Jump to content
Not connected, Your IP: 3.90.255.22
Flx

Speedtest.net disrupting OpenVPN connectivity?

Recommended Posts

11 minutes ago, giganerd said:

Elaborate. What do you mean by "disrupting"?

After the "go" on speedtest.net all sessions "drop"....Reconnecting process starts up once more for each tunnel and get reconnected. On some magic socket error I did not see until today.  Browsers: Chrome and Firefox.
Here:

2020-08-09 05:50:32 SIGHUP[hard,init_instance] received, process restarting
2020-08-09 05:50:32 MANAGEMENT: >STATE:1596966632,RECONNECTING,init_instance,,,,,
2020-08-09 05:50:32 OpenVPN 2.5_git x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [AEAD] built on Jul 15 2020
2020-08-09 05:50:32 Windows version 6.2 (Windows 8 or greater) 64bit
2020-08-09 05:50:32 library versions: OpenSSL 1.1.0l  10 Sep 2019, LZO 2.10
2020-08-09 05:50:32 Restart pause, 2 second(s)
2020-08-09 05:50:34 Outgoing Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
2020-08-09 05:50:34 Outgoing Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
2020-08-09 05:50:34 Incoming Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
2020-08-09 05:50:34 Incoming Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
2020-08-09 05:50:34 TCP/UDP: Preserving recently used remote address: [AF_INET]184.75.223.221:2018
2020-08-09 05:50:34 Socket Buffers: R=[65536->562144] S=[65536->562144]
2020-08-09 05:50:34 Attempting to establish TCP connection with [AF_INET]184.75.223.221:2018 [nonblock]
2020-08-09 05:50:34 MANAGEMENT: >STATE:1596966634,TCP_CONNECT,,,,,,
2020-08-09 05:50:35 TCP connection established with [AF_INET]184.75.223.221:2018
2020-08-09 05:50:35 TCP_CLIENT link local: (not bound)
2020-08-09 05:50:35 TCP_CLIENT link remote: [AF_INET]184.75.223.221:2018
2020-08-09 05:50:35 MANAGEMENT: >STATE:1596966635,WAIT,,,,,,
2020-08-09 05:50:35 MANAGEMENT: >STATE:1596966635,AUTH,,,,,,
2020-08-09 05:50:35 TLS: Initial packet from [AF_INET]184.75.223.221:2018, sid=f2deae18 cb9cdef4
2020-08-09 05:50:35 VERIFY OK: depth=1, C=IT, ST=IT, L=Perugia, O=airvpn.org, CN=airvpn.org CA, emailAddress=info@airvpn.org
2020-08-09 05:50:35 VERIFY KU OK
2020-08-09 05:50:35 Validating certificate extended key usage
2020-08-09 05:50:35 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
2020-08-09 05:50:35 VERIFY EKU OK
2020-08-09 05:50:35 VERIFY OK: depth=0, C=IT, ST=IT, L=Perugia, O=airvpn.org, CN=Mintaka, emailAddress=info@airvpn.org
2020-08-09 05:50:35 Control Channel: TLSv1.2, cipher TLSv1.2 DHE-RSA-AES256-GCM-SHA384, 4096 bit RSA
2020-08-09 05:50:35 [Mintaka] Peer Connection Initiated with [AF_INET]184.75.223.221:2018
2020-08-09 05:50:36 MANAGEMENT: >STATE:1596966636,GET_CONFIG,,,,,,
