Hi all,
I am trying to setup Openvpn between a Linux server and a windows XP clie=
nt.
It seem to communicate, but can't ping our launch applications trough tun=
nel.
Firewall is not an issue as I am trying to get this running on my home la=
n
for tests purposes.
Must be something simple, can't put the finger on it.
All I need is to run an putty/ssh on the Linux box.
Both end are running OpenVPN 2.0_beta2.
Tried with tun, with lzo, with encryption, no success.
As I am new to Openvpn and don't know what a good connection looks like,
can't really make sense of all info in the logs.
Any ideas?
Log excerpt from Linux:
Linux gentoo 2.4.25-gentoo-r2 Kernell with tun/tap compiled in
openvpn.conf:
#dev tun
dev tap
tun-mtu 1500
#mssfix 1400
fragment 1400
#ifconfig 10.1.0.1 10.1.0.2
ifconfig 10.3.0.1 255.255.255.0
#secret static.key
#comp-lzo
verb 9
Windoze XP pro:
Openvpn.conf
remote mylinux_server
#dev tun
dev tap
tun-mtu 1500
#mssfix 1400
fragment 1400
#ifconfig 10.1.0.2 10.1.0.1
ifconfig 10.3.0.2 255.255.255.0
#secret static.key
ping 10
#comp-lzo
verb 9
mute 10
Log excerpt from Linux:
/usr/local/sbin/openvpn --config /etc/openvpn/openvpn.conf
Sun May 30 08:26:41 2004 us=3D173813 Current Parameter Settings:
Sun May 30 08:26:41 2004 us=3D174128 config =3D '/etc/openvpn/openvpn.c=
onf'
Sun May 30 08:26:41 2004 us=3D174186 mode =3D 0
Sun May 30 08:26:41 2004 us=3D174238 persist_config =3D DISABLED
Sun May 30 08:26:41 2004 us=3D174290 persist_mode =3D 1
Sun May 30 08:26:41 2004 us=3D174337 show_ciphers =3D DISABLED
Sun May 30 08:26:41 2004 us=3D174384 show_digests =3D DISABLED
Sun May 30 08:26:41 2004 us=3D174430 genkey =3D DISABLED
Sun May 30 08:26:41 2004 us=3D174478 askpass =3D DISABLED
Sun May 30 08:26:41 2004 us=3D174547 show_tls_ciphers =3D DISABLED
Sun May 30 08:26:41 2004 us=3D174596 proto =3D 0
Sun May 30 08:26:41 2004 us=3D174643 local =3D '[UNDEF]'
Sun May 30 08:26:41 2004 us=3D174689 remote_list =3D NULL
Sun May 30 08:26:41 2004 us=3D174737 remote_random =3D DISABLED
Sun May 30 08:26:41 2004 us=3D174789 local_port =3D 5000
Sun May 30 08:26:41 2004 us=3D174838 remote_port =3D 5000
Sun May 30 08:26:41 2004 us=3D174884 remote_float =3D DISABLED
Sun May 30 08:26:41 2004 us=3D174931 ipchange =3D '[UNDEF]'
Sun May 30 08:26:41 2004 us=3D174977 bind_local =3D ENABLED
Sun May 30 08:26:41 2004 us=3D175024 dev =3D 'tap'
Sun May 30 08:26:41 2004 us=3D175071 dev_type =3D '[UNDEF]'
Sun May 30 08:26:41 2004 us=3D175116 dev_node =3D '[UNDEF]'
Sun May 30 08:26:41 2004 us=3D175164 tun_ipv6 =3D DISABLED
Sun May 30 08:26:41 2004 us=3D175210 ifconfig_local =3D '10.3.0.1'
Sun May 30 08:26:41 2004 us=3D175258 ifconfig_remote_netmask =3D
'255.255.255.0'
Sun May 30 08:26:41 2004 us=3D175305 ifconfig_noexec =3D DISABLED
Sun May 30 08:26:41 2004 us=3D175355 ifconfig_nowarn =3D DISABLED
Sun May 30 08:26:41 2004 us=3D175400 shaper =3D 0
