OpenVpn multiserver connection problems

itbinfo

i want to load balance open vpn connection on 4 openvpnservers for SSL/TLS road warrior clients

i have 4 openvpn servers listening on 4 interfaces with different port

only 1 server accept connections

in the others there is an entry in the status screen :

Client connections for Sphynx4 Wanadoo1 UDP:1197
Common Name Real Address Virtual Address Connected Since Bytes Sent Bytes Received
UNDEF 88.185.125.167:1294 Thu Apr 28 13:25:14 2011 0 70

sometimes there is a connection in the second server with traffic but i don't understand why !

pfsense version
2.0-RC1 (i386) built on Thu Apr 28 02:29:40 EDT 2011

Nachtfalke

Do you use TCP or UDP ?

I am not sure at the moment if it is TCP or UDP but one of them only works, if you did a portforward to your LAN interface and let the OpenVPN servers only listen on the LAN interface.

Perhaps this will help you a little bit more !?
http://forum.pfsense.org/index.php/topic,34092.msg176808.html#msg176808

eri--

You want people to be able to connect through 4 links you have on pfSense or you want 4 different servers each on a different link?

itbinfo

i am using udp

there is 4 "remote" params in the client config to connect randomly to 1 of the 4 openvpn servers. Each openvpn server are on a different wan interface.

Nachtfalke

@itbinfo:

i am using udp

there is 4 "remote" params in the client config to connect randomly to 1 of the 4 openvpn servers. Each openvpn server are on a different wan interface.

How did you made it "random" ?
I am using two WAN interfaces / IPs and just have two times:

remote 14.15.16.17 1194
remote 10.11.12.13 1194

But then it starts from top to down.
Thanks

itbinfo

i have this param in client config

i hope this param do the random "sort" of the host list

Choose a random host from the remote

list for load-balancing.  Otherwise

try hosts in the order specified.

remote-random

eri--

Do you have a pass rule for each interface to allow connections to the server?

itbinfo

Yes i have duplicated the rules for each wan interfaces

i have a nat to forward each port 1194,1195,1196,1197 to openvpn servers

Firewall: NAT: Port Forward

If Proto Src. addr Src. ports Dest. addr Dest. ports NAT IP NAT Ports Description
ADSLFREE2 TCP/UDP * * LAN net 1194 (OpenVPN) 192.168.190.206 1194 (OpenVPN) OpenVpn 
ADSLORANGE1 TCP/UDP * * * 1195 192.168.190.206 1195 OpenVpn 
ADSLWANADOO1 TCP/UDP * * * 1197 192.168.190.206 1197 OpenVpn 
ADSLFREE1 TCP/UDP * * * 1196 192.168.190.206 1196 OpenVpn

for each wan interface i have a rule
ADSLFREE2
TCP/UDP * * * 1194 (OpenVPN) * none
ADSLORANGE1
TCP/UDP * * * 1195 * none
ADSLWANADOO1
TCP/UDP * * * 1197 * none
ADSLFREE1
TCP/UDP * * * 1196 * none

Nachtfalke

If your OpenVPN Servers are listening to the WAN interface, you do NOT need to use Port Forwarding.
Just open the ports on the WAN interface in the firewall rule.
Portforwarding is only needed if your OpenVPN Server is listening to the LAN interface.

If you are using OpenVPN for Windows, could you post the output while you try to connect ?

