Sep 23 06:03:07 openvpn 31416 MANAGEMENT: Client disconnected Sep 23 06:03:07 openvpn 31416 MANAGEMENT: CMD 'status 2' Sep 23 06:03:07 openvpn 31416 MANAGEMENT: CMD 'state 1' Sep 23 06:03:07 openvpn 31416 MANAGEMENT: Client connected from /var/etc/openvpn/client1.sock Sep 23 06:03:07 openvpn 31416 Initialization Sequence Completed Sep 23 06:03:07 openvpn 31416 /sbin/route add -net X.X.X.X Y.Y.Y.Y 255.255.252.0 Sep 23 06:03:07 openvpn 31416 /sbin/route add -net X.X.X.X Y.Y.Y.Y 255.255.252.0 Sep 23 06:03:07 openvpn 31416 /sbin/route add -net X.X.X.X Y.Y.Y.Y 255.255.255.255 Sep 23 06:03:07 openvpn 31416 /usr/local/sbin/ovpn-linkup ovpnc1 1500 1541 X.X.X.X Y.Y.Y.Y init Sep 23 06:03:07 openvpn 31416 /sbin/ifconfig ovpnc1 X.X.X.X Y.Y.Y.Y mtu 1500 netmask 255.255.255.255 up Sep 23 06:03:07 openvpn 31416 do_ifconfig, tt->did_ifconfig_ipv6_setup=0 Sep 23 06:03:07 openvpn 31416 TUN/TAP device /dev/tun1 opened Sep 23 06:03:07 openvpn 31416 TUN/TAP device ovpnc1 exists previously, keep at program end Sep 23 06:03:07 openvpn 31416 ROUTE_GATEWAY X.X.X.X/255.255.255.255 IFACE=xn0 HWADDR=... Sep 23 06:03:07 openvpn 31416 WARNING: cipher with small block size in use, reducing reneg-bytes to 64MB to mitigate SWEET32 attacks. Sep 23 06:03:07 openvpn 31416 Incoming Data Channel: Using 160 bit message hash 'SHA1' for HMAC authentication Sep 23 06:03:07 openvpn 31416 WARNING: INSECURE cipher with block size less than 128 bit (64 bit). This allows attacks like SWEET32. Mitigate by using a --cipher with a larger block size (e.g. AES-256-CBC). Sep 23 06:03:07 openvpn 31416 Incoming Data Channel: Cipher 'BF-CBC' initialized with 128 bit key Sep 23 06:03:07 openvpn 31416 Outgoing Data Channel: Using 160 bit message hash 'SHA1' for HMAC authentication Sep 23 06:03:07 openvpn 31416 WARNING: INSECURE cipher with block size less than 128 bit (64 bit). This allows attacks like SWEET32. Mitigate by using a --cipher with a larger block size (e.g. AES-256-CBC). Sep 23 06:03:07 openvpn 31416 Outgoing Data Channel: Cipher 'BF-CBC' initialized with 128 bit key Sep 23 06:03:07 openvpn 31416 Data Channel MTU parms [ L:1541 D:1450 EF:41 EB:406 ET:0 EL:3 ] Sep 23 06:03:07 openvpn 31416 OPTIONS IMPORT: route options modified Sep 23 06:03:07 openvpn 31416 OPTIONS IMPORT: --ifconfig/up options modified Sep 23 06:03:07 openvpn 31416 Socket Buffers: R=[42080->393216] S=[57344->393216] Sep 23 06:03:07 openvpn 31416 OPTIONS IMPORT: --sndbuf/--rcvbuf options modified Sep 23 06:03:07 openvpn 31416 OPTIONS IMPORT: timers and/or timeouts modified Sep 23 06:03:07 openvpn 31416 PUSH: Received control message: 'PUSH_REPLY,sndbuf 393216,rcvbuf 393216,route X.X.X.X,topology net30,ping 10,ping-restart 60,route X.X.X.X 255.255.252.0,route X.X.X.X 255.255.252.0,ifconfig X.X.X.X X.X.X.X' Sep 23 06:03:06 openvpn 31416 SENT CONTROL [srv.dot.com]: 'PUSH_REQUEST' (status=1) Sep 23 06:03:05 openvpn 31416 [srv.dot.com] Peer Connection Initiated with [AF_INET]X.X.X.X:1194 Sep 23 06:03:05 openvpn 31416 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA Sep 23 06:03:04 openvpn 31416 VERIFY OK: depth=0, C=XX, ST=XXX, L=XXX, O=XXX, OU=XXX Operations, CN=srv.dot.com, name=XXX, emailAddress=support@XXX.com Sep 23 06:03:04 openvpn 31416 VERIFY OK: depth=0, C=XX, ST=XXX, L=XXX, O=XXX, OU=XXX Operations, CN=srv.dot.com, name=XXX, emailAddress=support@XXX.com Sep 23 06:03:03 openvpn 31416 