i386/159817: write UDPv4: No buffer space available (code=55)
Jean Aumont
JeanAumont at gmail.com
Tue Aug 16 14:30:09 UTC 2011
>Number: 159817
>Category: i386
>Synopsis: write UDPv4: No buffer space available (code=55)
>Confidential: no
>Severity: serious
>Priority: medium
>Responsible: freebsd-i386
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: sw-bug
>Submitter-Id: current-users
>Arrival-Date: Tue Aug 16 14:30:07 UTC 2011
>Closed-Date:
>Last-Modified:
>Originator: Jean Aumont
>Release: 8.2
>Organization:
>Environment:
FreeBSD Client.dev.mediagrif.com 8.2-RELEASE FreeBSD 8.2-RELEASE #0: Fri Feb 18 02:24:46 UTC 2011 root at almeida.cse.buffalo.edu:/usr/obj/usr/src/sys/GENERIC i386
>Description:
Keywords: FreeBSD 8.2, OpenVPN 2.0.9_1, OpenVPN 2.2.1, Quagga 0.99.17_5
Error : openvpn[...]: write UDPv4: No buffer space available (code=55)
Hi Everyone,
I would like to report a bug that I found while doing some testing of OpenVPN
in TAP (Bridge) mode while using quagga with ospf on FreeBSD8.2
After running for a while, I get the following message in the logs:
openvpn[...]: write UDPv4: No buffer space available (code=55)
The bug was initially discovered using 3 PHYSICAL machine running FreeBSD 8.2,
OpenVPN 2.0.9_1 or 2.2.1, and the routing software Quagga 0.99.17_5 but can easily reproduce with virtual machine.
The plan was to have the OpenVPN server announce route to OpenVPN client using
the OSPF daemon of Quagga (a routing software).
I am not sure if the bug is in quagga, flodding the freebsd buffers or in
openvpn .... or some sort of sysctl setting needs to be configure to support this amount of UDP packets going through the OpenVPN tunnel.
You can find in attachment the configuration files that I used.
>How-To-Repeat:
The bug can also be replicated using 3 virtual machine under Oracle Virtual Box.
Here is the set-up under Oracle Virtual Box.
OpenVPN VboxNet1 Router VboxNet2 OpenVPN
Server 3.3.3.1 4.4.4.1 Client
em1-3.3.3.2 .............. em0-3.3.3.4 .............. em1-4.4.4.2
em0-Lan (DHCP) em1-4.4.4.4 em0-10.10.10.10
1) Start OpenVPN server and client (No problem).
-- The OpenVPN server acquire the ip 172.16.10.1
-- The OpenVPN client acquire the ip 172.16.10.2
-- The tunnel is up and running perfectly
2) Start the quagga routing daemon.
-- Initially the OSPF protocol is communicating properly and the OpenVPN
serverand client are being seen as neighbor.
If you are not familior with quagga, you can see this by typing:
vtysh
sh ip ospf neighbor (repeat the command as necessary)
exit
-- After a few seconds, the adjencency is lost ...
3) When this appends, the OpenVPN log on the Server and Clients are
full of this error:
openvpn[...]: write UDPv4: No buffer space available (code=55)
>Fix:
Patch attached with submission follows:
Keywords: FreeBSD 8.2, OpenVPN 2.0.9_1, OpenVPN 2.2.1, Quagga 0.99.17_5
Error : openvpn[...]: write UDPv4: No buffer space available (code=55)
Hi Everyone,
I would like to report a bug that I found while doing some testing of OpenVPN
in TAP (Bridge) mode while using quagga with ospf.
The bug was initially discovered using 3 PHYSICAL machine running FreeBSD 8.2,
OpenVPN 2.0.9_1 or 2.2.1, and the routing software Quagga 0.99.17_5.
The bug can also be replicated using 3 virtual machine under Oracle Virtual Box.
The plan was to have the OpenVPN server announce route to OpenVPN client using
the OSPF daemon of Quagga (a routing software).
Here is the set-up under Oracle Virtual Box.
OpenVPN VboxNet1 Router VboxNet2 OpenVPN
Server 3.3.3.1 4.4.4.1 Client
em1-3.3.3.2 .............. em0-3.3.3.4 .............. em1-4.4.4.2
em0-Lan (DHCP) em1-4.4.4.4 em0-10.10.10.10
Vboxnet3
The same set-up was used with the phisical machine with the same results.
I am not sure if the bug is in quagga, flodding the freebsd buffers or in
openvpn ....
===============================================================================
You can dupplicate the problem easily following those steps:
===============================================================================
1) Start OpenVPN server and client (No problem).
-- The OpenVPN server acquire the ip 172.16.10.1
-- The OpenVPN client acquire the ip 172.16.10.2
-- The tunnel is up and running perfectly
2) Start the quagga routing daemon.
-- Initially the OSPF protocol is communicating properly and the OpenVPN
serverand client are being seen as neighbor.
If you are not familior with quagga, you can see this by typing:
vtysh
sh ip ospf neighbor (repeat the command as necessary)
exit
-- After a few seconds, the adjencency is lost ...
3) When this appends, the OpenVPN log on the Server and Clients are
full of this error:
openvpn[...]: write UDPv4: No buffer space available (code=55)
===============================================================================
Here are the OpenVPN config used:
===============================================================================
Server# cat /usr/local/etc/openvpn/server1.conf
dev tap
script-security 3
daemon
keepalive 10 60
ping-timer-rem
proto udp
cipher BF-CBC
local 3.3.3.2
tls-server
server 172.16.10.0 255.255.255.0
lport 1194
max-clients 100
ca /usr/local/etc/openvpn/server1.ca
cert /usr/local/etc/openvpn/server1.cert
key /usr/local/etc/openvpn/server1.key
dh /etc/dh-parameters.1024
comp-lzo
persist-remote-ip
float
log /var/log/openvpn.log
verb 5
Client# cat /usr/local/etc/openvpn/openvpn.conf
client
dev tap
proto udp
script-security 3
remote 3.3.3.2
ping 10
cipher BF-CBC
resolv-retry infinite
nobind
ca /usr/local/etc/openvpn/Client.crt
cert /usr/local/etc/openvpn/AClient.crt
key /usr/local/etc/openvpn/AClient.key
comp-lzo
verb 5
log /var/log/openvpn.log
Client#
===============================================================================
Here are the Quagga configuration
===============================================================================
Server# vtysh
Hello, this is Quagga (version 0.99.17).
Copyright 1996-2005 Kunihiro Ishiguro, et al.
Server# sh run
Building configuration...