itbinfo

verb 9
x.x.x.x is the remote ip

Fri Apr 29 19:04:35 2011 us=593000 Current Parameter Settings:
Fri Apr 29 19:04:35 2011 us=593000  config = 'Sphynx75VpnDG7GT62J.ovpn'
Fri Apr 29 19:04:35 2011 us=593000  mode = 0
Fri Apr 29 19:04:35 2011 us=593000  show_ciphers = DISABLED
Fri Apr 29 19:04:35 2011 us=593000  show_digests = DISABLED
Fri Apr 29 19:04:35 2011 us=593000  show_engines = DISABLED
Fri Apr 29 19:04:35 2011 us=593000  genkey = DISABLED
Fri Apr 29 19:04:35 2011 us=593000  key_pass_file = '[UNDEF]'
Fri Apr 29 19:04:35 2011 us=593000  show_tls_ciphers = DISABLED
Fri Apr 29 19:04:35 2011 us=593000 Connection profiles [default]:
Fri Apr 29 19:04:35 2011 us=593000  proto = udp
Fri Apr 29 19:04:35 2011 us=593000  local = '[UNDEF]'
Fri Apr 29 19:04:35 2011 us=593000  local_port = 1294
Fri Apr 29 19:04:35 2011 us=593000  remote = '[UNDEF]'
Fri Apr 29 19:04:35 2011 us=593000  remote_port = 1294
Fri Apr 29 19:04:35 2011 us=593000  remote_float = DISABLED
Fri Apr 29 19:04:35 2011 us=593000  bind_defined = DISABLED
Fri Apr 29 19:04:35 2011 us=593000  bind_local = ENABLED
Fri Apr 29 19:04:35 2011 us=593000  connect_retry_seconds = 5
Fri Apr 29 19:04:35 2011 us=593000  connect_timeout = 10
Fri Apr 29 19:04:35 2011 us=593000 NOTE: –mute triggered...
Fri Apr 29 19:04:35 2011 us=593000 282 variation(s) on previous 20 message(s) suppressed by --mute
Fri Apr 29 19:04:35 2011 us=593000 OpenVPN 2.1.2 i686-pc-mingw32 [SSL] [LZO2] [PKCS11] built on Aug 15 2010
Fri Apr 29 19:04:36 2011 WE_INIT maxevents=1 flags=0x00000002
Fri Apr 29 19:04:36 2011 WE_INIT maxevents=1 capacity=2
Fri Apr 29 19:04:36 2011 us=31000 MANAGEMENT: TCP Socket listening on 127.0.0.1:7509
Fri Apr 29 19:04:36 2011 us=765000 PKCS#11: pkcs11_initialize - entered
Fri Apr 29 19:04:36 2011 us=765000 PKCS#11: pkcs11_initialize - return 0-'CKR_OK'
Fri Apr 29 19:04:36 2011 us=765000 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
Fri Apr 29 19:04:36 2011 us=765000 NOTE: OpenVPN 2.1 requires '–script-security 2' or higher to call user-defined scripts or executables
Fri Apr 29 19:04:36 2011 us=765000 WE_INIT maxevents=4 flags=0x00000002
Fri Apr 29 19:04:36 2011 us=765000 WE_INIT maxevents=4 capacity=8
Fri Apr 29 19:04:36 2011 us=765000 PRNG init md=SHA1 size=36
Fri Apr 29 19:04:36 2011 us=765000 LZO compression initialized
Fri Apr 29 19:04:36 2011 us=765000 MTU DYNAMIC mtu=0, flags=1, 0 -> 138
Fri Apr 29 19:04:36 2011 us=765000 TLS: tls_session_init: entry
Fri Apr 29 19:04:36 2011 us=765000 PID packet_id_init seq_backtrack=64 time_backtrack=15
Fri Apr 29 19:04:36 2011 us=765000 PID packet_id_init seq_backtrack=64 time_backtrack=15
Fri Apr 29 19:04:36 2011 us=765000 TLS: tls_session_init: new session object, sid=26b805dd d6bd61c3
Fri Apr 29 19:04:36 2011 us=765000 TLS: tls_session_init: entry
Fri Apr 29 19:04:36 2011 us=765000 PID packet_id_init seq_backtrack=64 time_backtrack=15
Fri Apr 29 19:04:36 2011 us=765000 PID packet_id_init seq_backtrack=64 time_backtrack=15
Fri Apr 29 19:04:36 2011 us=765000 TLS: tls_session_init: new session object, sid=930c256a 2ea6857c
