Jump to content
Not connected, Your IP: 18.216.250.143
farquaad

ANSWERED Trying to connect to a Gen2 Server with IPv4

Recommended Posts

Hi,

I've been trying to get a Gen 2 Server working on my pfSense 2.4 without much success. It seems I am getting no resonse from the VPN Server. I downloaded a config file for Linux for version 2.4 and above and for ipv4/6 with an ipv4 connection.

I mention two ip addresses bellow
100.200.100.100 is the modded ip of Alphirk
80.60.1.70 is my WAN


The following is my VPN settings:

 

    Server Mode = Peer to Peer (SSL/TLS)
    Protocol = UDP on IPv4 only
    Device mode = tun - Layer 3 Tunnel Mode
    Interface = WAN
    Local Port =
    Server host = 100.200.100.100
    Server port = 443
    Proxy host or address = empty
    Proxy Port = empty
    Proxy authentication = none
    Description = AirVPN client

User Authentication Settings

    Username = Empty
    Password = Empty

Cryptographic settings

    TLS Key = [From file]
    TLS Key Usage Mode = TLS Authentication
    Peer certificate authority = AirVPN_CA
    Peer certificate revocation list = No Lists defined
    Client certificate = AirVPN_cert (CA: AirVPN_CA)
    Encryption algorithm = AES-256-CBC (256bit key, 128 bit block)
    Allowed NCP Encryption Algorithms: AES-256-GCM, AES-256-CBC
    Auth digest Algorithm = SHA512
    Hardware crypto = Intel RDRAND (aI have intel hw)

Tunnel Settings

    IPv4 Tunnel Network = Empty
    IPv6 Tunnel Network = Empty
    IPv4 Remote Network(s) = Empty
    IPv6 Remote Network(s) = Empty
    Limit outgoing bandwidth = Default
    Compression = No LZO compression
    Topology = Subnet - One IP address per client in a common subnet
    Type-of-Service = Disabled
    Dont pull routes = Enabled
    Dont add/remove routes = Enabled

Advanced Configuration

    Custom Options =
        resolv-retry infinite;
        persist-key;
        persist-tun;
        auth-nocache;
        route-delay 5;
        explicit-exit-notify 5;
        push-peer-info;
        setenv UV_IPV6 yes;
        remote-cert-tls server;
        client;
        key-method 2;
        key-direction 1;
        mlock;
        keepalive 5 30;

    Send/Receive Buffer = 512KiB

 

 


I have tried with and without the added Custom Options. When I do a tcpdump, I don't seem to get a reply from the server.

 

 

# tcpdump -vv -i pppoe0 dst host 100.200.100.100
tcpdump: listening on pppoe0, link-type NULL (BSD loopback), capture size 262144 bytes
09:33:50.140639 IP (tos 0x0, ttl 64, id 61213, offset 0, flags [none], proto UDP (17), length 114)
    80.60.1.70.14587 > 100.200.100.100.https: [udp sum ok] UDP, length 86
09:33:52.678718 IP (tos 0x0, ttl 64, id 55421, offset 0, flags [none], proto UDP (17), length 114)
    80.60.1.70.14587 > 100.200.100.100.https: [udp sum ok] UDP, length 86
09:33:56.509027 IP (tos 0x0, ttl 64, id 21398, offset 0, flags [none], proto UDP (17), length 114)
    80.60.1.70.14587 > 100.200.100.100.https: [udp sum ok] UDP, length 86

 

 



This is a dump of a VPN connection attempt.

