FreeBSD Mail Archives

Date:      Tue, 16 Aug 2011 14:23:25 GMT
From:      Jean Aumont <JeanAumont@gmail.com>
To:        freebsd-gnats-submit@FreeBSD.org
Subject:   i386/159817: write UDPv4: No buffer space available (code=55)
Message-ID:  <201108161423.p7GENP2e063076@red.freebsd.org>
Resent-Message-ID: <201108161430.p7GEU7f0067774@freefall.freebsd.org>

next in thread | raw e-mail | index | archive | help


>Number:         159817
>Category:       i386
>Synopsis:       write UDPv4: No buffer space available (code=55)
>Confidential:   no
>Severity:       serious
>Priority:       medium
>Responsible:    freebsd-i386
>State:          open
>Quarter:        
>Keywords:       
>Date-Required:
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Tue Aug 16 14:30:07 UTC 2011
>Closed-Date:
>Last-Modified:
>Originator:     Jean Aumont
>Release:        8.2
>Organization:
>Environment:
FreeBSD Client.dev.mediagrif.com 8.2-RELEASE FreeBSD 8.2-RELEASE #0: Fri Feb 18 02:24:46 UTC 2011     root@almeida.cse.buffalo.edu:/usr/obj/usr/src/sys/GENERIC  i386

>Description:
Keywords: FreeBSD 8.2, OpenVPN 2.0.9_1, OpenVPN 2.2.1, Quagga 0.99.17_5
Error   : openvpn[...]: write UDPv4: No buffer space available (code=55)
  
Hi Everyone,

I would like to report a bug that I found while doing some testing of OpenVPN 
in TAP (Bridge) mode while using quagga with ospf on FreeBSD8.2

After running for a while, I get the following message in the logs:
openvpn[...]: write UDPv4: No buffer space available (code=55)

The bug was initially discovered using 3 PHYSICAL machine running FreeBSD 8.2, 
OpenVPN 2.0.9_1 or 2.2.1, and the routing software Quagga 0.99.17_5 but can easily reproduce with virtual machine.

The plan was to have the OpenVPN server announce route to OpenVPN client using 
the OSPF daemon of Quagga (a routing software). 

I am not sure if the bug is in quagga, flodding the freebsd buffers or in 
openvpn .... or some sort of sysctl setting needs to be configure to support this amount of UDP packets going through the OpenVPN tunnel.

You can find in attachment the configuration files that I used.
>How-To-Repeat:
The bug can also be replicated using 3 virtual machine under Oracle Virtual Box.

Here is the set-up under Oracle Virtual Box. 
                                 
OpenVPN            VboxNet1        Router           VboxNet2    OpenVPN           
Server             3.3.3.1                          4.4.4.1     Client
em1-3.3.3.2     ..............  em0-3.3.3.4     ..............  em1-4.4.4.2  
em0-Lan (DHCP)                  em1-4.4.4.4                     em0-10.10.10.10
                                                                    
1) Start OpenVPN server and client (No problem).
   -- The OpenVPN server acquire the ip 172.16.10.1 
   -- The OpenVPN client acquire the ip 172.16.10.2
   -- The tunnel is up and running perfectly

2) Start the quagga routing daemon.
   -- Initially the OSPF protocol is communicating properly and the OpenVPN 
      serverand client are being seen as neighbor.

      If you are not familior with quagga, you can see this by typing:
         vtysh
         sh ip ospf neighbor (repeat the command as necessary)
         exit
    -- After a few seconds, the adjencency is lost ...
       
3) When this appends, the OpenVPN log on the Server and Clients are 
   full of this error:

   openvpn[...]: write UDPv4: No buffer space available (code=55)



>Fix:


Patch attached with submission follows:

Keywords: FreeBSD 8.2, OpenVPN 2.0.9_1, OpenVPN 2.2.1, Quagga 0.99.17_5
Error   : openvpn[...]: write UDPv4: No buffer space available (code=55)
  
Hi Everyone,

I would like to report a bug that I found while doing some testing of OpenVPN 
in TAP (Bridge) mode while using quagga with ospf.