Fri Apr 29 19:04:36 2011 us=765000 Control Channel MTU parms [ L:1558 D:138 EF:38 EB:0 ET:0 EL:0 ]
Fri Apr 29 19:04:36 2011 us=765000 MTU DYNAMIC mtu=1450, flags=2, 1558 -> 1450
Fri Apr 29 19:04:36 2011 us=765000 Socket Buffers: R=[8192->8192] S=[8192->8192]
Fri Apr 29 19:04:36 2011 us=921000 RESOLVE_REMOTE flags=0x0101 phase=1 rrs=0 sig=-1 status=1
Fri Apr 29 19:04:36 2011 us=921000 Data Channel MTU parms [ L:1558 D:1450 EF:58 EB:135 ET:0 EL:0 AF:3/1 ]
Fri Apr 29 19:04:36 2011 us=921000 Local Options String: 'V4,dev-type tun,link-mtu 1558,tun-mtu 1500,proto UDPv4,comp-lzo,cipher AES-128-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Fri Apr 29 19:04:36 2011 us=921000 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1558,tun-mtu 1500,proto UDPv4,comp-lzo,cipher AES-128-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Fri Apr 29 19:04:36 2011 us=921000 Local Options hash (VER=V4): '66096c33'
Fri Apr 29 19:04:36 2011 us=921000 Expected Remote Options hash (VER=V4): '691e95c7'
Fri Apr 29 19:04:36 2011 us=921000 UDPv4 link local (bound): [undef]:1294
Fri Apr 29 19:04:36 2011 us=921000 UDPv4 link remote: x.x.x.x:1195
Fri Apr 29 19:04:36 2011 us=921000 TIMER: coarse timer wakeup 1 seconds
Fri Apr 29 19:04:36 2011 us=921000 TLS: tls_multi_process: i=0 state=S_INITIAL, mysid=26b805dd d6bd61c3, stored-sid=00000000 00000000, stored-ip=x.x.x.x:1195
Fri Apr 29 19:04:36 2011 us=921000 TLS: tls_process: chg=0 ks=S_INITIAL lame=S_UNDEF to_link->len=0 wakeup=604800
Fri Apr 29 19:04:36 2011 us=984000 ACK mark active outgoing ID 0
Fri Apr 29 19:04:36 2011 us=984000 TLS: Initial Handshake, sid=26b805dd d6bd61c3
Fri Apr 29 19:04:36 2011 us=984000 ACK reliable_can_send active=1 current=1 : [1] 0
Fri Apr 29 19:04:36 2011 us=984000 ACK reliable_send ID 0 (size=4 to=2)
Fri Apr 29 19:04:36 2011 us=984000 Reliable -> TCP/UDP
Fri Apr 29 19:04:36 2011 us=984000 ACK reliable_send_timeout 2 [1] 0
Fri Apr 29 19:04:36 2011 us=984000 TLS: tls_process: timeout set to 2
Fri Apr 29 19:04:36 2011 us=984000 TLS: tls_multi_process: i=1 state=S_INITIAL, mysid=930c256a 2ea6857c, stored-sid=00000000 00000000, stored-ip=[undef]
Fri Apr 29 19:04:36 2011 us=984000 TLS: tls_multi_process: i=2 state=S_UNDEF, mysid=00000000 00000000, stored-sid=00000000 00000000, stored-ip=[undef]
Fri Apr 29 19:04:36 2011 us=984000 RANDOM USEC=79044
Fri Apr 29 19:04:36 2011 us=984000 WE_CTL n=0 ev=0x004970f4 rwflags=0x0001 arg=0x00470064
Fri Apr 29 19:04:36 2011 us=984000 WIN32 I/O: Socket Receive queued [1558]
Fri Apr 29 19:04:36 2011 us=984000 WE_CTL n=1 ev=0x00f0e3c4 rwflags=0x0003 arg=0x00490108
Fri Apr 29 19:04:36 2011 us=984000 WE_CTL n=3 ev=0x00f06014 rwflags=0x0001 arg=0x00470068
Fri Apr 29 19:04:36 2011 us=984000 I/O WAIT T?|T?|SRQ|SW0 [1/79044]
Fri Apr 29 19:04:36 2011 us=984000 WE_WAIT enter n=4 to=1079
Fri Apr 29 19:04:36 2011 us=984000 [0] ev=0x00000f04 rwflags=0x0001 arg=0x00470064
Fri Apr 29 19:04:36 2011 us=984000 NOTE: –mute triggered...
Fri Apr 29 19:04:37 2011 6 variation(s) on previous 20 message(s) suppressed by --mute