 

 

Sep 11 09:33:55     openvpn[50510]: MANAGEMENT: Client disconnected
Sep 11 09:33:55     openvpn[50510]: MANAGEMENT: CMD 'state 1'
Sep 11 09:33:55     openvpn[50510]: MANAGEMENT: Client connected from /var/etc/openvpn/client6.sock
Sep 11 09:33:55     openvpn[87430]: MANAGEMENT: Client disconnected
Sep 11 09:33:55     openvpn[87430]: MANAGEMENT: CMD 'status 2'
Sep 11 09:33:55     openvpn[87430]: MANAGEMENT: CMD 'state 1'
Sep 11 09:33:55     openvpn[87430]: MANAGEMENT: Client connected from /var/etc/openvpn/client3.sock
Sep 11 09:33:52     openvpn[50510]: UDPv4 WRITE [86] to [AF_INET]100.200.100.100:443: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 pid=[ #2 ] [ ] pid=0 DATA len=0
Sep 11 09:33:50     openvpn[50510]: UDPv4 WRITE [86] to [AF_INET]100.200.100.100:443: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 pid=[ #1 ] [ ] pid=0 DATA len=0
Sep 11 09:33:50     openvpn[50510]: SENT PING
Sep 11 09:33:50     openvpn[50510]: TLS Warning: no data channel send key available: [key#0 state=S_INITIAL id=0 sid=00000000 00000000] [key#1 state=S_UNDEF id=0 sid=00000000 00000000] [key#2 state=S_UNDEF id=0 sid=00000000 00000000]
Sep 11 09:33:50     openvpn[50510]: UDPv4 link remote: [AF_INET]100.200.100.100:443
Sep 11 09:33:50     openvpn[50510]: UDPv4 link local (bound): [AF_INET]80.60.1.70:0
Sep 11 09:33:50     openvpn[50510]: Socket Buffers: R=[42080->524288] S=[57344->524288]
Sep 11 09:33:50     openvpn[50510]: TCP/UDP: Preserving recently used remote address: [AF_INET]100.200.100.100:443
Sep 11 09:33:50     openvpn[50510]: Expected Remote Options String (VER=V4): 'V4,dev-type tun,link-mtu 1602,tun-mtu 1500,proto UDPv4,comp-lzo,keydir 0,cipher AES-256-CBC,auth SHA512,keysize 256,tls-auth,key-method 2,tls-server'
Sep 11 09:33:50     openvpn[50510]: Local Options String (VER=V4): 'V4,dev-type tun,link-mtu 1602,tun-mtu 1500,proto UDPv4,comp-lzo,keydir 1,cipher AES-256-CBC,auth SHA512,keysize 256,tls-auth,key-method 2,tls-client'
Sep 11 09:33:50     openvpn[50510]: calc_options_string_link_mtu: link-mtu 1622 -> 1602
Sep 11 09:33:50     openvpn[50510]: crypto_adjust_frame_parameters: Adjusting frame parameters for crypto by 100 bytes
Sep 11 09:33:50     openvpn[50510]: calc_options_string_link_mtu: link-mtu 1622 -> 1602
Sep 11 09:33:50     openvpn[50510]: crypto_adjust_frame_parameters: Adjusting frame parameters for crypto by 100 bytes
Sep 11 09:33:50     openvpn[50510]: Data Channel MTU parms [ L:1622 D:1450 EF:122 EB:406 ET:0 EL:3 ]
Sep 11 09:33:50     openvpn[50510]: RESOLVE_REMOTE flags=0x0901 phase=1 rrs=0 sig=-1 status=0
Sep 11 09:33:50     openvpn[50510]: MTU DYNAMIC mtu=1450, flags=2, 1622 -> 1450
Sep 11 09:33:50     openvpn[50510]: Control Channel MTU parms [ L:1622 D:1140 EF:110 EB:0 ET:0 EL:3 ]
Sep 11 09:33:50     openvpn[50510]: PID packet_id_init seq_backtrack=64 time_backtrack=15
