It is currently 26.05.2017 20:53


All times are UTC




Post new topic Reply to topic  [ 7 posts ] 
Author Message
 Post subject: Another connection refused (net to net)
PostPosted: 07.07.2009 01:01 
DES
DES

Joined: 07.07.2009 00:49
Posts: 9
Folks

Pretty new to Zerina / OpenVPN so please bear with me... I have tried to search through the forums but I have not managed to pinpoint something relevant to my problem (although I am "happy" to see that I am not the only one having problems :) ).

Basically I am trying to setup a net to net VPN between to IP Cop boxes. I have followed the various tutorials but the VPN doesn't initiate...

Here is a log extract
Code:
02:57:52   OVPN_DediboxVPN[963]: read UDPv4    Connection refused (code=111)
02:57:52   OVPN_DediboxVPN   UDPv4 link remote: 88.191.98.49:1195
02:57:52   OVPN_DediboxVPN   UDPv4 link local (bound): [undef]:1195
02:57:52   OVPN_DediboxVPN   Expected Remote Options hash (VER=V4): '3419bd2b'
02:57:52   OVPN_DediboxVPN   Local Options hash (VER=V4): '4e241344'
02:57:52   OVPN_DediboxVPN   Data Channel MTU parms [ L:1442 D:1442 EF:42 EB:135 ET:0 EL:0 AF:3/1 ]
02:57:52   OVPN_DediboxVPN   /sbin/route add -net 172.16.1.0 netmask 255.255.255.0 gw 10.66.88.2
02:57:52   OVPN_DediboxVPN   /sbin/ifconfig tun0 10.66.88.1 pointopoint 10.66.88.2 mtu 1400
02:57:52   OVPN_DediboxVPN   TUN/TAP device tun0 opened
02:57:52   OVPN_DediboxVPN   Control Channel MTU parms [ L:1442 D:138 EF:38 EB:0 ET:0 EL:0 ]
02:57:52   OVPN_DediboxVPN   WARNING: normally if you use --mssfix and/or --fragment, you should also set --t un-mtu 1500 (currently it is 1400)
02:57:52   OVPN_DediboxVPN   LZO compression initialized
02:57:52   OVPN_DediboxVPN   Diffie-Hellman initialized with 1024 bit key
02:57:50   OVPN_DediboxVPN   Restart pause, 2 second(s)
02:57:50   OVPN_DediboxVPN   SIGUSR1[soft,ping-restart] received, process restarting
02:57:50   OVPN_DediboxVPN   Closing TUN/TAP interface
02:57:50   OVPN_DediboxVPN   /sbin/route del -net 172.16.1.0 netmask 255.255.255.0
02:57:50   OVPN_DediboxVPN   TCP/UDP: Closing socket
02:57:50   OVPN_DediboxVPN   [UNDEF] Inactivity timeout (--ping-restart), restarting

Any idea / pointer would be most appreciated

Regards

alex


Top
Offline Profile  
Reply with quote  
 Post subject: Re: Another connection refused (net to net)
PostPosted: 07.07.2009 16:11 
DES
DES

Joined: 07.07.2009 00:49
Posts: 9
Hmm... not the right place to ask ?! :shock:


Top
Offline Profile  
Reply with quote  
 Post subject: Re: Another connection refused (net to net)
PostPosted: 08.07.2009 05:59 
Profi
Profi

Joined: 23.10.2007 12:10
Posts: 2183
few information..short log..not any config-idea...

what did you expect ??

F.


Top
Offline Profile  
Reply with quote  
 Post subject: Re: Another connection refused (net to net)
PostPosted: 08.07.2009 09:19 
DES
DES

Joined: 07.07.2009 00:49
Posts: 9
Quote:
few information..short log.. not any config-idea...

Well, let's see what I can add here...

My aim is to setup a vpn between to IPCop boxes, both running the latest version of IpCop and Zerina.

Both are configured in an absolutely basic RED/GREEN setup with one public RED IP and a private, nated, GREEN subnet.

Box1 subnet is 172.16.1.0/24 and box2 is 172.16.100.0/24 (yes two class C using class B reserved IPs).

As for the setup I have followed the instructions in the Zerina « howto ».

I have working “roadwarrior” access on both machines.

Now I want to setup a net to net VPN.