pid=0 DATA

Fri Apr 29 19:04:37 2011 WIN32 I/O: Socket Send immediate return [14,14]
Fri Apr 29 19:04:37 2011 UDPv4 write returned 14
Fri Apr 29 19:04:37 2011 TIMER: coarse timer wakeup 1 seconds
Fri Apr 29 19:04:37 2011 TLS: tls_multi_process: i=0 state=S_PRE_START, mysid=26b805dd d6bd61c3, stored-sid=00000000 00000000, stored-ip=x.x.x.x:1195
Fri Apr 29 19:04:37 2011 TLS: tls_process: chg=0 ks=S_PRE_START lame=S_UNDEF to_link->len=0 wakeup=604800
Fri Apr 29 19:04:37 2011 ACK reliable_can_send active=1 current=0 : [1] 0
Fri Apr 29 19:04:37 2011 us=62000 SSL state (connect): before/connect initialization
Fri Apr 29 19:04:37 2011 us=62000 SSL state (connect): SSLv3 write client hello A
Fri Apr 29 19:04:37 2011 us=62000 ACK reliable_send_timeout 1 [1] 0
Fri Apr 29 19:04:37 2011 us=62000 TLS: tls_process: timeout set to 1
Fri Apr 29 19:04:37 2011 us=93000 TLS: tls_multi_process: i=1 state=S_INITIAL, mysid=930c256a 2ea6857c, stored-sid=00000000 00000000, stored-ip=[undef]
Fri Apr 29 19:04:37 2011 us=93000 TLS: tls_multi_process: i=2 state=S_UNDEF, mysid=00000000 00000000, stored-sid=00000000 00000000, stored-ip=[undef]
Fri Apr 29 19:04:37 2011 us=93000 WE_CTL n=0 ev=0x004970f4 rwflags=0x0001 arg=0x00470064
Fri Apr 29 19:04:37 2011 us=93000 WE_CTL n=1 ev=0x00f0e3c4 rwflags=0x0001 arg=0x00490108
Fri Apr 29 19:04:37 2011 us=93000 WE_CTL n=2 ev=0x00f06014 rwflags=0x0001 arg=0x00470068
Fri Apr 29 19:04:37 2011 us=93000 I/O WAIT T?|T?|SRQ|Sw1 [1/79044]
Fri Apr 29 19:04:37 2011 us=218000 WE_WAIT enter n=3 to=1079
Fri Apr 29 19:04:37 2011 us=218000 [0] ev=0x00000f04 rwflags=0x0001 arg=0x00470064
Fri Apr 29 19:04:37 2011 us=218000 [1] ev=0x00000ea4 rwflags=0x0001 arg=0x00490108
Fri Apr 29 19:04:37 2011 us=218000 [2] ev=0x00000ed4 rwflags=0x0001 arg=0x00470068
Fri Apr 29 19:04:38 2011 us=312000 NOTE: –mute triggered...
Fri Apr 29 19:04:38 2011 us=328000 24 variation(s) on previous 20 message(s) suppressed by --mute