2020-08-09 05:50:36 SENT CONTROL [Mintaka]: 'PUSH_REQUEST' (status=1)
2020-08-09 05:50:36 PUSH: Received control message: 'PUSH_REPLY,comp-lzo no,redirect-gateway ipv6 def1 bypass-dhcp,dhcp-option DNS 10.24.7.1,tun-ipv6,route-gateway 10.24.7.1,topology subnet,ping 10,ping-restart 60,ifconfig-ipv6 fde6:7a:7d20:1407::1031/64 fde6:7a:7d20:1407::1,ifconfig 10.24.7.51 255.255.255.0,peer-id 0,cipher AES-256-GCM'
2020-08-09 05:50:36 OPTIONS IMPORT: timers and/or timeouts modified
2020-08-09 05:50:36 OPTIONS IMPORT: compression parms modified
2020-08-09 05:50:36 OPTIONS IMPORT: --ifconfig/up options modified
2020-08-09 05:50:36 OPTIONS IMPORT: route options modified
2020-08-09 05:50:36 OPTIONS IMPORT: route-related options modified
2020-08-09 05:50:36 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
2020-08-09 05:50:36 OPTIONS IMPORT: peer-id set
2020-08-09 05:50:36 OPTIONS IMPORT: adjusting link_mtu to 1627
2020-08-09 05:50:36 OPTIONS IMPORT: data channel crypto options modified
2020-08-09 05:50:36 Data Channel: using negotiated cipher 'AES-256-GCM'
2020-08-09 05:50:36 Outgoing Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
2020-08-09 05:50:36 Incoming Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
2020-08-09 05:50:36 interactive service msg_channel=0
2020-08-09 05:50:36 ROUTE_GATEWAY 192.168.2.1/255.255.255.0 I=19 HWADDR=18:66:da:2e:b2:08
2020-08-09 05:50:36 GDG6: remote_host_ipv6=n/a
2020-08-09 05:50:36 NOTE: GetBestInterfaceEx returned error: Element not found.   (code=1168)
2020-08-09 05:50:36 ROUTE6: default_gateway=UNDEF
2020-08-09 05:50:36 open_tun
2020-08-09 05:50:36 CreateFile failed on wintun device: 
2020-08-09 05:50:36 CreateFile failed on wintun device: 
2020-08-09 05:50:36 Adapter {5130DFE7-38B7-4082-AF90-A4C36713DDE0} is already in use
2020-08-09 05:50:36 Failed to register {5130DFE7-38B7-4082-AF90-A4C36713DDE0} adapter ring buffers
2020-08-09 05:50:36 wintun device [Local Area Connection 6] opened
2020-08-09 05:50:36 MANAGEMENT: >STATE:1596966636,ASSIGN_IP,,10.24.7.51,,,,,fde6:7a:7d20:1407::1031
2020-08-09 05:50:37 NETSH: C:\WINDOWS\system32\netsh.exe interface ip set address Local Area Connection 6 static 10.24.7.51 255.255.255.0
2020-08-09 05:50:38 NETSH: C:\WINDOWS\system32\netsh.exe interface ip delete dns Local Area Connection 6 all
2020-08-09 05:50:39 NETSH: C:\WINDOWS\system32\netsh.exe interface ip set dns Local Area Connection 6 static 10.24.7.1 validate=no
2020-08-09 05:50:41 NETSH: C:\WINDOWS\system32\netsh.exe interface ip delete wins Local Area Connection 6 all
2020-08-09 05:50:42 IPv4 MTU set to 1500 on interface 25 using SetIpInterfaceEntry()
