It is currently 18.11.2017 15:58


All times are UTC




Post new topic Reply to topic  [ 1 post ] 
Author Message
 Post subject: TLS handshake failed und mehr
PostPosted: 20.12.2013 11:09 
DES
DES

Joined: 19.12.2013 15:32
Posts: 1
Hallo allerseits,

ich lese schon seit einiger Zeit hier im Forum mit. Jetzt benötige ich aber Eure Hilfe. Bin zwar IT-mäßig nicht ganz unbewandert - bei Linux, DD-WRT und OpenVPN bin ich aber nur Anwender. Und bisher hat auch alles funktioniert. Habe irgendwann mal meinen alten Router auf DD-WRT und OpenVPN umgestellt und mit Hilfe einiger Anleitungen aus dem Internet rasch alles ans Laufen bekommen. Doch dann ist der Router abrupt "verstorben" und Ersatz mußte her. DD-WRT installiert - und gewundert. Viele neue Menüs und andere Bezeichnungen. Bald lief aber alles wieder wie gewohnt. Bis auf OpenVPN. Ziel wie bisher: OpenVPN soll als Server (Deamon) auf dem Router laufen und von unterwegs den Zugriff auf den dahinter hängenden Server (der DHCP- und lokaler DNS Server fürs Netz ist) via RDP ermöglichen. Und das will einfach nicht klappen. Nach mehreren Installationsrunden ist das Ergebnis, dass OpenVPN offenbar grundsätzlich läuft. Aus dem internen Netz kann ich auch problemlos einen Tunnel aufbauen. Nicht jedoch von außerhalb. Auch nicht, wenn ich lokal einen zweiten Router vor den WAN-Port hänge, um ein externes Netz zu simulieren. Zertifikate usw. müssen aber stimmen, sonst ginge es ja nicht von intern. Also irgenwas im Bereich Routing / Firewall? Von intern bekomme ich eine IP aus dem Bereich 192.168.123.2xx zugewiesen, von extern nichts. Bin zunehmend ratlos...

Hier noch einige Daten:
Remote-Zugriff via no-ip.org via name.no-ip.org (funktioniert - Remote-Zugriff auf Router möglich, wenn in den Einstellungen erlaubt)
Router IP (LAN): 192.168.33.254 / 255.255.255.0
Server-IP: 192.168.33.200
DHCP-Bereich Server: 192.168.33.1-192.168.33.100
Die öffentliche IP und das no-ip Konto habe ich anonymisiert.

hier die config's:

[Server]
mode server
proto udp
port 1194
dev tap
server-bridge 192.168.123.2 255.255.255.0 192.168.123.200 192.168.123.249
keepalive 10 120
daemon
verb 5
client-to-client
dh /tmp/openvpn/dh.pem
ca /tmp/openvpn/ca.crt
cert /tmp/openvpn/cert.pem
key /tmp/openvpn/key.pem
management localhost 5001

[Client]
remote name.no-ip.org 1194
client
dev tap
proto udp
resolv-retry infinite
nobind
persist-key
persist-tun
float
ca "C:\\Programme\\OpenVPN\\ca.crt"
cert "C:\\Programme\\OpenVPN\\client2.crt"
key "C:\\Programme\\OpenVPN\\client2.key"
ns-cert-type server
verb 6

[Startup Script]
--script-security 3 system
openvpn --mktun --dev tap
brctl addif br0 tap
ifconfig tap 0.0.0.0 promisc up

[Firewall Script]
--script-security 3 system
iptables -A INPUT -i tap -j ACCEPT
iptables -I INPUT -p udp --dport 1194 -j ACCEPT