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this Sep 23 06:03:03 openvpn 31416 TLS: Initial packet from [AF_INET]X.X.X.X:1194, sid=XXX XXX Sep 23 06:03:02 openvpn 31416 UDPv4 link remote: [AF_INET]X.X.X.X:1194 Sep 23 06:03:02 openvpn 31416 UDPv4 link local (bound): [AF_INET]X.X.X.X:0 Sep 23 06:03:02 openvpn 31416 Socket Buffers: R=[42080->42080] S=[57344->57344] Sep 23 06:03:02 openvpn 31416 TCP/UDP: Preserving recently used remote address: [AF_INET]X.X.X.X:1194 Sep 23 06:03:02 openvpn 31416 Expected Remote Options String (VER=V4): 'V4,dev-type tun,link-mtu 1541,tun-mtu 1500,proto UDPv4,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server' Sep 23 06:03:02 openvpn 31416 Local Options String (VER=V4): 'V4,dev-type tun,link-mtu 1541,tun-mtu 1500,proto UDPv4,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client' Sep 23 06:03:02 openvpn 31416 Data Channel MTU parms [ L:1621 D:1450 EF:121 EB:406 ET:0 EL:3 ] Sep 23 06:03:02 openvpn 31416 Control Channel MTU parms [ L:1621 D:1212 EF:38 EB:0 ET:0 EL:3 ] Sep 23 06:03:02 openvpn 31416 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts Sep 23 06:03:02 openvpn 31416 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info. Sep 23 06:03:02 openvpn 31416 MANAGEMENT: unix domain socket listening on /var/etc/openvpn/client1.sock Sep 23 06:03:02 openvpn 31296 library versions: OpenSSL 1.0.2o-freebsd 27 Mar 2018, LZO 2.10 Sep 23 06:03:02 openvpn 31296 OpenVPN 2.4.6 amd64-portbld-freebsd11.2 [SSL (OpenSSL)] [LZO] [LZ4] [MH/RECVDA] [AEAD] built on Oct 3 2018 Sep 23 06:03:02 openvpn 31296 auth_user_pass_file = '/var/etc/openvpn/client1.up' Sep 23 06:03:02 openvpn 31296 pull = ENABLED Sep 23 06:03:02 openvpn 31296 client = ENABLED Sep 23 06:03:02 openvpn 31296 port_share_port = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 port_share_host = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 auth_token_lifetime = 0 Sep 23 06:03:02 openvpn 31296 auth_token_generate = DISABLED Sep 23 06:03:02 openvpn 31296 auth_user_pass_verify_script_via_file = DISABLED Sep 23 06:03:02 openvpn 31296 auth_user_pass_verify_script = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 max_routes_per_client = 256 Sep 23 06:03:02 openvpn 31296 max_clients = 1024 Sep 23 06:03:02 openvpn 31296 cf_per = 0 Sep 23 06:03:02 openvpn 31296 cf_max = 0 Sep 23 06:03:02 openvpn 31296 duplicate_cn = DISABLED Sep 23 06:03:02 openvpn 31296 enable_c2c = DISABLED Sep 23 06:03:02 openvpn 31296 push_ifconfig_ipv6_remote = :: Sep 23 06:03:02 openvpn 31296 push_ifconfig_ipv6_local = ::/0 Sep 23 06:03:02 openvpn 31296 push_ifconfig_ipv6_defined = DISABLED Sep 23 06:03:02 openvpn 31296 push_ifconfig_remote_netmask = 0.0.0.0 Sep 23 06:03:02 openvpn 31296 push_ifconfig_local = 0.0.0.0 Sep 23 06:03:02 openvpn 31296 push_ifconfig_defined = DISABLED Sep 23 06:03:02 openvpn 31296 tmp_dir = '/tmp' Sep 23 06:03:02 openvpn 31296 ccd_exclusive = DISABLED Sep 23 06:03:02 openvpn 31296 client_config_dir = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 client_disconnect_script = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 learn_address_script = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 client_connect_script = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 virtual_hash_size = 256 Sep 23 06:03:02 openvpn 31296 real_hash_size = 256 Sep 23 06:03:02 openvpn 31296 tcp_queue_limit = 64 Sep 23 06:03:02 openvpn 