2020-08-09 05:50:43 NETSH: C:\WINDOWS\system32\netsh.exe interface ipv6 set address interface=25 fde6:7a:7d20:1407::1031 store=active
2020-08-09 05:50:43 add_route_ipv6(fde6:7a:7d20:1407::/64 -> fde6:7a:7d20:1407::1031 metric 0) dev Local Area Connection 6
2020-08-09 05:50:43 C:\WINDOWS\system32\netsh.exe interface ipv6 add route fde6:7a:7d20:1407::/64 interface=25 fe80::8 store=active
2020-08-09 05:50:43 env_block: add PATH=C:\WINDOWS\System32;C:\WINDOWS;C:\WINDOWS\System32\Wbem
2020-08-09 05:50:43 IPv6 MTU set to 1500 on interface 25 using SetIpInterfaceEntry()
2020-08-09 05:50:43 C:\WINDOWS\system32\route.exe ADD 184.75.223.221 MASK 255.255.255.255 192.168.2.1
2020-08-09 05:50:43 ROUTE: CreateIpForwardEntry succeeded with dwForwardMetric1=25 and dwForwardType=4
2020-08-09 05:50:43 Route addition via IPAPI succeeded [adaptive]
2020-08-09 05:50:43 C:\WINDOWS\system32\route.exe ADD 0.0.0.0 MASK 128.0.0.0 10.24.7.1
2020-08-09 05:50:43 ROUTE: CreateIpForwardEntry succeeded with dwForwardMetric1=5 and dwForwardType=4
2020-08-09 05:50:43 Route addition via IPAPI succeeded [adaptive]
2020-08-09 05:50:43 C:\WINDOWS\system32\route.exe ADD 128.0.0.0 MASK 128.0.0.0 10.24.7.1
2020-08-09 05:50:43 ROUTE: CreateIpForwardEntry succeeded with dwForwardMetric1=5 and dwForwardType=4
2020-08-09 05:50:43 Route addition via IPAPI succeeded [adaptive]
2020-08-09 05:50:43 add_route_ipv6(::/3 -> fde6:7a:7d20:1407::1 metric -1) dev Local Area Connection 6
2020-08-09 05:50:43 C:\WINDOWS\system32\netsh.exe interface ipv6 add route ::/3 interface=25 fe80::8 store=active
2020-08-09 05:50:43 env_block: add PATH=C:\WINDOWS\System32;C:\WINDOWS;C:\WINDOWS\System32\Wbem
2020-08-09 05:50:43 add_route_ipv6(2000::/4 -> fde6:7a:7d20:1407::1 metric -1) dev Local Area Connection 6
2020-08-09 05:50:43 C:\WINDOWS\system32\netsh.exe interface ipv6 add route 2000::/4 interface=25 fe80::8 store=active
2020-08-09 05:50:43 env_block: add PATH=C:\WINDOWS\System32;C:\WINDOWS;C:\WINDOWS\System32\Wbem
2020-08-09 05:50:43 add_route_ipv6(3000::/4 -> fde6:7a:7d20:1407::1 metric -1) dev Local Area Connection 6
2020-08-09 05:50:43 C:\WINDOWS\system32\netsh.exe interface ipv6 add route 3000::/4 interface=25 fe80::8 store=active
2020-08-09 05:50:43 env_block: add PATH=C:\WINDOWS\System32;C:\WINDOWS;C:\WINDOWS\System32\Wbem
2020-08-09 05:50:44 add_route_ipv6(fc00::/7 -> fde6:7a:7d20:1407::1 metric -1) dev Local Area Connection 6
2020-08-09 05:50:44 C:\WINDOWS\system32\netsh.exe interface ipv6 add route fc00::/7 interface=25 fe80::8 store=active
2020-08-09 05:50:44 env_block: add PATH=C:\WINDOWS\System32;C:\WINDOWS;C:\WINDOWS\System32\Wbem
2020-08-09 05:50:44 Initialization Sequence Completed