--------------------------------------------------------------

[Client-Log]
Fri Dec 20 12:00:21 2013 us=647392 Current Parameter Settings:
Fri Dec 20 12:00:21 2013 us=647392 config = 'OpenVPN.ovpn'
Fri Dec 20 12:00:21 2013 us=647392 mode = 0
Fri Dec 20 12:00:21 2013 us=647392 show_ciphers = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 show_digests = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 show_engines = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 genkey = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 key_pass_file = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 show_tls_ciphers = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 Connection profiles [default]:
Fri Dec 20 12:00:21 2013 us=647392 proto = udp
Fri Dec 20 12:00:21 2013 us=647392 local = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 local_port = 0
Fri Dec 20 12:00:21 2013 us=647392 remote = 'name.no-ip.org'
Fri Dec 20 12:00:21 2013 us=647392 remote_port = 1194
Fri Dec 20 12:00:21 2013 us=647392 remote_float = ENABLED
Fri Dec 20 12:00:21 2013 us=647392 bind_defined = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 bind_local = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 connect_retry_seconds = 5
Fri Dec 20 12:00:21 2013 us=647392 connect_timeout = 10
Fri Dec 20 12:00:21 2013 us=647392 connect_retry_max = 0
Fri Dec 20 12:00:21 2013 us=647392 socks_proxy_server = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 socks_proxy_port = 0
Fri Dec 20 12:00:21 2013 us=647392 socks_proxy_retry = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 tun_mtu = 1500
Fri Dec 20 12:00:21 2013 us=647392 tun_mtu_defined = ENABLED
Fri Dec 20 12:00:21 2013 us=647392 link_mtu = 1500
Fri Dec 20 12:00:21 2013 us=647392 link_mtu_defined = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 tun_mtu_extra = 32
Fri Dec 20 12:00:21 2013 us=647392 tun_mtu_extra_defined = ENABLED
Fri Dec 20 12:00:21 2013 us=647392 mtu_discover_type = -1
Fri Dec 20 12:00:21 2013 us=647392 fragment = 0
Fri Dec 20 12:00:21 2013 us=647392 mssfix = 1450
Fri Dec 20 12:00:21 2013 us=647392 explicit_exit_notification = 0
Fri Dec 20 12:00:21 2013 us=647392 Connection profiles END
Fri Dec 20 12:00:21 2013 us=647392 remote_random = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 ipchange = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 dev = 'tap'
Fri Dec 20 12:00:21 2013 us=647392 dev_type = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 dev_node = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 lladdr = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 topology = 1
Fri Dec 20 12:00:21 2013 us=647392 tun_ipv6 = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 ifconfig_local = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 ifconfig_remote_netmask = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 ifconfig_noexec = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 ifconfig_nowarn = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 ifconfig_ipv6_local = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 ifconfig_ipv6_netbits = 0
Fri Dec 20 12:00:21 2013 us=647392 ifconfig_ipv6_remote = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 shaper = 0
Fri Dec 20 12:00:21 2013 us=647392 mtu_test = 0
Fri Dec 20 12:00:21 2013 us=647392 mlock = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 keepalive_ping = 0
Fri Dec 20 12:00:21 2013 us=647392 keepalive_timeout = 0
Fri Dec 20 12:00:21 2013 us=647392 inactivity_timeout = 0
Fri Dec 20 12:00:21 2013 us=647392 ping_send_timeout = 0
Fri Dec 20 12:00:21 2013 us=647392 ping_rec_timeout = 0
Fri Dec 20 12:00:21 2013 us=647392 ping_rec_timeout_action = 0
Fri Dec 20 12:00:21 2013 us=647392 ping_timer_remote = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 remap_sigusr1 = 0
Fri Dec 20 12:00:21 2013 us=647392 persist_tun = ENABLED
Fri Dec 20 12:00:21 2013 us=647392 persist_local_ip = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 persist_remote_ip = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 persist_key = ENABLED
Fri Dec 20 12:00:21 2013 us=647392 passtos = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 resolve_retry_seconds = 1000000000
