Non-standard OpenVPN port only open for a few seconds after daemon start
-
Hi,
one of our sites' OpenVPN 2.3.17 server running on pfSense 2.3.4-RELEASE-p1 is exhibiting the following behavior. Connections to it from arbitrary OpenVPN clients are only possible for a brief timespan of a few seconds. Basically we start the daemon and immediately initialize a client connection which works just fine. If a client misses the 1- or 2-second window connection attempts fail forever and ever until we next restart the daemon. The behavior remains unchanged with different clients. In our specific use case we generally use our local on-site pfSense box as a client to connect to the remote pfSense box.
We recently updated OpenVPN on our reomte site's pfSense box which didn't change this specific behavior but in general it improved connection stability. The remote OpenVPN daemon is listening on a non-standard TCP port above 1024.
Getting meaningful tcpdump data proved difficult to pinpoint the root cause on our own. It simply didn't show our connection attempts which in all likelihood is due to us not specifying the right parameters. The remote pfSense is generally well utilized during the day, weeding out irrelevant tcpdump data was trickier than we anticipated. We went with a series of netcat connection tests such as this one:
nc -nzp 51114 -w 1 -v <remote-ip> <non-standard-port> ... which means: -n Skip DNS lookups; also reverse DNS lookups -z Zero I/O mode, skip sending actual data -p Use specific source port for better greppability in tcpdump -w Wait only x seconds prior to timeout -v Verbose</non-standard-port></remote-ip>
Firewall rules appear to be set up correctly.
Switching to UDP doesn't change the behavior. Connections are still dropped when they come in more than 1 or 2 seconds after daemon start. On this specific remote pfSense box we do have one OpenVPN instance running on standard port 1194 UDP which is connectable just fine.
We'd gladly accept any hints you fine folks might have as to what's causing the behavior and how to resolve it.
-
What is in the OpenVPN logs for these attempts?
-
We were about to get a hold of OpenVPN logs and wanted to filter them in "Status > System Logs > OpenVPN" by their process IDs to make them more readily digestable. While getting process IDs via sockstat -l we saw that the daemon instance in question has a total of three listening sockets instead of the (apparently) usual two sockets per instance.
--> root openvpn 9105 5 stream /var/etc/openvpn/server6.sock --> root openvpn 9105 8 tcp4 1.2.3.4:<non-standard-port> *:* --> root openvpn 9105 10 stream /var/run/php-fpm.socket root openvpn 44619 5 stream /var/etc/openvpn/server7.sock root openvpn 44619 6 udp4 1.2.3.4:<non-standard-port> *:* root openvpn 40314 5 stream /var/etc/openvpn/server5.sock root openvpn 37723 5 stream /var/etc/openvpn/server4.sock root openvpn 37723 6 udp4 1.2.3.4:<non-standard-port> *:* root openvpn 35376 5 stream /var/etc/openvpn/server3.sock root openvpn 35376 6 udp4 1.2.3.4:<non-standard-port> *:* root openvpn 33446 5 stream /var/etc/openvpn/server2.sock root openvpn 33446 6 udp4 1.2.3.4:<non-standard-port> *:* root openvpn 31477 5 stream /var/etc/openvpn/server1.sock root openvpn 31477 6 udp4 1.2.3.4:1194 *:*</non-standard-port></non-standard-port></non-standard-port></non-standard-port></non-standard-port>
Apparently ever since we created this daemon instance (and additional test instances just now), all of them have a '/var/run/php-fpm.socket' socket. It may not mean anything, it just stood out as unusual. The instances using 'server(1..4).sock' don't have a 'php-fpm.socket'. Switching this instance to a different port or to UDP doesn't change the overall behavior, neither the one from this post nor the original one. Creating a new instance shows the same behavior as well.
Interestingly, if we run netcat connection attempts in a loop in 2-second intervals we sometimes see them succeed for up to 30 seconds after a daemon restart - at least partially. In our sockstat example PID 9105 sees its tcp4 socket vanishing and re-establishing during the time each timeout occurs:
(UNKNOWN) [1.2.3.4] <non-standard-port> (?) open (UNKNOWN) [1.2.3.4] <non-standard-port> (?) : Connection timed out (UNKNOWN) [1.2.3.4] <non-standard-port> (?) open (UNKNOWN) [1.2.3.4] <non-standard-port> (?) : Connection timed out (UNKNOWN) [1.2.3.4] <non-standard-port> (?) open (UNKNOWN) [1.2.3.4] <non-standard-port> (?) : Connection timed out (UNKNOWN) [1.2.3.4] <non-standard-port> (?) open (UNKNOWN) [1.2.3.4] <non-standard-port> (?) : Connection timed out (UNKNOWN) [1.2.3.4] <non-standard-port> (?) open (UNKNOWN) [1.2.3.4] <non-standard-port> (?) : Connection timed out (UNKNOWN) [1.2.3.4] <non-standard-port> (?) open (UNKNOWN) [1.2.3.4] <non-standard-port> (?) : Connection timed out</non-standard-port></non-standard-port></non-standard-port></non-standard-port></non-standard-port></non-standard-port></non-standard-port></non-standard-port></non-standard-port></non-standard-port></non-standard-port></non-standard-port>
Shortly afterwards, however, it ends up in the usual state where all attempts fail:
(UNKNOWN) [1.2.3.4] <non-standard-port> (?) : Connection timed out (UNKNOWN) [1.2.3.4] <non-standard-port> (?) : Connection timed out (UNKNOWN) [1.2.3.4] <non-standard-port> (?) : Connection timed out (UNKNOWN) [1.2.3.4] <non-standard-port> (?) : Connection timed out</non-standard-port></non-standard-port></non-standard-port></non-standard-port>
The behavior isn't entirely reproducible. Maybe the 30-or-so-second window only happens because we don't send any meaningful data during these netcat attempts. Anyway, seeing php-fpm there looks a bit unnatural. We stumbled over topic "php-fpm crash" and for shits and giggles turned off OpenVPN's dashboard widget and restarted the web interface. Just to test if the widget was related to the php-fpm bit. That was sort of a wild guess and didn't change anything about our issue.
As far as OpenVPN server logs are concerned, I'll attach them tomorrow.
//edit: Forgot one of the more important bits: at times when connectability only lasts 1 or 2 seconds the daemon instance closes altogether. Which, of course, explains why clients are no longer able to connect at all. I'll get to those logs.
-
The socket thing is normal/expected and doesn't matter. The php-fpm crash wouldn't be relevant to this either. If PHP were to get hung up then you'd have a bunch of log messages from OpenVPN but it would fail to authenticate.
Is that really all you see in the logs? What about for actual OpenVPN client (not netcat) connection attempts?
Do you have any other packages installed that might be causing traffic to get blocked? (e.g. pfblocker, snort or suricata, etc)
-
I got a hold of OpenVPN logs from our remote site's daemon - the one whose tcp4 closes according to what sockstat -l reports. I'm attaching logs for two tests. For the first one we started the remote daemon and shortly afterwards started a client on our local pfSense box. The client comes in from 1.2.29.39 which is, of course, ficticious but readily identifiable in the log. Our non-standard listening port is set to 9999 for this example's sake. Apparently we were too slow since the client kept reporting its tunnel as down. Log starts at timestamp Sep 12 15:59:01, daemon initialization completes I believe just shy of 15:59:02 and we stop the instance at 15:59:40.
Sep 12 15:59:01 firewall-a openvpn[80255]: Current Parameter Settings: Sep 12 15:59:01 firewall-a openvpn[80255]: config = '/var/etc/openvpn/server6.conf' Sep 12 15:59:01 firewall-a openvpn[80255]: mode = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: show_ciphers = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: show_digests = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: show_engines = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: genkey = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: key_pass_file = '[UNDEF]' Sep 12 15:59:01 firewall-a openvpn[80255]: show_tls_ciphers = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: Connection profiles [default]: Sep 12 15:59:01 firewall-a openvpn[80255]: proto = tcp-server Sep 12 15:59:01 firewall-a openvpn[80255]: local = '1.2.3.165' Sep 12 15:59:01 firewall-a openvpn[80255]: local_port = 9999 Sep 12 15:59:01 firewall-a openvpn[80255]: remote = '[UNDEF]' Sep 12 15:59:01 firewall-a openvpn[80255]: remote_port = 1194 Sep 12 15:59:01 firewall-a openvpn[80255]: remote_float = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: bind_defined = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: bind_local = ENABLED Sep 12 15:59:01 firewall-a openvpn[80255]: connect_retry_seconds = 5 Sep 12 15:59:01 firewall-a openvpn[80255]: connect_timeout = 10 Sep 12 15:59:01 firewall-a openvpn[80255]: connect_retry_max = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: socks_proxy_server = '[UNDEF]' Sep 12 15:59:01 firewall-a openvpn[80255]: socks_proxy_port = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: socks_proxy_retry = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: tun_mtu = 1500 Sep 12 15:59:01 firewall-a openvpn[80255]: tun_mtu_defined = ENABLED Sep 12 15:59:01 firewall-a openvpn[80255]: link_mtu = 1500 Sep 12 15:59:01 firewall-a openvpn[80255]: link_mtu_defined = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: tun_mtu_extra = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: tun_mtu_extra_defined = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: mtu_discover_type = -1 Sep 12 15:59:01 firewall-a openvpn[80255]: fragment = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: mssfix = 1450 Sep 12 15:59:01 firewall-a openvpn[80255]: explicit_exit_notification = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: Connection profiles END Sep 12 15:59:01 firewall-a openvpn[80255]: remote_random = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: ipchange = '[UNDEF]' Sep 12 15:59:01 firewall-a openvpn[80255]: dev = 'ovpns6' Sep 12 15:59:01 firewall-a openvpn[80255]: dev_type = 'tun' Sep 12 15:59:01 firewall-a openvpn[80255]: dev_node = '/dev/tun6' Sep 12 15:59:01 firewall-a openvpn[80255]: lladdr = '[UNDEF]' Sep 12 15:59:01 firewall-a openvpn[80255]: topology = 1 Sep 12 15:59:01 firewall-a openvpn[80255]: tun_ipv6 = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: ifconfig_local = '1.2.6.1' Sep 12 15:59:01 firewall-a openvpn[80255]: ifconfig_remote_netmask = '1.2.6.2' Sep 12 15:59:01 firewall-a openvpn[80255]: ifconfig_noexec = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: ifconfig_nowarn = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: ifconfig_ipv6_local = '[UNDEF]' Sep 12 15:59:01 firewall-a openvpn[80255]: ifconfig_ipv6_netbits = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: ifconfig_ipv6_remote = '[UNDEF]' Sep 12 15:59:01 firewall-a openvpn[80255]: shaper = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: mtu_test = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: mlock = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: keepalive_ping = 10 Sep 12 15:59:01 firewall-a openvpn[80255]: keepalive_timeout = 60 Sep 12 15:59:01 firewall-a openvpn[80255]: inactivity_timeout = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: ping_send_timeout = 10 Sep 12 15:59:01 firewall-a openvpn[80255]: ping_rec_timeout = 60 Sep 12 15:59:01 firewall-a openvpn[80255]: ping_rec_timeout_action = 2 Sep 12 15:59:01 firewall-a openvpn[80255]: ping_timer_remote = ENABLED Sep 12 15:59:01 firewall-a openvpn[80255]: remap_sigusr1 = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: persist_tun = ENABLED Sep 12 15:59:01 firewall-a openvpn[80255]: persist_local_ip = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: persist_remote_ip = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: persist_key = ENABLED Sep 12 15:59:01 firewall-a openvpn[80255]: passtos = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: resolve_retry_seconds = 1000000000 Sep 12 15:59:01 firewall-a openvpn[80255]: username = '[UNDEF]' Sep 12 15:59:01 firewall-a openvpn[80255]: groupname = '[UNDEF]' Sep 12 15:59:01 firewall-a openvpn[80255]: chroot_dir = '[UNDEF]' Sep 12 15:59:01 firewall-a openvpn[80255]: cd_dir = '[UNDEF]' Sep 12 15:59:01 firewall-a openvpn[80255]: writepid = '/var/run/openvpn_server6.pid' Sep 12 15:59:01 firewall-a openvpn[80255]: up_script = '/usr/local/sbin/ovpn-linkup' Sep 12 15:59:01 firewall-a openvpn[80255]: down_script = '/usr/local/sbin/ovpn-linkdown' Sep 12 15:59:01 firewall-a openvpn[80255]: down_pre = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: up_restart = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: up_delay = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: daemon = ENABLED Sep 12 15:59:01 firewall-a openvpn[80255]: inetd = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: log = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: suppress_timestamps = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: nice = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: verbosity = 11 Sep 12 15:59:01 firewall-a openvpn[80255]: mute = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: gremlin = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: status_file = '[UNDEF]' Sep 12 15:59:01 firewall-a openvpn[80255]: status_file_version = 1 Sep 12 15:59:01 firewall-a openvpn[80255]: status_file_update_freq = 60 Sep 12 15:59:01 firewall-a openvpn[80255]: occ = ENABLED Sep 12 15:59:01 firewall-a openvpn[80255]: rcvbuf = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: sndbuf = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: sockflags = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: fast_io = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: lzo = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: route_script = '[UNDEF]' Sep 12 15:59:01 firewall-a openvpn[80255]: route_default_gateway = '[UNDEF]' Sep 12 15:59:01 firewall-a openvpn[80255]: route_default_metric = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: route_noexec = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: route_delay = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: route_delay_window = 30 Sep 12 15:59:01 firewall-a openvpn[80255]: route_delay_defined = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: route_nopull = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: route_gateway_via_dhcp = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: max_routes = 100 Sep 12 15:59:01 firewall-a openvpn[80255]: allow_pull_fqdn = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: route 1.2.100.0/255.255.255.0/default (not set)/default (not set) Sep 12 15:59:01 firewall-a openvpn[80255]: route 1.2.150.0/255.255.255.0/default (not set)/default (not set) Sep 12 15:59:01 firewall-a openvpn[80255]: management_addr = '/var/etc/openvpn/server6.sock' Sep 12 15:59:01 firewall-a openvpn[80255]: management_port = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: management_user_pass = '[UNDEF]' Sep 12 15:59:01 firewall-a openvpn[80255]: management_log_history_cache = 250 Sep 12 15:59:01 firewall-a openvpn[80255]: management_echo_buffer_size = 100 Sep 12 15:59:01 firewall-a openvpn[80255]: management_write_peer_info_file = '[UNDEF]' Sep 12 15:59:01 firewall-a openvpn[80255]: management_client_user = '[UNDEF]' Sep 12 15:59:01 firewall-a openvpn[80255]: management_client_group = '[UNDEF]' Sep 12 15:59:01 firewall-a openvpn[80255]: management_flags = 256 Sep 12 15:59:01 firewall-a openvpn[80255]: shared_secret_file = '/var/etc/openvpn/server6.secret' Sep 12 15:59:01 firewall-a openvpn[80255]: key_direction = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: ciphername_defined = ENABLED Sep 12 15:59:01 firewall-a openvpn[80255]: ciphername = 'AES-128-CBC' Sep 12 15:59:01 firewall-a openvpn[80255]: authname_defined = ENABLED Sep 12 15:59:01 firewall-a openvpn[80255]: authname = 'SHA1' Sep 12 15:59:01 firewall-a openvpn[80255]: prng_hash = 'SHA1' Sep 12 15:59:01 firewall-a openvpn[80255]: prng_nonce_secret_len = 16 Sep 12 15:59:01 firewall-a openvpn[80255]: keysize = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: engine = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: replay = ENABLED Sep 12 15:59:01 firewall-a openvpn[80255]: mute_replay_warnings = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: replay_window = 64 Sep 12 15:59:01 firewall-a openvpn[80255]: replay_time = 15 Sep 12 15:59:01 firewall-a openvpn[80255]: packet_id_file = '[UNDEF]' Sep 12 15:59:01 firewall-a openvpn[80255]: use_iv = ENABLED Sep 12 15:59:01 firewall-a openvpn[80255]: test_crypto = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: tls_server = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: tls_client = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: key_method = 2 Sep 12 15:59:01 firewall-a openvpn[80255]: ca_file = '[UNDEF]' Sep 12 15:59:01 firewall-a openvpn[80255]: ca_path = '[UNDEF]' Sep 12 15:59:01 firewall-a openvpn[80255]: dh_file = '[UNDEF]' Sep 12 15:59:01 firewall-a openvpn[80255]: cert_file = '[UNDEF]' Sep 12 15:59:01 firewall-a openvpn[80255]: extra_certs_file = '[UNDEF]' Sep 12 15:59:01 firewall-a openvpn[80255]: priv_key_file = '[UNDEF]' Sep 12 15:59:01 firewall-a openvpn[80255]: pkcs12_file = '[UNDEF]' Sep 12 15:59:01 firewall-a openvpn[80255]: cipher_list = '[UNDEF]' Sep 12 15:59:01 firewall-a openvpn[80255]: tls_verify = '[UNDEF]' Sep 12 15:59:01 firewall-a openvpn[80255]: tls_export_cert = '[UNDEF]' Sep 12 15:59:01 firewall-a openvpn[80255]: verify_x509_type = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: verify_x509_name = '[UNDEF]' Sep 12 15:59:01 firewall-a openvpn[80255]: crl_file = '[UNDEF]' Sep 12 15:59:01 firewall-a openvpn[80255]: ns_cert_type = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: remote_cert_ku[i] = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: remote_cert_ku[i] = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: remote_cert_ku[i] = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: remote_cert_ku[i] = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: remote_cert_ku[i] = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: remote_cert_ku[i] = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: remote_cert_ku[i] = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: remote_cert_ku[i] = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: remote_cert_ku[i] = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: remote_cert_ku[i] = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: remote_cert_ku[i] = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: remote_cert_ku[i] = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: remote_cert_ku[i] = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: remote_cert_ku[i] = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: remote_cert_ku[i] = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: remote_cert_ku[i] = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: remote_cert_eku = '[UNDEF]' Sep 12 15:59:01 firewall-a openvpn[80255]: ssl_flags = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: tls_timeout = 2 Sep 12 15:59:01 firewall-a openvpn[80255]: renegotiate_bytes = -1 Sep 12 15:59:01 firewall-a openvpn[80255]: renegotiate_packets = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: renegotiate_seconds = 3600 Sep 12 15:59:01 firewall-a openvpn[80255]: handshake_window = 60 Sep 12 15:59:01 firewall-a openvpn[80255]: transition_window = 3600 Sep 12 15:59:01 firewall-a openvpn[80255]: single_session = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: push_peer_info = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: tls_exit = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: tls_auth_file = '[UNDEF]' Sep 12 15:59:01 firewall-a openvpn[80255]: server_network = 0.0.0.0 Sep 12 15:59:01 firewall-a openvpn[80255]: server_netmask = 0.0.0.0 Sep 12 15:59:01 firewall-a openvpn[80255]: server_network_ipv6 = :: Sep 12 15:59:01 firewall-a openvpn[80255]: server_netbits_ipv6 = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: server_bridge_ip = 0.0.0.0 Sep 12 15:59:01 firewall-a openvpn[80255]: server_bridge_netmask = 0.0.0.0 Sep 12 15:59:01 firewall-a openvpn[80255]: server_bridge_pool_start = 0.0.0.0 Sep 12 15:59:01 firewall-a openvpn[80255]: server_bridge_pool_end = 0.0.0.0 Sep 12 15:59:01 firewall-a openvpn[80255]: ifconfig_pool_defined = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: ifconfig_pool_start = 0.0.0.0 Sep 12 15:59:01 firewall-a openvpn[80255]: ifconfig_pool_end = 0.0.0.0 Sep 12 15:59:01 firewall-a openvpn[80255]: ifconfig_pool_netmask = 0.0.0.0 Sep 12 15:59:01 firewall-a openvpn[80255]: ifconfig_pool_persist_filename = '[UNDEF]' Sep 12 15:59:01 firewall-a openvpn[80255]: ifconfig_pool_persist_refresh_freq = 600 Sep 12 15:59:01 firewall-a openvpn[80255]: ifconfig_ipv6_pool_defined = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: ifconfig_ipv6_pool_base = :: Sep 12 15:59:01 firewall-a openvpn[80255]: ifconfig_ipv6_pool_netbits = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: n_bcast_buf = 256 Sep 12 15:59:01 firewall-a openvpn[80255]: tcp_queue_limit = 64 Sep 12 15:59:01 firewall-a openvpn[80255]: real_hash_size = 256 Sep 12 15:59:01 firewall-a openvpn[80255]: virtual_hash_size = 256 Sep 12 15:59:01 firewall-a openvpn[80255]: client_connect_script = '[UNDEF]' Sep 12 15:59:01 firewall-a openvpn[80255]: learn_address_script = '[UNDEF]' Sep 12 15:59:01 firewall-a openvpn[80255]: client_disconnect_script = '[UNDEF]' Sep 12 15:59:01 firewall-a openvpn[80255]: client_config_dir = '[UNDEF]' Sep 12 15:59:01 firewall-a openvpn[80255]: ccd_exclusive = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: tmp_dir = '/tmp' Sep 12 15:59:01 firewall-a openvpn[80255]: push_ifconfig_defined = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: push_ifconfig_local = 0.0.0.0 Sep 12 15:59:01 firewall-a openvpn[80255]: push_ifconfig_remote_netmask = 0.0.0.0 Sep 12 15:59:01 firewall-a openvpn[80255]: push_ifconfig_ipv6_defined = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: push_ifconfig_ipv6_local = ::/0 Sep 12 15:59:01 firewall-a openvpn[80255]: push_ifconfig_ipv6_remote = :: Sep 12 15:59:01 firewall-a openvpn[80255]: enable_c2c = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: duplicate_cn = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: cf_max = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: cf_per = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: max_clients = 1024 Sep 12 15:59:01 firewall-a openvpn[80255]: max_routes_per_client = 256 Sep 12 15:59:01 firewall-a openvpn[80255]: auth_user_pass_verify_script = '[UNDEF]' Sep 12 15:59:01 firewall-a openvpn[80255]: auth_user_pass_verify_script_via_file = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: port_share_host = '[UNDEF]' Sep 12 15:59:01 firewall-a openvpn[80255]: port_share_port = 0 Sep 12 15:59:01 firewall-a openvpn[80255]: client = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: pull = DISABLED Sep 12 15:59:01 firewall-a openvpn[80255]: auth_user_pass_file = '[UNDEF]' Sep 12 15:59:01 firewall-a openvpn[80255]: OpenVPN 2.3.17 amd64-portbld-freebsd10.3 [SSL (OpenSSL)] [LZO] [MH] [IPv6] built on Jun 26 2017 Sep 12 15:59:01 firewall-a openvpn[80255]: library versions: OpenSSL 1.0.1s-freebsd 1 Mar 2016, LZO 2.10 Sep 12 15:59:01 firewall-a openvpn[80590]: PO_INIT maxevents=1 flags=0x00000002 Sep 12 15:59:01 firewall-a openvpn[80590]: MANAGEMENT: unix domain socket listening on /var/etc/openvpn/server6.sock Sep 12 15:59:01 firewall-a openvpn[80590]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts Sep 12 15:59:01 firewall-a openvpn[80590]: PO_INIT maxevents=4 flags=0x00000002 Sep 12 15:59:01 firewall-a openvpn[80590]: PID packet_id_init tcp_mode=1 seq_backtrack=64 time_backtrack=15 Sep 12 15:59:01 firewall-a openvpn[80590]: CRYPTO INFO: n_DES_cblocks=0 Sep 12 15:59:01 firewall-a openvpn[80590]: CRYPTO INFO: n_DES_cblocks=0 Sep 12 15:59:01 firewall-a openvpn[80590]: CRYPTO INFO: n_DES_cblocks=0 Sep 12 15:59:01 firewall-a openvpn[80590]: CRYPTO INFO: n_DES_cblocks=0 Sep 12 15:59:01 firewall-a openvpn[80590]: Static Encrypt: Cipher 'AES-128-CBC' initialized with 128 bit key Sep 12 15:59:01 firewall-a openvpn[80590]: Static Encrypt: CIPHER KEY: e420d656 378d6b84 65176453 86d540a2 Sep 12 15:59:01 firewall-a openvpn[80590]: Static Encrypt: CIPHER block_size=16 iv_size=16 Sep 12 15:59:01 firewall-a openvpn[80590]: Static Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication Sep 12 15:59:01 firewall-a openvpn[80590]: Static Encrypt: HMAC KEY: 78119039 173f93af 241760be 83b36c1d 6b97e4e5 Sep 12 15:59:01 firewall-a openvpn[80590]: Static Encrypt: HMAC size=20 block_size=20 Sep 12 15:59:01 firewall-a openvpn[80590]: Static Decrypt: Cipher 'AES-128-CBC' initialized with 128 bit key Sep 12 15:59:01 firewall-a openvpn[80590]: Static Decrypt: CIPHER KEY: e420d656 378d6b84 65176453 86d540a2 Sep 12 15:59:01 firewall-a openvpn[80590]: Static Decrypt: CIPHER block_size=16 iv_size=16 Sep 12 15:59:01 firewall-a openvpn[80590]: Static Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication Sep 12 15:59:01 firewall-a openvpn[80590]: Static Decrypt: HMAC KEY: 78119039 173f93af 241760be 83b36c1d 6b97e4e5 Sep 12 15:59:01 firewall-a openvpn[80590]: Static Decrypt: HMAC size=20 block_size=20 Sep 12 15:59:01 firewall-a openvpn[80590]: crypto_adjust_frame_parameters: Adjusting frame parameters for crypto by 60 bytes Sep 12 15:59:01 firewall-a openvpn[80590]: MTU DYNAMIC mtu=1450, flags=2, 1562 -> 1450 Sep 12 15:59:01 firewall-a openvpn[80590]: Socket Buffers: R=[65228->65228] S=[65228->65228] Sep 12 15:59:01 firewall-a openvpn[80590]: ROUTE_GATEWAY 1.2.3.161 Sep 12 15:59:01 firewall-a openvpn[80590]: TUN/TAP device ovpns6 exists previously, keep at program end Sep 12 15:59:01 firewall-a openvpn[80590]: TUN/TAP device /dev/tun6 opened Sep 12 15:59:01 firewall-a openvpn[80590]: do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0 Sep 12 15:59:01 firewall-a openvpn[80590]: /sbin/ifconfig ovpns6 1.2.6.1 1.2.6.2 mtu 1500 netmask 255.255.255.255 up Sep 12 15:59:01 firewall-a openvpn[80590]: /usr/local/sbin/ovpn-linkup ovpns6 1500 1562 1.2.6.1 1.2.6.2 init Sep 12 15:59:01 firewall-a openvpn[80590]: /sbin/route add -net 1.2.100.0 1.2.6.2 255.255.255.0 Sep 12 15:59:01 firewall-a openvpn[80590]: /sbin/route add -net 1.2.150.0 1.2.6.2 255.255.255.0 Sep 12 15:59:01 firewall-a openvpn[80590]: Data Channel MTU parms [ L:1562 D:1450 EF:62 EB:12 ET:0 EL:3 ] Sep 12 15:59:01 firewall-a openvpn[80590]: Local Options String: 'V4,dev-type tun,link-mtu 1562,tun-mtu 1500,proto TCPv4_SERVER,ifconfig 1.2.6.2 1.2.6.1,cipher AES-128-CBC,auth SHA1,keysize 128,secret' Sep 12 15:59:01 firewall-a openvpn[80590]: Expected Remote Options String: 'V4,dev-type tun,link-mtu 1562,tun-mtu 1500,proto TCPv4_CLIENT,ifconfig 1.2.6.1 1.2.6.2,cipher AES-128-CBC,auth SHA1,keysize 128,secret' Sep 12 15:59:01 firewall-a openvpn[80590]: Local Options hash (VER=V4): '2f3bf1f5' Sep 12 15:59:01 firewall-a openvpn[80590]: Expected Remote Options hash (VER=V4): '83d4ce6c' Sep 12 15:59:01 firewall-a openvpn[80590]: STREAM: RESET Sep 12 15:59:01 firewall-a openvpn[80590]: STREAM: INIT maxlen=1565 Sep 12 15:59:01 firewall-a openvpn[80590]: Listening for incoming TCP connection on [AF_INET]1.2.3.165:9999 Sep 12 15:59:01 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=5 arg=0x00000000 Sep 12 15:59:02 firewall-a openvpn[80590]: TCP connection established with [AF_INET]1.2.29.39:39563 Sep 12 15:59:02 firewall-a openvpn[80590]: TCPv4_SERVER link local (bound): [AF_INET]1.2.3.165:9999 Sep 12 15:59:02 firewall-a openvpn[80590]: TCPv4_SERVER link remote: [AF_INET]1.2.29.39:39563 Sep 12 15:59:02 firewall-a openvpn[80590]: ENCRYPT IV: 08c56146 ae4fa89d 54606b8e f12f4ddc Sep 12 15:59:02 firewall-a openvpn[80590]: ENCRYPT FROM: 00000001 59b7e826 2a187bf3 641eb4cb 07ed2d0a 981fc748 Sep 12 15:59:02 firewall-a openvpn[80590]: ENCRYPT TO: 08c56146 ae4fa89d 54606b8e f12f4ddc 2e36ded2 0c706528 6aa598c7 58fb900[more...] Sep 12 15:59:02 firewall-a openvpn[80590]: SENT PING Sep 12 15:59:02 firewall-a openvpn[80590]: TIMER: coarse timer wakeup 1 seconds Sep 12 15:59:02 firewall-a openvpn[80590]: RANDOM USEC=250126 Sep 12 15:59:02 firewall-a openvpn[80590]: STREAM: SET NEXT, buf=[80,0] next=[80,1565] len=-1 maxlen=1565 Sep 12 15:59:02 firewall-a openvpn[80590]: PO_CTL rwflags=0x0003 ev=12 arg=0x00694dd0 Sep 12 15:59:02 firewall-a openvpn[80590]: PO_CTL rwflags=0x0000 ev=9 arg=0x00693c34 Sep 12 15:59:02 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=5 arg=0x00693c38 Sep 12 15:59:02 firewall-a openvpn[80590]: I/O WAIT Tr|Tw|SR|SW [1/250126] Sep 12 15:59:02 firewall-a openvpn[80590]: PO_WAIT[0,0] fd=12 rev=0x00000004 rwflags=0x0002 arg=0x00694dd0 Sep 12 15:59:02 firewall-a openvpn[80590]: event_wait returned 1 Sep 12 15:59:02 firewall-a openvpn[80590]: I/O WAIT status=0x0002 Sep 12 15:59:02 firewall-a openvpn[80590]: TCPv4_SERVER WRITE [68] to [AF_INET]1.2.29.39:39563: DATA df25e388 ce2853b3 522b1d91 22fcd1b7 bba232d0 08c56146 ae4fa89d 54606b8[more...] Sep 12 15:59:02 firewall-a openvpn[80590]: STREAM: WRITE 68 offset=44 Sep 12 15:59:02 firewall-a openvpn[80590]: TCPv4_SERVER write returned 70 Sep 12 15:59:02 firewall-a openvpn[80590]: STREAM: SET NEXT, buf=[80,0] next=[80,1565] len=-1 maxlen=1565 Sep 12 15:59:02 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=12 arg=0x00694dd0 Sep 12 15:59:02 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=9 arg=0x00693c34 Sep 12 15:59:02 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=5 arg=0x00693c38 Sep 12 15:59:02 firewall-a openvpn[80590]: I/O WAIT TR|Tw|SR|Sw [1/250126] Sep 12 15:59:02 firewall-a openvpn[80590]: PO_WAIT[0,0] fd=12 rev=0x00000001 rwflags=0x0001 arg=0x00694dd0 Sep 12 15:59:02 firewall-a openvpn[80590]: event_wait returned 1 Sep 12 15:59:02 firewall-a openvpn[80590]: I/O WAIT status=0x0001 Sep 12 15:59:02 firewall-a openvpn[80590]: STREAM: GET NEXT len=1565 Sep 12 15:59:02 firewall-a openvpn[80590]: STREAM: ADD length_added=70 Sep 12 15:59:02 firewall-a openvpn[80590]: STREAM: ADD returned TRUE, buf_len=68, residual_len=0 Sep 12 15:59:02 firewall-a openvpn[80590]: STREAM: GET FINAL len=68 Sep 12 15:59:02 firewall-a openvpn[80590]: STREAM: RESET Sep 12 15:59:02 firewall-a openvpn[80590]: TCPv4_SERVER read returned 68 Sep 12 15:59:02 firewall-a openvpn[80590]: TCPv4_SERVER READ [68] from [AF_INET]1.2.29.39:39563: DATA f50a6282 c69fd181 e90d3bdd 8e455abf 9984b6c2 530637a8 321a913f d7bf83d[more...] Sep 12 15:59:02 firewall-a openvpn[80590]: DECRYPT IV: 530637a8 321a913f d7bf83d7 b62c1c36 Sep 12 15:59:02 firewall-a openvpn[80590]: DECRYPT TO: 00000001 59b7e826 2a187bf3 641eb4cb 07ed2d0a 981fc748 Sep 12 15:59:02 firewall-a openvpn[80590]: PID_TEST [0] [STATIC-0] [] 0:0 1505224742:1 t=1505224742[0] r=[0,0,0,0,1] Sep 12 15:59:02 firewall-a openvpn[80590]: Peer Connection Initiated with [AF_INET]1.2.29.39:39563 Sep 12 15:59:02 firewall-a openvpn[80590]: RECEIVED PING PACKET Sep 12 15:59:02 firewall-a openvpn[80590]: STREAM: SET NEXT, buf=[80,0] next=[80,1565] len=-1 maxlen=1565 Sep 12 15:59:02 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=12 arg=0x00694dd0 Sep 12 15:59:02 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=9 arg=0x00693c34 Sep 12 15:59:02 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=5 arg=0x00693c38 Sep 12 15:59:02 firewall-a openvpn[80590]: I/O WAIT TR|Tw|SR|Sw [1/250126] Sep 12 15:59:02 firewall-a openvpn[80590]: PO_WAIT[0,0] fd=12 rev=0x00000001 rwflags=0x0001 arg=0x00694dd0 Sep 12 15:59:02 firewall-a openvpn[80590]: event_wait returned 1 Sep 12 15:59:02 firewall-a openvpn[80590]: I/O WAIT status=0x0001 Sep 12 15:59:02 firewall-a openvpn[80590]: STREAM: GET NEXT len=1565 Sep 12 15:59:02 firewall-a openvpn[80590]: STREAM: ADD length_added=600 Sep 12 15:59:02 firewall-a openvpn[80590]: STREAM: ADD returned TRUE, buf_len=132, residual_len=466 Sep 12 15:59:02 firewall-a openvpn[80590]: STREAM: GET FINAL len=132 Sep 12 15:59:02 firewall-a openvpn[80590]: STREAM: RESET Sep 12 15:59:02 firewall-a openvpn[80590]: TCPv4_SERVER read returned 132 Sep 12 15:59:02 firewall-a openvpn[80590]: TCPv4_SERVER READ [132] from [AF_INET]1.2.29.39:39563: DATA affb35c6 6596988a 269362d3 98a828af de707ba1 0e52b3d4 d4037a55 65d5558[more...] Sep 12 15:59:02 firewall-a openvpn[80590]: DECRYPT IV: 0e52b3d4 d4037a55 65d5558d edb9efb0 Sep 12 15:59:02 firewall-a openvpn[80590]: DECRYPT TO: 00000002 59b7e826 60000000 00203aff 00000000 00000000 00000000 0000000[more...] Sep 12 15:59:02 firewall-a openvpn[80590]: PID_TEST [0] [STATIC-0] [] 1505224742:1 1505224742:2 t=1505224742[0] r=[0,0,0,0,1] Sep 12 15:59:02 firewall-a openvpn[80590]: PO_CTL rwflags=0x0000 ev=12 arg=0x00694dd0 Sep 12 15:59:02 firewall-a openvpn[80590]: PO_CTL rwflags=0x0003 ev=9 arg=0x00693c34 Sep 12 15:59:02 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=5 arg=0x00693c38 Sep 12 15:59:02 firewall-a openvpn[80590]: I/O WAIT TR|TW|Sr|Sw [1/250126] Sep 12 15:59:02 firewall-a openvpn[80590]: PO_WAIT[1,0] fd=9 rev=0x00000004 rwflags=0x0002 arg=0x00693c34 Sep 12 15:59:02 firewall-a openvpn[80590]: event_wait returned 1 Sep 12 15:59:02 firewall-a openvpn[80590]: I/O WAIT status=0x0008 Sep 12 15:59:02 firewall-a openvpn[80590]: TUN WRITE [72] Sep 12 15:59:02 firewall-a openvpn[80590]: write to TUN/TAP returned 72 Sep 12 15:59:02 firewall-a openvpn[80590]: STREAM: ADD length_added=0 Sep 12 15:59:02 firewall-a openvpn[80590]: STREAM: ADD returned TRUE, buf_len=164, residual_len=300 Sep 12 15:59:02 firewall-a openvpn[80590]: STREAM: RESIDUAL FULLY FORMED [YES], len=300 Sep 12 15:59:02 firewall-a openvpn[80590]: PO_CTL rwflags=0x0000 ev=12 arg=0x00694dd0 Sep 12 15:59:02 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=9 arg=0x00693c34 Sep 12 15:59:02 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=5 arg=0x00693c38 Sep 12 15:59:02 firewall-a openvpn[80590]: I/O WAIT status=0x0001 Sep 12 15:59:02 firewall-a openvpn[80590]: STREAM: GET FINAL len=164 Sep 12 15:59:02 firewall-a openvpn[80590]: STREAM: RESET Sep 12 15:59:02 firewall-a openvpn[80590]: TCPv4_SERVER read returned 164 Sep 12 15:59:02 firewall-a openvpn[80590]: TCPv4_SERVER READ [164] from [AF_INET]1.2.29.39:39563: DATA eeaa2ef9 458952bb 908a31a7 2a5b71ab 07fa7bfb 3d83ce3e d3808f7d 1209729[more...] Sep 12 15:59:02 firewall-a openvpn[80590]: DECRYPT IV: 3d83ce3e d3808f7d 1209729c 1be2c2b3 Sep 12 15:59:02 firewall-a openvpn[80590]: DECRYPT TO: 00000003 59b7e826 60000000 004c0001 00000000 00000000 00000000 0000000[more...] Sep 12 15:59:02 firewall-a openvpn[80590]: PID_TEST [0] [STATIC-0] [] 1505224742:2 1505224742:3 t=1505224742[0] r=[0,0,0,0,1] Sep 12 15:59:02 firewall-a openvpn[80590]: PO_CTL rwflags=0x0000 ev=12 arg=0x00694dd0 Sep 12 15:59:02 firewall-a openvpn[80590]: PO_CTL rwflags=0x0003 ev=9 arg=0x00693c34 Sep 12 15:59:02 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=5 arg=0x00693c38 Sep 12 15:59:02 firewall-a openvpn[80590]: I/O WAIT TR|TW|Sr|Sw [1/250126] Sep 12 15:59:02 firewall-a openvpn[80590]: PO_WAIT[1,0] fd=9 rev=0x00000004 rwflags=0x0002 arg=0x00693c34 Sep 12 15:59:02 firewall-a openvpn[80590]: event_wait returned 1 Sep 12 15:59:02 firewall-a openvpn[80590]: I/O WAIT status=0x0008 Sep 12 15:59:02 firewall-a openvpn[80590]: TUN WRITE [116] Sep 12 15:59:02 firewall-a openvpn[80590]: write to TUN/TAP returned 116 Sep 12 15:59:02 firewall-a openvpn[80590]: STREAM: ADD length_added=0 Sep 12 15:59:02 firewall-a openvpn[80590]: STREAM: ADD returned TRUE, buf_len=164, residual_len=134 Sep 12 15:59:02 firewall-a openvpn[80590]: STREAM: RESIDUAL FULLY FORMED [YES], len=134 Sep 12 15:59:02 firewall-a openvpn[80590]: PO_CTL rwflags=0x0000 ev=12 arg=0x00694dd0 Sep 12 15:59:02 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=9 arg=0x00693c34 Sep 12 15:59:02 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=5 arg=0x00693c38 Sep 12 15:59:02 firewall-a openvpn[80590]: I/O WAIT status=0x0001 Sep 12 15:59:02 firewall-a openvpn[80590]: STREAM: GET FINAL len=164 Sep 12 15:59:02 firewall-a openvpn[80590]: STREAM: RESET Sep 12 15:59:02 firewall-a openvpn[80590]: TCPv4_SERVER read returned 164 Sep 12 15:59:02 firewall-a openvpn[80590]: TCPv4_SERVER READ [164] from [AF_INET]1.2.29.39:39563: DATA 19db1a5d 006102e9 3f4e18c8 a70e5ec9 1d1ff33c b1750f9f 8e4da97d 194b579[more...] Sep 12 15:59:02 firewall-a openvpn[80590]: DECRYPT IV: b1750f9f 8e4da97d 194b5790 c5521af2 Sep 12 15:59:02 firewall-a openvpn[80590]: DECRYPT TO: 00000004 59b7e826 60000000 004c0001 00000000 00000000 00000000 0000000[more...] Sep 12 15:59:02 firewall-a openvpn[80590]: PID_TEST [0] [STATIC-0] [] 1505224742:3 1505224742:4 t=1505224742[0] r=[0,0,0,0,1] Sep 12 15:59:02 firewall-a openvpn[80590]: PO_CTL rwflags=0x0000 ev=12 arg=0x00694dd0 Sep 12 15:59:02 firewall-a openvpn[80590]: PO_CTL rwflags=0x0003 ev=9 arg=0x00693c34 Sep 12 15:59:02 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=5 arg=0x00693c38 Sep 12 15:59:02 firewall-a openvpn[80590]: I/O WAIT TR|TW|Sr|Sw [1/250126] Sep 12 15:59:02 firewall-a openvpn[80590]: PO_WAIT[1,0] fd=9 rev=0x00000004 rwflags=0x0002 arg=0x00693c34 Sep 12 15:59:02 firewall-a openvpn[80590]: event_wait returned 1 Sep 12 15:59:02 firewall-a openvpn[80590]: I/O WAIT status=0x0008 Sep 12 15:59:02 firewall-a openvpn[80590]: TUN WRITE [116] Sep 12 15:59:02 firewall-a openvpn[80590]: write to TUN/TAP returned 116 Sep 12 15:59:02 firewall-a openvpn[80590]: STREAM: ADD length_added=0 Sep 12 15:59:02 firewall-a openvpn[80590]: STREAM: ADD returned TRUE, buf_len=132, residual_len=0 Sep 12 15:59:02 firewall-a openvpn[80590]: STREAM: RESIDUAL FULLY FORMED [YES], len=0 Sep 12 15:59:02 firewall-a openvpn[80590]: PO_CTL rwflags=0x0000 ev=12 arg=0x00694dd0 Sep 12 15:59:02 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=9 arg=0x00693c34 Sep 12 15:59:02 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=5 arg=0x00693c38 Sep 12 15:59:02 firewall-a openvpn[80590]: I/O WAIT status=0x0001 Sep 12 15:59:02 firewall-a openvpn[80590]: STREAM: GET FINAL len=132 Sep 12 15:59:02 firewall-a openvpn[80590]: STREAM: RESET Sep 12 15:59:02 firewall-a openvpn[80590]: TCPv4_SERVER read returned 132 Sep 12 15:59:02 firewall-a openvpn[80590]: TCPv4_SERVER READ [132] from [AF_INET]1.2.29.39:39563: DATA 7c7d4ad3 a3acccf6 f9eebaff 14c24317 98d6d53c eb2f68e7 533f2f53 39d61d7[more...] Sep 12 15:59:02 firewall-a openvpn[80590]: DECRYPT IV: eb2f68e7 533f2f53 39d61d76 c8b73aa5 Sep 12 15:59:02 firewall-a openvpn[80590]: DECRYPT TO: 00000005 59b7e826 45000054 20724000 3f01c2fa ac14960b 0a150c08 0800207[more...] Sep 12 15:59:02 firewall-a openvpn[80590]: PID_TEST [0] [STATIC-0] [] 1505224742:4 1505224742:5 t=1505224742[0] r=[0,0,0,0,1] Sep 12 15:59:02 firewall-a openvpn[80590]: PO_CTL rwflags=0x0000 ev=12 arg=0x00694dd0 Sep 12 15:59:02 firewall-a openvpn[80590]: PO_CTL rwflags=0x0003 ev=9 arg=0x00693c34 Sep 12 15:59:02 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=5 arg=0x00693c38 Sep 12 15:59:02 firewall-a openvpn[80590]: I/O WAIT TR|TW|Sr|Sw [1/250126] Sep 12 15:59:02 firewall-a openvpn[80590]: PO_WAIT[1,0] fd=9 rev=0x00000004 rwflags=0x0002 arg=0x00693c34 Sep 12 15:59:02 firewall-a openvpn[80590]: event_wait returned 1 Sep 12 15:59:02 firewall-a openvpn[80590]: I/O WAIT status=0x0008 Sep 12 15:59:02 firewall-a openvpn[80590]: TUN WRITE [84] Sep 12 15:59:02 firewall-a openvpn[80590]: write to TUN/TAP returned 84 Sep 12 15:59:02 firewall-a openvpn[80590]: STREAM: SET NEXT, buf=[80,0] next=[80,1565] len=-1 maxlen=1565 Sep 12 15:59:02 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=12 arg=0x00694dd0 Sep 12 15:59:02 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=9 arg=0x00693c34 Sep 12 15:59:02 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=5 arg=0x00693c38 Sep 12 15:59:02 firewall-a openvpn[80590]: I/O WAIT TR|Tw|SR|Sw [1/250126] Sep 12 15:59:02 firewall-a openvpn[80590]: PO_WAIT[1,0] fd=9 rev=0x00000001 rwflags=0x0001 arg=0x00693c34 Sep 12 15:59:02 firewall-a openvpn[80590]: event_wait returned 1 Sep 12 15:59:02 firewall-a openvpn[80590]: I/O WAIT status=0x0004 Sep 12 15:59:02 firewall-a openvpn[80590]: read from TUN/TAP returned 84 Sep 12 15:59:02 firewall-a openvpn[80590]: TUN READ [84] Sep 12 15:59:02 firewall-a openvpn[80590]: ENCRYPT IV: 6ea198d2 216b6e51 761fc641 d1cc4e61 Sep 12 15:59:02 firewall-a openvpn[80590]: ENCRYPT FROM: 00000002 59b7e826 45000054 b2470000 3f017125 0a150c08 ac14960b 0000287[more...] Sep 12 15:59:02 firewall-a openvpn[80590]: ENCRYPT TO: 6ea198d2 216b6e51 761fc641 d1cc4e61 69b3e235 5969aa00 0f9dcbd5 6f94f3a[more...] Sep 12 15:59:02 firewall-a openvpn[80590]: STREAM: SET NEXT, buf=[80,0] next=[80,1565] len=-1 maxlen=1565 Sep 12 15:59:02 firewall-a openvpn[80590]: PO_CTL rwflags=0x0003 ev=12 arg=0x00694dd0 Sep 12 15:59:02 firewall-a openvpn[80590]: PO_CTL rwflags=0x0000 ev=9 arg=0x00693c34 Sep 12 15:59:02 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=5 arg=0x00693c38 Sep 12 15:59:02 firewall-a openvpn[80590]: I/O WAIT Tr|Tw|SR|SW [1/250126] Sep 12 15:59:02 firewall-a openvpn[80590]: PO_WAIT[0,0] fd=12 rev=0x00000004 rwflags=0x0002 arg=0x00694dd0 Sep 12 15:59:02 firewall-a openvpn[80590]: event_wait returned 1 Sep 12 15:59:02 firewall-a openvpn[80590]: I/O WAIT status=0x0002 Sep 12 15:59:02 firewall-a openvpn[80590]: TCPv4_SERVER WRITE [132] to [AF_INET]1.2.29.39:39563: DATA 33bef1bb 4278ef7e a352cbfb 7553f042 ae7354b7 6ea198d2 216b6e51 761fc64[more...] Sep 12 15:59:02 firewall-a openvpn[80590]: STREAM: WRITE 132 offset=44 Sep 12 15:59:02 firewall-a openvpn[80590]: TCPv4_SERVER write returned 134 Sep 12 15:59:02 firewall-a openvpn[80590]: STREAM: SET NEXT, buf=[80,0] next=[80,1565] len=-1 maxlen=1565 Sep 12 15:59:02 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=12 arg=0x00694dd0 Sep 12 15:59:02 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=9 arg=0x00693c34 Sep 12 15:59:02 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=5 arg=0x00693c38 Sep 12 15:59:02 firewall-a openvpn[80590]: I/O WAIT TR|Tw|SR|Sw [1/250126] Sep 12 15:59:02 firewall-a openvpn[80590]: PO_WAIT[0,0] fd=12 rev=0x00000001 rwflags=0x0001 arg=0x00694dd0 Sep 12 15:59:02 firewall-a openvpn[80590]: event_wait returned 1 Sep 12 15:59:02 firewall-a openvpn[80590]: I/O WAIT status=0x0001 Sep 12 15:59:02 firewall-a openvpn[80590]: STREAM: GET NEXT len=1565 Sep 12 15:59:02 firewall-a openvpn[80590]: Connection reset, restarting [0] Sep 12 15:59:02 firewall-a openvpn[80590]: TCP/UDP: Closing socket Sep 12 15:59:02 firewall-a openvpn[80590]: PID packet_id_free Sep 12 15:59:02 firewall-a openvpn[80590]: SIGUSR1[soft,connection-reset] received, process restarting Sep 12 15:59:02 firewall-a openvpn[80590]: Restart pause, 1 second(s) Sep 12 15:59:02 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=5 arg=0x00000000 Sep 12 15:59:03 firewall-a openvpn[80590]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts Sep 12 15:59:03 firewall-a openvpn[80590]: PO_INIT maxevents=4 flags=0x00000002 Sep 12 15:59:03 firewall-a openvpn[80590]: PID packet_id_init tcp_mode=1 seq_backtrack=64 time_backtrack=15 Sep 12 15:59:03 firewall-a openvpn[80590]: Re-using pre-shared static key Sep 12 15:59:03 firewall-a openvpn[80590]: crypto_adjust_frame_parameters: Adjusting frame parameters for crypto by 60 bytes Sep 12 15:59:03 firewall-a openvpn[80590]: MTU DYNAMIC mtu=1450, flags=2, 1562 -> 1450 Sep 12 15:59:03 firewall-a openvpn[80590]: Socket Buffers: R=[65228->65228] S=[65228->65228] Sep 12 15:59:03 firewall-a openvpn[80590]: Preserving previous TUN/TAP instance: ovpns6 Sep 12 15:59:03 firewall-a openvpn[80590]: Data Channel MTU parms [ L:1562 D:1450 EF:62 EB:12 ET:0 EL:3 ] Sep 12 15:59:03 firewall-a openvpn[80590]: Local Options String: 'V4,dev-type tun,link-mtu 1562,tun-mtu 1500,proto TCPv4_SERVER,ifconfig 1.2.6.2 1.2.6.1,cipher AES-128-CBC,auth SHA1,keysize 128,secret' Sep 12 15:59:03 firewall-a openvpn[80590]: Expected Remote Options String: 'V4,dev-type tun,link-mtu 1562,tun-mtu 1500,proto TCPv4_CLIENT,ifconfig 1.2.6.1 1.2.6.2,cipher AES-128-CBC,auth SHA1,keysize 128,secret' Sep 12 15:59:03 firewall-a openvpn[80590]: Local Options hash (VER=V4): '2f3bf1f5' Sep 12 15:59:03 firewall-a openvpn[80590]: Expected Remote Options hash (VER=V4): '83d4ce6c' Sep 12 15:59:03 firewall-a openvpn[80590]: STREAM: RESET Sep 12 15:59:03 firewall-a openvpn[80590]: STREAM: INIT maxlen=1565 Sep 12 15:59:03 firewall-a openvpn[80590]: Listening for incoming TCP connection on [AF_INET]1.2.3.165:9999 Sep 12 15:59:03 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=5 arg=0x00000000 Sep 12 15:59:04 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=5 arg=0x00000000 Sep 12 15:59:05 firewall-a openvpn[80590]: TCP connection established with [AF_INET]1.2.29.39:22197 Sep 12 15:59:05 firewall-a openvpn[80590]: TCPv4_SERVER link local (bound): [AF_INET]1.2.3.165:9999 Sep 12 15:59:05 firewall-a openvpn[80590]: TCPv4_SERVER link remote: [AF_INET]1.2.29.39:22197 Sep 12 15:59:05 firewall-a openvpn[80590]: ENCRYPT IV: 5f632024 67705b11 8414ad00 708071ef Sep 12 15:59:05 firewall-a openvpn[80590]: ENCRYPT FROM: 00000001 59b7e829 2a187bf3 641eb4cb 07ed2d0a 981fc748 Sep 12 15:59:05 firewall-a openvpn[80590]: ENCRYPT TO: 5f632024 67705b11 8414ad00 708071ef e89e5224 0566cfe5 9c555823 0d78821[more...] Sep 12 15:59:05 firewall-a openvpn[80590]: SENT PING Sep 12 15:59:05 firewall-a openvpn[80590]: TIMER: coarse timer wakeup 1 seconds Sep 12 15:59:05 firewall-a openvpn[80590]: RANDOM USEC=158711 Sep 12 15:59:05 firewall-a openvpn[80590]: STREAM: SET NEXT, buf=[80,0] next=[80,1565] len=-1 maxlen=1565 Sep 12 15:59:05 firewall-a openvpn[80590]: PO_CTL rwflags=0x0003 ev=12 arg=0x00694dd0 Sep 12 15:59:05 firewall-a openvpn[80590]: PO_CTL rwflags=0x0000 ev=9 arg=0x00693c34 Sep 12 15:59:05 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=5 arg=0x00693c38 Sep 12 15:59:05 firewall-a openvpn[80590]: I/O WAIT Tr|Tw|SR|SW [1/158711] Sep 12 15:59:05 firewall-a openvpn[80590]: PO_WAIT[0,0] fd=12 rev=0x00000004 rwflags=0x0002 arg=0x00694dd0 Sep 12 15:59:05 firewall-a openvpn[80590]: event_wait returned 1 Sep 12 15:59:05 firewall-a openvpn[80590]: I/O WAIT status=0x0002 Sep 12 15:59:05 firewall-a openvpn[80590]: TCPv4_SERVER WRITE [68] to [AF_INET]1.2.29.39:22197: DATA 0a9bbfeb 26307fa7 e46aa4b4 a1269d28 95d81d46 5f632024 67705b11 8414ad0[more...] Sep 12 15:59:05 firewall-a openvpn[80590]: STREAM: WRITE 68 offset=44 Sep 12 15:59:05 firewall-a openvpn[80590]: TCPv4_SERVER write returned 70 Sep 12 15:59:05 firewall-a openvpn[80590]: STREAM: SET NEXT, buf=[80,0] next=[80,1565] len=-1 maxlen=1565 Sep 12 15:59:05 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=12 arg=0x00694dd0 Sep 12 15:59:05 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=9 arg=0x00693c34 Sep 12 15:59:05 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=5 arg=0x00693c38 Sep 12 15:59:05 firewall-a openvpn[80590]: I/O WAIT TR|Tw|SR|Sw [1/158711] Sep 12 15:59:06 firewall-a openvpn[80590]: PO_WAIT[0,0] fd=12 rev=0x00000001 rwflags=0x0001 arg=0x00694dd0 Sep 12 15:59:06 firewall-a openvpn[80590]: event_wait returned 1 Sep 12 15:59:06 firewall-a openvpn[80590]: I/O WAIT status=0x0001 Sep 12 15:59:06 firewall-a openvpn[80590]: STREAM: GET NEXT len=1565 Sep 12 15:59:06 firewall-a openvpn[80590]: STREAM: ADD length_added=70 Sep 12 15:59:06 firewall-a openvpn[80590]: STREAM: ADD returned TRUE, buf_len=68, residual_len=0 Sep 12 15:59:06 firewall-a openvpn[80590]: STREAM: GET FINAL len=68 Sep 12 15:59:06 firewall-a openvpn[80590]: STREAM: RESET Sep 12 15:59:06 firewall-a openvpn[80590]: TCPv4_SERVER read returned 68 Sep 12 15:59:06 firewall-a openvpn[80590]: TCPv4_SERVER READ [68] from [AF_INET]1.2.29.39:22197: DATA 85403db8 076348c3 813fb2d1 7b7443d9 56ac8520 c395d665 c46274f8 478097c[more...] Sep 12 15:59:06 firewall-a openvpn[80590]: DECRYPT IV: c395d665 c46274f8 478097cb e9dbdaa5 Sep 12 15:59:06 firewall-a openvpn[80590]: DECRYPT TO: 00000001 59b7e82a 2a187bf3 641eb4cb 07ed2d0a 981fc748 Sep 12 15:59:06 firewall-a openvpn[80590]: PID_TEST [0] [STATIC-0] [] 0:0 1505224746:1 t=1505224746[0] r=[0,0,0,0,1] Sep 12 15:59:06 firewall-a openvpn[80590]: Peer Connection Initiated with [AF_INET]1.2.29.39:22197 Sep 12 15:59:06 firewall-a openvpn[80590]: RECEIVED PING PACKET Sep 12 15:59:06 firewall-a openvpn[80590]: WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this Sep 12 15:59:06 firewall-a openvpn[80590]: Initialization Sequence Completed Sep 12 15:59:06 firewall-a openvpn[80590]: TIMER: coarse timer wakeup 1 seconds Sep 12 15:59:06 firewall-a openvpn[80590]: STREAM: SET NEXT, buf=[80,0] next=[80,1565] len=-1 maxlen=1565 Sep 12 15:59:06 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=12 arg=0x00694dd0 Sep 12 15:59:06 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=9 arg=0x00693c34 Sep 12 15:59:06 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=5 arg=0x00693c38 Sep 12 15:59:06 firewall-a openvpn[80590]: I/O WAIT TR|Tw|SR|Sw [1/158711] Sep 12 15:59:06 firewall-a openvpn[80590]: PO_WAIT[2,0] fd=5 rev=0x00000001 rwflags=0x0001 arg=0x00693c38 Sep 12 15:59:06 firewall-a openvpn[80590]: event_wait returned 1 Sep 12 15:59:06 firewall-a openvpn[80590]: I/O WAIT status=0x0040 Sep 12 15:59:06 firewall-a openvpn[80590]: MANAGEMENT: Client connected from /var/etc/openvpn/server6.sock Sep 12 15:59:06 firewall-a openvpn[80590]: STREAM: SET NEXT, buf=[80,0] next=[80,1565] len=-1 maxlen=1565 Sep 12 15:59:06 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=12 arg=0x00694dd0 Sep 12 15:59:06 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=9 arg=0x00693c34 Sep 12 15:59:06 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=8 arg=0x00693c38 Sep 12 15:59:06 firewall-a openvpn[80590]: I/O WAIT TR|Tw|SR|Sw [1/158711] Sep 12 15:59:06 firewall-a openvpn[80590]: PO_WAIT[2,0] fd=8 rev=0x00000001 rwflags=0x0001 arg=0x00693c38 Sep 12 15:59:06 firewall-a openvpn[80590]: event_wait returned 1 Sep 12 15:59:06 firewall-a openvpn[80590]: I/O WAIT status=0x0040 Sep 12 15:59:06 firewall-a openvpn[80590]: MANAGEMENT: CMD 'state 1' Sep 12 15:59:06 firewall-a openvpn[80590]: STREAM: SET NEXT, buf=[80,0] next=[80,1565] len=-1 maxlen=1565 Sep 12 15:59:06 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=12 arg=0x00694dd0 Sep 12 15:59:06 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=9 arg=0x00693c34 Sep 12 15:59:06 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=8 arg=0x00693c38 Sep 12 15:59:06 firewall-a openvpn[80590]: I/O WAIT TR|Tw|SR|Sw [1/158711] Sep 12 15:59:06 firewall-a openvpn[80590]: PO_WAIT[2,0] fd=8 rev=0x00000001 rwflags=0x0001 arg=0x00693c38 Sep 12 15:59:06 firewall-a