Share this post


Link to post

Already switched to OpenVPN over stunnel. Got to see if it happens in stunnel. The above "connection drop/connection restart" occurs in TCP/UDP ports 443/80/2018/41185.
If you want the full logs I'll PM them to you or ticket this to Staff.

Share this post


Link to post

I tried a test with whatever settings I could synchronize with yours, like buffer sizes, remote and port, but couldn't reproduce it. Works as intended on Linux, OpenVPN v2.4.9.


NOT AN AIRVPN TEAM MEMBER. USE TICKETS FOR PROFESSIONAL SUPPORT.

LZ1's New User Guide to AirVPN « Plenty of stuff for advanced users, too!

Want to contact me directly? All relevant methods are on my About me page.

Share this post


Link to post
8 minutes ago, giganerd said:

I tried a test with whatever settings I could synchronize with yours, like buffer sizes, remote and port, but couldn't reproduce it. Works as intended on Linux, OpenVPN v2.4.9.

This is in Windows 10 [Version 10.0.19041.329]

Share this post


Link to post

I know, but since it works for me, your claim about Ookla disrupting OpenVPN is less probable. :) Let's see what others write.


NOT AN AIRVPN TEAM MEMBER. USE TICKETS FOR PROFESSIONAL SUPPORT.

LZ1's New User Guide to AirVPN « Plenty of stuff for advanced users, too!

Want to contact me directly? All relevant methods are on my About me page.

Share this post


Link to post
13 hours ago, giganerd said:

I know, but since it works for me, your claim about Ookla disrupting OpenVPN is less probable. :) Let's see what others write.

Alright Lets see what other members have to say!
Thus far scenarios tried and speed factor:
one session --- ~300-450 mbps
double session --- ~500-600 mbps
triple session --- ~700-750 mbps
quad session --- ~800-850 mbps
I remember when you said that "You are just happy with 1 session".
Guess there is no harm done if more can be achieved.

Share this post


Link to post

Bit off-topic, but still: What do you mean? Are you combining connections to reach more throughput? Is that even possible with OpenVPN?


NOT AN AIRVPN TEAM MEMBER. USE TICKETS FOR PROFESSIONAL SUPPORT.

LZ1's New User Guide to AirVPN « Plenty of stuff for advanced users, too!

Want to contact me directly? All relevant methods are on my About me page.

Share this post


Link to post
1 hour ago, giganerd said:

Bit off-topic, but still: What do you mean? Are you combining connections to reach more throughput? Is that even possible with OpenVPN?


Hello!

It is possible. About two or three years ago, as a consequence of two requests by very advanced customers, we changed completely OpenVPN daemons subnets to make them unique across the whole infrastructure. That deep change main purpose was making multiple connections from the same system easier by preventing any chance of address conflicts. Connecting the same machine to multiple VPN servers is very beneficial for load balancing, failover and bandwidth aggregation.

Please check for example the following, excellent guide:
https://nguvu.org/pfsense/pfsense-multi-vpn-wan/

Kind regards
 

Share this post


Link to post
12 hours ago, Staff said:

It is possible. About two or three years ago, as a consequence of two requests by very advanced customers, we changed completely OpenVPN daemons subnets to make them unique across the whole infrastructure. That deep change main purpose was making multiple connections from the same system easier by preventing any chance of address conflicts. Connecting the same machine to multiple VPN servers is very beneficial for load balancing, failover and bandwidth aggregation.

Exactly :)

Share this post


Link to post
6 hours ago, Flx said:

purpose was making multiple connections from the same system

@StaffOne question in a triple session scenario:
When connected to https://airvpn.org/ (server1:port 443)
New tab Connected to https://ipx.ac/run or https://ipleak.net/  (server2:port 80)
New tab Connected to http://www.utrace.de/  (server3:port 2018)
Is this correct?
 

Share this post


Link to post
Posted ... (edited)
Session/Daemon Restart....One of the reasons Why it happens!!!(link below).
https://www.speedguide.net/port.php?port=5050
EDIT: Server-side(connected server(s)) all the above ports in the above link are "filtered" correctly.
Client-Side Comodo rule for openvpn.exe and openvpn-gui.exe to fix this:
https://airvpn.org/uploads/monthly_2020_08/openvpn_rule.multi.session_rule.jpg.3ef6dd9a1b13e27a11e64cf908c40b4a.jpg
  Edited ... by Flx
DDoS only affects the openvpn process/session(s). Client-side Comodo rule should be sufficient enough.

Share this post


Link to post

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
  • Security Check
    Play CAPTCHA Audio
    Refresh Image

×
×
  • Create New...