Fri Dec 20 12:00:21 2013 us=647392 username = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 groupname = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 chroot_dir = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 cd_dir = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 writepid = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 up_script = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 down_script = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 down_pre = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 up_restart = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 up_delay = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 daemon = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 inetd = 0
Fri Dec 20 12:00:21 2013 us=647392 log = ENABLED
Fri Dec 20 12:00:21 2013 us=647392 suppress_timestamps = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 nice = 0
Fri Dec 20 12:00:21 2013 us=647392 verbosity = 6
Fri Dec 20 12:00:21 2013 us=647392 mute = 0
Fri Dec 20 12:00:21 2013 us=647392 status_file = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 status_file_version = 1
Fri Dec 20 12:00:21 2013 us=647392 status_file_update_freq = 60
Fri Dec 20 12:00:21 2013 us=647392 occ = ENABLED
Fri Dec 20 12:00:21 2013 us=647392 rcvbuf = 0
Fri Dec 20 12:00:21 2013 us=647392 sndbuf = 0
Fri Dec 20 12:00:21 2013 us=647392 sockflags = 0
Fri Dec 20 12:00:21 2013 us=647392 fast_io = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 lzo = 0
Fri Dec 20 12:00:21 2013 us=647392 route_script = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 route_default_gateway = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 route_default_metric = 0
Fri Dec 20 12:00:21 2013 us=647392 route_noexec = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 route_delay = 5
Fri Dec 20 12:00:21 2013 us=647392 route_delay_window = 30
Fri Dec 20 12:00:21 2013 us=647392 route_delay_defined = ENABLED
Fri Dec 20 12:00:21 2013 us=647392 route_nopull = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 route_gateway_via_dhcp = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 max_routes = 100
Fri Dec 20 12:00:21 2013 us=647392 allow_pull_fqdn = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 management_addr = '127.0.0.1'
Fri Dec 20 12:00:21 2013 us=647392 management_port = 25340
Fri Dec 20 12:00:21 2013 us=647392 management_user_pass = 'stdin'
Fri Dec 20 12:00:21 2013 us=647392 management_log_history_cache = 250
Fri Dec 20 12:00:21 2013 us=647392 management_echo_buffer_size = 100
Fri Dec 20 12:00:21 2013 us=647392 management_write_peer_info_file = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 management_client_user = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 management_client_group = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 management_flags = 6
Fri Dec 20 12:00:21 2013 us=647392 shared_secret_file = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 key_direction = 0
Fri Dec 20 12:00:21 2013 us=647392 ciphername_defined = ENABLED
Fri Dec 20 12:00:21 2013 us=647392 ciphername = 'BF-CBC'
Fri Dec 20 12:00:21 2013 us=647392 authname_defined = ENABLED
Fri Dec 20 12:00:21 2013 us=647392 authname = 'SHA1'
Fri Dec 20 12:00:21 2013 us=647392 prng_hash = 'SHA1'
Fri Dec 20 12:00:21 2013 us=647392 prng_nonce_secret_len = 16
Fri Dec 20 12:00:21 2013 us=647392 keysize = 0
Fri Dec 20 12:00:21 2013 us=647392 engine = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 replay = ENABLED
Fri Dec 20 12:00:21 2013 us=647392 mute_replay_warnings = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 replay_window = 64
Fri Dec 20 12:00:21 2013 us=647392 replay_time = 15
Fri Dec 20 12:00:21 2013 us=647392 packet_id_file = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 use_iv = ENABLED
Fri Dec 20 12:00:21 2013 us=647392 test_crypto = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 tls_server = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 tls_client = ENABLED
Fri Dec 20 12:00:21 2013 us=647392 key_method = 2
Fri Dec 20 12:00:21 2013 us=647392 ca_file = 'C:\Programme\OpenVPN\ca.crt'
Fri Dec 20 12:00:21 2013 us=647392 ca_path = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 dh_file = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 cert_file = 'C:\Programme\OpenVPN\client2.crt'
Fri Dec 20 12:00:21 2013 us=647392 priv_key_file = 'C:\Programme\OpenVPN\client2.key'