Sep 11 09:33:50     openvpn[50510]: PID packet_id_init seq_backtrack=64 time_backtrack=15
Sep 11 09:33:50     openvpn[50510]: PID packet_id_init seq_backtrack=64 time_backtrack=15
Sep 11 09:33:50     openvpn[50510]: PID packet_id_init seq_backtrack=64 time_backtrack=15
Sep 11 09:33:50     openvpn[50510]: crypto_adjust_frame_parameters: Adjusting frame parameters for crypto by 72 bytes
Sep 11 09:33:50     openvpn[50510]: Incoming Control Channel Authentication: HMAC size=64 block_size=64
Sep 11 09:33:50     openvpn[50510]: Incoming Control Channel Authentication: HMAC KEY: a1198ef6 49f1c238 61a2a19f 2c6b27aa 5e43be76 1e0c71e9 c2e8d33b 75af289e ffb1b1e4 ec603d86 5f74e2b4 348ff631 c5c81202 d90003ed 263dca40 22aa9861
Sep 11 09:33:50     openvpn[50510]: Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
Sep 11 09:33:50     openvpn[50510]: Outgoing Control Channel Authentication: HMAC size=64 block_size=64
Sep 11 09:33:50     openvpn[50510]: Outgoing Control Channel Authentication: HMAC KEY: f2763f8a 62ca5983 d145faa2 276532ae 5e18459a 0b729dc6 7f41b928 e592b394 67ec3d79 c7020559 5718b1bc e56ca4ff 58e692ce 09c8282d 2770d2bf 5c217c06
Sep 11 09:33:50     openvpn[50510]: Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
Sep 11 09:33:50     openvpn[50510]: PRNG init md=SHA1 size=36
Sep 11 09:33:50     openvpn[50510]: Initializing OpenSSL support for engine 'rdrand'
Sep 11 09:33:50     openvpn[50510]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Sep 11 09:33:50     openvpn[50510]: mlockall call succeeded
Sep 11 09:33:50     openvpn[50510]: MANAGEMENT: unix domain socket listening on /var/etc/openvpn/client6.sock
Sep 11 09:33:50     openvpn[50251]: library versions: OpenSSL 1.0.2m-freebsd 2 Nov 2017, LZO 2.10
Sep 11 09:33:50     openvpn[50251]: OpenVPN 2.4.4 amd64-portbld-freebsd11.1 [SSL (OpenSSL)] [LZO] [LZ4] [MH/RECVDA] [AEAD] built on Mar 16 2018
Sep 11 09:33:50     openvpn[50251]: auth_user_pass_file = '[UNDEF]'
Sep 11 09:33:50     openvpn[50251]: pull = ENABLED
Sep 11 09:33:50     openvpn[50251]: client = ENABLED
Sep 11 09:33:50     openvpn[50251]: port_share_port = '[UNDEF]'
Sep 11 09:33:50     openvpn[50251]: port_share_host = '[UNDEF]'
Sep 11 09:33:50     openvpn[50251]: auth_token_lifetime = 0
Sep 11 09:33:50     openvpn[50251]: auth_token_generate = DISABLED
Sep 11 09:33:50     openvpn[50251]: auth_user_pass_verify_script_via_file = DISABLED
Sep 11 09:33:50     openvpn[50251]: auth_user_pass_verify_script = '[UNDEF]'
Sep 11 09:33:50     openvpn[50251]: max_routes_per_client = 256
Sep 11 09:33:50     openvpn[50251]: max_clients = 1024
Sep 11 09:33:50     openvpn[50251]: cf_per = 0
Sep 11 09:33:50     openvpn[50251]: cf_max = 0
Sep 11 09:33:50     openvpn[50251]: duplicate_cn = DISABLED
Sep 11 09:33:50     openvpn[50251]: enable_c2c = DISABLED
Sep 11 09:33:50     openvpn[50251]: push_ifconfig_ipv6_remote = ::
