[OpenVPN home] [Date Prev] [Date Index] [Date Next]
[OpenVPN mailing lists] [Thread Prev] [Thread Index] [Thread Next]
Google
 
Web openvpn.net

Re: [Openvpn-users] windows xp client with private address problem


  • Subject: Re: [Openvpn-users] windows xp client with private address problem
  • From: "Bill Fung" <bill@xxxxxxxxx>
  • Date: Wed, 24 Oct 2007 22:29:12 +0800 (HKT)
  • Importance: Normal

I think you are right. But it is just not working i remove the port
mapping setting at client side's broadband router. I test using different
computers (xp and vista) with different isp. I can the same result for all
cases.

Attached are the conf and log. Any advise? Thanks in advanced.

Open VPN tester
JJ

Below is the server.conf:
port 1194
proto udp
dev tap0
ca mail_ca.crt
cert server.crt
key server.key  # This file should be kept secret
dh dh1024.pem
ifconfig-pool-persist ipp.txt
server-bridge 192.168.0.4 255.255.255.0 192.168.0.190 192.168.0.199
client-to-client
keepalive 10 120
comp-lzo
user nobody
group nobody
persist-key
persist-tun
status openvpn-status.log
log-append  openvpn.log
verb 5

Below is the client (xp)'s conf:
client
ifconfig 192.168.0.190 255.255.255.0
dev tap
proto udp
remote 5.6.7.8 1194
resolv-retry infinite
nobind
persist-key
persist-tun
ca mail_ca.crt
cert test.crt
key test.key
comp-lzo
verb 4
float
explicit-exit-notify 2


