[Openvpn-users] OpenVPN connection reset after 4 minutes

[Daniel Z. <dan...@gm...>]

Hi there,

I am working my personal OpenVPN setup.

Firstly I installed openvpn on a VPS, then install openvpn client on my pc.
The VPN works fine but unfortunately the connection is always reset after 4
minutes.

The configuration must be right otherwise the connection won't be
established. But there must be something wrong. I have double checked the
configuration against the tutorial for quite a few times but didn't find
anything. Will appreciate if someone give me some hints. Many thanks in
advnace.

Following is the log on client side:
Tue Feb 16 22:33:47 2010 OpenVPN 2.1.1 i686-pc-mingw32 [SSL] [LZO2] [PKCS11]
built on Dec 11 2009
Tue Feb 16 22:33:47 2010 WARNING: No server certificate verification method
has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
Tue Feb 16 22:33:47 2010 NOTE: OpenVPN 2.1 requires '--script-security 2' or
higher to call user-defined scripts or executables
Tue Feb 16 22:33:48 2010 LZO compression initialized
Tue Feb 16 22:33:48 2010 Control Channel MTU parms [ L:1544 D:140 EF:40 EB:0
ET:0 EL:0 ]
Tue Feb 16 22:33:48 2010 Data Channel MTU parms [ L:1544 D:1450 EF:44 EB:135
ET:0 EL:0 AF:3/1 ]
Tue Feb 16 22:33:48 2010 Local Options hash (VER=V4): '69109d17'
Tue Feb 16 22:33:48 2010 Expected Remote Options hash (VER=V4): 'c0103fa8'
Tue Feb 16 22:33:48 2010 Attempting to establish TCP connection with
69.197.153.243:1194
Tue Feb 16 22:33:48 2010 TCP connection established with 69.197.153.243:1194
Tue Feb 16 22:33:48 2010 Socket Buffers: R=[8192->8192] S=[8192->8192]
Tue Feb 16 22:33:48 2010 TCPv4_CLIENT link local: [undef]
Tue Feb 16 22:33:48 2010 TCPv4_CLIENT link remote: 69.197.153.243:1194
Tue Feb 16 22:33:48 2010 TLS: Initial packet from 69.197.153.243:1194,
sid=f2db4d8e ebbfe6d5
Tue Feb 16 22:33:53 2010 VERIFY OK: depth=1,
/C=US/ST=CA/L=SanFrancisco/O=Fort-Funston/CN=Fort-Funston_CA/emailAddress=me...@my...domain
Tue Feb 16 22:33:53 2010 VERIFY OK: depth=0,
/C=US/ST=CA/L=SanFrancisco/O=Fort-Funston/CN=server/emailAddress=me...@my...domain
Tue Feb 16 22:34:03 2010 Data Channel Encrypt: Cipher 'BF-CBC' initialized
with 128 bit key
Tue Feb 16 22:34:03 2010 Data Channel Encrypt: Using 160 bit message hash
'SHA1' for HMAC authentication
Tue Feb 16 22:34:03 2010 Data Channel Decrypt: Cipher 'BF-CBC' initialized
with 128 bit key
Tue Feb 16 22:34:03 2010 Data Channel Decrypt: Using 160 bit message hash
'SHA1' for HMAC authentication
Tue Feb 16 22:34:03 2010 Control Channel: TLSv1, cipher TLSv1/SSLv3
DHE-RSA-AES256-SHA, 1024 bit RSA
Tue Feb 16 22:34:03 2010 [server] Peer Connection Initiated with
69.197.153.243:1194
Tue Feb 16 22:34:05 2010 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
Tue Feb 16 22:34:06 2010 PUSH: Received control message:
'PUSH_REPLY,redirect-gateway def1,dhcp-option DNS 69.197.153.253,dhcp-option
DNS 69.30.192.15,route 10.8.0.0 255.255.255.0,topology net30,ifconfig
10.8.0.6 10.8.0.5'
Tue Feb 16 22:34:06 2010 OPTIONS IMPORT: --ifconfig/up options modified
Tue Feb 16 22:34:06 2010 OPTIONS IMPORT: route options modified
