Community discussions

MUM Europe 2020
 
alaa2003
just joined
Topic Author
Posts: 16
Joined: Sat Jan 07, 2017 6:10 pm

how to route openvpn in windows / mikrotik Ovpn client ?

Thu Jan 19, 2017 8:30 pm

Hello
i configured openvpn in mikrotik as server , and use openvpn client in windows to connect mikrotik
1- i made certificateds & uploaded to Mtik
2- added pool range
Image
3- create openvpn profile
Image
4- added OVPN server interface
5- enabled OVPN server
Image
6- added client with Ovpn profile
Image
7- accept 1194 port ( action=accept)
Image
8- downloaded openvpn or NMDVPN GUI client for windows
9- added certificates and config like bellow
files:
Image
config:
dev tun
proto tcp-client

remote 178.175.139.236 1194

tls-client
nobind
persist-key

ca ca.crt
cert arbabpc.crt
key arbabpc.key

#comp-lzo # Do not use compression.

# More reliable detection when a system loses its connection.
ping 15
ping-restart 45
ping-timer-rem
persist-tun
persist-key

mute-replay-warnings

verb 5

#cipher AES-256-CBC
cipher BF-CBC
auth SHA1
pull

auth-user-pass auth.cfg 
route 172.25.10.0 255.255.255.0
10- windows openvpn client connected
Thu Jan 19 21:28:46 2017 us=981000   config = 'mtik.ovpn'
Thu Jan 19 21:28:46 2017 us=981000   mode = 0
Thu Jan 19 21:28:46 2017 us=981000   show_ciphers = DISABLED
Thu Jan 19 21:28:46 2017 us=981000   show_digests = DISABLED
Thu Jan 19 21:28:46 2017 us=981000   show_engines = DISABLED
Thu Jan 19 21:28:46 2017 us=981000   genkey = DISABLED
Thu Jan 19 21:28:46 2017 us=981000   key_pass_file = '[UNDEF]'
Thu Jan 19 21:28:46 2017 us=981000   show_tls_ciphers = DISABLED
Thu Jan 19 21:28:46 2017 us=981000 Connection profiles [default]:
Thu Jan 19 21:28:46 2017 us=981000   proto = tcp-client
Thu Jan 19 21:28:46 2017 us=981000   local = '[UNDEF]'
Thu Jan 19 21:28:46 2017 us=981000   local_port = 0
Thu Jan 19 21:28:46 2017 us=981000   remote = '178.175.139.236'
Thu Jan 19 21:28:46 2017 us=981000   remote_port = 1194
Thu Jan 19 21:28:46 2017 us=981000   remote_float = DISABLED
Thu Jan 19 21:28:46 2017 us=981000   bind_defined = DISABLED
Thu Jan 19 21:28:46 2017 us=981000   bind_local = DISABLED
Thu Jan 19 21:28:46 2017 us=981000   connect_retry_seconds = 5
Thu Jan 19 21:28:46 2017 us=981000   connect_timeout = 10
Thu Jan 19 21:28:46 2017 us=981000   connect_retry_max = 0
Thu Jan 19 21:28:46 2017 us=981000   socks_proxy_server = '[UNDEF]'
Thu Jan 19 21:28:46 2017 us=981000   socks_proxy_port = 0
Thu Jan 19 21:28:46 2017 us=981000   socks_proxy_retry = DISABLED
Thu Jan 19 21:28:46 2017 us=981000 Connection profiles END
Thu Jan 19 21:28:46 2017 us=981000   remote_random = DISABLED
Thu Jan 19 21:28:46 2017 us=981000   ipchange = '[UNDEF]'
Thu Jan 19 21:28:46 2017 us=981000   dev = 'tun'
Thu Jan 19 21:28:46 2017 us=981000   dev_type = '[UNDEF]'
Thu Jan 19 21:28:46 2017 us=981000   dev_node = '[UNDEF]'