Below is the client side (xp)'s log:
Wed Oct 24 22:09:48 2007 us=579519 Current Parameter Settings:
Wed Oct 24 22:09:48 2007 us=579569   config = 'client.ovpn'
Wed Oct 24 22:09:48 2007 us=579583   mode = 0
Wed Oct 24 22:09:48 2007 us=579595   show_ciphers = DISABLED
Wed Oct 24 22:09:48 2007 us=579607   show_digests = DISABLED
Wed Oct 24 22:09:48 2007 us=579619   show_engines = DISABLED
Wed Oct 24 22:09:48 2007 us=579631   genkey = DISABLED
Wed Oct 24 22:09:48 2007 us=579643   key_pass_file = '[UNDEF]'
Wed Oct 24 22:09:48 2007 us=579655   show_tls_ciphers = DISABLED
Wed Oct 24 22:09:48 2007 us=579667   proto = 0
Wed Oct 24 22:09:48 2007 us=579679   local = '[UNDEF]'
Wed Oct 24 22:09:48 2007 us=579693   remote_list[0] = {'5.6.7.8', 1194}
Wed Oct 24 22:09:48 2007 us=579706   remote_random = DISABLED
Wed Oct 24 22:09:48 2007 us=579719   local_port = 1194
Wed Oct 24 22:09:48 2007 us=579730   remote_port = 1194
Wed Oct 24 22:09:48 2007 us=579742   remote_float = ENABLED
Wed Oct 24 22:09:48 2007 us=579755   ipchange = '[UNDEF]'
Wed Oct 24 22:09:48 2007 us=579767   bind_local = DISABLED
Wed Oct 24 22:09:48 2007 us=579779   dev = 'tap'
Wed Oct 24 22:09:48 2007 us=579790   dev_type = '[UNDEF]'
Wed Oct 24 22:09:48 2007 us=579802   dev_node = '[UNDEF]'
Wed Oct 24 22:09:48 2007 us=579814   tun_ipv6 = DISABLED
Wed Oct 24 22:09:48 2007 us=579826   ifconfig_local = '192.168.0.190' Wed
Oct 24 22:09:48 2007 us=579839   ifconfig_remote_netmask =
'255.255.255.0'
Wed Oct 24 22:09:48 2007 us=579852   ifconfig_noexec = DISABLED
Wed Oct 24 22:09:48 2007 us=579864   ifconfig_nowarn = DISABLED
Wed Oct 24 22:09:48 2007 us=579876   shaper = 0
Wed Oct 24 22:09:48 2007 us=579888   tun_mtu = 1500
Wed Oct 24 22:09:48 2007 us=579900   tun_mtu_defined = ENABLED
Wed Oct 24 22:09:48 2007 us=579912   link_mtu = 1500
Wed Oct 24 22:09:48 2007 us=579924   link_mtu_defined = DISABLED
Wed Oct 24 22:09:48 2007 us=579936   tun_mtu_extra = 32
Wed Oct 24 22:09:48 2007 us=579958   tun_mtu_extra_defined = ENABLED Wed
Oct 24 22:09:48 2007 us=579966   fragment = 0
Wed Oct 24 22:09:48 2007 us=579974   mtu_discover_type = -1
Wed Oct 24 22:09:48 2007 us=579982   mtu_test = 0
Wed Oct 24 22:09:48 2007 us=579989   mlock = DISABLED
Wed Oct 24 22:09:48 2007 us=579998   keepalive_ping = 0
Wed Oct 24 22:09:48 2007 us=580006   keepalive_timeout = 0
Wed Oct 24 22:09:48 2007 us=580014   inactivity_timeout = 0
Wed Oct 24 22:09:48 2007 us=580022   ping_send_timeout = 0
Wed Oct 24 22:09:48 2007 us=580030   ping_rec_timeout = 120
Wed Oct 24 22:09:48 2007 us=580038   ping_rec_timeout_action = 2
Wed Oct 24 22:09:48 2007 us=580046   ping_timer_remote = DISABLED
Wed Oct 24 22:09:48 2007 us=580058   remap_sigusr1 = 0
Wed Oct 24 22:09:48 2007 us=580067   explicit_exit_notification = 2 Wed
Oct 24 22:09:48 2007 us=580075   persist_tun = ENABLED
Wed Oct 24 22:09:48 2007 us=580084   persist_local_ip = DISABLED
Wed Oct 24 22:09:48 2007 us=580092   persist_remote_ip = DISABLED
Wed Oct 24 22:09:48 2007 us=580100   persist_key = ENABLED
Wed Oct 24 22:09:48 2007 us=580108   mssfix = 1450
Wed Oct 24 22:09:48 2007 us=580117   resolve_retry_seconds = 1000000000
Wed Oct 24 22:09:48 2007 us=580125   connect_retry_seconds = 5
Wed Oct 24 22:09:48 2007 us=580134   username = '[UNDEF]'
Wed Oct 24 22:09:48 2007 us=580142   groupname = '[UNDEF]'
Wed Oct 24 22:09:48 2007 us=580150   chroot_dir = '[UNDEF]'
Wed Oct 24 22:09:48 2007 us=580158   cd_dir = '[UNDEF]'
