Page 2 of 2

Re: OpenVPN Trouble

Posted: Fri Oct 22, 2021 2:26 pm
by ibaxx
Ah ok... you mean, insetad of the domain...
I have dyndns with this domain... thats the fact that i have chosen openvpn and not other types with android kernel based solutions.

the strange thing is, we have more than one accesspoints on our workplace, with other ssids.
i found one ssid where are no problems with the vpn connection suddendly today it breaks and i am not able to connect again.

openvpn app works...

here is the log from this network:

Code: Select all

2021-10-22 07:30:11 Restarting...
2021-10-22 07:30:11 SIGUSR1[soft,] received, process restarting
2021-10-22 07:30:16 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
2021-10-22 07:30:16 TCP/UDP: Preserving recently used remote address: [AF_INET]77.XXX.196.232:1194
2021-10-22 07:30:16 UDPv4 link local (bound): [AF_INET][undef]:1194
2021-10-22 07:30:16 UDPv4 link remote: [AF_INET]77.XXX.196.232:1194
2021-10-22 07:30:16 [XXX.de] Peer Connection Initiated with [AF_INET]77.XXX.196.232:1194
2021-10-22 07:30:18 TUN/TAP device  opened
2021-10-22 07:30:18 Initialization Sequence Completed
2021-10-22 08:29:36 Connectivity change detected: WiFi - <unknown ssid>
2021-10-22 08:29:36 The connectivity is changed.
2021-10-22 08:29:36 Restarting...
2021-10-22 08:29:36 SIGUSR1[soft,] received, process restarting
2021-10-22 08:29:44 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
2021-10-22 08:29:44 TCP/UDP: Preserving recently used remote address: [AF_INET]77.XXX.196.232:1194
2021-10-22 08:29:44 UDPv4 link local (bound): [AF_INET][undef]:1194
2021-10-22 08:29:44 UDPv4 link remote: [AF_INET]77.XXX.196.232:1194
2021-10-22 08:29:45 [XXX.de] Peer Connection Initiated with [AF_INET]77.XXX.196.232:1194
2021-10-22 08:29:46 TUN/TAP device  opened
2021-10-22 08:29:46 Initialization Sequence Completed
2021-10-22 08:29:55 AEAD Decrypt error: cipher final failed
2021-10-22 08:30:00 AEAD Decrypt error: cipher final failed
2021-10-22 08:30:11 AEAD Decrypt error: cipher final failed
2021-10-22 08:30:15 AEAD Decrypt error: cipher final failed
2021-10-22 08:30:25 AEAD Decrypt error: cipher final failed
2021-10-22 08:30:30 AEAD Decrypt error: cipher final failed
2021-10-22 08:30:40 AEAD Decrypt error: cipher final failed
2021-10-22 08:30:45 AEAD Decrypt error: cipher final failed
2021-10-22 08:30:55 AEAD Decrypt error: cipher final failed
2021-10-22 08:31:00 AEAD Decrypt error: cipher final failed
2021-10-22 08:31:10 AEAD Decrypt error: cipher final failed
2021-10-22 08:31:15 AEAD Decrypt error: cipher final failed
2021-10-22 08:31:26 AEAD Decrypt error: cipher final failed
2021-10-22 08:31:30 AEAD Decrypt error: cipher final failed
2021-10-22 08:31:41 Connectivity change detected: Mobile
2021-10-22 08:31:41 The connectivity is changed.
2021-10-22 08:31:41 Restarting...
2021-10-22 08:31:41 SIGUSR1[soft,] received, process restarting
2021-10-22 08:31:46 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
2021-10-22 08:31:46 TCP/UDP: Preserving recently used remote address: [AF_INET]77.XXX.196.232:1194
2021-10-22 08:31:46 UDPv4 link local (bound): [AF_INET][undef]:1194
2021-10-22 08:31:46 UDPv4 link remote: [AF_INET]77.XXX.196.232:1194
2021-10-22 08:31:47 [XXX.de] Peer Connection Initiated with [AF_INET]77.XXX.196.232:1194
2021-10-22 08:31:48 TUN/TAP device  opened
2021-10-22 08:31:48 Initialization Sequence Completed
2021-10-22 08:32:08 Connectivity change detected: WiFi - <unknown ssid>
2021-10-22 08:32:08 The connectivity is changed.
2021-10-22 08:32:08 Restarting...
2021-10-22 08:32:08 SIGUSR1[soft,] received, process restarting
2021-10-22 08:32:13 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
2021-10-22 08:32:13 TCP/UDP: Preserving recently used remote address: [AF_INET]77.XXX.196.232:1194
2021-10-22 08:32:13 UDPv4 link local (bound): [AF_INET][undef]:1194