Sep 11 09:33:50     openvpn[50251]: push_ifconfig_ipv6_local = ::/0
Sep 11 09:33:50     openvpn[50251]: push_ifconfig_ipv6_defined = DISABLED
Sep 11 09:33:50     openvpn[50251]: push_ifconfig_remote_netmask = 0.0.0.0
Sep 11 09:33:50     openvpn[50251]: push_ifconfig_local = 0.0.0.0
Sep 11 09:33:50     openvpn[50251]: push_ifconfig_defined = DISABLED
Sep 11 09:33:50     openvpn[50251]: tmp_dir = '/tmp'
Sep 11 09:33:50     openvpn[50251]: ccd_exclusive = DISABLED
Sep 11 09:33:50     openvpn[50251]: client_config_dir = '[UNDEF]'
Sep 11 09:33:50     openvpn[50251]: client_disconnect_script = '[UNDEF]'
Sep 11 09:33:50     openvpn[50251]: learn_address_script = '[UNDEF]'
Sep 11 09:33:50     openvpn[50251]: client_connect_script = '[UNDEF]'
Sep 11 09:33:50     openvpn[50251]: virtual_hash_size = 256
Sep 11 09:33:50     openvpn[50251]: real_hash_size = 256
Sep 11 09:33:50     openvpn[50251]: tcp_queue_limit = 64
Sep 11 09:33:50     openvpn[50251]: n_bcast_buf = 256
Sep 11 09:33:50     openvpn[50251]: ifconfig_ipv6_pool_netbits = 0
Sep 11 09:33:50     openvpn[50251]: ifconfig_ipv6_pool_base = ::
Sep 11 09:33:50     openvpn[50251]: ifconfig_ipv6_pool_defined = DISABLED
Sep 11 09:33:50     openvpn[50251]: ifconfig_pool_persist_refresh_freq = 600
Sep 11 09:33:50     openvpn[50251]: ifconfig_pool_persist_filename = '[UNDEF]'
Sep 11 09:33:50     openvpn[50251]: ifconfig_pool_netmask = 0.0.0.0
Sep 11 09:33:50     openvpn[50251]: ifconfig_pool_end = 0.0.0.0
Sep 11 09:33:50     openvpn[50251]: ifconfig_pool_start = 0.0.0.0
Sep 11 09:33:50     openvpn[50251]: ifconfig_pool_defined = DISABLED
Sep 11 09:33:50     openvpn[50251]: server_bridge_pool_end = 0.0.0.0
Sep 11 09:33:50     openvpn[50251]: server_bridge_pool_start = 0.0.0.0
Sep 11 09:33:50     openvpn[50251]: server_bridge_netmask = 0.0.0.0
Sep 11 09:33:50     openvpn[50251]: server_bridge_ip = 0.0.0.0
Sep 11 09:33:50     openvpn[50251]: server_netbits_ipv6 = 0
Sep 11 09:33:50     openvpn[50251]: server_network_ipv6 = ::
Sep 11 09:33:50     openvpn[50251]: server_netmask = 0.0.0.0
Sep 11 09:33:50     openvpn[50251]: server_network = 0.0.0.0
Sep 11 09:33:50     openvpn[50251]: tls_crypt_file = '[UNDEF]'
Sep 11 09:33:50     openvpn[50251]: tls_auth_file = '/var/etc/openvpn/client6.tls-auth'
Sep 11 09:33:50     openvpn[50251]: tls_exit = DISABLED
Sep 11 09:33:50     openvpn[50251]: push_peer_info = ENABLED
Sep 11 09:33:50     openvpn[50251]: single_session = DISABLED
Sep 11 09:33:50     openvpn[50251]: transition_window = 3600
Sep 11 09:33:50     openvpn[50251]: handshake_window = 60
Sep 11 09:33:50     openvpn[50251]: renegotiate_seconds = 3600
Sep 11 09:33:50     openvpn[50251]: renegotiate_packets = 0
Sep 11 09:33:50     openvpn[50251]: renegotiate_bytes = -1
Sep 11 09:33:50     openvpn[50251]: tls_timeout = 2
Sep 11 09:33:50     openvpn[50251]: ssl_flags = 0
