Hi!
After a network failure, OpenVPN client reconnects to the server, but fails to
set up the default route.
An USR1 signal then makes it reconnect properly (not visible in the logs below).
Note that the server IP is resolved just fine (how else could it then connect?)
Regards,
David
server : OpenVPN 2.0.8 on OpenWRT
client : OpenVPN 2.0.9 on Windows 2003
timeline :
09:47 establish connection for the first time , OK
10:43 network disconnect
10:44 network is back, reconnect OK, but gateway not set
Client log (I replaced real server IP with 99.88.77.66 and FQHN with
my.openvpn.server.example.org):
Tue Feb 27 09:47:21 2007 OpenVPN 2.0.9 Win32-MinGW [SSL] [LZO] built on Oct 1
2006
Tue Feb 27 09:47:21 2007 IMPORTANT: OpenVPN's default port number is now 1194,
based on an official port number assignment by IANA. OpenVPN 2.0-beta16 and
earlier used 5000 as the default port.
Tue Feb 27 09:47:21 2007 ******* WARNING *******: null cipher specified, no
encryption will be used
Tue Feb 27 09:47:21 2007 TAP-WIN32 device [Local Area Connection 2] opened:
\\.\Global\{DED0C8F4-E03C-45AA-B64A-C128A7737FA5}.tap
Tue Feb 27 09:47:21 2007 Notified TAP-Win32 driver to set a DHCP IP/netmask of
10.4.0.2/255.255.255.252 on interface {DED0C8F4-E03C-45AA-B64A-C128A7737FA5}
[DHCP-serv: 10.4.0.1, lease-time: 31536000]
Tue Feb 27 09:47:21 2007 Successful ARP Flush on interface [2]
{DED0C8F4-E03C-45AA-B64A-C128A7737FA5}
Tue Feb 27 09:47:21 2007 UDPv4 link local (bound): [undef]:1194
Tue Feb 27 09:47:21 2007 UDPv4 link remote: 99.88.77.66:4500
Tue Feb 27 09:47:25 2007 Peer Connection Initiated with 99.88.77.66:4500
Tue Feb 27 09:47:26 2007 Initialization Sequence Completed
Tue Feb 27 10:43:54 2007 Inactivity timeout (--ping-restart), restarting
Tue Feb 27 10:43:54 2007 SIGUSR1[soft,ping-restart] received, process restarting
Tue Feb 27 10:43:56 2007 IMPORTANT: OpenVPN's default port number is now 1194,
based on an official port number assignment by IANA. OpenVPN 2.0-beta16 and
earlier used 5000 as the default port.
Tue Feb 27 10:43:56 2007 ******* WARNING *******: null cipher specified, no
encryption will be used
Tue Feb 27 10:44:08 2007 RESOLVE: Cannot resolve host address:
my.openvpn.server.example.org: [NO_DATA] The requested name is valid but does
not have an IP address.
Tue Feb 27 10:44:08 2007 TAP-WIN32 device [Local Area Connection 2] opened:
\\.\Global\{DED0C8F4-E03C-45AA-B64A-C128A7737FA5}.tap
Tue Feb 27 10:44:08 2007 Notified TAP-Win32 driver to set a DHCP IP/netmask of
10.4.0.2/255.255.255.252 on interface {DED0C8F4-E03C-45AA-B64A-C128A7737FA5}
[DHCP-serv: 10.4.0.1, lease-time: 31536000]
Tue Feb 27 10:44:08 2007 Successful ARP Flush on interface [2]
{DED0C8F4-E03C-45AA-B64A-C128A7737FA5}
Tue Feb 27 10:44:08 2007 UDPv4 link local (bound): [undef]:1194
Tue Feb 27 10:44:08 2007 UDPv4 link remote: 99.88.77.66:4500
Tue Feb 27 10:44:16 2007 Peer Connection Initiated with 99.88.77.66:4500
Tue Feb 27 10:44:17 2007 NOTE: unable to redirect default gateway -- Cannot
obtain current remote host address
Tue Feb 27 10:44:17 2007 Initialization Sequence Completed
server log (I replaced real client IP with 1.2.3.4):
Feb 27 09:46:47 (none) kern.notice openvpn[7411]: Peer Connection Initiated
with 1.2.3.4:58887
