[OpenVPN home] [Date Prev] [Date Index] [Date Next]
[OpenVPN mailing lists] [Thread Prev] [Thread Index] [Thread Next]
Google
 
Web openvpn.net

Re: [Openvpn-users] Packets errores in interface tun0


  • Subject: Re: [Openvpn-users] Packets errores in interface tun0
  • From: "Pablo Almido" <almidoster@xxxxxxxxx>
  • Date: Thu, 3 Jan 2008 21:32:48 -0500

Hi list.
 
Is there any suggestion for my question? perhaps I have to tunning my configuration, could give some tips, or how I can know what packets are dropped.
However, my tunnel works my users does not complain.
 


 
2008/1/1, Pablo Almido <almidoster@xxxxxxxxx>:

My home.up  is for RouterA, I have a similar configuration for home.up in  RouterB

# cat /etc/openvpn/home.up
#!/bin/sh
route add -net 10.9.2.0 netmask 255.255.255.0 gw $5 metric 2

My logs for router A seems the same for router B

Tue Jan 1 11:24:34 2008 us=723578 event_wait : Interrupted system call (code=4)
Tue Jan 1 11:24:34 2008 us=723794 TCP/UDP: Closing socket
Tue Jan 1 11:24:34 2008 us=723855 Closing TUN/TAP interface
Tue Jan 1 11:24:34 2008 us=804035 SIGHUP[hard,] received, process restarting
Tue Jan 1 11:24:34 2008 us=804395 Current Parameter Settings:
Tue Jan 1 11:24:34 2008 us=804445 config = ' staticvpn.conf'
Tue Jan 1 11:24:34 2008 us=804469 mode = 0
Tue Jan 1 11:24:34 2008 us=804491 persist_config = DISABLED
Tue Jan 1 11:24:34 2008 us=804513 persist_mode = 1
Tue Jan 1 11:24:34 2008 us=804535 show_ciphers = DISABLED
Tue Jan 1 11:24:34 2008 us=804556 show_digests = DISABLED
Tue Jan 1 11:24:34 2008 us=804577 show_engines = DISABLED
Tue Jan 1 11:24:34 2008 us=804599 genkey = DISABLED
Tue Jan 1 11:24:34 2008 us=804620 key_pass_file = '[UNDEF]'
Tue Jan 1 11:24:34 2008 us=804642 show_tls_ciphers = DISABLED
Tue Jan 1 11:24:34 2008 us=804664 proto = 0
Tue Jan 1 11:24:34 2008 us=804686 local = ' 222.222.222.98 '
Tue Jan 1 11:24:34 2008 us=804709 remote_list[0] = {'64.64.64.22', 1193}
Tue Jan 1 11:24:34 2008 us=804731 remote_random = DISABLED
Tue Jan 1 11:24:34 2008 us=804753 local_port = 1193
Tue Jan 1 11:24:34 2008 us=804775 remote_port = 1193
Tue Jan 1 11:24:34 2008 us=804796 remote_float = DISABLED
Tue Jan 1 11:24:34 2008 us=804817 ipchange = '[UNDEF]'
Tue Jan 1 11:24:34 2008 us=804838 bind_local = ENABLED
Tue Jan 1 11:24:34 2008 us=804860 dev = 'tun'
Tue Jan 1 11:24:34 2008 us=804881 dev_type = '[UNDEF]'
Tue Jan 1 11:24:34 2008 us=804902 dev_node = '[UNDEF]'
Tue Jan 1 11:24:34 2008 us=804965 tun_ipv6 = DISABLED
Tue Jan 1 11:24:34 2008 us=804992 ifconfig_local = '10.1.0.1 '
Tue Jan 1 11:24:34 2008 us=805015 ifconfig_remote_netmask = '10.1.0.2'
Tue Jan 1 11:24:34 2008 us=805036 ifconfig_noexec = DISABLED
Tue Jan 1 11:24:34 2008 us=805058 ifconfig_nowarn = DISABLED
Tue Jan 1 11:24:34 2008 us=805080 shaper = 0
Tue Jan 1 11:24:34 2008 us=805101 tun_mtu = 1500
Tue Jan 1 11:24:34 2008 us=805123 tun_mtu_defined = ENABLED
Tue Jan 1 11:24:34 2008 us=805145 link_mtu = 1500
Tue Jan 1 11:24:34 2008 us=805166 link_mtu_defined = DISABLED
Tue Jan 1 11:24:34 2008 us=805188 tun_mtu_extra = 0
Tue Jan 1 11:24:34 2008 us=805209 tun_mtu_extra_defined = DISABLED
Tue Jan 1 11:24:34 2008 us=805256 fragment = 0
Tue Jan 1 11:24:34 2008 us=805278 mtu_discover_type = -1
Tue Jan 1 11:24:34 2008 us=805300 mtu_test = 0
Tue Jan 1 11:24:34 2008 us=805322 mlock = DISABLED
Tue Jan 1 11:24:34 2008 us=805344 keepalive_ping = 0
Tue Jan 1 11:24:34 2008 us=805365 keepalive_timeout = 0
Tue Jan 1 11:24:34 2008 us=805387 inactivity_timeout = 0
Tue Jan 1 11:24:34 2008 us=805409 ping_send_timeout = 15
Tue Jan 1 11:24:34 2008 us=805431 ping_rec_timeout = 45
Tue Jan 1 11:24:34 2008 us=805453 ping_rec_timeout_action = 2
Tue Jan 1 11:24:34 2008 us=805475 ping_timer_remote = DISABLED
Tue Jan 1 11:24:34 2008 us=805497 remap_sigusr1 = 0
Tue Jan 1 11:24:34 2008 us=805519 explicit_exit_notification = 0
Tue Jan 1 11:24:34 2008 us=805540 persist_tun = DISABLED
Tue Jan 1 11:24:34 2008 us=805562 persist_local_ip = DISABLED
Tue Jan 1 11:24:34 2008 us=805584 persist_remote_ip = DISABLED
Tue Jan 1 11:24:34 2008 us=805606 persist_key = DISABLED
Tue Jan 1 11:24:34 2008 us=805628 mssfix = 1450
Tue Jan 1 11:24:34 2008 us=805649 passtos = DISABLED
Tue Jan 1 11:24:34 2008 us=805671 resolve_retry_seconds = 1000000000
Tue Jan 1 11:24:34 2008 us=805692 connect_retry_seconds = 5
Tue Jan 1 11:24:34 2008 us=805714 username = '[UNDEF]'
Tue Jan 1 11:24:34 2008 us=805735 groupname = '[UNDEF]'
Tue Jan 1 11:24:34 2008 us=805756 chroot_dir = '[UNDEF]'
Tue Jan 1 11:24:34 2008 us=805778 cd_dir = '/etc/openvpn'
Tue Jan 1 11:24:34 2008 us=805800 writepid = '/var/run/openvpn/staticvpn.pid'
Tue Jan 1 11:24:34 2008 us=805823 up_script = './home.up'
Tue Jan 1 11:24:34 2008 us=805844 down_script = '[UNDEF]'
Tue Jan 1 11:24:34 2008 us=805865 down_pre = DISABLED
Tue Jan 1 11:24:34 2008 us=805887 up_restart = DISABLED
Tue Jan 1 11:24:34 2008 us=805907 up_delay = DISABLED
Tue Jan 1 11:24:34 2008 us=805928 daemon = ENABLED
Tue Jan 1 11:24:34 2008 us=805949 inetd = 0
Tue Jan 1 11:24:34 2008 us=805970 log = ENABLED
Tue Jan 1 11:24:34 2008 us=805992 suppress_timestamps = DISABLED
Tue Jan 1 11:24:34 2008 us=806013 nice = 0
Tue Jan 1 11:24:34 2008 us=806034 verbosity = 4
Tue Jan 1 11:24:34 2008 us=806055 mute = 0
Tue Jan 1 11:24:34 2008 us=806075 gremlin = 0
Tue Jan 1 11:24:34 2008 us=806096 status_file = '[UNDEF]'
Tue Jan 1 11:24:34 2008 us=806117 status_file_version = 1
Tue Jan 1 11:24:34 2008 us=806139 status_file_update_freq = 60
Tue Jan 1 11:24:34 2008 us=806160 occ = ENABLED
Tue Jan 1 11:24:34 2008 us=806181 rcvbuf = 65536
Tue Jan 1 11:24:34 2008 us=806202 sndbuf = 65536
Tue Jan 1 11:24:34 2008 us=806241 socks_proxy_server = '[UNDEF]'
Tue Jan 1 11:24:34 2008 us=806263 socks_proxy_port = 0
Tue Jan 1 11:24:34 2008 us=806284 socks_proxy_retry = DISABLED
Tue Jan 1 11:24:34 2008 us=806305 fast_io = DISABLED
Tue Jan 1 11:24:34 2008 us=806326 comp_lzo = ENABLED
Tue Jan 1 11:24:34 2008 us=806347 comp_lzo_adaptive = ENABLED
Tue Jan 1 11:24:34 2008 us=806368 route_script = '[UNDEF]'
Tue Jan 1 11:24:34 2008 us=806390 route_default_gateway = '[UNDEF]'
Tue Jan 1 11:24:34 2008 us=806412 route_noexec = DISABLED
Tue Jan 1 11:24:34 2008 us=806433 route_delay = 0
Tue Jan 1 11:24:34 2008 us=806453 route_delay_window = 30
Tue Jan 1 11:24:34 2008 us=806474 route_delay_defined = DISABLED
Tue Jan 1 11:24:34 2008 us=806514 management_addr = '[UNDEF]'
Tue Jan 1 11:24:34 2008 us=806538 management_port = 0
Tue Jan 1 11:24:34 2008 us=806559 management_user_pass = '[UNDEF]'
Tue Jan 1 11:24:34 2008 us=806581 management_log_history_cache = 250
Tue Jan 1 11:24:34 2008 us=806602 management_echo_buffer_size = 100
Tue Jan 1 11:24:34 2008 us=806623 management_query_passwords = DISABLED
Tue Jan 1 11:24:34 2008 us=806644 management_hold = DISABLED
Tue Jan 1 11:24:34 2008 us=806665 shared_secret_file = ' static.key'
Tue Jan 1 11:24:34 2008 us=806686 key_direction = 0
Tue Jan 1 11:24:34 2008 us=806708 ciphername_defined = ENABLED
Tue Jan 1 11:24:34 2008 us=806730 ciphername = 'BF-CBC'
Tue Jan 1 11:24:34 2008 us=806752 authname_defined = ENABLED
Tue Jan 1 11:24:34 2008 us=806774 authname = 'SHA1'
Tue Jan 1 11:24:34 2008 us=806796 keysize = 0
Tue Jan 1 11:24:34 2008 us=806818 engine = DISABLED
Tue Jan 1 11:24:34 2008 us=806840 replay = ENABLED
Tue Jan 1 11:24:34 2008 us=806861 mute_replay_warnings = DISABLED
Tue Jan 1 11:24:34 2008 us=806883 replay_window = 64
Tue Jan 1 11:24:34 2008 us=806905 replay_time = 15
Tue Jan 1 11:24:34 2008 us=806927 packet_id_file = '[UNDEF]'
Tue Jan 1 11:24:34 2008 us=806949 use_iv = ENABLED
Tue Jan 1 11:24:34 2008 us=806971 test_crypto = DISABLED
Tue Jan 1 11:24:34 2008 us=806992 tls_server = DISABLED
Tue Jan 1 11:24:34 2008 us=807014 tls_client = DISABLED
Tue Jan 1 11:24:34 2008 us=807035 key_method = 2
Tue Jan 1 11:24:34 2008 us=807057 ca_file = '[UNDEF]'
Tue Jan 1 11:24:34 2008 us=807078 dh_file = '[UNDEF]'
Tue Jan 1 11:24:34 2008 us=807100 cert_file = '[UNDEF]'
Tue Jan 1 11:24:34 2008 us=807121 priv_key_file = '[UNDEF]'
Tue Jan 1 11:24:34 2008 us=807142 pkcs12_file = '[UNDEF]'
Tue Jan 1 11:24:34 2008 us=807163 cipher_list = '[UNDEF]'
Tue Jan 1 11:24:34 2008 us=807184 tls_verify = '[UNDEF]'
Tue Jan 1 11:24:34 2008 us=807205 tls_remote = '[UNDEF]'
Tue Jan 1 11:24:34 2008 us=807243 crl_file = '[UNDEF]'
Tue Jan 1 11:24:34 2008 us=807266 ns_cert_type = 0
Tue Jan 1 11:24:34 2008 us=807289 tls_timeout = 2
Tue Jan 1 11:24:34 2008 us=807310 renegotiate_bytes = 0
Tue Jan 1 11:24:34 2008 us=807331 renegotiate_packets = 0
Tue Jan 1 11:24:34 2008 us=807353 renegotiate_seconds = 3600
Tue Jan 1 11:24:34 2008 us=807375 handshake_window = 60
Tue Jan 1 11:24:34 2008 us=807397 transition_window = 3600
Tue Jan 1 11:24:34 2008 us=807418 single_session = DISABLED
Tue Jan 1 11:24:34 2008 us=807440 tls_exit = DISABLED
Tue Jan 1 11:24:34 2008 us=807462 tls_auth_file = '[UNDEF]'
Tue Jan 1 11:24:34 2008 us=807487 server_network = 0.0.0.0
Tue Jan 1 11:24:34 2008 us=807511 server_netmask = 0.0.0.0
Tue Jan 1 11:24:34 2008 us=807534 server_bridge_ip = 0.0.0.0
Tue Jan 1 11:24:34 2008 us=807558 server_bridge_netmask = 0.0.0.0
Tue Jan 1 11:24:34 2008 us=807582 server_bridge_pool_start = 0.0.0.0
Tue Jan 1 11:24:34 2008 us=807605 server_bridge_pool_end = 0.0.0.0
Tue Jan 1 11:24:34 2008 us=807627 ifconfig_pool_defined = DISABLED
Tue Jan 1 11:24:34 2008 us=807650 ifconfig_pool_start = 0.0.0.0
Tue Jan 1 11:24:34 2008 us=807674 ifconfig_pool_end = 0.0.0.0
Tue Jan 1 11:24:34 2008 us=807697 ifconfig_pool_netmask = 0.0.0.0
Tue Jan 1 11:24:34 2008 us=807719 ifconfig_pool_persist_filename = '[UNDEF]'
Tue Jan 1 11:24:34 2008 us=807741 ifconfig_pool_persist_refresh_freq = 600
Tue Jan 1 11:24:34 2008 us=807763 ifconfig_pool_linear = DISABLED
Tue Jan 1 11:24:34 2008 us=807784 n_bcast_buf = 256
Tue Jan 1 11:24:34 2008 us=807806 tcp_queue_limit = 64
Tue Jan 1 11:24:34 2008 us=807827 real_hash_size = 256
Tue Jan 1 11:24:34 2008 us=807849 virtual_hash_size = 256
Tue Jan 1 11:24:34 2008 us=807870 client_connect_script = '[UNDEF]'
Tue Jan 1 11:24:34 2008 us=807892 learn_address_script = '[UNDEF]'
Tue Jan 1 11:24:34 2008 us=807914 client_disconnect_script = '[UNDEF]'
Tue Jan 1 11:24:34 2008 us=807935 client_config_dir = '[UNDEF]'
Tue Jan 1 11:24:34 2008 us=807972 ccd_exclusive = DISABLED
Tue Jan 1 11:24:34 2008 us=807996 tmp_dir = '[UNDEF]'
Tue Jan 1 11:24:34 2008 us=808019 push_ifconfig_defined = DISABLED
Tue Jan 1 11:24:34 2008 us=808043 push_ifconfig_local = 0.0.0.0
Tue Jan 1 11:24:34 2008 us=808068 push_ifconfig_remote_netmask = 0.0.0.0
Tue Jan 1 11:24:34 2008 us=808089 enable_c2c = DISABLED
Tue Jan 1 11:24:34 2008 us=808110 duplicate_cn = DISABLED
Tue Jan 1 11:24:34 2008 us=808131 cf_max = 0
Tue Jan 1 11:24:34 2008 us=808153 cf_per = 0
Tue Jan 1 11:24:34 2008 us=808174 max_clients = 1024
Tue Jan 1 11:24:34 2008 us=808196 max_routes_per_client = 256
Tue Jan 1 11:24:34 2008 us=808235 client_cert_not_required = DISABLED
Tue Jan 1 11:24:34 2008 us=808258 username_as_common_name = DISABLED
Tue Jan 1 11:24:34 2008 us=808280 auth_user_pass_verify_script = '[UNDEF]'
Tue Jan 1 11:24:34 2008 us=808302 auth_user_pass_verify_script_via_file = DISABLED
Tue Jan 1 11:24:34 2008 us=808324 client = DISABLED
Tue Jan 1 11:24:34 2008 us=808345 pull = DISABLED
Tue Jan 1 11:24:34 2008 us=808367 auth_user_pass_file = '[UNDEF]'
Tue Jan 1 11:24:34 2008 us=808391 OpenVPN 2.0.9 i386-redhat-linux-gnu [SSL] [LZO] [EPOLL] built on Sep 9 2007
Tue Jan 1 11:24:34 2008 us=808499 Restart pause, 2 second(s)
Tue Jan 1 11:24:36 2008 us=810350 Static Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
Tue Jan 1 11:24:36 2008 us=810422 Static Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Tue Jan 1 11:24:36 2008 us=810524 Static Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
Tue Jan 1 11:24:36 2008 us=810551 Static Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Tue Jan 1 11:24:36 2008 us=810613 LZO compression initialized
Tue Jan 1 11:24:36 2008 us=816494 TUN/TAP device tun0 opened
Tue Jan 1 11:24:36 2008 us=816613 TUN/TAP TX queue length set to 100
Tue Jan 1 11:24:36 2008 us=816672 /sbin/ip link set dev tun0 up mtu 1500
Tue Jan 1 11:24:36 2008 us=820540 /sbin/ip addr add dev tun0 local 10.1.0.1 peer 10.1.0.2
Tue Jan 1 11:24:36 2008 us=825973 ./home.up tun0 1500 1545 10.1.0.1 10.1.0.2 init
Tue Jan 1 11:24:36 2008 us=834357 Data Channel MTU parms [ L:1545 D:1450 EF:45 EB:135 ET:0 EL:0 AF:3/1 ]
Tue Jan 1 11:24:36 2008 us=834485 Local Options String: 'V4,dev-type tun,link-mtu 1545,tun-mtu 1500,proto UDPv4,ifconfig 10.1.0.2 10.1.0.1,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,secret'
Tue Jan 1 11:24:36 2008 us=834510 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1545,tun-mtu 1500,proto UDPv4,ifconfig 10.1.0.1 10.1.0.2 ,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,secret'
Tue Jan 1 11:24:36 2008 us=834563 Local Options hash (VER=V4): '2b90ef6a'
Tue Jan 1 11:24:36 2008 us=834604 Expected Remote Options hash (VER=V4): 'cc1583e3'
Tue Jan 1 11:24:36 2008 us=834651 Socket Buffers: R=[110592->131072] S=[110592->131072]
Tue Jan 1 11:24:36 2008 us=834690 UDPv4 link local (bound): 222.222.222.98:1193
Tue Jan 1 11:24:36 2008 us=834716 UDPv4 link remote: 64.64.64.22:1193
Tue Jan 1 11:24:36 2008 us=968270 Peer Connection Initiated with 64.64.64.22:1193
Tue Jan 1 11:24:37 2008 us=13221 Initialization Sequence Completed