Machine 1 is the client and the config can not be expanded

Machine 2 – the server - has the following

Code:
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3 (0x3)
        Signature Algorithm: md5WithRSAEncryption
        Issuer: C=CH, O=Sunapsis, CN=Sunapsis CA/emailAddress=admin@sunapsis.ch
        Validity
            Not Before: Jul  7 16:20:00 2009 GMT
            Not After : May 18 06:54:40 2025 GMT
        Subject: C=CH, O=Sunapsis, CN=ipcop2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
            RSA Public Key: (1024 bit)
                Modulus (1024 bit):
                    00:e6:60:d5:6f:89:d7:10:63:ec:fc:dc:4f:95:ca:
                    ce:79:f5:99:18:4b:c7:30:20:bb:03:9c:92:52:c8:
                    48:3b:d6:3e:20:05:1f:f6:e2:4f:c2:90:1b:e8:cc:
                    1f:db:b2:49:b1:64:02:00:21:cf:c3:2f:59:1e:4c:
                    a1:a6:a2:16:85:f8:8c:70:32:8b:ff:77:d2:29:d6:
                    ff:38:c4:f3:4b:6b:74:51:80:e4:18:92:0b:dd:30:
                    25:72:88:4a:9c:ff:99:f9:0f:a1:8c:68:cc:61:8a:
                    b4:50:ac:c6:4b:1a:75:45:4b:65:01:3c:6b:07:72:
                    2a:48:d8:c8:91:81:cb:79:7b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints:
                CA:FALSE
            Netscape Comment:
                OpenSSL Generated Certificate
            X509v3 Subject Key Identifier:
                37:38:03:27:58:B7:87:93:45:7A:28:60:6F:D6:C5:61:28:9B:CB:18
            X509v3 Authority Key Identifier:
                keyid:C5:31:8D:0B:6E:26:F1:D7:CC:3B:64:3E:D8:95:95:91:E8:07:F7:F9
                DirName:/C=CH/O=Sunapsis/CN=Sunapsis CA/emailAddress=admin@sunapsis.ch
                serial:F2:17:26:CF:3B:14:A9:61

    Signature Algorithm: md5WithRSAEncryption
        b9:87:6d:89:ed:73:6d:24:13:16:7a:24:e2:14:d1:d6:3a:83:
        93:0d:52:9c:00:0c:d1:17:fc:36:59:3e:aa:e5:d4:59:3b:d9:
        5a:82:a1:e3:6a:6f:7a:8c:52:88:85:89:10:27:02:5c:45:13:
        64:4c:71:c1:62:8f:6d:b7:61:0e:eb:11:30:d9:c5:47:4f:36:
        c1:cc:6f:10:fa:c9:70:cc:1a:f8:97:4e:32:4e:02:43:80:a5:
        53:e7:16:f7:4e:7c:38:9b:36:e2:30:d8:57:ba:30:62:0f:7b:
        17:e6:8e:8f:a2:97:aa:7d:e0:b7:f9:70:01:58:6d:dc:4e:bc:
        63:e8:d4:d7:b4:2c:51:3c:26:fa:a0:2f:c4:91:0b:df:37:47:
        12:71:5c:3d:56:6b:1d:a7:fa:33:69:d2:6a:4a:42:ff:de:69:
        8b:a7:95:a1:58:07:54:cf:0d:18:fc:77:8a:7b:29:e4:d2:f9:
        51:ce:8c:f8:c9:34:18:d8:d5:d8:0c:31:e8:25:d1:8c:05:a8:
        9f:65:da:ac:88:d8:7b:91:6a:f5:e2:0e:1c:ab:78:0a:b6:ba:
        16:eb:10:68:05:a9:df:0a:9f:82:ca:3d:30:e4:6b:1a:80:9e:
        a4:54:1a:2c:c2:cd:8c:66:c0:0b:fe:f7:ab:34:5b:cd:5c:9a:
        02:ad:1b:f2
-----BEGIN CERTIFICATE-----
MIIDaDCCAlCgAwIBAgIBAzANBgkqhkiG9w0BAQQFADBYMQswCQYDVQQGEwJDSDER
MA8GA1UEChMIU3VuYXBzaXMxFDASBgNVBAMTC1N1bmFwc2lzIENBMSAwHgYJKoZI
hvcNAQkBFhFhZG1pbkBzdW5hcHNpcy5jaDAeFw0wOTA3MDcxNjIwMDBaFw0yNTA1
MTgwNjU0NDBaMDExCzAJBgNVBAYTAkNIMREwDwYDVQQKEwhTdW5hcHNpczEPMA0G
A1UEAxMGaXBjb3AyMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDmYNVvidcQ
Y+z83E+Vys559ZkYS8cwILsDnJJSyEg71j4gBR/24k/CkBvozB/bskmxZAIAIc/D
L1keTKGmohaF+IxwMov/d9Ip1v84xPNLa3RRgOQYkgvdMCVyiEqc/5n5D6GMaMxh
irRQrMZLGnVFS2UBPGsHcipI2MiRgct5ewIDAQABo4HnMIHkMAkGA1UdEwQCMAAw
LAYJYIZIAYb4QgENBB8WHU9wZW5TU0wgR2VuZXJhdGVkIENlcnRpZmljYXRlMB0G
A1UdDgQWBBQ3OAMnWLeHk0V6KGBv1sVhKJvLGDCBiQYDVR0jBIGBMH+AFMUxjQtu
JvHXzDtkPtiVlZHoB/f5oVykWjBYMQswCQYDVQQGEwJDSDERMA8GA1UEChMIU3Vu
YXBzaXMxFDASBgNVBAMTC1N1bmFwc2lzIENBMSAwHgYJKoZIhvcNAQkBFhFhZG1p
bkBzdW5hcHNpcy5jaIIJAPIXJs87FKlhMA0GCSqGSIb3DQEBBAUAA4IBAQC5h22J
7XNtJBMWeiTiFNHWOoOTDVKcAAzRF/w2WT6q5dRZO9lagqHjam96jFKIhYkQJwJc
RRNkTHHBYo9tt2EO6xEw2cVHTzbBzG8Q+slwzBr4l04yTgJDgKVT5xb3Tnw4mzbi
MNhXujBiD3sX5o6PopeqfeC3+XABWG3cTrxj6NTXtCxRPCb6oC/EkQvfN0cScVw9
Vmsdp/ozadJqSkL/3mmLp5WhWAdUzw0Y/HeKeynk0vlRzoz4yTQY2NXYDDHoJdGM
BaifZdqsiNh7kWr14g4cq3gKtroW6xBoBanfCp+Cyj0w5GsagJ6kVBosws2MZsAL
/verNFvNXJoCrRvy
-----END CERTIFICATE-----

