Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    How can I recover from this automatically

    OpenVPN
    1
    1
    302
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • gregeeh
      gregeeh last edited by

      Hi all,

      pfSense 2.4.2, OpenVPN Client and the Service Watchdog package monitoring OpenVPN.

      I have all my LAN traffic configured to go via OpenVPN and it's working well, however this morning the Internet went down and it was over an hour before I could log in to pfSense and restart the OpenVPN service.  Which fixed the problem.

      My question is how can I setup OpenVPN so that when this happens it can correct the problem itself?

      Here are the logs showing when it failed and me restarting at about 12:08.

      Ideas appreciated.

      TIA

      Greg

      Jan 6 12:14:22 	openvpn 	11938 	Initialization Sequence Completed
      Jan 6 12:14:22 	openvpn 	11938 	/usr/local/sbin/ovpn-linkup ovpnc1 1500 1553 10.10.127.46 10.10.127.45 init
      Jan 6 12:14:22 	openvpn 	11938 	/sbin/ifconfig ovpnc1 10.10.127.46 10.10.127.45 mtu 1500 netmask 255.255.255.255 up
      Jan 6 12:14:22 	openvpn 	11938 	do_ifconfig, tt->did_ifconfig_ipv6_setup=0
      Jan 6 12:14:22 	openvpn 	11938 	TUN/TAP device /dev/tun1 opened
      Jan 6 12:14:22 	openvpn 	11938 	TUN/TAP device ovpnc1 exists previously, keep at program end
      Jan 6 12:14:21 	openvpn 	11938 	[au1-4096] Peer Connection Initiated with [AF_INET]168.1.128.8:12200
      Jan 6 12:14:20 	openvpn 	11938 	WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
      Jan 6 12:14:20 	openvpn 	11938 	UDPv4 link remote: [AF_INET]168.1.128.8:12200
      Jan 6 12:14:20 	openvpn 	11938 	UDPv4 link local (bound): [AF_INET]103.93.68.221:0
      Jan 6 12:14:20 	openvpn 	11938 	TCP/UDP: Preserving recently used remote address: [AF_INET]168.1.128.8:12200
      Jan 6 12:14:19 	openvpn 	11938 	NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
      Jan 6 12:14:19 	openvpn 	11752 	library versions: OpenSSL 1.0.2m-freebsd 2 Nov 2017, LZO 2.10
      Jan 6 12:14:19 	openvpn 	11752 	OpenVPN 2.4.4 amd64-portbld-freebsd11.1 [SSL (OpenSSL)] [LZO] [LZ4] [MH/RECVDA] [AEAD] built on Oct 8 2017
      Jan 6 12:14:19 	openvpn 	11752 	WARNING: file '/var/etc/openvpn/client1.up' is group or others accessible
      Jan 6 12:13:47 	openvpn 	23506 	NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
      Jan 6 12:08:47 	openvpn 	23506 	SIGUSR1[soft,init_instance] received, process restarting
      Jan 6 12:08:47 	openvpn 	23506 	Could not determine IPv4/IPv6 protocol
      Jan 6 12:08:47 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 12:08:00 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 12:07:13 	openvpn 	23506 	NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
      Jan 6 12:02:13 	openvpn 	23506 	SIGUSR1[soft,init_instance] received, process restarting
      Jan 6 12:02:13 	openvpn 	23506 	Could not determine IPv4/IPv6 protocol
      Jan 6 12:02:13 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 12:01:27 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 12:00:40 	openvpn 	23506 	NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
      Jan 6 11:55:40 	openvpn 	23506 	SIGUSR1[soft,init_instance] received, process restarting
      Jan 6 11:55:40 	openvpn 	23506 	Could not determine IPv4/IPv6 protocol
      Jan 6 11:55:40 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:54:54 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:54:07 	openvpn 	23506 	NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
      Jan 6 11:49:07 	openvpn 	23506 	SIGUSR1[soft,init_instance] received, process restarting
      Jan 6 11:49:07 	openvpn 	23506 	Could not determine IPv4/IPv6 protocol
      Jan 6 11:49:07 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:48:20 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:47:34 	openvpn 	23506 	NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
      Jan 6 11:42:34 	openvpn 	23506 	SIGUSR1[soft,init_instance] received, process restarting
      Jan 6 11:42:34 	openvpn 	23506 	Could not determine IPv4/IPv6 protocol
      Jan 6 11:42:34 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:41:47 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:41:00 	openvpn 	23506 	NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
      Jan 6 11:36:00 	openvpn 	23506 	SIGUSR1[soft,init_instance] received, process restarting
      Jan 6 11:36:00 	openvpn 	23506 	Could not determine IPv4/IPv6 protocol
      Jan 6 11:36:00 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:35:13 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:34:26 	openvpn 	23506 	NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
      Jan 6 11:29:26 	openvpn 	23506 	SIGUSR1[soft,init_instance] received, process restarting
      Jan 6 11:29:26 	openvpn 	23506 	Could not determine IPv4/IPv6 protocol