The bug was initially discovered using 3 PHYSICAL machine running FreeBSD 8.2, 
OpenVPN 2.0.9_1 or 2.2.1, and the routing software Quagga 0.99.17_5. 

The bug can also be replicated using 3 virtual machine under Oracle Virtual Box.

The plan was to have the OpenVPN server announce route to OpenVPN client using 
the OSPF daemon of Quagga (a routing software). 

Here is the set-up under Oracle Virtual Box. 
                                 
OpenVPN            VboxNet1        Router           VboxNet2    OpenVPN           
Server             3.3.3.1                          4.4.4.1     Client
em1-3.3.3.2     ..............  em0-3.3.3.4     ..............  em1-4.4.4.2  
em0-Lan (DHCP)                  em1-4.4.4.4                     em0-10.10.10.10
                                                                    Vboxnet3

The same set-up was used with the phisical machine with the same results.

I am not sure if the bug is in quagga, flodding the freebsd buffers or in 
openvpn ....

===============================================================================
You can dupplicate the problem easily following those steps:
===============================================================================

1) Start OpenVPN server and client (No problem).
   -- The OpenVPN server acquire the ip 172.16.10.1 
   -- The OpenVPN client acquire the ip 172.16.10.2
   -- The tunnel is up and running perfectly

2) Start the quagga routing daemon.
   -- Initially the OSPF protocol is communicating properly and the OpenVPN 
      serverand client are being seen as neighbor.

      If you are not familior with quagga, you can see this by typing:
         vtysh
         sh ip ospf neighbor (repeat the command as necessary)
         exit
    -- After a few seconds, the adjencency is lost ...
       
3) When this appends, the OpenVPN log on the Server and Clients are 
   full of this error:

   openvpn[...]: write UDPv4: No buffer space available (code=55)

===============================================================================
Here are the OpenVPN config used:
===============================================================================

Server# cat /usr/local/etc/openvpn/server1.conf 
dev tap
script-security 3
daemon
keepalive 10 60
ping-timer-rem
proto udp
cipher BF-CBC
local 3.3.3.2
tls-server
server 172.16.10.0 255.255.255.0
lport 1194
max-clients 100
ca /usr/local/etc/openvpn/server1.ca 
cert /usr/local/etc/openvpn/server1.cert 
key /usr/local/etc/openvpn/server1.key 
dh /etc/dh-parameters.1024
comp-lzo
persist-remote-ip
float
log /var/log/openvpn.log
verb 5

Client# cat /usr/local/etc/openvpn/openvpn.conf
client
dev tap
proto udp
script-security 3
remote 3.3.3.2
ping 10
cipher BF-CBC
resolv-retry infinite
nobind
ca /usr/local/etc/openvpn/Client.crt
cert /usr/local/etc/openvpn/AClient.crt
key /usr/local/etc/openvpn/AClient.key
comp-lzo
verb 5
log /var/log/openvpn.log
Client#

===============================================================================
Here are the Quagga configuration
===============================================================================
Server# vtysh

Hello, this is Quagga (version 0.99.17).
Copyright 1996-2005 Kunihiro Ishiguro, et al.

Server# sh run
Building configuration...

Current configuration:
!
hostname Server-Zebra
log file /usr/local/log/quagga.log
log stdout
hostname Server-Ospfd
!
debug ospf event
debug ospf packet all
!
password zebra
enable password zebra
!
interface em0
 ipv6 nd suppress-ra
!
interface em1
 ipv6 nd suppress-ra
!
interface lo0
 ip address 10.90.40.40/32
!
interface tap0
 ip ospf authentication message-digest
 ip ospf cost 100
 ip ospf message-digest-key 1 md5 BBBB
 ipv6 nd suppress-ra
!
router ospf
 redistribute connected
 redistribute static
 network 10.90.40.40/32 area 100.100.100.100
 network 172.16.10.0/24 area 100.100.100.100
 area 100.100.100.100 authentication message-digest
!
ip forwarding
!
line vty
!
end


Client# vtysh

Hello, this is Quagga (version 0.99.17).
Copyright 1996-2005 Kunihiro Ishiguro, et al.

Client# sh run
Building configuration...