Thu Jan 19 21:28:46 2017 us=981000   lladdr = '[UNDEF]'
Thu Jan 19 21:28:46 2017 us=981000   topology = 1
Thu Jan 19 21:28:46 2017 us=981000   tun_ipv6 = DISABLED
Thu Jan 19 21:28:46 2017 us=981000   ifconfig_local = '[UNDEF]'
Thu Jan 19 21:28:46 2017 us=981000   ifconfig_remote_netmask = '[UNDEF]'
Thu Jan 19 21:28:46 2017 us=981000   ifconfig_noexec = DISABLED
Thu Jan 19 21:28:46 2017 us=981000   ifconfig_nowarn = DISABLED
Thu Jan 19 21:28:46 2017 us=981000   shaper = 0
Thu Jan 19 21:28:46 2017 us=981000   tun_mtu = 1500
Thu Jan 19 21:28:46 2017 us=981000   tun_mtu_defined = ENABLED
Thu Jan 19 21:28:46 2017 us=981000   link_mtu = 1500
Thu Jan 19 21:28:46 2017 us=981000   link_mtu_defined = DISABLED
Thu Jan 19 21:28:46 2017 us=981000   tun_mtu_extra = 0
Thu Jan 19 21:28:46 2017 us=981000   tun_mtu_extra_defined = DISABLED
Thu Jan 19 21:28:46 2017 us=981000   fragment = 0
Thu Jan 19 21:28:46 2017 us=981000   mtu_discover_type = -1
Thu Jan 19 21:28:46 2017 us=981000   mtu_test = 0
Thu Jan 19 21:28:46 2017 us=981000   mlock = DISABLED
Thu Jan 19 21:28:46 2017 us=981000   keepalive_ping = 0
Thu Jan 19 21:28:46 2017 us=981000   keepalive_timeout = 0
Thu Jan 19 21:28:46 2017 us=981000   inactivity_timeout = 0
Thu Jan 19 21:28:46 2017 us=981000   ping_send_timeout = 15
Thu Jan 19 21:28:46 2017 us=981000   ping_rec_timeout = 45
Thu Jan 19 21:28:46 2017 us=981000   ping_rec_timeout_action = 2
Thu Jan 19 21:28:46 2017 us=981000   ping_timer_remote = ENABLED
Thu Jan 19 21:28:46 2017 us=981000   remap_sigusr1 = 0
Thu Jan 19 21:28:46 2017 us=981000   explicit_exit_notification = 0
Thu Jan 19 21:28:46 2017 us=981000   persist_tun = ENABLED
Thu Jan 19 21:28:46 2017 us=981000   persist_local_ip = DISABLED
Thu Jan 19 21:28:46 2017 us=981000   persist_remote_ip = DISABLED
Thu Jan 19 21:28:46 2017 us=981000   persist_key = ENABLED
Thu Jan 19 21:28:46 2017 us=981000   mssfix = 1450
Thu Jan 19 21:28:46 2017 us=981000   resolve_retry_seconds = 1000000000
Thu Jan 19 21:28:46 2017 us=981000   username = '[UNDEF]'
Thu Jan 19 21:28:46 2017 us=981000   groupname = '[UNDEF]'
Thu Jan 19 21:28:46 2017 us=981000   chroot_dir = '[UNDEF]'
Thu Jan 19 21:28:46 2017 us=981000   cd_dir = '[UNDEF]'
Thu Jan 19 21:28:46 2017 us=981000   writepid = '[UNDEF]'
Thu Jan 19 21:28:47 2017 us=200000   up_script = '[UNDEF]'
Thu Jan 19 21:28:47 2017 us=200000   down_script = '[UNDEF]'
Thu Jan 19 21:28:47 2017 us=200000   down_pre = DISABLED
Thu Jan 19 21:28:47 2017 us=200000   up_restart = DISABLED
Thu Jan 19 21:28:47 2017 us=200000   up_delay = DISABLED
Thu Jan 19 21:28:47 2017 us=200000   daemon = DISABLED
Thu Jan 19 21:28:47 2017 us=200000   inetd = 0
Thu Jan 19 21:28:47 2017 us=200000   log = DISABLED
Thu Jan 19 21:28:47 2017 us=200000   suppress_timestamps = DISABLED
Thu Jan 19 21:28:47 2017 us=200000   nice = 0