openvpn[80590]: event_wait returned 1 Sep 12 15:59:06 firewall-a openvpn[80590]: I/O WAIT status=0x0040 Sep 12 15:59:06 firewall-a openvpn[80590]: MANAGEMENT: CMD 'status 2' Sep 12 15:59:06 firewall-a openvpn[80590]: STREAM: SET NEXT, buf=[80,0] next=[80,1565] len=-1 maxlen=1565 Sep 12 15:59:06 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=12 arg=0x00694dd0 Sep 12 15:59:06 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=9 arg=0x00693c34 Sep 12 15:59:06 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=8 arg=0x00693c38 Sep 12 15:59:06 firewall-a openvpn[80590]: I/O WAIT TR|Tw|SR|Sw [1/158711] Sep 12 15:59:06 firewall-a openvpn[80590]: PO_WAIT[2,0] fd=8 rev=0x00000011 rwflags=0x0001 arg=0x00693c38 Sep 12 15:59:06 firewall-a openvpn[80590]: event_wait returned 1 Sep 12 15:59:06 firewall-a openvpn[80590]: I/O WAIT status=0x0040 Sep 12 15:59:06 firewall-a openvpn[80590]: MANAGEMENT: Client disconnected Sep 12 15:59:06 firewall-a openvpn[80590]: STREAM: SET NEXT, buf=[80,0] next=[80,1565] len=-1 maxlen=1565 Sep 12 15:59:06 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=12 arg=0x00694dd0 Sep 12 15:59:06 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=9 arg=0x00693c34 Sep 12 15:59:06 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=5 arg=0x00693c38 Sep 12 15:59:06 firewall-a openvpn[80590]: I/O WAIT TR|Tw|SR|Sw [1/158711] Sep 12 15:59:07 firewall-a openvpn[80590]: event_wait returned 0 Sep 12 15:59:07 firewall-a openvpn[80590]: I/O WAIT status=0x0020 Sep 12 15:59:07 firewall-a openvpn[80590]: TIMER: coarse timer wakeup 8 seconds Sep 12 15:59:07 firewall-a openvpn[80590]: STREAM: SET NEXT, buf=[80,0] next=[80,1565] len=-1 maxlen=1565 Sep 12 15:59:07 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=12 arg=0x00694dd0 Sep 12 15:59:07 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=9 arg=0x00693c34 Sep 12 15:59:07 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=5 arg=0x00693c38 Sep 12 15:59:07 firewall-a openvpn[80590]: I/O WAIT TR|Tw|SR|Sw [8/158711] Sep 12 15:59:15 firewall-a openvpn[80590]: event_wait returned 0 Sep 12 15:59:15 firewall-a openvpn[80590]: I/O WAIT status=0x0020 Sep 12 15:59:15 firewall-a openvpn[80590]: ENCRYPT IV: 804b14ec 4a410a74 0f46fcb8 68829b21 Sep 12 15:59:15 firewall-a openvpn[80590]: ENCRYPT FROM: 00000002 59b7e829 2a187bf3 641eb4cb 07ed2d0a 981fc748 Sep 12 15:59:15 firewall-a openvpn[80590]: ENCRYPT TO: 804b14ec 4a410a74 0f46fcb8 68829b21 b4dd3f27 39aa7f85 925c2484 7663a20[more...] Sep 12 15:59:15 firewall-a openvpn[80590]: SENT PING Sep 12 15:59:15 firewall-a openvpn[80590]: TIMER: coarse timer wakeup 10 seconds Sep 12 15:59:15 firewall-a openvpn[80590]: RANDOM USEC=233426 Sep 12 15:59:15 firewall-a openvpn[80590]: STREAM: SET NEXT, buf=[80,0] next=[80,1565] len=-1 maxlen=1565 Sep 12 15:59:15 firewall-a openvpn[80590]: PO_CTL rwflags=0x0003 ev=12 arg=0x00694dd0 Sep 12 15:59:15 firewall-a openvpn[80590]: PO_CTL rwflags=0x0000 ev=9 arg=0x00693c34 Sep 12 15:59:15 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=5 arg=0x00693c38 Sep 12 15:59:15 firewall-a openvpn[80590]: I/O WAIT Tr|Tw|SR|SW [0/0] Sep 12 15:59:15 firewall-a openvpn[80590]: PO_WAIT[0,0] fd=12 rev=0x00000004 rwflags=0x0002 arg=0x00694dd0 Sep 12 15:59:15 firewall-a openvpn[80590]: event_wait returned 1 Sep 12 15:59:15 firewall-a openvpn[80590]: I/O WAIT status=0x0002 Sep 12 15:59:15 firewall-a openvpn[80590]: TCPv4_SERVER WRITE [68] to [AF_INET]1.2.29.39:22197: DATA fea73bd9 03c8d7c6 9dfe27bf b03e734c 39ca82f3 804b14ec 4a410a74 0f46fcb[more...] Sep 12 15:59:15 firewall-a openvpn[80590]: STREAM: WRITE 68 offset=44 Sep 12 15:59:15 firewall-a openvpn[80590]: TCPv4_SERVER write returned 70 Sep 12 15:59:15 firewall-a openvpn[80590]: SENT OCC_REQUEST Sep 12 15:59:15 firewall-a openvpn[80590]: ENCRYPT IV: f801d336 4397e5ae a47537cf 17a06beb Sep 12 15:59:15 firewall-a openvpn[80590]: ENCRYPT FROM: 00000003 59b7e829 287f346b d4ef7a81 2d56b8d3 afc5459c 00 Sep 12 15:59:15 firewall-a openvpn[80590]: ENCRYPT TO: f801d336 4397e5ae a47537cf 17a06beb 45500089 1338003a b5a0f44c 7bf86c3[more...] Sep 12 15:59:15 firewall-a openvpn[80590]: STREAM: SET NEXT, buf=[80,0] next=[80,1565] len=-1 maxlen=1565 Sep 12 15:59:15 firewall-a openvpn[80590]: PO_CTL rwflags=0x0003 ev=12 arg=0x00694dd0 Sep 12 15:59:15 firewall-a openvpn[80590]: PO_CTL rwflags=0x0000 ev=9 arg=0x00693c34 Sep 12 15:59:15 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=5 arg=0x00693c38 Sep 12 15:59:15 firewall-a openvpn[80590]: I/O WAIT Tr|Tw|SR|SW [10/233426] Sep 12 15:59:15 firewall-a openvpn[80590]: PO_WAIT[0,0] fd=12 rev=0x00000004 rwflags=0x0002 arg=0x00694dd0 Sep 12 15:59:15 firewall-a openvpn[80590]: event_wait returned 1 Sep 12 15:59:15 firewall-a openvpn[80590]: I/O WAIT status=0x0002 Sep 12 15:59:15 firewall-a openvpn[80590]: TCPv4_SERVER WRITE [68] to [AF_INET]1.2.29.39:22197: DATA 8459defe 605db5f6 7225a0d8 c9fd6ac5 b5d86728 f801d336 4397e5ae a47537c[more...] Sep 12 15:59:15 firewall-a openvpn[80590]: STREAM: WRITE 68 offset=44 Sep 12 15:59:15 firewall-a openvpn[80590]: TCPv4_SERVER write returned 70 Sep 12 15:59:15 firewall-a openvpn[80590]: STREAM: SET NEXT, buf=[80,0] next=[80,1565] len=-1 maxlen=1565 Sep 12 15:59:15 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=12 arg=0x00694dd0 Sep 12 15:59:15 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=9 arg=0x00693c34 Sep 12 15:59:15 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=5 arg=0x00693c38 Sep 12 15:59:15 firewall-a openvpn[80590]: I/O WAIT TR|Tw|SR|Sw [10/233426] Sep 12 15:59:15 firewall-a openvpn[80590]: PO_WAIT[0,0] fd=12 rev=0x00000001 rwflags=0x0001 arg=0x00694dd0 Sep 12 15:59:15 firewall-a openvpn[80590]: event_wait returned 1 Sep 12 15:59:15 firewall-a openvpn[80590]: I/O WAIT status=0x0001 Sep 12 15:59:15 firewall-a openvpn[80590]: STREAM: GET NEXT len=1565 Sep 12 15:59:15 firewall-a openvpn[80590]: STREAM: ADD length_added=214 Sep 12 15:59:15 firewall-a openvpn[80590]: STREAM: ADD returned TRUE, buf_len=212, residual_len=0 Sep 12 15:59:15 firewall-a openvpn[80590]: STREAM: GET FINAL len=212 Sep 12 15:59:15 firewall-a openvpn[80590]: STREAM: RESET Sep 12 15:59:15 firewall-a openvpn[80590]: TCPv4_SERVER read returned 212 Sep 12 15:59:15 firewall-a openvpn[80590]: TCPv4_SERVER READ [212] from [AF_INET]1.2.29.39:22197: DATA 4fae1dda 9dd64bad 487b8d8a b6df400e fb28f268 397b5b5a 5ac1b323 b3093b4[more...] Sep 12 15:59:15 firewall-a openvpn[80590]: DECRYPT IV: 397b5b5a 5ac1b323 b3093b49 551a9d60 Sep 12 15:59:15 firewall-a openvpn[80590]: DECRYPT TO: 00000002 59b7e82a 287f346b d4ef7a81 2d56b8d3 afc5459c 0156342c 6465762[more...] Sep 12 15:59:15 firewall-a openvpn[80590]: PID_TEST [0] [STATIC-0] [] 1505224746:1 1505224746:2 t=1505224755[0] r=[0,0,0,0,1] Sep 12 15:59:15 firewall-a openvpn[80590]: RECEIVED OCC_REPLY Sep 12 15:59:15 firewall-a openvpn[80590]: STREAM: SET NEXT, buf=[80,0] next=[80,1565] len=-1 maxlen=1565 Sep 12 15:59:15 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=12 arg=0x00694dd0 Sep 12 15:59:15 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=9 arg=0x00693c34 Sep 12 15:59:15 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=5 arg=0x00693c38 Sep 12 15:59:15 firewall-a openvpn[80590]: I/O WAIT TR|Tw|SR|Sw [10/233426] Sep 12 15:59:16 firewall-a openvpn[80590]: PO_WAIT[0,0] fd=12 rev=0x00000001 rwflags=0x0001 arg=0x00694dd0 Sep 12 15:59:16 firewall-a openvpn[80590]: event_wait returned 1 Sep 12 15:59:16 firewall-a openvpn[80590]: I/O WAIT status=0x0001 Sep 12 15:59:16 firewall-a openvpn[80590]: STREAM: GET NEXT len=1565 Sep 12 15:59:16 firewall-a openvpn[80590]: STREAM: ADD length_added=70 Sep 12 15:59:16 firewall-a openvpn[80590]: STREAM: ADD returned TRUE, buf_len=68, residual_len=0 Sep 12 15:59:16 firewall-a openvpn[80590]: STREAM: GET FINAL len=68 Sep 12 15:59:16 firewall-a openvpn[80590]: STREAM: RESET Sep 12 15:59:16 firewall-a openvpn[80590]: TCPv4_SERVER read returned 68 Sep 12 15:59:16 firewall-a openvpn[80590]: TCPv4_SERVER READ [68] from [AF_INET]1.2.29.39:22197: DATA 15f3efcd c1c97608 b7bec459 7b87946d b2f768ee 98335658 6ecc2dc2 9a6798b[more...] Sep 12 15:59:16 firewall-a openvpn[80590]: DECRYPT IV: 98335658 6ecc2dc2 9a6798b5 089a4cdc Sep 12 15:59:16 firewall-a openvpn[80590]: DECRYPT TO: 00000003 59b7e82a 287f346b d4ef7a81 2d56b8d3 afc5459c 00 Sep 12 15:59:16 firewall-a openvpn[80590]: PID_TEST [0] [STATIC-0] [] 1505224746:2 1505224746:3 t=1505224756[0] r=[-1,0,0,0,1] Sep 12 15:59:16 firewall-a openvpn[80590]: RECEIVED OCC_REQUEST Sep 12 15:59:16 firewall-a openvpn[80590]: SENT OCC_REPLY Sep 12 15:59:16 firewall-a openvpn[80590]: ENCRYPT IV: 592d51cc cfa29400 0bdc09c3 cfa69909 Sep 12 15:59:16 firewall-a openvpn[80590]: ENCRYPT FROM: 00000004 59b7e829 287f346b d4ef7a81 2d56b8d3 afc5459c 0156342c 6465762[more...] Sep 12 15:59:16 firewall-a openvpn[80590]: ENCRYPT TO: 592d51cc cfa29400 0bdc09c3 cfa69909 1910b9bc b200032d 286a0b8d 4f13384[more...] Sep 12 15:59:16 firewall-a openvpn[80590]: STREAM: SET NEXT, buf=[80,0] next=[80,1565] len=-1 maxlen=1565 Sep 12 15:59:16 firewall-a openvpn[80590]: PO_CTL rwflags=0x0003 ev=12 arg=0x00694dd0 Sep 12 15:59:16 firewall-a openvpn[80590]: PO_CTL rwflags=0x0000 ev=9 arg=0x00693c34 Sep 12 15:59:16 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=5 arg=0x00693c38 Sep 12 15:59:16 firewall-a openvpn[80590]: I/O WAIT Tr|Tw|SR|SW [9/233426] Sep 12 15:59:16 firewall-a openvpn[80590]: PO_WAIT[0,0] fd=12 rev=0x00000004 rwflags=0x0002 arg=0x00694dd0 Sep 12 15:59:16 firewall-a openvpn[80590]: event_wait returned 1 Sep 12 15:59:16 firewall-a openvpn[80590]: I/O WAIT status=0x0002 Sep 12 15:59:16 firewall-a openvpn[80590]: TCPv4_SERVER WRITE [212] to [AF_INET]1.2.29.39:22197: DATA 5812ab1b 493c0f59 494ac220 9a5ebdea a2370ab6 592d51cc cfa29400 0bdc09c[more...] Sep 12 15:59:16 firewall-a openvpn[80590]: STREAM: WRITE 212 offset=44 Sep 12 15:59:16 firewall-a openvpn[80590]: TCPv4_SERVER write returned 214 Sep 12 15:59:16 firewall-a openvpn[80590]: STREAM: SET NEXT, buf=[80,0] next=[80,1565] len=-1 maxlen=1565 Sep 12 15:59:16 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=12 arg=0x00694dd0 Sep 12 15:59:16 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=9 arg=0x00693c34 Sep 12 15:59:16 firewall-a openvpn[80590]: PO_CTL rwflags=0x0001 ev=5 arg=0x00693c38 Sep 12 15:59:16 firewall-a openvpn[80590]: I/O WAIT TR|Tw|SR|Sw [9/233426] [...] Sep 12 15:59:40 firewall-a openvpn[80590]: event_wait returned -1 Sep 12 15:59:40 firewall-a openvpn[80590]: event_wait : Interrupted system call (code=4) Sep 12 15:59:40 firewall-a openvpn[80590]: I/O WAIT status=0x0010 Sep 12 15:59:40 firewall-a openvpn[80590]: TCP/UDP: Closing socket Sep 12 15:59:40 firewall-a openvpn[80590]: /sbin/route delete -net 1.2.150.0 1.2.6.2 255.255.255.0 Sep 12 15:59:40 firewall-a openvpn[80590]: /sbin/route delete -net 1.2.100.0 1.2.6.2 255.255.255.0 Sep 12 15:59:40 firewall-a openvpn[80590]: Closing TUN/TAP interface Sep 12 15:59:40 firewall-a openvpn[80590]: /usr/local/sbin/ovpn-linkdown ovpns6 1500 1562 1.2.6.1 1.2.6.2 init Sep 12 15:59:40 firewall-a openvpn[80590]: PID packet_id_free Sep 12 15:59:40 firewall-a openvpn[80590]: SIGTERM[hard,] received, process exiting Apparently I ran into a character limit for this post, I added the second test result in the next post.[/i][/i][/i][/i][/i][/i][/i][/i][/i][/i][/i][/i][/i][/i][/i][/i]
-
We then start over at 15:59:40 for the second test. This time we're apparently quick enough starting our client. It successfully connects and our local pfSense box reports its tunnel as up:
