Jump to content
Not connected, Your IP: 3.238.198.167
Sign in to follow this  
Lain

ANSWERED Issue connecting from Xubuntu (Linux)

Recommended Posts

Hey guys, I followed the instructions and when attempting to connect I get to Initalization Sequence Completed and then.. Nothing. It just hangs it seems like. Anyone have any suggestions?

I did an alt+C to cancel at the end to restore internet access.

 

Mon Jun 17 12:04:40 2013 OpenVPN 2.2.1 x86_64-linux-gnu [sSL] [LZO2] [EPOLL] [PKCS11] [eurephia] [MH] [PF_INET6] [iPv6 payload 20110424-2 (2.2RC2)] built on Feb 27 2013
Mon Jun 17 12:04:40 2013 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Mon Jun 17 12:04:40 2013 WARNING: file 'user.key' is group or others accessible
Mon Jun 17 12:04:40 2013 LZO compression initialized
Mon Jun 17 12:04:40 2013 Control Channel MTU parms [ L:1558 D:138 EF:38 EB:0 ET:0 EL:0 ]
Mon Jun 17 12:04:40 2013 Socket Buffers: R=[229376->131072] S=[229376->131072]
Mon Jun 17 12:04:40 2013 Data Channel MTU parms [ L:1558 D:1450 EF:58 EB:135 ET:0 EL:0 AF:3/1 ]
Mon Jun 17 12:04:40 2013 Local Options hash (VER=V4): '22188c5b'
Mon Jun 17 12:04:40 2013 Expected Remote Options hash (VER=V4): 'a8f55717'
Mon Jun 17 12:04:40 2013 UDPv4 link local: [undef]
Mon Jun 17 12:04:40 2013 UDPv4 link remote: [AF_INET]149.255.33.154:443
Mon Jun 17 12:04:40 2013 TLS: Initial packet from [AF_INET]149.255.33.154:443, sid=73901bca b6551ec2
Mon Jun 17 12:04:40 2013 VERIFY OK: depth=1, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=airvpn.org_CA/emailAddress=info@airvpn.org
Mon Jun 17 12:04:40 2013 VERIFY OK: nsCertType=SERVER
Mon Jun 17 12:04:40 2013 VERIFY OK: depth=0, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=server/emailAddress=info@airvpn.org
Mon Jun 17 12:04:41 2013 Data Channel Encrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
Mon Jun 17 12:04:41 2013 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Mon Jun 17 12:04:41 2013 Data Channel Decrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
Mon Jun 17 12:04:41 2013 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Mon Jun 17 12:04:41 2013 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA
Mon Jun 17 12:04:41 2013 [server] Peer Connection Initiated with [AF_INET]149.255.33.154:443
Mon Jun 17 12:04:43 2013 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
Mon Jun 17 12:04:43 2013 PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1,dhcp-option DNS 10.4.0.1,comp-lzo no,route 10.4.0.1,topology net30,ping 10,ping-restart 60,ifconfig 10.4.39.62 10.4.39.61'
Mon Jun 17 12:04:43 2013 OPTIONS IMPORT: timers and/or timeouts modified
Mon Jun 17 12:04:43 2013 OPTIONS IMPORT: LZO parms modified
Mon Jun 17 12:04:43 2013 OPTIONS IMPORT: --ifconfig/up options modified
Mon Jun 17 12:04:43 2013 OPTIONS IMPORT: route options modified
Mon Jun 17 12:04:43 2013 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Mon Jun 17 12:04:43 2013 ROUTE default_gateway=192.168.3.30
Mon Jun 17 12:04:43 2013 TUN/TAP device tun0 opened
Mon Jun 17 12:04:43 2013 TUN/TAP TX queue length set to 100
Mon Jun 17 12:04:43 2013 do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
Mon Jun 17 12:04:43 2013 /sbin/ifconfig tun0 10.4.39.62 pointopoint 10.4.39.61 mtu 1500
Mon Jun 17 12:04:43 2013 /sbin/route add -net 149.255.33.154 netmask 255.255.255.255 gw 192.168.3.30
Mon Jun 17 12:04:43 2013 /sbin/route add -net 0.0.0.0 netmask 128.0.0.0 gw 10.4.39.61
Mon Jun 17 12:04:43 2013 /sbin/route add -net 128.0.0.0 netmask 128.0.0.0 gw 10.4.39.61
Mon Jun 17 12:04:43 2013 /sbin/route add -net 10.4.0.1 netmask 255.255.255.255 gw 10.4.39.61
Mon Jun 17 12:04:43 2013 Initialization Sequence Completed
^CMon Jun 17 12:05:10 2013 event_wait : Interrupted system call (code=4)
 