pid=0 DATA

Fri Apr 29 19:04:38 2011 us=375000 WIN32 I/O: Socket Completion non-queued success [14]
Fri Apr 29 19:04:38 2011 us=390000 WIN32 I/O: Socket Send immediate return [14,14]
Fri Apr 29 19:04:38 2011 us=390000 UDPv4 write returned 14
Fri Apr 29 19:04:38 2011 us=390000 TLS: tls_multi_process: i=0 state=S_PRE_START, mysid=26b805dd d6bd61c3, stored-sid=00000000 00000000, stored-ip=x.x.x.x:1195
Fri Apr 29 19:04:38 2011 us=390000 TLS: tls_process: chg=0 ks=S_PRE_START lame=S_UNDEF to_link->len=0 wakeup=604800
Fri Apr 29 19:04:38 2011 us=390000 ACK reliable_can_send active=1 current=0 : [1] 0
Fri Apr 29 19:04:38 2011 us=390000 ACK reliable_send_timeout 4 [1] 0
Fri Apr 29 19:04:38 2011 us=390000 TLS: tls_process: timeout set to 4
Fri Apr 29 19:04:38 2011 us=390000 TLS: tls_multi_process: i=1 state=S_INITIAL, mysid=930c256a 2ea6857c, stored-sid=00000000 00000000, stored-ip=[undef]
Fri Apr 29 19:04:38 2011 us=390000 TLS: tls_multi_process: i=2 state=S_UNDEF, mysid=00000000 00000000, stored-sid=00000000 00000000, stored-ip=[undef]
Fri Apr 29 19:04:38 2011 us=390000 WE_CTL n=0 ev=0x004970f4 rwflags=0x0001 arg=0x00470064
Fri Apr 29 19:04:38 2011 us=390000 WE_CTL n=1 ev=0x00f0e3c4 rwflags=0x0001 arg=0x00490108
Fri Apr 29 19:04:38 2011 us=390000 WE_CTL n=2 ev=0x00f06014 rwflags=0x0001 arg=0x00470068
Fri Apr 29 19:04:38 2011 us=390000 I/O WAIT T?|T?|SRQ|Sw1 [1/79044]
Fri Apr 29 19:04:38 2011 us=390000 WE_WAIT enter n=3 to=1079
Fri Apr 29 19:04:38 2011 us=390000 [0] ev=0x00000f04 rwflags=0x0001 arg=0x00470064
Fri Apr 29 19:04:38 2011 us=390000 [1] ev=0x00000ea4 rwflags=0x0001 arg=0x00490108
Fri Apr 29 19:04:38 2011 us=390000 [2] ev=0x00000ed4 rwflags=0x0001 arg=0x00470068
Fri Apr 29 19:04:39 2011 us=593000  event_wait returned 0
Fri Apr 29 19:04:39 2011 us=593000 I/O WAIT status=0x0020
Fri Apr 29 19:04:39 2011 us=593000 NOTE: –mute triggered...
Fri Apr 29 19:04:42 2011 us=968000 62 variation(s) on previous 20 message(s) suppressed by --mute