(I will eventually issue news certs !)

The config file reads

Code:
dev tun
tun-mtu 1500
proto udp
port 1195
ifconfig 10.44.245.2 10.44.245.1
remote ipcop2.sunapsis.ch
tls-client
pkcs12 DediboxVPN.p12
route 172.16.100.0 255.255.255.0
keepalive 10 60
cipher BF-CBC
comp-lzo
verb 9
#172.16.1.0/255.255.255.0


Now when I try to launch the VPN I have a relatively sparse log as posted earlier and reposted here

Server machine

Code:
11:11:08OVPN_DediboxVPNI/O WAIT TR|Tw|SR|Sw [1/250950] 11:11:08OVPN_DediboxVPNPO_CTL rwflags=0x0001 ev=5 arg=0x08094a20 11:11:08OVPN_DediboxVPNPO_CTL rwflags=0x0001 ev=4 arg=0x08094a1c 11:11:08OVPN_DediboxVPNTLS: tls_multi_process: i=2 state=S_UNDEF, mysid=00000000 00000000, stored-sid=0 0000000 00000000, stored-ip=[undef] 11:11:08OVPN_DediboxVPNTLS: tls_multi_process: i=1 state=S_INITIAL, mysid=85d3a07d 7dd8e966, stored-sid =00000000 00000000, stored-ip=[undef] 11:11:08OVPN_DediboxVPNTLS: tls_process: timeout set to 2 11:11:08OVPN_DediboxVPNACK reliable_send_timeout 2 [1] 0 11:11:08OVPN_DediboxVPNACK reliable_can_send active=1 current=0 : [1] 0 11:11:08OVPN_DediboxVPNTLS: tls_process: chg=0 ks=S_PRE_START lame=S_UNDEF to_link->len=0 wakeup=604800 11:11:08OVPN_DediboxVPNTLS: tls_multi_process: i=0 state=S_PRE_START, mysid=76793b3f db3eb060, stored-s id=00000000 00000000, stored-ip=88.191.98.49:1195 11:11:08OVPN_DediboxVPN[21584]: UDPv4 READ [-1] from DATA UNDEF len=-1 11:11:08OVPN_DediboxVPN[21584]: read UDPv4 Connection refused (code=111) 11:11:08OVPN_DediboxVPNUDPv4 read returned -1 11:11:08OVPN_DediboxVPNI/O WAIT status=0x0001 11:11:08OVPN_DediboxVPN event_wait returned 1 11:11:08OVPN_DediboxVPNPO_WAIT[0,0] fd=4 rev=0x00000008 rwflags=0x0001 arg=0x08094a1c 11:11:08OVPN_DediboxVPNI/O WAIT TR|Tw|SR|Sw [1/250950] 11:11:08OVPN_DediboxVPNPO_CTL rwflags=0x0001 ev=5 arg=0x08094a20 11:11:08OVPN_DediboxVPNPO_CTL rwflags=0x0001 ev=4 arg=0x08094a1c 11:11:08OVPN_DediboxVPNTLS: tls_multi_process: i=2 state=S_UNDEF, mysid=00000000 00000000, stored-sid=0 0000000 00000000, stored-ip=[undef] 11:11:08OVPN_DediboxVPNTLS: tls_multi_process: i=1 state=S_INITIAL, mysid=85d3a07d 7dd8e966, stored-sid =00000000 00000000, stored-ip=[undef] 11:11:08OVPN_DediboxVPNTLS: tls_process: timeout set to 2 11:11:08OVPN_DediboxVPNACK reliable_send_timeout 2 [1] 0 11:11:08OVPN_DediboxVPNACK reliable_can_send active=1 current=0 : [1] 0 11:11:08OVPN_DediboxVPNTLS: tls_process: chg=0 ks=S_PRE_START lame=S_UNDEF to_link->len=0 wakeup=604800 11:11:08OVPN_DediboxVPNTLS: tls_multi_process: i=0 state=S_PRE_START, mysid=76793b3f db3eb060, stored-s id=00000000 