Current configuration:
!
hostname Server-Zebra
log file /usr/local/log/quagga.log
log stdout
hostname Server-Ospfd
!
debug ospf event
debug ospf packet all
!
password zebra
enable password zebra
!
interface em0
ipv6 nd suppress-ra
!
interface em1
ipv6 nd suppress-ra
!
interface lo0
ip address 10.90.40.40/32
!
interface tap0
ip ospf authentication message-digest
ip ospf cost 100
ip ospf message-digest-key 1 md5 BBBB
ipv6 nd suppress-ra
!
router ospf
redistribute connected
redistribute static
network 10.90.40.40/32 area 100.100.100.100
network 172.16.10.0/24 area 100.100.100.100
area 100.100.100.100 authentication message-digest
!
ip forwarding
!
line vty
!
end
Client# vtysh
Hello, this is Quagga (version 0.99.17).
Copyright 1996-2005 Kunihiro Ishiguro, et al.
Client# sh run
Building configuration...
Current configuration:
!
hostname Client-Zebra
log file /usr/local/log/quagga.log
log stdout
hostname Client-Ospfd
!
debug ospf event
debug ospf packet all
!
password zebra
enable password zebra
!
interface em0
ipv6 nd suppress-ra
!
interface em1
ipv6 nd suppress-ra
!
interface lo0
ip address 10.90.50.50/32
ip ospf authentication message-digest
!
interface tap0
ip ospf authentication message-digest
ip ospf cost 100
ip ospf message-digest-key 1 md5 BBBB
ipv6 nd suppress-ra
!
router ospf
redistribute connected
redistribute static
network 10.10.10.0/24 area 100.100.100.100
network 10.90.50.50/32 area 100.100.100.100
network 172.16.10.0/24 area 100.100.100.100
area 100.100.100.100 authentication message-digest
!
ip forwarding
!
line vty
!
end
===============================================================================
Here are the OpenVPN Logs
===============================================================================
-- On the server
Mon Aug 15 11:27:46 2011 us=909159 Current Parameter Settings:
Mon Aug 15 11:27:46 2011 us=909740 config = '/usr/local/etc/openvpn/server1.conf'
Mon Aug 15 11:27:46 2011 us=909859 mode = 1
Mon Aug 15 11:27:46 2011 us=909961 show_ciphers = DISABLED
Mon Aug 15 11:27:46 2011 us=910052 show_digests = DISABLED
Mon Aug 15 11:27:46 2011 us=910131 show_engines = DISABLED
Mon Aug 15 11:27:46 2011 us=910203 genkey = DISABLED
Mon Aug 15 11:27:46 2011 us=910266 key_pass_file = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=910323 show_tls_ciphers = DISABLED
Mon Aug 15 11:27:46 2011 us=910380 Connection profiles [default]:
Mon Aug 15 11:27:46 2011 us=910428 proto = udp
Mon Aug 15 11:27:46 2011 us=910471 local = '3.3.3.2'
Mon Aug 15 11:27:46 2011 us=910510 local_port = 1194
Mon Aug 15 11:27:46 2011 us=910546 remote = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=910580 remote_port = 1194
Mon Aug 15 11:27:46 2011 us=910611 remote_float = ENABLED
Mon Aug 15 11:27:46 2011 us=910640 bind_defined = DISABLED
Mon Aug 15 11:27:46 2011 us=910668 bind_local = ENABLED
Mon Aug 15 11:27:46 2011 us=910695 connect_retry_seconds = 5
Mon Aug 15 11:27:46 2011 us=910720 connect_timeout = 10
Mon Aug 15 11:27:46 2011 us=910744 connect_retry_max = 0
Mon Aug 15 11:27:46 2011 us=910768 socks_proxy_server = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=910790 socks_proxy_port = 0
Mon Aug 15 11:27:46 2011 us=910813 socks_proxy_retry = DISABLED
Mon Aug 15 11:27:46 2011 us=910839 Connection profiles END
Mon Aug 15 11:27:46 2011 us=910861 remote_random = DISABLED
Mon Aug 15 11:27:46 2011 us=910881 ipchange = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=910901 dev = 'tap'
Mon Aug 15 11:27:46 2011 us=910921 dev_type = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=910941 dev_node = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=910960 lladdr = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=910979 topology = 1
Mon Aug 15 11:27:46 2011 us=910998 tun_ipv6 = DISABLED
Mon Aug 15 11:27:46 2011 us=911016 ifconfig_local = '172.16.10.1'
Mon Aug 15 11:27:46 2011 us=911034 ifconfig_remote_netmask = '255.255.255.0'
Mon Aug 15 11:27:46 2011 us=911077 ifconfig_noexec = DISABLED
Mon Aug 15 11:27:46 2011 us=911096 ifconfig_nowarn = DISABLED
Mon Aug 15 11:27:46 2011 us=911114 shaper = 0
Mon Aug 15 11:27:46 2011 us=911152 tun_mtu = 1500
Mon Aug 15 11:27:46 2011 us=911174 tun_mtu_defined = ENABLED
Mon Aug 15 11:27:46 2011 us=911192 link_mtu = 1500
Mon Aug 15 11:27:46 2011 us=911210 link_mtu_defined = DISABLED
Mon Aug 15 11:27:46 2011 us=911228 tun_mtu_extra = 32
Mon Aug 15 11:27:46 2011 us=911246 tun_mtu_extra_defined = ENABLED
Mon Aug 15 11:27:46 2011 us=911270 fragment = 0
Mon Aug 15 11:27:46 2011 us=911288 mtu_discover_type = -1
Mon Aug 15 11:27:46 2011 us=911306 mtu_test = 0
Mon Aug 15 11:27:46 2011 us=911324 mlock = DISABLED
Mon Aug 15 11:27:46 2011 us=911342 keepalive_ping = 10
Mon Aug 15 11:27:46 2011 us=911359 keepalive_timeout = 60
Mon Aug 15 11:27:46 2011 us=911377 inactivity_timeout = 0
Mon Aug 15 11:27:46 2011 us=911395 ping_send_timeout = 10
Mon Aug 15 11:27:46 2011 us=911413 ping_rec_timeout = 120
Mon Aug 15 11:27:46 2011 us=911431 ping_rec_timeout_action = 2
Mon Aug 15 11:27:46 2011 us=911449 ping_timer_remote = ENABLED
Mon Aug 15 11:27:46 2011 us=911467 remap_sigusr1 = 0
Mon Aug 15 11:27:46 2011 us=911485 explicit_exit_notification = 0
Mon Aug 15 11:27:46 2011 us=911503 persist_tun = DISABLED
Mon Aug 15 11:27:46 2011 us=911520 persist_local_ip = DISABLED
Mon Aug 15 11:27:46 2011 us=911539 persist_remote_ip = ENABLED
Mon Aug 15 11:27:46 2011 us=911556 persist_key = DISABLED
Mon Aug 15 11:27:46 2011 us=911574 mssfix = 1450
