OpenVPN problem

[oversim]

Hello,
I have a problem with openvpn server.
No configuration changes in client, no configuration changes in server.

Now, client doesn't connect to server. In the syslog of my n66u I have:

Aug 12 16:04:31 openvpn[1959]: TCP connection established with [AF_INET]xxx.yyy.zzz.aaa:45470
Aug 12 16:04:32 openvpn[1959]: xxx.yyy.zzz.aaa:45470 Connection reset, restarting [0]

every time I try to connect. Client side, I have:

Tue Aug 12 16:08:40 2014 TCPv4_CLIENT link local: [undef]
Tue Aug 12 16:08:40 2014 TCPv4_CLIENT link remote: xxx.xxx.xxx.xxx:8080
Tue Aug 12 16:08:40 2014 Connection reset, restarting [-1]

Any idea? Thanks

 

[Deleted member 27741]

When you say no changes, did you change something else- the firmware? I have noticed that occasionally the VPN gets borked from a firmware change. Mostly the certs, but sometimes the other settings as well. You could try to reinstall the certs/settings.

 

[oversim]

Yes I upgraded firmware, but openvpn still worked!
Then I went on vacation for a week, and nobody changed configuration (only I have admin access) and now I go back to work but openvpn has this problem...

 

[Deleted member 27741]

One thing that I have overlooked before is if you don't run the openvpn client in administrator mode (especially in XP), it will not connect. Are you sure you are running the program in administrator mode?

 

[RMerlin]

Yes I upgraded firmware, but openvpn still worked!
Then I went on vacation for a week, and nobody changed configuration (only I have admin access) and now I go back to work but openvpn has this problem...

Increase OpenVPN's loglevel to help in tracking down the issue.

nvram set vpn_loglevel=7
nvram commit
service restart_vpnserver1

Once done, you can revert back to the default loglevel of 3.

 

[oversim]

Thank you!
So, this is the "startup log"

Aug 13 11:37:14 openvpn[1758]:   tcp_queue_limit = 64
Aug 13 11:37:14 openvpn[1758]:   real_hash_size = 256
Aug 13 11:37:14 openvpn[1758]:   virtual_hash_size = 256
Aug 13 11:37:14 openvpn[1758]:   client_connect_script = '[UNDEF]'
Aug 13 11:37:14 openvpn[1758]:   learn_address_script = '[UNDEF]'
Aug 13 11:37:14 openvpn[1758]:   client_disconnect_script = '[UNDEF]'
Aug 13 11:37:14 openvpn[1758]:   client_config_dir = '[UNDEF]'
Aug 13 11:37:14 openvpn[1758]:   ccd_exclusive = DISABLED
Aug 13 11:37:14 openvpn[1758]:   tmp_dir = '/tmp'
Aug 13 11:37:14 openvpn[1758]:   push_ifconfig_defined = DISABLED
Aug 13 11:37:14 openvpn[1758]:   push_ifconfig_local = 0.0.0.0
Aug 13 11:37:14 openvpn[1758]:   push_ifconfig_remote_netmask = 0.0.0.0
Aug 13 11:37:14 openvpn[1758]:   push_ifconfig_ipv6_defined = DISABLED
Aug 13 11:37:14 openvpn[1758]:   push_ifconfig_ipv6_local = ::/0
Aug 13 11:37:14 openvpn[1758]:   push_ifconfig_ipv6_remote = ::
Aug 13 11:37:14 openvpn[1758]:   enable_c2c = DISABLED
Aug 13 11:37:14 openvpn[1758]:   duplicate_cn = ENABLED
Aug 13 11:37:14 openvpn[1758]:   cf_max = 0
Aug 13 11:37:14 openvpn[1758]:   cf_per = 0
Aug 13 11:37:14 openvpn[1758]:   max_clients = 1024
Aug 13 11:37:14 openvpn[1758]:   max_routes_per_client = 256
Aug 13 11:37:14 openvpn[1758]:   auth_user_pass_verify_script = '[UNDEF]'
Aug 13 11:37:14 openvpn[1758]:   auth_user_pass_verify_script_via_file = DISABLED
Aug 13 11:37:14 openvpn[1758]:   port_share_host = '[UNDEF]'
Aug 13 11:37:14 openvpn[1758]:   port_share_port = 0
Aug 13 11:37:14 openvpn[1758]:   client = DISABLED
Aug 13 11:37:14 openvpn[1758]:   pull = DISABLED
Aug 13 11:37:14 openvpn[1758]:   auth_user_pass_file = '[UNDEF]'
Aug 13 11:37:14 openvpn[1758]: OpenVPN 2.3.4 mipsel-unknown-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [MH] [IPv6] built on Aug  3 2014
Aug 13 11:37:14 openvpn[1758]: library versions: OpenSSL 1.0.0m 5 Jun 2014, LZO 2.06
Aug 13 11:37:14 openvpn[1758]: NOTE: when bridging your LAN adapter with the TAP adapter, note that the new bridge adapter will often take on its own IP address that is different from what the LAN adapter was previously set to
Aug 13 11:37:14 openvpn[1758]: Diffie-Hellman initialized with 1024 bit key
Aug 13 11:37:14 openvpn[1758]: TLS-Auth MTU parms [ L:1576 D:140 EF:40 EB:0 ET:0 EL:0 ]
Aug 13 11:37:14 openvpn[1758]: Socket Buffers: R=[174760->131072] S=[32768->131072]
Aug 13 11:37:14 openvpn[1758]: TUN/TAP device tap21 opened
Aug 13 11:37:14 openvpn[1758]: TUN/TAP TX queue length set to 100
Aug 13 11:37:14 openvpn[1758]: Data Channel MTU parms [ L:1576 D:1450 EF:44 EB:135 ET:32 EL:0 AF:3/1 ]
Aug 13 11:37:14 openvpn[1765]: Listening for incoming TCP connection on [undef]
Aug 13 11:37:14 openvpn[1765]: TCPv4_SERVER link local (bound): [undef]
Aug 13 11:37:14 openvpn[1765]: TCPv4_SERVER link remote: [undef]
Aug 13 11:37:14 openvpn[1765]: MULTI: multi_init called, r=256 v=256
Aug 13 11:37:14 openvpn[1765]: MULTI: TCP INIT maxclients=1024 maxevents=1028
Aug 13 11:37:14 openvpn[1765]: Initialization Sequence Completed