31296 n_bcast_buf = 256 Sep 23 06:03:02 openvpn 31296 ifconfig_ipv6_pool_netbits = 0 Sep 23 06:03:02 openvpn 31296 ifconfig_ipv6_pool_base = :: Sep 23 06:03:02 openvpn 31296 ifconfig_ipv6_pool_defined = DISABLED Sep 23 06:03:02 openvpn 31296 ifconfig_pool_persist_refresh_freq = 600 Sep 23 06:03:02 openvpn 31296 ifconfig_pool_persist_filename = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 ifconfig_pool_netmask = 0.0.0.0 Sep 23 06:03:02 openvpn 31296 ifconfig_pool_end = 0.0.0.0 Sep 23 06:03:02 openvpn 31296 ifconfig_pool_start = 0.0.0.0 Sep 23 06:03:02 openvpn 31296 ifconfig_pool_defined = DISABLED Sep 23 06:03:02 openvpn 31296 server_bridge_pool_end = 0.0.0.0 Sep 23 06:03:02 openvpn 31296 server_bridge_pool_start = 0.0.0.0 Sep 23 06:03:02 openvpn 31296 server_bridge_netmask = 0.0.0.0 Sep 23 06:03:02 openvpn 31296 server_bridge_ip = 0.0.0.0 Sep 23 06:03:02 openvpn 31296 server_netbits_ipv6 = 0 Sep 23 06:03:02 openvpn 31296 server_network_ipv6 = :: Sep 23 06:03:02 openvpn 31296 server_netmask = 0.0.0.0 Sep 23 06:03:02 openvpn 31296 server_network = 0.0.0.0 Sep 23 06:03:02 openvpn 31296 tls_crypt_file = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 tls_auth_file = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 tls_exit = DISABLED Sep 23 06:03:02 openvpn 31296 push_peer_info = DISABLED Sep 23 06:03:02 openvpn 31296 single_session = DISABLED Sep 23 06:03:02 openvpn 31296 transition_window = 3600 Sep 23 06:03:02 openvpn 31296 handshake_window = 60 Sep 23 06:03:02 openvpn 31296 renegotiate_seconds = 3600 Sep 23 06:03:02 openvpn 31296 renegotiate_packets = 0 Sep 23 06:03:02 openvpn 31296 renegotiate_bytes = -1 Sep 23 06:03:02 openvpn 31296 tls_timeout = 2 Sep 23 06:03:02 openvpn 31296 ssl_flags = 0 Sep 23 06:03:02 openvpn 31296 remote_cert_eku = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 remote_cert_ku[i] = 0 Sep 23 06:03:02 openvpn 31296 remote_cert_ku[i] = 0 Sep 23 06:03:02 openvpn 31296 remote_cert_ku[i] = 0 Sep 23 06:03:02 openvpn 31296 remote_cert_ku[i] = 0 Sep 23 06:03:02 openvpn 31296 remote_cert_ku[i] = 0 Sep 23 06:03:02 openvpn 31296 remote_cert_ku[i] = 0 Sep 23 06:03:02 openvpn 31296 remote_cert_ku[i] = 0 Sep 23 06:03:02 openvpn 31296 remote_cert_ku[i] = 0 Sep 23 06:03:02 openvpn 31296 remote_cert_ku[i] = 0 Sep 23 06:03:02 openvpn 31296 remote_cert_ku[i] = 0 Sep 23 06:03:02 openvpn 31296 remote_cert_ku[i] = 0 Sep 23 06:03:02 openvpn 31296 remote_cert_ku[i] = 0 Sep 23 06:03:02 openvpn 31296 remote_cert_ku[i] = 0 Sep 23 06:03:02 openvpn 31296 remote_cert_ku[i] = 0 Sep 23 06:03:02 openvpn 31296 remote_cert_ku[i] = 0 Sep 23 06:03:02 openvpn 31296 remote_cert_ku[i] = 0 Sep 23 06:03:02 openvpn 31296 ns_cert_type = 0 Sep 23 06:03:02 openvpn 31296 crl_file = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 verify_x509_name = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 verify_x509_type = 0 Sep 23 06:03:02 openvpn 31296 tls_export_cert = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 tls_verify = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 tls_cert_profile = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 cipher_list = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 pkcs12_file = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 priv_key_file = '/var/etc/openvpn/client1.key' Sep 23 06:03:02 openvpn 31296 extra_certs_file = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 