Current configuration:
!
hostname Client-Zebra
log file /usr/local/log/quagga.log
log stdout
hostname Client-Ospfd
!
debug ospf event
debug ospf packet all
!
password zebra
enable password zebra
!
interface em0
 ipv6 nd suppress-ra
!
interface em1
 ipv6 nd suppress-ra
!
interface lo0
 ip address 10.90.50.50/32
 ip ospf authentication message-digest
!
interface tap0
 ip ospf authentication message-digest
 ip ospf cost 100
 ip ospf message-digest-key 1 md5 BBBB
 ipv6 nd suppress-ra
!
router ospf
 redistribute connected
 redistribute static
 network 10.10.10.0/24 area 100.100.100.100
 network 10.90.50.50/32 area 100.100.100.100
 network 172.16.10.0/24 area 100.100.100.100
 area 100.100.100.100 authentication message-digest
!
ip forwarding
!
line vty
!
end

===============================================================================
Here are the OpenVPN Logs 
===============================================================================
-- On the server

Mon Aug 15 11:27:46 2011 us=909159 Current Parameter Settings:
Mon Aug 15 11:27:46 2011 us=909740   config = '/usr/local/etc/openvpn/server1.conf'
Mon Aug 15 11:27:46 2011 us=909859   mode = 1
Mon Aug 15 11:27:46 2011 us=909961   show_ciphers = DISABLED
Mon Aug 15 11:27:46 2011 us=910052   show_digests = DISABLED
Mon Aug 15 11:27:46 2011 us=910131   show_engines = DISABLED
Mon Aug 15 11:27:46 2011 us=910203   genkey = DISABLED
Mon Aug 15 11:27:46 2011 us=910266   key_pass_file = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=910323   show_tls_ciphers = DISABLED
Mon Aug 15 11:27:46 2011 us=910380 Connection profiles [default]:
Mon Aug 15 11:27:46 2011 us=910428   proto = udp
Mon Aug 15 11:27:46 2011 us=910471   local = '3.3.3.2'
Mon Aug 15 11:27:46 2011 us=910510   local_port = 1194
Mon Aug 15 11:27:46 2011 us=910546   remote = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=910580   remote_port = 1194
Mon Aug 15 11:27:46 2011 us=910611   remote_float = ENABLED
Mon Aug 15 11:27:46 2011 us=910640   bind_defined = DISABLED
Mon Aug 15 11:27:46 2011 us=910668   bind_local = ENABLED
Mon Aug 15 11:27:46 2011 us=910695   connect_retry_seconds = 5
Mon Aug 15 11:27:46 2011 us=910720   connect_timeout = 10
Mon Aug 15 11:27:46 2011 us=910744   connect_retry_max = 0
Mon Aug 15 11:27:46 2011 us=910768   socks_proxy_server = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=910790   socks_proxy_port = 0
Mon Aug 15 11:27:46 2011 us=910813   socks_proxy_retry = DISABLED
Mon Aug 15 11:27:46 2011 us=910839 Connection profiles END
Mon Aug 15 11:27:46 2011 us=910861   remote_random = DISABLED
Mon Aug 15 11:27:46 2011 us=910881   ipchange = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=910901   dev = 'tap'
Mon Aug 15 11:27:46 2011 us=910921   dev_type = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=910941   dev_node = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=910960   lladdr = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=910979   topology = 1
Mon Aug 15 11:27:46 2011 us=910998   tun_ipv6 = DISABLED
Mon Aug 15 11:27:46 2011 us=911016   ifconfig_local = '172.16.10.1'
Mon Aug 15 11:27:46 2011 us=911034   ifconfig_remote_netmask = '255.255.255.0'
Mon Aug 15 11:27:46 2011 us=911077   ifconfig_noexec = DISABLED
Mon Aug 15 11:27:46 2011 us=911096   ifconfig_nowarn = DISABLED