Wed Oct 24 22:09:48 2007 us=580166   writepid = '[UNDEF]'
Wed Oct 24 22:09:48 2007 us=580174   up_script = '[UNDEF]'
Wed Oct 24 22:09:48 2007 us=580182   down_script = '[UNDEF]'
Wed Oct 24 22:09:48 2007 us=580191   down_pre = DISABLED
Wed Oct 24 22:09:48 2007 us=580199   up_restart = DISABLED
Wed Oct 24 22:09:48 2007 us=580207   up_delay = DISABLED
Wed Oct 24 22:09:48 2007 us=580215   daemon = DISABLED
Wed Oct 24 22:09:48 2007 us=580222   inetd = 0
Wed Oct 24 22:09:48 2007 us=580230   log = DISABLED
Wed Oct 24 22:09:48 2007 us=580239   suppress_timestamps = DISABLED Wed
Oct 24 22:09:48 2007 us=580246   nice = 0
Wed Oct 24 22:09:48 2007 us=580254   verbosity = 4
Wed Oct 24 22:09:48 2007 us=753192   mute = 0
Wed Oct 24 22:09:48 2007 us=753207   gremlin = 0
Wed Oct 24 22:09:48 2007 us=753215   status_file = '[UNDEF]'
Wed Oct 24 22:09:48 2007 us=753223   status_file_version = 1
Wed Oct 24 22:09:48 2007 us=753231   status_file_update_freq = 60
Wed Oct 24 22:09:48 2007 us=753239   occ = ENABLED
Wed Oct 24 22:09:48 2007 us=753246   rcvbuf = 0
Wed Oct 24 22:09:48 2007 us=753254   sndbuf = 0
Wed Oct 24 22:09:48 2007 us=753263   socks_proxy_server = '[UNDEF]' Wed
Oct 24 22:09:48 2007 us=753283   socks_proxy_port = 0
Wed Oct 24 22:09:48 2007 us=753292   socks_proxy_retry = DISABLED
Wed Oct 24 22:09:48 2007 us=753300   fast_io = DISABLED
Wed Oct 24 22:09:48 2007 us=753307   comp_lzo = ENABLED
Wed Oct 24 22:09:48 2007 us=753316   comp_lzo_adaptive = ENABLED
Wed Oct 24 22:09:48 2007 us=753324   route_script = '[UNDEF]'
Wed Oct 24 22:09:48 2007 us=753332   route_default_gateway = '[UNDEF]' Wed
Oct 24 22:09:48 2007 us=753340   route_noexec = DISABLED
Wed Oct 24 22:09:48 2007 us=778699   route_delay = 0
Wed Oct 24 22:09:48 2007 us=778713   route_delay_window = 30
Wed Oct 24 22:09:48 2007 us=778722   route_delay_defined = ENABLED Wed Oct
24 22:09:48 2007 us=778730   management_addr = '[UNDEF]'
Wed Oct 24 22:09:48 2007 us=778738   management_port = 0
Wed Oct 24 22:09:48 2007 us=778746   management_user_pass = '[UNDEF]' Wed
Oct 24 22:09:48 2007 us=778755   management_log_history_cache = 250 Wed
Oct 24 22:09:48 2007 us=778763   management_echo_buffer_size = 100 Wed Oct
24 22:09:48 2007 us=778771   management_query_passwords = DISABLED Wed Oct
24 22:09:48 2007 us=778780   management_hold = DISABLED
Wed Oct 24 22:09:48 2007 us=778788   shared_secret_file = '[UNDEF]' Wed
Oct 24 22:09:48 2007 us=778796   key_direction = 0
Wed Oct 24 22:09:48 2007 us=778804   ciphername_defined = ENABLED
Wed Oct 24 22:09:48 2007 us=778813   ciphername = 'BF-CBC'
Wed Oct 24 22:09:48 2007 us=778821   authname_defined = ENABLED
Wed Oct 24 22:09:48 2007 us=778829   authname = 'SHA1'
Wed Oct 24 22:09:48 2007 us=789777   keysize = 0
Wed Oct 24 22:09:48 2007 us=789789   engine = DISABLED
Wed Oct 24 22:09:48 2007 us=789797   replay = ENABLED
Wed Oct 24 22:09:48 2007 us=789805   mute_replay_warnings = DISABLED Wed
Oct 24 22:09:48 2007 us=789813   replay_window = 64
Wed Oct 24 22:09:48 2007 us=789820   replay_time = 15
Wed Oct 24 22:09:48 2007 us=789828   packet_id_file = '[UNDEF]'
Wed Oct 24 22:09:48 2007 us=789836   use_iv = ENABLED
Wed Oct 24 22:09:48 2007 us=789843   test_crypto = DISABLED
Wed Oct 24 22:09:48 2007 us=789851   tls_server = DISABLED
Wed Oct 24 22:09:48 2007 us=789858   tls_client = ENABLED
Wed Oct 24 22:09:48 2007 us=789866   key_method = 2
Wed Oct 24 22:09:48 2007 us=789875   ca_file = 'mail_ca.crt'
Wed Oct 24 22:09:48 2007 us=789883   dh_file = '[UNDEF]'