Thu Jan 19 21:28:47 2017 us=200000   verbosity = 5
Thu Jan 19 21:28:47 2017 us=200000   mute = 0
Thu Jan 19 21:28:47 2017 us=200000   gremlin = 0
Thu Jan 19 21:28:47 2017 us=200000   status_file = '[UNDEF]'
Thu Jan 19 21:28:47 2017 us=200000   status_file_version = 1
Thu Jan 19 21:28:47 2017 us=215000   status_file_update_freq = 60
Thu Jan 19 21:28:47 2017 us=215000   occ = ENABLED
Thu Jan 19 21:28:47 2017 us=215000   rcvbuf = 0
Thu Jan 19 21:28:47 2017 us=215000   sndbuf = 0
Thu Jan 19 21:28:47 2017 us=215000   sockflags = 0
Thu Jan 19 21:28:47 2017 us=215000   fast_io = DISABLED
Thu Jan 19 21:28:47 2017 us=215000   lzo = 0
Thu Jan 19 21:28:47 2017 us=215000   route_script = '[UNDEF]'
Thu Jan 19 21:28:47 2017 us=215000   route_default_gateway = '[UNDEF]'
Thu Jan 19 21:28:47 2017 us=215000   route_default_metric = 0
Thu Jan 19 21:28:47 2017 us=215000   route_noexec = DISABLED
Thu Jan 19 21:28:47 2017 us=215000   route_delay = 5
Thu Jan 19 21:28:47 2017 us=215000   route_delay_window = 30
Thu Jan 19 21:28:47 2017 us=215000   route_delay_defined = ENABLED
Thu Jan 19 21:28:47 2017 us=215000   route_nopull = DISABLED
Thu Jan 19 21:28:47 2017 us=215000   route_gateway_via_dhcp = DISABLED
Thu Jan 19 21:28:47 2017 us=215000   max_routes = 100
Thu Jan 19 21:28:47 2017 us=215000   allow_pull_fqdn = DISABLED
Thu Jan 19 21:28:47 2017 us=215000   management_addr = '[UNDEF]'
Thu Jan 19 21:28:47 2017 us=215000   management_port = 0
Thu Jan 19 21:28:47 2017 us=215000   management_user_pass = '[UNDEF]'
Thu Jan 19 21:28:47 2017 us=215000   management_log_history_cache = 250
Thu Jan 19 21:28:47 2017 us=215000   management_echo_buffer_size = 100
Thu Jan 19 21:28:47 2017 us=215000   management_write_peer_info_file = '[UNDEF]'
Thu Jan 19 21:28:47 2017 us=215000   management_client_user = '[UNDEF]'
Thu Jan 19 21:28:47 2017 us=215000   management_client_group = '[UNDEF]'
Thu Jan 19 21:28:47 2017 us=215000   management_flags = 0
Thu Jan 19 21:28:47 2017 us=215000   shared_secret_file = '[UNDEF]'
Thu Jan 19 21:28:47 2017 us=215000   key_direction = 0
Thu Jan 19 21:28:47 2017 us=215000   ciphername_defined = ENABLED
Thu Jan 19 21:28:47 2017 us=215000   ciphername = 'BF-CBC'
Thu Jan 19 21:28:47 2017 us=231000   authname_defined = ENABLED
Thu Jan 19 21:28:47 2017 us=231000   authname = 'SHA1'
Thu Jan 19 21:28:47 2017 us=231000   prng_hash = 'SHA1'
Thu Jan 19 21:28:47 2017 us=231000   prng_nonce_secret_len = 16
Thu Jan 19 21:28:47 2017 us=231000   keysize = 0
Thu Jan 19 21:28:47 2017 us=231000   engine = DISABLED
Thu Jan 19 21:28:47 2017 us=231000   replay = ENABLED
Thu Jan 19 21:28:47 2017 us=231000   mute_replay_warnings = ENABLED
Thu Jan 19 21:28:47 2017 us=231000   replay_window = 64
Thu Jan 19 21:28:47 2017 us=231000   replay_time = 15
Thu Jan 19 21:28:47 2017 us=231000   packet_id_file = '[UNDEF]'