Fri Dec 20 12:00:21 2013 us=647392 pkcs12_file = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 cryptoapi_cert = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 cipher_list = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 tls_verify = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 tls_export_cert = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 verify_x509_type = 0
Fri Dec 20 12:00:21 2013 us=647392 verify_x509_name = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 crl_file = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 ns_cert_type = 1
Fri Dec 20 12:00:21 2013 us=647392 remote_cert_ku[i] = 0
Fri Dec 20 12:00:21 2013 us=647392 remote_cert_ku[i] = 0
Fri Dec 20 12:00:21 2013 us=647392 remote_cert_ku[i] = 0
Fri Dec 20 12:00:21 2013 us=647392 remote_cert_ku[i] = 0
Fri Dec 20 12:00:21 2013 us=647392 remote_cert_ku[i] = 0
Fri Dec 20 12:00:21 2013 us=647392 remote_cert_ku[i] = 0
Fri Dec 20 12:00:21 2013 us=647392 remote_cert_ku[i] = 0
Fri Dec 20 12:00:21 2013 us=647392 remote_cert_ku[i] = 0
Fri Dec 20 12:00:21 2013 us=647392 remote_cert_ku[i] = 0
Fri Dec 20 12:00:21 2013 us=647392 remote_cert_ku[i] = 0
Fri Dec 20 12:00:21 2013 us=647392 remote_cert_ku[i] = 0
Fri Dec 20 12:00:21 2013 us=647392 remote_cert_ku[i] = 0
Fri Dec 20 12:00:21 2013 us=647392 remote_cert_ku[i] = 0
Fri Dec 20 12:00:21 2013 us=647392 remote_cert_ku[i] = 0
Fri Dec 20 12:00:21 2013 us=647392 remote_cert_ku[i] = 0
Fri Dec 20 12:00:21 2013 us=647392 remote_cert_ku[i] = 0
Fri Dec 20 12:00:21 2013 us=647392 remote_cert_eku = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 ssl_flags = 0
Fri Dec 20 12:00:21 2013 us=647392 tls_timeout = 2
Fri Dec 20 12:00:21 2013 us=647392 renegotiate_bytes = 0
Fri Dec 20 12:00:21 2013 us=647392 renegotiate_packets = 0
Fri Dec 20 12:00:21 2013 us=647392 renegotiate_seconds = 3600
Fri Dec 20 12:00:21 2013 us=647392 handshake_window = 60
Fri Dec 20 12:00:21 2013 us=647392 transition_window = 3600
Fri Dec 20 12:00:21 2013 us=647392 single_session = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 push_peer_info = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 tls_exit = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 tls_auth_file = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_protected_authentication = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_protected_authentication = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_protected_authentication = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_protected_authentication = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_protected_authentication = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_protected_authentication = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_protected_authentication = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_protected_authentication = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_protected_authentication = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_protected_authentication = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_protected_authentication = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_protected_authentication = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_protected_authentication = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_protected_authentication = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_protected_authentication = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_protected_authentication = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_private_mode = 00000000
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_private_mode = 00000000
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_private_mode = 00000000
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_private_mode = 00000000
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_private_mode = 00000000
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_private_mode = 00000000
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_private_mode = 00000000
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_private_mode = 00000000
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_private_mode = 00000000
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_private_mode = 00000000
