33:04 2007 us=3838   server_bridge_ip = 0.0.0.0
Mon Jul 16 22:33:04 2007 us=3868   server_bridge_netmask = 0.0.0.0
Mon Jul 16 22:33:04 2007 us=3898   server_bridge_pool_start = 0.0.0.0
Mon Jul 16 22:33:04 2007 us=3927   server_bridge_pool_end = 0.0.0.0
Mon Jul 16 22:33:04 2007 us=3955   push_list = 'route 10.0.1.0
255.255.255.0,ping 10,ping-restart 120'
Mon Jul 16 22:33:04 2007 us=3982   ifconfig_pool_defined = ENABLED
Mon Jul 16 22:33:04 2007 us=4011   ifconfig_pool_start = 10.0.1.4
Mon Jul 16 22:33:04 2007 us=4040   ifconfig_pool_end = 10.0.1.251
Mon Jul 16 22:33:04 2007 us=4136   ifconfig_pool_netmask = 0.0.0.0
Mon Jul 16 22:33:04 2007 us=4164   ifconfig_pool_persist_filename =
'[UNDEF]'
Mon Jul 16 22:33:04 2007 us=4270   ifconfig_pool_persist_refresh_freq = 600
Mon Jul 16 22:33:04 2007 us=4300   ifconfig_pool_linear = DISABLED
Mon Jul 16 22:33:04 2007 us=4328   n_bcast_buf = 256
Mon Jul 16 22:33:04 2007 us=4355   tcp_queue_limit = 64
Mon Jul 16 22:33:04 2007 us=4382   real_hash_size = 256
Mon Jul 16 22:33:04 2007 us=4410   virtual_hash_size = 256
Mon Jul 16 22:33:04 2007 us=4437   client_connect_script = '[UNDEF]'
Mon Jul 16 22:33:04 2007 us=4465   learn_address_script = '[UNDEF]'
Mon Jul 16 22:33:04 2007 us=4493   client_disconnect_script = '[UNDEF]'
Mon Jul 16 22:33:04 2007 us=4521   client_config_dir = 'ccd'
Mon Jul 16 22:33:04 2007 us=4548   ccd_exclusive = DISABLED
Mon Jul 16 22:33:04 2007 us=4575   tmp_dir = '[UNDEF]'
Mon Jul 16 22:33:04 2007 us=4603   push_ifconfig_defined = DISABLED
Mon Jul 16 22:33:04 2007 us=4633   push_ifconfig_local = 0.0.0.0
Mon Jul 16 22:33:04 2007 us=4662   push_ifconfig_remote_netmask = 0.0.0.0
Mon Jul 16 22:33:04 2007 us=4690   enable_c2c = ENABLED
Mon Jul 16 22:33:04 2007 us=4717   duplicate_cn = DISABLED
Mon Jul 16 22:33:04 2007 us=4744   cf_max = 0
Mon Jul 16 22:33:04 2007 us=4771   cf_per = 0
Mon Jul 16 22:33:04 2007 us=4798   max_clients = 100
Mon Jul 16 22:33:04 2007 us=4825   max_routes_per_client = 256
Mon Jul 16 22:33:04 2007 us=4852   client_cert_not_required = DISABLED
Mon Jul 16 22:33:04 2007 us=4880   username_as_common_name = DISABLED
Mon Jul 16 22:33:04 2007 us=4908   auth_user_pass_verify_script = '[UNDEF]'
Mon Jul 16 22:33:04 2007 us=4935   auth_user_pass_verify_script_via_file =
DISABLED
Mon Jul 16 22:33:04 2007 us=4962   client = DISABLED
Mon Jul 16 22:33:04 2007 us=4989   pull = DISABLED
Mon Jul 16 22:33:04 2007 us=5016   auth_user_pass_file = '[UNDEF]'
Mon Jul 16 22:33:04 2007 us=5046 OpenVPN 2.0.9 i686-pc-linux [SSL] [EPOLL]
built on Jun 29 2007
Mon Jul 16 22:33:04 2007 us=18733 Diffie-Hellman initialized with 1024 bit
key
Mon Jul 16 22:33:04 2007 us=24286 TLS-Auth MTU parms [ L:1541 D:138 EF:38
EB:0 ET:0 EL:0 ]
Mon Jul 16 22:33:04 2007 us=114336 TUN/TAP device tun0 opened
Mon Jul 16 22:33:04 2007 us=115227 TUN/TAP TX queue length set to 100
Mon Jul 16 22:33:04 2007 us=115320 /sbin/ifconfig tun0 10.0.1.1 pointopoint
10.0.1.2 mtu 1500
Mon Jul 16 22:33:04 2007 us=147031 /sbin/route add -net 10.0.2.0 netmask
255.255.255.0 gw 10.0.1.2
Mon Jul 16 22:33:04 2007 us=176297 /sbin/route add -net 10.0.3.0 netmask
255.255.255.0 gw 10.0.1.2
Mon Jul 16 22:33:04 2007 us=308196 /sbin/route add -net 10.0.1.0 netmask
255.255.255.0 gw 10.0.1.2
Mon Jul 16 22:33:04 2007 us=332296 Data Channel MTU parms [ L:1541 D:1450
EF:41 EB:4 ET:0 EL:0 ]
