It is currently 17.12.2017 08:11


All times are UTC




Post new topic Reply to topic  [ 3 posts ] 
Author Message
 Post subject: New OpenVPN user requesting guidance
PostPosted: 04.01.2010 18:44 
DES
DES

Joined: 04.01.2010 18:34
Posts: 3
So I've installed OpenVPN on 2 computer on my LAN in order to test the software and configuration before putting it to use on the Internet. My ultimate goal is to run both a client & server from two different locations to run backups between 2 retail stores. I seem to have gotten all of the certificate & encryption information working properly but I'm struggling a bit with the actual connection. When the client tries to connect to the server it says:

read UDPv4: Connection reset by peer (WSAECONNRESET) (code=10054)

In my testbed LAN I'm running 10.82.220.0 / 255.255.255.0 statics and have OpenVPN using 192.168.5.0 / 255.255.255.252. I have disabled my firewalls on both PCs but I'm unsure if I'm doing the OpenVPN configuration 100% correctly. Below I've posted links to my server config / log & my client config / log. Any help with resolving this issue is greatly appreciated.

Server Config
Code:

mode server

#Connectivity
dev tun
proto tcp-server
port 22222
ifconfig 192.168.5.1 192.168.5.2
ifconfig-pool 192.168.5.1 192.168.5.6
link-mtu 1460
mssfix 0

#Routing
push "route 192.168.5.0 255.255.255.252"
#push "dhcp-option DNS 192.168.5.2"

tls-server

#Keys
dh ../keys/dh1024.pem   
ca ../keys/ca.crt   
cert ../keys/s4555server.crt   
key ../keys/s4555server.key

persist-key
keepalive 30 180

comp-lzo

verb 5
mute 20



Client Config

Code:

dev tun
remote 10.82.220.201 22222
#ifconfig 192.168.5.2 192.168.5.1
nobind
pull
link-mtu 1460
mssfix 0

tls-client
ns-cert-type server
ca ../keys/ca.crt
cert ../keys/s4555client_0.crt
key ../keys/s4555client_0.key

persist-key
ping 60
ping-restart 150

comp-lzo

verb 5
mute 20



Client Log

Code:

