[OpenVPN home] [Date Prev] [Date Index] [Date Next]
[OpenVPN mailing lists] [Thread Prev] [Thread Index] [Thread Next]
Google
 
Web openvpn.net

[Openvpn-users] restore tunnel after switching over network interfaces


  • Subject: [Openvpn-users] restore tunnel after switching over network interfaces
  • From: Pierre Berthier <pierre.berthier@xxxxxxxxxxxxxxxx>
  • Date: Tue, 21 Aug 2007 14:02:07 +0200

Hi

I am using Kubuntu 7.04 + OpenVPN 2.0.9 i486-pc-linux-gnu [SSL] [LZO] [EPOLL] built on Mar  2 2007

My machine is an IBM laptop with three network interfaces:

eth0: ethernet
eth1: wlan
ppp0: GPRS/UMTS network access card

eth0 and eth1 are handled by Knetworkmanager fine.  The ppp0 link is working fine and I can switch from one interface to another.

I am trying to configure openvpn so that it reopens automatically the tunnel when I switch from one network interface to another; for
example I start a tunnel while connected using ppp0, then shut down ppp0, connect on a wlan through eth1.  Then I would like the tunnel to
be reconnected.

Here is my openvpn.conf:

#==================================
proto udp
remote vpn.ini.unizh.ch 1194
cd /etc/openvpn
client
dev tap
user nobody
group daemon
persist-key
persist-tun
ca keys/ca.crt
cert keys/client.crt
key keys/client.key
ns-cert-type server
tls-auth keys/ta.key 1
cipher AES-256-CBC
comp-lzo
verb 5
pull dhcp-options
auth-user-pass
auth-retry interact
up scripts/client.up
plugin plugins/openvpn-down-root.so scripts/client.down
chroot /etc/openvpn
dev-node dev/net/tun
#==================================


Now I can start a tunnel while connected on ppp0, kill ppp0 and connect on wlan through eth1, but openvpn fails upon restoring the tunnel
with the message:

Linux ifconfig failed: could not execute shell command


Below is the entire log.

Now how can I find out why this ifconfig command fails?  I suppose this is a permissions problems, but then what is this plugin down root
for if not to deal with this case?