Mon Aug 15 11:27:46 2011 us=911592 passtos = DISABLED
Mon Aug 15 11:27:46 2011 us=911610 resolve_retry_seconds = 1000000000
Mon Aug 15 11:27:46 2011 us=911628 username = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=911646 groupname = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=911664 chroot_dir = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=911682 cd_dir = '/usr/local/etc/openvpn'
Mon Aug 15 11:27:46 2011 us=911700 writepid = '/var/run/openvpn.pid'
Mon Aug 15 11:27:46 2011 us=911736 up_script = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=911754 down_script = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=911772 down_pre = DISABLED
Mon Aug 15 11:27:46 2011 us=911790 up_restart = DISABLED
Mon Aug 15 11:27:46 2011 us=911808 up_delay = DISABLED
Mon Aug 15 11:27:46 2011 us=911826 daemon = ENABLED
Mon Aug 15 11:27:46 2011 us=911844 inetd = 0
Mon Aug 15 11:27:46 2011 us=911862 log = ENABLED
Mon Aug 15 11:27:46 2011 us=911879 suppress_timestamps = DISABLED
Mon Aug 15 11:27:46 2011 us=911898 nice = 0
Mon Aug 15 11:27:46 2011 us=911916 verbosity = 5
Mon Aug 15 11:27:46 2011 us=911934 mute = 0
Mon Aug 15 11:27:46 2011 us=911959 gremlin = 0
Mon Aug 15 11:27:46 2011 us=911978 status_file = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=911997 status_file_version = 1
Mon Aug 15 11:27:46 2011 us=912016 status_file_update_freq = 60
Mon Aug 15 11:27:46 2011 us=912035 occ = ENABLED
Mon Aug 15 11:27:46 2011 us=912054 rcvbuf = 65536
Mon Aug 15 11:27:46 2011 us=912073 sndbuf = 65536
Mon Aug 15 11:27:46 2011 us=912091 sockflags = 0
Mon Aug 15 11:27:46 2011 us=912110 fast_io = DISABLED
Mon Aug 15 11:27:46 2011 us=912144 lzo = 7
Mon Aug 15 11:27:46 2011 us=912162 route_script = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=912180 route_default_gateway = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=912198 route_default_metric = 0
Mon Aug 15 11:27:46 2011 us=912216 route_noexec = DISABLED
Mon Aug 15 11:27:46 2011 us=912234 route_delay = 0
Mon Aug 15 11:27:46 2011 us=912252 route_delay_window = 30
Mon Aug 15 11:27:46 2011 us=912271 route_delay_defined = DISABLED
Mon Aug 15 11:27:46 2011 us=912289 route_nopull = DISABLED
Mon Aug 15 11:27:46 2011 us=912307 route_gateway_via_dhcp = DISABLED
Mon Aug 15 11:27:46 2011 us=912325 max_routes = 100
Mon Aug 15 11:27:46 2011 us=912343 allow_pull_fqdn = DISABLED
Mon Aug 15 11:27:46 2011 us=912362 management_addr = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=912380 management_port = 0
Mon Aug 15 11:27:46 2011 us=912403 management_user_pass = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=912421 management_log_history_cache = 250
Mon Aug 15 11:27:46 2011 us=912440 management_echo_buffer_size = 100
Mon Aug 15 11:27:46 2011 us=912458 management_write_peer_info_file = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=912476 management_client_user = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=912494 management_client_group = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=912512 management_flags = 0
Mon Aug 15 11:27:46 2011 us=912530 shared_secret_file = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=912549 key_direction = 0
Mon Aug 15 11:27:46 2011 us=912567 ciphername_defined = ENABLED
Mon Aug 15 11:27:46 2011 us=912585 ciphername = 'BF-CBC'
Mon Aug 15 11:27:46 2011 us=912603 authname_defined = ENABLED
Mon Aug 15 11:27:46 2011 us=912621 authname = 'SHA1'
Mon Aug 15 11:27:46 2011 us=912639 prng_hash = 'SHA1'
Mon Aug 15 11:27:46 2011 us=912657 prng_nonce_secret_len = 16
Mon Aug 15 11:27:46 2011 us=912675 keysize = 0
Mon Aug 15 11:27:46 2011 us=912693 engine = DISABLED
Mon Aug 15 11:27:46 2011 us=912712 replay = ENABLED
Mon Aug 15 11:27:46 2011 us=912730 mute_replay_warnings = DISABLED
Mon Aug 15 11:27:46 2011 us=912748 replay_window = 64
Mon Aug 15 11:27:46 2011 us=912766 replay_time = 15
Mon Aug 15 11:27:46 2011 us=912784 packet_id_file = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=912802 use_iv = ENABLED
Mon Aug 15 11:27:46 2011 us=912821 test_crypto = DISABLED
Mon Aug 15 11:27:46 2011 us=912839 tls_server = ENABLED
Mon Aug 15 11:27:46 2011 us=912857 tls_client = DISABLED
Mon Aug 15 11:27:46 2011 us=912875 key_method = 2
Mon Aug 15 11:27:46 2011 us=912901 ca_file = '/usr/local/etc/openvpn/server1.ca'
Mon Aug 15 11:27:46 2011 us=912920 ca_path = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=912957 dh_file = '/etc/dh-parameters.1024'
Mon Aug 15 11:27:46 2011 us=912982 cert_file = '/usr/local/etc/openvpn/server1.cert'
Mon Aug 15 11:27:46 2011 us=913001 priv_key_file = '/usr/local/etc/openvpn/server1.key'
Mon Aug 15 11:27:46 2011 us=913039 pkcs12_file = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=913059 cipher_list = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=913078 tls_verify = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=913098 tls_export_cert = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=913127 tls_remote = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=913221 crl_file = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=913246 ns_cert_type = 0
Mon Aug 15 11:27:46 2011 us=913266 remote_cert_ku[i] = 0
Mon Aug 15 11:27:46 2011 us=913286 remote_cert_ku[i] = 0
Mon Aug 15 11:27:46 2011 us=913305 remote_cert_ku[i] = 0
Mon Aug 15 11:27:46 2011 us=913325 remote_cert_ku[i] = 0
Mon Aug 15 11:27:46 2011 us=913344 remote_cert_ku[i] = 0
Mon Aug 15 11:27:46 2011 us=913364 remote_cert_ku[i] = 0