Sun May 30 08:26:41 2004 us=3D175445 tun_mtu =3D 1500
Sun May 30 08:26:41 2004 us=3D175492 tun_mtu_defined =3D ENABLED
Sun May 30 08:26:41 2004 us=3D175538 link_mtu =3D 1500
Sun May 30 08:26:41 2004 us=3D175586 link_mtu_defined =3D DISABLED
Sun May 30 08:26:41 2004 us=3D175632 tun_mtu_extra =3D 32
Sun May 30 08:26:41 2004 us=3D175679 tun_mtu_extra_defined =3D ENABLED
Sun May 30 08:26:41 2004 us=3D175725 fragment =3D 1400
Sun May 30 08:26:41 2004 us=3D175773 mtu_discover_type =3D -1
Sun May 30 08:26:41 2004 us=3D175818 mtu_test =3D 0
Sun May 30 08:26:41 2004 us=3D175876 mlock =3D DISABLED
Sun May 30 08:26:41 2004 us=3D175922 inactivity_timeout =3D 0
Sun May 30 08:26:41 2004 us=3D175977 ping_send_timeout =3D 0
Sun May 30 08:26:41 2004 us=3D176023 ping_rec_timeout =3D 0
Sun May 30 08:26:41 2004 us=3D176074 ping_rec_timeout_action =3D 0
Sun May 30 08:26:41 2004 us=3D176120 ping_timer_remote =3D DISABLED
Sun May 30 08:26:41 2004 us=3D176173 persist_tun =3D DISABLED
Sun May 30 08:26:41 2004 us=3D176219 persist_local_ip =3D DISABLED
Sun May 30 08:26:41 2004 us=3D176266 persist_remote_ip =3D DISABLED
Sun May 30 08:26:41 2004 us=3D176314 persist_key =3D DISABLED
Sun May 30 08:26:41 2004 us=3D176360 mssfix =3D 1450
Sun May 30 08:26:41 2004 us=3D176407 passtos =3D DISABLED
Sun May 30 08:26:41 2004 us=3D176453 resolve_retry_seconds =3D 0
Sun May 30 08:26:41 2004 us=3D176500 connect_retry_seconds =3D 5
Sun May 30 08:26:41 2004 us=3D176546 username =3D '[UNDEF]'
Sun May 30 08:26:41 2004 us=3D176593 groupname =3D '[UNDEF]'
Sun May 30 08:26:41 2004 us=3D176638 chroot_dir =3D '[UNDEF]'
Sun May 30 08:26:41 2004 us=3D176691 cd_dir =3D '[UNDEF]'
Sun May 30 08:26:41 2004 us=3D176736 writepid =3D '[UNDEF]'
Sun May 30 08:26:41 2004 us=3D176782 up_script =3D '[UNDEF]'
Sun May 30 08:26:41 2004 us=3D176828 down_script =3D '[UNDEF]'
Sun May 30 08:26:41 2004 us=3D176875 up_restart =3D DISABLED
Sun May 30 08:26:41 2004 us=3D176921 daemon =3D DISABLED
Sun May 30 08:26:41 2004 us=3D176968 inetd =3D 0
Sun May 30 08:26:41 2004 us=3D177035 log =3D DISABLED
Sun May 30 08:26:41 2004 us=3D177088 nice =3D 0
Sun May 30 08:26:41 2004 us=3D177133 verbosity =3D 9
Sun May 30 08:26:41 2004 us=3D177186 mute =3D 0
Sun May 30 08:26:41 2004 us=3D177231 gremlin =3D DISABLED
Sun May 30 08:26:41 2004 us=3D177284 occ =3D ENABLED
Sun May 30 08:26:41 2004 us=3D177329 rcvbuf =3D 65536
Sun May 30 08:26:41 2004 us=3D177380 sndbuf =3D 65536
Sun May 30 08:26:41 2004 us=3D177426 http_proxy_server =3D '[UNDEF]'
Sun May 30 08:26:41 2004 us=3D177478 http_proxy_port =3D 0
Sun May 30 08:26:41 2004 us=3D177524 http_proxy_auth_method =3D '[UNDEF=
]'
Sun May 30 08:26:41 2004 us=3D177574 http_proxy_auth_file =3D '[UNDEF]'
Sun May 30 08:26:41 2004 us=3D177620 http_proxy_retry =3D DISABLED
Sun May 30 08:26:41 2004 us=3D177672 socks_proxy_server =3D '[UNDEF]'
Sun May 30 08:26:41 2004 us=3D177719 socks_proxy_port =3D 0