Thanks
Pierre


Aug 21 13:36:55 zen ovpn-openvpn[29432]: Current Parameter Settings:
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   config = '/etc/openvpn/openvpn.conf'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   mode = 0
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   persist_config = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   persist_mode = 1
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   show_ciphers = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   show_digests = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   show_engines = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   genkey = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   key_pass_file = '[UNDEF]'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   show_tls_ciphers = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   proto = 0
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   local = '[UNDEF]'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   remote_list[0] = {'xxxxxxxxxxxxxxxxx', 1194}
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   remote_random = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   local_port = 1194
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   remote_port = 1194
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   remote_float = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   ipchange = '[UNDEF]'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   bind_local = ENABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   dev = 'tap'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   dev_type = '[UNDEF]'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   dev_node = 'dev/net/tun'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   tun_ipv6 = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   ifconfig_local = '[UNDEF]'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   ifconfig_remote_netmask = '[UNDEF]'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   ifconfig_noexec = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   ifconfig_nowarn = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   shaper = 0
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   tun_mtu = 1500
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   tun_mtu_defined = ENABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   link_mtu = 1500
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   link_mtu_defined = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   tun_mtu_extra = 32
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   tun_mtu_extra_defined = ENABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   fragment = 0
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   mtu_discover_type = -1
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   mtu_test = 0
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   mlock = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   keepalive_ping = 0
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   keepalive_timeout = 0
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   inactivity_timeout = 0
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   ping_send_timeout = 0
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   ping_rec_timeout = 120
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   ping_rec_timeout_action = 2
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   ping_timer_remote = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   remap_sigusr1 = 0
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   explicit_exit_notification = 0
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   persist_tun = ENABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   persist_local_ip = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   persist_remote_ip = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   persist_key = ENABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   mssfix = 1450
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   passtos = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   resolve_retry_seconds = 1000000000
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   connect_retry_seconds = 5
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   username = 'nobody'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   groupname = 'daemon'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   chroot_dir = '/etc/openvpn'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   cd_dir = '/etc/openvpn'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   writepid = '/var/run/openvpn.openvpn.pid'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   up_script = 'scripts/client.up'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   down_script = '[UNDEF]'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   down_pre = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   up_restart = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   up_delay = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   daemon = ENABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   inetd = 0
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   log = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   suppress_timestamps = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   nice = 0
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   verbosity = 5
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   mute = 0
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   gremlin = 0
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   status_file = '/var/run/openvpn.openvpn.status'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   status_file_version = 1
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   status_file_update_freq = 10
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   occ = ENABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   rcvbuf = 65536
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   sndbuf = 65536
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   socks_proxy_server = '[UNDEF]'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   socks_proxy_port = 0
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   socks_proxy_retry = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   fast_io = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   comp_lzo = ENABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   comp_lzo_adaptive = ENABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   route_script = '[UNDEF]'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   route_default_gateway = '[UNDEF]'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   route_noexec = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   route_delay = 0
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   route_delay_window = 30
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   route_delay_defined = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   management_addr = '[UNDEF]'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   management_port = 0
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   management_user_pass = '[UNDEF]'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   management_log_history_cache = 250
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   management_echo_buffer_size = 100
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   management_query_passwords = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   management_hold = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   plugin[0] plugins/openvpn-down-root.so 'scripts/client.down'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   shared_secret_file = '[UNDEF]'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   key_direction = 2
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   ciphername_defined = ENABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   ciphername = 'AES-256-CBC'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   authname_defined = ENABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   authname = 'SHA1'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   keysize = 0
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   engine = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   replay = ENABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   mute_replay_warnings = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   replay_window = 64
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   replay_time = 15
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   packet_id_file = '[UNDEF]'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   use_iv = ENABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   test_crypto = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   tls_server = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   tls_client = ENABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   key_method = 2
