AirVPN reconnects every unpredictable hours in pfsense

lumsinkh

Hello, I am using AirVPN in pfsense 2.6.0 and having some disconnect - reconnect issues with the AirVPN. Pfsense connects to AirVPN, works perfectly, but after sometime,randomly, example 1 hour, 30 minutes, or 18 hours, reconnects. Any existing open connections behind AirVPN must be reestablished after random VPN connection lost, which is not ideal in my case.

Below are my settings in pfsense and openvpn logs. What should I recheck? Thank you for your assistence.

openvpn config:

client
dev tun
remote ch3.vpn.airdns.org 2018
resolv-retry infinite
nobind
persist-key
persist-tun
auth-nocache
route-delay 5
verb 3
remote-cert-tls server
comp-lzo no
data-ciphers CHACHA20-POLY1305:AES-256-GCM:AES-256-CBC:AES-192-GCM:AES-192-CBC:AES-128-GCM:AES-128-CBC
data-ciphers-fallback AES-256-CBC
proto tcp
auth SHA512

openvpn log:

Mar 22 11:13:39    openvpn    47101    Initialization Sequence Completed
Mar 22 11:13:39    openvpn    47101    Preserving previous TUN/TAP instance: ovpnc1
Mar 22 11:13:39    openvpn    47101    Incoming Data Channel: Cipher 'CHACHA20-POLY1305' initialized with 256 bit key
Mar 22 11:13:39    openvpn    47101    Outgoing Data Channel: Cipher 'CHACHA20-POLY1305' initialized with 256 bit key
Mar 22 11:13:39    openvpn    47101    Data Channel: using negotiated cipher 'CHACHA20-POLY1305'
Mar 22 11:13:39    openvpn    47101    OPTIONS IMPORT: data channel crypto options modified
Mar 22 11:13:39    openvpn    47101    OPTIONS IMPORT: adjusting link_mtu to 1627
Mar 22 11:13:39    openvpn    47101    OPTIONS IMPORT: peer-id set
Mar 22 11:13:39    openvpn    47101    OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Mar 22 11:13:39    openvpn    47101    OPTIONS IMPORT: route-related options modified
Mar 22 11:13:39    openvpn    47101    OPTIONS IMPORT: route options modified
Mar 22 11:13:39    openvpn    47101    OPTIONS IMPORT: --ifconfig/up options modified
Mar 22 11:13:39    openvpn    47101    OPTIONS IMPORT: compression parms modified
Mar 22 11:13:39    openvpn    47101    OPTIONS IMPORT: timers and/or timeouts modified
Mar 22 11:13:39    openvpn    47101    PUSH: Received control message: 'PUSH_REPLY,comp-lzo no,redirect-gateway def1 bypass-dhcp,dhcp-option DNS 10.9.219.1,route-gateway 10.9.219.1,topology subnet,ping 10,ping-restart 60,ifconfig 10.9.219.29 255.255.255.0,peer-id 0,cipher CHACHA20-POLY1305'
Mar 22 11:13:39    openvpn    47101    [Xuange] Peer Connection Initiated with [AF_INET]79.142.69.162:2018
Mar 22 11:13:39    openvpn    47101    Control Channel: TLSv1.3, cipher TLSv1.3 TLS_CHACHA20_POLY1305_SHA256, peer certificate: 4096 bit RSA, signature: RSA-SHA512
Mar 22 11:13:39    openvpn    47101    VERIFY OK: depth=0, C=IT, ST=IT, L=Perugia, O=airvpn.org, CN=Xuange, emailAddress=info@airvpn.org
Mar 22 11:13:39    openvpn    47101    VERIFY EKU OK
Mar 22 11:13:39    openvpn    47101    ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
Mar 22 11:13:39    openvpn    47101    Validating certificate extended key usage
Mar 22 11:13:39    openvpn    47101    VERIFY KU OK
Mar 22 11:13:39    openvpn    47101    VERIFY OK: depth=1, C=IT, ST=IT, L=Perugia, O=airvpn.org, CN=airvpn.org CA, emailAddress=info@airvpn.org
Mar 22 11:13:39    openvpn    47101    VERIFY WARNING: depth=1, unable to get certificate CRL: C=IT, ST=IT, L=Perugia, O=airvpn.org, CN=airvpn.org CA, emailAddress=info@airvpn.org
Mar 22 11:13:39    openvpn    47101    VERIFY WARNING: depth=0, unable to get certificate CRL: C=IT, ST=IT, L=Perugia, O=airvpn.org, CN=Xuange, emailAddress=info@airvpn.org
Mar 22 11:13:39    openvpn    47101    TLS: Initial packet from [AF_INET]79.142.69.162:2018, sid=b649eac2 922b12d0
Mar 22 11:13:39    openvpn    47101    TCPv4_CLIENT link remote: [AF_INET]79.142.69.162:2018
Mar 22 11:13:39    openvpn    47101    TCPv4_CLIENT link local (bound): [AF_INET]10.0.2.15:0
Mar 22 11:13:39    openvpn    47101    TCP connection established with [AF_INET]79.142.69.162:2018
Mar 22 11:13:39    openvpn    47101    Attempting to establish TCP connection with [AF_INET]79.142.69.162:2018 [nonblock]
Mar 22 11:13:39    openvpn    47101    Socket Buffers: R=[65228->2097152] S=[65228->2097152]
Mar 22 11:13:39    openvpn    47101    TCP/UDP: Preserving recently used remote address: [AF_INET]79.142.69.162:2018
Mar 22 11:13:39    openvpn    47101    Incoming Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 11:13:39    openvpn    47101    Incoming Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 11:13:39    openvpn    47101    Outgoing Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 11:13:39    openvpn    47101    Outgoing Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 11:13:39    openvpn    47101    NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Mar 22 11:13:34    openvpn    47101    Restart pause, 5 second(s)
Mar 22 11:13:34    openvpn    47101    SIGUSR1[soft,ping-restart] received, process restarting
Mar 22 11:13:34    openvpn    47101    [Xuange] Inactivity timeout (--ping-restart), restarting
Mar 22 11:12:39    openvpn    47101    MANAGEMENT: Client disconnected
Mar 22 11:12:39    openvpn    47101    MANAGEMENT: CMD 'status 2'
Mar 22 11:12:39    openvpn    47101    MANAGEMENT: CMD 'state 1'
Mar 22 11:12:39    openvpn    47101    MANAGEMENT: Client connected from /var/etc/openvpn/client1/sock
Mar 22 11:12:28    openvpn    47101    MANAGEMENT: Client disconnected
Mar 22 11:12:28    openvpn    47101    MANAGEMENT: CMD 'status 2'
Mar 22 11:12:28    openvpn    47101    MANAGEMENT: CMD 'state 1'
Mar 22 11:12:28    openvpn    47101    MANAGEMENT: Client connected from /var/etc/openvpn/client1/sock
Mar 22 11:12:23    openvpn    47101    MANAGEMENT: Client disconnected
Mar 22 11:12:23    openvpn    47101    MANAGEMENT: CMD 'status 2'
Mar 22 11:12:23    openvpn    47101    MANAGEMENT: CMD 'state 1'
Mar 22 11:12:23    openvpn    47101    MANAGEMENT: Client connected from /var/etc/openvpn/client1/sock
Mar 22 11:12:23    openvpn    47101    MANAGEMENT: Client disconnected
Mar 22 11:12:23    openvpn    47101    MANAGEMENT: CMD 'status 2'
Mar 22 11:12:23    openvpn    47101    MANAGEMENT: CMD 'state 1'
Mar 22 11:12:23    openvpn    47101    MANAGEMENT: Client connected from /var/etc/openvpn/client1/sock
Mar 22 11:12:14    openvpn    47101    MANAGEMENT: Client disconnected
Mar 22 11:12:14    openvpn    47101    MANAGEMENT: CMD 'status 2'
Mar 22 11:12:14    openvpn    47101    MANAGEMENT: CMD 'state 1'
Mar 22 11:12:14    openvpn    47101    MANAGEMENT: Client connected from /var/etc/openvpn/client1/sock
Mar 22 10:56:24    openvpn    47101    MANAGEMENT: Client disconnected
Mar 22 10:56:24    openvpn    47101    MANAGEMENT: CMD 'status 2'
Mar 22 10:56:24    openvpn    47101    MANAGEMENT: CMD 'state 1'
Mar 22 10:56:24    openvpn    47101    MANAGEMENT: Client connected from /var/etc/openvpn/client1/sock
Mar 22 10:56:22    openvpn    47101    MANAGEMENT: Client disconnected