Share this post


Link to post

Hello,

 

at the end of initialization please do not kill OpenVPN and at your convenience send us the output of the commands

 

ping 10.4.0.1

ping google.com

ping 8.8.8.8

 

and (as root) the output of the command "route -n" and the content of your /etc/resolv.conf file.

 

Kind regards

Share this post


Link to post

Thanks for the quick reply, you guys know your stuff. From the looks of it I am guessing it's just a simple DNS issue, but here is the information as requested:

 

PING 10.4.0.1 (10.4.0.1) 56(84) bytes of data.
64 bytes from 10.4.0.1: icmp_req=1 ttl=64 time=17.6 ms
64 bytes from 10.4.0.1: icmp_req=2 ttl=64 time=24.8 ms
64 bytes from 10.4.0.1: icmp_req=3 ttl=64 time=20.6 ms
^C
--- 10.4.0.1 ping statistics ---
3 packets transmitted, 3 received, 0% packet loss, time 2003ms
rtt min/avg/max/mdev = 17.622/21.037/24.859/2.973 ms
starviper@EC1002:~$ ping google.com
^C
starviper@EC1002:~$ ping 8.8.8.8
PING 8.8.8.8 (8.8.8.8) 56(84) bytes of data.
64 bytes from 8.8.8.8: icmp_req=1 ttl=50 time=38.0 ms
64 bytes from 8.8.8.8: icmp_req=2 ttl=50 time=35.5 ms
64 bytes from 8.8.8.8: icmp_req=3 ttl=50 time=33.2 ms
^C
--- 8.8.8.8 ping statistics ---
3 packets transmitted, 3 received, 0% packet loss, time 2002ms
rtt min/avg/max/mdev = 33.255/35.617/38.030/1.961 ms
starviper@EC1002:~$ route -n
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
0.0.0.0         10.4.39.61      128.0.0.0       UG    0      0        0 tun0
0.0.0.0         192.168.3.30    0.0.0.0         UG    0      0        0 eth0
10.4.0.1        10.4.39.61      255.255.255.255 UGH   0      0        0 tun0
10.4.39.61      0.0.0.0         255.255.255.255 UH    0      0        0 tun0
128.0.0.0       10.4.39.61      128.0.0.0       UG    0      0        0 tun0
149.255.33.154  192.168.3.30    255.255.255.255 UGH   0      0        0 eth0
169.254.0.0     0.0.0.0         255.255.0.0     U     1000   0        0 eth0
192.168.3.0     0.0.0.0         255.255.255.0   U     1      0        0 eth0
 
cat /etc/openvpn/update-resolv-conf 
#!/bin/bash
# Parses DHCP options from openvpn to update resolv.conf
# To use set as 'up' and 'down' script in your openvpn *.conf:
# up /etc/openvpn/update-resolv-conf
# down /etc/openvpn/update-resolv-conf
#
# Used snippets of resolvconf script by Thomas Hood <jdthood@yahoo.co.uk> 
# and Chris Hanson
# Licensed under the GNU GPL.  See /usr/share/common-licenses/GPL. 
#
# 05/2006 chlauber@bnc.ch
# Example envs set from openvpn:
# foreign_option_1='dhcp-option DNS 193.43.27.132'
# foreign_option_2='dhcp-option DNS 193.43.27.133'
# foreign_option_3='dhcp-option DOMAIN be.bnc.ch'
 