Thu Jan 19 21:28:47 2017 us=231000   use_iv = ENABLED
Thu Jan 19 21:28:47 2017 us=231000   test_crypto = DISABLED
Thu Jan 19 21:28:47 2017 us=231000   tls_server = DISABLED
Thu Jan 19 21:28:47 2017 us=231000   tls_client = ENABLED
Thu Jan 19 21:28:47 2017 us=231000   key_method = 2
Thu Jan 19 21:28:47 2017 us=231000   ca_file = 'ca.crt'
Thu Jan 19 21:28:47 2017 us=247000   ca_path = '[UNDEF]'
Thu Jan 19 21:28:47 2017 us=247000   dh_file = '[UNDEF]'
Thu Jan 19 21:28:47 2017 us=247000   cert_file = 'arbabpc.crt'
Thu Jan 19 21:28:47 2017 us=247000   priv_key_file = 'arbabpc.key'
Thu Jan 19 21:28:47 2017 us=247000   pkcs12_file = '[UNDEF]'
Thu Jan 19 21:28:47 2017 us=247000   cryptoapi_cert = '[UNDEF]'
Thu Jan 19 21:28:47 2017 us=247000   cipher_list = '[UNDEF]'
Thu Jan 19 21:28:47 2017 us=247000   tls_verify = '[UNDEF]'
Thu Jan 19 21:28:47 2017 us=247000   tls_remote = '[UNDEF]'
Thu Jan 19 21:28:47 2017 us=247000   crl_file = '[UNDEF]'
Thu Jan 19 21:28:47 2017 us=247000   ns_cert_type = 0
Thu Jan 19 21:28:47 2017 us=247000   remote_cert_ku[i] = 0
Thu Jan 19 21:28:47 2017 us=247000   remote_cert_ku[i] = 0
Thu Jan 19 21:28:47 2017 us=247000   remote_cert_ku[i] = 0
Thu Jan 19 21:28:47 2017 us=247000   remote_cert_ku[i] = 0
Thu Jan 19 21:28:47 2017 us=247000   remote_cert_ku[i] = 0
Thu Jan 19 21:28:47 2017 us=262000   remote_cert_ku[i] = 0
Thu Jan 19 21:28:47 2017 us=262000   remote_cert_ku[i] = 0
Thu Jan 19 21:28:47 2017 us=262000   remote_cert_ku[i] = 0
Thu Jan 19 21:28:47 2017 us=262000   remote_cert_ku[i] = 0
Thu Jan 19 21:28:47 2017 us=262000   remote_cert_ku[i] = 0
Thu Jan 19 21:28:47 2017 us=262000   remote_cert_ku[i] = 0
Thu Jan 19 21:28:47 2017 us=262000   remote_cert_ku[i] = 0
Thu Jan 19 21:28:47 2017 us=262000   remote_cert_ku[i] = 0
Thu Jan 19 21:28:47 2017 us=262000   remote_cert_ku[i] = 0
Thu Jan 19 21:28:47 2017 us=262000   remote_cert_ku[i] = 0
Thu Jan 19 21:28:47 2017 us=262000   remote_cert_ku[i] = 0
Thu Jan 19 21:28:47 2017 us=262000   remote_cert_eku = '[UNDEF]'
Thu Jan 19 21:28:47 2017 us=262000   tls_timeout = 2
Thu Jan 19 21:28:47 2017 us=262000   renegotiate_bytes = 0
Thu Jan 19 21:28:47 2017 us=262000   renegotiate_packets = 0
Thu Jan 19 21:28:47 2017 us=262000   renegotiate_seconds = 3600
Thu Jan 19 21:28:47 2017 us=262000   handshake_window = 60
Thu Jan 19 21:28:47 2017 us=278000   transition_window = 3600
Thu Jan 19 21:28:47 2017 us=278000   single_session = DISABLED
Thu Jan 19 21:28:47 2017 us=278000   push_peer_info = DISABLED
Thu Jan 19 21:28:47 2017 us=278000   tls_exit = DISABLED
Thu Jan 19 21:28:47 2017 us=278000   tls_auth_file = '[UNDEF]'
Thu Jan 19 21:28:47 2017 us=278000   pkcs11_protected_authentication = DISABLED
Thu Jan 19 21:28:47 2017 us=278000   pkcs11_protected_authentication = DISABLED
Thu Jan 19 21:28:47 2017 us=278000   pkcs11_protected_authentication = DISABLED