Sep 12 15:59:41 firewall-a openvpn[14335]: Current Parameter Settings: Sep 12 15:59:41 firewall-a openvpn[14335]: config = '/var/etc/openvpn/server6.conf' Sep 12 15:59:41 firewall-a openvpn[14335]: mode = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: show_ciphers = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: show_digests = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: show_engines = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: genkey = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: key_pass_file = '[UNDEF]' Sep 12 15:59:41 firewall-a openvpn[14335]: show_tls_ciphers = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: Connection profiles [default]: Sep 12 15:59:41 firewall-a openvpn[14335]: proto = tcp-server Sep 12 15:59:41 firewall-a openvpn[14335]: local = '1.2.3.165' Sep 12 15:59:41 firewall-a openvpn[14335]: local_port = 9999 Sep 12 15:59:41 firewall-a openvpn[14335]: remote = '[UNDEF]' Sep 12 15:59:41 firewall-a openvpn[14335]: remote_port = 1194 Sep 12 15:59:41 firewall-a openvpn[14335]: remote_float = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: bind_defined = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: bind_local = ENABLED Sep 12 15:59:41 firewall-a openvpn[14335]: connect_retry_seconds = 5 Sep 12 15:59:41 firewall-a openvpn[14335]: connect_timeout = 10 Sep 12 15:59:41 firewall-a openvpn[14335]: connect_retry_max = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: socks_proxy_server = '[UNDEF]' Sep 12 15:59:41 firewall-a openvpn[14335]: socks_proxy_port = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: socks_proxy_retry = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: tun_mtu = 1500 Sep 12 15:59:41 firewall-a openvpn[14335]: tun_mtu_defined = ENABLED Sep 12 15:59:41 firewall-a openvpn[14335]: link_mtu = 1500 Sep 12 15:59:41 firewall-a openvpn[14335]: link_mtu_defined = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: tun_mtu_extra = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: tun_mtu_extra_defined = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: mtu_discover_type = -1 Sep 12 15:59:41 firewall-a openvpn[14335]: fragment = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: mssfix = 1450 Sep 12 15:59:41 firewall-a openvpn[14335]: explicit_exit_notification = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: Connection profiles END Sep 12 15:59:41 firewall-a openvpn[14335]: remote_random = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: ipchange = '[UNDEF]' Sep 12 15:59:41 firewall-a openvpn[14335]: dev = 'ovpns6' Sep 12 15:59:41 firewall-a openvpn[14335]: dev_type = 'tun' Sep 12 15:59:41 firewall-a openvpn[14335]: dev_node = '/dev/tun6' Sep 12 15:59:41 firewall-a openvpn[14335]: lladdr = '[UNDEF]' Sep 12 15:59:41 firewall-a openvpn[14335]: topology = 1 Sep 12 15:59:41 firewall-a openvpn[14335]: tun_ipv6 = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: ifconfig_local = '1.2.6.1' Sep 12 15:59:41 firewall-a openvpn[14335]: ifconfig_remote_netmask = '1.2.6.2' Sep 12 15:59:41 firewall-a openvpn[14335]: ifconfig_noexec = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: ifconfig_nowarn = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: ifconfig_ipv6_local = '[UNDEF]' Sep 12 15:59:41 firewall-a openvpn[14335]: ifconfig_ipv6_netbits = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: ifconfig_ipv6_remote = '[UNDEF]' Sep 12 15:59:41 firewall-a openvpn[14335]: shaper = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: mtu_test = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: mlock = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: keepalive_ping = 10 Sep 12 15:59:41 firewall-a openvpn[14335]: keepalive_timeout = 60 Sep 12 15:59:41 firewall-a openvpn[14335]: inactivity_timeout = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: ping_send_timeout = 10 Sep 12 15:59:41 firewall-a openvpn[14335]: ping_rec_timeout = 60 Sep 12 15:59:41 firewall-a openvpn[14335]: ping_rec_timeout_action = 2 Sep 12 15:59:41 firewall-a openvpn[14335]: ping_timer_remote = ENABLED Sep 12 15:59:41 firewall-a openvpn[14335]: remap_sigusr1 = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: persist_tun = ENABLED Sep 12 15:59:41 firewall-a openvpn[14335]: persist_local_ip = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: persist_remote_ip = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: persist_key = ENABLED Sep 12 15:59:41 firewall-a openvpn[14335]: passtos = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: resolve_retry_seconds = 1000000000 Sep 12 15:59:41 firewall-a openvpn[14335]: username = '[UNDEF]' Sep 12 15:59:41 firewall-a openvpn[14335]: groupname = '[UNDEF]' Sep 12 15:59:41 firewall-a openvpn[14335]: chroot_dir = '[UNDEF]' Sep 12 15:59:41 firewall-a openvpn[14335]: cd_dir = '[UNDEF]' Sep 12 15:59:41 firewall-a openvpn[14335]: writepid = '/var/run/openvpn_server6.pid' Sep 12 15:59:41 firewall-a openvpn[14335]: up_script = '/usr/local/sbin/ovpn-linkup' Sep 12 15:59:41 firewall-a openvpn[14335]: down_script = '/usr/local/sbin/ovpn-linkdown' Sep 12 15:59:41 firewall-a openvpn[14335]: down_pre = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: up_restart = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: up_delay = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: daemon = ENABLED Sep 12 15:59:41 firewall-a openvpn[14335]: inetd = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: log = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: suppress_timestamps = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: nice = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: verbosity = 11 Sep 12 15:59:41 firewall-a openvpn[14335]: mute = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: gremlin = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: status_file = '[UNDEF]' Sep 12 15:59:41 firewall-a openvpn[14335]: status_file_version = 1 Sep 12 15:59:41 firewall-a openvpn[14335]: status_file_update_freq = 60 Sep 12 15:59:41 firewall-a openvpn[14335]: occ = ENABLED Sep 12 15:59:41 firewall-a openvpn[14335]: rcvbuf = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: sndbuf = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: sockflags = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: fast_io = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: lzo = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: route_script = '[UNDEF]' Sep 12 15:59:41 firewall-a openvpn[14335]: route_default_gateway = '[UNDEF]' Sep 12 15:59:41 firewall-a openvpn[14335]: route_default_metric = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: route_noexec = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: route_delay = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: route_delay_window = 30 Sep 12 15:59:41 firewall-a openvpn[14335]: route_delay_defined = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: route_nopull = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: route_gateway_via_dhcp = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: max_routes = 100 Sep 12 15:59:41 firewall-a openvpn[14335]: allow_pull_fqdn = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: route 1.2.100.0/255.255.255.0/default (not set)/default (not set) Sep 12 15:59:41 firewall-a openvpn[14335]: route 1.2.150.0/255.255.255.0/default (not set)/default (not set) Sep 12 15:59:41 firewall-a openvpn[14335]: management_addr = '/var/etc/openvpn/server6.sock' Sep 12 15:59:41 firewall-a openvpn[14335]: management_port = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: management_user_pass = '[UNDEF]' Sep 12 15:59:41 firewall-a openvpn[14335]: management_log_history_cache = 250 Sep 12 15:59:41 firewall-a openvpn[14335]: management_echo_buffer_size = 100 Sep 12 15:59:41 firewall-a openvpn[14335]: management_write_peer_info_file = '[UNDEF]' Sep 12 15:59:41 firewall-a openvpn[14335]: management_client_user = '[UNDEF]' Sep 12 15:59:41 firewall-a openvpn[14335]: management_client_group = '[UNDEF]' Sep 12 15:59:41 firewall-a openvpn[14335]: management_flags = 256 Sep 12 15:59:41 firewall-a openvpn[14335]: shared_secret_file = '/var/etc/openvpn/server6.secret' Sep 12 15:59:41 firewall-a openvpn[14335]: key_direction = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: ciphername_defined = ENABLED Sep 12 15:59:41 firewall-a openvpn[14335]: ciphername = 'AES-128-CBC' Sep 12 15:59:41 firewall-a openvpn[14335]: authname_defined = ENABLED Sep 12 15:59:41 firewall-a openvpn[14335]: authname = 'SHA1' Sep 12 15:59:41 firewall-a openvpn[14335]: prng_hash = 'SHA1' Sep 12 15:59:41 firewall-a openvpn[14335]: prng_nonce_secret_len = 16 Sep 12 15:59:41 firewall-a openvpn[14335]: keysize = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: engine = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: replay = ENABLED Sep 12 15:59:41 firewall-a openvpn[14335]: mute_replay_warnings = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: replay_window = 64 Sep 12 15:59:41 firewall-a openvpn[14335]: replay_time = 15 Sep 12 15:59:41 firewall-a openvpn[14335]: packet_id_file = '[UNDEF]' Sep 12 15:59:41 firewall-a openvpn[14335]: use_iv = ENABLED Sep 12 15:59:41 firewall-a openvpn[14335]: test_crypto = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: tls_server = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: tls_client = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: key_method = 2 Sep 12 15:59:41 firewall-a openvpn[14335]: ca_file = '[UNDEF]' Sep 12 15:59:41 firewall-a openvpn[14335]: ca_path = '[UNDEF]' Sep 12 15:59:41 firewall-a openvpn[14335]: dh_file = '[UNDEF]' Sep 12 15:59:41 firewall-a openvpn[14335]: cert_file = '[UNDEF]' Sep 12 15:59:41 firewall-a openvpn[14335]: extra_certs_file = '[UNDEF]' Sep 12 15:59:41 firewall-a openvpn[14335]: priv_key_file = '[UNDEF]' Sep 12 15:59:41 firewall-a openvpn[14335]: pkcs12_file = '[UNDEF]' Sep 12 15:59:41 firewall-a openvpn[14335]: cipher_list = '[UNDEF]' Sep 12 15:59:41 firewall-a openvpn[14335]: tls_verify = '[UNDEF]' Sep 12 15:59:41 firewall-a openvpn[14335]: tls_export_cert = '[UNDEF]' Sep 12 15:59:41 firewall-a openvpn[14335]: verify_x509_type = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: verify_x509_name = '[UNDEF]' Sep 12 15:59:41 firewall-a openvpn[14335]: crl_file = '[UNDEF]' Sep 12 15:59:41 firewall-a openvpn[14335]: ns_cert_type = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: remote_cert_ku[i] = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: remote_cert_ku[i] = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: remote_cert_ku[i] = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: remote_cert_ku[i] = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: remote_cert_ku[i] = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: remote_cert_ku[i] = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: remote_cert_ku[i] = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: remote_cert_ku[i] = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: remote_cert_ku[i] = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: remote_cert_ku[i] = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: remote_cert_ku[i] = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: remote_cert_ku[i] = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: remote_cert_ku[i] = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: remote_cert_ku[i] = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: remote_cert_ku[i] = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: remote_cert_ku[i] = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: remote_cert_eku = '[UNDEF]' Sep 12 15:59:41 firewall-a openvpn[14335]: ssl_flags = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: tls_timeout = 2 Sep 12 15:59:41 firewall-a openvpn[14335]: renegotiate_bytes = -1 Sep 12 15:59:41 firewall-a openvpn[14335]: renegotiate_packets = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: renegotiate_seconds = 3600 Sep 12 15:59:41 firewall-a openvpn[14335]: handshake_window = 60 Sep 12 15:59:41 firewall-a openvpn[14335]: transition_window = 3600 Sep 12 15:59:41 firewall-a openvpn[14335]: single_session = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: push_peer_info = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: tls_exit = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: tls_auth_file = '[UNDEF]' Sep 12 15:59:41 firewall-a openvpn[14335]: server_network = 0.0.0.0 Sep 12 15:59:41 firewall-a openvpn[14335]: server_netmask = 0.0.0.0 Sep 12 15:59:41 firewall-a openvpn[14335]: server_network_ipv6 = :: Sep 12 15:59:41 firewall-a openvpn[14335]: server_netbits_ipv6 = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: server_bridge_ip = 0.0.0.0 Sep 12 15:59:41 firewall-a openvpn[14335]: server_bridge_netmask = 0.0.0.0 Sep 12 15:59:41 firewall-a openvpn[14335]: server_bridge_pool_start = 0.0.0.0 Sep 12 15:59:41 firewall-a openvpn[14335]: server_bridge_pool_end = 0.0.0.0 Sep 12 15:59:41 firewall-a openvpn[14335]: ifconfig_pool_defined = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: ifconfig_pool_start = 0.0.0.0 Sep 12 15:59:41 firewall-a openvpn[14335]: ifconfig_pool_end = 0.0.0.0 Sep 12 15:59:41 firewall-a openvpn[14335]: ifconfig_pool_netmask = 0.0.0.0 Sep 12 15:59:41 firewall-a openvpn[14335]: ifconfig_pool_persist_filename = '[UNDEF]' Sep 12 15:59:41 firewall-a openvpn[14335]: ifconfig_pool_persist_refresh_freq = 600 Sep 12 15:59:41 firewall-a openvpn[14335]: ifconfig_ipv6_pool_defined = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: ifconfig_ipv6_pool_base = :: Sep 12 15:59:41 firewall-a openvpn[14335]: ifconfig_ipv6_pool_netbits = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: n_bcast_buf = 256 Sep 12 15:59:41 firewall-a openvpn[14335]: tcp_queue_limit = 64 Sep 12 15:59:41 firewall-a openvpn[14335]: real_hash_size = 256 Sep 12 15:59:41 firewall-a openvpn[14335]: virtual_hash_size = 256 Sep 12 15:59:41 firewall-a openvpn[14335]: client_connect_script = '[UNDEF]' Sep 12 15:59:41 firewall-a openvpn[14335]: learn_address_script = '[UNDEF]' Sep 12 15:59:41 firewall-a openvpn[14335]: client_disconnect_script = '[UNDEF]' Sep 12 15:59:41 firewall-a openvpn[14335]: client_config_dir = '[UNDEF]' Sep 12 15:59:41 firewall-a openvpn[14335]: ccd_exclusive = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: tmp_dir = '/tmp' Sep 12 15:59:41 firewall-a openvpn[14335]: push_ifconfig_defined = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: push_ifconfig_local = 0.0.0.0 Sep 12 15:59:41 firewall-a openvpn[14335]: push_ifconfig_remote_netmask = 0.0.0.0 Sep 12 15:59:41 firewall-a openvpn[14335]: push_ifconfig_ipv6_defined = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: push_ifconfig_ipv6_local = ::/0 Sep 12 15:59:41 firewall-a openvpn[14335]: push_ifconfig_ipv6_remote = :: Sep 12 15:59:41 firewall-a openvpn[14335]: enable_c2c = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: duplicate_cn = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: cf_max = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: cf_per = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: max_clients = 1024 Sep 12 15:59:41 firewall-a openvpn[14335]: max_routes_per_client = 256 Sep 12 15:59:41 firewall-a openvpn[14335]: auth_user_pass_verify_script = '[UNDEF]' Sep 12 15:59:41 firewall-a openvpn[14335]: auth_user_pass_verify_script_via_file = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: port_share_host = '[UNDEF]' Sep 12 15:59:41 firewall-a openvpn[14335]: port_share_port = 0 Sep 12 15:59:41 firewall-a openvpn[14335]: client = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: pull = DISABLED Sep 12 15:59:41 firewall-a openvpn[14335]: auth_user_pass_file = '[UNDEF]' Sep 12 15:59:41 firewall-a openvpn[14335]: OpenVPN 2.3.17 amd64-portbld-freebsd10.3 [SSL (OpenSSL)] [LZO] [MH] [IPv6] built on Jun 26 2017 Sep 12 15:59:41 firewall-a openvpn[14335]: library versions: OpenSSL 1.0.1s-freebsd 1 Mar 2016, LZO 2.10 Sep 12 15:59:41 firewall-a openvpn[14455]: PO_INIT maxevents=1 flags=0x00000002 Sep 12 15:59:41 firewall-a openvpn[14455]: MANAGEMENT: unix domain socket listening on /var/etc/openvpn/server6.sock Sep 12 15:59:41 firewall-a openvpn[14455]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts Sep 12 15:59:41 firewall-a openvpn[14455]: PO_INIT maxevents=4 flags=0x00000002 Sep 12 15:59:41 firewall-a openvpn[14455]: PID packet_id_init tcp_mode=1 seq_backtrack=64 time_backtrack=15 Sep 12 15:59:41 firewall-a openvpn[14455]: CRYPTO INFO: n_DES_cblocks=0 Sep 12 15:59:41 firewall-a openvpn[14455]: CRYPTO INFO: n_DES_cblocks=0 Sep 12 15:59:41 firewall-a openvpn[14455]: CRYPTO INFO: n_DES_cblocks=0 Sep 12 15:59:41 firewall-a openvpn[14455]: CRYPTO INFO: n_DES_cblocks=0 Sep 12 15:59:41 firewall-a openvpn[14455]: Static Encrypt: Cipher 'AES-128-CBC' initialized with 128 bit key Sep 12 15:59:41 firewall-a openvpn[14455]: Static Encrypt: CIPHER KEY: e420d656 378d6b84 65176453 86d540a2 Sep 12 15:59:41 firewall-a openvpn[14455]: Static Encrypt: CIPHER block_size=16 iv_size=16 Sep 12 15:59:41 firewall-a openvpn[14455]: Static Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication Sep 12 15:59:41 firewall-a openvpn[14455]: Static Encrypt: HMAC KEY: 78119039 173f93af 241760be 83b36c1d 6b97e4e5 Sep 12 15:59:41 firewall-a openvpn[14455]: Static Encrypt: HMAC size=20 block_size=20 Sep 12 15:59:41 firewall-a openvpn[14455]: Static Decrypt: Cipher 'AES-128-CBC' initialized with 128 bit key Sep 12 15:59:41 firewall-a openvpn[14455]: Static Decrypt: CIPHER KEY: e420d656 378d6b84 65176453 86d540a2 Sep 12 15:59:41 firewall-a openvpn[14455]: Static Decrypt: CIPHER block_size=16 iv_size=16 Sep 12 15:59:41 firewall-a openvpn[14455]: Static Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication Sep 12 15:59:41 firewall-a openvpn[14455]: Static Decrypt: HMAC KEY: 78119039 173f93af 241760be 83b36c1d 6b97e4e5 Sep 12 15:59:41 firewall-a openvpn[14455]: Static Decrypt: HMAC size=20 block_size=20 Sep 12 15:59:41 firewall-a openvpn[14455]: crypto_adjust_frame_parameters: Adjusting frame parameters for crypto by 60 bytes Sep 12 15:59:41 firewall-a openvpn[14455]: MTU DYNAMIC mtu=1450, flags=2, 1562 -> 1450 Sep 12 15:59:41 firewall-a openvpn[14455]: Socket Buffers: R=[65228->65228] S=[65228->65228] Sep 12 15:59:41 firewall-a openvpn[14455]: ROUTE_GATEWAY 1.2.3.161 Sep 12 15:59:41 firewall-a openvpn[14455]: TUN/TAP device ovpns6 exists previously, keep at program end Sep 12 15:59:41 firewall-a openvpn[14455]: TUN/TAP device /dev/tun6 opened Sep 12 15:59:41 firewall-a openvpn[14455]: do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0 Sep 12 15:59:41 firewall-a openvpn[14455]: /sbin/ifconfig ovpns6 1.2.6.1 1.2.6.2 mtu 1500 netmask 255.255.255.255 up Sep 12 15:59:41 firewall-a openvpn[14455]: /usr/local/sbin/ovpn-linkup ovpns6 1500 1562 1.2.6.1 1.2.6.2 init Sep 12 15:59:41 firewall-a openvpn[14455]: /sbin/route add -net 1.2.100.0 1.2.6.2 255.255.255.0 Sep 12 15:59:41 firewall-a openvpn[14455]: /sbin/route add -net 1.2.150.0 1.2.6.2 255.255.255.0 Sep 12 15:59:41 firewall-a openvpn[14455]: Data Channel MTU parms [ L:1562 D:1450 EF:62 EB:12 ET:0 EL:3 ] Sep 12 15:59:41 firewall-a openvpn[14455]: Local Options String: 'V4,dev-type tun,link-mtu 1562,tun-mtu 1500,proto TCPv4_SERVER,ifconfig 1.2.6.2 1.2.6.1,cipher AES-128-CBC,auth SHA1,keysize 128,secret' Sep 12 15:59:41 firewall-a openvpn[14455]: Expected Remote Options String: 'V4,dev-type tun,link-mtu 1562,tun-mtu 1500,proto TCPv4_CLIENT,ifconfig 1.2.6.1 1.2.6.2,cipher AES-128-CBC,auth SHA1,keysize 128,secret' Sep 12 15:59:41 firewall-a openvpn[14455]: Local Options hash (VER=V4): '2f3bf1f5' Sep 12 15:59:41 firewall-a openvpn[14455]: Expected Remote Options hash (VER=V4): '83d4ce6c' Sep 12 15:59:41 firewall-a openvpn[14455]: STREAM: RESET Sep 12 15:59:41 firewall-a openvpn[14455]: STREAM: INIT maxlen=1565 Sep 12 15:59:41 firewall-a openvpn[14455]: Listening for incoming TCP connection on [AF_INET]1.2.3.165:9999 Sep 12 15:59:41 firewall-a openvpn[14455]: PO_CTL rwflags=0x0001 ev=5 arg=0x00000000 Sep 12 15:59:42 firewall-a openvpn[14455]: PO_CTL rwflags=0x0001 ev=5 arg=0x00000000 Sep 12 15:59:43 firewall-a openvpn[14455]: TCP connection established with [AF_INET]1.2.29.39:1385 Sep 12 15:59:43 firewall-a openvpn[14455]: TCPv4_SERVER link local (bound): [AF_INET]1.2.3.165:9999 Sep 12 15:59:43 firewall-a openvpn[14455]: TCPv4_SERVER link remote: [AF_INET]1.2.29.39:1385 Sep 12 15:59:43 firewall-a openvpn[14455]: ENCRYPT IV: 0b7c4592 2e1f4e37 ee5a8030 00ff43f4 Sep 12 15:59:43 firewall-a openvpn[14455]: ENCRYPT FROM: 00000001 59b7e84f 2a187bf3 641eb4cb 07ed2d0a 981fc748 Sep 12 15:59:43 firewall-a openvpn[14455]: ENCRYPT TO: 0b7c4592 2e1f4e37 ee5a8030 00ff43f4 91a9f80c 2649c1de ef40f284 15a1132[more...] Sep 12 15:59:43 firewall-a openvpn[14455]: SENT PING Sep 12 15:59:43 firewall-a openvpn[14455]: TIMER: coarse timer wakeup 1 seconds Sep 12 15:59:43 firewall-a openvpn[14455]: RANDOM USEC=41414 Sep 12 15:59:43 firewall-a openvpn[14455]: STREAM: SET NEXT, buf=[80,0] next=[80,1565] len=-1 maxlen=1565 Sep 12 15:59:43 firewall-a openvpn[14455]: PO_CTL rwflags=0x0003 ev=12 arg=0x00694dd0 Sep 12 15:59:43 firewall-a openvpn[14455]: PO_CTL rwflags=0x0000 ev=9 arg=0x00693c34 Sep 12 15:59:43 firewall-a openvpn[14455]: PO_CTL rwflags=0x0001 ev=5 arg=0x00693c38 Sep 12 15:59:43 firewall-a openvpn[14455]: I/O WAIT Tr|Tw|SR|SW [1/41414] Sep 12 15:59:43 firewall-a openvpn[14455]: PO_WAIT[0,0] fd=12 rev=0x00000004 rwflags=0x0002 arg=0x00694dd0 Sep 12 15:59:43 firewall-a openvpn[14455]: event_wait returned 1 Sep 12 15:59:43 firewall-a openvpn[14455]: I/O WAIT status=0x0002 Sep 12 15:59:43 firewall-a openvpn[14455]: TCPv4_SERVER WRITE [68] to [AF_INET]1.2.29.39:1385: DATA f5814407 74d10a5f 5ccef705 7ab3bba6 f50567ad 0b7c4592 2e1f4e37 ee5a803[more...] Sep 12 15:59:43 firewall-a openvpn[14455]: STREAM: WRITE 68 offset=44 Sep 12 15:59:43 firewall-a openvpn[14455]: TCPv4_SERVER write returned 70 Sep 12 15:59:43 firewall-a openvpn[14455]: STREAM: SET NEXT, buf=[80,0] next=[80,1565] len=-1 maxlen=1565 Sep 12 15:59:43 firewall-a openvpn[14455]: PO_CTL rwflags=0x0001 ev=12 arg=0x00694dd0 Sep 12 15:59:43 firewall-a openvpn[14455]: PO_CTL rwflags=0x0001 ev=9 arg=0x00693c34 Sep 12 15:59:43 firewall-a openvpn[14455]: PO_CTL rwflags=0x0001 ev=5 arg=0x00693c38 Sep 12 15:59:43 firewall-a openvpn[14455]: I/O WAIT TR|Tw|SR|Sw [1/41414] Sep 12 15:59:43 firewall-a openvpn[14455]: PO_WAIT[0,0] fd=12 rev=0x00000001 rwflags=0x0001 arg=0x00694dd0 Sep 12 15:59:43 firewall-a openvpn[14455]: event_wait returned 1 Sep 12 15:59:43 firewall-a openvpn[14455]: I/O WAIT status=0x0001 Sep 12 15:59:43 firewall-a openvpn[14455]: STREAM: GET NEXT len=1565 Sep 12 15:59:43 firewall-a openvpn[14455]: STREAM: ADD length_added=70 Sep 12 15:59:43 firewall-a openvpn[14455]: STREAM: ADD returned TRUE, buf_len=68, residual_len=0 Sep 12 15:59:43 firewall-a openvpn[14455]: STREAM: GET FINAL len=68 Sep 12 15:59:43 firewall-a openvpn[14455]: STREAM: RESET Sep 12 15:59:43 firewall-a openvpn[14455]: TCPv4_SERVER read returned 68 Sep 12 15:59:43 firewall-a openvpn[14455]: TCPv4_SERVER READ [68] from [AF_INET]1.2.29.39:1385: DATA 7622899a 9e8cfbb0 84337fd2 aba9f10b 1d538274 3de23459 87db2d50 0f750be[more...] Sep 12 15:59:43 firewall-a openvpn[14455]: DECRYPT IV: 3de23459 87db2d50 0f750be6 a44de136 Sep 12 15:59:43 firewall-a openvpn[14455]: DECRYPT TO: 00000001 59b7e84f 2a187bf3 641eb4cb 07ed2d0a 981fc748 Sep 12 15:59:43 firewall-a openvpn[14455]: PID_TEST [0] [STATIC-0] [] 0:0 1505224783:1 t=1505224783[0] r=[0,0,0,0,1] Sep 12 15:59:43 firewall-a openvpn[14455]: Peer Connection Initiated with [AF_INET]1.2.29.39:1385 Sep 12 15:59:43 firewall-a openvpn[14455]: RECEIVED PING PACKET Sep 12 15:59:43 firewall-a openvpn[14455]: STREAM: SET NEXT, buf=[80,0] next=[80,1565] len=-1 maxlen=1565 Sep 12 15:59:43 firewall-a openvpn[14455]: PO_CTL rwflags=0x0001 ev=12 arg=0x00694dd0 Sep 12 15:59:43 firewall-a openvpn[14455]: PO_CTL rwflags=0x0001 ev=9 arg=0x00693c34 Sep 12 15:59:43 firewall-a openvpn[14455]: PO_CTL rwflags=0x0001 ev=5 arg=0x00693c38 Sep 12 15:59:43 firewall-a openvpn[14455]: I/O WAIT TR|Tw|SR|Sw [1/41414] Sep 12 15:59:43 firewall-a openvpn[14455]: PO_WAIT[0,0] fd=12 rev=0x00000001 rwflags=0x0001 arg=0x00694dd0 Sep 12 15:59:43 firewall-a openvpn[14455]: event_wait returned 1 Sep 12 15:59:43 firewall-a openvpn[14455]: I/O WAIT status=0x0001 Sep 12 15:59:43 firewall-a openvpn[14455]: STREAM: GET NEXT len=1565 Sep 12 15:59:43 firewall-a openvpn[14455]: STREAM: ADD length_added=418 Sep 12 15:59:43 firewall-a openvpn[14455]: STREAM: ADD returned TRUE, buf_len=148, residual_len=268 Sep 12 15:59:43 firewall-a openvpn[14455]: STREAM: GET FINAL len=148 Sep 12 15:59:43 firewall-a openvpn[14455]: STREAM: RESET Sep 12 15:59:43 firewall-a openvpn[14455]: TCPv4_SERVER read returned 148 Sep 12 15:59:43 firewall-a openvpn[14455]: TCPv4_SERVER READ [148] from [AF_INET]1.2.29.39:1385: DATA e2b8b2b9 84ec9653 77241d65 7a65ad39 df6b986b 2a65c5c5 1fc346e9 1a061c2[more...] Sep 12 15:59:43 firewall-a openvpn[14455]: DECRYPT IV: 2a65c5c5 1fc346e9 1a061c27 37350e4f Sep 12 15:59:43 firewall-a openvpn[14455]: DECRYPT TO: 00000002 59b7e84f 60000000 00380001 00000000 00000000 00000000 0000000[more...] Sep 12 15:59:43 firewall-a openvpn[14455]: PID_TEST [0] [STATIC-0] [] 1505224783:1 1505224783:2 t=1505224783[0] r=[0,0,0,0,1] Sep 12 15:59:43 firewall-a openvpn[14455]: PO_CTL rwflags=0x0000 ev=12 arg=0x00694dd0 Sep 12 15:59:43 firewall-a openvpn[14455]: PO_CTL rwflags=0x0003 ev=9 arg=0x00693c34 Sep 12 15:59:43 firewall-a openvpn[14455]: PO_CTL rwflags=0x0001 ev=5 arg=0x00693c38 Sep 12 15:59:43 firewall-a openvpn[14455]: I/O WAIT TR|TW|Sr|Sw [1/41414] Sep 12 15:59:43 firewall-a openvpn[14455]: PO_WAIT[1,0] fd=9 rev=0x00000004 rwflags=0x0002 arg=0x00693c34 Sep 12 15:59:43 firewall-a openvpn[14455]: event_wait returned 1 Sep 12 15:59:43 firewall-a openvpn[14455]: I/O WAIT status=0x0008 Sep 12 15:59:43 firewall-a openvpn[14455]: TUN WRITE [96] Sep 12 15:59:43 firewall-a openvpn[14455]: write to TUN/TAP returned 96 Sep 12 15:59:43 firewall-a openvpn[14455]: STREAM: ADD length_added=0 Sep 12 15:59:43 firewall-a openvpn[14455]: STREAM: ADD returned TRUE, buf_len=132, residual_len=134 Sep 12 15:59:43 firewall-a openvpn[14455]: STREAM: RESIDUAL FULLY FORMED [YES], len=134 Sep 12 15:59:43 firewall-a openvpn[14455]: PO_CTL rwflags=0x0000 ev=12 arg=0x00694dd0 Sep 12 15:59:43 firewall-a openvpn[14455]: PO_CTL rwflags=0x0001 ev=9 arg=0x00693c34 Sep 12 15:59:43 