[ -x /sbin/resolvconf ] || exit 0
 
case $script_type in
 
up)
for optionname in ${!foreign_option_*} ; do
option="${!optionname}"
echo $option
part1=$(echo "$option" | cut -d " " -f 1)
if [ "$part1" == "dhcp-option" ] ; then
part2=$(echo "$option" | cut -d " " -f 2)
part3=$(echo "$option" | cut -d " " -f 3)
if [ "$part2" == "DNS" ] ; then
IF_DNS_NAMESERVERS="$IF_DNS_NAMESERVERS $part3"
fi
if [ "$part2" == "DOMAIN" ] ; then
IF_DNS_SEARCH="$IF_DNS_SEARCH $part3"
fi
fi
done
R=""
for SS in $IF_DNS_SEARCH ; do
         R="${R}search $SS
"
done
for NS in $IF_DNS_NAMESERVERS ; do
         R="${R}nameserver $NS
"
done
echo -n "$R" | /sbin/resolvconf -a "${dev}.inet"
;;
down)
/sbin/resolvconf -d "${dev}.inet"
;;
esac
 

Share this post


Link to post

Hello,

 

"ping google.com" output is missing, can you please post it as well?

 

Anyway, we see that you have resolvconf installed. Assuming that it's a DNS issue, add to your OpenVPN configuration file(s) the following directives:

 

script-security 2
up /etc/openvpn/update-resolv-conf
down /etc/openvpn/update-resolv-conf

 

An alternative way is adding those directives in the "Custom directives" field of our configuration generator. This field becomes available when you tick "Advanced Mode".

 

"up & down" and the .../openvpn/update-resolv-conf script are the very same lines and the same script that you have commented out in the resolv.conf file. At a first glance it's unclear whether the rest of your resolv.conf can set DNS according to the DNS-push of our servers (probably not). Setting those proper OpenVPN directives should solve the issue at its roots. The VPN DNS server IP address that is accessible from any VPN subnet is 10.4.0.1, anyway setting up & down in the OpenVPN configuration file is probably the most elegant solution when one has resolvconf installed.

 

Kind regards

Share this post


Link to post

google.com output was in there, but it didn't resolve to anything which is why I was thinking it was DNS related. I cancelled it pretty quickly once I saw it wasn't working.

 

So your suggestion of adding those lines to the configuration file did fix the issue! Thank you. However, I am running into an issue when trying to access certain internal resources on our network here. Do you know of a quick way to adjust the routing table to resolve hosts on certain networks here? All are addressed with a 192.168.x.x subnet.

 

routing table is currently set as follows when connected: 

 

Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
0.0.0.0         10.4.15.81      128.0.0.0       UG    0      0        0 tun0
0.0.0.0         192.168.3.30    0.0.0.0         UG    0      0        0 eth0
10.4.0.1        10.4.15.81      255.255.255.255 UGH   0      0        0 tun0
10.4.15.81      0.0.0.0         255.255.255.255 UH    0      0        0 tun0
76.73.4.98      192.168.3.30    255.255.255.255 UGH   0      0        0 eth0
128.0.0.0       10.4.15.81      128.0.0.0       UG    0      0        0 tun0
169.254.0.0     0.0.0.0         255.255.0.0     U     1000   0        0 eth0
192.168.3.0     0.0.0.0         255.255.255.0   U     1      0        0 eth0

Share this post


Link to post

Well, I figured it out. Just did a command to add a route, which was as follows: sudo route add -net 192.168.0.0 netmask 255.255.0.0 gw 192.168.3.30

However, since I no longer have an internal DNS server set I am unable to resolve internal hosts. I was able to fix this by manually editing /etc/resolvconf/resolv.conf.d/head and adding a nameserver line -- however I do not believe this is the optimal solution. Do you have a better solution?