Thu Jan 19 21:28:47 2017 us=278000   pkcs11_protected_authentication = DISABLED
Thu Jan 19 21:28:47 2017 us=278000   pkcs11_protected_authentication = DISABLED
Thu Jan 19 21:28:47 2017 us=278000   pkcs11_protected_authentication = DISABLED
Thu Jan 19 21:28:47 2017 us=278000   pkcs11_protected_authentication = DISABLED
Thu Jan 19 21:28:47 2017 us=278000   pkcs11_protected_authentication = DISABLED
Thu Jan 19 21:28:47 2017 us=293000   pkcs11_protected_authentication = DISABLED
Thu Jan 19 21:28:47 2017 us=293000   pkcs11_protected_authentication = DISABLED
Thu Jan 19 21:28:47 2017 us=293000   pkcs11_protected_authentication = DISABLED
Thu Jan 19 21:28:47 2017 us=293000   pkcs11_protected_authentication = DISABLED
Thu Jan 19 21:28:47 2017 us=293000   pkcs11_protected_authentication = DISABLED
Thu Jan 19 21:28:47 2017 us=293000   pkcs11_protected_authentication = DISABLED
Thu Jan 19 21:28:47 2017 us=293000   pkcs11_protected_authentication = DISABLED
Thu Jan 19 21:28:47 2017 us=293000   pkcs11_protected_authentication = DISABLED
Thu Jan 19 21:28:47 2017 us=293000   pkcs11_private_mode = 00000000
Thu Jan 19 21:28:47 2017 us=293000   pkcs11_private_mode = 00000000
Thu Jan 19 21:28:47 2017 us=293000   pkcs11_private_mode = 00000000
Thu Jan 19 21:28:47 2017 us=293000   pkcs11_private_mode = 00000000
Thu Jan 19 21:28:47 2017 us=293000   pkcs11_private_mode = 00000000
Thu Jan 19 21:28:47 2017 us=309000   pkcs11_private_mode = 00000000
Thu Jan 19 21:28:47 2017 us=309000   pkcs11_private_mode = 00000000
Thu Jan 19 21:28:47 2017 us=309000   pkcs11_private_mode = 00000000
Thu Jan 19 21:28:47 2017 us=309000   pkcs11_private_mode = 00000000
Thu Jan 19 21:28:47 2017 us=309000   pkcs11_private_mode = 00000000
Thu Jan 19 21:28:47 2017 us=309000   pkcs11_private_mode = 00000000
Thu Jan 19 21:28:47 2017 us=309000   pkcs11_private_mode = 00000000
Thu Jan 19 21:28:47 2017 us=309000   pkcs11_private_mode = 00000000
Thu Jan 19 21:28:47 2017 us=309000   pkcs11_private_mode = 00000000
Thu Jan 19 21:28:47 2017 us=309000   pkcs11_private_mode = 00000000
Thu Jan 19 21:28:47 2017 us=309000   pkcs11_private_mode = 00000000
Thu Jan 19 21:28:47 2017 us=309000   pkcs11_cert_private = DISABLED
Thu Jan 19 21:28:47 2017 us=309000   pkcs11_cert_private = DISABLED
Thu Jan 19 21:28:47 2017 us=309000   pkcs11_cert_private = DISABLED
Thu Jan 19 21:28:47 2017 us=309000   pkcs11_cert_private = DISABLED
Thu Jan 19 21:28:47 2017 us=309000   pkcs11_cert_private = DISABLED
Thu Jan 19 21:28:47 2017 us=309000   pkcs11_cert_private = DISABLED
Thu Jan 19 21:28:47 2017 us=309000   pkcs11_cert_private = DISABLED
Thu Jan 19 21:28:47 2017 us=309000   pkcs11_cert_private = DISABLED
Thu Jan 19 21:28:47 2017 us=309000   pkcs11_cert_private = DISABLED
Thu Jan 19 21:28:47 2017 us=309000   pkcs11_cert_private = DISABLED