cert_file = '/var/etc/openvpn/client1.cert' Sep 23 06:03:02 openvpn 31296 dh_file = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 ca_path = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 ca_file = '/var/etc/openvpn/client1.ca' Sep 23 06:03:02 openvpn 31296 key_method = 2 Sep 23 06:03:02 openvpn 31296 tls_client = ENABLED Sep 23 06:03:02 openvpn 31296 tls_server = DISABLED Sep 23 06:03:02 openvpn 31296 test_crypto = DISABLED Sep 23 06:03:02 openvpn 31296 use_iv = ENABLED Sep 23 06:03:02 openvpn 31296 packet_id_file = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 replay_time = 15 Sep 23 06:03:02 openvpn 31296 replay_window = 64 Sep 23 06:03:02 openvpn 31296 mute_replay_warnings = DISABLED Sep 23 06:03:02 openvpn 31296 replay = ENABLED Sep 23 06:03:02 openvpn 31296 engine = DISABLED Sep 23 06:03:02 openvpn 31296 keysize = 0 Sep 23 06:03:02 openvpn 31296 prng_nonce_secret_len = 16 Sep 23 06:03:02 openvpn 31296 prng_hash = 'SHA1' Sep 23 06:03:02 openvpn 31296 authname = 'SHA1' Sep 23 06:03:02 openvpn 31296 ncp_ciphers = 'AES-256-GCM:AES-128-GCM' Sep 23 06:03:02 openvpn 31296 ncp_enabled = DISABLED Sep 23 06:03:02 openvpn 31296 ciphername = 'BF-CBC' Sep 23 06:03:02 openvpn 31296 key_direction = not set Sep 23 06:03:02 openvpn 31296 shared_secret_file = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 management_flags = 256 Sep 23 06:03:02 openvpn 31296 management_client_group = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 management_client_user = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 management_write_peer_info_file = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 management_echo_buffer_size = 100 Sep 23 06:03:02 openvpn 31296 management_log_history_cache = 250 Sep 23 06:03:02 openvpn 31296 management_user_pass = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 management_port = 'unix' Sep 23 06:03:02 openvpn 31296 management_addr = '/var/etc/openvpn/client1.sock' Sep 23 06:03:02 openvpn 31296 allow_pull_fqdn = DISABLED Sep 23 06:03:02 openvpn 31296 route_gateway_via_dhcp = DISABLED Sep 23 06:03:02 openvpn 31296 route_nopull = DISABLED Sep 23 06:03:02 openvpn 31296 route_delay_defined = DISABLED Sep 23 06:03:02 openvpn 31296 route_delay_window = 30 Sep 23 06:03:02 openvpn 31296 route_delay = 0 Sep 23 06:03:02 openvpn 31296 route_noexec = DISABLED Sep 23 06:03:02 openvpn 31296 route_default_metric = 0 Sep 23 06:03:02 openvpn 31296 route_default_gateway = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 route_script = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 comp.flags = 0 Sep 23 06:03:02 openvpn 31296 comp.alg = 0 Sep 23 06:03:02 openvpn 31296 fast_io = DISABLED Sep 23 06:03:02 openvpn 31296 sockflags = 0 Sep 23 06:03:02 openvpn 31296 sndbuf = 0 Sep 23 06:03:02 openvpn 31296 rcvbuf = 0 Sep 23 06:03:02 openvpn 31296 occ = ENABLED Sep 23 06:03:02 openvpn 31296 status_file_update_freq = 60 Sep 23 06:03:02 openvpn 31296 status_file_version = 1 Sep 23 06:03:02 openvpn 31296 status_file = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 gremlin = 0 Sep 23 06:03:02 openvpn 31296 mute = 0 Sep 23 06:03:02 openvpn 31296 verbosity = 4 Sep 23 06:03:02 openvpn 31296 nice = 0 Sep 23 06:03:02 openvpn 31296 machine_readable_output = DISABLED Sep 23 06:03:02 openvpn 31296 suppress_timestamps = DISABLED Sep 23 06:03:02 openvpn 31296 log = DISABLED Sep 23 06:03:02 openvpn 