Mon Jul 16 22:33:04 2007 us=342223 GID set to nobody
Mon Jul 16 22:33:04 2007 us=343249 UID set to nobody
Mon Jul 16 22:33:04 2007 us=343382 Socket Buffers: R=[109568->131072]
S=[109568->131072]
Mon Jul 16 22:33:04 2007 us=343985 UDPv4 link local (bound): [undef]:1194
Mon Jul 16 22:33:04 2007 us=344388 UDPv4 link remote: [undef]
Mon Jul 16 22:33:04 2007 us=347228 MULTI: multi_init called, r=256 v=256
Mon Jul 16 22:33:04 2007 us=348094 IFCONFIG POOL: base=10.0.1.4 size=62
Mon Jul 16 22:33:04 2007 us=348253 Initialization Sequence Completed
Mon Jul 16 22:34:18 2007 us=325442 MULTI: multi_create_instance called
Mon Jul 16 22:34:18 2007 us=325865 xx.xx.xx.xx:11104 Re-using SSL/TLS
context
Mon Jul 16 22:34:18 2007 us=328402 xx.xx.xx.xx:11104 Control Channel MTU
parms [ L:1541 D:138 EF:38 EB:0 ET:0 EL:0 ]
Mon Jul 16 22:34:18 2007 us=328713 xx.xx.xx.xx:11104 Data Channel MTU parms
[ L:1541 D:1450 EF:41 EB:4 ET:0 EL:0 ]
Mon Jul 16 22:34:18 2007 us=329496 xx.xx.xx.xx:11104 Local Options String:
'V4,dev-type tun,link-mtu 1541,tun-mtu 1500,proto UDPv4,cipher BF-CBC,auth
SHA1,keysize 128,key-method 2,tls-server'
Mon Jul 16 22:34:18 2007 us=329527 xx.xx.xx.xx:11104 Expected Remote Options
String: 'V4,dev-type tun,link-mtu 1541,tun-mtu 1500,proto UDPv4,cipher
BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Mon Jul 16 22:34:18 2007 us=329709 xx.xx.xx.xx:11104 Local Options hash
(VER=V4): '239669a8'
Mon Jul 16 22:34:18 2007 us=329745 xx.xx.xx.xx:11104 Expected Remote Options
hash (VER=V4): '3514370b'
Mon Jul 16 22:34:18 2007 us=329960 xx.xx.xx.xx:11104 TLS: Initial packet
from xx.xx.xx.xx:11104, sid=9e56ef46 52f35f15
Mon Jul 16 22:34:18 2007 us=666309 xx.xx.xx.xx:11104 VERIFY OK: depth=1,
/C=NL/ST=NH/L=Wijdewormer/O=CIT/OU=MGT/CN=devsvr01/emailAddress=prijke@conne
ctit.nl
Mon Jul 16 22:34:18 2007 us=666718 xx.xx.xx.xx:11104 VERIFY OK: depth=0,
/C=NL/ST=NH/O=CIT/OU=MGT/CN=gui/emailAddress=gdegoeij@xxxxxxxxxxxx
Mon Jul 16 22:34:18 2007 us=707752 xx.xx.xx.xx:11104 Data Channel Encrypt:
Cipher 'BF-CBC' initialized with 128 bit key
Mon Jul 16 22:34:18 2007 us=707818 xx.xx.xx.xx:11104 Data Channel Encrypt:
Using 160 bit message hash 'SHA1' for HMAC authentication
Mon Jul 16 22:34:18 2007 us=707896 xx.xx.xx.xx:11104 Data Channel Decrypt:
Cipher 'BF-CBC' initialized with 128 bit key
Mon Jul 16 22:34:18 2007 us=707925 xx.xx.xx.xx:11104 Data Channel Decrypt:
Using 160 bit message hash 'SHA1' for HMAC authentication
Mon Jul 16 22:34:18 2007 us=736521 xx.xx.xx.xx:11104 Control Channel: TLSv1,
cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
Mon Jul 16 22:34:18 2007 us=736603 xx.xx.xx.xx:11104 [gui] Peer Connection
Initiated with xx.xx.xx.xx:11104
Mon Jul 16 22:34:18 2007 us=736763 gui/xx.xx.xx.xx:11104 MULTI: Learn:
10.0.1.6 -> gui/xx.xx.xx.xx:11104
Mon Jul 16 22:34:18 2007 us=736797 gui/xx.xx.xx.xx:11104 MULTI: primary
virtual IP for gui/xx.xx.xx.xx:11104: 10.0.1.6
Mon Jul 16 22:34:19 2007 us=452099 gui/xx.xx.xx.xx:11104 PUSH: Received
control message: 'PUSH_REQUEST'
Mon Jul 16 22:34:19 2007 us=452208 gui/xx.xx.xx.xx:11104 SENT CONTROL [gui]:
'PUSH_REPLY,route 10.0.1.0 255.255.255.0,ping 10,ping-restart 120,ifconfig
10.0.1.6 10.0.1.5' (status=1)
Mon Jul 16 22:35:23 2007 us=908632 MULTI: multi_create_instance called
Mon Jul 16 22:35:23 2007 us=908648 xx.xx.xx.xx:2201 Re-using SSL/TLS context