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_private_mode = 00000000
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_private_mode = 00000000
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_private_mode = 00000000
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_private_mode = 00000000
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_private_mode = 00000000
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_private_mode = 00000000
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_cert_private = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_cert_private = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_cert_private = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_cert_private = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_cert_private = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_cert_private = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_cert_private = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_cert_private = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_cert_private = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_cert_private = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_cert_private = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_cert_private = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_cert_private = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_cert_private = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_cert_private = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_cert_private = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_pin_cache_period = -1
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_id = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 pkcs11_id_management = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 server_network = 0.0.0.0
Fri Dec 20 12:00:21 2013 us=647392 server_netmask = 0.0.0.0
Fri Dec 20 12:00:21 2013 us=647392 server_network_ipv6 = ::
Fri Dec 20 12:00:21 2013 us=647392 server_netbits_ipv6 = 0
Fri Dec 20 12:00:21 2013 us=647392 server_bridge_ip = 0.0.0.0
Fri Dec 20 12:00:21 2013 us=647392 server_bridge_netmask = 0.0.0.0
Fri Dec 20 12:00:21 2013 us=647392 server_bridge_pool_start = 0.0.0.0
Fri Dec 20 12:00:21 2013 us=647392 server_bridge_pool_end = 0.0.0.0
Fri Dec 20 12:00:21 2013 us=647392 ifconfig_pool_defined = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 ifconfig_pool_start = 0.0.0.0
Fri Dec 20 12:00:21 2013 us=647392 ifconfig_pool_end = 0.0.0.0
Fri Dec 20 12:00:21 2013 us=647392 ifconfig_pool_netmask = 0.0.0.0
Fri Dec 20 12:00:21 2013 us=647392 ifconfig_pool_persist_filename = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 ifconfig_pool_persist_refresh_freq = 600
Fri Dec 20 12:00:21 2013 us=647392 ifconfig_ipv6_pool_defined = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 ifconfig_ipv6_pool_base = ::
Fri Dec 20 12:00:21 2013 us=647392 ifconfig_ipv6_pool_netbits = 0
Fri Dec 20 12:00:21 2013 us=647392 n_bcast_buf = 256
Fri Dec 20 12:00:21 2013 us=647392 tcp_queue_limit = 64
Fri Dec 20 12:00:21 2013 us=647392 real_hash_size = 256
Fri Dec 20 12:00:21 2013 us=647392 virtual_hash_size = 256
Fri Dec 20 12:00:21 2013 us=647392 client_connect_script = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 learn_address_script = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 client_disconnect_script = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 client_config_dir = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 ccd_exclusive = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 tmp_dir = 'C:\Users\XXXXYY~1\AppData\Local\Temp\'
Fri Dec 20 12:00:21 2013 us=647392 push_ifconfig_defined = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 push_ifconfig_local = 0.0.0.0
Fri Dec 20 12:00:21 2013 us=647392 push_ifconfig_remote_netmask = 0.0.0.0
Fri Dec 20 12:00:21 2013 us=647392 push_ifconfig_ipv6_defined = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 push_ifconfig_ipv6_local = ::/0
Fri Dec 20 12:00:21 2013 us=647392 push_ifconfig_ipv6_remote = ::
Fri Dec 20 12:00:21 2013 us=647392 enable_c2c = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 duplicate_cn = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 cf_max = 0
Fri Dec 20 12:00:21 2013 us=647392 cf_per = 0
Fri Dec 20 12:00:21 2013 us=647392 max_clients = 1024