31296 inetd = 0 Sep 23 06:03:02 openvpn 31296 daemon = ENABLED Sep 23 06:03:02 openvpn 31296 up_delay = DISABLED Sep 23 06:03:02 openvpn 31296 up_restart = DISABLED Sep 23 06:03:02 openvpn 31296 down_pre = DISABLED Sep 23 06:03:02 openvpn 31296 down_script = '/usr/local/sbin/ovpn-linkdown' Sep 23 06:03:02 openvpn 31296 up_script = '/usr/local/sbin/ovpn-linkup' Sep 23 06:03:02 openvpn 31296 writepid = '/var/run/openvpn_client1.pid' Sep 23 06:03:02 openvpn 31296 cd_dir = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 chroot_dir = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 groupname = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 username = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 resolve_in_advance = DISABLED Sep 23 06:03:02 openvpn 31296 resolve_retry_seconds = 1000000000 Sep 23 06:03:02 openvpn 31296 passtos = DISABLED Sep 23 06:03:02 openvpn 31296 persist_key = ENABLED Sep 23 06:03:02 openvpn 31296 persist_remote_ip = DISABLED Sep 23 06:03:02 openvpn 31296 persist_local_ip = DISABLED Sep 23 06:03:02 openvpn 31296 persist_tun = ENABLED Sep 23 06:03:02 openvpn 31296 remap_sigusr1 = 0 Sep 23 06:03:02 openvpn 31296 ping_timer_remote = ENABLED Sep 23 06:03:02 openvpn 31296 ping_rec_timeout_action = 2 Sep 23 06:03:02 openvpn 31296 ping_rec_timeout = 60 Sep 23 06:03:02 openvpn 31296 ping_send_timeout = 10 Sep 23 06:03:02 openvpn 31296 inactivity_timeout = 0 Sep 23 06:03:02 openvpn 31296 keepalive_timeout = 60 Sep 23 06:03:02 openvpn 31296 keepalive_ping = 10 Sep 23 06:03:02 openvpn 31296 mlock = DISABLED Sep 23 06:03:02 openvpn 31296 mtu_test = 0 Sep 23 06:03:02 openvpn 31296 shaper = 0 Sep 23 06:03:02 openvpn 31296 ifconfig_ipv6_remote = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 ifconfig_ipv6_netbits = 0 Sep 23 06:03:02 openvpn 31296 ifconfig_ipv6_local = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 ifconfig_nowarn = DISABLED Sep 23 06:03:02 openvpn 31296 ifconfig_noexec = DISABLED Sep 23 06:03:02 openvpn 31296 ifconfig_remote_netmask = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 ifconfig_local = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 topology = 1 Sep 23 06:03:02 openvpn 31296 lladdr = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 dev_node = '/dev/tun1' Sep 23 06:03:02 openvpn 31296 dev_type = 'tun' Sep 23 06:03:02 openvpn 31296 dev = 'ovpnc1' Sep 23 06:03:02 openvpn 31296 ipchange = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 remote_random = DISABLED Sep 23 06:03:02 openvpn 31296 Connection profiles END Sep 23 06:03:02 openvpn 31296 explicit_exit_notification = 0 Sep 23 06:03:02 openvpn 31296 mssfix = 1450 Sep 23 06:03:02 openvpn 31296 fragment = 0 Sep 23 06:03:02 openvpn 31296 mtu_discover_type = -1 Sep 23 06:03:02 openvpn 31296 tun_mtu_extra_defined = DISABLED Sep 23 06:03:02 openvpn 31296 tun_mtu_extra = 0 Sep 23 06:03:02 openvpn 31296 link_mtu_defined = DISABLED Sep 23 06:03:02 openvpn 31296 link_mtu = 1500 Sep 23 06:03:02 openvpn 31296 tun_mtu_defined = ENABLED Sep 23 06:03:02 openvpn 31296 tun_mtu = 1500 Sep 23 06:03:02 openvpn 31296 socks_proxy_port = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 socks_proxy_server = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 connect_timeout = 120 Sep 23 06:03:02 openvpn 31296 connect_retry_seconds = 5 Sep 23 06:03:02 openvpn 31296 bind_ipv6_only = DISABLED Sep 23 06:03:02 openvpn 