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   ca_file = 'keys/ca.crt'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   dh_file = '[UNDEF]'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   cert_file = 'keys/client.crt'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   priv_key_file = 'keys/client.key'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   pkcs12_file = '[UNDEF]'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   cipher_list = '[UNDEF]'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   tls_verify = '[UNDEF]'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   tls_remote = '[UNDEF]'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   crl_file = '[UNDEF]'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   ns_cert_type = 64
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   tls_timeout = 2
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   renegotiate_bytes = 0
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   renegotiate_packets = 0
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   renegotiate_seconds = 3600
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   handshake_window = 60
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   transition_window = 3600
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   single_session = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   tls_exit = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   tls_auth_file = 'keys/ta.key'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   server_network = 0.0.0.0
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   server_netmask = 0.0.0.0
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   server_bridge_ip = 0.0.0.0
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   server_bridge_netmask = 0.0.0.0
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   server_bridge_pool_start = 0.0.0.0
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   server_bridge_pool_end = 0.0.0.0
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   ifconfig_pool_defined = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   ifconfig_pool_start = 0.0.0.0
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   ifconfig_pool_end = 0.0.0.0
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   ifconfig_pool_netmask = 0.0.0.0
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   ifconfig_pool_persist_filename = '[UNDEF]'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   ifconfig_pool_persist_refresh_freq = 600
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   ifconfig_pool_linear = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   n_bcast_buf = 256
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   tcp_queue_limit = 64
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   real_hash_size = 256
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   virtual_hash_size = 256
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   client_connect_script = '[UNDEF]'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   learn_address_script = '[UNDEF]'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   client_disconnect_script = '[UNDEF]'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   client_config_dir = '[UNDEF]'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   ccd_exclusive = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   tmp_dir = '[UNDEF]'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   push_ifconfig_defined = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   push_ifconfig_local = 0.0.0.0
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   push_ifconfig_remote_netmask = 0.0.0.0
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   enable_c2c = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   duplicate_cn = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   cf_max = 0
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   cf_per = 0
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   max_clients = 1024
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   max_routes_per_client = 256
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   client_cert_not_required = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   username_as_common_name = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   auth_user_pass_verify_script = '[UNDEF]'
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   auth_user_pass_verify_script_via_file = DISABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   client = ENABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   pull = ENABLED
Aug 21 13:36:55 zen ovpn-openvpn[29432]:   auth_user_pass_file = 'stdin'
Aug 21 13:36:55 zen ovpn-openvpn[29432]: OpenVPN 2.0.9 i486-pc-linux-gnu [SSL] [LZO] [EPOLL] built on Mar  2 2007
Aug 21 13:37:02 zen ovpn-openvpn[29432]: IMPORTANT: OpenVPN's default port number is now 1194, based on an official port number assignment
by IANA.  OpenVPN 2.0-beta16 and earlier used 5000 as the default port.
Aug 21 13:37:02 zen ovpn-openvpn[29432]: PLUGIN_INIT: POST plugins/openvpn-down-root.so 'scripts/client.down' intercepted=PLUGIN_UP|PLUGIN_DOWN
Aug 21 13:37:02 zen ovpn-openvpn[29432]: Control Channel Authentication: using 'keys/ta.key' as a OpenVPN static key file
Aug 21 13:37:02 zen ovpn-openvpn[29432]: Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Aug 21 13:37:02 zen ovpn-openvpn[29432]: Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Aug 21 13:37:02 zen ovpn-openvpn[29432]: LZO compression initialized
Aug 21 13:37:02 zen ovpn-openvpn[29432]: Control Channel MTU parms [ L:1590 D:166 EF:66 EB:0 ET:0 EL:0 ]
Aug 21 13:37:10 zen ovpn-openvpn[29432]: Data Channel MTU parms [ L:1590 D:1450 EF:58 EB:135 ET:32 EL:0 AF:3/1 ]
Aug 21 13:37:10 zen ovpn-openvpn[29432]: Local Options String: 'V4,dev-type tap,link-mtu 1590,tun-mtu 1532,proto UDPv4,comp-lzo,keydir
1,cipher AES-256-CBC,auth SHA1,keysize 256,tls-auth,key-method 2,tls-client'
Aug 21 13:37:10 zen ovpn-openvpn[29432]: Expected Remote Options String: 'V4,dev-type tap,link-mtu 1590,tun-mtu 1532,proto
UDPv4,comp-lzo,keydir 0,cipher AES-256-CBC,auth SHA1,keysize 256,tls-auth,key-method 2,tls-server'
Aug 21 13:37:10 zen ovpn-openvpn[29432]: Local Options hash (VER=V4): '48527533'
Aug 21 13:37:10 zen ovpn-openvpn[29432]: Expected Remote Options hash (VER=V4): '44bd8b5e'
Aug 21 13:37:10 zen ovpn-openvpn[29433]: NOTE: chroot will be delayed because of --client, --pull, or --up-delay
Aug 21 13:37:10 zen ovpn-openvpn[29433]: NOTE: UID/GID downgrade will be delayed because of --client, --pull, or --up-delay
Aug 21 13:37:10 zen ovpn-openvpn[29433]: Socket Buffers: R=[110592->131072] S=[110592->131072]
Aug 21 13:37:10 zen ovpn-openvpn[29433]: UDPv4 link local (bound): [undef]:1194
Aug 21 13:37:10 zen ovpn-openvpn[29433]: UDPv4 link remote: 130.60.230.177:1194
Aug 21 13:37:11 zen ovpn-openvpn[29433]: TLS: Initial packet from 130.60.230.177:1194, sid=7752882d f74252a4
Aug 21 13:37:11 zen ovpn-openvpn[29433]: VERIFY OK: depth=1, /XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
Aug 21 13:37:11 zen ovpn-openvpn[29433]: VERIFY OK: nsCertType=SERVER
Aug 21 13:37:11 zen ovpn-openvpn[29433]: VERIFY OK: depth=0, /XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
Aug 21 13:37:13 zen ovpn-openvpn[29433]: Data Channel Encrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
Aug 21 13:37:13 zen ovpn-openvpn[29433]: Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Aug 21 13:37:13 zen ovpn-openvpn[29433]: Data Channel Decrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
Aug 21 13:37:13 zen ovpn-openvpn[29433]: Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Aug 21 13:37:13 zen ovpn-openvpn[29433]: Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA
Aug 21 13:37:13 zen ovpn-openvpn[29433]: [server] Peer Connection Initiated with 130.60.230.177:1194
Aug 21 13:37:14 zen ovpn-openvpn[29433]: SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
Aug 21 13:37:14 zen ovpn-openvpn[29433]: PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1,dhcp-option DNS
XXXXXXXXXXX,dhcp-option DNS XXXXXXXXXXX,dhcp-option DOMAIN XXXXXXXXXXXX,route-gateway XXXXXXXXXXXXXx,ping 10,ping-restart 60,ifconfig
XXXXXXXXXXXXXXXX 255.255.254.0'
Aug 21 13:37:14 zen ovpn-openvpn[29433]: OPTIONS IMPORT: timers and/or timeouts modified
Aug 21 13:37:14 zen ovpn-openvpn[29433]: OPTIONS IMPORT: --ifconfig/up options modified
Aug 21 13:37:14 zen ovpn-openvpn[29433]: OPTIONS IMPORT: route options modified
Aug 21 13:37:14 zen ovpn-openvpn[29433]: OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Aug 21 13:37:14 zen ovpn-openvpn[29433]: TUN/TAP device tap0 opened
Aug 21 13:37:14 zen ovpn-openvpn[29433]: TUN/TAP TX queue length set to 100
Aug 21 13:37:14 zen ovpn-openvpn[29433]: ifconfig tap0 XXXXXXXXXXXXXXXXX netmask 255.255.254.0 mtu 1500 broadcast 172.16.3.255