Sun May 30 08:26:41 2004 us=3D177766 socks_proxy_retry =3D DISABLED
Sun May 30 08:26:41 2004 us=3D177814 comp_lzo =3D DISABLED
Sun May 30 08:26:41 2004 us=3D177860 comp_lzo_adaptive =3D ENABLED
Sun May 30 08:26:41 2004 us=3D177907 route_script =3D '[UNDEF]'
Sun May 30 08:26:41 2004 us=3D177953 route_default_gateway =3D '[UNDEF]=
'
Sun May 30 08:26:41 2004 us=3D178002 route_noexec =3D DISABLED
Sun May 30 08:26:41 2004 us=3D178048 route_delay =3D 0
Sun May 30 08:26:41 2004 us=3D178097 route_delay_defined =3D DISABLED
Sun May 30 08:26:41 2004 us=3D178143 shared_secret_file =3D '[UNDEF]'
Sun May 30 08:26:41 2004 us=3D178190 key_direction =3D 0
Sun May 30 08:26:41 2004 us=3D178237 ciphername_defined =3D ENABLED
Sun May 30 08:26:41 2004 us=3D178284 ciphername =3D 'BF-CBC'
Sun May 30 08:26:41 2004 us=3D178330 authname_defined =3D ENABLED
Sun May 30 08:26:41 2004 us=3D178376 authname =3D 'SHA1'
Sun May 30 08:26:41 2004 us=3D178428 keysize =3D 0
Sun May 30 08:26:41 2004 us=3D178472 replay =3D ENABLED
Sun May 30 08:26:41 2004 us=3D178518 replay_window =3D 64
Sun May 30 08:26:41 2004 us=3D178565 replay_time =3D 15
Sun May 30 08:26:41 2004 us=3D178611 packet_id_file =3D '[UNDEF]'
Sun May 30 08:26:41 2004 us=3D178659 use_iv =3D ENABLED
Sun May 30 08:26:41 2004 us=3D178704 test_crypto =3D DISABLED
Sun May 30 08:26:41 2004 us=3D178752 tls_server =3D DISABLED
Sun May 30 08:26:41 2004 us=3D178798 tls_client =3D DISABLED
Sun May 30 08:26:41 2004 us=3D178849 key_method =3D 2
Sun May 30 08:26:41 2004 us=3D178895 ca_file =3D '[UNDEF]'
Sun May 30 08:26:41 2004 us=3D179047 dh_file =3D '[UNDEF]'
Sun May 30 08:26:41 2004 us=3D179097 cert_file =3D '[UNDEF]'
Sun May 30 08:26:41 2004 us=3D179145 priv_key_file =3D '[UNDEF]'
Sun May 30 08:26:41 2004 us=3D179191 cipher_list =3D '[UNDEF]'
Sun May 30 08:26:41 2004 us=3D179239 tls_verify =3D '[UNDEF]'
Sun May 30 08:26:41 2004 us=3D179285 tls_remote =3D '[UNDEF]'
Sun May 30 08:26:41 2004 us=3D179333 crl_file =3D '[UNDEF]'
Sun May 30 08:26:41 2004 us=3D179379 tls_timeout =3D 2
Sun May 30 08:26:41 2004 us=3D179431 renegotiate_bytes =3D 0
Sun May 30 08:26:41 2004 us=3D179476 renegotiate_packets =3D 0
Sun May 30 08:26:41 2004 us=3D179530 renegotiate_seconds =3D 3600
Sun May 30 08:26:41 2004 us=3D179576 handshake_window =3D 60
Sun May 30 08:26:41 2004 us=3D179623 transition_window =3D 3600
Sun May 30 08:26:41 2004 us=3D179670 single_session =3D DISABLED
Sun May 30 08:26:41 2004 us=3D179716 tls_auth_file =3D '[UNDEF]'
Sun May 30 08:26:41 2004 us=3D179764 pull =3D DISABLED
Sun May 30 08:26:41 2004 us=3D179810 ifconfig_pool_defined =3D DISABLED
Sun May 30 08:26:41 2004 us=3D179889 ifconfig_pool_start =3D 0.0.0.0
Sun May 30 08:26:41 2004 us=3D179947 ifconfig_pool_end =3D 0.0.0.0
Sun May 30 08:26:41 2004 us=3D179996 n_bcast_buf =3D 256
Sun May 30 08:26:41 2004 us=3D180044 real_hash_size =3D 256