Mon Aug 15 11:27:46 2011 us=913384 remote_cert_ku[i] = 0
Mon Aug 15 11:27:46 2011 us=913403 remote_cert_ku[i] = 0
Mon Aug 15 11:27:46 2011 us=913423 remote_cert_ku[i] = 0
Mon Aug 15 11:27:46 2011 us=913442 remote_cert_ku[i] = 0
Mon Aug 15 11:27:46 2011 us=913462 remote_cert_ku[i] = 0
Mon Aug 15 11:27:46 2011 us=913482 remote_cert_ku[i] = 0
Mon Aug 15 11:27:46 2011 us=913501 remote_cert_ku[i] = 0
Mon Aug 15 11:27:46 2011 us=913521 remote_cert_ku[i] = 0
Mon Aug 15 11:27:46 2011 us=913541 remote_cert_ku[i] = 0
Mon Aug 15 11:27:46 2011 us=913560 remote_cert_ku[i] = 0
Mon Aug 15 11:27:46 2011 us=913580 remote_cert_eku = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=913597 tls_timeout = 2
Mon Aug 15 11:27:46 2011 us=913651 renegotiate_bytes = 0
Mon Aug 15 11:27:46 2011 us=913671 renegotiate_packets = 0
Mon Aug 15 11:27:46 2011 us=913691 renegotiate_seconds = 3600
Mon Aug 15 11:27:46 2011 us=913711 handshake_window = 60
Mon Aug 15 11:27:46 2011 us=913730 transition_window = 3600
Mon Aug 15 11:27:46 2011 us=913750 single_session = DISABLED
Mon Aug 15 11:27:46 2011 us=913770 push_peer_info = DISABLED
Mon Aug 15 11:27:46 2011 us=913789 tls_exit = DISABLED
Mon Aug 15 11:27:46 2011 us=913809 tls_auth_file = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=913840 server_network = 172.16.10.0
Mon Aug 15 11:27:46 2011 us=913860 server_netmask = 255.255.255.0
Mon Aug 15 11:27:46 2011 us=913880 server_bridge_ip = 0.0.0.0
Mon Aug 15 11:27:46 2011 us=913900 server_bridge_netmask = 0.0.0.0
Mon Aug 15 11:27:46 2011 us=913919 server_bridge_pool_start = 0.0.0.0
Mon Aug 15 11:27:46 2011 us=913939 server_bridge_pool_end = 0.0.0.0
Mon Aug 15 11:27:46 2011 us=913958 push_entry = 'route-gateway 172.16.10.1'
Mon Aug 15 11:27:46 2011 us=913976 push_entry = 'ping 10'
Mon Aug 15 11:27:46 2011 us=913995 push_entry = 'ping-restart 60'
Mon Aug 15 11:27:46 2011 us=914013 ifconfig_pool_defined = ENABLED
Mon Aug 15 11:27:46 2011 us=914033 ifconfig_pool_start = 172.16.10.2
Mon Aug 15 11:27:46 2011 us=914122 ifconfig_pool_end = 172.16.10.254
Mon Aug 15 11:27:46 2011 us=914151 ifconfig_pool_netmask = 255.255.255.0
Mon Aug 15 11:27:46 2011 us=914171 ifconfig_pool_persist_filename = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=914214 ifconfig_pool_persist_refresh_freq = 600
Mon Aug 15 11:27:46 2011 us=914234 n_bcast_buf = 256
Mon Aug 15 11:27:46 2011 us=914254 tcp_queue_limit = 64
Mon Aug 15 11:27:46 2011 us=914273 real_hash_size = 256
Mon Aug 15 11:27:46 2011 us=914293 virtual_hash_size = 256
Mon Aug 15 11:27:46 2011 us=914313 client_connect_script = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=914333 learn_address_script = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=914353 client_disconnect_script = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=914372 client_config_dir = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=914392 ccd_exclusive = DISABLED
Mon Aug 15 11:27:46 2011 us=914411 tmp_dir = '/tmp'
Mon Aug 15 11:27:46 2011 us=914431 push_ifconfig_defined = DISABLED
Mon Aug 15 11:27:46 2011 us=914452 push_ifconfig_local = 0.0.0.0
Mon Aug 15 11:27:46 2011 us=914472 push_ifconfig_remote_netmask = 0.0.0.0
Mon Aug 15 11:27:46 2011 us=914492 enable_c2c = DISABLED
Mon Aug 15 11:27:46 2011 us=914512 duplicate_cn = DISABLED
Mon Aug 15 11:27:46 2011 us=914531 cf_max = 0
Mon Aug 15 11:27:46 2011 us=914574 cf_per = 0
Mon Aug 15 11:27:46 2011 us=914595 max_clients = 100
Mon Aug 15 11:27:46 2011 us=914614 max_routes_per_client = 256
Mon Aug 15 11:27:46 2011 us=914634 auth_user_pass_verify_script = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=914654 auth_user_pass_verify_script_via_file = DISABLED
Mon Aug 15 11:27:46 2011 us=914673 ssl_flags = 0
Mon Aug 15 11:27:46 2011 us=914693 port_share_host = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=914712 port_share_port = 0
Mon Aug 15 11:27:46 2011 us=914731 client = DISABLED
Mon Aug 15 11:27:46 2011 us=914751 pull = DISABLED
Mon Aug 15 11:27:46 2011 us=914771 auth_user_pass_file = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=914796 OpenVPN 2.2.1 i386-portbld-freebsd9.0 [SSL] [LZO2] [eurephia] built on Jul 27 2011
Mon Aug 15 11:27:46 2011 us=915133 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Mon Aug 15 11:27:46 2011 us=924564 Diffie-Hellman initialized with 1024 bit key
Mon Aug 15 11:27:46 2011 us=925900 TLS-Auth MTU parms [ L:1574 D:138 EF:38 EB:0 ET:0 EL:0 ]
Mon Aug 15 11:27:46 2011 us=926075 Socket Buffers: R=[268435456->65536] S=[57344->65536]
Mon Aug 15 11:27:46 2011 us=926511 TUN/TAP device /dev/tap0 opened
Mon Aug 15 11:27:46 2011 us=926554 /sbin/ifconfig tap0 172.16.10.1 netmask 255.255.255.0 mtu 1500 up
Mon Aug 15 11:27:46 2011 us=935637 Data Channel MTU parms [ L:1574 D:1450 EF:42 EB:135 ET:32 EL:0 AF:3/1 ]
Mon Aug 15 11:27:46 2011 us=940979 UDPv4 link local (bound): 3.3.3.2:1194
Mon Aug 15 11:27:46 2011 us=941149 UDPv4 link remote: [undef]
Mon Aug 15 11:27:46 2011 us=941183 MULTI: multi_init called, r=256 v=256
Mon Aug 15 11:27:46 2011 us=941643 IFCONFIG POOL: base=172.16.10.2 size=253
Mon Aug 15 11:27:46 2011 us=941784 Initialization Sequence Completed
Mon Aug 15 11:27:58 2011 us=855779 MULTI: multi_create_instance called
Mon Aug 15 11:27:58 2011 us=855920 4.4.4.2:63392 Re-using SSL/TLS context
Mon Aug 15 11:27:58 2011 us=856104 4.4.4.2:63392 LZO compression initialized
Mon Aug 15 11:27:58 2011 us=856870 4.4.4.2:63392 Control Channel MTU parms [ L:1574 D:138 EF:38 EB:0 ET:0 EL:0 ]