Mon Aug 15 11:27:46 2011 us=911114   shaper = 0
Mon Aug 15 11:27:46 2011 us=911152   tun_mtu = 1500
Mon Aug 15 11:27:46 2011 us=911174   tun_mtu_defined = ENABLED
Mon Aug 15 11:27:46 2011 us=911192   link_mtu = 1500
Mon Aug 15 11:27:46 2011 us=911210   link_mtu_defined = DISABLED
Mon Aug 15 11:27:46 2011 us=911228   tun_mtu_extra = 32
Mon Aug 15 11:27:46 2011 us=911246   tun_mtu_extra_defined = ENABLED
Mon Aug 15 11:27:46 2011 us=911270   fragment = 0
Mon Aug 15 11:27:46 2011 us=911288   mtu_discover_type = -1
Mon Aug 15 11:27:46 2011 us=911306   mtu_test = 0
Mon Aug 15 11:27:46 2011 us=911324   mlock = DISABLED
Mon Aug 15 11:27:46 2011 us=911342   keepalive_ping = 10
Mon Aug 15 11:27:46 2011 us=911359   keepalive_timeout = 60
Mon Aug 15 11:27:46 2011 us=911377   inactivity_timeout = 0
Mon Aug 15 11:27:46 2011 us=911395   ping_send_timeout = 10
Mon Aug 15 11:27:46 2011 us=911413   ping_rec_timeout = 120
Mon Aug 15 11:27:46 2011 us=911431   ping_rec_timeout_action = 2
Mon Aug 15 11:27:46 2011 us=911449   ping_timer_remote = ENABLED
Mon Aug 15 11:27:46 2011 us=911467   remap_sigusr1 = 0
Mon Aug 15 11:27:46 2011 us=911485   explicit_exit_notification = 0
Mon Aug 15 11:27:46 2011 us=911503   persist_tun = DISABLED
Mon Aug 15 11:27:46 2011 us=911520   persist_local_ip = DISABLED
Mon Aug 15 11:27:46 2011 us=911539   persist_remote_ip = ENABLED
Mon Aug 15 11:27:46 2011 us=911556   persist_key = DISABLED
Mon Aug 15 11:27:46 2011 us=911574   mssfix = 1450
Mon Aug 15 11:27:46 2011 us=911592   passtos = DISABLED
Mon Aug 15 11:27:46 2011 us=911610   resolve_retry_seconds = 1000000000
Mon Aug 15 11:27:46 2011 us=911628   username = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=911646   groupname = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=911664   chroot_dir = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=911682   cd_dir = '/usr/local/etc/openvpn'
Mon Aug 15 11:27:46 2011 us=911700   writepid = '/var/run/openvpn.pid'
Mon Aug 15 11:27:46 2011 us=911736   up_script = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=911754   down_script = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=911772   down_pre = DISABLED
Mon Aug 15 11:27:46 2011 us=911790   up_restart = DISABLED
Mon Aug 15 11:27:46 2011 us=911808   up_delay = DISABLED
Mon Aug 15 11:27:46 2011 us=911826   daemon = ENABLED
Mon Aug 15 11:27:46 2011 us=911844   inetd = 0
Mon Aug 15 11:27:46 2011 us=911862   log = ENABLED
Mon Aug 15 11:27:46 2011 us=911879   suppress_timestamps = DISABLED
Mon Aug 15 11:27:46 2011 us=911898   nice = 0
Mon Aug 15 11:27:46 2011 us=911916   verbosity = 5
Mon Aug 15 11:27:46 2011 us=911934   mute = 0
Mon Aug 15 11:27:46 2011 us=911959   gremlin = 0
Mon Aug 15 11:27:46 2011 us=911978   status_file = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=911997   status_file_version = 1
Mon Aug 15 11:27:46 2011 us=912016   status_file_update_freq = 60
Mon Aug 15 11:27:46 2011 us=912035   occ = ENABLED
Mon Aug 15 11:27:46 2011 us=912054   rcvbuf = 65536
Mon Aug 15 11:27:46 2011 us=912073   sndbuf = 65536
Mon Aug 15 11:27:46 2011 us=912091   sockflags = 0
Mon Aug 15 11:27:46 2011 us=912110   fast_io = DISABLED
Mon Aug 15 11:27:46 2011 us=912144   lzo = 7