Sun May 30 08:26:41 2004 us=3D180092 virtual_hash_size =3D 256
Sun May 30 08:26:41 2004 us=3D180139 client_connect_script =3D '[UNDEF]=
'
Sun May 30 08:26:41 2004 us=3D180188 client_disconnect_script =3D '[UND=
EF]'
Sun May 30 08:26:41 2004 us=3D180237 client_config_dir =3D '[UNDEF]'
Sun May 30 08:26:41 2004 us=3D180285 tmp_dir =3D '[UNDEF]'
Sun May 30 08:26:41 2004 us=3D180331 push_ifconfig_defined =3D DISABLED
Sun May 30 08:26:41 2004 us=3D180385 push_ifconfig_local =3D 0.0.0.0
Sun May 30 08:26:41 2004 us=3D180438 push_ifconfig_remote_netmask =3D 0=
.0.0.0
Sun May 30 08:26:41 2004 us=3D180487 enable_c2c =3D DISABLED
Sun May 30 08:26:41 2004 us=3D180533 cf_max =3D 0
Sun May 30 08:26:41 2004 us=3D180580 cf_per =3D 0
Sun May 30 08:26:41 2004 us=3D180709 OpenVPN 2.0_beta2 i686-pc-linux-gnu
[SSL] [LZO] built on May 29 2004
Sun May 30 08:26:41 2004 us=3D180858 ******* WARNING *******: all encrypt=
ion
and authentication features disabled -- all data will be tunnelled as
cleartext
Sun May 30 08:26:41 2004 us=3D180989 MTU DYNAMIC mtu=3D1400, flags=3D2, 1=
536 ->
1400
Sun May 30 08:26:41 2004 us=3D181232 MTU DYNAMIC mtu=3D1450, flags=3D2, 1=
536 ->
1450
Sun May 30 08:26:41 2004 us=3D181840 TUN/TAP device tap0 opened
Sun May 30 08:26:41 2004 us=3D181967 TUN/TAP TX queue length set to 100
Sun May 30 08:26:41 2004 us=3D182089 /sbin/ifconfig tap0 10.3.0.1 netmask
255.255.255.0 mtu 1500 broadcast 10.3.0.255
Sun May 30 08:26:41 2004 us=3D196047 Data Channel MTU parms [ L:1536 D:14=
50
EF:4 EB:0 ET:32 EL:0 ]
Sun May 30 08:26:41 2004 us=3D196197 Fragmentation MTU parms [ L:1536 D:1=
400
EF:4 EB:0 ET:32 EL:0 ]
Sun May 30 08:26:41 2004 us=3D196323 Local Options String: 'V3,dev-type
tap,link-mtu 1536,tun-mtu 1532,proto UDPv4,ifconfig 10.3.0.0
255.255.255.0,mtu-dynamic'
Sun May 30 08:26:41 2004 us=3D196384 Expected Remote Options String:
'V3,dev-type tap,link-mtu 1536,tun-mtu 1532,proto UDPv4,ifconfig 10.3.0.0
255.255.255.0,mtu-dynamic'
Sun May 30 08:26:41 2004 us=3D196526 Local Options hash (VER=3DV3): '8c18=
1479'
Sun May 30 08:26:41 2004 us=3D196621 Expected Remote Options hash (VER=3D=
V3):
'8c181479'
Sun May 30 08:26:41 2004 us=3D196744 Socket Buffers: R=3D[65535->131072]
S=3D[65535->131072]
Sun May 30 08:26:41 2004 us=3D196822 UDPv4 link local (bound): [undef]:50=
00
Sun May 30 08:26:41 2004 us=3D196875 UDPv4 link remote: [undef]
Sun May 30 08:26:41 2004 us=3D196939 EVENT event_timeout_wakeup (2/2)
Sun May 30 08:26:41 2004 us=3D197080 TIMER: coarse timer wakeup 2 seconds
Sun May 30 08:26:41 2004 us=3D197160 RANDOM USEC=3D409958
Sun May 30 08:26:41 2004 us=3D197219 SELECT TR|tw|SR|sw 2/409958
Sun May 30 08:26:41 2004 us=3D537200 select returned 1
Sun May 30 08:26:41 2004 us=3D537349 UDPv4 read returned 46
Sun May 30 08:26:41 2004 us=3D537528 UDPv4 READ [46] from
192.168.41.195:63280: DATA 00000000 ffffffff ffff00ff ff9be069 08060001
08000604 000100ff ff9be06[more...]