Feb 27 09:46:47 (none) kern.notice openvpn[7411]: Initialization Sequence
Completed
Feb 27 09:47:33 (none) kern.notice openvpn[7411]: Peer Connection Initiated
with 1.2.3.4:58905
Feb 27 09:48:15 (none) kern.notice openvpn[7411]: Peer Connection Initiated
with 1.2.3.4:58923
Feb 27 09:49:03 (none) kern.notice openvpn[7411]: Peer Connection Initiated
with 1.2.3.4:58940
Feb 27 09:49:45 (none) kern.notice openvpn[7411]: Peer Connection Initiated
with 1.2.3.4:58954
Feb 27 09:50:33 (none) kern.notice openvpn[7411]: Peer Connection Initiated
with 1.2.3.4:58968
Feb 27 09:51:13 (none) kern.notice openvpn[7411]: Peer Connection Initiated
with 1.2.3.4:58980
Feb 27 09:52:02 (none) kern.notice openvpn[7411]: Peer Connection Initiated
with 1.2.3.4:58995
Feb 27 09:53:45 (none) kern.notice openvpn[7411]: Peer Connection Initiated
with 1.2.3.4:59026
Feb 27 09:54:43 (none) kern.notice openvpn[7411]: Peer Connection Initiated
with 1.2.3.4:59045
Feb 27 09:55:24 (none) kern.notice openvpn[7411]: Peer Connection Initiated
with 1.2.3.4:59060
Feb 27 09:56:04 (none) kern.notice openvpn[7411]: Peer Connection Initiated
with 1.2.3.4:59075
Feb 27 09:56:45 (none) kern.notice openvpn[7411]: Peer Connection Initiated
with 1.2.3.4:59085
Feb 27 09:58:27 (none) kern.notice openvpn[7411]: Peer Connection Initiated
with 1.2.3.4:59129
Feb 27 09:59:18 (none) kern.notice openvpn[7411]: Peer Connection Initiated
with 1.2.3.4:59158
Feb 27 09:59:59 (none) kern.notice openvpn[7411]: Peer Connection Initiated
with 1.2.3.4:59171
Feb 27 10:02:22 (none) kern.notice openvpn[7411]: Peer Connection Initiated
with 1.2.3.4:59216
Feb 27 10:03:02 (none) kern.notice openvpn[7411]: Peer Connection Initiated
with 1.2.3.4:59233
Feb 27 10:03:43 (none) kern.notice openvpn[7411]: Peer Connection Initiated
with 1.2.3.4:59246
Feb 27 10:04:24 (none) kern.notice openvpn[7411]: Peer Connection Initiated
with 1.2.3.4:59260
Feb 27 10:05:15 (none) kern.notice openvpn[7411]: Peer Connection Initiated
with 1.2.3.4:59282
Feb 27 10:09:30 (none) kern.notice openvpn[7411]: Peer Connection Initiated
with 1.2.3.4:59364
Feb 27 10:10:11 (none) kern.notice openvpn[7411]: Peer Connection Initiated
with 1.2.3.4:59381
Feb 27 10:43:19 (none) kern.notice openvpn[7411]: Inactivity timeout
(--ping-restart), restarting
Feb 27 10:43:19 (none) kern.notice openvpn[7411]: SIGUSR1[soft,ping-restart]
received, process restarting
Feb 27 10:43:21 (none) kern.notice openvpn[7411]: Re-using pre-shared static key
Feb 27 10:43:21 (none) kern.notice openvpn[7411]: Preserving previous TUN/TAP
instance: tun2
Feb 27 10:43:21 (none) kern.notice openvpn[7411]: UDPv4 link local (bound):
[undef]:4500
Feb 27 10:43:21 (none) kern.notice openvpn[7411]: UDPv4 link remote: [undef]
Feb 27 10:43:34 (none) kern.notice openvpn[7411]: Peer Connection Initiated
with 1.2.3.4:59381
Feb 27 10:43:35 (none) kern.notice openvpn[7411]: Initialization Sequence
Completed
client config :
remote my.openvpn.server.example.org 4500
dev tun1
ifconfig 10.4.0.2 10.4.0.1
route-gateway 10.4.0.1
redirect-gateway def1
ping 10
ping-restart 60
verb 1
mute 5
cipher none
secret key 0
server config :
port 4500
dev tun2
ifconfig 10.4.0.1 10.4.0.2
secret /etc/openvpn/key_1 1
ping 10
ping-restart 60
ping-timer-rem
verb 1
mute 5
cipher none
persist-key
persist-tun
user nobody
group nogroup