2021-10-22 08:32:13 UDPv4 link remote: [AF_INET]77.XXX.196.232:1194
2021-10-22 08:32:14 [XXX.de] Peer Connection Initiated with [AF_INET]77.XXX.196.232:1194
2021-10-22 08:32:15 TUN/TAP device  opened
2021-10-22 08:32:15 Initialization Sequence Completed
2021-10-22 08:32:20 AEAD Decrypt error: cipher final failed
2021-10-22 08:32:30 AEAD Decrypt error: cipher final failed
2021-10-22 08:32:40 AEAD Decrypt error: cipher final failed
2021-10-22 08:32:51 AEAD Decrypt error: cipher final failed
2021-10-22 08:33:00 AEAD Decrypt error: cipher final failed
2021-10-22 08:33:10 AEAD Decrypt error: cipher final failed
2021-10-22 08:33:21 AEAD Decrypt error: cipher final failed
2021-10-22 08:33:30 AEAD Decrypt error: cipher final failed
2021-10-22 08:33:40 AEAD Decrypt error: cipher final failed
2021-10-22 08:33:50 AEAD Decrypt error: cipher final failed
2021-10-22 12:52:49 Connectivity change detected: Mobile
2021-10-22 12:52:49 The connectivity is changed.
2021-10-22 12:52:49 Restarting...
2021-10-22 12:52:50 SIGUSR1[soft,] received, process restarting
2021-10-22 12:52:54 Connectivity change detected: WiFi - <unknown ssid>
2021-10-22 12:52:54 The connectivity is changed.
2021-10-22 12:52:54 Restarting...
2021-10-22 12:52:54 SIGUSR1[soft,init_instance] received, process restarting
2021-10-22 12:53:04 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
2021-10-22 12:53:04 TCP/UDP: Preserving recently used remote address: [AF_INET]77.XXX.196.232:1194
2021-10-22 12:53:04 UDPv4 link local (bound): [AF_INET][undef]:1194
2021-10-22 12:53:04 UDPv4 link remote: [AF_INET]77.XXX.196.232:1194
2021-10-22 12:53:05 [XXX.de] Peer Connection Initiated with [AF_INET]77.XXX.196.232:1194
2021-10-22 12:53:34 TUN/TAP device  opened
2021-10-22 12:53:34 Initialization Sequence Completed
2021-10-22 13:42:04 Connectivity change detected: Mobile
2021-10-22 13:42:04 The connectivity is changed.
2021-10-22 13:42:04 Restarting...
2021-10-22 13:42:04 SIGUSR1[soft,] received, process restarting
2021-10-22 13:42:09 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
2021-10-22 13:42:09 TCP/UDP: Preserving recently used remote address: [AF_INET]77.XXX.196.232:1194
2021-10-22 13:42:09 UDPv4 link local (bound): [AF_INET][undef]:1194
2021-10-22 13:42:09 UDPv4 link remote: [AF_INET]77.XXX.196.232:1194
2021-10-22 13:42:10 [XXX.de] Peer Connection Initiated with [AF_INET]77.XXX.196.232:1194
2021-10-22 13:42:11 TUN/TAP device  opened
2021-10-22 13:42:11 Initialization Sequence Completed
2021-10-22 13:49:01 Connectivity change detected: WiFi - <unknown ssid>
2021-10-22 13:49:01 The connectivity is changed.
2021-10-22 13:49:01 Restarting...
2021-10-22 13:49:01 SIGUSR1[soft,] received, process restarting
2021-10-22 13:49:06 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
2021-10-22 13:49:06 TCP/UDP: Preserving recently used remote address: [AF_INET]77.XXX.196.232:1194
2021-10-22 13:49:06 UDPv4 link local (bound): [AF_INET][undef]:1194
2021-10-22 13:49:06 UDPv4 link remote: [AF_INET]77.XXX.196.232:1194
2021-10-22 13:49:06 [XXX.de] Peer Connection Initiated with [AF_INET]77.XXX.196.232:1194
2021-10-22 13:49:08 TUN/TAP device  opened
2021-10-22 13:49:08 Initialization Sequence Completed
2021-10-22 13:49:09 AEAD Decrypt error: cipher final failed
2021-10-22 13:49:13 AEAD Decrypt error: cipher final failed
2021-10-22 13:49:23 AEAD Decrypt error: cipher final failed
2021-10-22 13:49:28 AEAD Decrypt error: cipher final failed
2021-10-22 13:49:38 AEAD Decrypt error: cipher final failed
2021-10-22 13:49:43 AEAD Decrypt error: cipher final failed
2021-10-22 13:49:53 AEAD Decrypt error: cipher final failed
2021-10-22 13:49:58 AEAD Decrypt error: cipher final failed
2021-10-22 13:50:08 AEAD Decrypt error: cipher final failed
2021-10-22 13:50:13 AEAD Decrypt error: cipher final failed
2021-10-22 13:50:23 AEAD Decrypt error: cipher final failed