Sun May 30 08:26:41 2004 us=3D537601 FRAG_IN buf->len=3D42 type=3DFRAG_WH=
OLE
flags=3D0x00000000
Sun May 30 08:26:41 2004 us=3D537726 Peer Connection Initiated with
192.168.41.195:63280
Sun May 30 08:26:41 2004 us=3D537803 SELECT TR|TW|sr|sw 2/409958
Sun May 30 08:26:41 2004 us=3D537870 select returned 1
Sun May 30 08:26:41 2004 us=3D538046 TUN WRITE [42]: ffffffff ffff00ff
ff9be069 08060001 08000604 000100ff ff9be069 0a03000[more...] md5=3D7dc8d=
bbf
38248066 0dd8fb3e a2391b39
Sun May 30 08:26:41 2004 us=3D538163 write to TUN/TAP returned 42
Sun May 30 08:26:41 2004 us=3D538229 SELECT TR|tw|SR|sw 2/409958
Sun May 30 08:26:42 2004 us=3D537898 select returned 1
Sun May 30 08:26:42 2004 us=3D537984 UDPv4 read returned 46
Sun May 30 08:26:42 2004 us=3D538138 UDPv4 READ [46] from
192.168.41.195:63280: DATA 00000000 ffffffff ffff00ff ff9be069 08060001
08000604 000100ff ff9be06[more...]
Log from XP:
Sun May 30 08:31:55 2004 us=3D43176 EVENT event_timeout_wakeup (2/5)
Sun May 30 08:31:55 2004 us=3D53529 SELECT trQ|tw0|srQ|swR 2/623111
Sun May 30 08:31:55 2004 us=3D54070 select returned 2
Sun May 30 08:31:55 2004 us=3D54694 7 variation(s) on previous 10 message=
(s)
suppr
essed by --mute
Sun May 30 08:31:55 2004 us=3D54924 UDPv4 WRITE [114] to 192.168.41.1:500=
0:=20
DATA
00000000 ffffffff ffff00ff ff9be069 08004500 0060deee 00008011
46980a0[more...]
Sun May 30 08:31:55 2004 us=3D55202 WIN32 I/O: Socket Completion non-queu=
ed
succes
s [114]
Sun May 30 08:31:55 2004 us=3D55671 WIN32 I/O: Socket Send immediate retu=
rn
[114,1
14]
Sun May 30 08:31:55 2004 us=3D55911 UDPv4 write returned 114
Sun May 30 08:31:55 2004 us=3D56043 EVENT event_timeout_wakeup (2/5)
Sun May 30 08:31:55 2004 us=3D56404 WIN32 I/O: TAP Read immediate return
[1532,110
]
Sun May 30 08:31:55 2004 us=3D56643 SELECT trR|tw0|srQ|swR 2/623111
Sun May 30 08:31:55 2004 us=3D60089 select returned 2
Sun May 30 08:31:55 2004 us=3D60487 WIN32 I/O: TAP Completion non-queued
success [
110]
Sun May 30 08:31:55 2004 us=3D60717 read from TUN/TAP returned 110
Sun May 30 08:31:55 2004 us=3D61058 TUN READ [110]: ffffffff ffff00ff
ff9be069 080
04500 0060deef 00008011 46970a03 00020a0[more...] md5=3Da5bc8e2a 35ed8350
a0f5888e
b2fd6c0e
Sun May 30 08:31:55 2004 us=3D61664 4 variation(s) on previous 10 message=
(s)
suppr
essed by --mute
Sun May 30 08:31:55 2004 us=3D61876 UDPv4 WRITE [114] to 192.168.41.1:500=
0:=20
DATA
00000000 ffffffff ffff00ff ff9be069 08004500 0060deef 00008011
46970a0[more...]
Sun May 30 08:31:55 2004 us=3D62087 WIN32 I/O: Socket Completion non-queu=
ed
succes
s [114]
Sun May 30 08:31:55 2004 us=3D62597 WIN32 I/O: Socket Send immediate retu=
rn
[114,1
14]
Sun May 30 08:31:55 2004 us=3D62820 UDPv4 write returned 114
Sun May 30 08:31:55 2004 us=3D62953 EVENT event_timeout_wakeup (2/5)
Sun May 30 08:31:55 2004 us=3D63304 WIN32 I/O: TAP Read queued [1532]
Sun May 30 08:31:55 2004 us=3D63548 SELECT trQ|tw0|srQ|swR 2/623111
Sun May 30 08:31:55 2004 us=3D798697 select returned 2
Sun May 30 08:31:55 2004 us=3D801426 WIN32 I/O: TAP Completion success [1=
10]
Sun May 30 08:31:55 2004 us=3D803426 read from TUN/TAP returned 110
Sun May 30 08:31:55 2004 us=3D805254 TUN READ [110]: ffffffff ffff00ff
ff9be069 08
004500 0060def7 00008011 468f0a03 00020a0[more...] md5=3Da0bad9e2 8a7b592=
8
1c797bf
e 5bb4369c
Sun May 30 08:31:55 2004 us=3D813749 4 variation(s) on previous 10
message(s) supp
|