Mar 22 10:56:22    openvpn    47101    MANAGEMENT: CMD 'status 2'
Mar 22 10:56:22    openvpn    47101    MANAGEMENT: CMD 'state 1'
Mar 22 10:56:22    openvpn    47101    MANAGEMENT: Client connected from /var/etc/openvpn/client1/sock
Mar 22 10:52:20    openvpn    47101    Initialization Sequence Completed
Mar 22 10:52:20    openvpn    47101    Preserving previous TUN/TAP instance: ovpnc1
Mar 22 10:52:20    openvpn    47101    Incoming Data Channel: Cipher 'CHACHA20-POLY1305' initialized with 256 bit key
Mar 22 10:52:20    openvpn    47101    Outgoing Data Channel: Cipher 'CHACHA20-POLY1305' initialized with 256 bit key
Mar 22 10:52:20    openvpn    47101    Data Channel: using negotiated cipher 'CHACHA20-POLY1305'
Mar 22 10:52:20    openvpn    47101    OPTIONS IMPORT: data channel crypto options modified
Mar 22 10:52:20    openvpn    47101    OPTIONS IMPORT: adjusting link_mtu to 1627
Mar 22 10:52:20    openvpn    47101    OPTIONS IMPORT: peer-id set
Mar 22 10:52:20    openvpn    47101    OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Mar 22 10:52:20    openvpn    47101    OPTIONS IMPORT: route-related options modified
Mar 22 10:52:20    openvpn    47101    OPTIONS IMPORT: route options modified
Mar 22 10:52:20    openvpn    47101    OPTIONS IMPORT: --ifconfig/up options modified
Mar 22 10:52:20    openvpn    47101    OPTIONS IMPORT: compression parms modified
Mar 22 10:52:20    openvpn    47101    OPTIONS IMPORT: timers and/or timeouts modified
Mar 22 10:52:20    openvpn    47101    PUSH: Received control message: 'PUSH_REPLY,comp-lzo no,redirect-gateway def1 bypass-dhcp,dhcp-option DNS 10.9.219.1,route-gateway 10.9.219.1,topology subnet,ping 10,ping-restart 60,ifconfig 10.9.219.29 255.255.255.0,peer-id 0,cipher CHACHA20-POLY1305'
Mar 22 10:52:20    openvpn    47101    [Xuange] Peer Connection Initiated with [AF_INET]79.142.69.162:2018
Mar 22 10:52:20    openvpn    47101    Control Channel: TLSv1.3, cipher TLSv1.3 TLS_CHACHA20_POLY1305_SHA256, peer certificate: 4096 bit RSA, signature: RSA-SHA512
Mar 22 10:52:19    openvpn    47101    VERIFY OK: depth=0, C=IT, ST=IT, L=Perugia, O=airvpn.org, CN=Xuange, emailAddress=info@airvpn.org
Mar 22 10:52:19    openvpn    47101    VERIFY EKU OK
Mar 22 10:52:19    openvpn    47101    ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
Mar 22 10:52:19    openvpn    47101    Validating certificate extended key usage
Mar 22 10:52:19    openvpn    47101    VERIFY KU OK
Mar 22 10:52:19    openvpn    47101    VERIFY OK: depth=1, C=IT, ST=IT, L=Perugia, O=airvpn.org, CN=airvpn.org CA, emailAddress=info@airvpn.org
Mar 22 10:52:19    openvpn    47101    VERIFY WARNING: depth=1, unable to get certificate CRL: C=IT, ST=IT, L=Perugia, O=airvpn.org, CN=airvpn.org CA, emailAddress=info@airvpn.org
Mar 22 10:52:19    openvpn    47101    VERIFY WARNING: depth=0, unable to get certificate CRL: C=IT, ST=IT, L=Perugia, O=airvpn.org, CN=Xuange, emailAddress=info@airvpn.org
Mar 22 10:52:19    openvpn    47101    TLS: Initial packet from [AF_INET]79.142.69.162:2018, sid=42fdca14 993cf5eb
Mar 22 10:52:19    openvpn    47101    TCPv4_CLIENT link remote: [AF_INET]79.142.69.162:2018
Mar 22 10:52:19    openvpn    47101    TCPv4_CLIENT link local (bound): [AF_INET]10.0.2.15:0
Mar 22 10:52:19    openvpn    47101    TCP connection established with [AF_INET]79.142.69.162:2018
Mar 22 10:52:19    openvpn    47101    Attempting to establish TCP connection with [AF_INET]79.142.69.162:2018 [nonblock]
Mar 22 10:52:19    openvpn    47101    Socket Buffers: R=[65228->2097152] S=[65228->2097152]
Mar 22 10:52:19    openvpn    47101    TCP/UDP: Preserving recently used remote address: [AF_INET]79.142.69.162:2018
Mar 22 10:52:19    openvpn    47101    Incoming Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 10:52:19    openvpn    47101    Incoming Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 10:52:19    openvpn    47101    Outgoing Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 10:52:19    openvpn    47101    Outgoing Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 10:52:19    openvpn    47101    NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Mar 22 10:52:14    openvpn    47101    Restart pause, 5 second(s)
Mar 22 10:52:14    openvpn    47101    SIGUSR1[soft,ping-restart] received, process restarting
Mar 22 10:52:14    openvpn    47101    [Xuange] Inactivity timeout (--ping-restart), restarting
Mar 22 10:06:30    openvpn    47101    MANAGEMENT: Client disconnected
Mar 22 10:06:30    openvpn    47101    MANAGEMENT: CMD 'status 2'
Mar 22 10:06:30    openvpn    47101    MANAGEMENT: CMD 'state 1'
Mar 22 10:06:30    openvpn    47101    MANAGEMENT: Client connected from /var/etc/openvpn/client1/sock
Mar 22 10:06:10    openvpn    47101    MANAGEMENT: Client disconnected
Mar 22 10:06:10    openvpn    47101    MANAGEMENT: CMD 'status 2'
Mar 22 10:06:10    openvpn    47101    MANAGEMENT: CMD 'state 1'
Mar 22 10:06:10    openvpn    47101    MANAGEMENT: Client connected from /var/etc/openvpn/client1/sock
Mar 22 10:06:05    openvpn    47101    MANAGEMENT: Client disconnected
Mar 22 10:06:05    openvpn    47101    MANAGEMENT: CMD 'status 2'
Mar 22 10:06:05    openvpn    47101    MANAGEMENT: CMD 'state 1'
Mar 22 10:06:05    openvpn    47101    MANAGEMENT: Client connected from /var/etc/openvpn/client1/sock
Mar 22 10:06:05    openvpn    47101    MANAGEMENT: Client disconnected
Mar 22 10:06:05    openvpn    47101    MANAGEMENT: CMD 'status 2'
Mar 22 10:06:05    openvpn    47101    MANAGEMENT: CMD 'state 1'
Mar 22 10:06:05    openvpn    47101    MANAGEMENT: Client connected from /var/etc/openvpn/client1/sock
Mar 22 10:04:32    openvpn    47101    MANAGEMENT: Client disconnected
Mar 22 10:04:32    openvpn    47101    MANAGEMENT: CMD 'status 2'
Mar 22 10:04:32    openvpn    47101    MANAGEMENT: CMD 'state 1'
Mar 22 10:04:32    openvpn    47101    MANAGEMENT: Client connected from /var/etc/openvpn/client1/sock
Mar 22 10:04:32    openvpn    47101    MANAGEMENT: Client disconnected
Mar 22 10:04:32    openvpn    47101    MANAGEMENT: CMD 'status 2'
Mar 22 10:04:32    openvpn    47101    MANAGEMENT: CMD 'state 1'
Mar 22 10:04:32    openvpn    47101    MANAGEMENT: Client connected from /var/etc/openvpn/client1/sock
Mar 22 10:04:29    openvpn    47101    Initialization Sequence Completed
Mar 22 10:04:29    openvpn    47101    /sbin/route add -net 128.0.0.0 10.9.219.1 128.0.0.0
Mar 22 10:04:29    openvpn    47101    /sbin/route add -net 0.0.0.0 10.9.219.1 128.0.0.0
Mar 22 10:04:29    openvpn    47101    /sbin/route add -net 79.142.69.162 10.0.2.2 255.255.255.255
Mar 22 10:04:24    openvpn    47101    /usr/local/sbin/ovpn-linkup ovpnc1 1500 1540 10.9.219.29 255.255.255.0 init
Mar 22 10:04:24    openvpn    47101    /sbin/route add -net 10.9.219.0 10.9.219.1 255.255.255.0
Mar 22 10:04:24    openvpn    47101    /sbin/ifconfig ovpnc1 10.9.219.29 10.9.219.1 mtu 1500 netmask 255.255.255.0 up