31296 bind_local = ENABLED Sep 23 06:03:02 openvpn 31296 bind_defined = DISABLED Sep 23 06:03:02 openvpn 31296 remote_float = DISABLED Sep 23 06:03:02 openvpn 31296 remote_port = '1194' Sep 23 06:03:02 openvpn 31296 remote = 'srv.dot.com' Sep 23 06:03:02 openvpn 31296 local_port = '0' Sep 23 06:03:02 openvpn 31296 local = 'X.X.X.X' Sep 23 06:03:02 openvpn 31296 proto = udp4 Sep 23 06:03:02 openvpn 31296 Connection profiles [0]: Sep 23 06:03:02 openvpn 31296 connect_retry_max = 0 Sep 23 06:03:02 openvpn 31296 show_tls_ciphers = DISABLED Sep 23 06:03:02 openvpn 31296 key_pass_file = '[UNDEF]' Sep 23 06:03:02 openvpn 31296 genkey = DISABLED Sep 23 06:03:02 openvpn 31296 show_engines = DISABLED Sep 23 06:03:02 openvpn 31296 show_digests = DISABLED Sep 23 06:03:02 openvpn 31296 show_ciphers = DISABLED Sep 23 06:03:02 openvpn 31296 mode = 0 Sep 23 06:03:02 openvpn 31296 config = '/var/etc/openvpn/client1.conf' Sep 23 06:03:02 openvpn 31296 Current Parameter Settings: Sep 23 06:03:02 openvpn 31296 WARNING: file '/var/etc/openvpn/client1.up' is group or others accessible Sep 23 06:03:02 openvpn 5052 SIGTERM[hard,] received, process exiting Sep 23 06:03:02 openvpn 5052 /usr/local/sbin/ovpn-linkdown ovpnc1 1500 1541 X.X.X.X X.X.X.X init Sep 23 06:03:02 openvpn 5052 Closing TUN/TAP interface Sep 23 06:03:02 openvpn 5052 /sbin/route delete -net X.X.X.X X.X.X.X 255.255.252.0 Sep 23 06:03:02 openvpn 5052 /sbin/route delete -net X.X.X.X X.X.X.X 255.255.252.0 Sep 23 06:03:02 openvpn 5052 /sbin/route delete -net X.X.X.X X.X.X.X 255.255.255.255 Sep 23 06:03:02 openvpn 5052 TCP/UDP: Closing socket Sep 23 06:03:02 openvpn 5052 event_wait : Interrupted system call (code=4) Sep 23 06:02:55 openvpn 5052 MANAGEMENT: Client disconnected Sep 23 06:02:55 openvpn 5052 MANAGEMENT: CMD 'status 2' Sep 23 06:02:55 openvpn 5052 MANAGEMENT: CMD 'state 1' Sep 23 06:02:55 openvpn 5052 MANAGEMENT: Client connected from /var/etc/openvpn/client1.sock Sep 23 05:52:05 openvpn 5052 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA Sep 23 05:52:05 openvpn 5052 Incoming Data Channel: Using 160 bit message hash 'SHA1' for HMAC authentication Sep 23 05:52:05 openvpn 5052 WARNING: INSECURE cipher with block size less than 128 bit (64 bit). This allows attacks like SWEET32. Mitigate by using a --cipher with a larger block size (e.g. AES-256-CBC). Sep 23 05:52:05 openvpn 5052 Incoming Data Channel: Cipher 'BF-CBC' initialized with 128 bit key Sep 23 05:52:05 openvpn 5052 Outgoing Data Channel: Using 160 bit message hash 'SHA1' for HMAC authentication Sep 23 05:52:05 openvpn 5052 WARNING: INSECURE cipher with block size less than 128 bit (64 bit). This allows attacks like SWEET32. Mitigate by using a --cipher with a larger block size (e.g. AES-256-CBC). Sep 23 05:52:05 openvpn 5052 Outgoing Data Channel: Cipher 'BF-CBC' initialized with 128 bit key Sep 23 05:52:04 openvpn 5052 VERIFY OK: depth=0, C=XX, ST=XXX, L=XXX, O=XXX, OU=XXX Operations, CN=srv.dot.com, name=XXX, emailAddress=support@XXX.com Sep 23 05:52:04 openvpn 5052 VERIFY OK: depth=0, C=XX, ST=XXX, L=XXX, O=XXX, OU=XXX Operations, CN=srv.dot.com, name=XXX, emailAddress=support@XXX.com Sep 23 05:52:04 openvpn 5052 TLS: soft reset sec=0 bytes=485822/67108864 pkts=7107/0 Sep 23 05:52:03 openvpn 5052 TLS: tls_process: killed expiring key Sep 23 04:52:04 openvpn 5052 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA