Muzete sem hodit jeste log OpenVPN?
tady je
Tue May 24 13:45:07 2011 us=455687 replay_window = 64
Tue May 24 13:45:07 2011 us=455698 replay_time = 15
Tue May 24 13:45:07 2011 us=455723 packet_id_file = '[UNDEF]'
Tue May 24 13:45:07 2011 us=455746 use_iv = ENABLED
Tue May 24 13:45:07 2011 us=455759 test_crypto = DISABLED
Tue May 24 13:45:07 2011 us=455785 tls_server = ENABLED
Tue May 24 13:45:07 2011 us=455797 tls_client = DISABLED
Tue May 24 13:45:07 2011 us=455813 key_method = 2
Tue May 24 13:45:07 2011 us=455825 ca_file = '/root/openvpn/ca.crt'
Tue May 24 13:45:07 2011 us=455852 ca_path = '[UNDEF]'
Tue May 24 13:45:07 2011 us=455864 dh_file = '/root/openvpn/dh1024.pem'
Tue May 24 13:45:07 2011 us=455886 cert_file = '/root/openvpn/server.crt'
Tue May 24 13:45:07 2011 us=455915 priv_key_file = '/root/openvpn/server.key'
Tue May 24 13:45:07 2011 us=455928 pkcs12_file = '[UNDEF]'
Tue May 24 13:45:07 2011 us=455945 cipher_list = '[UNDEF]'
Tue May 24 13:45:07 2011 us=455957 tls_verify = '[UNDEF]'
Tue May 24 13:45:07 2011 us=455980 tls_remote = '[UNDEF]'
Tue May 24 13:45:07 2011 us=455994 crl_file = '[UNDEF]'
Tue May 24 13:45:07 2011 us=456010 ns_cert_type = 0
Tue May 24 13:45:07 2011 us=456035 remote_cert_ku
= 0
Tue May 24 13:45:07 2011 us=456051 remote_cert_ku = 0
Tue May 24 13:45:07 2011 us=456067 remote_cert_ku = 0
Tue May 24 13:45:07 2011 us=456079 remote_cert_ku = 0
Tue May 24 13:45:07 2011 us=456103 remote_cert_ku = 0
Tue May 24 13:45:07 2011 us=456115 remote_cert_ku = 0
Tue May 24 13:45:07 2011 us=456131 remote_cert_ku = 0
Tue May 24 13:45:07 2011 us=456154 remote_cert_ku = 0
Tue May 24 13:45:07 2011 us=456171 remote_cert_ku = 0
Tue May 24 13:45:07 2011 us=456187 remote_cert_ku = 0
Tue May 24 13:45:07 2011 us=456199 remote_cert_ku = 0
Tue May 24 13:45:07 2011 us=456223 remote_cert_ku = 0
Tue May 24 13:45:07 2011 us=456235 remote_cert_ku = 0
Tue May 24 13:45:07 2011 us=456252 remote_cert_ku = 0
Tue May 24 13:45:07 2011 us=456263 remote_cert_ku = 0
Tue May 24 13:45:07 2011 us=456293 remote_cert_ku = 0
Tue May 24 13:45:07 2011 us=456309 remote_cert_eku = '[UNDEF]'
Tue May 24 13:45:07 2011 us=456322 tls_timeout = 2
Tue May 24 13:45:07 2011 us=456337 renegotiate_bytes = 0
Tue May 24 13:45:07 2011 us=456368 renegotiate_packets = 0
Tue May 24 13:45:07 2011 us=456380 renegotiate_seconds = 3600
Tue May 24 13:45:07 2011 us=456402 handshake_window = 60
Tue May 24 13:45:07 2011 us=456420 transition_window = 3600
Tue May 24 13:45:07 2011 us=456432 single_session = DISABLED
Tue May 24 13:45:07 2011 us=456444 tls_exit = DISABLED
Tue May 24 13:45:07 2011 us=456471 tls_auth_file = '[UNDEF]'
Tue May 24 13:45:07 2011 us=456488 pkcs11_protected_authentication = DISABLED
Tue May 24 13:45:07 2011 us=456501 pkcs11_protected_authentication = DISABLED
Tue May 24 13:45:07 2011 us=456513 pkcs11_protected_authentication = DISABLED
Tue May 24 13:45:07 2011 us=456538 pkcs11_protected_authentication = DISABLED
Tue May 24 13:45:07 2011 us=456559 pkcs11_protected_authentication = DISABLED
Tue May 24 13:45:07 2011 us=456571 pkcs11_protected_authentication = DISABLED
Tue May 24 13:45:07 2011 us=456583 pkcs11_protected_authentication = DISABLED
Tue May 24 13:45:07 2011 us=456606 pkcs11_protected_authentication = DISABLED
Tue May 24 13:45:07 2011 us=456619 pkcs11_protected_authentication = DISABLED
Tue May 24 13:45:07 2011 us=456635 pkcs11_protected_authentication = DISABLED
Tue May 24 13:45:07 2011 us=456647 pkcs11_protected_authentication = DISABLED
Tue May 24 13:45:07 2011 us=456671 pkcs11_protected_authentication = DISABLED
Tue May 24 13:45:07 2011 us=456683 pkcs11_protected_authentication = DISABLED
Tue May 24 13:45:07 2011 us=456699 pkcs11_protected_authentication = DISABLED
Tue May 24 13:45:07 2011 us=456711 pkcs11_protected_authentication = DISABLED
Tue May 24 13:45:07 2011 us=456733 pkcs11_protected_authentication = DISABLED
Tue May 24 13:45:07 2011 us=456760 pkcs11_private_mode = 00000000
Tue May 24 13:45:07 2011 us=456773 pkcs11_private_mode = 00000000
Tue May 24 13:45:07 2011 us=456803 pkcs11_private_mode = 00000000
Tue May 24 13:45:07 2011 us=456815 pkcs11_private_mode = 00000000
Tue May 24 13:45:07 2011 us=456831 pkcs11_private_mode = 00000000
Tue May 24 13:45:07 2011 us=456843 pkcs11_private_mode = 00000000
Tue May 24 13:45:07 2011 us=456867 pkcs11_private_mode = 00000000
Tue May 24 13:45:07 2011 us=456879 pkcs11_private_mode = 00000000
Tue May 24 13:45:07 2011 us=456895 pkcs11_private_mode = 00000000
Tue May 24 13:45:07 2011 us=456906 pkcs11_private_mode = 00000000
Tue May 24 13:45:07 2011 us=456938 pkcs11_private_mode = 00000000
Tue May 24 13:45:07 2011 us=456954 pkcs11_private_mode = 00000000
Tue May 24 13:45:07 2011 us=456966 pkcs11_private_mode = 00000000
Tue May 24 13:45:07 2011 us=456995 pkcs11_private_mode = 00000000
Tue May 24 13:45:07 2011 us=457008 pkcs11_private_mode = 00000000
Tue May 24 13:45:07 2011 us=457024 pkcs11_private_mode = 00000000
Tue May 24 13:45:07 2011 us=457048 pkcs11_cert_private = DISABLED
Tue May 24 13:45:07 2011 us=457065 pkcs11_cert_private = DISABLED
Tue May 24 13:45:07 2011 us=457081 pkcs11_cert_private = DISABLED
Tue May 24 13:45:07 2011 us=457093 pkcs11_cert_private = DISABLED
Tue May 24 13:45:07 2011 us=457119 pkcs11_cert_private = DISABLED
Tue May 24 13:45:07 2011 us=457136 pkcs11_cert_private = DISABLED
Tue May 24 13:45:07 2011 us=457149 pkcs11_cert_private = DISABLED
Tue May 24 13:45:07 2011 us=457176 pkcs11_cert_private = DISABLED
Tue May 24 13:45:07 2011 us=457196 pkcs11_cert_private = DISABLED
Tue May 24 13:45:07 2011 us=457208 pkcs11_cert_private = DISABLED
Tue May 24 13:45:07 2011 us=457230 pkcs11_cert_private = DISABLED
Tue May 24 13:45:07 2011 us=457250 pkcs11_cert_private = DISABLED
Tue May 24 13:45:07 2011 us=457262 pkcs11_cert_private = DISABLED
Tue May 24 13:45:07 2011 us=457274 pkcs11_cert_private = DISABLED
Tue May 24 13:45:07 2011 us=457300 pkcs11_cert_private = DISABLED
Tue May 24 13:45:07 2011 us=457316 pkcs11_cert_private = DISABLED
Tue May 24 13:45:07 2011 us=457328 pkcs11_pin_cache_period = -1
Tue May 24 13:45:07 2011 us=457351 pkcs11_id = '[UNDEF]'
Tue May 24 13:45:07 2011 us=457364 pkcs11_id_management = DISABLED
Tue May 24 13:45:07 2011 us=457392 server_network = 0.0.0.0
Tue May 24 13:45:07 2011 us=457430 server_netmask = 0.0.0.0
Tue May 24 13:45:07 2011 us=457448 server_bridge_ip = 0.0.0.0
Tue May 24 13:45:07 2011 us=457473 server_bridge_netmask = 0.0.0.0
Tue May 24 13:45:07 2011 us=457503 server_bridge_pool_start = 0.0.0.0
Tue May 24 13:45:07 2011 us=457517 server_bridge_pool_end = 0.0.0.0
Tue May 24 13:45:07 2011 us=457544 push_entry = 'redirect-gateway 10.88.255.1'
Tue May 24 13:45:07 2011 us=457557 push_entry = 'dhcp-option DNS 192.168.1.1'
Tue May 24 13:45:07 2011 us=457569 push_entry = 'ping 10'
Tue May 24 13:45:07 2011 us=457585 push_entry = 'ping-restart 120'
Tue May 24 13:45:07 2011 us=457614 ifconfig_pool_defined = ENABLED