Fri Dec 20 12:00:21 2013 us=647392 max_routes_per_client = 256
Fri Dec 20 12:00:21 2013 us=647392 auth_user_pass_verify_script = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 auth_user_pass_verify_script_via_file = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 client = ENABLED
Fri Dec 20 12:00:21 2013 us=647392 pull = ENABLED
Fri Dec 20 12:00:21 2013 us=647392 auth_user_pass_file = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 show_net_up = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 route_method = 0
Fri Dec 20 12:00:21 2013 us=647392 ip_win32_defined = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 ip_win32_type = 3
Fri Dec 20 12:00:21 2013 us=647392 dhcp_masq_offset = 0
Fri Dec 20 12:00:21 2013 us=647392 dhcp_lease_time = 31536000
Fri Dec 20 12:00:21 2013 us=647392 tap_sleep = 0
Fri Dec 20 12:00:21 2013 us=647392 dhcp_options = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 dhcp_renew = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 dhcp_pre_release = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 dhcp_release = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 domain = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 netbios_scope = '[UNDEF]'
Fri Dec 20 12:00:21 2013 us=647392 netbios_node_type = 0
Fri Dec 20 12:00:21 2013 us=647392 disable_nbt = DISABLED
Fri Dec 20 12:00:21 2013 us=647392 OpenVPN 2.3.2 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [PKCS11] [eurephia] [IPv6] built on Aug 22 2013
Enter Management Password:
Fri Dec 20 12:00:21 2013 us=647392 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:25340
Fri Dec 20 12:00:21 2013 us=647392 Need hold release from management interface, waiting...
Fri Dec 20 12:00:22 2013 us=115392 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:25340
Fri Dec 20 12:00:22 2013 us=224593 MANAGEMENT: CMD 'state on'
Fri Dec 20 12:00:22 2013 us=224593 MANAGEMENT: CMD 'log all on'
Fri Dec 20 12:00:22 2013 us=396193 MANAGEMENT: CMD 'hold off'
Fri Dec 20 12:00:22 2013 us=396193 MANAGEMENT: CMD 'hold release'
Fri Dec 20 12:00:22 2013 us=598993 Control Channel MTU parms [ L:1573 D:138 EF:38 EB:0 ET:0 EL:0 ]
Fri Dec 20 12:00:22 2013 us=598993 Socket Buffers: R=[8192->8192] S=[49152->49152]
Fri Dec 20 12:00:22 2013 us=598993 MANAGEMENT: >STATE:1387537222,RESOLVE,,,
Fri Dec 20 12:00:22 2013 us=942194 Data Channel MTU parms [ L:1573 D:1450 EF:41 EB:4 ET:32 EL:0 ]
Fri Dec 20 12:00:22 2013 us=942194 Local Options String: 'V4,dev-type tap,link-mtu 1573,tun-mtu 1532,proto UDPv4,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Fri Dec 20 12:00:22 2013 us=942194 Expected Remote Options String: 'V4,dev-type tap,link-mtu 1573,tun-mtu 1532,proto UDPv4,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Fri Dec 20 12:00:22 2013 us=942194 Local Options hash (VER=V4): '2c50bd2c'
Fri Dec 20 12:00:22 2013 us=942194 Expected Remote Options hash (VER=V4): '0ddbb6e3'
Fri Dec 20 12:00:22 2013 us=942194 UDPv4 link local: [undef]
Fri Dec 20 12:00:22 2013 us=942194 UDPv4 link remote: [AF_INET]100.64.23.xyz:1194
Fri Dec 20 12:00:22 2013 us=942194 MANAGEMENT: >STATE:1387537222,WAIT,,,
Fri Dec 20 12:00:22 2013 us=942194 UDPv4 WRITE [14] to [AF_INET]100.64.23.xyz:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Fri Dec 20 12:00:22 2013 us=942194 UDPv4 READ [0] from [undef]: DATA UNDEF len=-1
Fri Dec 20 12:00:24 2013 us=18596 UDPv4 WRITE [14] to [AF_INET]100.64.23.xyz:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Fri Dec 20 12:00:28 2013 us=324203 UDPv4 WRITE [14] to [AF_INET]100.64.23.xyz:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Fri Dec 20 12:00:36 2013 us=748218 UDPv4 WRITE [14] to [AF_INET]100.64.23.xyz:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Fri Dec 20 12:00:52 2013 us=753846 UDPv4 WRITE [14] to [AF_INET]100.64.23.xyz:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Fri Dec 20 12:01:22 2013 us=939899 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Fri Dec 20 12:01:22 2013 us=939899 TLS Error: TLS handshake failed
Fri Dec 20 12:01:22 2013 us=939899 TCP/UDP: Closing socket
Fri Dec 20 12:01:22 2013 us=939899 SIGUSR1[soft,tls-error] received, process restarting
Fri Dec 20 12:01:22 2013 us=939899 MANAGEMENT: >STATE:1387537282,RECONNECTING,tls-error,,