Mon Aug 15 11:27:46 2011 us=912162   route_script = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=912180   route_default_gateway = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=912198   route_default_metric = 0
Mon Aug 15 11:27:46 2011 us=912216   route_noexec = DISABLED
Mon Aug 15 11:27:46 2011 us=912234   route_delay = 0
Mon Aug 15 11:27:46 2011 us=912252   route_delay_window = 30
Mon Aug 15 11:27:46 2011 us=912271   route_delay_defined = DISABLED
Mon Aug 15 11:27:46 2011 us=912289   route_nopull = DISABLED
Mon Aug 15 11:27:46 2011 us=912307   route_gateway_via_dhcp = DISABLED
Mon Aug 15 11:27:46 2011 us=912325   max_routes = 100
Mon Aug 15 11:27:46 2011 us=912343   allow_pull_fqdn = DISABLED
Mon Aug 15 11:27:46 2011 us=912362   management_addr = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=912380   management_port = 0
Mon Aug 15 11:27:46 2011 us=912403   management_user_pass = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=912421   management_log_history_cache = 250
Mon Aug 15 11:27:46 2011 us=912440   management_echo_buffer_size = 100
Mon Aug 15 11:27:46 2011 us=912458   management_write_peer_info_file = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=912476   management_client_user = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=912494   management_client_group = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=912512   management_flags = 0
Mon Aug 15 11:27:46 2011 us=912530   shared_secret_file = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=912549   key_direction = 0
Mon Aug 15 11:27:46 2011 us=912567   ciphername_defined = ENABLED
Mon Aug 15 11:27:46 2011 us=912585   ciphername = 'BF-CBC'
Mon Aug 15 11:27:46 2011 us=912603   authname_defined = ENABLED
Mon Aug 15 11:27:46 2011 us=912621   authname = 'SHA1'
Mon Aug 15 11:27:46 2011 us=912639   prng_hash = 'SHA1'
Mon Aug 15 11:27:46 2011 us=912657   prng_nonce_secret_len = 16
Mon Aug 15 11:27:46 2011 us=912675   keysize = 0
Mon Aug 15 11:27:46 2011 us=912693   engine = DISABLED
Mon Aug 15 11:27:46 2011 us=912712   replay = ENABLED
Mon Aug 15 11:27:46 2011 us=912730   mute_replay_warnings = DISABLED
Mon Aug 15 11:27:46 2011 us=912748   replay_window = 64
Mon Aug 15 11:27:46 2011 us=912766   replay_time = 15
Mon Aug 15 11:27:46 2011 us=912784   packet_id_file = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=912802   use_iv = ENABLED
Mon Aug 15 11:27:46 2011 us=912821   test_crypto = DISABLED
Mon Aug 15 11:27:46 2011 us=912839   tls_server = ENABLED
Mon Aug 15 11:27:46 2011 us=912857   tls_client = DISABLED
Mon Aug 15 11:27:46 2011 us=912875   key_method = 2
Mon Aug 15 11:27:46 2011 us=912901   ca_file = '/usr/local/etc/openvpn/server1.ca'
Mon Aug 15 11:27:46 2011 us=912920   ca_path = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=912957   dh_file = '/etc/dh-parameters.1024'
Mon Aug 15 11:27:46 2011 us=912982   cert_file = '/usr/local/etc/openvpn/server1.cert'
Mon Aug 15 11:27:46 2011 us=913001   priv_key_file = '/usr/local/etc/openvpn/server1.key'
Mon Aug 15 11:27:46 2011 us=913039   pkcs12_file = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=913059   cipher_list = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=913078   tls_verify = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=913098   tls_export_cert = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=913127   tls_remote = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=913221   crl_file = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=913246   ns_cert_type = 0