Sep 11 09:33:50     openvpn[50251]: remote_cert_eku = 'TLS Web Server Authentication'
Sep 11 09:33:50     openvpn[50251]: remote_cert_ku[i] = 0
Sep 11 09:33:50     openvpn[50251]: remote_cert_ku[i] = 0
Sep 11 09:33:50     openvpn[50251]: remote_cert_ku[i] = 0
Sep 11 09:33:50     openvpn[50251]: remote_cert_ku[i] = 0
Sep 11 09:33:50     openvpn[50251]: remote_cert_ku[i] = 0
Sep 11 09:33:50     openvpn[50251]: remote_cert_ku[i] = 0
Sep 11 09:33:50     openvpn[50251]: remote_cert_ku[i] = 0
Sep 11 09:33:50     openvpn[50251]: remote_cert_ku[i] = 0
Sep 11 09:33:50     openvpn[50251]: remote_cert_ku[i] = 0
Sep 11 09:33:50     openvpn[50251]: remote_cert_ku[i] = 0
Sep 11 09:33:50     openvpn[50251]: remote_cert_ku[i] = 0
Sep 11 09:33:50     openvpn[50251]: remote_cert_ku[i] = 0
Sep 11 09:33:50     openvpn[50251]: remote_cert_ku[i] = 0
Sep 11 09:33:50     openvpn[50251]: remote_cert_ku[i] = 0
Sep 11 09:33:50     openvpn[50251]: remote_cert_ku[i] = 0
Sep 11 09:33:50     openvpn[50251]: remote_cert_ku[i] = 65535
Sep 11 09:33:50     openvpn[50251]: ns_cert_type = 0
Sep 11 09:33:50     openvpn[50251]: crl_file = '[UNDEF]'
Sep 11 09:33:50     openvpn[50251]: verify_x509_name = '[UNDEF]'
Sep 11 09:33:50     openvpn[50251]: verify_x509_type = 0
Sep 11 09:33:50     openvpn[50251]: tls_export_cert = '[UNDEF]'
Sep 11 09:33:50     openvpn[50251]: tls_verify = '[UNDEF]'
Sep 11 09:33:50     openvpn[50251]: cipher_list = '[UNDEF]'
Sep 11 09:33:50     openvpn[50251]: pkcs12_file = '[UNDEF]'
Sep 11 09:33:50     openvpn[50251]: priv_key_file = '/var/etc/openvpn/client6.key'
Sep 11 09:33:50     openvpn[50251]: extra_certs_file = '[UNDEF]'
Sep 11 09:33:50     openvpn[50251]: cert_file = '/var/etc/openvpn/client6.cert'
Sep 11 09:33:50     openvpn[50251]: dh_file = '[UNDEF]'
Sep 11 09:33:50     openvpn[50251]: ca_path = '[UNDEF]'
Sep 11 09:33:50     openvpn[50251]: ca_file = '/var/etc/openvpn/client6.ca'
Sep 11 09:33:50     openvpn[50251]: key_method = 2
Sep 11 09:33:50     openvpn[50251]: tls_client = ENABLED
Sep 11 09:33:50     openvpn[50251]: tls_server = DISABLED
Sep 11 09:33:50     openvpn[50251]: test_crypto = DISABLED
Sep 11 09:33:50     openvpn[50251]: use_iv = ENABLED
Sep 11 09:33:50     openvpn[50251]: packet_id_file = '[UNDEF]'
Sep 11 09:33:50     openvpn[50251]: replay_time = 15
Sep 11 09:33:50     openvpn[50251]: replay_window = 64
Sep 11 09:33:50     openvpn[50251]: mute_replay_warnings = DISABLED
Sep 11 09:33:50     openvpn[50251]: replay = ENABLED
Sep 11 09:33:50     openvpn[50251]: engine = ENABLED
Sep 11 09:33:50     openvpn[50251]: keysize = 0
Sep 11 09:33:50     openvpn[50251]: prng_nonce_secret_len = 16
Sep 11 09:33:50     openvpn[50251]: prng_hash = 'SHA1'
Sep 11 09:33:50     openvpn[50251]: authname = 'SHA512'
Sep 11 09:33:50     openvpn[50251]: ncp_ciphers = 'AES-256-GCM:AES-256-CBC'
Sep 11 09:33:50     openvpn[50251]: ncp_enabled = ENABLED