Mon Aug 15 11:27:58 2011 us=856897 4.4.4.2:63392 Data Channel MTU parms [ L:1574 D:1450 EF:42 EB:135 ET:32 EL:0 AF:3/1 ]
Mon Aug 15 11:27:58 2011 us=857043 4.4.4.2:63392 Local Options String: 'V4,dev-type tap,link-mtu 1574,tun-mtu 1532,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Mon Aug 15 11:27:58 2011 us=857067 4.4.4.2:63392 Expected Remote Options String: 'V4,dev-type tap,link-mtu 1574,tun-mtu 1532,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Mon Aug 15 11:27:58 2011 us=857195 4.4.4.2:63392 Local Options hash (VER=V4): 'f7df56b8'
Mon Aug 15 11:27:58 2011 us=857224 4.4.4.2:63392 Expected Remote Options hash (VER=V4): 'd79ca330'
RMon Aug 15 11:27:58 2011 us=857420 4.4.4.2:63392 TLS: Initial packet from 4.4.4.2:63392, sid=fa1c7495 49b23382
WRRWRWWWWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRRRRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRMon Aug 15 11:27:58 2011 us=992912 4.4.4.2:63392 VERIFY OK: depth=1, /C=CA/ST=Province/L=Ville/O=Test/emailAddress=AAAA at AAAA.COM/CN=Server-internal-ca
Mon Aug 15 11:27:58 2011 us=993491 4.4.4.2:63392 VERIFY OK: depth=0, /C=CA/ST=Province/L=Ville/O=Test/emailAddress=AAAA at AAAA.COM/CN=AClient.test.com
WRWRWRWRWRWWWWRWRWRWRWRWRWRWRWRWRWRWRRRRWRWRWRMon Aug 15 11:27:59 2011 us=27199 4.4.4.2:63392 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
Mon Aug 15 11:27:59 2011 us=27227 4.4.4.2:63392 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Mon Aug 15 11:27:59 2011 us=27319 4.4.4.2:63392 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
Mon Aug 15 11:27:59 2011 us=27342 4.4.4.2:63392 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
WWWRRRMon Aug 15 11:27:59 2011 us=29024 4.4.4.2:63392 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA
Mon Aug 15 11:27:59 2011 us=29112 4.4.4.2:63392 [AClient.test.com] Peer Connection Initiated with 4.4.4.2:63392
RMon Aug 15 11:28:01 2011 us=125530 AClient.test.com/4.4.4.2:63392 PUSH: Received control message: 'PUSH_REQUEST'
Mon Aug 15 11:28:01 2011 us=125723 AClient.test.com/4.4.4.2:63392 SENT CONTROL [AClient.test.com]: 'PUSH_REPLY,route-gateway 172.16.10.1,ping 10,ping-restart 60,ifconfig 172.16.10.2 255.255.255.0' (status=1)
WWWRRRMon Aug 15 11:28:01 2011 us=145733 AClient.test.com/4.4.4.2:63392 MULTI: Learn: 00:bd:9c:8c:05:00 -> AClient.test.com/4.4.4.2:63392
wRWWRRWRWWRWRWRWRWRR
rWrWrWrWrWMon Aug 15 11:45:52 2011 us=465817 AClient.test.com/4.4.4.2:63392 write UDPv4: No buffer space available (code=55)
rWrWrWrWrWrWrWrWrWMon Aug 15 11:45:52 2011 us=467134 AClient.test.com/4.4.4.2:63392 write UDPv4: No buffer space available (code=55)
rWrWrWrWrWrWrWrWrWrWrWrWrWMon Aug 15 11:45:52 2011 us=469554 AClient.test.com/4.4.4.2:63392 write UDPv4: No buffer space available (code=55)
rWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWMon Aug 15 11:45:52 2011 us=475155 AClient.test.com/4.4.4.2:63392 write UDPv4: No buffer space available (code=55)
rWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWMon Aug 15 11:45:52 2011 us=478123 AClient.test.com/4.4.4.2:63392 write UDPv4: No buffer space available (code=55)
..
-- On the Client
Mon Aug 15 11:27:58 2011 us=794937 Current Parameter Settings:
Mon Aug 15 11:27:58 2011 us=795414 config = '/usr/local/etc/openvpn/openvpn.conf'
Mon Aug 15 11:27:58 2011 us=795476 mode = 0
Mon Aug 15 11:27:58 2011 us=795531 show_ciphers = DISABLED
Mon Aug 15 11:27:58 2011 us=795580 show_digests = DISABLED
Mon Aug 15 11:27:58 2011 us=795626 show_engines = DISABLED
Mon Aug 15 11:27:58 2011 us=795681 genkey = DISABLED
Mon Aug 15 11:27:58 2011 us=795722 key_pass_file = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=795759 show_tls_ciphers = DISABLED
Mon Aug 15 11:27:58 2011 us=795798 Connection profiles [default]:
Mon Aug 15 11:27:58 2011 us=795830 proto = udp
Mon Aug 15 11:27:58 2011 us=795860 local = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=795889 local_port = 0
Mon Aug 15 11:27:58 2011 us=795921 remote = '3.3.3.2'
Mon Aug 15 11:27:58 2011 us=795946 remote_port = 1194
Mon Aug 15 11:27:58 2011 us=795970 remote_float = DISABLED
Mon Aug 15 11:27:58 2011 us=795993 bind_defined = DISABLED
Mon Aug 15 11:27:58 2011 us=796016 bind_local = DISABLED
Mon Aug 15 11:27:58 2011 us=796038 connect_retry_seconds = 5
Mon Aug 15 11:27:58 2011 us=796060 connect_timeout = 10
Mon Aug 15 11:27:58 2011 us=796081 connect_retry_max = 0
Mon Aug 15 11:27:58 2011 us=796102 socks_proxy_server = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=796122 socks_proxy_port = 0
Mon Aug 15 11:27:58 2011 us=796143 socks_proxy_retry = DISABLED
Mon Aug 15 11:27:58 2011 us=796172 Connection profiles END
Mon Aug 15 11:27:58 2011 us=796193 remote_random = DISABLED
Mon Aug 15 11:27:58 2011 us=796212 ipchange = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=796230 dev = 'tap'
Mon Aug 15 11:27:58 2011 us=796248 dev_type = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=796266 dev_node = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=796285 lladdr = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=796303 topology = 1
Mon Aug 15 11:27:58 2011 us=796321 tun_ipv6 = DISABLED
Mon Aug 15 11:27:58 2011 us=796339 ifconfig_local = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=796358 ifconfig_remote_netmask = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=796393 ifconfig_noexec = DISABLED
Mon Aug 15 11:27:58 2011 us=796412 ifconfig_nowarn = DISABLED
Mon Aug 15 11:27:58 2011 us=796431 shaper = 0