Share this post


Link to post

Not able to edit my previous post since it has not been approved by mods, however I want to add note one more thing  - the way I had described above does work, however it queries the DNS server here rather than your DNS server first. From reading a bit there are three files -- head, base, and tail that modify how resolv.conf is built. Putting lines in the head makes it get hit first, putting lines in base makes them not appear at all, and putting lines in tail make it appear under 127.0.0.1.. meaning they never get hit at all and my issue comes back. I'd like to ensure that your DNS server is queried first before it tries the internal ones. If you have an idea of how I can accomplish that it would help.

 

Thanks!

Share this post


Link to post

Hello,

 

put in /etc/resolvconf/resolv.conf.d/head 10.4.0.1 as first nameserver, and your internal nameserver after it, for example

 

nameserver 10.4.0.1

nameserver

 

Kind regards

Share this post


Link to post

Though that does solve the problem when connected, when disconnected my machine will still attempt to query your nameserver which causes a delay. I feel like there is a more elegant way to accomplish this, and though I've looked I haven't found a proper answer to this particular predicament. Do you guys have any further suggestions to automate the process, so I do not have to manually edit that configuration file every time I connect/disconnect? Additionally, modifying the head file like that renders the previous fix irrelevant, as that part automates the use of your nameserver when connected to the VPN. Any other ideas? Sorry if this is a bit complex. At this point it is essentially solved but I feel there should be a simple way to automate all of this.

Share this post


Link to post

Hello,

 

sure, you have already the solution under your eyes. Up & down directives in .ovpn files can be used to execute a script. Write your own script for "up" which adds nameserver 10.4.0.1 in head, and a "down" script which removes (comment) it. Or modify properly the update-resolv-conf. Or... well, there are probably so many ways to do it.

 

Kind regards

Share this post


Link to post

Perfect. You were right, it was right in front of me this whole time, haha.

Share this post


Link to post

So looking further into this, I am still having a few issues. The nameserver thing is not exactly a problem, as I realized how the DNS system actually works -- my resolv.conf file with your configuration will list the following:

 

nameserver 10.4.0.1

nameserver 127.0.0.1
 
The second nameserver listing (it's always there actually) will then refer to the adapters on my system which have their own DNS configurations. So I really have no need/reason to modify the resolv.conf file in any way.
 
What I am seeing happen is that nothing goes out the eth0 interface for a time, including the lookups to the nameservers on the local network for some time -- everything routes out the tun0 adapter. Eventually, it will begin checking them (by going right out the eth0 interface) and I can reach internal services, however at that point the tunnel breaks down and restarts itself which is very annoying as I basically cannot maintain a connection to either outside or internal devices.
 
Here is the log from the openvpn session, and route -n output -- let me know if there is other relevant information I can send over.
 
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
0.0.0.0         10.4.39.61      128.0.0.0       UG    0      0        0 tun0
0.0.0.0         192.168.3.30    0.0.0.0         UG    0      0        0 eth0
10.4.0.1        10.4.39.61      255.255.255.255 UGH   0      0        0 tun0
10.4.39.61      0.0.0.0         255.255.255.255 UH    0      0        0 tun0
128.0.0.0       10.4.39.61      128.0.0.0       UG    0      0        0 tun0
149.255.33.154  192.168.3.30    255.255.255.255 UGH   0      0        0 eth0
169.254.0.0     0.0.0.0         255.255.0.0     U     1000   0        0 eth0
192.168.0.0     192.168.3.30    255.255.0.0     UG    0      0        0 eth0
192.168.3.0     0.0.0.0         255.255.255.0   U     1      0        0 eth0
 