pid=0 DATA

Fri Apr 29 19:04:42 2011 us=968000 WIN32 I/O: Socket Completion non-queued success [14]
Fri Apr 29 19:04:43 2011 WIN32 I/O: Socket Send immediate return [14,14]
Fri Apr 29 19:04:43 2011 UDPv4 write returned 14
Fri Apr 29 19:04:43 2011 TIMER: coarse timer wakeup 1 seconds
Fri Apr 29 19:04:43 2011 TLS: tls_multi_process: i=0 state=S_PRE_START, mysid=26b805dd d6bd61c3, stored-sid=00000000 00000000, stored-ip=x.x.x.x:1195
Fri Apr 29 19:04:43 2011 TLS: tls_process: chg=0 ks=S_PRE_START lame=S_UNDEF to_link->len=0 wakeup=604800
Fri Apr 29 19:04:43 2011 ACK reliable_can_send active=1 current=0 : [1] 0
Fri Apr 29 19:04:43 2011 ACK reliable_send_timeout 7 [1] 0
Fri Apr 29 19:04:43 2011 TLS: tls_process: timeout set to 7
Fri Apr 29 19:04:43 2011 TLS: tls_multi_process: i=1 state=S_INITIAL, mysid=930c256a 2ea6857c, stored-sid=00000000 00000000, stored-ip=[undef]
Fri Apr 29 19:04:43 2011 TLS: tls_multi_process: i=2 state=S_UNDEF, mysid=00000000 00000000, stored-sid=00000000 00000000, stored-ip=[undef]
Fri Apr 29 19:04:43 2011 WE_CTL n=0 ev=0x004970f4 rwflags=0x0001 arg=0x00470064
Fri Apr 29 19:04:43 2011 WE_CTL n=1 ev=0x00f0e3c4 rwflags=0x0001 arg=0x00490108
Fri Apr 29 19:04:43 2011 WE_CTL n=2 ev=0x00f06014 rwflags=0x0001 arg=0x00470068
Fri Apr 29 19:04:43 2011 I/O WAIT T?|T?|SRQ|Sw1 [1/79044]
Fri Apr 29 19:04:43 2011 WE_WAIT enter n=3 to=1079
Fri Apr 29 19:04:43 2011 [0] ev=0x00000f04 rwflags=0x0001 arg=0x00470064
Fri Apr 29 19:04:43 2011 [1] ev=0x00000ea4 rwflags=0x0001 arg=0x00490108
Fri Apr 29 19:04:43 2011 [2] ev=0x00000ed4 rwflags=0x0001 arg=0x00470068
Fri Apr 29 19:04:44 2011 us=234000  event_wait returned 0
Fri Apr 29 19:04:44 2011 us=234000 NOTE: –mute triggered...
Fri Apr 29 19:04:51 2011 us=46000 90 variation(s) on previous 20 message(s) suppressed by --mute

pid=0 DATA

Fri Apr 29 19:04:51 2011 us=46000 WIN32 I/O: Socket Completion non-queued success [14]
Fri Apr 29 19:04:51 2011 us=93000 WIN32 I/O: Socket Send immediate return [14,14]
Fri Apr 29 19:04:51 2011 us=93000 UDPv4 write returned 14
Fri Apr 29 19:04:51 2011 us=93000 TLS: tls_multi_process: i=0 state=S_PRE_START, mysid=26b805dd d6bd61c3, stored-sid=00000000 00000000, stored-ip=x.x.x.x:1195
Fri Apr 29 19:04:51 2011 us=93000 TLS: tls_process: chg=0 ks=S_PRE_START lame=S_UNDEF to_link->len=0 wakeup=604800
Fri Apr 29 19:04:51 2011 us=93000 ACK reliable_can_send active=1 current=0 : [1] 0
Fri Apr 29 19:04:51 2011 us=93000 ACK reliable_send_timeout 16 [1] 0
Fri Apr 29 19:04:51 2011 us=93000 TLS: tls_process: timeout set to 16
Fri Apr 29 19:04:51 2011 us=93000 TLS: tls_multi_process: i=1 state=S_INITIAL, mysid=930c256a 2ea6857c, stored-sid=00000000 00000000, stored-ip=[undef]
Fri Apr 29 19:04:51 2011 us=93000 TLS: tls_multi_process: i=2 state=S_UNDEF, mysid=00000000 00000000, stored-sid=00000000 00000000, stored-ip=[undef]
Fri Apr 29 19:04:51 2011 us=93000 WE_CTL n=0 ev=0x004970f4 rwflags=0x0001 arg=0x00470064
Fri Apr 29 19:04:51 2011 us=93000 WE_CTL n=1 ev=0x00f0e3c4 rwflags=0x0001 arg=0x00490108
Fri Apr 29 19:04:51 2011 us=93000 WE_CTL n=2 ev=0x00f06014 rwflags=0x0001 arg=0x00470068
Fri Apr 29 19:04:51 2011 us=93000 I/O WAIT T?|T?|SRQ|Sw1 [1/134404]
Fri Apr 29 19:04:51 2011 us=93000 WE_WAIT enter n=3 to=1134
Fri Apr 29 19:04:51 2011 us=93000 [0] ev=0x00000f04 rwflags=0x0001 arg=0x00470064
Fri Apr 29 19:04:51 2011 us=93000 [1] ev=0x00000ea4 rwflags=0x0001 arg=0x00490108
Fri Apr 29 19:04:51 2011 us=93000 [2] ev=0x00000ed4 rwflags=0x0001 arg=0x00470068
Fri Apr 29 19:04:52 2011 us=281000  event_wait returned 0
Fri Apr 29 19:04:52 2011 us=281000 I/O WAIT status=0x0020
Fri Apr 29 19:04:52 2011 us=281000 NOTE: –mute triggered...
Fri Apr 29 19:05:07 2011 us=828000 174 variation(s) on previous 20 message(s) suppressed by --mute