2021-10-22 13:50:28 AEAD Decrypt error: cipher final failed
2021-10-22 13:50:38 AEAD Decrypt error: cipher final failed
2021-10-22 13:50:43 AEAD Decrypt error: cipher final failed
2021-10-22 13:50:53 AEAD Decrypt error: cipher final failed
2021-10-22 13:50:58 AEAD Decrypt error: cipher final failed
2021-10-22 16:05:59 Connectivity change detected: Mobile
2021-10-22 16:05:59 The connectivity is changed.
2021-10-22 16:05:59 Restarting...
2021-10-22 16:06:00 SIGUSR1[soft,] received, process restarting
2021-10-22 16:06:04 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
2021-10-22 16:06:04 TCP/UDP: Preserving recently used remote address: [AF_INET]77.XXX.196.232:1194
2021-10-22 16:06:05 UDPv4 link local (bound): [AF_INET][undef]:1194
2021-10-22 16:06:05 UDPv4 link remote: [AF_INET]77.XXX.196.232:1194
2021-10-22 16:06:05 [XXX.de] Peer Connection Initiated with [AF_INET]77.XXX.196.232:1194
2021-10-22 16:06:06 TUN/TAP device  opened
2021-10-22 16:06:06 Initialization Sequence Completed
2021-10-22 16:08:02 Connectivity change detected: WiFi - <unknown ssid>
2021-10-22 16:08:02 The connectivity is changed.
2021-10-22 16:08:02 Restarting...
2021-10-22 16:08:03 SIGUSR1[soft,] received, process restarting
2021-10-22 16:08:07 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
2021-10-22 16:08:07 TCP/UDP: Preserving recently used remote address: [AF_INET]77.XXX.196.232:1194
2021-10-22 16:08:07 UDPv4 link local (bound): [AF_INET][undef]:1194
2021-10-22 16:08:07 UDPv4 link remote: [AF_INET]77.XXX.196.232:1194
2021-10-22 16:08:08 [XXX.de] Peer Connection Initiated with [AF_INET]77.XXX.196.232:1194
2021-10-22 16:08:09 AUTH: Received control message: AUTH_FAILED
2021-10-22 16:08:09 SIGUSR1[soft,auth-failure] received, process restarting
2021-10-22 16:10:53 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
2021-10-22 16:10:53 TCP/UDP: Preserving recently used remote address: [AF_INET]77.XXX.196.232:1194
2021-10-22 16:10:53 UDPv4 link local (bound): [AF_INET][undef]:1194
2021-10-22 16:10:53 UDPv4 link remote: [AF_INET]77.XXX.196.232:1194
2021-10-22 16:10:53 [XXX.de] Peer Connection Initiated with [AF_INET]77.XXX.196.232:1194
2021-10-22 16:10:54 AUTH: Received control message: AUTH_FAILED
2021-10-22 16:10:54 SIGUSR1[soft,auth-failure] received, process restarting
2021-10-22 16:11:10 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
2021-10-22 16:11:10 TCP/UDP: Preserving recently used remote address: [AF_INET]77.XXX.196.232:1194
2021-10-22 16:11:10 UDPv4 link local (bound): [AF_INET][undef]:1194
2021-10-22 16:11:10 UDPv4 link remote: [AF_INET]77.XXX.196.232:1194
2021-10-22 16:11:10 [XXX.de] Peer Connection Initiated with [AF_INET]77.XXX.196.232:1194
2021-10-22 16:11:11 AUTH: Received control message: AUTH_FAILED
2021-10-22 16:11:11 SIGUSR1[soft,auth-failure] received, process restarting
2021-10-22 16:11:20 Disconnecting request by user
2021-10-22 16:11:20 Disconnecting...
2021-10-22 16:11:20 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
2021-10-22 16:11:20 TCP/UDP: Preserving recently used remote address: [AF_INET]77.XXX.196.232:1194
2021-10-22 16:11:20 UDPv4 link local (bound): [AF_INET][undef]:1194
2021-10-22 16:11:20 UDPv4 link remote: [AF_INET]77.XXX.196.232:1194
2021-10-22 16:11:20 SIGINT[soft,] received, process exiting


It was stable since the 19th October

Re: OpenVPN Trouble

Posted: Fri Oct 22, 2021 3:35 pm
by admin
No, I meant the protocol used by the VPN.
The OpenVPN server/client can be configured to use UDP or TCP protocol.
At the moment your VPN is configured to use the UDP protocol.

Re: OpenVPN Trouble

Posted: Mon Oct 25, 2021 2:18 pm
by ibaxx
Hi,

it looks that ist working for now!
had some troble on my windows pcs... with the new config and the static routes for the work network... but looks like an solution for now...

but strange that the other clients are working with udp with no problems