Wed Oct 24 22:09:48 2007 us=789891   cert_file = 'test.crt'
Wed Oct 24 22:09:48 2007 us=789900   priv_key_file = 'test.key'
Wed Oct 24 22:09:48 2007 us=818484   pkcs12_file = '[UNDEF]'
Wed Oct 24 22:09:48 2007 us=818500   cryptoapi_cert = '[UNDEF]'
Wed Oct 24 22:09:48 2007 us=818509   cipher_list = '[UNDEF]'
Wed Oct 24 22:09:48 2007 us=818517   tls_verify = '[UNDEF]'
Wed Oct 24 22:09:48 2007 us=818545   tls_remote = '[UNDEF]'
Wed Oct 24 22:09:48 2007 us=818555   crl_file = '[UNDEF]'
Wed Oct 24 22:09:48 2007 us=818563   ns_cert_type = 0
Wed Oct 24 22:09:48 2007 us=818572   tls_timeout = 2
Wed Oct 24 22:09:48 2007 us=818580   renegotiate_bytes = 0
Wed Oct 24 22:09:48 2007 us=818588   renegotiate_packets = 0
Wed Oct 24 22:09:48 2007 us=818596   renegotiate_seconds = 3600
Wed Oct 24 22:09:48 2007 us=818604   handshake_window = 60
Wed Oct 24 22:09:48 2007 us=818612   transition_window = 3600
Wed Oct 24 22:09:48 2007 us=818620   single_session = DISABLED
Wed Oct 24 22:09:48 2007 us=818628   tls_exit = DISABLED
Wed Oct 24 22:09:48 2007 us=818637   tls_auth_file = '[UNDEF]'
Wed Oct 24 22:09:48 2007 us=839899   server_network = 0.0.0.0
Wed Oct 24 22:09:48 2007 us=839914   server_netmask = 0.0.0.0
Wed Oct 24 22:09:48 2007 us=839923   server_bridge_ip = 0.0.0.0
Wed Oct 24 22:09:48 2007 us=839955   server_bridge_netmask = 0.0.0.0 Wed
Oct 24 22:09:48 2007 us=839966   server_bridge_pool_start = 0.0.0.0 Wed
Oct 24 22:09:48 2007 us=839975   server_bridge_pool_end = 0.0.0.0 Wed Oct
24 22:09:48 2007 us=839985   ifconfig_pool_defined = DISABLED Wed Oct 24
22:09:48 2007 us=839994   ifconfig_pool_start = 0.0.0.0 Wed Oct 24
22:09:48 2007 us=840004   ifconfig_pool_end = 0.0.0.0
Wed Oct 24 22:09:48 2007 us=840013   ifconfig_pool_netmask = 0.0.0.0 Wed
Oct 24 22:09:48 2007 us=840022   ifconfig_pool_persist_filename =
'[UNDEF]'
Wed Oct 24 22:09:48 2007 us=840031   ifconfig_pool_persist_refresh_freq = 600
Wed Oct 24 22:09:48 2007 us=840040   ifconfig_pool_linear = DISABLED Wed
Oct 24 22:09:48 2007 us=840048   n_bcast_buf = 256
Wed Oct 24 22:09:48 2007 us=840057   tcp_queue_limit = 64
Wed Oct 24 22:09:48 2007 us=864641   real_hash_size = 256
Wed Oct 24 22:09:48 2007 us=864657   virtual_hash_size = 256
Wed Oct 24 22:09:48 2007 us=864666   client_connect_script = '[UNDEF]' Wed
Oct 24 22:09:48 2007 us=864675   learn_address_script = '[UNDEF]' Wed Oct
24 22:09:48 2007 us=864700   client_disconnect_script = '[UNDEF]' Wed Oct
24 22:09:48 2007 us=864710   client_config_dir = '[UNDEF]' Wed Oct 24
22:09:48 2007 us=864719   ccd_exclusive = DISABLED
Wed Oct 24 22:09:48 2007 us=864727   tmp_dir = '[UNDEF]'
Wed Oct 24 22:09:48 2007 us=864735   push_ifconfig_defined = DISABLED Wed
Oct 24 22:09:48 2007 us=864746   push_ifconfig_local = 0.0.0.0 Wed Oct 24
22:09:48 2007 us=864756   push_ifconfig_remote_netmask = 0.0.0.0
Wed Oct 24 22:09:48 2007 us=864765   enable_c2c = DISABLED
Wed Oct 24 22:09:48 2007 us=864774   duplicate_cn = DISABLED
Wed Oct 24 22:09:48 2007 us=864782   cf_max = 0
Wed Oct 24 22:09:48 2007 us=864790   cf_per = 0
Wed Oct 24 22:09:48 2007 us=888009   max_clients = 1024
Wed Oct 24 22:09:48 2007 us=888078   max_routes_per_client = 256
Wed Oct 24 22:09:48 2007 us=888088   client_cert_not_required = DISABLED
Wed Oct 24 22:09:48 2007 us=888096   username_as_common_name = DISABLED
Wed Oct 24 22:09:48 2007 us=888105   auth_user_pass_verify_script =
'[UNDEF]'