Thu Jan 19 21:28:47 2017 us=309000   pkcs11_cert_private = DISABLED
Thu Jan 19 21:28:47 2017 us=309000   pkcs11_cert_private = DISABLED
Thu Jan 19 21:28:47 2017 us=309000   pkcs11_cert_private = DISABLED
Thu Jan 19 21:28:47 2017 us=309000   pkcs11_cert_private = DISABLED
Thu Jan 19 21:28:47 2017 us=309000   pkcs11_cert_private = DISABLED
Thu Jan 19 21:28:47 2017 us=309000   pkcs11_cert_private = DISABLED
Thu Jan 19 21:28:47 2017 us=309000   pkcs11_pin_cache_period = -1
Thu Jan 19 21:28:47 2017 us=309000   pkcs11_id = '[UNDEF]'
Thu Jan 19 21:28:47 2017 us=309000   pkcs11_id_management = DISABLED
Thu Jan 19 21:28:47 2017 us=325000   server_network = 0.0.0.0
Thu Jan 19 21:28:47 2017 us=325000   server_netmask = 0.0.0.0
Thu Jan 19 21:28:47 2017 us=325000   server_bridge_ip = 0.0.0.0
Thu Jan 19 21:28:47 2017 us=325000   server_bridge_netmask = 0.0.0.0
Thu Jan 19 21:28:47 2017 us=325000   server_bridge_pool_start = 0.0.0.0
Thu Jan 19 21:28:47 2017 us=325000   server_bridge_pool_end = 0.0.0.0
Thu Jan 19 21:28:47 2017 us=325000   ifconfig_pool_defined = DISABLED
Thu Jan 19 21:28:47 2017 us=325000   ifconfig_pool_start = 0.0.0.0
Thu Jan 19 21:28:47 2017 us=325000   ifconfig_pool_end = 0.0.0.0
Thu Jan 19 21:28:47 2017 us=325000   ifconfig_pool_netmask = 0.0.0.0
Thu Jan 19 21:28:47 2017 us=325000   ifconfig_pool_persist_filename = '[UNDEF]'
Thu Jan 19 21:28:47 2017 us=325000   ifconfig_pool_persist_refresh_freq = 600
Thu Jan 19 21:28:47 2017 us=325000   n_bcast_buf = 256
Thu Jan 19 21:28:47 2017 us=325000   tcp_queue_limit = 64
Thu Jan 19 21:28:47 2017 us=325000   real_hash_size = 256
Thu Jan 19 21:28:47 2017 us=340000   virtual_hash_size = 256
Thu Jan 19 21:28:47 2017 us=340000   client_connect_script = '[UNDEF]'
Thu Jan 19 21:28:47 2017 us=340000   learn_address_script = '[UNDEF]'
Thu Jan 19 21:28:47 2017 us=340000   client_disconnect_script = '[UNDEF]'
Thu Jan 19 21:28:47 2017 us=340000   client_config_dir = '[UNDEF]'
Thu Jan 19 21:28:47 2017 us=340000   ccd_exclusive = DISABLED
Thu Jan 19 21:28:47 2017 us=340000   tmp_dir = '[UNDEF]'
Thu Jan 19 21:28:47 2017 us=340000   push_ifconfig_defined = DISABLED
Thu Jan 19 21:28:47 2017 us=340000   push_ifconfig_local = 0.0.0.0
Thu Jan 19 21:28:47 2017 us=340000   push_ifconfig_remote_netmask = 0.0.0.0
Thu Jan 19 21:28:47 2017 us=340000   enable_c2c = DISABLED
Thu Jan 19 21:28:47 2017 us=340000   duplicate_cn = DISABLED
Thu Jan 19 21:28:47 2017 us=340000   cf_max = 0
Thu Jan 19 21:28:47 2017 us=340000   cf_per = 0
Thu Jan 19 21:28:47 2017 us=340000   max_clients = 1024
Thu Jan 19 21:28:47 2017 us=340000   max_routes_per_client = 256
Thu Jan 19 21:28:47 2017 us=356000   auth_user_pass_verify_script = '[UNDEF]'
Thu Jan 19 21:28:47 2017 us=356000   auth_user_pass_verify_script_via_file = DISABLED
Thu Jan 19 21:28:47 2017 us=356000   ssl_flags = 0
Thu Jan 19 21:28:47 2017 us=356000   client = DISABLED