Tue May 24 13:45:07 2011 us=457629 ifconfig_pool_start = 10.88.255.2
Tue May 24 13:45:07 2011 us=457647 ifconfig_pool_end = 10.88.255.5
Tue May 24 13:45:07 2011 us=457660 ifconfig_pool_netmask = 255.255.255.0
Tue May 24 13:45:07 2011 us=457684 ifconfig_pool_persist_filename = '[UNDEF]'
Tue May 24 13:45:07 2011 us=457705 ifconfig_pool_persist_refresh_freq = 600
Tue May 24 13:45:07 2011 us=457717 n_bcast_buf = 256
Tue May 24 13:45:07 2011 us=457746 tcp_queue_limit = 64
Tue May 24 13:45:07 2011 us=457764 real_hash_size = 256
Tue May 24 13:45:07 2011 us=457789 virtual_hash_size = 256
Tue May 24 13:45:07 2011 us=457806 client_connect_script = '[UNDEF]'
Tue May 24 13:45:07 2011 us=457818 learn_address_script = '[UNDEF]'
Tue May 24 13:45:07 2011 us=457834 client_disconnect_script = '[UNDEF]'
Tue May 24 13:45:07 2011 us=457863 client_config_dir = '[UNDEF]'
Tue May 24 13:45:07 2011 us=457876 ccd_exclusive = DISABLED
Tue May 24 13:45:07 2011 us=457891 tmp_dir = '[UNDEF]'
Tue May 24 13:45:07 2011 us=457903 push_ifconfig_defined = DISABLED
Tue May 24 13:45:07 2011 us=457929 push_ifconfig_local = 0.0.0.0
Tue May 24 13:45:07 2011 us=457942 push_ifconfig_remote_netmask = 0.0.0.0
Tue May 24 13:45:07 2011 us=457959 enable_c2c = ENABLED
Tue May 24 13:45:07 2011 us=457987 duplicate_cn = ENABLED
Tue May 24 13:45:07 2011 us=458000 cf_max = 0
Tue May 24 13:45:07 2011 us=458012 cf_per = 0
Tue May 24 13:45:07 2011 us=458027 max_clients = 1024
Tue May 24 13:45:07 2011 us=458050 max_routes_per_client = 256
Tue May 24 13:45:07 2011 us=458063 auth_user_pass_verify_script = '[UNDEF]'
Tue May 24 13:45:07 2011 us=458076 auth_user_pass_verify_script_via_file = DISABLED
Tue May 24 13:45:07 2011 us=458103 ssl_flags = 0
Tue May 24 13:45:07 2011 us=458115 port_share_host = '[UNDEF]'
Tue May 24 13:45:07 2011 us=458126 port_share_port = 0
Tue May 24 13:45:07 2011 us=458138 client = DISABLED
Tue May 24 13:45:07 2011 us=458149 pull = DISABLED
Tue May 24 13:45:07 2011 us=458161 auth_user_pass_file = '[UNDEF]'
Tue May 24 13:45:07 2011 us=458181 OpenVPN 2.1.1 i686-redhat-linux-gnu [SSL] [LZO2] [EPOLL] [PKCS11] built on Jan 5 2010
Tue May 24 13:45:07 2011 us=458632 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Tue May 24 13:45:07 2011 us=484606 Diffie-Hellman initialized with 1024 bit key
Enter Private Key Password:
Tue May 24 13:45:11 2011 us=566570 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Tue May 24 13:45:11 2011 us=566717 WARNING: file '/root/openvpn/server.key' is group or others accessible
Tue May 24 13:45:11 2011 us=567558 TLS-Auth MTU parms [ L:1574 D:138 EF:38 EB:0 ET:0 EL:0 ]
Tue May 24 13:45:11 2011 us=579405 TUN/TAP device tap0 opened
Tue May 24 13:45:11 2011 us=579472 TUN/TAP TX queue length set to 100
Tue May 24 13:45:11 2011 us=579543 /sbin/ip link set dev tap0 up mtu 1500
Tue May 24 13:45:11 2011 us=587775 /sbin/ip addr add dev tap0 10.88.255.1/24 broadcast 10.88.255.255
Tue May 24 13:45:11 2011 us=589923 Data Channel MTU parms [ L:1574 D:1450 EF:42 EB:135 ET:32 EL:0 AF:3/1 ]
Tue May 24 13:45:11 2011 us=589984 Socket Buffers: R=[112640->131072] S=[112640->131072]
Tue May 24 13:45:11 2011 us=590005 UDPv4 link local (bound): 10.0.13.26:1194
Tue May 24 13:45:11 2011 us=590018 UDPv4 link remote: [undef]
Tue May 24 13:45:11 2011 us=590038 MULTI: multi_init called, r=256 v=256
Tue May 24 13:45:11 2011 us=590083 IFCONFIG POOL: base=10.88.255.2 size=4
