Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    How can I recover from this automatically

    Scheduled Pinned Locked Moved OpenVPN
    1 Posts 1 Posters 433 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • gregeehG
      gregeeh
      last edited by

      Hi all,

      pfSense 2.4.2, OpenVPN Client and the Service Watchdog package monitoring OpenVPN.

      I have all my LAN traffic configured to go via OpenVPN and it's working well, however this morning the Internet went down and it was over an hour before I could log in to pfSense and restart the OpenVPN service.  Which fixed the problem.

      My question is how can I setup OpenVPN so that when this happens it can correct the problem itself?

      Here are the logs showing when it failed and me restarting at about 12:08.

      Ideas appreciated.

      TIA

      Greg

      Jan 6 12:14:22 	openvpn 	11938 	Initialization Sequence Completed
      Jan 6 12:14:22 	openvpn 	11938 	/usr/local/sbin/ovpn-linkup ovpnc1 1500 1553 10.10.127.46 10.10.127.45 init
      Jan 6 12:14:22 	openvpn 	11938 	/sbin/ifconfig ovpnc1 10.10.127.46 10.10.127.45 mtu 1500 netmask 255.255.255.255 up
      Jan 6 12:14:22 	openvpn 	11938 	do_ifconfig, tt->did_ifconfig_ipv6_setup=0
      Jan 6 12:14:22 	openvpn 	11938 	TUN/TAP device /dev/tun1 opened
      Jan 6 12:14:22 	openvpn 	11938 	TUN/TAP device ovpnc1 exists previously, keep at program end
      Jan 6 12:14:21 	openvpn 	11938 	[au1-4096] Peer Connection Initiated with [AF_INET]168.1.128.8:12200
      Jan 6 12:14:20 	openvpn 	11938 	WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
      Jan 6 12:14:20 	openvpn 	11938 	UDPv4 link remote: [AF_INET]168.1.128.8:12200
      Jan 6 12:14:20 	openvpn 	11938 	UDPv4 link local (bound): [AF_INET]103.93.68.221:0
      Jan 6 12:14:20 	openvpn 	11938 	TCP/UDP: Preserving recently used remote address: [AF_INET]168.1.128.8:12200
      Jan 6 12:14:19 	openvpn 	11938 	NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
      Jan 6 12:14:19 	openvpn 	11752 	library versions: OpenSSL 1.0.2m-freebsd 2 Nov 2017, LZO 2.10
      Jan 6 12:14:19 	openvpn 	11752 	OpenVPN 2.4.4 amd64-portbld-freebsd11.1 [SSL (OpenSSL)] [LZO] [LZ4] [MH/RECVDA] [AEAD] built on Oct 8 2017
      Jan 6 12:14:19 	openvpn 	11752 	WARNING: file '/var/etc/openvpn/client1.up' is group or others accessible
      Jan 6 12:13:47 	openvpn 	23506 	NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
      Jan 6 12:08:47 	openvpn 	23506 	SIGUSR1[soft,init_instance] received, process restarting
      Jan 6 12:08:47 	openvpn 	23506 	Could not determine IPv4/IPv6 protocol
      Jan 6 12:08:47 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 12:08:00 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 12:07:13 	openvpn 	23506 	NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
      Jan 6 12:02:13 	openvpn 	23506 	SIGUSR1[soft,init_instance] received, process restarting
      Jan 6 12:02:13 	openvpn 	23506 	Could not determine IPv4/IPv6 protocol
      Jan 6 12:02:13 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 12:01:27 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 12:00:40 	openvpn 	23506 	NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
      Jan 6 11:55:40 	openvpn 	23506 	SIGUSR1[soft,init_instance] received, process restarting
      Jan 6 11:55:40 	openvpn 	23506 	Could not determine IPv4/IPv6 protocol
      Jan 6 11:55:40 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:54:54 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:54:07 	openvpn 	23506 	NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
      Jan 6 11:49:07 	openvpn 	23506 	SIGUSR1[soft,init_instance] received, process restarting
      Jan 6 11:49:07 	openvpn 	23506 	Could not determine IPv4/IPv6 protocol
      Jan 6 11:49:07 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:48:20 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:47:34 	openvpn 	23506 	NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
      Jan 6 11:42:34 	openvpn 	23506 	SIGUSR1[soft,init_instance] received, process restarting
      Jan 6 11:42:34 	openvpn 	23506 	Could not determine IPv4/IPv6 protocol
      Jan 6 11:42:34 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:41:47 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:41:00 	openvpn 	23506 	NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
      Jan 6 11:36:00 	openvpn 	23506 	SIGUSR1[soft,init_instance] received, process restarting
      Jan 6 11:36:00 	openvpn 	23506 	Could not determine IPv4/IPv6 protocol
      Jan 6 11:36:00 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:35:13 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:34:26 	openvpn 	23506 	NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