00000000, stored-ip=88.191.98.49:1195 11:11:08OVPN_DediboxVPNUDPv4 write returned 14 11:11:08OVPN_DediboxVPNUDPv4 WRITE [14] to 88.191.98.49:1195: P_CONTROL_HARD_RESET_SERVER_V2 kid=0 sid= 76793b3f db3eb060 [ ] pid=0 DATA 11:11:08OVPN_DediboxVPNI/O WAIT status=0x0002 11:11:08OVPN_DediboxVPN event_wait returned 1 11:11:08OVPN_DediboxVPNPO_WAIT[0,0] fd=4 rev=0x00000004 rwflags=0x0002 arg=0x08094a1c 11:11:08OVPN_DediboxVPNI/O WAIT Tr|Tw|SR|SW [1/250950] 11:11:08OVPN_DediboxVPNPO_CTL rwflags=0x0000 ev=5 arg=0x08094a20 11:11:08OVPN_DediboxVPNPO_CTL rwflags=0x0003 ev=4 arg=0x08094a1c 11:11:08OVPN_DediboxVPNRANDOM USEC=250950 11:11:08OVPN_DediboxVPNTLS: tls_multi_process: i=2 state=S_UNDEF, mysid=00000000 00000000, stored-sid=0 0000000 00000000, stored-ip=[undef] 11:11:08OVPN_DediboxVPNTLS: tls_multi_process: i=1 state=S_INITIAL, mysid=85d3a07d 7dd8e966, stored-sid =00000000 00000000, stored-ip=[undef] 11:11:08OVPN_DediboxVPNTLS: tls_process: timeout set to 2 11:11:08OVPN_DediboxVPNACK reliable_send_timeout 2 [1] 0 11:11:08OVPN_DediboxVPNReliable -> TCP/UDP 11:11:08OVPN_DediboxVPNACK reliable_send ID 0 (size=4 to=2) 11:11:08OVPN_DediboxVPNACK reliable_can_send active=1 current=1 : [1] 0 11:11:08OVPN_DediboxVPNTLS: tls_process: chg=0 ks=S_PRE_START lame=S_UNDEF to_link->len=0 wakeup=604800 11:11:08OVPN_DediboxVPNTLS: tls_multi_process: i=0 state=S_PRE_START, mysid=76793b3f db3eb060, stored-s id=00000000 00000000, stored-ip=88.191.98.49:1195 11:11:08OVPN_DediboxVPNTIMER: coarse timer wakeup 1 seconds 11:11:08OVPN_DediboxVPNI/O WAIT status=0x0020 11:11:08OVPN_DediboxVPN event_wait returned 0 11:11:07OVPN_DediboxVPNI/O WAIT TR|Tw|SR|Sw [1/76551] 11:11:07OVPN_DediboxVPNPO_CTL rwflags=0x0001 ev=5 arg=0x08094a20 11:11:07OVPN_DediboxVPNPO_CTL rwflags=0x0001 ev=4 arg=0x08094a1c 11:11:07OVPN_DediboxVPNTLS: tls_multi_process: i=2 state=S_UNDEF, mysid=00000000 00000000, stored-sid=0 0000000 00000000, stored-ip=[undef] 11:11:07OVPN_DediboxVPNTLS: tls_multi_process: i=1 state=S_INITIAL, mysid=85d3a07d 7dd8e966, stored-sid =00000000 00000000, stored-ip=[undef] 11:11:07OVPN_DediboxVPNTLS: tls_process: timeout set to 1 11:11:07OVPN_DediboxVPNACK reliable_send_timeout 1 [1] 0 11:11:07OVPN_DediboxVPNACK reliable_can_send active=1 current=0 : [1] 0 11:11:07OVPN_DediboxVPNTLS: tls_process: chg=0 ks=S_PRE_START lame=S_UNDEF to_link->len=0 wakeup=604800 11:11:07OVPN_DediboxVPNTLS: tls_multi_process: i=0 state=S_PRE_START, mysid=76793b3f db3eb060, stored-s id=00000000 00000000, stored-ip=88.191.98.49:1195 11:11:07OVPN_DediboxVPNTIMER: coarse timer wakeup 1 seconds 11:11:07OVPN_DediboxVPNTCP/UDP: Incoming