Fri Dec 20 12:01:22 2013 us=939899 Restart pause, 2 second(s)
Fri Dec 20 12:01:24 2013 us=967903 Re-using SSL/TLS context
Fri Dec 20 12:01:24 2013 us=967903 Control Channel MTU parms [ L:1573 D:138 EF:38 EB:0 ET:0 EL:0 ]
Fri Dec 20 12:01:24 2013 us=967903 Socket Buffers: R=[8192->8192] S=[49152->49152]
Fri Dec 20 12:01:24 2013 us=967903 MANAGEMENT: >STATE:1387537284,RESOLVE,,,
Fri Dec 20 12:01:25 2013 us=61503 Data Channel MTU parms [ L:1573 D:1450 EF:41 EB:4 ET:32 EL:0 ]
Fri Dec 20 12:01:25 2013 us=61503 Local Options String: 'V4,dev-type tap,link-mtu 1573,tun-mtu 1532,proto UDPv4,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Fri Dec 20 12:01:25 2013 us=61503 Expected Remote Options String: 'V4,dev-type tap,link-mtu 1573,tun-mtu 1532,proto UDPv4,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Fri Dec 20 12:01:25 2013 us=61503 Local Options hash (VER=V4): '2c50bd2c'
Fri Dec 20 12:01:25 2013 us=61503 Expected Remote Options hash (VER=V4): '0ddbb6e3'
Fri Dec 20 12:01:25 2013 us=61503 UDPv4 link local: [undef]
Fri Dec 20 12:01:25 2013 us=61503 UDPv4 link remote: [AF_INET]100.64.23.xyz:1194
Fri Dec 20 12:01:25 2013 us=61503 MANAGEMENT: >STATE:1387537285,WAIT,,,
Fri Dec 20 12:01:25 2013 us=61503 UDPv4 WRITE [14] to [AF_INET]100.64.23.xyz:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Fri Dec 20 12:01:25 2013 us=61503 UDPv4 READ [0] from [undef]: DATA UNDEF len=-1
Fri Dec 20 12:01:27 2013 us=183107 UDPv4 WRITE [14] to [AF_INET]100.64.23.xyz:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Fri Dec 20 12:01:31 2013 us=426314 UDPv4 WRITE [14] to [AF_INET]100.64.23.xyz:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Fri Dec 20 12:01:39 2013 us=132728 UDPv4 WRITE [14] to [AF_INET]100.64.23.xyz:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Fri Dec 20 12:01:55 2013 us=793557 UDPv4 WRITE [14] to [AF_INET]100.64.23.xyz:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Fri Dec 20 12:02:25 2013 us=714410 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Fri Dec 20 12:02:25 2013 us=714410 TLS Error: TLS handshake failed
Fri Dec 20 12:02:25 2013 us=714410 TCP/UDP: Closing socket
Fri Dec 20 12:02:25 2013 us=714410 SIGUSR1[soft,tls-error] received, process restarting
Fri Dec 20 12:02:25 2013 us=714410 MANAGEMENT: >STATE:1387537345,RECONNECTING,tls-error,,
Fri Dec 20 12:02:25 2013 us=714410 Restart pause, 2 second(s)
Fri Dec 20 12:02:27 2013 us=742413 Re-using SSL/TLS context
Fri Dec 20 12:02:27 2013 us=742413 Control Channel MTU parms [ L:1573 D:138 EF:38 EB:0 ET:0 EL:0 ]
Fri Dec 20 12:02:27 2013 us=742413 Socket Buffers: R=[8192->8192] S=[49152->49152]
Fri Dec 20 12:02:27 2013 us=742413 MANAGEMENT: >STATE:1387537347,RESOLVE,,,
Fri Dec 20 12:02:27 2013 us=836013 Data Channel MTU parms [ L:1573 D:1450 EF:41 EB:4 ET:32 EL:0 ]
Fri Dec 20 12:02:27 2013 us=836013 Local Options String: 'V4,dev-type tap,link-mtu 1573,tun-mtu 1532,proto UDPv4,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Fri Dec 20 12:02:27 2013 us=836013 Expected Remote Options String: 'V4,dev-type tap,link-mtu 1573,tun-mtu 1532,proto UDPv4,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Fri Dec 20 12:02:27 2013 us=836013 Local Options hash (VER=V4): '2c50bd2c'
Fri Dec 20 12:02:27 2013 us=836013 Expected Remote Options hash (VER=V4): '0ddbb6e3'
Fri Dec 20 12:02:27 2013 us=836013 UDPv4 link local: [undef]
Fri Dec 20 12:02:27 2013 us=836013 UDPv4 link remote: [AF_INET]100.64.23.xyz:1194
Fri Dec 20 12:02:27 2013 us=836013 MANAGEMENT: >STATE:1387537347,WAIT,,,
Fri Dec 20 12:02:27 2013 us=836013 UDPv4 WRITE [14] to [AF_INET]100.64.23.xyz:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Fri Dec 20 12:02:27 2013 us=836013 UDPv4 READ [0] from [undef]: DATA UNDEF len=-1
Fri Dec 20 12:02:30 2013 us=20017 UDPv4 WRITE [14] to [AF_INET]100.64.23.xyz:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Fri Dec 20 12:02:34 2013 us=388025 UDPv4 WRITE [14] to [AF_INET]100.64.23.xyz:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Fri Dec 20 12:02:42 2013 us=656039 UDPv4 WRITE [14] to [AF_INET]100.64.23.xyz:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Fri Dec 20 12:02:58 2013 us=911268 UDPv4 WRITE [14] to [AF_INET]100.64.23.xyz:1194: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
Fri Dec 20 12:03:25 2013 us=290914 TCP/UDP: Closing socket