WRRWRWRMon Jan 04 10:24:18 2010 us=62000 Current Parameter Settings:
Mon Jan 04 10:24:18 2010 us=62000   config = 'client.ovpn'
Mon Jan 04 10:24:18 2010 us=62000   mode = 0
Mon Jan 04 10:24:18 2010 us=62000   show_ciphers = DISABLED
Mon Jan 04 10:24:18 2010 us=62000   show_digests = DISABLED
Mon Jan 04 10:24:18 2010 us=62000   show_engines = DISABLED
Mon Jan 04 10:24:18 2010 us=62000   genkey = DISABLED
Mon Jan 04 10:24:18 2010 us=62000   key_pass_file = '[UNDEF]'
Mon Jan 04 10:24:18 2010 us=62000   show_tls_ciphers = DISABLED
Mon Jan 04 10:24:18 2010 us=62000 Connection profiles [default]:
Mon Jan 04 10:24:18 2010 us=62000   proto = udp
Mon Jan 04 10:24:18 2010 us=62000   local = '[UNDEF]'
Mon Jan 04 10:24:18 2010 us=62000   local_port = 0
Mon Jan 04 10:24:18 2010 us=62000   remote = '10.82.220.201'
Mon Jan 04 10:24:18 2010 us=62000   remote_port = 22222
Mon Jan 04 10:24:18 2010 us=62000   remote_float = DISABLED
Mon Jan 04 10:24:18 2010 us=62000   bind_defined = DISABLED
Mon Jan 04 10:24:18 2010 us=62000   bind_local = DISABLED
Mon Jan 04 10:24:18 2010 us=62000   connect_retry_seconds = 5
Mon Jan 04 10:24:18 2010 us=62000   connect_timeout = 10
Mon Jan 04 10:24:18 2010 us=62000 NOTE: --mute triggered...
Mon Jan 04 10:24:18 2010 us=62000 251 variation(s) on previous 20 message(s) suppressed by --mute
Mon Jan 04 10:24:18 2010 us=62000 OpenVPN 2.1_rc22 i686-pc-mingw32 [SSL] [LZO2] [PKCS11] built on Nov 20 2009
Mon Jan 04 10:24:18 2010 us=62000 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Mon Jan 04 10:24:18 2010 us=171000 LZO compression initialized
Mon Jan 04 10:24:18 2010 us=171000 Control Channel MTU parms [ L:1460 D:138 EF:38 EB:0 ET:0 EL:0 ]
Mon Jan 04 10:24:18 2010 us=171000 Data Channel MTU parms [ L:1460 D:1460 EF:42 EB:135 ET:0 EL:0 AF:3/1 ]
Mon Jan 04 10:24:18 2010 us=171000 Local Options String: 'V4,dev-type tun,link-mtu 1460,tun-mtu 1418,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Mon Jan 04 10:24:18 2010 us=171000 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1460,tun-mtu 1418,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Mon Jan 04 10:24:18 2010 us=171000 Local Options hash (VER=V4): '918b8387'
Mon Jan 04 10:24:18 2010 us=171000 Expected Remote Options hash (VER=V4): 'e23ed549'
Mon Jan 04 10:24:18 2010 us=171000 Socket Buffers: R=[8192->8192] S=[8192->8192]
Mon Jan 04 10:24:18 2010 us=171000 UDPv4 link local: [undef]
Mon Jan 04 10:24:18 2010 us=171000 UDPv4 link remote: 10.82.220.201:22222
Mon Jan 04 10:24:18 2010 us=187000 read UDPv4: Connection reset by peer (WSAECONNRESET) (code=10054)
Mon Jan 04 10:24:20 2010 us=218000 read UDPv4: Connection reset by peer (WSAECONNRESET) (code=10054)
Mon Jan 04 10:24:22 2010 us=250000 read UDPv4: Connection reset by peer (WSAECONNRESET) (code=10054)
Mon Jan 04 10:24:23 2010 us=109000 TCP/UDP: Closing socket
Mon Jan 04 10:24:23 2010 us=109000 SIGTERM[hard,] received, process exitingServer Log