firewall-a openvpn[14455]: PO_CTL rwflags=0x0001 ev=5 arg=0x00693c38 Sep 12 15:59:43 firewall-a openvpn[14455]: I/O WAIT status=0x0001 Sep 12 15:59:43 firewall-a openvpn[14455]: STREAM: GET FINAL len=132 Sep 12 15:59:43 firewall-a openvpn[14455]: STREAM: RESET Sep 12 15:59:43 firewall-a openvpn[14455]: TCPv4_SERVER read returned 132 Sep 12 15:59:43 firewall-a openvpn[14455]: TCPv4_SERVER READ [132] from [AF_INET]1.2.29.39:1385: DATA 2b5aaa94 6cd2016d 1caac234 2e9df4bc 80e7250d 87f8781b 2d1448dc d7777c0[more...] Sep 12 15:59:43 firewall-a openvpn[14455]: DECRYPT IV: 87f8781b 2d1448dc d7777c03 55798b08 Sep 12 15:59:43 firewall-a openvpn[14455]: DECRYPT TO: 00000003 59b7e84f 60000000 00240001 00000000 00000000 00000000 0000000[more...] Sep 12 15:59:43 firewall-a openvpn[14455]: PID_TEST [0] [STATIC-0] [] 1505224783:2 1505224783:3 t=1505224783[0] r=[0,0,0,0,1] Sep 12 15:59:43 firewall-a openvpn[14455]: PO_CTL rwflags=0x0000 ev=12 arg=0x00694dd0 Sep 12 15:59:43 firewall-a openvpn[14455]: PO_CTL rwflags=0x0003 ev=9 arg=0x00693c34 Sep 12 15:59:43 firewall-a openvpn[14455]: PO_CTL rwflags=0x0001 ev=5 arg=0x00693c38 Sep 12 15:59:43 firewall-a openvpn[14455]: I/O WAIT TR|TW|Sr|Sw [1/41414] Sep 12 15:59:43 firewall-a openvpn[14455]: PO_WAIT[1,0] fd=9 rev=0x00000004 rwflags=0x0002 arg=0x00693c34 Sep 12 15:59:43 firewall-a openvpn[14455]: event_wait returned 1 Sep 12 15:59:43 firewall-a openvpn[14455]: I/O WAIT status=0x0008 Sep 12 15:59:43 firewall-a openvpn[14455]: TUN WRITE [76] Sep 12 15:59:43 firewall-a openvpn[14455]: write to TUN/TAP returned 76 Sep 12 15:59:43 firewall-a openvpn[14455]: STREAM: ADD length_added=0 Sep 12 15:59:43 firewall-a openvpn[14455]: STREAM: ADD returned TRUE, buf_len=132, residual_len=0 Sep 12 15:59:43 firewall-a openvpn[14455]: STREAM: RESIDUAL FULLY FORMED [YES], len=0 Sep 12 15:59:43 firewall-a openvpn[14455]: PO_CTL rwflags=0x0000 ev=12 arg=0x00694dd0 Sep 12 15:59:43 firewall-a openvpn[14455]: PO_CTL rwflags=0x0001 ev=9 arg=0x00693c34 Sep 12 15:59:43 firewall-a openvpn[14455]: PO_CTL rwflags=0x0001 ev=5 arg=0x00693c38 Sep 12 15:59:43 firewall-a openvpn[14455]: I/O WAIT status=0x0001 Sep 12 15:59:43 firewall-a openvpn[14455]: STREAM: GET FINAL len=132 Sep 12 15:59:43 firewall-a openvpn[14455]: STREAM: RESET Sep 12 15:59:43 firewall-a openvpn[14455]: TCPv4_SERVER read returned 132 Sep 12 15:59:43 firewall-a openvpn[14455]: TCPv4_SERVER READ [132] from [AF_INET]1.2.29.39:1385: DATA 4720e8a9 88804174 ebdab9af d2a97645 7a32f116 75033846 3d65e6e2 be768e7[more...] Sep 12 15:59:43 firewall-a openvpn[14455]: DECRYPT IV: 75033846 3d65e6e2 be768e78 7120e868 Sep 12 15:59:43 firewall-a openvpn[14455]: DECRYPT TO: 00000004 59b7e84f 60000000 00203aff 00000000 00000000 00000000 0000000[more...] Sep 12 15:59:43 firewall-a openvpn[14455]: PID_TEST [0] [STATIC-0] [] 1505224783:3 1505224783:4 t=1505224783[0] r=[0,0,0,0,1] Sep 12 15:59:43 firewall-a openvpn[14455]: PO_CTL rwflags=0x0000 ev=12 arg=0x00694dd0 Sep 12 15:59:43 firewall-a openvpn[14455]: PO_CTL rwflags=0x0003 ev=9 arg=0x00693c34 Sep 12 15:59:43 firewall-a openvpn[14455]: PO_CTL rwflags=0x0001 ev=5 arg=0x00693c38 Sep 12 15:59:43 firewall-a openvpn[14455]: I/O WAIT TR|TW|Sr|Sw [1/41414] Sep 12 15:59:43 firewall-a openvpn[14455]: PO_WAIT[1,0] fd=9 rev=0x00000004 rwflags=0x0002 arg=0x00693c34 Sep 12 15:59:43 firewall-a openvpn[14455]: event_wait returned 1 Sep 12 15:59:43 firewall-a openvpn[14455]: I/O WAIT status=0x0008 Sep 12 15:59:43 firewall-a openvpn[14455]: TUN WRITE [72] Sep 12 15:59:43 firewall-a openvpn[14455]: write to TUN/TAP returned 72 Sep 12 15:59:43 firewall-a openvpn[14455]: STREAM: SET NEXT, buf=[80,0] next=[80,1565] len=-1 maxlen=1565 Sep 12 15:59:43 firewall-a openvpn[14455]: PO_CTL rwflags=0x0001 ev=12 arg=0x00694dd0 Sep 12 15:59:43 firewall-a openvpn[14455]: PO_CTL rwflags=0x0001 ev=9 arg=0x00693c34 Sep 12 15:59:43 firewall-a openvpn[14455]: PO_CTL rwflags=0x0001 ev=5 arg=0x00693c38 Sep 12 15:59:43 firewall-a openvpn[14455]: I/O WAIT TR|Tw|SR|Sw [1/41414] Sep 12 15:59:44 firewall-a openvpn[14455]: PO_WAIT[0,0] fd=12 rev=0x00000001 rwflags=0x0001 arg=0x00694dd0 Sep 12 15:59:44 firewall-a openvpn[14455]: event_wait returned 1 Sep 12 15:59:44 firewall-a openvpn[14455]: I/O WAIT status=0x0001 Sep 12 15:59:44 firewall-a openvpn[14455]: STREAM: GET NEXT len=1565 Sep 12 15:59:44 firewall-a openvpn[14455]: STREAM: ADD length_added=134 Sep 12 15:59:44 firewall-a openvpn[14455]: STREAM: ADD returned TRUE, buf_len=132, residual_len=0 Sep 12 15:59:44 firewall-a openvpn[14455]: STREAM: GET FINAL len=132 Sep 12 15:59:44 firewall-a openvpn[14455]: STREAM: RESET Sep 12 15:59:44 firewall-a openvpn[14455]: TCPv4_SERVER read returned 132 Sep 12 15:59:44 firewall-a openvpn[14455]: TCPv4_SERVER READ [132] from [AF_INET]1.2.29.39:1385: DATA b61e9648 50d57e18 4f47f110 d47f23f7 3834263d 8e941fa8 7e3db4cc f88b939[more...] Sep 12 15:59:44 firewall-a openvpn[14455]: DECRYPT IV: 8e941fa8 7e3db4cc f88b9393 e33d0a76 Sep 12 15:59:44 firewall-a openvpn[14455]: DECRYPT TO: 00000005 59b7e84f 60000000 00240001 00000000 00000000 00000000 0000000[more...] Sep 12 15:59:44 firewall-a openvpn[14455]: PID_TEST [0] [STATIC-0] [] 1505224783:4 1505224783:5 t=1505224784[0] r=[-1,0,0,0,1] Sep 12 15:59:44 firewall-a openvpn[14455]: WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this Sep 12 15:59:44 firewall-a openvpn[14455]: Initialization Sequence Completed Sep 12 15:59:44 firewall-a openvpn[14455]: TIMER: coarse timer wakeup 1 seconds Sep 12 15:59:44 firewall-a openvpn[14455]: PO_CTL rwflags=0x0000 ev=12 arg=0x00694dd0 Sep 12 15:59:44 firewall-a openvpn[14455]: PO_CTL rwflags=0x0003 ev=9 arg=0x00693c34 Sep 12 15:59:44 firewall-a openvpn[14455]: PO_CTL rwflags=0x0001 ev=5 arg=0x00693c38 Sep 12 15:59:44 firewall-a openvpn[14455]: I/O WAIT TR|TW|Sr|Sw [1/41414] Sep 12 15:59:44 firewall-a openvpn[14455]: PO_WAIT[1,0] fd=9 rev=0x00000004 rwflags=0x0002 arg=0x00693c34 Sep 12 15:59:44 firewall-a openvpn[14455]: event_wait returned 1 Sep 12 15:59:44 firewall-a openvpn[14455]: I/O WAIT status=0x0008 Sep 12 15:59:44 firewall-a openvpn[14455]: TUN WRITE [76] Sep 12 15:59:44 firewall-a openvpn[14455]: write to TUN/TAP returned 76 Sep 12 15:59:44 firewall-a openvpn[14455]: STREAM: SET NEXT, buf=[80,0] next=[80,1565] len=-1 maxlen=1565 Sep 12 15:59:44 firewall-a openvpn[14455]: PO_CTL rwflags=0x0001 ev=12 arg=0x00694dd0 Sep 12 15:59:44 firewall-a openvpn[14455]: PO_CTL rwflags=0x0001 ev=9 arg=0x00693c34 Sep 12 15:59:44 firewall-a openvpn[14455]: PO_CTL rwflags=0x0001 ev=5 arg=0x00693c38 Sep 12 15:59:44 firewall-a openvpn[14455]: I/O WAIT TR|Tw|SR|Sw [1/41414] Sep 12 15:59:45 firewall-a openvpn[14455]: event_wait returned 0 Sep 12 15:59:45 firewall-a openvpn[14455]: I/O WAIT status=0x0020 Sep 12 15:59:45 firewall-a openvpn[14455]: TIMER: coarse timer wakeup 8 seconds Sep 12 15:59:45 firewall-a openvpn[14455]: STREAM: SET NEXT, buf=[80,0] next=[80,1565] len=-1 maxlen=1565 Sep 12 15:59:45 firewall-a openvpn[14455]: PO_CTL rwflags=0x0001 ev=12 arg=0x00694dd0 Sep 12 15:59:45 firewall-a openvpn[14455]: PO_CTL rwflags=0x0001 ev=9 arg=0x00693c34 Sep 12 15:59:45 firewall-a openvpn[14455]: PO_CTL rwflags=0x0001 ev=5 arg=0x00693c38 Sep 12 15:59:45 firewall-a openvpn[14455]: I/O WAIT TR|Tw|SR|Sw [8/41414] Sep 12 15:59:45 firewall-a openvpn[14455]: PO_WAIT[0,0] fd=12 rev=0x00000001 rwflags=0x0001 arg=0x00694dd0 Sep 12 15:59:45 firewall-a openvpn[14455]: event_wait returned 1 Sep 12 15:59:45 firewall-a openvpn[14455]: I/O WAIT status=0x0001 Sep 12 15:59:45 firewall-a openvpn[14455]: STREAM: GET NEXT len=1565 Sep 12 15:59:45 firewall-a openvpn[14455]: STREAM: ADD length_added=150 Sep 12 15:59:45 firewall-a openvpn[14455]: STREAM: ADD returned TRUE, buf_len=148, residual_len=0 Sep 12 15:59:45 firewall-a openvpn[14455]: STREAM: GET FINAL len=148 Sep 12 15:59:45 firewall-a openvpn[14455]: STREAM: RESET Sep 12 15:59:45 firewall-a openvpn[14455]: TCPv4_SERVER read returned 148 Sep 12 15:59:45 firewall-a openvpn[14455]: TCPv4_SERVER READ [148] from [AF_INET]1.2.29.39:1385: DATA 4cf153e5 f8241dfd f478aef7 e9021550 888d8fd8 32741c66 e6886c97 98f156b[more...] Sep 12 15:59:45 firewall-a openvpn[14455]: DECRYPT IV: 32741c66 e6886c97 98f156b5 eb44ec96 Sep 12 15:59:45 firewall-a openvpn[14455]: DECRYPT TO: 00000006 59b7e84f 60000000 00380001 fe800000 00000000 023018ff fec7399[more...] Sep 12 15:59:45 firewall-a openvpn[14455]: PID_TEST [0] [STATIC-0] [] 1505224783:5 1505224783:6 t=1505224785[0] r=[-2,0,0,0,1] Sep 12 15:59:45 firewall-a openvpn[14455]: PO_CTL rwflags=0x0000 ev=12 arg=0x00694dd0 Sep 12 15:59:45 firewall-a openvpn[14455]: PO_CTL rwflags=0x0003 ev=9 arg=0x00693c34 Sep 12 15:59:45 firewall-a openvpn[14455]: PO_CTL rwflags=0x0001 ev=5 arg=0x00693c38 Sep 12 15:59:45 firewall-a openvpn[14455]: I/O WAIT TR|TW|Sr|Sw [8/41414] Sep 12 15:59:45 firewall-a openvpn[14455]: PO_WAIT[1,0] fd=9 rev=0x00000004 rwflags=0x0002 arg=0x00693c34 Sep 12 15:59:45 firewall-a openvpn[14455]: event_wait returned 1 Sep 12 15:59:45 firewall-a openvpn[14455]: I/O WAIT status=0x0008 Sep 12 15:59:45 firewall-a openvpn[14455]: TUN WRITE [96] Sep 12 15:59:45 firewall-a openvpn[14455]: write to TUN/TAP returned 96 Sep 12 15:59:45 firewall-a openvpn[14455]: STREAM: SET NEXT, buf=[80,0] next=[80,1565] len=-1 maxlen=1565 Sep 12 15:59:45 firewall-a openvpn[14455]: PO_CTL rwflags=0x0001 ev=12 arg=0x00694dd0 Sep 12 15:59:45 firewall-a openvpn[14455]: PO_CTL rwflags=0x0001 ev=9 arg=0x00693c34 Sep 12 15:59:45 firewall-a openvpn[14455]: PO_CTL rwflags=0x0001 ev=5 arg=0x00693c38 Sep 12 15:59:45 firewall-a openvpn[14455]: I/O WAIT TR|Tw|SR|Sw [8/41414] Sep 12 15:59:46 firewall-a openvpn[14455]: PO_WAIT[2,0] fd=5 rev=0x00000001 rwflags=0x0001 arg=0x00693c38 Sep 12 15:59:46 firewall-a openvpn[14455]: event_wait returned 1 Sep 12 15:59:46 firewall-a openvpn[14455]: I/O WAIT status=0x0040 Sep 12 15:59:46 firewall-a openvpn[14455]: MANAGEMENT: Client connected from /var/etc/openvpn/server6.sock Sep 12 15:59:46 firewall-a openvpn[14455]: STREAM: SET NEXT, buf=[80,0] next=[80,1565] len=-1 maxlen=1565 Sep 12 15:59:46 firewall-a openvpn[14455]: PO_CTL rwflags=0x0001 ev=12 arg=0x00694dd0 Sep 12 15:59:46 firewall-a openvpn[14455]: PO_CTL rwflags=0x0001 ev=9 arg=0x00693c34 Sep 12 15:59:46 firewall-a openvpn[14455]: PO_CTL rwflags=0x0001 ev=8 arg=0x00693c38 Sep 12 15:59:46 firewall-a openvpn[14455]: I/O WAIT TR|Tw|SR|Sw [7/41414] Sep 12 15:59:46 firewall-a openvpn[14455]: PO_WAIT[2,0] fd=8 rev=0x00000001 rwflags=0x0001 arg=0x00693c38 Sep 12 15:59:46 firewall-a openvpn[14455]: event_wait returned 1 Sep 12 15:59:46 firewall-a openvpn[14455]: I/O WAIT status=0x0040 Sep 12 15:59:46 firewall-a openvpn[14455]: MANAGEMENT: CMD 'state 1' Sep 12 15:59:46 firewall-a openvpn[14455]: STREAM: SET NEXT, buf=[80,0] next=[80,1565] len=-1 maxlen=1565 Sep 12 15:59:46 firewall-a openvpn[14455]: PO_CTL rwflags=0x0001 ev=12 arg=0x00694dd0 Sep 12 15:59:46 firewall-a openvpn[14455]: PO_CTL rwflags=0x0001 ev=9 arg=0x00693c34 Sep 12 15:59:46 firewall-a openvpn[14455]: PO_CTL rwflags=0x0001 ev=8 arg=0x00693c38 Sep 12 15:59:46 firewall-a openvpn[14455]: I/O WAIT TR|Tw|SR|Sw [7/41414] Sep 12 15:59:46 firewall-a openvpn[14455]: PO_WAIT[2,0] fd=8 rev=0x00000001 rwflags=0x0001 arg=0x00693c38 Sep 12 15:59:46 firewall-a openvpn[14455]: event_wait returned 1 Sep 12 15:59:46 firewall-a openvpn[14455]: I/O WAIT status=0x0040 Sep 12 15:59:46 firewall-a openvpn[14455]: MANAGEMENT: CMD 'status 2' Sep 12 15:59:46 firewall-a openvpn[14455]: STREAM: SET NEXT, buf=[80,0] next=[80,1565] len=-1 maxlen=1565 Sep 12 15:59:46 firewall-a openvpn[14455]: PO_CTL rwflags=0x0001 ev=12 arg=0x00694dd0 Sep 12 15:59:46 firewall-a openvpn[14455]: PO_CTL rwflags=0x0001 ev=9 arg=0x00693c34 Sep 12 15:59:46 firewall-a openvpn[14455]: PO_CTL rwflags=0x0001 ev=8 arg=0x00693c38 Sep 12 15:59:46 firewall-a openvpn[14455]: I/O WAIT TR|Tw|SR|Sw [7/41414] Sep 12 15:59:46 firewall-a openvpn[14455]: PO_WAIT[2,0] fd=8 rev=0x00000011 rwflags=0x0001 arg=0x00693c38 Sep 12 15:59:46 firewall-a openvpn[14455]: event_wait returned 1 Sep 12 15:59:46 firewall-a openvpn[14455]: I/O WAIT status=0x0040 Sep 12 15:59:46 firewall-a openvpn[14455]: MANAGEMENT: Client disconnected Sep 12 15:59:46 firewall-a openvpn[14455]: STREAM: SET NEXT, buf=[80,0] next=[80,1565] len=-1 maxlen=1565 Sep 12 15:59:46 firewall-a openvpn[14455]: PO_CTL rwflags=0x0001 ev=12 arg=0x00694dd0 Sep 12 15:59:46 firewall-a openvpn[14455]: PO_CTL rwflags=0x0001 ev=9 arg=0x00693c34 Sep 12 15:59:46 firewall-a openvpn[14455]: PO_CTL rwflags=0x0001 ev=5 arg=0x00693c38 Sep 12 15:59:46 firewall-a openvpn[14455]: I/O WAIT TR|Tw|SR|Sw [7/41414][/i][/i][/i][/i][/i][/i][/i][/i][/i][/i][/i][/i][/i][/i][/i][/i]