Sep 11 09:33:50     openvpn[50251]: ciphername = 'AES-256-CBC'
Sep 11 09:33:50     openvpn[50251]: key_direction = 2
Sep 11 09:33:50     openvpn[50251]: shared_secret_file = '[UNDEF]'
Sep 11 09:33:50     openvpn[50251]: management_flags = 256
Sep 11 09:33:50     openvpn[50251]: management_client_group = '[UNDEF]'
Sep 11 09:33:50     openvpn[50251]: management_client_user = '[UNDEF]'
Sep 11 09:33:50     openvpn[50251]: management_write_peer_info_file = '[UNDEF]'
Sep 11 09:33:50     openvpn[50251]: management_echo_buffer_size = 100
Sep 11 09:33:50     openvpn[50251]: management_log_history_cache = 250
Sep 11 09:33:50     openvpn[50251]: management_user_pass = '[UNDEF]'
Sep 11 09:33:50     openvpn[50251]: management_port = 'unix'
Sep 11 09:33:50     openvpn[50251]: management_addr = '/var/etc/openvpn/client6.sock'
Sep 11 09:33:50     openvpn[50251]: allow_pull_fqdn = DISABLED
Sep 11 09:33:50     openvpn[50251]: route_gateway_via_dhcp = DISABLED
Sep 11 09:33:50     openvpn[50251]: route_nopull = ENABLED
Sep 11 09:33:50     openvpn[50251]: route_delay_defined = ENABLED
Sep 11 09:33:50     openvpn[50251]: route_delay_window = 30
Sep 11 09:33:50     openvpn[50251]: route_delay = 5
Sep 11 09:33:50     openvpn[50251]: route_noexec = ENABLED
Sep 11 09:33:50     openvpn[50251]: route_default_metric = 0
Sep 11 09:33:50     openvpn[50251]: route_default_gateway = '[UNDEF]'
Sep 11 09:33:50     openvpn[50251]: route_script = '[UNDEF]'
Sep 11 09:33:50     openvpn[50251]: comp.flags = 0
Sep 11 09:33:50     openvpn[50251]: comp.alg = 1
Sep 11 09:33:50     openvpn[50251]: fast_io = ENABLED
Sep 11 09:33:50     openvpn[50251]: sockflags = 0
Sep 11 09:33:50     openvpn[50251]: sndbuf = 524288
Sep 11 09:33:50     openvpn[50251]: rcvbuf = 524288
Sep 11 09:33:50     openvpn[50251]: occ = ENABLED
Sep 11 09:33:50     openvpn[50251]: status_file_update_freq = 60
Sep 11 09:33:50     openvpn[50251]: status_file_version = 1
Sep 11 09:33:50     openvpn[50251]: status_file = '[UNDEF]'
Sep 11 09:33:50     openvpn[50251]: gremlin = 0
Sep 11 09:33:50     openvpn[50251]: mute = 0
Sep 11 09:33:50     openvpn[50251]: verbosity = 7
Sep 11 09:33:50     openvpn[50251]: nice = 0
Sep 11 09:33:50     openvpn[50251]: machine_readable_output = DISABLED
Sep 11 09:33:50     openvpn[50251]: suppress_timestamps = DISABLED
Sep 11 09:33:50     openvpn[50251]: log = DISABLED
Sep 11 09:33:50     openvpn[50251]: inetd = 0
Sep 11 09:33:50     openvpn[50251]: daemon = ENABLED
Sep 11 09:33:50     openvpn[50251]: up_delay = DISABLED
Sep 11 09:33:50     openvpn[50251]: up_restart = DISABLED
Sep 11 09:33:50     openvpn[50251]: down_pre = DISABLED
Sep 11 09:33:50     openvpn[50251]: down_script = '/usr/local/sbin/ovpn-linkdown'
Sep 11 09:33:50     openvpn[50251]: up_script = '/usr/local/sbin/ovpn-linkup'
Sep 11 09:33:50     openvpn[50251]: writepid = '/var/run/openvpn_client6.pid'