Server Log
Code:
Mon Jan 04 10:35:11 2010 us=296000 Current Parameter Settings:
Mon Jan 04 10:35:11 2010 us=296000   config = 'server.ovpn'
Mon Jan 04 10:35:11 2010 us=296000   mode = 1
Mon Jan 04 10:35:11 2010 us=296000   show_ciphers = DISABLED
Mon Jan 04 10:35:11 2010 us=296000   show_digests = DISABLED
Mon Jan 04 10:35:11 2010 us=296000   show_engines = DISABLED
Mon Jan 04 10:35:11 2010 us=296000   genkey = DISABLED
Mon Jan 04 10:35:11 2010 us=296000   key_pass_file = '[UNDEF]'
Mon Jan 04 10:35:11 2010 us=296000   show_tls_ciphers = DISABLED
Mon Jan 04 10:35:11 2010 us=296000 Connection profiles [default]:
Mon Jan 04 10:35:11 2010 us=296000   proto = tcp-server
Mon Jan 04 10:35:11 2010 us=296000   local = '[UNDEF]'
Mon Jan 04 10:35:11 2010 us=296000   local_port = 22222
Mon Jan 04 10:35:11 2010 us=296000   remote = '[UNDEF]'
Mon Jan 04 10:35:11 2010 us=296000   remote_port = 22222
Mon Jan 04 10:35:11 2010 us=296000   remote_float = DISABLED
Mon Jan 04 10:35:11 2010 us=296000   bind_defined = DISABLED
Mon Jan 04 10:35:11 2010 us=296000   bind_local = ENABLED
Mon Jan 04 10:35:11 2010 us=296000   connect_retry_seconds = 5
Mon Jan 04 10:35:11 2010 us=296000   connect_timeout = 10
Mon Jan 04 10:35:11 2010 us=296000 NOTE: --mute triggered...
Mon Jan 04 10:35:11 2010 us=296000 254 variation(s) on previous 20 message(s) suppressed by --mute
Mon Jan 04 10:35:11 2010 us=296000 OpenVPN 2.1_rc22 i686-pc-mingw32 [SSL] [LZO2] [PKCS11] built on Nov 20 2009
Mon Jan 04 10:35:11 2010 us=312000 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Mon Jan 04 10:35:11 2010 us=468000 Diffie-Hellman initialized with 1024 bit key
Mon Jan 04 10:35:11 2010 us=468000 TLS-Auth MTU parms [ L:1460 D:140 EF:40 EB:0 ET:0 EL:0 ]
Mon Jan 04 10:35:11 2010 us=468000 TAP-WIN32 device [TAP32] opened: \\.\Global\{5B52E0B6-FAD7-471D-AD25-D5F7CA0FB9B7}.tap
Mon Jan 04 10:35:11 2010 us=468000 TAP-Win32 Driver Version 9.6
Mon Jan 04 10:35:11 2010 us=468000 TAP-Win32 MTU=1500
Mon Jan 04 10:35:11 2010 us=468000 Notified TAP-Win32 driver to set a DHCP IP/netmask of 192.168.5.1/255.255.255.252 on interface {5B52E0B6-FAD7-471D-AD25-D5F7CA0FB9B7} [DHCP-serv: 192.168.5.2, lease-time: 31536000]
Mon Jan 04 10:35:11 2010 us=484000 Sleeping for 10 seconds...
Mon Jan 04 10:35:21 2010 us=484000 Successful ARP Flush on interface [3] {5B52E0B6-FAD7-471D-AD25-D5F7CA0FB9B7}
Mon Jan 04 10:35:21 2010 us=484000 Data Channel MTU parms [ L:1460 D:1460 EF:44 EB:135 ET:0 EL:0 AF:3/1 ]
Mon Jan 04 10:35:21 2010 us=484000 Listening for incoming TCP connection on [undef]:22222
Mon Jan 04 10:35:21 2010 us=484000 Socket Buffers: R=[8192->8192] S=[8192->8192]
Mon Jan 04 10:35:21 2010 us=484000 TCPv4_SERVER link local (bound): [undef]:22222
Mon Jan 04 10:35:21 2010 us=484000 TCPv4_SERVER link remote: [undef]
Mon Jan 04 10:35:21 2010 us=484000 MULTI: multi_init called, r=256 v=256
Mon Jan 04 10:35:21 2010 us=484000 IFCONFIG POOL: base=192.168.5.4 size=1
Mon Jan 04 10:35:21 2010 us=484000 MULTI: TCP INIT maxclients=60 maxevents=64
Mon Jan 04 10:35:21 2010 us=484000 Initialization Sequence Completed
Mon Jan 04 10:52:43 2010 us=609000 TCP/UDP: Closing socket
Mon Jan 04 10:52:43 2010 us=609000 Closing TUN/TAP interface
Mon Jan 04 10:52:43 2010 us=625000 SIGTERM[hard,] received, process exiting
     



Top
Offline Profile  
Reply with quote  
 Post subject: Re: New OpenVPN user requesting guidance
PostPosted: 04.01.2010 19:25 
DES
DES

Joined: 04.01.2010 18:34
Posts: 3
It seems I forgot to specify the protocol as TCP on the client so that problem is resolved. The 2 machines are connected now but I still can't ping across the VPN.

Any ideas? :)


Top
Offline Profile  
Reply with quote  
 Post subject: Re: New OpenVPN user requesting guidance
PostPosted: 04.01.2010 19:54 
DES
DES

Joined: 04.01.2010 18:34
Posts: 3
Okay so I specified the DHCP ranges incorrectly too. It's all working now, thanks for reading.


Top
Offline Profile  
Reply with quote  
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 3 posts ]  Moderator: Moderators

All times are UTC


Who is online

Users browsing this forum: No registered users and 3 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
cron
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group
Theme created StylerBB.net