 
Thu Jun 20 14:31:51 2013 OpenVPN 2.2.1 x86_64-linux-gnu [sSL] [LZO2] [EPOLL] [PKCS11] [eurephia] [MH] [PF_INET6] [iPv6 payload 20110424-2 (2.2RC2)] built on Feb 27 2013
Thu Jun 20 14:31:51 2013 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Thu Jun 20 14:31:51 2013 WARNING: file 'user.key' is group or others accessible
Thu Jun 20 14:31:51 2013 LZO compression initialized
Thu Jun 20 14:31:51 2013 Control Channel MTU parms [ L:1558 D:138 EF:38 EB:0 ET:0 EL:0 ]
Thu Jun 20 14:31:51 2013 Socket Buffers: R=[229376->131072] S=[229376->131072]
Thu Jun 20 14:31:51 2013 Data Channel MTU parms [ L:1558 D:1450 EF:58 EB:135 ET:0 EL:0 AF:3/1 ]
Thu Jun 20 14:31:51 2013 Local Options hash (VER=V4): '22188c5b'
Thu Jun 20 14:31:51 2013 Expected Remote Options hash (VER=V4): 'a8f55717'
Thu Jun 20 14:31:51 2013 UDPv4 link local: [undef]
Thu Jun 20 14:31:51 2013 UDPv4 link remote: [AF_INET]149.255.33.154:443
Thu Jun 20 14:31:51 2013 TLS: Initial packet from [AF_INET]149.255.33.154:443, sid=ea54ecd9 8ddb9ff4
Thu Jun 20 14:31:51 2013 VERIFY OK: depth=1, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=airvpn.org_CA/emailAddress=info@airvpn.org
Thu Jun 20 14:31:51 2013 VERIFY OK: nsCertType=SERVER
Thu Jun 20 14:31:51 2013 VERIFY OK: depth=0, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=server/emailAddress=info@airvpn.org
Thu Jun 20 14:31:51 2013 Data Channel Encrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
Thu Jun 20 14:31:51 2013 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Thu Jun 20 14:31:51 2013 Data Channel Decrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
Thu Jun 20 14:31:51 2013 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Thu Jun 20 14:31:51 2013 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA
Thu Jun 20 14:31:51 2013 [server] Peer Connection Initiated with [AF_INET]149.255.33.154:443
Thu Jun 20 14:31:53 2013 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
Thu Jun 20 14:31:53 2013 PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1,dhcp-option DNS 10.4.0.1,comp-lzo no,route 10.4.0.1,topology net30,ping 10,ping-restart 60,ifconfig 10.4.39.62 10.4.39.61'
Thu Jun 20 14:31:53 2013 OPTIONS IMPORT: timers and/or timeouts modified
Thu Jun 20 14:31:53 2013 OPTIONS IMPORT: LZO parms modified
Thu Jun 20 14:31:53 2013 OPTIONS IMPORT: --ifconfig/up options modified
Thu Jun 20 14:31:53 2013 OPTIONS IMPORT: route options modified
Thu Jun 20 14:31:53 2013 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Thu Jun 20 14:31:53 2013 ROUTE default_gateway=192.168.3.30
Thu Jun 20 14:31:53 2013 TUN/TAP device tun0 opened
Thu Jun 20 14:31:53 2013 TUN/TAP TX queue length set to 100
Thu Jun 20 14:31:53 2013 do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
Thu Jun 20 14:31:53 2013 /sbin/ifconfig tun0 10.4.39.62 pointopoint 10.4.39.61 mtu 1500
Thu Jun 20 14:31:53 2013 /etc/openvpn/update-resolv-conf tun0 1500 1558 10.4.39.62 10.4.39.61 init
dhcp-option DNS 10.4.0.1
Thu Jun 20 14:31:56 2013 /sbin/route add -net 149.255.33.154 netmask 255.255.255.255 gw 192.168.3.30