Thu Jan 19 21:28:47 2017 us=356000   pull = ENABLED
Thu Jan 19 21:28:47 2017 us=356000   auth_user_pass_file = 'auth.cfg'
Thu Jan 19 21:28:47 2017 us=356000   show_net_up = DISABLED
Thu Jan 19 21:28:47 2017 us=356000   route_method = 0
Thu Jan 19 21:28:47 2017 us=356000   ip_win32_defined = DISABLED
Thu Jan 19 21:28:47 2017 us=356000   ip_win32_type = 3
Thu Jan 19 21:28:47 2017 us=356000   dhcp_masq_offset = 0
Thu Jan 19 21:28:47 2017 us=356000   dhcp_lease_time = 31536000
Thu Jan 19 21:28:47 2017 us=356000   tap_sleep = 0
Thu Jan 19 21:28:47 2017 us=356000   dhcp_options = DISABLED
Thu Jan 19 21:28:47 2017 us=356000   dhcp_renew = DISABLED
Thu Jan 19 21:28:47 2017 us=356000   dhcp_pre_release = DISABLED
Thu Jan 19 21:28:47 2017 us=356000   dhcp_release = DISABLED
Thu Jan 19 21:28:47 2017 us=356000   domain = '[UNDEF]'
Thu Jan 19 21:28:47 2017 us=356000   netbios_scope = '[UNDEF]'
Thu Jan 19 21:28:47 2017 us=356000   netbios_node_type = 0
Thu Jan 19 21:28:47 2017 us=356000   disable_nbt = DISABLED
Thu Jan 19 21:28:47 2017 us=356000 NMDVPN 2.1.4 i686-pc-mingw32 [SSL] [LZO2] [PKCS11] built on Apr 25 2011
Thu Jan 19 21:28:47 2017 us=356000 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
Thu Jan 19 21:28:47 2017 us=371000 NOTE: NMDVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Thu Jan 19 21:28:47 2017 us=481000 Control Channel MTU parms [ L:1543 D:140 EF:40 EB:0 ET:0 EL:0 ]
Thu Jan 19 21:28:47 2017 us=481000 Socket Buffers: R=[8192->8192] S=[8192->8192]
Thu Jan 19 21:28:47 2017 us=481000 Data Channel MTU parms [ L:1543 D:1450 EF:43 EB:4 ET:0 EL:0 ]
Thu Jan 19 21:28:47 2017 us=481000 Local Options String: 'V4,dev-type tun,link-mtu 1543,tun-mtu 1500,proto TCPv4_CLIENT,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Thu Jan 19 21:28:47 2017 us=481000 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1543,tun-mtu 1500,proto TCPv4_SERVER,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Thu Jan 19 21:28:47 2017 us=481000 Local Options hash (VER=V4): 'db02a8f8'
Thu Jan 19 21:28:47 2017 us=481000 Expected Remote Options hash (VER=V4): '7e068940'
Thu Jan 19 21:28:47 2017 us=481000 Attempting to establish TCP connection with 178.175.139.236:1194
Thu Jan 19 21:28:47 2017 us=715000 TCP connection established with 178.175.139.236:1194
Thu Jan 19 21:28:47 2017 us=715000 TCPv4_CLIENT link local: [undef]
Thu Jan 19 21:28:47 2017 us=715000 TCPv4_CLIENT link remote: 178.175.139.236:1194
Thu Jan 19 21:28:47 2017 us=917000 TLS: Initial packet from 178.175.139.236:1194, sid=2a272420 3ec41ed9
Thu Jan 19 21:28:48 2017 us=136000 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Thu Jan 19 21:28:48 2017 us=588000 VERIFY OK: depth=1, /C=US/ST=CA/L=SanFrancisco/O=Fort-Funston/OU=MyOrganizationalUnit/CN=84.200.32.197/name=EasyRSA/emailAddress=me@myhost.mydomain