pid=0 DATA

Fri Apr 29 19:05:07 2011 us=828000 WIN32 I/O: Socket Completion non-queued success [14]
Fri Apr 29 19:05:07 2011 us=828000 WIN32 I/O: Socket Send immediate return [14,14]
Fri Apr 29 19:05:07 2011 us=828000 UDPv4 write returned 14
Fri Apr 29 19:05:07 2011 us=828000 TLS: tls_multi_process: i=0 state=S_PRE_START, mysid=26b805dd d6bd61c3, stored-sid=00000000 00000000, stored-ip=x.x.x.x:1195
Fri Apr 29 19:05:07 2011 us=828000 TLS: tls_process: chg=0 ks=S_PRE_START lame=S_UNDEF to_link->len=0 wakeup=604800
Fri Apr 29 19:05:07 2011 us=828000 ACK reliable_can_send active=1 current=0 : [1] 0
Fri Apr 29 19:05:07 2011 us=828000 ACK reliable_send_timeout 32 [1] 0
Fri Apr 29 19:05:07 2011 us=828000 TLS: tls_process: timeout set to 29
Fri Apr 29 19:05:07 2011 us=828000 TLS: tls_multi_process: i=1 state=S_INITIAL, mysid=930c256a 2ea6857c, stored-sid=00000000 00000000, stored-ip=[undef]
Fri Apr 29 19:05:07 2011 us=906000 TLS: tls_multi_process: i=2 state=S_UNDEF, mysid=00000000 00000000, stored-sid=00000000 00000000, stored-ip=[undef]
Fri Apr 29 19:05:07 2011 us=906000 WE_CTL n=0 ev=0x004970f4 rwflags=0x0001 arg=0x00470064
Fri Apr 29 19:05:07 2011 us=906000 WE_CTL n=1 ev=0x00f0e3c4 rwflags=0x0001 arg=0x00490108
Fri Apr 29 19:05:07 2011 us=906000 WE_CTL n=2 ev=0x00f06014 rwflags=0x0001 arg=0x00470068
Fri Apr 29 19:05:07 2011 us=906000 I/O WAIT T?|T?|SRQ|Sw1 [1/28005]
Fri Apr 29 19:05:07 2011 us=906000 WE_WAIT enter n=3 to=1028
Fri Apr 29 19:05:07 2011 us=906000 [0] ev=0x00000f04 rwflags=0x0001 arg=0x00470064
Fri Apr 29 19:05:07 2011 us=906000 [1] ev=0x00000ea4 rwflags=0x0001 arg=0x00490108
Fri Apr 29 19:05:07 2011 us=906000 [2] ev=0x00000ed4 rwflags=0x0001 arg=0x00470068
Fri Apr 29 19:05:08 2011 us=984000  event_wait returned 0
Fri Apr 29 19:05:08 2011 us=984000 I/O WAIT status=0x0020
Fri Apr 29 19:05:08 2011 us=984000 NOTE: –mute triggered...

itbinfo

i have added 4 rules in openvpn tab, one by openvpn with a defined gateway to the wan interface

Proto Source Port Destination Port Gateway Queue
TCP/UDP 10.62.62.0/24 * * * ADSLFREE2 none