Thu Jun 20 14:31:56 2013 /sbin/route add -net 0.0.0.0 netmask 128.0.0.0 gw 10.4.39.61
Thu Jun 20 14:31:56 2013 /sbin/route add -net 128.0.0.0 netmask 128.0.0.0 gw 10.4.39.61
Thu Jun 20 14:31:56 2013 /sbin/route add -net 10.4.0.1 netmask 255.255.255.255 gw 10.4.39.61
Thu Jun 20 14:31:56 2013 Initialization Sequence Completed
Thu Jun 20 14:33:51 2013 [server] Inactivity timeout (--ping-restart), restarting
Thu Jun 20 14:33:51 2013 TCP/UDP: Closing socket
Thu Jun 20 14:33:51 2013 /sbin/route del -net 10.4.0.1 netmask 255.255.255.255
Thu Jun 20 14:33:51 2013 /sbin/route del -net 149.255.33.154 netmask 255.255.255.255
Thu Jun 20 14:33:51 2013 /sbin/route del -net 0.0.0.0 netmask 128.0.0.0
Thu Jun 20 14:33:51 2013 /sbin/route del -net 128.0.0.0 netmask 128.0.0.0
Thu Jun 20 14:33:51 2013 Closing TUN/TAP interface
Thu Jun 20 14:33:51 2013 /sbin/ifconfig tun0 0.0.0.0
Thu Jun 20 14:33:53 2013 /etc/openvpn/update-resolv-conf tun0 1500 1558 10.4.39.62 10.4.39.61 init
Thu Jun 20 14:33:53 2013 SIGUSR1[soft,ping-restart] received, process restarting
Thu Jun 20 14:33:53 2013 Restart pause, 2 second(s)
Thu Jun 20 14:33:55 2013 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Thu Jun 20 14:33:55 2013 WARNING: file 'user.key' is group or others accessible
Thu Jun 20 14:33:55 2013 LZO compression initialized
Thu Jun 20 14:33:55 2013 Control Channel MTU parms [ L:1558 D:138 EF:38 EB:0 ET:0 EL:0 ]
Thu Jun 20 14:33:55 2013 Socket Buffers: R=[229376->131072] S=[229376->131072]
Thu Jun 20 14:33:55 2013 Data Channel MTU parms [ L:1558 D:1450 EF:58 EB:135 ET:0 EL:0 AF:3/1 ]
Thu Jun 20 14:33:55 2013 Local Options hash (VER=V4): '22188c5b'
Thu Jun 20 14:33:55 2013 Expected Remote Options hash (VER=V4): 'a8f55717'
Thu Jun 20 14:33:55 2013 UDPv4 link local: [undef]
Thu Jun 20 14:33:55 2013 UDPv4 link remote: [AF_INET]149.255.33.154:443
Thu Jun 20 14:33:55 2013 TLS: Initial packet from [AF_INET]149.255.33.154:443, sid=046c4c5f 6d4db0b6
Thu Jun 20 14:33:55 2013 VERIFY OK: depth=1, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=airvpn.org_CA/emailAddress=info@airvpn.org
Thu Jun 20 14:33:55 2013 VERIFY OK: nsCertType=SERVER
Thu Jun 20 14:33:55 2013 VERIFY OK: depth=0, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=server/emailAddress=info@airvpn.org
Thu Jun 20 14:33:55 2013 Data Channel Encrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
Thu Jun 20 14:33:55 2013 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Thu Jun 20 14:33:55 2013 Data Channel Decrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
Thu Jun 20 14:33:55 2013 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Thu Jun 20 14:33:55 2013 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA
Thu Jun 20 14:33:55 2013 [server] Peer Connection Initiated with [AF_INET]149.255.33.154:443
Thu Jun 20 14:33:57 2013 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
Thu Jun 20 14:33:57 2013 PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1,dhcp-option DNS 10.4.0.1,comp-lzo no,route 10.4.0.1,topology net30,ping 10,ping-restart 60,ifconfig 10.4.39.62 10.4.39.61'
Thu Jun 20 14:33:57 2013 OPTIONS IMPORT: timers and/or timeouts modified