...and then the connection log...

Aug 13 11:38:28 openvpn[1765]: MULTI: multi_create_instance called
Aug 13 11:38:28 openvpn[1765]: Re-using SSL/TLS context
Aug 13 11:38:28 openvpn[1765]: LZO compression initialized
Aug 13 11:38:28 openvpn[1765]: Control Channel MTU parms [ L:1576 D:140 EF:40 EB:0 ET:0 EL:0 ]
Aug 13 11:38:28 openvpn[1765]: Data Channel MTU parms [ L:1576 D:1450 EF:44 EB:135 ET:32 EL:0 AF:3/1 ]
Aug 13 11:38:28 openvpn[1765]: Local Options String: 'V4,dev-type tap,link-mtu 1576,tun-mtu 1532,proto TCPv4_SERVER,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Aug 13 11:38:28 openvpn[1765]: Expected Remote Options String: 'V4,dev-type tap,link-mtu 1576,tun-mtu 1532,proto TCPv4_CLIENT,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Aug 13 11:38:28 openvpn[1765]: Local Options hash (VER=V4): '3e6d1056'
Aug 13 11:38:28 openvpn[1765]: Expected Remote Options hash (VER=V4): '31fdf004'
Aug 13 11:38:28 openvpn[1765]: TCP connection established with [AF_INET]89.119.95.131:29053
Aug 13 11:38:28 openvpn[1765]: TCPv4_SERVER link local: [undef]
Aug 13 11:38:28 openvpn[1765]: TCPv4_SERVER link remote: [AF_INET]89.119.95.131:29053
Aug 13 11:38:30 openvpn[1765]: xxx.xxx.xxx.xxx:29053 Connection reset, restarting [0]
Aug 13 11:38:30 openvpn[1765]: xxx.xxx.xxx.xxx:29053 SIGUSR1[soft,connection-reset] received, client-instance restarting
Aug 13 11:38:30 openvpn[1765]: TCP/UDP: Closing socket