Mar 22 10:04:24    openvpn    47101    ioctl(TUNSIFMODE): Device busy (errno=16)
Mar 22 10:04:24    openvpn    47101    TUN/TAP device /dev/tun1 opened
Mar 22 10:04:24    openvpn    47101    TUN/TAP device ovpnc1 exists previously, keep at program end
Mar 22 10:04:24    openvpn    47101    ROUTE_GATEWAY 10.0.2.2/255.255.255.0 IFACE=em0 HWADDR=08:00:27:07:75:d9
Mar 22 10:04:24    openvpn    47101    Incoming Data Channel: Cipher 'CHACHA20-POLY1305' initialized with 256 bit key
Mar 22 10:04:24    openvpn    47101    Outgoing Data Channel: Cipher 'CHACHA20-POLY1305' initialized with 256 bit key
Mar 22 10:04:24    openvpn    47101    Data Channel: using negotiated cipher 'CHACHA20-POLY1305'
Mar 22 10:04:24    openvpn    47101    OPTIONS IMPORT: data channel crypto options modified
Mar 22 10:04:24    openvpn    47101    OPTIONS IMPORT: adjusting link_mtu to 1627
Mar 22 10:04:24    openvpn    47101    OPTIONS IMPORT: peer-id set
Mar 22 10:04:24    openvpn    47101    OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Mar 22 10:04:24    openvpn    47101    OPTIONS IMPORT: route-related options modified
Mar 22 10:04:24    openvpn    47101    OPTIONS IMPORT: route options modified
Mar 22 10:04:24    openvpn    47101    OPTIONS IMPORT: --ifconfig/up options modified
Mar 22 10:04:24    openvpn    47101    OPTIONS IMPORT: compression parms modified
Mar 22 10:04:24    openvpn    47101    OPTIONS IMPORT: timers and/or timeouts modified
Mar 22 10:04:24    openvpn    47101    PUSH: Received control message: 'PUSH_REPLY,comp-lzo no,redirect-gateway def1 bypass-dhcp,dhcp-option DNS 10.9.219.1,route-gateway 10.9.219.1,topology subnet,ping 10,ping-restart 60,ifconfig 10.9.219.29 255.255.255.0,peer-id 0,cipher CHACHA20-POLY1305'
Mar 22 10:04:24    openvpn    47101    [Xuange] Peer Connection Initiated with [AF_INET]79.142.69.162:2018
Mar 22 10:04:24    openvpn    47101    Control Channel: TLSv1.3, cipher TLSv1.3 TLS_CHACHA20_POLY1305_SHA256, peer certificate: 4096 bit RSA, signature: RSA-SHA512
Mar 22 10:04:23    openvpn    47101    VERIFY OK: depth=0, C=IT, ST=IT, L=Perugia, O=airvpn.org, CN=Xuange, emailAddress=info@airvpn.org
Mar 22 10:04:23    openvpn    47101    VERIFY EKU OK
Mar 22 10:04:23    openvpn    47101    ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
Mar 22 10:04:23    openvpn    47101    Validating certificate extended key usage
Mar 22 10:04:23    openvpn    47101    VERIFY KU OK
Mar 22 10:04:23    openvpn    47101    VERIFY OK: depth=1, C=IT, ST=IT, L=Perugia, O=airvpn.org, CN=airvpn.org CA, emailAddress=info@airvpn.org
Mar 22 10:04:23    openvpn    47101    VERIFY WARNING: depth=1, unable to get certificate CRL: C=IT, ST=IT, L=Perugia, O=airvpn.org, CN=airvpn.org CA, emailAddress=info@airvpn.org
Mar 22 10:04:23    openvpn    47101    VERIFY WARNING: depth=0, unable to get certificate CRL: C=IT, ST=IT, L=Perugia, O=airvpn.org, CN=Xuange, emailAddress=info@airvpn.org
Mar 22 10:04:23    openvpn    47101    TLS: Initial packet from [AF_INET]79.142.69.162:2018, sid=f4557f85 79d5bae3
Mar 22 10:04:23    openvpn    47101    TCPv4_CLIENT link remote: [AF_INET]79.142.69.162:2018
Mar 22 10:04:23    openvpn    47101    TCPv4_CLIENT link local (bound): [AF_INET]10.0.2.15:0
Mar 22 10:04:23    openvpn    47101    TCP connection established with [AF_INET]79.142.69.162:2018
Mar 22 10:04:23    openvpn    47101    Attempting to establish TCP connection with [AF_INET]79.142.69.162:2018 [nonblock]
Mar 22 10:04:23    openvpn    47101    Socket Buffers: R=[65228->2097152] S=[65228->2097152]
Mar 22 10:04:23    openvpn    47101    TCP/UDP: Preserving recently used remote address: [AF_INET]79.142.69.162:2018
Mar 22 10:04:23    openvpn    47101    Incoming Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 10:04:23    openvpn    47101    Incoming Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 10:04:23    openvpn    47101    Outgoing Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 10:04:23    openvpn    47101    Outgoing Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 10:04:23    openvpn    47101    NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Dec 22 18:54:45    openvpn    47101    Restart pause, 5 second(s)
Dec 22 18:54:45    openvpn    47101    SIGUSR1[soft,init_instance] received, process restarting
Dec 22 18:54:45    openvpn    47101    Could not determine IPv4/IPv6 protocol
Dec 22 18:54:45    openvpn    47101    RESOLVE: Cannot resolve host address: de3.vpn.airdns.org:2018 (Name does not resolve)
Dec 22 18:54:45    openvpn    47101    RESOLVE: Cannot resolve host address: de3.vpn.airdns.org:2018 (Name does not resolve)
Dec 22 18:54:45    openvpn    47101    Incoming Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Dec 22 18:54:45    openvpn    47101    Incoming Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Dec 22 18:54:45    openvpn    47101    Outgoing Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Dec 22 18:54:45    openvpn    47101    Outgoing Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Dec 22 18:54:45    openvpn    47101    NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Dec 22 18:54:40    openvpn    47101    Restart pause, 5 second(s)
Dec 22 18:54:40    openvpn    47101    SIGUSR1[soft,init_instance] received, process restarting
Dec 22 18:54:40    openvpn    47101    Could not determine IPv4/IPv6 protocol
Dec 22 18:54:40    openvpn    47101    RESOLVE: Cannot resolve host address: ch3.vpn.airdns.org:2018 (Name does not resolve)
Dec 22 18:54:40    openvpn    47101    RESOLVE: Cannot resolve host address: ch3.vpn.airdns.org:2018 (Name does not resolve)
Dec 22 18:54:34    openvpn    47101    Incoming Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Dec 22 18:54:34    openvpn    47101    Incoming Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Dec 22 18:54:34    openvpn    47101    Outgoing Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Dec 22 18:54:34    openvpn    47101    Outgoing Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Dec 22 18:54:34    openvpn    47101    WARNING: Your certificate has expired!
Dec 22 18:54:34    openvpn    47101    WARNING: experimental option --capath /var/etc/openvpn/client1/ca
Dec 22 18:54:34    openvpn    47101    Initializing OpenSSL support for engine 'rdrand'
Dec 22 18:54:34    openvpn    47101    NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Dec 22 18:54:34    openvpn    47101    MANAGEMENT: unix domain socket listening on /var/etc/openvpn/client1/sock
Dec 22 18:54:34    openvpn    47027    library versions: OpenSSL 1.1.1l-freebsd 24 Aug 2021, LZO 2.10
Dec 22 18:54:34    openvpn    47027    OpenVPN 2.5.4 amd64-portbld-freebsd12.3 [SSL (OpenSSL)] [LZO] [LZ4] [MH/RECVDA] [AEAD] built on Jan 12 2022
Mar 22 10:02:09    openvpn    22449    Restart pause, 80 second(s)
Mar 22 10:02:09    openvpn    22449    SIGUSR1[soft,init_instance] received, process restarting
Mar 22 10:02:09    openvpn    22449    Could not determine IPv4/IPv6 protocol
