SSL VPN connection works fine but the LAN cannot be reached.
I get error:The networkname cannot be found.
Also no reply on ping commands.
SSL setup:
Local Networks Internal 10.0.0.0/16 + VPN Pool 10.242.2.0/24
Automatic packet filter rules
Log:
Fri Jun 10 14:06:08 2011 OpenVPN 2.1.1 i686-pc-cygwin [SSL] [LZO2] built on May 7 2010
Fri Jun 10 14:06:20 2011 WARNING: Make sure you understand the semantics of --tls-remote before using it (see the man page).
Fri Jun 10 14:06:20 2011 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Fri Jun 10 14:06:20 2011 LZO compression initialized
Fri Jun 10 14:06:20 2011 Control Channel MTU parms [ L:1556 D:140 EF:40 EB:0 ET:0 EL:0 ]
Fri Jun 10 14:06:20 2011 Data Channel MTU parms [ L:1556 D:1450 EF:56 EB:135 ET:0 EL:0 AF:3/1 ]
Fri Jun 10 14:06:20 2011 Local Options hash (VER=V4): '619078b2'
Fri Jun 10 14:06:20 2011 Expected Remote Options hash (VER=V4): 'a4f82474'
Fri Jun 10 14:06:20 2011 Attempting to establish TCP connection with 83.82.***.***:443
Fri Jun 10 14:06:22 2011 TCP connection established with 83.82.***.***:443
Fri Jun 10 14:06:22 2011 Socket Buffers: R=[8192->8192] S=[64512->64512]
Fri Jun 10 14:06:22 2011 TCPv4_CLIENT link local: [undef]
Fri Jun 10 14:06:22 2011 TCPv4_CLIENT link remote: 83.82.***.***:443
Fri Jun 10 14:06:22 2011 TLS: Initial packet from 83.82.***.***:443, sid=805a1002 677e1f23
Fri Jun 10 14:06:22 2011 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Fri Jun 10 14:06:24 2011 VERIFY OK: depth=1, /C=nl/=L******************************************************x
Fri Jun 10 14:06:24 2011 VERIFY X509NAME OK: /C=nl/L=******************************************************x
Fri Jun 10 14:06:24 2011 VERIFY OK: depth=0, /C=nl/L=************************************************x
Fri Jun 10 14:06:27 2011 Data Channel Encrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
Fri Jun 10 14:06:27 2011 Data Channel Encrypt: Using 128 bit message hash 'MD5' for HMAC authentication
Fri Jun 10 14:06:27 2011 Data Channel Decrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
Fri Jun 10 14:06:27 2011 Data Channel Decrypt: Using 128 bit message hash 'MD5' for HMAC authentication
Fri Jun 10 14:06:27 2011 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
Fri Jun 10 14:06:27 2011 [******************x] Peer Connection Initiated with 83.82.***.***:443
Fri Jun 10 14:06:29 2011 SENT CONTROL [******************x]: 'PUSH_REQUEST' (status=1)
Fri Jun 10 14:06:29 2011 PUSH: Received control message: 'PUSH_REPLY,route remote_host 255.255.255.255 net_gateway,route 10.242.2.0 255.255.255.0,route 10.242.2.1,topology net30,ping 10,ping-restart 120,ifconfig 10.242.2.6 10.242.2.5'
Fri Jun 10 14:06:29 2011 OPTIONS IMPORT: timers and/or timeouts modified
Fri Jun 10 14:06:29 2011 OPTIONS IMPORT: --ifconfig/up options modified
Fri Jun 10 14:06:29 2011 OPTIONS IMPORT: route options modified
Fri Jun 10 14:06:29 2011 ROUTE default_gateway=192.168.21.1
Fri Jun 10 14:06:29 2011 TAP-WIN32 device [Local Area Connection 3] opened: \.\Global\{A20888DF-1CBD-4A50-B77A-8BC8A4582FB4}.tap
Fri Jun 10 14:06:29 2011 TAP-Win32 Driver Version 9.6
Fri Jun 10 14:06:29 2011 TAP-Win32 MTU=1500
Fri Jun 10 14:06:29 2011 Notified TAP-Win32 driver to set a DHCP IP/netmask of 10.242.2.6/255.255.255.252 on interface {A20889DF-1CBD-4A50-B75A-8BC8A4582FB4} [DHCP-serv: 10.242.2.5, lease-time: 31536000]
Fri Jun 10 14:06:29 2011 Successful ARP Flush on interface [39] {A20883DF-1CBD-4A50-B75A-8BC8A4582FB4}
Fri Jun 10 14:06:34 2011 TEST ROUTES: 3/3 succeeded len=3 ret=1 a=0 u/d=up
Fri Jun 10 14:06:34 2011 C:\WINDOWS\system32\route.exe ADD 83.82.***.*** MASK 255.255.255.255 192.168.21.1
Fri Jun 10 14:06:34 2011 ROUTE: CreateIpForwardEntry succeeded with dwForwardMetric1=40 and dwForwardType=4
Fri Jun 10 14:06:34 2011 Route addition via IPAPI succeeded [adaptive]
Fri Jun 10 14:06:34 2011 C:\WINDOWS\system32\route.exe ADD 10.242.2.0 MASK 255.255.255.0 10.242.2.5
Fri Jun 10 14:06:34 2011 ROUTE: CreateIpForwardEntry succeeded with dwForwardMetric1=30 and dwForwardType=4
Fri Jun 10 14:06:34 2011 Route addition via IPAPI succeeded [adaptive]
Fri Jun 10 14:06:34 2011 C:\WINDOWS\system32\route.exe ADD 10.242.2.1 MASK 255.255.255.255 10.242.2.5
Fri Jun 10 14:06:34 2011 ROUTE: CreateIpForwardEntry succeeded with dwForwardMetric1=30 and dwForwardType=4
Fri Jun 10 14:06:34 2011 Route addition via IPAPI succeeded [adaptive]
Fri Jun 10 14:06:34 2011 Initialization Sequence Completed
Fri Jun 10 14:15:35 2011 TCP/UDP: Closing socket
Fri Jun 10 14:15:35 2011 C:\WINDOWS\system32\route.exe DELETE 10.242.2.1 MASK 255.255.255.255 10.242.2.5
Fri Jun 10 14:15:35 2011 Route deletion via IPAPI succeeded [adaptive]
Fri Jun 10 14:15:35 2011 C:\WINDOWS\system32\route.exe DELETE 10.242.2.0 MASK 255.255.255.0 10.242.2.5
Fri Jun 10 14:15:35 2011 Route deletion via IPAPI succeeded [adaptive]
Fri Jun 10 14:15:35 2011 C:\WINDOWS\system32\route.exe DELETE 83.82.***.*** MASK 255.255.255.255 192.168.21.1
Fri Jun 10 14:15:35 2011 Route deletion via IPAPI succeeded [adaptive]
Fri Jun 10 14:15:35 2011 Closing TUN/TAP interface
Fri Jun 10 14:15:35 2011 SIGTERM[hard,] received, process exiting
This thread was automatically locked due to age.
Guest User!
You are not Sophos Staff.