packet rejected from 88.191.98.49:35912[2], expected peer addr ess: 88.191.98.49:1195 (allow this incoming source address/port by removing --re mote or adding --float) 11:11:07OVPN_DediboxVPNUDPv4 READ [14] from 88.191.98.49:35912: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 si d=51f18c7e 0bfe4e43 [ ] pid=0 DATA 11:11:07OVPN_DediboxVPNUDPv4 read returned 14 11:11:07OVPN_DediboxVPNI/O WAIT status=0x0001 11:11:07OVPN_DediboxVPN event_wait returned 1 11:11:07OVPN_DediboxVPNPO_WAIT[0,0] fd=4 rev=0x00000001 rwflags=0x0001 arg=0x08094a1c 11:11:06OVPN_DediboxVPNI/O WAIT TR|Tw|SR|Sw [1/76551] 11:11:06OVPN_DediboxVPNPO_CTL rwflags=0x0001 ev=5 arg=0x08094a20 11:11:06OVPN_DediboxVPNPO_CTL rwflags=0x0001 ev=4 arg=0x08094a1c 11:11:06OVPN_DediboxVPNTLS: tls_multi_process: i=2 state=S_UNDEF, mysid=00000000 00000000, stored-sid=0 0000000 00000000, stored-ip=[undef] 11:11:06OVPN_DediboxVPNTLS: tls_multi_process: i=1 state=S_INITIAL, mysid=85d3a07d 7dd8e966, stored-sid =00000000 00000000, stored-ip=[undef] 11:11:06OVPN_DediboxVPNTLS: tls_process: timeout set to 2 11:11:06OVPN_DediboxVPNACK reliable_send_timeout 2 [1] 0 11:11:06OVPN_DediboxVPNACK reliable_can_send active=1 current=0 : [1] 0 11:11:06OVPN_DediboxVPNTLS: tls_process: chg=0 ks=S_PRE_START lame=S_UNDEF to_link->len=0 wakeup=604800 11:11:06OVPN_DediboxVPNTLS: tls_multi_process: i=0 state=S_PRE_START, mysid=76793b3f db3eb060, stored-s id=00000000 00000000, stored-ip=88.191.98.49:1195 11:11:06OVPN_DediboxVPN[21584]: UDPv4 READ [-1] from DATA UNDEF len=-1 11:11:06OVPN_DediboxVPN[21584]: read UDPv4 Connection refused (code=111) 11:11:06OVPN_DediboxVPNUDPv4 read returned -1 11:11:06OVPN_DediboxVPNI/O WAIT status=0x0001 11:11:06OVPN_DediboxVPN event_wait returned 1 11:11:06OVPN_DediboxVPNPO_WAIT[0,0] fd=4 rev=0x00000008 rwflags=0x0001 arg=0x08094a1c 11:11:06OVPN_DediboxVPNI/O WAIT TR|Tw|SR|Sw [1/76551] 11:11:06OVPN_DediboxVPNPO_CTL rwflags=0x0001 ev=5 arg=0x08094a20 11:11:06OVPN_DediboxVPNPO_CTL rwflags=0x0001 ev=4 arg=0x08094a1c 11:11:06OVPN_DediboxVPNTLS: tls_multi_process: i=2 state=S_UNDEF, mysid=00000000 00000000, stored-sid=0 0000000 00000000, stored-ip=[undef] 11:11:06OVPN_DediboxVPNTLS: tls_multi_process: i=1 state=S_INITIAL, mysid=85d3a07d 7dd8e966, stored-sid =00000000 00000000, stored-ip=[undef] 11:11:06OVPN_DediboxVPNTLS: tls_process: timeout set to 2 11:11:06OVPN_DediboxVPNACK reliable_send_timeout 2 [1] 0 11:11:06OVPN_DediboxVPNACK reliable_can_send active=1 current=0 : [1] 0 11:11:06OVPN_DediboxVPNTLS: tls_process: chg=0 ks=S_PRE_START lame=S_UNDEF to_link->len=0 wakeup=604800 11:11:06OVPN_DediboxVPNTLS: tls_multi_process: i=0 state=S_PRE_START, mysid=76793b3f db3eb060, stored-s id=00000000 00000000, stored-ip=88.191.98.49:1195 11:11:06OVPN_DediboxVPNUDPv4 write returned 14 11:11:06OVPN_DediboxVPNUDPv4 WRITE [14] to 88.191.98.49:1195: P_CONTROL_HARD_RESET_SERVER_V2 kid=0 sid= 76793b3f db3eb060 [ ] pid=0 DATA 11:11:06OVPN_DediboxVPNI/O WAIT status=0x0002 11:11:06OVPN_DediboxVPN event_wait returned 1 11:11:06OVPN_DediboxVPNPO_WAIT[0,0] fd=4 rev=0x00000004 rwflags=0x0002 arg=0x08094a1c 11:11:06OVPN_DediboxVPNI/O WAIT Tr|Tw|SR|SW [1/76551] 11:11:06OVPN_DediboxVPNPO_CTL rwflags=0x0000 ev=5 arg=0x08094a20 11:11:06OVPN_DediboxVPNPO_CTL rwflags=0x0003 ev=4 arg=0x08094a1c 11:11:06OVPN_DediboxVPNTLS: tls_multi_process: i=2 state=S_UNDEF, mysid=00000000 00000000, stored-sid=0 0000000 00000000, stored-ip=[undef] 11:11:06OVPN_DediboxVPNTLS: tls_multi_process: i=1 state=S_INITIAL, mysid=85d3a07d 7dd8e966, stored-sid =00000000 00000000, stored-ip=[undef] 11:11:06OVPN_DediboxVPNTLS: tls_process: timeout set to 2 11:11:06OVPN_DediboxVPNACK reliable_send_timeout 2 [1] 0 11:11:06OVPN_DediboxVPNReliable -> TCP/UDP 11:11:06OVPN_DediboxVPNACK reliable_send ID 0 (size=4 to=2) 11:11:06OVPN_DediboxVPNACK reliable_can_send active=1 current=1 : [1] 0 11:11:06OVPN_DediboxVPNTLS: tls_process: chg=0 ks=S_PRE_START lame=S_UNDEF to_link->len=0 wakeup=604800 11:11:06OVPN_DediboxVPNTLS: tls_multi_process: i=0 state=S_PRE_START, mysid=76793b3f db3eb060, stored-s id=00000000 00000000, stored-ip=88.191.98.49:1195 11:11:06OVPN_DediboxVPNTIMER: coarse timer wakeup 1 seconds 11:11:06OVPN_DediboxVPNI/O WAIT status=0x0020 11:11:06OVPN_DediboxVPN event_wait returned 0 11:11:05OVPN_DediboxVPNI/O WAIT TR|Tw|SR|Sw [1/76551] 11:11:05OVPN_DediboxVPNPO_CTL rwflags=0x0001 ev=5 arg=0x08094a20 11:11:05OVPN_DediboxVPNPO_CTL rwflags=0x0001 ev=4 arg=0x08094a1c 11:11:05OVPN_DediboxVPNTLS: tls_multi_process: i=2 state=S_UNDEF, mysid=00000000 00000000, stored-sid=0 0000000 00000000, stored-ip=[undef] 11:11:05OVPN_DediboxVPNTLS: tls_multi_process: i=1 state=S_INITIAL, mysid=85d3a07d 7dd8e966, stored-sid =00000000 00000000, stored-ip=[undef] 11:11:05OVPN_DediboxVPNTLS: tls_process: timeout set to 1 11:11:05OVPN_DediboxVPNACK reliable_send_timeout 1 [1] 0 11:11:05OVPN_DediboxVPNACK reliable_can_send active=1 current=0 : [1] 0 11:11:05OVPN_DediboxVPNTLS: tls_process: chg=0 ks=S_PRE_START lame=S_UNDEF to_link->len=0 wakeup=604800 11:11:05OVPN_DediboxVPNTLS: tls_multi_process: i=0 state=S_PRE_START, mysid=76793b3f db3eb060, stored-s id=00000000 00000000, stored-ip=88.191.98.49:1195 11:11:05OVPN_DediboxVPNTIMER: coarse timer wakeup 1 seconds 11:11:05OVPN_DediboxVPNI/O WAIT status=0x0020 11:11:05OVPN_DediboxVPN event_wait returned 0 11:11:04OVPN_DediboxVPNI/O WAIT TR|Tw|SR|Sw [1/76551] 11:11:04OVPN_DediboxVPNPO_CTL rwflags=0x0001 ev=5 arg=0x08094a20 11:11:04OVPN_DediboxVPNPO_CTL rwflags=0x0001 ev=4 arg=0x08094a1c 11:11:04OVPN_DediboxVPNTLS: tls_multi_process: i=2 state=S_UNDEF, mysid=00000000 00000000, stored-sid=0 0000000 00000000, stored-ip=[undef] 11:11:04OVPN_DediboxVPNTLS: tls_multi_process: i=1 state=S_INITIAL, mysid=85d3a07d 7dd8e966, stored-sid =00000000 00000000, stored-ip=[undef] 11:11:04OVPN_DediboxVPNTLS: tls_process: timeout set to 2 11:11:04OVPN_DediboxVPNACK reliable_send_timeout 2 [1] 0 11:11:04OVPN_DediboxVPNACK reliable_can_send active=1 current=0 : [1] 0 11:11:04OVPN_DediboxVPNTLS: tls_process: chg=0 ks=S_PRE_START lame=S_UNDEF to_link->len=0 wakeup=604800 11:11:04OVPN_DediboxVPNTLS: tls_multi_process: i=0 state=S_PRE_START, mysid=76793b3f db3eb060, stored-s id=00000000 00000000, stored-ip=88.191.98.49:1195 11:11:04OVPN_DediboxVPNTCP/UDP: Incoming packet rejected from 88.191.98.49:35912[2], expected peer addr ess: 88.191.98.49:1195 (allow this incoming source address/port by removing --re mote or adding --float) 11:11:04OVPN_DediboxVPNUDPv4 READ [14] from 88.191.98.49:35912: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 si d=51f18c7e 0bfe4e43 [ ] pid=0 DATA 11:11:04OVPN_DediboxVPNUDPv4 read returned 14 11:11:04OVPN_DediboxVPNI/O WAIT status=0x0001 11:11:04OVPN_DediboxVPN event_wait returned 1 11:11:04OVPN_DediboxVPNPO_WAIT[0,0] fd=4 rev=0x00000001 rwflags=0x0001 arg=0x08094a1c 11:11:04OVPN_DediboxVPNI/O WAIT TR|Tw|SR|Sw [1/76551] 11:11:04OVPN_DediboxVPNPO_CTL rwflags=0x0001 ev=5 arg=0x08094a20 11:11:04OVPN_DediboxVPNPO_CTL rwflags=0x0001 ev=4 arg=0x08094a1c 11:11:04OVPN_DediboxVPNTLS: tls_multi_process: i=2 state=S_UNDEF, mysid=00000000 00000000, stored-sid=0 0000000 00000000, stored-ip=[undef] 11:11:04OVPN_DediboxVPNTLS: tls_multi_process: i=1 state=S_INITIAL, mysid=85d3a07d 7dd8e966, stored-sid =00000000 00000000, stored-ip=[undef] 11:11:04OVPN_DediboxVPNTLS: tls_process: timeout set to 2 11:11:04OVPN_DediboxVPNACK reliable_send_timeout 2 [1] 0 11:11:04OVPN_DediboxVPNACK reliable_can_send active=1 current=0 : [1] 0 11:11:04OVPN_DediboxVPNTLS: tls_process: chg=0 ks=S_PRE_START lame=S_UNDEF to_link->len=0 wakeup=604800 11:11:04OVPN_DediboxVPNTLS: tls_multi_process: i=0 state=S_PRE_START, mysid=76793b3f db3eb060, stored-s id=00000000 00000000, stored-ip=88.191.98.49:1195 11:11:04OVPN_DediboxVPN[21584]: UDPv4 READ [-1] from DATA UNDEF len=-1