Sep 11 09:33:50     openvpn[50251]: cd_dir = '[UNDEF]'
Sep 11 09:33:50     openvpn[50251]: chroot_dir = '[UNDEF]'
Sep 11 09:33:50     openvpn[50251]: groupname = '[UNDEF]'
Sep 11 09:33:50     openvpn[50251]: username = '[UNDEF]'
Sep 11 09:33:50     openvpn[50251]: resolve_in_advance = DISABLED
Sep 11 09:33:50     openvpn[50251]: resolve_retry_seconds = 1000000000
Sep 11 09:33:50     openvpn[50251]: passtos = DISABLED
Sep 11 09:33:50     openvpn[50251]: persist_key = ENABLED
Sep 11 09:33:50     openvpn[50251]: persist_remote_ip = DISABLED
Sep 11 09:33:50     openvpn[50251]: persist_local_ip = DISABLED
Sep 11 09:33:50     openvpn[50251]: persist_tun = ENABLED
Sep 11 09:33:50     openvpn[50251]: remap_sigusr1 = 0
Sep 11 09:33:50     openvpn[50251]: ping_timer_remote = ENABLED
Sep 11 09:33:50     openvpn[50251]: ping_rec_timeout_action = 2
Sep 11 09:33:50     openvpn[50251]: ping_rec_timeout = 30
Sep 11 09:33:50     openvpn[50251]: ping_send_timeout = 5
Sep 11 09:33:50     openvpn[50251]: inactivity_timeout = 0
Sep 11 09:33:50     openvpn[50251]: keepalive_timeout = 30
Sep 11 09:33:50     openvpn[50251]: keepalive_ping = 5
Sep 11 09:33:50     openvpn[50251]: mlock = ENABLED
Sep 11 09:33:50     openvpn[50251]: mtu_test = 0
Sep 11 09:33:50     openvpn[50251]: shaper = 0
Sep 11 09:33:50     openvpn[50251]: ifconfig_ipv6_remote = '[UNDEF]'
Sep 11 09:33:50     openvpn[50251]: ifconfig_ipv6_netbits = 0
Sep 11 09:33:50     openvpn[50251]: ifconfig_ipv6_local = '[UNDEF]'
Sep 11 09:33:50     openvpn[50251]: ifconfig_nowarn = DISABLED
Sep 11 09:33:50     openvpn[50251]: ifconfig_noexec = DISABLED
Sep 11 09:33:50     openvpn[50251]: ifconfig_remote_netmask = '[UNDEF]'
Sep 11 09:33:50     openvpn[50251]: ifconfig_local = '[UNDEF]'
Sep 11 09:33:50     openvpn[50251]: topology = 1
Sep 11 09:33:50     openvpn[50251]: lladdr = '[UNDEF]'
Sep 11 09:33:50     openvpn[50251]: dev_node = '/dev/tun6'
Sep 11 09:33:50     openvpn[50251]: dev_type = 'tun'
Sep 11 09:33:50     openvpn[50251]: dev = 'ovpnc6'
Sep 11 09:33:50     openvpn[50251]: ipchange = '[UNDEF]'
Sep 11 09:33:50     openvpn[50251]: remote_random = DISABLED
Sep 11 09:33:50     openvpn[50251]: Connection profiles END
Sep 11 09:33:50     openvpn[50251]: explicit_exit_notification = 5
Sep 11 09:33:50     openvpn[50251]: mssfix = 1450
Sep 11 09:33:50     openvpn[50251]: fragment = 0
Sep 11 09:33:50     openvpn[50251]: mtu_discover_type = -1
Sep 11 09:33:50     openvpn[50251]: tun_mtu_extra_defined = DISABLED
Sep 11 09:33:50     openvpn[50251]: tun_mtu_extra = 0
Sep 11 09:33:50     openvpn[50251]: link_mtu_defined = DISABLED
Sep 11 09:33:50     openvpn[50251]: link_mtu = 1500
Sep 11 09:33:50     openvpn[50251]: tun_mtu_defined = ENABLED
Sep 11 09:33:50     openvpn[50251]: tun_mtu = 1500
Sep 11 09:33:50     openvpn[50251]: socks_proxy_port = '[UNDEF]'
Sep 11 09:33:50     openvpn[50251]: socks_proxy_server = '[UNDEF]'