--------------------------------------------------------------

[Server log]
...DD-WRT kern.warn kernel: [ 246.720000] DROP IN=vlan2 OUT= MAC=ff:ff:ff:ff:ff:ff:bc:f2:af:54:b8:e0:08:00:45:00:00:ae SRC=100.64.73.24 DST=255.255.255.255 LEN=174 TOS=0x00 PREC=0x00 TTL=64 ID=0 PROTO=UDP SPT=19375 DPT=19375 LEN=154 Dec 20 12:02:34 DD-WRT kern.warn kernel: [ 246.730000] DROP IN=br0 OUT=vlan2 MAC=a0:f3:c1:5b:5a:34:00:1d:7d:d6:4f:bb:08:00 SRC=192.168.33.13 DST=195.10.36.182 LEN=40 TOS=0x00 PREC=0x00 TTL=127 ID=24881 DF PROTO=TCP SPT=58471 DPT=80 SEQ=3897419185 ACK=923179513 WINDOW= Dec 20 12:02:34 DD-WRT kern.warn kernel: [ 247.030000] DROP IN=vlan2 OUT= MAC=ff:ff:ff:ff:ff:ff:bc:f2:af:54:b8:e0:08:00:45:00:00:ae SRC=100.64.73.24 DST=255.255.255.255 LEN=174 TOS=0x00 PREC=0x00 TTL=64 ID=0 PROTO=UDP SPT=19375 DPT=19375 LEN=154 Dec 20 12:02:34 DD-WRT kern.warn kernel: [ 247.260000] DROP IN=vlan2 OUT= MAC=ff:ff:ff:ff:ff:ff:bc:f2:af:54:b8:e0:08:00:45:00:00:ae SRC=100.64.73.24 DST=255.255.255.255 LEN=174 TOS=0x00 PREC=0x00 TTL=64 ID=0 PROTO=UDP SPT=19375 DPT=19375 LEN=154 Dec 20 12:02:34 DD-WRT kern.warn kernel: [ 247.540000] DROP IN=vlan2 OUT= MAC=ff:ff:ff:ff:ff:ff:bc:f2:af:54:b8:e0:08:00:45:00:00:ae SRC=100.64.73.24 DST=255.255.255.255 LEN=174 TOS=0x00 PREC=0x00 TTL=64 ID=0 PROTO=UDP SPT=19375 DPT=19375 LEN=154 Dec 20 12:02:35 DD-WRT kern.warn kernel: [ 247.790000] DROP IN=vlan2 OUT= MAC=ff:ff:ff:ff:ff:ff:bc:f2:af:54:b8:e0:08:00:45:00:00:ae SRC=100.64.73.24 DST=255.255.255.255 LEN=174 TOS=0x00 PREC=0x00 TTL=64 ID=0 PROTO=UDP SPT=19375 DPT=19375 LEN=154 Dec 20 12:02:35 DD-WRT kern.warn kernel: [ 247.970000] ACCEPT IN=br0 OUT= MAC=a0:f3:c1:5b:5a:34:00:1d:7d:d6:4f:bb:08:00 SRC=192.168.33.13 DST=192.168.33.254 LEN=52 TOS=0x00 PREC=0x00 TTL=128 ID=25192 DF PROTO=TCP SPT=58943 DPT=80 SEQ=2625049911 ACK=0 WINDOW=8192 RES=0 Dec 20 12:02:35 DD-WRT kern.warn kernel: [ 248.070000] DROP IN=vlan2 OUT= MAC=ff:ff:ff:ff:ff:ff:bc:f2:af:54:b8:e0:08:00:45:00:00:ae SRC=100.64.73.24 DST=255.255.255.255 LEN=174 TOS=0x00 PREC=0x00 TTL=64 ID=0 PROTO=UDP SPT=19375 DPT=19375 LEN=154 Dec 20 12:02:35 DD-WRT kern.warn kernel: [ 248.350000] DROP IN=vlan2 OUT= MAC=ff:ff:ff:ff:ff:ff:bc:f2:af:54:b8:e0:08:00:45:00:00:ae SRC=100.64.73.24 DST=255.255.255.255 LEN=174 TOS=0x00 PREC=0x00 TTL=64 ID=0 PROTO=UDP SPT=19375 DPT=19375 LEN=154 Dec 20 12:02:35 DD-WRT kern.warn kernel: [ 248.550000] DROP IN=vlan2 OUT= MAC=ff:ff:ff:ff:ff:ff:c0:3f:0e:28:06:a1:08:00:45:00:00:bc SRC=100.64.2.161 DST=255.255.255.255 LEN=188 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=UDP SPT=32768 DPT=1234 LEN=168 Dec 20 12:02:35 DD-WRT kern.warn kernel: [ 248.610000] DROP IN=vlan2 OUT= MAC=ff:ff:ff:ff:ff:ff:bc:f2:af:54:b8:e0:08:00:45:00:00:ae SRC=100.64.73.24 DST=255.255.255.255 LEN=174 TOS=0x00 PREC=0x00 TTL=64 ID=0 PROTO=UDP SPT=19375 DPT=19375 LEN=154 Dec 20 12:02:36 DD-WRT kern.warn kernel: [ 248.760000] ACCEPT IN=br0 OUT= MAC=a0:f3:c1:5b:5a:34:00:1d:7d:d6:4f:bb:08:00 SRC=192.168.33.13 DST=192.168.33.254 LEN=52 TOS=0x00 PREC=0x00 TTL=128 ID=25373 DF PROTO=TCP SPT=58944 DPT=80 SEQ=1575434939 ACK=0 WINDOW=8192 RES=0 Dec 20 12:02:36...

Ihr seid meine letzte Hoffnung :pray


Top
Offline Profile  
Reply with quote  
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 1 post ]  Moderator: Moderators

All times are UTC


Who is online

Users browsing this forum: Bing [Bot], Google [Bot] and 16 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group
Theme created StylerBB.net