Aug 21 13:37:14 zen ovpn-openvpn[29433]: PLUGIN_CALL: POST plugins/openvpn-down-root.so/PLUGIN_UP status=0
Aug 21 13:37:14 zen ovpn-openvpn[29433]: scripts/client.up tap0 1500 1590 XXXXXXXXXXX 255.255.254.0 init
Aug 21 13:37:16 zen avahi-daemon[4804]: Registering new address record for fe80::ec4f:bff:fec8:5ecf on tap0.*.
Aug 21 13:37:25 zen kernel: [109952.564000] tap0: no IPv6 routers present
Aug 21 13:37:27 zen ovpn-openvpn[29433]: NOTE: unable to redirect default gateway -- Cannot read current default gateway from system
Aug 21 13:37:27 zen ovpn-openvpn[29433]: chroot to '/etc/openvpn' and cd to '/' succeeded
Aug 21 13:37:27 zen ovpn-openvpn[29433]: GID set to daemon
Aug 21 13:37:27 zen ovpn-openvpn[29433]: UID set to nobody
Aug 21 13:37:27 zen ovpn-openvpn[29433]: Initialization Sequence Completed


==> Here I deactivate ppp0 and activate eth1 (Wlan) [cut out many messages from NetworkManager and others]


Aug 21 13:37:35 zen pppd[29404]: Terminating on signal 15
Aug 21 13:37:35 zen pppd[29404]: Connect time 0.9 minutes.
Aug 21 13:37:35 zen pppd[29404]: Sent 25086 bytes, received 29189 bytes.
Aug 21 13:37:35 zen pppd[29404]: Connection terminated.
Aug 21 13:37:35 zen pppd[29404]: Exit.
Aug 21 13:37:37 zen ovpn-openvpn[29433]: write UDPv4 []: Network is unreachable (code=101)
Aug 21 13:37:40 zen NetworkManager: <information>^IWaking up from sleep.

[...]

Aug 21 13:37:41 zen kernel: [109967.840000] ADDRCONF(NETDEV_CHANGE): eth1: link becomes ready
Aug 21 13:37:42 zen NetworkManager: <information>^IActivation (eth1) Beginning DHCP transaction.

[...]


Aug 21 13:38:34 zen ovpn-openvpn[29433]: [server] Inactivity timeout (--ping-restart), restarting
Aug 21 13:38:34 zen ovpn-openvpn[29433]: TCP/UDP: Closing socket
Aug 21 13:38:34 zen ovpn-openvpn[29433]: SIGUSR1[soft,ping-restart] received, process restarting
Aug 21 13:38:34 zen ovpn-openvpn[29433]: Restart pause, 2 second(s)
Aug 21 13:38:36 zen ovpn-openvpn[29433]: IMPORTANT: OpenVPN's default port number is now 1194, based on an official port number assignment
by IANA.  OpenVPN 2.0-beta16 and earlier used 5000 as the default port.
Aug 21 13:38:36 zen ovpn-openvpn[29433]: Re-using SSL/TLS context
Aug 21 13:38:36 zen ovpn-openvpn[29433]: LZO compression initialized
Aug 21 13:38:36 zen ovpn-openvpn[29433]: Control Channel MTU parms [ L:1590 D:166 EF:66 EB:0 ET:0 EL:0 ]
Aug 21 13:38:36 zen ovpn-openvpn[29433]: Data Channel MTU parms [ L:1590 D:1450 EF:58 EB:135 ET:32 EL:0 AF:3/1 ]
Aug 21 13:38:36 zen ovpn-openvpn[29433]: Local Options String: 'V4,dev-type tap,link-mtu 1590,tun-mtu 1532,proto UDPv4,comp-lzo,keydir
1,cipher AES-256-CBC,auth SHA1,keysize 256,tls-auth,key-method 2,tls-client'
Aug 21 13:38:36 zen ovpn-openvpn[29433]: Expected Remote Options String: 'V4,dev-type tap,link-mtu 1590,tun-mtu 1532,proto
UDPv4,comp-lzo,keydir 0,cipher AES-256-CBC,auth SHA1,keysize 256,tls-auth,key-method 2,tls-server'
Aug 21 13:38:36 zen ovpn-openvpn[29433]: Local Options hash (VER=V4): '48527533'
Aug 21 13:38:36 zen ovpn-openvpn[29433]: Expected Remote Options hash (VER=V4): '44bd8b5e'
Aug 21 13:38:36 zen ovpn-openvpn[29433]: Socket Buffers: R=[110592->131072] S=[110592->131072]
Aug 21 13:38:36 zen ovpn-openvpn[29433]: UDPv4 link local (bound): [undef]:1194
Aug 21 13:38:36 zen ovpn-openvpn[29433]: UDPv4 link remote: 130.60.230.177:1194
Aug 21 13:38:36 zen ovpn-openvpn[29433]: TLS: Initial packet from XXXXXXXXXXXXXXXXX:1194, sid=e911f6cb 7452af7d
Aug 21 13:38:36 zen ovpn-openvpn[29433]: VERIFY OK: depth=1, /XXXXXXXXXXXXXXXXXXXXXXXXXXXXXx
Aug 21 13:38:36 zen ovpn-openvpn[29433]: VERIFY OK: nsCertType=SERVER
Aug 21 13:38:36 zen ovpn-openvpn[29433]: VERIFY OK: depth=0, /XXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
Aug 21 13:38:36 zen ovpn-openvpn[29433]: Data Channel Encrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
Aug 21 13:38:36 zen ovpn-openvpn[29433]: Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Aug 21 13:38:36 zen ovpn-openvpn[29433]: Data Channel Decrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
Aug 21 13:38:36 zen ovpn-openvpn[29433]: Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Aug 21 13:38:36 zen ovpn-openvpn[29433]: Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA
Aug 21 13:38:36 zen ovpn-openvpn[29433]: [server] Peer Connection Initiated with XXXXXXXXXXXXXX:1194