Mon Aug 15 11:27:46 2011 us=913266   remote_cert_ku[i] = 0
Mon Aug 15 11:27:46 2011 us=913286   remote_cert_ku[i] = 0
Mon Aug 15 11:27:46 2011 us=913305   remote_cert_ku[i] = 0
Mon Aug 15 11:27:46 2011 us=913325   remote_cert_ku[i] = 0
Mon Aug 15 11:27:46 2011 us=913344   remote_cert_ku[i] = 0
Mon Aug 15 11:27:46 2011 us=913364   remote_cert_ku[i] = 0
Mon Aug 15 11:27:46 2011 us=913384   remote_cert_ku[i] = 0
Mon Aug 15 11:27:46 2011 us=913403   remote_cert_ku[i] = 0
Mon Aug 15 11:27:46 2011 us=913423   remote_cert_ku[i] = 0
Mon Aug 15 11:27:46 2011 us=913442   remote_cert_ku[i] = 0
Mon Aug 15 11:27:46 2011 us=913462   remote_cert_ku[i] = 0
Mon Aug 15 11:27:46 2011 us=913482   remote_cert_ku[i] = 0
Mon Aug 15 11:27:46 2011 us=913501   remote_cert_ku[i] = 0
Mon Aug 15 11:27:46 2011 us=913521   remote_cert_ku[i] = 0
Mon Aug 15 11:27:46 2011 us=913541   remote_cert_ku[i] = 0
Mon Aug 15 11:27:46 2011 us=913560   remote_cert_ku[i] = 0
Mon Aug 15 11:27:46 2011 us=913580   remote_cert_eku = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=913597   tls_timeout = 2
Mon Aug 15 11:27:46 2011 us=913651   renegotiate_bytes = 0
Mon Aug 15 11:27:46 2011 us=913671   renegotiate_packets = 0
Mon Aug 15 11:27:46 2011 us=913691   renegotiate_seconds = 3600
Mon Aug 15 11:27:46 2011 us=913711   handshake_window = 60
Mon Aug 15 11:27:46 2011 us=913730   transition_window = 3600
Mon Aug 15 11:27:46 2011 us=913750   single_session = DISABLED
Mon Aug 15 11:27:46 2011 us=913770   push_peer_info = DISABLED
Mon Aug 15 11:27:46 2011 us=913789   tls_exit = DISABLED
Mon Aug 15 11:27:46 2011 us=913809   tls_auth_file = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=913840   server_network = 172.16.10.0
Mon Aug 15 11:27:46 2011 us=913860   server_netmask = 255.255.255.0
Mon Aug 15 11:27:46 2011 us=913880   server_bridge_ip = 0.0.0.0
Mon Aug 15 11:27:46 2011 us=913900   server_bridge_netmask = 0.0.0.0
Mon Aug 15 11:27:46 2011 us=913919   server_bridge_pool_start = 0.0.0.0
Mon Aug 15 11:27:46 2011 us=913939   server_bridge_pool_end = 0.0.0.0
Mon Aug 15 11:27:46 2011 us=913958   push_entry = 'route-gateway 172.16.10.1'
Mon Aug 15 11:27:46 2011 us=913976   push_entry = 'ping 10'
Mon Aug 15 11:27:46 2011 us=913995   push_entry = 'ping-restart 60'
Mon Aug 15 11:27:46 2011 us=914013   ifconfig_pool_defined = ENABLED
Mon Aug 15 11:27:46 2011 us=914033   ifconfig_pool_start = 172.16.10.2
Mon Aug 15 11:27:46 2011 us=914122   ifconfig_pool_end = 172.16.10.254
Mon Aug 15 11:27:46 2011 us=914151   ifconfig_pool_netmask = 255.255.255.0
Mon Aug 15 11:27:46 2011 us=914171   ifconfig_pool_persist_filename = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=914214   ifconfig_pool_persist_refresh_freq = 600
Mon Aug 15 11:27:46 2011 us=914234   n_bcast_buf = 256
Mon Aug 15 11:27:46 2011 us=914254   tcp_queue_limit = 64
Mon Aug 15 11:27:46 2011 us=914273   real_hash_size = 256
Mon Aug 15 11:27:46 2011 us=914293   virtual_hash_size = 256
Mon Aug 15 11:27:46 2011 us=914313   client_connect_script = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=914333   learn_address_script = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=914353   client_disconnect_script = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=914372   client_config_dir = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=914392   ccd_exclusive = DISABLED