Mon Jul 16 22:35:23 2007 us=909945 xx.xx.xx.xx:2201 Control Channel MTU
parms [ L:1541 D:138 EF:38 EB:0 ET:0 EL:0 ]
Mon Jul 16 22:35:23 2007 us=909996 xx.xx.xx.xx:2201 Data Channel MTU parms [
L:1541 D:1450 EF:41 EB:4 ET:0 EL:0 ]
Mon Jul 16 22:35:23 2007 us=910127 xx.xx.xx.xx:2201 Local Options String:
'V4,dev-type tun,link-mtu 1541,tun-mtu 1500,proto UDPv4,cipher BF-CBC,auth
SHA1,keysize 128,key-method 2,tls-server'
Mon Jul 16 22:35:23 2007 us=910156 xx.xx.xx.xx:2201 Expected Remote Options
String: 'V4,dev-type tun,link-mtu 1541,tun-mtu 1500,proto UDPv4,cipher
BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Mon Jul 16 22:35:23 2007 us=910713 xx.xx.xx.xx:2201 Local Options hash
(VER=V4): '239669a8'
Mon Jul 16 22:35:23 2007 us=910748 xx.xx.xx.xx:2201 Expected Remote Options
hash (VER=V4): '3514370b'
Mon Jul 16 22:35:23 2007 us=910892 xx.xx.xx.xx:2201 TLS: Initial packet from
xx.xx.xx.xx:2201, sid=5a39c060 f0f8f27a
Mon Jul 16 22:35:24 2007 us=407692 xx.xx.xx.xx:2201 VERIFY OK: depth=1,
/C=NL/ST=NH/L=Wijdewormer/O=CIT/OU=MGT/CN=devsvr01/emailAddress=prijke@conne
ctit.nl
Mon Jul 16 22:35:24 2007 us=409536 xx.xx.xx.xx:2201 VERIFY OK: depth=0,
/C=NL/ST=NH/O=CIT/OU=MGT/CN=paul/emailAddress=prijke@xxxxxxxxxxxx
Mon Jul 16 22:35:24 2007 us=489373 xx.xx.xx.xx:2201 Data Channel Encrypt:
Cipher 'BF-CBC' initialized with 128 bit key
Mon Jul 16 22:35:24 2007 us=489789 xx.xx.xx.xx:2201 Data Channel Encrypt:
Using 160 bit message hash 'SHA1' for HMAC authentication
Mon Jul 16 22:35:24 2007 us=489908 xx.xx.xx.xx:2201 Data Channel Decrypt:
Cipher 'BF-CBC' initialized with 128 bit key
Mon Jul 16 22:35:24 2007 us=489938 xx.xx.xx.xx:2201 Data Channel Decrypt:
Using 160 bit message hash 'SHA1' for HMAC authentication
Mon Jul 16 22:35:24 2007 us=532883 xx.xx.xx.xx:2201 Control Channel: TLSv1,
cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
Mon Jul 16 22:35:24 2007 us=532968 xx.xx.xx.xx:2201 [paul] Peer Connection
Initiated with xx.xx.xx.xx:2201
Mon Jul 16 22:35:24 2007 us=533305 paul/xx.xx.xx.xx:2201 MULTI: Learn:
10.0.1.10 -> paul/xx.xx.xx.xx:2201
Mon Jul 16 22:35:24 2007 us=533341 paul/xx.xx.xx.xx:2201 MULTI: primary
virtual IP for paul/xx.xx.xx.xx:2201: 10.0.1.10
Mon Jul 16 22:35:25 2007 us=92272 paul/xx.xx.xx.xx:2201 PUSH: Received
control message: 'PUSH_REQUEST'
Mon Jul 16 22:35:25 2007 us=92373 paul/xx.xx.xx.xx:2201 SENT CONTROL [paul]:
'PUSH_REPLY,route 10.0.1.0 255.255.255.0,ping 10,ping-restart 120,ifconfig
10.0.1.10 10.0.1.9' (status=1)


Met vriendelijke groeten / Kind regards, 

 

-----Oorspronkelijk bericht-----
Van: Erich Titl [mailto:erich.titl@xxxxxxxx] 
Verzonden: maandag 16 juli 2007 22:39
Aan: Rijke, Paul
CC: openvpn-users@xxxxxxxxxxxxxxxxxxxxx
Onderwerp: Re: [Openvpn-users] Some help needed using client files

Hi Paul

Rijke, Paul schrieb:
...
> 
> When I start my client I get a ip in the range 10.0.1.x instead the 
> fixed 1.0.2.1
> 
> Any ideas what I am doing wrong? All help will be appreciated very much!

If you posted details about your client sertificate we might be able to tell
you, also a bit of output from the server logfile will help.

Check your client certificate, the common name _must_be_ 'paul' else the ccd
file will not match.

cheers

Erich


____________________________________________
Openvpn-users mailing list
Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/openvpn-users