Thu Jan 19 21:28:48 2017 us=588000 VERIFY OK: depth=0, /C=US/ST=CA/L=SanFrancisco/O=Fort-Funston/OU=MyOrganizationalUnit/CN=84.200.32.197/name=EasyRSA/emailAddress=me@myhost.mydomain
Thu Jan 19 21:28:50 2017 us=367000 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
Thu Jan 19 21:28:50 2017 us=367000 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Thu Jan 19 21:28:50 2017 us=367000 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
Thu Jan 19 21:28:50 2017 us=367000 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Thu Jan 19 21:28:50 2017 us=367000 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA
Thu Jan 19 21:28:50 2017 us=367000 [84.200.32.197] Peer Connection Initiated with 178.175.139.236:1194
Thu Jan 19 21:28:52 2017 us=769000 SENT CONTROL [84.200.32.197]: 'PUSH_REQUEST' (status=1)
Thu Jan 19 21:28:58 2017 us=182000 SENT CONTROL [84.200.32.197]: 'PUSH_REQUEST' (status=1)
Thu Jan 19 21:29:03 2017 us=440000 SENT CONTROL [84.200.32.197]: 'PUSH_REQUEST' (status=1)
Thu Jan 19 21:29:03 2017 us=674000 PUSH: Received control message: 'PUSH_REPLY,ping 20,ping-restart 60,route 172.25.10.0 255.255.255.0,ifconfig 172.25.10.2 172.25.10.1'
Thu Jan 19 21:29:03 2017 us=674000 OPTIONS IMPORT: timers and/or timeouts modified
Thu Jan 19 21:29:03 2017 us=674000 OPTIONS IMPORT: --ifconfig/up options modified
Thu Jan 19 21:29:03 2017 us=674000 OPTIONS IMPORT: route options modified
Thu Jan 19 21:29:03 2017 us=689000 ROUTE default_gateway=192.168.1.1
Thu Jan 19 21:29:03 2017 us=689000 TAP-WIN32 device [Local Area Connection 2] opened: \\.\Global\{B6F189A3-E002-467F-939E-4D563F20A795}.tap
Thu Jan 19 21:29:03 2017 us=689000 TAP-Win32 Driver Version 9.21 
Thu Jan 19 21:29:03 2017 us=689000 TAP-Win32 MTU=1500
Thu Jan 19 21:29:03 2017 us=689000 Notified TAP-Win32 driver to set a DHCP IP/netmask of 172.25.10.2/255.255.255.252 on interface {B6F189A3-E002-467F-939E-4D563F20A795} [DHCP-serv: 172.25.10.1, lease-time: 31536000]
Thu Jan 19 21:29:03 2017 us=689000 Successful ARP Flush on interface [17] {B6F189A3-E002-467F-939E-4D563F20A795}
Thu Jan 19 21:29:08 2017 us=135000 TEST ROUTES: 1/1 succeeded len=1 ret=1 a=0 u/d=up
Thu Jan 19 21:29:08 2017 us=135000 C:\WINDOWS\system32\route.exe ADD 172.25.10.0 MASK 255.255.255.0 172.25.10.1
Thu Jan 19 21:29:08 2017 us=135000 ROUTE: CreateIpForwardEntry succeeded with dwForwardMetric1=20 and dwForwardType=4
Thu Jan 19 21:29:08 2017 us=135000 Route addition via IPAPI succeeded [adaptive]
Thu Jan 19 21:29:08 2017 us=135000 Initialization Sequence Completed
11- when check if my public ip has changed found it still use ISP IP ( traffic not routing via mikrotik openvpn) ??
12- tracert or MTR tool shows that data not going through openvpn , what is step to make all date goes through vpn ??

Who is online

Users browsing this forum: dedysobr, eworm, fusa and 97 guests