This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

OpenVPN 200+Mb traffic with no clients connected?

I look at my daily Top Applications traffic and I see OpenVPN 200+mb traffic almost daily.
I check on the Remote Access activity log and I see no connections I check the Session tab and I see no past history of connected users. Yet the traffic is still there....where does it go and where does it come from?

My log file for SSL VPN looks like this (one day snapshot):


2014:12:17-00:00:02 BeyondTheRim openvpn[4485]: MANAGEMENT: Client connected from /var/run/openvpn_mgmt

2014:12:17-00:00:02 BeyondTheRim openvpn[4485]: MANAGEMENT: CMD 'status -1'

2014:12:17-00:00:12 BeyondTheRim openvpn[4485]: MANAGEMENT: Client disconnected

2014:12:17-00:10:38 BeyondTheRim openvpn[4485]: MANAGEMENT: Client connected from /var/run/openvpn_mgmt

2014:12:17-00:10:38 BeyondTheRim openvpn[4485]: MANAGEMENT: CMD 'status -1'

2014:12:17-00:10:48 BeyondTheRim openvpn[4485]: MANAGEMENT: Client disconnected

2014:12:17-02:10:27 BeyondTheRim openvpn[4485]: MANAGEMENT: Client connected from /var/run/openvpn_mgmt

2014:12:17-02:10:27 BeyondTheRim openvpn[4485]: MANAGEMENT: CMD 'status -1'

2014:12:17-02:10:37 BeyondTheRim openvpn[4485]: MANAGEMENT: Client disconnected

2014:12:17-04:10:32 BeyondTheRim openvpn[4485]: MANAGEMENT: Client connected from /var/run/openvpn_mgmt

2014:12:17-04:10:32 BeyondTheRim openvpn[4485]: MANAGEMENT: CMD 'status -1'

2014:12:17-04:10:42 BeyondTheRim openvpn[4485]: MANAGEMENT: Client disconnected

2014:12:17-04:29:49 BeyondTheRim openvpn[4485]: TCP connection established with [AF_INET]66.240.192.138:41542 (via [AF_INET]50.130.149.178:443)

2014:12:17-04:29:49 BeyondTheRim openvpn[4485]: 66.240.192.138:41542 Non-OpenVPN client protocol detected

2014:12:17-04:29:49 BeyondTheRim openvpn[4485]: 66.240.192.138:41542 SIGTERM[soft,port-share-redirect] received, client-instance exiting

2014:12:17-05:55:53 BeyondTheRim openvpn[4485]: MANAGEMENT: Client connected from /var/run/openvpn_mgmt

2014:12:17-05:55:53 BeyondTheRim openvpn[4485]: MANAGEMENT: CMD 'status -1'

2014:12:17-05:56:03 BeyondTheRim openvpn[4485]: MANAGEMENT: Client disconnected

2014:12:17-06:10:28 BeyondTheRim openvpn[4485]: MANAGEMENT: Client connected from /var/run/openvpn_mgmt

2014:12:17-06:10:28 BeyondTheRim openvpn[4485]: MANAGEMENT: CMD 'status -1'

2014:12:17-06:10:38 BeyondTheRim openvpn[4485]: MANAGEMENT: Client disconnected

2014:12:17-06:55:20 BeyondTheRim openvpn[4485]: MANAGEMENT: Client connected from /var/run/openvpn_mgmt

2014:12:17-06:55:20 BeyondTheRim openvpn[4485]: MANAGEMENT: CMD 'status -1'

2014:12:17-06:55:30 BeyondTheRim openvpn[4485]: MANAGEMENT: Client disconnected

2014:12:17-07:55:16 BeyondTheRim openvpn[4485]: MANAGEMENT: Client connected from /var/run/openvpn_mgmt

2014:12:17-07:55:16 BeyondTheRim openvpn[4485]: MANAGEMENT: CMD 'status -1'

2014:12:17-07:55:26 BeyondTheRim openvpn[4485]: MANAGEMENT: Client disconnected

2014:12:17-08:10:31 BeyondTheRim openvpn[4485]: MANAGEMENT: Client connected from /var/run/openvpn_mgmt

2014:12:17-08:10:31 BeyondTheRim openvpn[4485]: MANAGEMENT: CMD 'status -1'

2014:12:17-08:10:41 BeyondTheRim openvpn[4485]: MANAGEMENT: Client disconnected

2014:12:17-08:55:22 BeyondTheRim openvpn[4485]: MANAGEMENT: Client connected from /var/run/openvpn_mgmt

2014:12:17-08:55:22 BeyondTheRim openvpn[4485]: MANAGEMENT: CMD 'status -1'

2014:12:17-08:55:32 BeyondTheRim openvpn[4485]: MANAGEMENT: Client disconnected

2014:12:17-09:55:21 BeyondTheRim openvpn[4485]: MANAGEMENT: Client connected from /var/run/openvpn_mgmt

2014:12:17-09:55:21 BeyondTheRim openvpn[4485]: MANAGEMENT: CMD 'status -1'

2014:12:17-09:55:31 BeyondTheRim openvpn[4485]: MANAGEMENT: Client disconnected

2014:12:17-10:10:24 BeyondTheRim openvpn[4485]: MANAGEMENT: Client connected from /var/run/openvpn_mgmt

2014:12:17-10:10:24 BeyondTheRim openvpn[4485]: MANAGEMENT: CMD 'status -1'

2014:12:17-10:10:34 BeyondTheRim openvpn[4485]: MANAGEMENT: Client disconnected

2014:12:17-10:55:16 BeyondTheRim openvpn[4485]: MANAGEMENT: Client connected from /var/run/openvpn_mgmt

2014:12:17-10:55:16 BeyondTheRim openvpn[4485]: MANAGEMENT: CMD 'status -1'

2014:12:17-10:55:26 BeyondTheRim openvpn[4485]: MANAGEMENT: Client disconnected

This thread was automatically locked due to age.

0 BarryG over 10 years ago

Hi, I believe there's another post about this recently.

It's possible that, if OpenVPN is running on port 443, the accounting system is confusing other https traffic.

Barry
Cancel
Vote Up 0 Vote Down

Cancel
0 grammatonclerick over 10 years ago in reply to BarryG

Hi, I believe there's another post about this recently.

It's possible that, if OpenVPN is running on port 443, the accounting system is confusing other https traffic.

Barry

Ahh understood and yes it's running on 443.
Cancel
Vote Up 0 Vote Down

Cancel