      Jan 6 11:29:26 	openvpn 	23506 	SIGUSR1[soft,init_instance] received, process restarting
      Jan 6 11:29:26 	openvpn 	23506 	Could not determine IPv4/IPv6 protocol
      Jan 6 11:29:26 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:28:39 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:27:53 	openvpn 	23506 	NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
      Jan 6 11:25:13 	openvpn 	23506 	SIGUSR1[soft,init_instance] received, process restarting
      Jan 6 11:25:13 	openvpn 	23506 	Could not determine IPv4/IPv6 protocol
      Jan 6 11:25:13 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:24:27 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:23:40 	openvpn 	23506 	NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
      Jan 6 11:22:20 	openvpn 	23506 	SIGUSR1[soft,init_instance] received, process restarting
      Jan 6 11:22:20 	openvpn 	23506 	Could not determine IPv4/IPv6 protocol
      Jan 6 11:22:20 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:21:33 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:20:46 	openvpn 	23506 	NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
      Jan 6 11:20:06 	openvpn 	23506 	SIGUSR1[soft,init_instance] received, process restarting
      Jan 6 11:20:06 	openvpn 	23506 	Could not determine IPv4/IPv6 protocol
      Jan 6 11:20:06 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:19:19 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:18:32 	openvpn 	23506 	NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
      Jan 6 11:18:12 	openvpn 	23506 	SIGUSR1[soft,init_instance] received, process restarting
      Jan 6 11:18:12 	openvpn 	23506 	Could not determine IPv4/IPv6 protocol
      Jan 6 11:18:12 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:17:25 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:16:38 	openvpn 	23506 	NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
      Jan 6 11:16:28 	openvpn 	23506 	SIGUSR1[soft,init_instance] received, process restarting
      Jan 6 11:16:28 	openvpn 	23506 	Could not determine IPv4/IPv6 protocol
      Jan 6 11:16:28 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:15:42 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:14:54 	openvpn 	23506 	NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
      Jan 6 11:14:44 	openvpn 	23506 	SIGUSR1[soft,init_instance] received, process restarting
      Jan 6 11:14:44 	openvpn 	23506 	Could not determine IPv4/IPv6 protocol
      Jan 6 11:14:44 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:13:57 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:13:11 	openvpn 	23506 	NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
      Jan 6 11:13:00 	openvpn 	23506 	SIGUSR1[soft,init_instance] received, process restarting
      Jan 6 11:13:00 	openvpn 	23506 	Could not determine IPv4/IPv6 protocol
      Jan 6 11:13:00 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:12:14 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:11:27 	openvpn 	23506 	NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
      Jan 6 11:11:17 	openvpn 	23506 	SIGUSR1[soft,init_instance] received, process restarting
      Jan 6 11:11:17 	openvpn 	23506 	Could not determine IPv4/IPv6 protocol
      Jan 6 11:11:17 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:10:30 	openvpn 	23506 	RESOLVE: Cannot resolve host address: au2.vpn.ac:12200 (hostname nor servname provided, or not known)
      Jan 6 11:09:43 	openvpn 	23506 	NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
      Jan 6 11:09:33 	openvpn 	23506 	SIGUSR1[soft,tls-error] received, process restarting
      Jan 6 11:09:33 	openvpn 	23506 	TLS Error: TLS handshake failed
      Jan 6 11:09:33 	openvpn 	23506 	TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
      Jan 6 11:08:33 	openvpn 	23506 	UDPv4 link remote: [AF_INET]168.1.7.184:12200
      Jan 6 11:08:33 	openvpn 	23506 	UDPv4 link local (bound): [AF_INET]103.93.68.221:0
      Jan 6 11:08:33 	openvpn 	23506 	TCP/UDP: Preserving recently used remote address: [AF_INET]168.1.7.184:12200
      Jan 6 11:08:33 	openvpn 	23506 	NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
      Jan 6 11:08:23 	openvpn 	23506 	SIGUSR1[soft,ping-restart] received, process restarting
      Jan 6 11:08:23 	openvpn 	23506 	[au2-4096] Inactivity timeout (--ping-restart), restarting 
      

      PfSense running on Qotom mini PC
      CPU N3150, 2 GB memory, 32 GB SSD & 2 Realtek Gb Ethernet ports.
      UniFi AC-Lite access point

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.