Mon Aug 15 11:27:58 2011 us=796449 tun_mtu = 1500
Mon Aug 15 11:27:58 2011 us=796468 tun_mtu_defined = ENABLED
Mon Aug 15 11:27:58 2011 us=796486 link_mtu = 1500
Mon Aug 15 11:27:58 2011 us=796505 link_mtu_defined = DISABLED
Mon Aug 15 11:27:58 2011 us=796523 tun_mtu_extra = 32
Mon Aug 15 11:27:58 2011 us=796541 tun_mtu_extra_defined = ENABLED
Mon Aug 15 11:27:58 2011 us=796565 fragment = 0
Mon Aug 15 11:27:58 2011 us=796584 mtu_discover_type = -1
Mon Aug 15 11:27:58 2011 us=796598 mtu_test = 0
Mon Aug 15 11:27:58 2011 us=796621 mlock = DISABLED
Mon Aug 15 11:27:58 2011 us=796640 keepalive_ping = 0
Mon Aug 15 11:27:58 2011 us=796658 keepalive_timeout = 0
Mon Aug 15 11:27:58 2011 us=796676 inactivity_timeout = 0
Mon Aug 15 11:27:58 2011 us=796695 ping_send_timeout = 10
Mon Aug 15 11:27:58 2011 us=796713 ping_rec_timeout = 0
Mon Aug 15 11:27:58 2011 us=796732 ping_rec_timeout_action = 0
Mon Aug 15 11:27:58 2011 us=796750 ping_timer_remote = DISABLED
Mon Aug 15 11:27:58 2011 us=796769 remap_sigusr1 = 0
Mon Aug 15 11:27:58 2011 us=796787 explicit_exit_notification = 0
Mon Aug 15 11:27:58 2011 us=796827 persist_tun = DISABLED
Mon Aug 15 11:27:58 2011 us=796847 persist_local_ip = DISABLED
Mon Aug 15 11:27:58 2011 us=796866 persist_remote_ip = DISABLED
Mon Aug 15 11:27:58 2011 us=796921 persist_key = DISABLED
Mon Aug 15 11:27:58 2011 us=796940 mssfix = 1450
Mon Aug 15 11:27:58 2011 us=796960 passtos = DISABLED
Mon Aug 15 11:27:58 2011 us=796993 resolve_retry_seconds = 1000000000
Mon Aug 15 11:27:58 2011 us=797013 username = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=797032 groupname = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=797052 chroot_dir = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=797071 cd_dir = '/usr/local/etc/openvpn'
Mon Aug 15 11:27:58 2011 us=797096 writepid = '/var/run/openvpn.pid'
Mon Aug 15 11:27:58 2011 us=797132 up_script = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=797151 down_script = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=797169 down_pre = DISABLED
Mon Aug 15 11:27:58 2011 us=797188 up_restart = DISABLED
Mon Aug 15 11:27:58 2011 us=797206 up_delay = DISABLED
Mon Aug 15 11:27:58 2011 us=797225 daemon = ENABLED
Mon Aug 15 11:27:58 2011 us=797243 inetd = 0
Mon Aug 15 11:27:58 2011 us=797261 log = ENABLED
Mon Aug 15 11:27:58 2011 us=797280 suppress_timestamps = DISABLED
Mon Aug 15 11:27:58 2011 us=797298 nice = 0
Mon Aug 15 11:27:58 2011 us=797317 verbosity = 5
Mon Aug 15 11:27:58 2011 us=797335 mute = 0
Mon Aug 15 11:27:58 2011 us=797353 gremlin = 0
Mon Aug 15 11:27:58 2011 us=797372 status_file = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=797390 status_file_version = 1
Mon Aug 15 11:27:58 2011 us=797408 status_file_update_freq = 60
Mon Aug 15 11:27:58 2011 us=797427 occ = ENABLED
Mon Aug 15 11:27:58 2011 us=797445 rcvbuf = 65536
Mon Aug 15 11:27:58 2011 us=797464 sndbuf = 65536
Mon Aug 15 11:27:58 2011 us=797482 sockflags = 0
Mon Aug 15 11:27:58 2011 us=797500 fast_io = DISABLED
Mon Aug 15 11:27:58 2011 us=797519 lzo = 7
Mon Aug 15 11:27:58 2011 us=797537 route_script = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=797556 route_default_gateway = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=797589 route_default_metric = 0
Mon Aug 15 11:27:58 2011 us=797612 route_noexec = DISABLED
Mon Aug 15 11:27:58 2011 us=797630 route_delay = 0
Mon Aug 15 11:27:58 2011 us=797649 route_delay_window = 30
Mon Aug 15 11:27:58 2011 us=797667 route_delay_defined = DISABLED
Mon Aug 15 11:27:58 2011 us=797685 route_nopull = DISABLED
Mon Aug 15 11:27:58 2011 us=797704 route_gateway_via_dhcp = DISABLED
Mon Aug 15 11:27:58 2011 us=797723 max_routes = 100
Mon Aug 15 11:27:58 2011 us=797741 allow_pull_fqdn = DISABLED
Mon Aug 15 11:27:58 2011 us=797760 management_addr = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=797778 management_port = 0
Mon Aug 15 11:27:58 2011 us=797797 management_user_pass = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=797820 management_log_history_cache = 250
Mon Aug 15 11:27:58 2011 us=797839 management_echo_buffer_size = 100
Mon Aug 15 11:27:58 2011 us=797858 management_write_peer_info_file = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=797877 management_client_user = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=797895 management_client_group = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=797914 management_flags = 0
Mon Aug 15 11:27:58 2011 us=797932 shared_secret_file = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=797951 key_direction = 0
Mon Aug 15 11:27:58 2011 us=797970 ciphername_defined = ENABLED
Mon Aug 15 11:27:58 2011 us=798005 ciphername = 'BF-CBC'
Mon Aug 15 11:27:58 2011 us=798030 authname_defined = ENABLED
Mon Aug 15 11:27:58 2011 us=798049 authname = 'SHA1'
Mon Aug 15 11:27:58 2011 us=798247 prng_hash = 'SHA1'
Mon Aug 15 11:27:58 2011 us=798267 prng_nonce_secret_len = 16
Mon Aug 15 11:27:58 2011 us=798286 keysize = 0
Mon Aug 15 11:27:58 2011 us=798306 engine = DISABLED
Mon Aug 15 11:27:58 2011 us=798326 replay = ENABLED
Mon Aug 15 11:27:58 2011 us=798346 mute_replay_warnings = DISABLED
Mon Aug 15 11:27:58 2011 us=798366 replay_window = 64
Mon Aug 15 11:27:58 2011 us=798386 replay_time = 15
Mon Aug 15 11:27:58 2011 us=798406 packet_id_file = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=798436 use_iv = ENABLED
Mon Aug 15 11:27:58 2011 us=798461 test_crypto = DISABLED