Client machine

Code:
11:05:14OVPN_DediboxVPNUDPv4 link remote: 88.191.104.26:1195 11:05:14OVPN_DediboxVPNUDPv4 link local (bound): [undef]:1195 11:05:14OVPN_DediboxVPNExpected Remote Options hash (VER=V4): '54a0a091' 11:05:14OVPN_DediboxVPNLocal Options hash (VER=V4): '80b2e7d6' 11:05:14OVPN_DediboxVPNData Channel MTU parms [ L:1542 D:1450 EF:42 EB:135 ET:0 EL:0 AF:3/1 ] 11:05:14OVPN_DediboxVPN/sbin/route add -net 172.16.100.0 netmask 255.255.255.0 gw 10.44.245.1 11:05:14OVPN_DediboxVPN/sbin/ifconfig tun1 10.44.245.2 pointopoint 10.44.245.1 mtu 1500 11:05:14OVPN_DediboxVPNTUN/TAP device tun1 opened 11:05:14OVPN_DediboxVPNControl Channel MTU parms [ L:1542 D:138 EF:38 EB:0 ET:0 EL:0 ] 11:05:14OVPN_DediboxVPNLZO compression initialized 11:05:14OVPN_DediboxVPNWARNING: file '/var/ipcop/ovpn/n2nconf/DediboxVPN/DediboxVPN.p12' is group or ot hers accessible 11:05:14OVPN_DediboxVPNWARNING: No server certificate verification method has been enabled. See http:/ /openvpn.net/howto.html#mitm for more info. 11:05:12OVPN_DediboxVPNRestart pause, 2 second(s) 11:05:12OVPN_DediboxVPNSIGUSR1[soft,ping-restart] received, process restarting 11:05:12OVPN_DediboxVPNClosing TUN/TAP interface 11:05:12OVPN_DediboxVPN/sbin/route del -net 172.16.100.0 netmask 255.255.255.0 11:05:12OVPN_DediboxVPNTCP/UDP: Closing socket 11:05:12OVPN_DediboxVPN[UNDEF] Inactivity timeout (--ping-restart), restarting 11:04:12OVPN_DediboxVPNUDPv4 link remote: 88.191.104.26:1195 11:04:12OVPN_DediboxVPNUDPv4 link local (bound): [undef]:1195 11:04:12OVPN_DediboxVPNExpected Remote Options hash (VER=V4): '54a0a091' 11:04:12OVPN_DediboxVPNLocal Options hash (VER=V4): '80b2e7d6' 11:04:12OVPN_DediboxVPNData Channel MTU parms [ L:1542 D:1450 EF:42 EB:135 ET:0 EL:0 AF:3/1 ] 11:04:12OVPN_DediboxVPN/sbin/route add -net 172.16.100.0 netmask 255.255.255.0 gw 10.44.245.1 11:04:12OVPN_DediboxVPN/sbin/ifconfig tun1 10.44.245.2 pointopoint 10.44.245.1 mtu 1500 11:04:12OVPN_DediboxVPNTUN/TAP device tun1 opened 11:04:12OVPN_DediboxVPNControl Channel MTU parms [ L:1542 D:138 EF:38 EB:0 ET:0 EL:0 ] 11:04:12OVPN_DediboxVPNLZO compression initialized 11:04:12OVPN_DediboxVPNWARNING: file '/var/ipcop/ovpn/n2nconf/DediboxVPN/DediboxVPN.p12' is group or ot hers accessible 11:04:12OVPN_DediboxVPNWARNING: No server certificate verification method has been enabled. See http:/ /openvpn.net/howto.html#mitm for more info. 11:04:10OVPN_DediboxVPNRestart pause, 2 second(s)


I guess the "key" problem is the hash mismatch

but I might be missing something else…

Anyway some help / pointer would be most appreciated. If there is more I can post just shout !

Regards,

alex


Top
Offline Profile  
Reply with quote  
 Post subject: Re: Another connection refused (net to net)
PostPosted: 08.07.2009 11:16 
Profi
Profi

Joined: 23.10.2007 12:10
Posts: 2183
Roadwarriors also connecting on port 1195 ?

F.


Top
Offline Profile  
Reply with quote  
 Post subject: Re: Another connection refused (net to net)
PostPosted: 08.07.2009 12:31 
DES
DES

Joined: 07.07.2009 00:49
Posts: 9
Roadwarior connecting 1194.

Thanks for your interest.

Regards


Top
Offline Profile  
Reply with quote  
 Post subject: Re: Another connection refused (net to net)
PostPosted: 08.07.2009 12:57 
Profi
Profi

Joined: 23.10.2007 12:10
Posts: 2183
hm ... I am not really shure..but believe, that one Server can only run one port!

you should set both to same port...if I remeber right...


F.


Top
Offline Profile  
Reply with quote  
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 7 posts ]  Moderator: Moderators

All times are UTC


Who is online

Users browsing this forum: No registered users and 1 guest


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group
Theme created StylerBB.net