Mon Aug 15 11:27:46 2011 us=914411   tmp_dir = '/tmp'
Mon Aug 15 11:27:46 2011 us=914431   push_ifconfig_defined = DISABLED
Mon Aug 15 11:27:46 2011 us=914452   push_ifconfig_local = 0.0.0.0
Mon Aug 15 11:27:46 2011 us=914472   push_ifconfig_remote_netmask = 0.0.0.0
Mon Aug 15 11:27:46 2011 us=914492   enable_c2c = DISABLED
Mon Aug 15 11:27:46 2011 us=914512   duplicate_cn = DISABLED
Mon Aug 15 11:27:46 2011 us=914531   cf_max = 0
Mon Aug 15 11:27:46 2011 us=914574   cf_per = 0
Mon Aug 15 11:27:46 2011 us=914595   max_clients = 100
Mon Aug 15 11:27:46 2011 us=914614   max_routes_per_client = 256
Mon Aug 15 11:27:46 2011 us=914634   auth_user_pass_verify_script = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=914654   auth_user_pass_verify_script_via_file = DISABLED
Mon Aug 15 11:27:46 2011 us=914673   ssl_flags = 0
Mon Aug 15 11:27:46 2011 us=914693   port_share_host = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=914712   port_share_port = 0
Mon Aug 15 11:27:46 2011 us=914731   client = DISABLED
Mon Aug 15 11:27:46 2011 us=914751   pull = DISABLED
Mon Aug 15 11:27:46 2011 us=914771   auth_user_pass_file = '[UNDEF]'
Mon Aug 15 11:27:46 2011 us=914796 OpenVPN 2.2.1 i386-portbld-freebsd9.0 [SSL] [LZO2] [eurephia] built on Jul 27 2011
Mon Aug 15 11:27:46 2011 us=915133 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Mon Aug 15 11:27:46 2011 us=924564 Diffie-Hellman initialized with 1024 bit key
Mon Aug 15 11:27:46 2011 us=925900 TLS-Auth MTU parms [ L:1574 D:138 EF:38 EB:0 ET:0 EL:0 ]
Mon Aug 15 11:27:46 2011 us=926075 Socket Buffers: R=[268435456->65536] S=[57344->65536]
Mon Aug 15 11:27:46 2011 us=926511 TUN/TAP device /dev/tap0 opened
Mon Aug 15 11:27:46 2011 us=926554 /sbin/ifconfig tap0 172.16.10.1 netmask 255.255.255.0 mtu 1500 up
Mon Aug 15 11:27:46 2011 us=935637 Data Channel MTU parms [ L:1574 D:1450 EF:42 EB:135 ET:32 EL:0 AF:3/1 ]
Mon Aug 15 11:27:46 2011 us=940979 UDPv4 link local (bound): 3.3.3.2:1194
Mon Aug 15 11:27:46 2011 us=941149 UDPv4 link remote: [undef]
Mon Aug 15 11:27:46 2011 us=941183 MULTI: multi_init called, r=256 v=256
Mon Aug 15 11:27:46 2011 us=941643 IFCONFIG POOL: base=172.16.10.2 size=253
Mon Aug 15 11:27:46 2011 us=941784 Initialization Sequence Completed
Mon Aug 15 11:27:58 2011 us=855779 MULTI: multi_create_instance called
Mon Aug 15 11:27:58 2011 us=855920 4.4.4.2:63392 Re-using SSL/TLS context
Mon Aug 15 11:27:58 2011 us=856104 4.4.4.2:63392 LZO compression initialized
Mon Aug 15 11:27:58 2011 us=856870 4.4.4.2:63392 Control Channel MTU parms [ L:1574 D:138 EF:38 EB:0 ET:0 EL:0 ]
Mon Aug 15 11:27:58 2011 us=856897 4.4.4.2:63392 Data Channel MTU parms [ L:1574 D:1450 EF:42 EB:135 ET:32 EL:0 AF:3/1 ]
Mon Aug 15 11:27:58 2011 us=857043 4.4.4.2:63392 Local Options String: 'V4,dev-type tap,link-mtu 1574,tun-mtu 1532,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Mon Aug 15 11:27:58 2011 us=857067 4.4.4.2:63392 Expected Remote Options String: 'V4,dev-type tap,link-mtu 1574,tun-mtu 1532,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Mon Aug 15 11:27:58 2011 us=857195 4.4.4.2:63392 Local Options hash (VER=V4): 'f7df56b8'