Aug 21 13:38:37 zen ovpn-openvpn[29433]: SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
Aug 21 13:38:37 zen ovpn-openvpn[29433]: PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1,dhcp-option DNS
XXXXXXXXXXXXXX,dhcp-option DNS XXXXXXXXXXXXX,dhcp-option DOMAIN XXXXXXXXXXXXXX,route-gateway XXXXXXXXXXXXXX,ping 10,ping-restart 60,ifconfig
XXXXXXXXXXX 255.255.254.0'
Aug 21 13:38:37 zen ovpn-openvpn[29433]: OPTIONS IMPORT: timers and/or timeouts modified
Aug 21 13:38:37 zen ovpn-openvpn[29433]: OPTIONS IMPORT: --ifconfig/up options modified
Aug 21 13:38:37 zen ovpn-openvpn[29433]: OPTIONS IMPORT: route options modified
Aug 21 13:38:37 zen ovpn-openvpn[29433]: OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Aug 21 13:38:37 zen ovpn-openvpn[29433]: Preserving previous TUN/TAP instance: tap0
Aug 21 13:38:37 zen ovpn-openvpn[29433]: NOTE: Pulled options changed on restart, will need to close and reopen TUN/TAP device.
Aug 21 13:38:37 zen ovpn-openvpn[29433]: Closing TUN/TAP interface
Aug 21 13:38:37 zen avahi-daemon[4804]: Interface tap0.IPv4 no longer relevant for mDNS.
Aug 21 13:38:37 zen avahi-daemon[4804]: Leaving mDNS multicast group on interface tap0.IPv4 with address XXXXXXXXXXXXX.
Aug 21 13:38:37 zen avahi-daemon[4804]: Withdrawing address record for fe80::ec4f:bff:fec8:5ecf on tap0.
Aug 21 13:38:37 zen avahi-daemon[4804]: Withdrawing address record for XXXXXXXXXXXX on tap0.
Aug 21 13:38:37 zen ovpn-openvpn[29433]: PLUGIN_CALL: POST plugins/openvpn-down-root.so/PLUGIN_DOWN status=0
Aug 21 13:38:38 zen ovpn-openvpn[29433]: Note: Cannot ioctl TUNSETIFF tap: Operation not permitted (errno=1)
Aug 21 13:38:38 zen ovpn-openvpn[29433]: Note: Attempting fallback to kernel 2.2 TUN/TAP interface
Aug 21 13:38:38 zen ovpn-openvpn[29433]: TUN/TAP device dev/net/tun opened
Aug 21 13:38:38 zen ovpn-openvpn[29433]: ifconfig tap XXXXXXXXXXXXX netmask 255.255.254.0 mtu 1500 broadcast XXXXXXXX.255
Aug 21 13:38:38 zen ovpn-openvpn[29433]: Linux ifconfig failed: could not execute shell command
Aug 21 13:38:38 zen ovpn-openvpn[29433]: Exiting

-- 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Pierre Berthier
IT support 55.G.70
Institute of Neuroinformatics, UNI - ETH Zurich
Winterthurerstrasse 190, CH-8057 Zurich, Switzerland
Tel: +41 (0)44 63 530 17

____________________________________________
Openvpn-users mailing list
Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/openvpn-users