Mon Aug 15 11:27:58 2011 us=798481 tls_server = DISABLED
Mon Aug 15 11:27:58 2011 us=798501 tls_client = ENABLED
Mon Aug 15 11:27:58 2011 us=798521 key_method = 2
Mon Aug 15 11:27:58 2011 us=798542 ca_file = '/usr/local/etc/openvpn/Client.crt'
Mon Aug 15 11:27:58 2011 us=798562 ca_path = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=798600 dh_file = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=798625 cert_file = '/usr/local/etc/openvpn/AClient.crt'
Mon Aug 15 11:27:58 2011 us=798645 priv_key_file = '/usr/local/etc/openvpn/AClient.key'
Mon Aug 15 11:27:58 2011 us=798688 pkcs12_file = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=798708 cipher_list = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=798728 tls_verify = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=798748 tls_export_cert = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=798768 tls_remote = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=798788 crl_file = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=798807 ns_cert_type = 0
Mon Aug 15 11:27:58 2011 us=798827 remote_cert_ku[i] = 0
Mon Aug 15 11:27:58 2011 us=798846 remote_cert_ku[i] = 0
Mon Aug 15 11:27:58 2011 us=798886 remote_cert_ku[i] = 0
Mon Aug 15 11:27:58 2011 us=798923 remote_cert_ku[i] = 0
Mon Aug 15 11:27:58 2011 us=798948 remote_cert_ku[i] = 0
Mon Aug 15 11:27:58 2011 us=798968 remote_cert_ku[i] = 0
Mon Aug 15 11:27:58 2011 us=798988 remote_cert_ku[i] = 0
Mon Aug 15 11:27:58 2011 us=799007 remote_cert_ku[i] = 0
Mon Aug 15 11:27:58 2011 us=799027 remote_cert_ku[i] = 0
Mon Aug 15 11:27:58 2011 us=799047 remote_cert_ku[i] = 0
Mon Aug 15 11:27:58 2011 us=799066 remote_cert_ku[i] = 0
Mon Aug 15 11:27:58 2011 us=799086 remote_cert_ku[i] = 0
Mon Aug 15 11:27:58 2011 us=799105 remote_cert_ku[i] = 0
Mon Aug 15 11:27:58 2011 us=799125 remote_cert_ku[i] = 0
Mon Aug 15 11:27:58 2011 us=799145 remote_cert_ku[i] = 0
Mon Aug 15 11:27:58 2011 us=799164 remote_cert_ku[i] = 0
Mon Aug 15 11:27:58 2011 us=799184 remote_cert_eku = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=799203 tls_timeout = 2
Mon Aug 15 11:27:58 2011 us=799223 renegotiate_bytes = 0
Mon Aug 15 11:27:58 2011 us=799242 renegotiate_packets = 0
Mon Aug 15 11:27:58 2011 us=799261 renegotiate_seconds = 3600
Mon Aug 15 11:27:58 2011 us=799281 handshake_window = 60
Mon Aug 15 11:27:58 2011 us=799300 transition_window = 3600
Mon Aug 15 11:27:58 2011 us=799319 single_session = DISABLED
Mon Aug 15 11:27:58 2011 us=799339 push_peer_info = DISABLED
Mon Aug 15 11:27:58 2011 us=799358 tls_exit = DISABLED
Mon Aug 15 11:27:58 2011 us=799377 tls_auth_file = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=799419 server_network = 0.0.0.0
Mon Aug 15 11:27:58 2011 us=799441 server_netmask = 0.0.0.0
Mon Aug 15 11:27:58 2011 us=799462 server_bridge_ip = 0.0.0.0
Mon Aug 15 11:27:58 2011 us=799482 server_bridge_netmask = 0.0.0.0
Mon Aug 15 11:27:58 2011 us=799504 server_bridge_pool_start = 0.0.0.0
Mon Aug 15 11:27:58 2011 us=799524 server_bridge_pool_end = 0.0.0.0
Mon Aug 15 11:27:58 2011 us=799544 ifconfig_pool_defined = DISABLED
Mon Aug 15 11:27:58 2011 us=799565 ifconfig_pool_start = 0.0.0.0
Mon Aug 15 11:27:58 2011 us=799627 ifconfig_pool_end = 0.0.0.0
Mon Aug 15 11:27:58 2011 us=799652 ifconfig_pool_netmask = 0.0.0.0
Mon Aug 15 11:27:58 2011 us=799671 ifconfig_pool_persist_filename = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=799690 ifconfig_pool_persist_refresh_freq = 600
Mon Aug 15 11:27:58 2011 us=799710 n_bcast_buf = 256
Mon Aug 15 11:27:58 2011 us=799730 tcp_queue_limit = 64
Mon Aug 15 11:27:58 2011 us=799749 real_hash_size = 256
Mon Aug 15 11:27:58 2011 us=799769 virtual_hash_size = 256
Mon Aug 15 11:27:58 2011 us=799789 client_connect_script = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=799808 learn_address_script = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=799828 client_disconnect_script = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=799847 client_config_dir = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=799867 ccd_exclusive = DISABLED
Mon Aug 15 11:27:58 2011 us=799887 tmp_dir = '/tmp'
Mon Aug 15 11:27:58 2011 us=799906 push_ifconfig_defined = DISABLED
Mon Aug 15 11:27:58 2011 us=799927 push_ifconfig_local = 0.0.0.0
Mon Aug 15 11:27:58 2011 us=799948 push_ifconfig_remote_netmask = 0.0.0.0
Mon Aug 15 11:27:58 2011 us=799967 enable_c2c = DISABLED
Mon Aug 15 11:27:58 2011 us=799987 duplicate_cn = DISABLED
Mon Aug 15 11:27:58 2011 us=800006 cf_max = 0
Mon Aug 15 11:27:58 2011 us=800026 cf_per = 0
Mon Aug 15 11:27:58 2011 us=800045 max_clients = 1024
Mon Aug 15 11:27:58 2011 us=800064 max_routes_per_client = 256
Mon Aug 15 11:27:58 2011 us=800084 auth_user_pass_verify_script = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=800123 auth_user_pass_verify_script_via_file = DISABLED
Mon Aug 15 11:27:58 2011 us=800143 ssl_flags = 0
Mon Aug 15 11:27:58 2011 us=800162 port_share_host = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=800193 port_share_port = 0
Mon Aug 15 11:27:58 2011 us=800217 client = ENABLED
Mon Aug 15 11:27:58 2011 us=800236 pull = ENABLED
Mon Aug 15 11:27:58 2011 us=800256 auth_user_pass_file = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=800281 OpenVPN 2.2.1 i386-portbld-freebsd9.0 [SSL] [LZO2] [eurephia] built on Jul 27 2011
Mon Aug 15 11:27:58 2011 us=800355 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Mon Aug 15 11:27:58 2011 us=800375 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Mon Aug 15 11:27:58 2011 us=802475 WARNING: file '/usr/local/etc/openvpn/ClientAlbanyToMCI.key' is group or others accessible
Mon Aug 15 11:27:58 2011 us=803146 LZO compression initialized
Mon Aug 15 11:27:58 2011 us=803718 Control Channel MTU parms [ L:1574 D:138 EF:38 EB:0 ET:0 EL:0 ]
Mon Aug 15 11:27:58 2011 us=803914 Socket Buffers: R=[268435456->65536] S=[57344->65536]
Mon Aug 15 11:27:58 2011 us=804041 Data Channel MTU parms [ L:1574 D:1450 EF:42 EB:135 ET:32 EL:0 AF:3/1 ]
Mon Aug 15 11:27:58 2011 us=804083 Local Options String: 'V4,dev-type tap,link-mtu 1574,tun-mtu 1532,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Mon Aug 15 11:27:58 2011 us=804103 Expected Remote Options String: 'V4,dev-type tap,link-mtu 1574,tun-mtu 1532,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Mon Aug 15 11:27:58 2011 us=804139 Local Options hash (VER=V4): 'd79ca330'
Mon Aug 15 11:27:58 2011 us=804165 Expected Remote Options hash (VER=V4): 'f7df56b8'
Mon Aug 15 11:27:58 2011 us=807808 UDPv4 link local: [undef]
Mon Aug 15 11:27:58 2011 us=808035 UDPv4 link remote: 3.3.3.2:1194
WRMon Aug 15 11:27:58 2011 us=811880 TLS: Initial packet from 3.3.3.2:1194, sid=894417f2 ba973063
WWWRRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRMon Aug 15 11:27:58 2011 us=890173 VERIFY OK: depth=1, /C=CA/ST=Province/L=Ville/O=Test/emailAddress=AAAA at AAAA.COM/CN=Server-internal-ca
Mon Aug 15 11:27:58 2011 us=890946 VERIFY OK: depth=0, /C=CA/ST=Province/L=Ville/O=Test/emailAddress=AAAA at AAAA.COM/CN=Server.test.com
WRWRWRWRWRWRWRWWWWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRRRRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWWWWRRRRWRWRMon Aug 15 11:27:58 2011 us=982209 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
Mon Aug 15 11:27:58 2011 us=982247 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Mon Aug 15 11:27:58 2011 us=982308 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
Mon Aug 15 11:27:58 2011 us=982328 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
WMon Aug 15 11:27:58 2011 us=982500 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA
Mon Aug 15 11:27:58 2011 us=982564 [Server.test.com] Peer Connection Initiated with 3.3.3.2:1194
Mon Aug 15 11:28:01 2011 us=77222 SENT CONTROL [Server.test.com]: 'PUSH_REQUEST' (status=1)
WRRWRMon Aug 15 11:28:01 2011 us=82057 PUSH: Received control message: 'PUSH_REPLY,route-gateway 172.16.10.1,ping 10,ping-restart 60,ifconfig 172.16.10.2 255.255.255.0'
Mon Aug 15 11:28:01 2011 us=82680 OPTIONS IMPORT: timers and/or timeouts modified
Mon Aug 15 11:28:01 2011 us=82790 OPTIONS IMPORT: --ifconfig/up options modified
Mon Aug 15 11:28:01 2011 us=82878 OPTIONS IMPORT: route-related options modified
Mon Aug 15 11:28:01 2011 us=88745 TUN/TAP device /dev/tap0 opened
Mon Aug 15 11:28:01 2011 us=89029 /sbin/ifconfig tap0 172.16.10.2 netmask 255.255.255.0 mtu 1500 up
Mon Aug 15 11:28:01 2011 us=97570 Initialization Sequence Completed
WrWWRRWWRWRRWWRRWRWRWWRRwrWRwrWRwrWRwRwrWRwrWrWRwRwrWrWRwRwrWrW
rWrWrWrWrWrWrWMon Aug 15 11:45:39 2011 us=870033 write UDPv4: No buffer space available (code=55)
rWrWrWrWrWrWrWrWrWrWrWMon Aug 15 11:45:39 2011 us=871223 write UDPv4: No buffer space available (code=55)
rWrWrWrWrWrWrWrWrWrWrWrWrWrWrWMon Aug 15 11:45:39 2011 us=874219 write UDPv4: No buffer space available (code=55)
rWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWMon Aug 15 11:45:39 2011 us=876193 write UDPv4: No buffer space available (code=55)
rWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWMon Aug 15 11:45:39 2011 us=878575 write UDPv4: No buffer space available (code=55)
rWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWMon Aug 15 11:45:39 2011 us=880711 write UDPv4: No buffer space available (code=55)
rWrWrWrWrWMon Aug 15 11:45:39 2011 us=881266 write UDPv4: No buffer space available (code=55)
rWrWrWrWrWrWrWrWrWMon Aug 15 11:45:39 2011 us=882191 write UDPv4: No buffer space available (code=55)
rWrWrWrWrWrWrWrWrWrWrWrWrWMon Aug 15 11:45:39 2011 us=885409 write UDPv4: No buffer space available (code=55)
rWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWMon Aug 15 11:45:39 2011 us=887351 write UDPv4: No buffer space available (code=55)
rWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWMon Aug 15 11:45:39 2011 us=889460 write UDPv4: No buffer space available (code=55)
rWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWMon Aug 15 11:45:39 2011 us=892461 write UDPv4: No buffer space available (code=55)
rWrWrWMon Aug 15 11:45:39 2011 us=892851 write UDPv4: No buffer space available (code=55)
rWrWrWrWrWrWrWMon Aug 15 11:45:39 2011 us=893588 write UDPv4: No buffer space available (code=55)
rWrWrWrWrWrWrWrWrWrWrWMon Aug 15 11:45:39 2011 us=894854 write UDPv4: No buffer space available (code=55)
rWrWrWrWrWrWrWrWrWrWrWrWrWrWrWMon Aug 15 11:45:39 2011 us=896492 write UDPv4: No buffer space available (code=55)
rWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWMon Aug 15 11:45:39 2011 us=898361 write UDPv4: No buffer space available (code=55)
rWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWMon Aug 15 11:45:39 2011 us=900725 write UDPv4: No buffer space available (code=55)
...
If you have any ideas on hw to solve this issues,
please do not hesitate to share them.
Thanks,
Jean Aumont
jaumont at mediagrif.com
>Release-Note:
>Audit-Trail:
>Unformatted:
More information about the freebsd-i386
mailing list