Wed Oct 24 22:09:48 2007 us=888115   auth_user_pass_verify_script_via_file
= DISABLED
Wed Oct 24 22:09:48 2007 us=888145   client = ENABLED
Wed Oct 24 22:09:48 2007 us=888154   pull = ENABLED
Wed Oct 24 22:09:48 2007 us=888162   auth_user_pass_file = '[UNDEF]' Wed
Oct 24 22:09:48 2007 us=888256   show_net_up = DISABLED
Wed Oct 24 22:09:48 2007 us=888266   route_method = 0
Wed Oct 24 22:09:48 2007 us=888275   ip_win32_defined = DISABLED
Wed Oct 24 22:09:48 2007 us=888283   ip_win32_type = 3
Wed Oct 24 22:09:48 2007 us=888291   dhcp_masq_offset = 0
Wed Oct 24 22:09:48 2007 us=888300   dhcp_lease_time = 31536000
Wed Oct 24 22:09:48 2007 us=911171   tap_sleep = 0
Wed Oct 24 22:09:48 2007 us=911185   dhcp_options = DISABLED
Wed Oct 24 22:09:48 2007 us=911194   dhcp_renew = DISABLED
Wed Oct 24 22:09:48 2007 us=911201   dhcp_pre_release = DISABLED
Wed Oct 24 22:09:48 2007 us=911226   dhcp_release = DISABLED
Wed Oct 24 22:09:48 2007 us=911235   domain = '[UNDEF]'
Wed Oct 24 22:09:48 2007 us=911243   netbios_scope = '[UNDEF]'
Wed Oct 24 22:09:48 2007 us=911251   netbios_node_type = 0
Wed Oct 24 22:09:48 2007 us=911258   disable_nbt = DISABLED
Wed Oct 24 22:09:48 2007 us=911276 OpenVPN 2.0.9 Win32-MinGW [SSL] [LZO]
built on Oct  1 2006
Wed Oct 24 22:09:48 2007 us=911551 IMPORTANT: OpenVPN's default port
number is now 1194, based on an official port number assignment by IANA. 
OpenVPN 2.0-beta16 and earlier used 5000 as the default port.
Wed Oct 24 22:09:48 2007 us=911565 WARNING: using --pull/--client and
--ifconfig together is probably not what you want
Wed Oct 24 22:09:48 2007 us=911575 WARNING: No server certificate
verification method has been enabled.  See
http://openvpn.net/howto.html#mitm for more info.
Wed Oct 24 22:09:48 2007 us=948208 LZO compression initialized
Wed Oct 24 22:09:48 2007 us=948307 Control Channel MTU parms [ L:1574
D:138 EF:38 EB:0 ET:0 EL:0 ]
Wed Oct 24 22:09:48 2007 us=949488 Data Channel MTU parms [ L:1574 D:1450
EF:42 EB:135 ET:32 EL:0 AF:3/1 ]
Wed Oct 24 22:09:48 2007 us=949536 Local Options String: 'V4,dev-type
tap,link-mtu 1574,tun-mtu 1532,proto UDPv4,comp-lzo,cipher BF-CBC,auth
SHA1,keysize 128,key-method 2,tls-client'
Wed Oct 24 22:09:48 2007 us=949548 Expected Remote Options String:
'V4,dev-type tap,link-mtu 1574,tun-mtu 1532,proto UDPv4,comp-lzo,cipher
BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Wed Oct 24 22:09:48 2007 us=954437 Local Options hash (VER=V4): 'd79ca330'
Wed Oct 24 22:09:48 2007 us=954458 Expected Remote Options hash (VER=V4):
'f7df56b8'
Wed Oct 24 22:09:48 2007 us=954491 Socket Buffers: R=[8192->8192]
S=[8192->8192]
Wed Oct 24 22:09:48 2007 us=954508 UDPv4 link local: [undef]
Wed Oct 24 22:09:48 2007 us=954518 UDPv4 link remote: 5.6.7.8:1194 Wed Oct
24 22:10:49 2007 us=439478 TLS Error: TLS key negotiation failed to occur
within 60 seconds (check your network connectivity)
Wed Oct 24 22:10:49 2007 us=439512 TLS Error: TLS handshake failed Wed Oct
24 22:10:49 2007 us=439728 TCP/UDP: Closing socket
Wed Oct 24 22:10:49 2007 us=439814 SIGUSR1[soft,tls-error] received,
process restarting
Wed Oct 24 22:10:49 2007 us=439827 Restart pause, 2 second(s)
Wed Oct 24 22:10:51 2007 us=439442 IMPORTANT: OpenVPN's default port
number is now 1194, based on an official port number assignment by IANA. 
OpenVPN 2.0-beta16 and earlier used 5000 as the default port.
Wed Oct 24 22:10:51 2007 us=439478 WARNING: No server certificate
verification method has been enabled.  See