Mar 22 10:02:09    openvpn    22449    RESOLVE: Cannot resolve host address: de3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 10:02:09    openvpn    22449    RESOLVE: Cannot resolve host address: de3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 10:02:09    openvpn    22449    Incoming Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 10:02:09    openvpn    22449    Incoming Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 10:02:09    openvpn    22449    Outgoing Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 10:02:09    openvpn    22449    Outgoing Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 10:02:09    openvpn    22449    NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Mar 22 10:00:49    openvpn    22449    Restart pause, 80 second(s)
Mar 22 10:00:49    openvpn    22449    SIGUSR1[soft,init_instance] received, process restarting
Mar 22 10:00:49    openvpn    22449    Could not determine IPv4/IPv6 protocol
Mar 22 10:00:49    openvpn    22449    RESOLVE: Cannot resolve host address: ch3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 10:00:49    openvpn    22449    RESOLVE: Cannot resolve host address: ch3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 10:00:49    openvpn    22449    Incoming Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 10:00:49    openvpn    22449    Incoming Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 10:00:49    openvpn    22449    Outgoing Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 10:00:49    openvpn    22449    Outgoing Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 10:00:49    openvpn    22449    NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Mar 22 10:00:09    openvpn    22449    Restart pause, 40 second(s)
Mar 22 10:00:09    openvpn    22449    SIGUSR1[soft,init_instance] received, process restarting
Mar 22 10:00:09    openvpn    22449    Could not determine IPv4/IPv6 protocol
Mar 22 10:00:09    openvpn    22449    RESOLVE: Cannot resolve host address: de3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 10:00:09    openvpn    22449    RESOLVE: Cannot resolve host address: de3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 10:00:09    openvpn    22449    Incoming Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 10:00:09    openvpn    22449    Incoming Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 10:00:09    openvpn    22449    Outgoing Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 10:00:09    openvpn    22449    Outgoing Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 10:00:09    openvpn    22449    NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Mar 22 09:59:29    openvpn    22449    Restart pause, 40 second(s)
Mar 22 09:59:29    openvpn    22449    SIGUSR1[soft,init_instance] received, process restarting
Mar 22 09:59:29    openvpn    22449    Could not determine IPv4/IPv6 protocol
Mar 22 09:59:29    openvpn    22449    RESOLVE: Cannot resolve host address: ch3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 09:59:29    openvpn    22449    RESOLVE: Cannot resolve host address: ch3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 09:59:29    openvpn    22449    Incoming Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 09:59:29    openvpn    22449    Incoming Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 09:59:29    openvpn    22449    Outgoing Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 09:59:29    openvpn    22449    Outgoing Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 09:59:29    openvpn    22449    NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Mar 22 09:59:09    openvpn    22449    Restart pause, 20 second(s)
Mar 22 09:59:09    openvpn    22449    SIGUSR1[soft,init_instance] received, process restarting
Mar 22 09:59:09    openvpn    22449    Could not determine IPv4/IPv6 protocol
Mar 22 09:59:09    openvpn    22449    RESOLVE: Cannot resolve host address: de3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 09:59:09    openvpn    22449    RESOLVE: Cannot resolve host address: de3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 09:59:09    openvpn    22449    Incoming Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 09:59:09    openvpn    22449    Incoming Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 09:59:09    openvpn    22449    Outgoing Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 09:59:09    openvpn    22449    Outgoing Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 09:59:09    openvpn    22449    NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Mar 22 09:58:49    openvpn    22449    Restart pause, 20 second(s)
Mar 22 09:58:49    openvpn    22449    SIGUSR1[soft,init_instance] received, process restarting
Mar 22 09:58:49    openvpn    22449    Could not determine IPv4/IPv6 protocol
Mar 22 09:58:49    openvpn    22449    RESOLVE: Cannot resolve host address: ch3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 09:58:49    openvpn    22449    RESOLVE: Cannot resolve host address: ch3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 09:58:49    openvpn    22449    Incoming Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 09:58:49    openvpn    22449    Incoming Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 09:58:49    openvpn    22449    Outgoing Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 09:58:49    openvpn    22449    Outgoing Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 09:58:49    openvpn    22449    NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Mar 22 09:58:39    openvpn    22449    Restart pause, 10 second(s)
Mar 22 09:58:39    openvpn    22449    SIGUSR1[soft,init_instance] received, process restarting
Mar 22 09:58:39    openvpn    22449    Could not determine IPv4/IPv6 protocol
Mar 22 09:58:39    openvpn    22449    RESOLVE: Cannot resolve host address: de3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 09:58:39    openvpn    22449    RESOLVE: Cannot resolve host address: de3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 09:58:39    openvpn    22449    Incoming Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 09:58:39    openvpn    22449    Incoming Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 09:58:39    openvpn    22449    Outgoing Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 09:58:39    openvpn    22449    Outgoing Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 09:58:39    openvpn    22449    NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Mar 22 09:58:29    openvpn    22449    Restart pause, 10 second(s)
Mar 22 09:58:29    openvpn    22449    SIGUSR1[soft,init_instance] received, process restarting
Mar 22 09:58:29    openvpn    22449    Could not determine IPv4/IPv6 protocol
Mar 22 09:58:29    openvpn    22449    RESOLVE: Cannot resolve host address: ch3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 09:58:29    openvpn    22449    RESOLVE: Cannot resolve host address: ch3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 09:58:29    openvpn    22449    Incoming Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 09:58:29    openvpn    22449    Incoming Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 09:58:29    openvpn    22449    Outgoing Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 09:58:29    openvpn    22449    Outgoing Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 09:58:29    openvpn    22449    NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Mar 22 09:58:24    openvpn    22449    Restart pause, 5 second(s)
Mar 22 09:58:24    openvpn    22449    SIGUSR1[soft,init_instance] received, process restarting
Mar 22 09:58:24    openvpn    22449    Could not determine IPv4/IPv6 protocol
Mar 22 09:58:24    openvpn    22449    RESOLVE: Cannot resolve host address: de3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 09:58:24    openvpn    22449    RESOLVE: Cannot resolve host address: de3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 09:58:24    openvpn    22449    Incoming Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 09:58:24    openvpn    22449    Incoming Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 09:58:24    openvpn    22449    Outgoing Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 09:58:24    openvpn    22449    Outgoing Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 09:58:24    openvpn    22449    NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Mar 22 09:58:19    openvpn    22449    Restart pause, 5 second(s)
Mar 22 09:58:19    openvpn    22449    SIGUSR1[soft,init_instance] received, process restarting
Mar 22 09:58:19    openvpn    22449    Could not determine IPv4/IPv6 protocol
Mar 22 09:58:19    openvpn    22449    RESOLVE: Cannot resolve host address: ch3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 09:58:19    openvpn    22449    RESOLVE: Cannot resolve host address: ch3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 09:58:19    openvpn    22449    Incoming Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 09:58:19    openvpn    22449    Incoming Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 09:58:19    openvpn    22449    Outgoing Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 09:58:19    openvpn    22449    Outgoing Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 09:58:19    openvpn    22449    NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Mar 22 09:58:14    openvpn    22449    Restart pause, 5 second(s)
Mar 22 09:58:14    openvpn    22449    SIGUSR1[soft,init_instance] received, process restarting
Mar 22 09:58:14    openvpn    22449    Could not determine IPv4/IPv6 protocol
Mar 22 09:58:14    openvpn    22449    RESOLVE: Cannot resolve host address: de3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 09:58:14    openvpn    22449    RESOLVE: Cannot resolve host address: de3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 09:58:14    openvpn    22449    Incoming Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 09:58:14    openvpn    22449    Incoming Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 09:58:14    openvpn    22449    Outgoing Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 09:58:14    openvpn    22449    Outgoing Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 09:58:14    openvpn    22449    NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Mar 22 09:58:09    openvpn    22449    Restart pause, 5 second(s)
Mar 22 09:58:09    openvpn    22449    SIGUSR1[soft,init_instance] received, process restarting
Mar 22 09:58:09    openvpn    22449    Could not determine IPv4/IPv6 protocol
Mar 22 09:58:09    openvpn    22449    RESOLVE: Cannot resolve host address: ch3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 09:58:09    openvpn    22449    RESOLVE: Cannot resolve host address: ch3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 09:58:09    openvpn    22449    Incoming Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 09:58:09    openvpn    22449    Incoming Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 09:58:09    openvpn    22449    Outgoing Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 09:58:09    openvpn    22449    Outgoing Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 09:58:09    openvpn    22449    NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Mar 22 09:58:04    openvpn    22449    Restart pause, 5 second(s)
Mar 22 09:58:04    openvpn    22449    SIGUSR1[soft,init_instance] received, process restarting
Mar 22 09:58:04    openvpn    22449    Could not determine IPv4/IPv6 protocol
Mar 22 09:58:04    openvpn    22449    RESOLVE: Cannot resolve host address: de3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 09:58:04    openvpn    22449    RESOLVE: Cannot resolve host address: de3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 09:58:04    openvpn    22449    Incoming Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 09:58:04    openvpn    22449    Incoming Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 09:58:04    openvpn    22449    Outgoing Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 09:58:04    openvpn    22449    Outgoing Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 09:58:04    openvpn    22449    NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Mar 22 09:57:59    openvpn    22449    Restart pause, 5 second(s)
Mar 22 09:57:59    openvpn    22449    SIGUSR1[soft,init_instance] received, process restarting
Mar 22 09:57:59    openvpn    22449    Could not determine IPv4/IPv6 protocol
Mar 22 09:57:59    openvpn    22449    RESOLVE: Cannot resolve host address: ch3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 09:57:59    openvpn    22449    RESOLVE: Cannot resolve host address: ch3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 09:57:59    openvpn    22449    Incoming Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 09:57:59    openvpn    22449    Incoming Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 09:57:59    openvpn    22449    Outgoing Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 09:57:59    openvpn    22449    Outgoing Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 09:57:59    openvpn    22449    NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Mar 22 09:57:54    openvpn    22449    Restart pause, 5 second(s)
Mar 22 09:57:54    openvpn    22449    SIGUSR1[soft,init_instance] received, process restarting
Mar 22 09:57:54    openvpn    22449    Could not determine IPv4/IPv6 protocol
Mar 22 09:57:54    openvpn    22449    RESOLVE: Cannot resolve host address: de3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 09:57:54    openvpn    22449    RESOLVE: Cannot resolve host address: de3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 09:57:54    openvpn    22449    Incoming Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 09:57:54    openvpn    22449    Incoming Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 09:57:54    openvpn    22449    Outgoing Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 09:57:54    openvpn    22449    Outgoing Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 09:57:54    openvpn    22449    NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Mar 22 09:57:49    openvpn    22449    MANAGEMENT: Client disconnected
Mar 22 09:57:49    openvpn    22449    Restart pause, 5 second(s)
Mar 22 09:57:49    openvpn    22449    SIGUSR1[soft,init_instance] received, process restarting
Mar 22 09:57:49    openvpn    22449    Could not determine IPv4/IPv6 protocol
Mar 22 09:57:49    openvpn    22449    RESOLVE: Cannot resolve host address: ch3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 09:57:49    openvpn    22449    RESOLVE: Cannot resolve host address: ch3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 09:57:49    openvpn    22449    Incoming Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 09:57:49    openvpn    22449    Incoming Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 09:57:49    openvpn    22449    Outgoing Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 09:57:49    openvpn    22449    Outgoing Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 09:57:49    openvpn    22449    NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Mar 22 09:57:49    openvpn    22449    MANAGEMENT: CMD 'state 1'
Mar 22 09:57:49    openvpn    22449    MANAGEMENT: Client connected from /var/etc/openvpn/client1/sock
Mar 22 09:57:44    openvpn    22449    Restart pause, 5 second(s)
Mar 22 09:57:44    openvpn    22449    SIGUSR1[soft,init_instance] received, process restarting
Mar 22 09:57:44    openvpn    22449    Could not determine IPv4/IPv6 protocol
Mar 22 09:57:44    openvpn    22449    RESOLVE: Cannot resolve host address: de3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 09:57:44    openvpn    22449    RESOLVE: Cannot resolve host address: de3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 09:57:44    openvpn    22449    Incoming Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 09:57:44    openvpn    22449    Incoming Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 09:57:44    openvpn    22449    Outgoing Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 09:57:44    openvpn    22449    Outgoing Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 09:57:44    openvpn    22449    WARNING: experimental option --capath /var/etc/openvpn/client1/ca
Mar 22 09:57:44    openvpn    22449    Initializing OpenSSL support for engine 'rdrand'
Mar 22 09:57:44    openvpn    22449    NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Mar 22 09:57:44    openvpn    22449    MANAGEMENT: unix domain socket listening on /var/etc/openvpn/client1/sock
Mar 22 09:57:44    openvpn    22268    library versions: OpenSSL 1.1.1l-freebsd 24 Aug 2021, LZO 2.10
Mar 22 09:57:44    openvpn    22268    OpenVPN 2.5.4 amd64-portbld-freebsd12.3 [SSL (OpenSSL)] [LZO] [LZ4] [MH/RECVDA] [AEAD] built on Jan 12 2022
Mar 22 09:57:36    openvpn    98092    SIGTERM[hard,init_instance] received, process exiting
Mar 22 09:57:35    openvpn    98092    MANAGEMENT: Client disconnected
Mar 22 09:57:35    openvpn    98092    MANAGEMENT: CMD 'state 1'
Mar 22 09:57:35    openvpn    98092    MANAGEMENT: Client connected from /var/etc/openvpn/client1/sock
Mar 22 09:57:33    openvpn    98092    MANAGEMENT: Client disconnected
Mar 22 09:57:33    openvpn    98092    MANAGEMENT: CMD 'state 1'
Mar 22 09:57:33    openvpn    98092    MANAGEMENT: Client connected from /var/etc/openvpn/client1/sock
Mar 22 09:57:32    openvpn    98092    Restart pause, 5 second(s)
Mar 22 09:57:32    openvpn    98092    SIGUSR1[soft,init_instance] received, process restarting
Mar 22 09:57:32    openvpn    98092    Could not determine IPv4/IPv6 protocol
Mar 22 09:57:32    openvpn    98092    RESOLVE: Cannot resolve host address: ch3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 09:57:32    openvpn    98092    RESOLVE: Cannot resolve host address: ch3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 09:57:32    openvpn    98092    Incoming Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 09:57:32    openvpn    98092    Incoming Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 09:57:32    openvpn    98092    Outgoing Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 09:57:32    openvpn    98092    Outgoing Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 09:57:32    openvpn    98092    NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Mar 22 09:57:29    openvpn    98092    MANAGEMENT: Client disconnected
Mar 22 09:57:29    openvpn    98092    MANAGEMENT: CMD 'state 1'
Mar 22 09:57:29    openvpn    98092    MANAGEMENT: Client connected from /var/etc/openvpn/client1/sock
Mar 22 09:57:27    openvpn    98092    Restart pause, 5 second(s)
Mar 22 09:57:27    openvpn    98092    SIGUSR1[soft,init_instance] received, process restarting
Mar 22 09:57:27    openvpn    98092    Could not determine IPv4/IPv6 protocol
Mar 22 09:57:27    openvpn    98092    RESOLVE: Cannot resolve host address: de3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 09:57:27    openvpn    98092    RESOLVE: Cannot resolve host address: de3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 09:57:27    openvpn    98092    Incoming Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 09:57:27    openvpn    98092    Incoming Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 09:57:27    openvpn    98092    Outgoing Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 09:57:27    openvpn    98092    Outgoing Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 09:57:27    openvpn    98092    NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Mar 22 09:57:24    openvpn    98092    MANAGEMENT: Client disconnected
Mar 22 09:57:24    openvpn    98092    MANAGEMENT: CMD 'state 1'
Mar 22 09:57:24    openvpn    98092    MANAGEMENT: Client connected from /var/etc/openvpn/client1/sock
Mar 22 09:57:22    openvpn    98092    MANAGEMENT: Client disconnected
Mar 22 09:57:22    openvpn    98092    MANAGEMENT: CMD 'state 1'
Mar 22 09:57:22    openvpn    98092    MANAGEMENT: Client connected from /var/etc/openvpn/client1/sock
Mar 22 09:57:22    openvpn    98092    Restart pause, 5 second(s)
Mar 22 09:57:22    openvpn    98092    SIGUSR1[soft,init_instance] received, process restarting
Mar 22 09:57:22    openvpn    98092    Could not determine IPv4/IPv6 protocol
Mar 22 09:57:22    openvpn    98092    RESOLVE: Cannot resolve host address: ch3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 09:57:22    openvpn    98092    RESOLVE: Cannot resolve host address: ch3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 09:57:22    openvpn    98092    Incoming Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 09:57:22    openvpn    98092    Incoming Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 09:57:22    openvpn    98092    Outgoing Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 09:57:22    openvpn    98092    Outgoing Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 09:57:22    openvpn    98092    NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Mar 22 09:57:21    openvpn    98092    MANAGEMENT: Client disconnected