Sep 11 09:33:50     openvpn[50251]: connect_timeout = 120
Sep 11 09:33:50     openvpn[50251]: connect_retry_seconds = 5
Sep 11 09:33:50     openvpn[50251]: bind_ipv6_only = DISABLED
Sep 11 09:33:50     openvpn[50251]: bind_local = ENABLED
Sep 11 09:33:50     openvpn[50251]: bind_defined = DISABLED
Sep 11 09:33:50     openvpn[50251]: remote_float = DISABLED
Sep 11 09:33:50     openvpn[50251]: remote_port = '443'
Sep 11 09:33:50     openvpn[50251]: remote = '100.200.100.100'
Sep 11 09:33:50     openvpn[50251]: local_port = '0'
Sep 11 09:33:50     openvpn[50251]: local = '80.60.1.70'
Sep 11 09:33:50     openvpn[50251]: proto = udp4
Sep 11 09:33:50     openvpn[50251]: Connection profiles [0]:
Sep 11 09:33:50     openvpn[50251]: connect_retry_max = 0
Sep 11 09:33:50     openvpn[50251]: show_tls_ciphers = DISABLED
Sep 11 09:33:50     openvpn[50251]: key_pass_file = '[UNDEF]'
Sep 11 09:33:50     openvpn[50251]: genkey = DISABLED
Sep 11 09:33:50     openvpn[50251]: show_engines = DISABLED
Sep 11 09:33:50     openvpn[50251]: show_digests = DISABLED
Sep 11 09:33:50     openvpn[50251]: show_ciphers = DISABLED
Sep 11 09:33:50     openvpn[50251]: mode = 0
Sep 11 09:33:50     openvpn[50251]: config = '/var/etc/openvpn/client6.conf'
Sep 11 09:33:50     openvpn[50251]: Current Parameter Settings:
Sep 11 09:33:47     openvpn[87430]: MANAGEMENT: Client disconnected
Sep 11 09:33:47     openvpn[87430]: MANAGEMENT: CMD 'status 2'
Sep 11 09:33:47     openvpn[87430]: MANAGEMENT: CMD 'state 1'
Sep 11 09:33:47     openvpn[87430]: MANAGEMENT: Client connected from /var/etc/openvpn/client3.sock
 

Can soneone see what it is I am doing wrong?

Share this post


Link to post

Hello!

 

Sep 11 09:33:50     openvpn[50510]: UDPv4 link remote: [AF_INET]100.200.100.100:443  

 

100.200.100.100 is not an IP address of our servers.

 

Kind regards

Share this post


Link to post

Hello!

 

Sep 11 09:33:50     openvpn[50510]: UDPv4 link remote: [AF_INET]100.200.100.100:443  

 

100.200.100.100 is not an IP address of our servers.

 

Kind regards

 

As I mentioned in my Original post, I'd changed the IPs thinking AirVPN might prefer the IPs to remain visible only to members, my bad. The actual IP was for Alphirk (109.202.107.149). I also changed my WAN as you might imagine.

 

So apart from a ridiculous IP, is there anything that you can think of that could cause the issue?

 

Thanks.

Share this post


Link to post

OK, that's the entry IP 3, tls-crypt, so you need to change tls key usage mode to authentication and encryption.

 

Also, I assume you put the tls key from this new config in the proper field, not the other key from a tls-auth config?

Share this post


Link to post

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
  • Security Check
    Play CAPTCHA Audio
    Refresh Image

×
×
  • Create New...