      Jan 6 11:29:26 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:28:39 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:27:53 	openvpn 	23506 	NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
      Jan 6 11:25:13 	openvpn 	23506 	SIGUSR1[soft,init_instance] received, process restarting
      Jan 6 11:25:13 	openvpn 	23506 	Could not determine IPv4/IPv6 protocol
      Jan 6 11:25:13 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:24:27 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:23:40 	openvpn 	23506 	NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
      Jan 6 11:22:20 	openvpn 	23506 	SIGUSR1[soft,init_instance] received, process restarting
      Jan 6 11:22:20 	openvpn 	23506 	Could not determine IPv4/IPv6 protocol
      Jan 6 11:22:20 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:21:33 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:20:46 	openvpn 	23506 	NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
      Jan 6 11:20:06 	openvpn 	23506 	SIGUSR1[soft,init_instance] received, process restarting
      Jan 6 11:20:06 	openvpn 	23506 	Could not determine IPv4/IPv6 protocol
      Jan 6 11:20:06 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:19:19 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:18:32 	openvpn 	23506 	NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
      Jan 6 11:18:12 	openvpn 	23506 	SIGUSR1[soft,init_instance] received, process restarting
      Jan 6 11:18:12 	openvpn 	23506 	Could not determine IPv4/IPv6 protocol
      Jan 6 11:18:12 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:17:25 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:16:38 	openvpn 	23506 	NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
      Jan 6 11:16:28 	openvpn 	23506 	SIGUSR1[soft,init_instance] received, process restarting
      Jan 6 11:16:28 	openvpn 	23506 	Could not determine IPv4/IPv6 protocol
      Jan 6 11:16:28 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:15:42 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:14:54 	openvpn 	23506 	NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
      Jan 6 11:14:44 	openvpn 	23506 	SIGUSR1[soft,init_instance] received, process restarting
      Jan 6 11:14:44 	openvpn 	23506 	Could not determine IPv4/IPv6 protocol
      Jan 6 11:14:44 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:13:57 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:13:11 	openvpn 	23506 	NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
      Jan 6 11:13:00 	openvpn 	23506 	SIGUSR1[soft,init_instance] received, process restarting
      Jan 6 11:13:00 	openvpn 	23506 	Could not determine IPv4/IPv6 protocol
      Jan 6 11:13:00 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:12:14 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:11:27 	openvpn 	23506 	NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
      Jan 6 11:11:17 	openvpn 	23506 	SIGUSR1[soft,init_instance] received, process restarting
      Jan 6 11:11:17 	openvpn 	23506 	Could not determine IPv4/IPv6 protocol
      Jan 6 11:11:17 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:10:30 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:09:43 	openvpn 	23506 	NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
      Jan 6 11:09:33 	openvpn 	23506 	SIGUSR1[soft,tls-error] received, process restarting
      Jan 6 11:09:33 	openvpn 	23506 	TLS Error: TLS handshake failed
      Jan 6 11:09:33 	openvpn 	23506 	TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
      Jan 6 11:08:33 	openvpn 	23506 	UDPv4 link remote: [AF_INET]168.1.7.184:12200
      Jan 6 11:08:33 	openvpn 	23506 	UDPv4 link local (bound): [AF_INET]103.93.68.221:0
      Jan 6 11:08:33 	openvpn 	23506 	TCP/UDP: Preserving recently used remote address: [AF_INET]168.1.7.184:12200
      Jan 6 11:08:33 	openvpn 	23506 	NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
      Jan 6 11:08:23 	openvpn 	23506 	SIGUSR1[soft,ping-restart] received, process restarting
      Jan 6 11:08:23 	openvpn 	23506 	[au2-4096] Inactivity timeout (--ping-restart), restarting 
      
      1 Reply Last reply Reply Quote 0
      • First post
        Last post

      Products

      • Platform Overview
      • TNSR
      • pfSense
      • Appliances

      Services

      • Training
      • Professional Services

      Support

      • Subscription Plans
      • Contact Support
      • Product Lifecycle
      • Documentation

      News

      • Media Coverage
      • Press
      • Events

      Resources

      • Blog
      • FAQ
      • Find a Partner
      • Resource Library
      • Security Information

      Company

      • About Us
      • Careers
      • Partners
      • Contact Us
      • Legal
      Our Mission

      We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

      Subscribe to our Newsletter

      Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

      © 2021 Rubicon Communications, LLC | Privacy Policy