Mar 22 09:57:21    openvpn    98092    MANAGEMENT: CMD 'state 1'
Mar 22 09:57:21    openvpn    98092    MANAGEMENT: Client connected from /var/etc/openvpn/client1/sock
Mar 22 09:57:20    openvpn    98092    MANAGEMENT: Client disconnected
Mar 22 09:57:20    openvpn    98092    MANAGEMENT: CMD 'state 1'
Mar 22 09:57:20    openvpn    98092    MANAGEMENT: Client connected from /var/etc/openvpn/client1/sock
Mar 22 09:57:17    openvpn    98092    MANAGEMENT: Client disconnected
Mar 22 09:57:17    openvpn    98092    Restart pause, 5 second(s)
Mar 22 09:57:17    openvpn    98092    SIGUSR1[soft,init_instance] received, process restarting
Mar 22 09:57:17    openvpn    98092    Could not determine IPv4/IPv6 protocol
Mar 22 09:57:17    openvpn    98092    RESOLVE: Cannot resolve host address: de3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 09:57:17    openvpn    98092    RESOLVE: Cannot resolve host address: de3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 09:57:17    openvpn    98092    Incoming Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 09:57:17    openvpn    98092    Incoming Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 09:57:17    openvpn    98092    Outgoing Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 09:57:17    openvpn    98092    Outgoing Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 09:57:17    openvpn    98092    NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Mar 22 09:57:17    openvpn    98092    MANAGEMENT: CMD 'state 1'
Mar 22 09:57:17    openvpn    98092    MANAGEMENT: Client connected from /var/etc/openvpn/client1/sock
Mar 22 09:57:12    openvpn    98092    Restart pause, 5 second(s)
Mar 22 09:57:12    openvpn    98092    SIGUSR1[soft,init_instance] received, process restarting
Mar 22 09:57:12    openvpn    98092    Could not determine IPv4/IPv6 protocol
Mar 22 09:57:12    openvpn    98092    RESOLVE: Cannot resolve host address: ch3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 09:57:12    openvpn    98092    RESOLVE: Cannot resolve host address: ch3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 09:57:12    openvpn    98092    Incoming Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 09:57:12    openvpn    98092    Incoming Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 09:57:12    openvpn    98092    Outgoing Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 09:57:12    openvpn    98092    Outgoing Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 09:57:12    openvpn    98092    NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Mar 22 09:57:07    openvpn    98092    Restart pause, 5 second(s)
Mar 22 09:57:07    openvpn    98092    SIGUSR1[soft,init_instance] received, process restarting
Mar 22 09:57:07    openvpn    98092    Could not determine IPv4/IPv6 protocol
Mar 22 09:57:07    openvpn    98092    RESOLVE: Cannot resolve host address: de3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 09:57:07    openvpn    98092    RESOLVE: Cannot resolve host address: de3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 09:57:07    openvpn    98092    Incoming Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 09:57:07    openvpn    98092    Incoming Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 09:57:07    openvpn    98092    Outgoing Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 09:57:07    openvpn    98092    Outgoing Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 09:57:07    openvpn    98092    NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Mar 22 09:57:05    openvpn    98092    MANAGEMENT: Client disconnected
Mar 22 09:57:05    openvpn    98092    MANAGEMENT: CMD 'state 1'
Mar 22 09:57:05    openvpn    98092    MANAGEMENT: Client connected from /var/etc/openvpn/client1/sock
Mar 22 09:57:02    openvpn    98092    Restart pause, 5 second(s)
Mar 22 09:57:02    openvpn    98092    SIGUSR1[soft,init_instance] received, process restarting
Mar 22 09:57:02    openvpn    98092    Could not determine IPv4/IPv6 protocol
Mar 22 09:57:02    openvpn    98092    RESOLVE: Cannot resolve host address: ch3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 09:57:02    openvpn    98092    RESOLVE: Cannot resolve host address: ch3.vpn.airdns.org:2018 (Name does not resolve)
Mar 22 09:57:02    openvpn    98092    Incoming Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 09:57:02    openvpn    98092    Incoming Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 09:57:02    openvpn    98092    Outgoing Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Mar 22 09:57:02    openvpn    98092    Outgoing Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Mar 22 09:57:02    openvpn    98092    WARNING: experimental option --capath /var/etc/openvpn/client1/ca
Mar 22 09:57:02    openvpn    98092    Initializing OpenSSL support for engine 'rdrand'
Mar 22 09:57:02    openvpn    98092    NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Mar 22 09:57:02    openvpn    98092    MANAGEMENT: unix domain socket listening on /var/etc/openvpn/client1/sock
Mar 22 09:57:02    openvpn    97748    library versions: OpenSSL 1.1.1l-freebsd 24 Aug 2021, LZO 2.10
Mar 22 09:57:02    openvpn    97748    OpenVPN 2.5.4 amd64-portbld-freebsd12.3 [SSL (OpenSSL)] [LZO] [LZ4] [MH/RECVDA] [AEAD] built on Jan 12 2022
Mar 22 09:57:02    openvpn    29973    SIGTERM[hard,] received, process exiting
Mar 22 09:57:02    openvpn    29973    /usr/local/sbin/ovpn-linkdown ovpnc1 1500 1540 10.10.187.106 255.255.255.0 init
Mar 22 09:57:02    openvpn    29973    Closing TUN/TAP interface
Mar 22 09:57:02    openvpn    29973    /sbin/route delete -net 128.0.0.0 10.10.187.1 128.0.0.0
Mar 22 09:57:02    openvpn    29973    /sbin/route delete -net 0.0.0.0 10.10.187.1 128.0.0.0
Mar 22 09:57:02    openvpn    29973    /sbin/route delete -net 178.162.204.236 10.0.2.2 255.255.255.255
Mar 22 09:57:02    openvpn    29973    event_wait : Interrupted system call (code=4)
Mar 22 09:56:40    openvpn    29973    MANAGEMENT: Client disconnected
Mar 22 09:56:40    openvpn    29973    MANAGEMENT: CMD 'status 2'
Mar 22 09:56:40    openvpn    29973    MANAGEMENT: CMD 'state 1'
Mar 22 09:56:40    openvpn    29973    MANAGEMENT: Client connected from /var/etc/openvpn/client1/sock
Mar 22 09:56:35    openvpn    29973    MANAGEMENT: Client disconnected
Mar 22 09:56:35    openvpn    29973    MANAGEMENT: CMD 'status 2'
Mar 22 09:56:35    openvpn    29973    MANAGEMENT: CMD 'state 1'
Mar 22 09:56:35    openvpn    29973    MANAGEMENT: Client connected from /var/etc/openvpn/client1/sock

Edited ... by OpenSourcerer
Apply LOG format to logs

Wolke68

is there a special reason for using TCP?

At the netgate forum a few users with openvpn problems with pfsense 2.6.0

lumsinkh

UDP also works, but have to use TCP in my case. So I have to stick with TCP option only.

Wolke68

Always this

Mar 22 10:52:14    openvpn     47101    Restart pause, 5 second(s)
Mar 22 10:52:14    openvpn    47101    SIGUSR1[soft,ping-restart] received, process restarting
Mar 22 10:52:14    openvpn    47101    [Xuange] Inactivity timeout (--ping-restart), restarting

do you set the Option for Ping every X Seconds

Air4141841

I’ve gotten this on pfsense and now opnsense I think the past month or so

I setup the connection with several servers to reconnect to:
remote 1.1.1.1 tcp. For example
remote us3.vpn.airdns.org 443 tcp as a legit server

so all I notice now is the data transfer has reset on the occasion

NaDre

Have you checked something basic? Maybe this has nothing to do with PFSense?

If you are using IPv4, is there any chance your ISP has switched you to CGNAT? If so your external IP address will change randomly causing exactly this when running OpenVPN.

If you are using IPv6, I assume your ...Sense box is getting an IPv6 address from an ISP-provided modem? Have you told that modem to us "stateful" rather than "stateless" address assignment? That is to use DHCP for IPv6? Otherwise the IPv6 address of your ...Sense box will change often too. At least it will with the modem from my ISP.

Wireguard is supposed to be able to survive address changes like this.

lumsinkh

On 3/23/2022 at 4:34 PM, Wolke68 said:

Always this

Mar 22 10:52:14    openvpn     47101    Restart pause, 5 second(s)
Mar 22 10:52:14    openvpn    47101    SIGUSR1[soft,ping-restart] received, process restarting
Mar 22 10:52:14    openvpn    47101    [Xuange] Inactivity timeout (--ping-restart), restarting

do you set the Option for Ping every X Seconds

is set to values:

Interval

Timeout

lumsinkh

20 hours ago, NaDre said:

Have you checked something basic? Maybe this has nothing to do with PFSense?

If you are using IPv4, is there any chance your ISP has switched you to CGNAT? If so your external IP address will change randomly causing exactly this when running OpenVPN.

If you are using IPv6, I assume your ...Sense box is getting an IPv6 address from an ISP-provided modem? Have you told that modem to us "stateful" rather than "stateless" address assignment? That is to use DHCP for IPv6? Otherwise the IPv6 address of your ...Sense box will change often too. At least it will with the modem from my ISP.

Wireguard is supposed to be able to survive address changes like this.

ipv6 is completely turned off, meaning pfsense gets only IPv4 from WAN interface.
Wireguard isnt an option as I need only TCP, or is there wireguard based TCP solution?

SurprisedItWorks

You are correct that your wireguard interface connects to wireguard peers using UDP only. There is no provision in the wireguard design for running wireguard on top of a TCP link.

flat4

I've been using pfsense and airvpn for a while, I no expert at all. Did using the DNS name over the IP is that a recent change or i just missed the boat on that?

Air4141841

4 hours ago, flat4 said:

I've been using pfsense and airvpn for a while, I no expert at all. Did using the DNS name over the IP is that a recent change or i just missed the boat on that?

https://airvpn.org/specs/

VPN DNS addresses (private addresses, only reachable from inside the VPN): 10.4.0.1 / fde6:7a:7d20:4::1 - reachable from any virtual subnet
However, we recommend that your machine accepts the DNS push from our servers. If that's not possible, then we suggest to set the DNS IP address matching the VPN gateway IP address, as this is the safest method to prevent certain attacks based on hijacking.

following this method is the only way I can get certain features to work. Including the dns feature recently added

flat4

I had never really paid attention to this but thank you.
I have been enlighten

AirVPN reconnects every unpredictable hours in pfsense

Recommended Posts

Share this post

Link to post

Share this post

Link to post

Share this post

Link to post

Share this post

Link to post

Share this post

Link to post

Share this post

Link to post

Share this post

Link to post

Share this post

Link to post

Share this post

Link to post

Share this post

Link to post

Share this post

Link to post

Share this post

Link to post

Join the conversation