Thu Jun 20 14:33:57 2013 OPTIONS IMPORT: LZO parms modified
Thu Jun 20 14:33:57 2013 OPTIONS IMPORT: --ifconfig/up options modified
Thu Jun 20 14:33:57 2013 OPTIONS IMPORT: route options modified
Thu Jun 20 14:33:57 2013 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Thu Jun 20 14:33:57 2013 ROUTE default_gateway=192.168.3.30
Thu Jun 20 14:33:57 2013 TUN/TAP device tun0 opened
Thu Jun 20 14:33:57 2013 TUN/TAP TX queue length set to 100
Thu Jun 20 14:33:57 2013 do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
Thu Jun 20 14:33:57 2013 /sbin/ifconfig tun0 10.4.39.62 pointopoint 10.4.39.61 mtu 1500
Thu Jun 20 14:33:57 2013 /etc/openvpn/update-resolv-conf tun0 1500 1558 10.4.39.62 10.4.39.61 init
dhcp-option DNS 10.4.0.1
Thu Jun 20 14:34:00 2013 /sbin/route add -net 149.255.33.154 netmask 255.255.255.255 gw 192.168.3.30
Thu Jun 20 14:34:00 2013 /sbin/route add -net 0.0.0.0 netmask 128.0.0.0 gw 10.4.39.61
Thu Jun 20 14:34:00 2013 /sbin/route add -net 128.0.0.0 netmask 128.0.0.0 gw 10.4.39.61
Thu Jun 20 14:34:00 2013 /sbin/route add -net 10.4.0.1 netmask 255.255.255.255 gw 10.4.39.61
Thu Jun 20 14:34:00 2013 Initialization Sequence Completed
Thu Jun 20 14:35:52 2013 [server] Inactivity timeout (--ping-restart), restarting
Thu Jun 20 14:35:52 2013 TCP/UDP: Closing socket
Thu Jun 20 14:35:52 2013 /sbin/route del -net 10.4.0.1 netmask 255.255.255.255
Thu Jun 20 14:35:52 2013 /sbin/route del -net 149.255.33.154 netmask 255.255.255.255
Thu Jun 20 14:35:52 2013 /sbin/route del -net 0.0.0.0 netmask 128.0.0.0
Thu Jun 20 14:35:52 2013 /sbin/route del -net 128.0.0.0 netmask 128.0.0.0
Thu Jun 20 14:35:52 2013 Closing TUN/TAP interface
Thu Jun 20 14:35:52 2013 /sbin/ifconfig tun0 0.0.0.0
Thu Jun 20 14:35:53 2013 /etc/openvpn/update-resolv-conf tun0 1500 1558 10.4.39.62 10.4.39.61 init
Thu Jun 20 14:35:53 2013 SIGUSR1[soft,ping-restart] received, process restarting
Thu Jun 20 14:35:53 2013 Restart pause, 2 second(s)
Thu Jun 20 14:35:55 2013 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Thu Jun 20 14:35:55 2013 WARNING: file 'user.key' is group or others accessible
Thu Jun 20 14:35:55 2013 LZO compression initialized
Thu Jun 20 14:35:55 2013 Control Channel MTU parms [ L:1558 D:138 EF:38 EB:0 ET:0 EL:0 ]
Thu Jun 20 14:35:55 2013 Socket Buffers: R=[229376->131072] S=[229376->131072]
Thu Jun 20 14:35:55 2013 Data Channel MTU parms [ L:1558 D:1450 EF:58 EB:135 ET:0 EL:0 AF:3/1 ]
Thu Jun 20 14:35:55 2013 Local Options hash (VER=V4): '22188c5b'
Thu Jun 20 14:35:55 2013 Expected Remote Options hash (VER=V4): 'a8f55717'
Thu Jun 20 14:35:55 2013 UDPv4 link local: [undef]
Thu Jun 20 14:35:55 2013 UDPv4 link remote: [AF_INET]149.255.33.154:443
Thu Jun 20 14:35:55 2013 TLS: Initial packet from [AF_INET]149.255.33.154:443, sid=baa18875 d47da0f0
Thu Jun 20 14:35:55 2013 VERIFY OK: depth=1, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=airvpn.org_CA/emailAddress=info@airvpn.org
Thu Jun 20 14:35:55 2013 VERIFY OK: nsCertType=SERVER
Thu Jun 20 14:35:55 2013 VERIFY OK: depth=0, /C=IT/ST=IT/L=Perugia/O=airvpn.org/CN=server/emailAddress=info@airvpn.org