Tue Feb 16 22:34:06 2010 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option
options modified
Tue Feb 16 22:34:06 2010 ROUTE default_gateway=192.168.1.1
Tue Feb 16 22:34:06 2010 TAP-WIN32 device [Local Connection 4] opened:
\\.\Global\{1C848107-D7DF-431F-8120-C0642C788711}.tap
Tue Feb 16 22:34:06 2010 TAP-Win32 Driver Version 9.6
Tue Feb 16 22:34:06 2010 TAP-Win32 MTU=1500
Tue Feb 16 22:34:06 2010 Notified TAP-Win32 driver to set a DHCP IP/netmask
of 10.8.0.6/255.255.255.252 on interface
{1C848107-D7DF-431F-8120-C0642C788711} [DHCP-serv: 10.8.0.5, lease-time:
31536000]
Tue Feb 16 22:34:06 2010 Successful ARP Flush on interface [4]
{1C848107-D7DF-431F-8120-C0642C788711}
Tue Feb 16 22:34:11 2010 TEST ROUTES: 2/2 succeeded len=1 ret=1 a=0 u/d=up
Tue Feb 16 22:34:11 2010 C:\WINDOWS\system32\route.exe ADD 69.197.153.243
MASK 255.255.255.255 192.168.1.1
Tue Feb 16 22:34:11 2010 Route addition via IPAPI succeeded [adaptive]
Tue Feb 16 22:34:11 2010 C:\WINDOWS\system32\route.exe ADD 0.0.0.0 MASK
128.0.0.0 10.8.0.5
Tue Feb 16 22:34:11 2010 Route addition via IPAPI succeeded [adaptive]
Tue Feb 16 22:34:11 2010 C:\WINDOWS\system32\route.exe ADD 128.0.0.0 MASK
128.0.0.0 10.8.0.5
Tue Feb 16 22:34:11 2010 Route addition via IPAPI succeeded [adaptive]
Tue Feb 16 22:34:11 2010 C:\WINDOWS\system32\route.exe ADD 10.8.0.0 MASK
255.255.255.0 10.8.0.5
Tue Feb 16 22:34:11 2010 Route addition via IPAPI succeeded [adaptive]
Tue Feb 16 22:34:11 2010 Initialization Sequence Completed
Tue Feb 16 22:38:31 2010 write TCPv4_CLIENT: Connection reset by peer
(WSAECONNRESET) (code=10054)
Tue Feb 16 22:38:31 2010 Connection reset, restarting [-1]
Tue Feb 16 22:38:31 2010 TCP/UDP: Closing socket
Tue Feb 16 22:38:31 2010 SIGUSR1[soft,connection-reset] received, process
restarting
Tue Feb 16 22:38:31 2010 Restart pause, 5 second(s)
Tue Feb 16 22:38:36 2010 WARNING: No server certificate verification method
has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
Tue Feb 16 22:38:36 2010 NOTE: OpenVPN 2.1 requires '--script-security 2' or
higher to call user-defined scripts or executables
Tue Feb 16 22:38:36 2010 Re-using SSL/TLS context
Tue Feb 16 22:38:36 2010 LZO compression initialized
Tue Feb 16 22:38:36 2010 Control Channel MTU parms [ L:1544 D:140 EF:40 EB:0
ET:0 EL:0 ]
Tue Feb 16 22:38:36 2010 Data Channel MTU parms [ L:1544 D:1450 EF:44 EB:135
ET:0 EL:0 AF:3/1 ]
Tue Feb 16 22:38:36 2010 Local Options hash (VER=V4): '69109d17'
Tue Feb 16 22:38:36 2010 Expected Remote Options hash (VER=V4): 'c0103fa8'
Tue Feb 16 22:38:36 2010 Attempting to establish TCP connection with
69.197.153.243:1194
Tue Feb 16 22:38:57 2010 TCP: connect to 69.197.153.243:1194 failed, will
try again in 5 seconds: Connection timed out (WSAETIMEDOUT)
Tue Feb 16 22:39:23 2010 TCP: connect to 69.197.153.243:1194 failed, will
try again in 5 seconds: Connection timed out (WSAETIMEDOUT)
Tue Feb 16 22:39:50 2010 TCP: connect to 69.197.153.243:1194 failed, will
try again in 5 seconds: Connection timed out (WSAETIMEDOUT)
Tue Feb 16 22:40:16 2010 TCP: connect to 69.197.153.243:1194 failed, will
try again in 5 seconds: Connection timed out (WSAETIMEDOUT)

-- 
Once a Saint, always a Saint