http://openvpn.net/howto.html#mitm for more info.
Wed Oct 24 22:10:51 2007 us=439516 Re-using SSL/TLS context
Wed Oct 24 22:10:51 2007 us=439552 LZO compression initialized
Wed Oct 24 22:10:51 2007 us=439636 Control Channel MTU parms [ L:1574
D:138 EF:38 EB:0 ET:0 EL:0 ]
Wed Oct 24 22:10:51 2007 us=439706 Data Channel MTU parms [ L:1574 D:1450
EF:42 EB:135 ET:32 EL:0 AF:3/1 ]
Wed Oct 24 22:10:51 2007 us=439745 Local Options String: 'V4,dev-type
tap,link-mtu 1574,tun-mtu 1532,proto UDPv4,comp-lzo,cipher BF-CBC,auth
SHA1,keysize 128,key-method 2,tls-client'
Wed Oct 24 22:10:51 2007 us=439756 Expected Remote Options String:
'V4,dev-type tap,link-mtu 1574,tun-mtu 1532,proto UDPv4,comp-lzo,cipher
BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Wed Oct 24 22:10:51 2007 us=439785 Local Options hash (VER=V4): 'd79ca330'
Wed Oct 24 22:10:51 2007 us=439813 Expected Remote Options hash (VER=V4):
'f7df56b8'
Wed Oct 24 22:10:51 2007 us=439862 Socket Buffers: R=[8192->8192]
S=[8192->8192]
Wed Oct 24 22:10:51 2007 us=439877 UDPv4 link local: [undef]
Wed Oct 24 22:10:51 2007 us=439885 UDPv4 link remote: 5.6.7.8:1194 Wed Oct
24 22:11:50 2007 us=999627 TLS Error: TLS key negotiation failed to occur
within 60 seconds (check your network connectivity)
Wed Oct 24 22:11:50 2007 us=999650 TLS Error: TLS handshake failed Wed Oct
24 22:11:51 2007 us=90 TCP/UDP: Closing socket
Wed Oct 24 22:11:51 2007 us=198 SIGUSR1[soft,tls-error] received, process
restarting
Wed Oct 24 22:11:51 2007 us=210 Restart pause, 2 second(s)
Wed Oct 24 22:11:52 2007 us=983012 IMPORTANT: OpenVPN's default port
number is now 1194, based on an official port number assignment by IANA. 
OpenVPN 2.0-beta16 and earlier used 5000 as the default port.
Wed Oct 24 22:11:52 2007 us=983047 WARNING: No server certificate
verification method has been enabled.  See
http://openvpn.net/howto.html#mitm for more info.
Wed Oct 24 22:11:52 2007 us=983075 Re-using SSL/TLS context
Wed Oct 24 22:11:52 2007 us=983136 LZO compression initialized
Wed Oct 24 22:11:52 2007 us=983246 Control Channel MTU parms [ L:1574
D:138 EF:38 EB:0 ET:0 EL:0 ]
Wed Oct 24 22:11:52 2007 us=983318 Data Channel MTU parms [ L:1574 D:1450
EF:42 EB:135 ET:32 EL:0 AF:3/1 ]
Wed Oct 24 22:11:52 2007 us=983357 Local Options String: 'V4,dev-type
tap,link-mtu 1574,tun-mtu 1532,proto UDPv4,comp-lzo,cipher BF-CBC,auth
SHA1,keysize 128,key-method 2,tls-client'
Wed Oct 24 22:11:52 2007 us=983377 Expected Remote Options String:
'V4,dev-type tap,link-mtu 1574,tun-mtu 1532,proto UDPv4,comp-lzo,cipher
BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Wed Oct 24 22:11:52 2007 us=983408 Local Options hash (VER=V4): 'd79ca330'
Wed Oct 24 22:11:52 2007 us=983437 Expected Remote Options hash (VER=V4):
'f7df56b8'
Wed Oct 24 22:11:52 2007 us=983467 Socket Buffers: R=[8192->8192]
S=[8192->8192]
Wed Oct 24 22:11:52 2007 us=983481 UDPv4 link local: [undef]
Wed Oct 24 22:11:52 2007 us=983489 UDPv4 link remote: 5.6.7.8:1194



> On 10/20/07, Bill Fung <bill@xxxxxxxxx> wrote:
> <snip>
>> Do it mean that the openvpn will initiate a connection to the openvpn
client's port (>1024)?
>
> No, that is not the case.
>
> All you need on the client side is the ability to send packets to the
OpenVPN server (by default to port 1194/udp). This is the only
> connection you need to have a working OpenVPN tunnel.
>
> -A
>






______________________
OpenVPN mailing lists
https://lists.sourceforge.net/lists/listinfo/openvpn-users