Thu Jun 20 14:35:56 2013 Data Channel Encrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
Thu Jun 20 14:35:56 2013 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Thu Jun 20 14:35:56 2013 Data Channel Decrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
Thu Jun 20 14:35:56 2013 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Thu Jun 20 14:35:56 2013 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA
Thu Jun 20 14:35:56 2013 [server] Peer Connection Initiated with [AF_INET]149.255.33.154:443
Thu Jun 20 14:35:58 2013 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
Thu Jun 20 14:35:58 2013 PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1,dhcp-option DNS 10.4.0.1,comp-lzo no,route 10.4.0.1,topology net30,ping 10,ping-restart 60,ifconfig 10.4.39.62 10.4.39.61'
Thu Jun 20 14:35:58 2013 OPTIONS IMPORT: timers and/or timeouts modified
Thu Jun 20 14:35:58 2013 OPTIONS IMPORT: LZO parms modified
Thu Jun 20 14:35:58 2013 OPTIONS IMPORT: --ifconfig/up options modified
Thu Jun 20 14:35:58 2013 OPTIONS IMPORT: route options modified
Thu Jun 20 14:35:58 2013 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Thu Jun 20 14:35:58 2013 ROUTE default_gateway=192.168.3.30
Thu Jun 20 14:35:58 2013 TUN/TAP device tun0 opened
Thu Jun 20 14:35:58 2013 TUN/TAP TX queue length set to 100
Thu Jun 20 14:35:58 2013 do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
Thu Jun 20 14:35:58 2013 /sbin/ifconfig tun0 10.4.39.62 pointopoint 10.4.39.61 mtu 1500
Thu Jun 20 14:35:58 2013 /etc/openvpn/update-resolv-conf tun0 1500 1558 10.4.39.62 10.4.39.61 init
dhcp-option DNS 10.4.0.1
Thu Jun 20 14:36:01 2013 /sbin/route add -net 149.255.33.154 netmask 255.255.255.255 gw 192.168.3.30
Thu Jun 20 14:36:01 2013 /sbin/route add -net 0.0.0.0 netmask 128.0.0.0 gw 10.4.39.61
Thu Jun 20 14:36:01 2013 /sbin/route add -net 128.0.0.0 netmask 128.0.0.0 gw 10.4.39.61
Thu Jun 20 14:36:01 2013 /sbin/route add -net 10.4.0.1 netmask 255.255.255.255 gw 10.4.39.61
Thu Jun 20 14:36:01 2013 Initialization Sequence Completed
^CThu Jun 20 14:36:03 2013 event_wait : Interrupted system call (code=4)
Thu Jun 20 14:36:03 2013 SIGTERM received, sending exit notification to peer
Thu Jun 20 14:36:08 2013 TCP/UDP: Closing socket
Thu Jun 20 14:36:08 2013 /sbin/route del -net 10.4.0.1 netmask 255.255.255.255
Thu Jun 20 14:36:08 2013 /sbin/route del -net 149.255.33.154 netmask 255.255.255.255
Thu Jun 20 14:36:08 2013 /sbin/route del -net 0.0.0.0 netmask 128.0.0.0
Thu Jun 20 14:36:08 2013 /sbin/route del -net 128.0.0.0 netmask 128.0.0.0
Thu Jun 20 14:36:08 2013 Closing TUN/TAP interface
Thu Jun 20 14:36:08 2013 /sbin/ifconfig tun0 0.0.0.0
Thu Jun 20 14:36:09 2013 /etc/openvpn/update-resolv-conf tun0 1500 1558 10.4.39.62 10.4.39.61 init
Thu Jun 20 14:36:13 2013 SIGTERM[soft,exit-with-notification] received, process exiting
 

Share this post


Link to post

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
  • Security Check
    Play CAPTCHA Audio
    Refresh Image
Sign in to follow this  

×
×
  • Create New...