2008/1/1, David Balazic < David.Balazic@xxxxxxxxxxxxxxxxxx>:
You forgot to post:
 - content of home.up
 - log files
 
David


From: openvpn-users-bounces@xxxxxxxxxxxxxxxxxxxxx on behalf of Pablo Almido
Sent: Tue 01-Jan-08 19:32
To: openvpn-users@xxxxxxxxxxxxxxxxxxxxx
Subject: [Openvpn-users] Packets errores in interface tun0

 

Hi list,

I have a vpn in mode site-to-site , I have packets errors in tunnel
interface, how can I solve this problem? . I can see packet errors in
both routers.


tun0      Link encap:UNSPEC  HWaddr
00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00
          inet addr:10.1.0.1  P-t-P: 10.1.0.2  Mask:255.255.255.255
          UP POINTOPOINT RUNNING NOARP MULTICAST  MTU:1500  Metric:1
          RX packets:492393 errors:0 dropped:0 overruns:0 frame:0
          TX packets:286155 errors:0 dropped:414545 overruns:0 carrier:0
          collisions:0 txqueuelen:100
          RX bytes:34668073 (33.0 MiB)  TX bytes:35077757 (33.4 MiB)


Here my configuration

RouterA

dev tun
local 222.222.222.98
remote 64.64.64.22
ifconfig 10.1.0.1 10.1.0.2
up ./home.up
secret static.key
port 1193
comp-lzo
ping 15
ping-restart 45
log /var/log/openvpn.log
verb 4


RouterB

dev tun
local 64.64.64.22
remote  222.222.222.98
ifconfig 10.1.0.2 10.1.0.1
up ./home.up
secret static.key
port 1193
comp-lzo
ping 15
ping-restart 45
log /var/log/openvpn.log
verb 4

-------------------------------------------------------------------------
This SF.net email is sponsored by: Microsoft
Defy all challenges. Microsoft(R) Visual Studio 2005.
http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
_______________________________________________
Openvpn-users mailing list
Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/openvpn-users