Tue May 24 13:45:11 2011 us=590116 Initialization Sequence Completed
Tue May 24 13:45:12 2011 us=664664 MULTI: multi_create_instance called
Tue May 24 13:45:12 2011 us=664721 213.226.253.27:1194 Re-using SSL/TLS context
Tue May 24 13:45:12 2011 us=664779 213.226.253.27:1194 LZO compression initialized
Tue May 24 13:45:12 2011 us=664903 213.226.253.27:1194 Control Channel MTU parms [ L:1574 D:138 EF:38 EB:0 ET:0 EL:0 ]
Tue May 24 13:45:12 2011 us=664923 213.226.253.27:1194 Data Channel MTU parms [ L:1574 D:1450 EF:42 EB:135 ET:32 EL:0 AF:3/1 ]
Tue May 24 13:45:12 2011 us=664969 213.226.253.27:1194 Local Options String: 'V4,dev-type tap,link-mtu 1574,tun-mtu 1532,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Tue May 24 13:45:12 2011 us=664983 213.226.253.27:1194 Expected Remote Options String: 'V4,dev-type tap,link-mtu 1574,tun-mtu 1532,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Tue May 24 13:45:12 2011 us=665008 213.226.253.27:1194 Local Options hash (VER=V4): 'f7df56b8'
Tue May 24 13:45:12 2011 us=665026 213.226.253.27:1194 Expected Remote Options hash (VER=V4): 'd79ca330'
RTue May 24 13:45:12 2011 us=665085 213.226.253.27:1194 TLS: Initial packet from 213.226.253.27:1194, sid=c78bfb6d 3e683322
WWWWWWWWWTue May 24 13:45:28 2011 us=762856 MULTI: multi_create_instance called
Tue May 24 13:45:28 2011 us=762924 10.2.57.8:1194 Re-using SSL/TLS context
Tue May 24 13:45:28 2011 us=762955 10.2.57.8:1194 LZO compression initialized
Tue May 24 13:45:28 2011 us=763058 10.2.57.8:1194 Control Channel MTU parms [ L:1574 D:138 EF:38 EB:0 ET:0 EL:0 ]
Tue May 24 13:45:28 2011 us=763076 10.2.57.8:1194 Data Channel MTU parms [ L:1574 D:1450 EF:42 EB:135 ET:32 EL:0 AF:3/1 ]
Tue May 24 13:45:28 2011 us=763119 10.2.57.8:1194 Local Options String: 'V4,dev-type tap,link-mtu 1574,tun-mtu 1532,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Tue May 24 13:45:28 2011 us=763133 10.2.57.8:1194 Expected Remote Options String: 'V4,dev-type tap,link-mtu 1574,tun-mtu 1532,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Tue May 24 13:45:28 2011 us=763154 10.2.57.8:1194 Local Options hash (VER=V4): 'f7df56b8'
Tue May 24 13:45:28 2011 us=763173 10.2.57.8:1194 Expected Remote Options hash (VER=V4): 'd79ca330'
RTue May 24 13:45:28 2011 us=763210 10.2.57.8:1194 TLS: Initial packet from 10.2.57.8:1194, sid=2a6ffe07 207dff36
WRRWRWRWWWWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRRRRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRTue May 24 13:45:28 2011 us=790317 10.2.57.8:1194 VERIFY OK: depth=1, /C=CZ/ST=VYSOCINA/L=Chotebor/O=TENEZas_/OU=IT/CN=pam/emailAddress=it.manager@tenez.cz
Tue May 24 13:45:28 2011 us=790504 10.2.57.8:1194 VERIFY OK: depth=0, /C=CZ/ST=VYSOCINA/O=TENEZas_/OU=IT/CN=test/emailAddress=it.manager@tenez.cz
WRWRWRWWWWRWRWRWRWRWRWRWRWRRRRWRWRWRTue May 24 13:45:28 2011 us=797616 10.2.57.8:1194 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
Tue May 24 13:45:28 2011 us=797648 10.2.57.8:1194 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Tue May 24 13:45:28 2011 us=797713 10.2.57.8:1194 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
Tue May 24 13:45:28 2011 us=797728 10.2.57.8:1194 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
WWWRRRTue May 24 13:45:28 2011 us=798469 10.2.57.8:1194 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
Tue May 24 13:45:28 2011 us=798503 10.2.57.8:1194 [test] Peer Connection Initiated with 10.2.57.8:1194
64 Odpovědí
19231 Zhlédnutí