Mon Aug 15 11:27:58 2011 us=857224 4.4.4.2:63392 Expected Remote Options hash (VER=V4): 'd79ca330'
RMon Aug 15 11:27:58 2011 us=857420 4.4.4.2:63392 TLS: Initial packet from 4.4.4.2:63392, sid=fa1c7495 49b23382
WRRWRWWWWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRRRRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRMon Aug 15 11:27:58 2011 us=992912 4.4.4.2:63392 VERIFY OK: depth=1, /C=CA/ST=Province/L=Ville/O=Test/emailAddress=AAAA@AAAA.COM/CN=Server-internal-ca
Mon Aug 15 11:27:58 2011 us=993491 4.4.4.2:63392 VERIFY OK: depth=0, /C=CA/ST=Province/L=Ville/O=Test/emailAddress=AAAA@AAAA.COM/CN=AClient.test.com
WRWRWRWRWRWWWWRWRWRWRWRWRWRWRWRWRWRWRRRRWRWRWRMon Aug 15 11:27:59 2011 us=27199 4.4.4.2:63392 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
Mon Aug 15 11:27:59 2011 us=27227 4.4.4.2:63392 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Mon Aug 15 11:27:59 2011 us=27319 4.4.4.2:63392 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
Mon Aug 15 11:27:59 2011 us=27342 4.4.4.2:63392 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
WWWRRRMon Aug 15 11:27:59 2011 us=29024 4.4.4.2:63392 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA
Mon Aug 15 11:27:59 2011 us=29112 4.4.4.2:63392 [AClient.test.com] Peer Connection Initiated with 4.4.4.2:63392
RMon Aug 15 11:28:01 2011 us=125530 AClient.test.com/4.4.4.2:63392 PUSH: Received control message: 'PUSH_REQUEST'
Mon Aug 15 11:28:01 2011 us=125723 AClient.test.com/4.4.4.2:63392 SENT CONTROL [AClient.test.com]: 'PUSH_REPLY,route-gateway 172.16.10.1,ping 10,ping-restart 60,ifconfig 172.16.10.2 255.255.255.0' (status=1)
WWWRRRMon Aug 15 11:28:01 2011 us=145733 AClient.test.com/4.4.4.2:63392 MULTI: Learn: 00:bd:9c:8c:05:00 -> AClient.test.com/4.4.4.2:63392
wRWWRRWRWWRWRWRWRWRR 
rWrWrWrWrWMon Aug 15 11:45:52 2011 us=465817 AClient.test.com/4.4.4.2:63392 write UDPv4: No buffer space available (code=55)
rWrWrWrWrWrWrWrWrWMon Aug 15 11:45:52 2011 us=467134 AClient.test.com/4.4.4.2:63392 write UDPv4: No buffer space available (code=55)
rWrWrWrWrWrWrWrWrWrWrWrWrWMon Aug 15 11:45:52 2011 us=469554 AClient.test.com/4.4.4.2:63392 write UDPv4: No buffer space available (code=55)
rWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWMon Aug 15 11:45:52 2011 us=475155 AClient.test.com/4.4.4.2:63392 write UDPv4: No buffer space available (code=55)
rWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWMon Aug 15 11:45:52 2011 us=478123 AClient.test.com/4.4.4.2:63392 write UDPv4: No buffer space available (code=55)

..

-- On the Client

Mon Aug 15 11:27:58 2011 us=794937 Current Parameter Settings:
Mon Aug 15 11:27:58 2011 us=795414   config = '/usr/local/etc/openvpn/openvpn.conf'
Mon Aug 15 11:27:58 2011 us=795476   mode = 0
Mon Aug 15 11:27:58 2011 us=795531   show_ciphers = DISABLED
Mon Aug 15 11:27:58 2011 us=795580   show_digests = DISABLED
Mon Aug 15 11:27:58 2011 us=795626   show_engines = DISABLED
Mon Aug 15 11:27:58 2011 us=795681   genkey = DISABLED
Mon Aug 15 11:27:58 2011 us=795722   key_pass_file = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=795759   show_tls_ciphers = DISABLED
Mon Aug 15 11:27:58 2011 us=795798 Connection profiles [default]:
Mon Aug 15 11:27:58 2011 us=795830   proto = udp
Mon Aug 15 11:27:58 2011 us=795860   local = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=795889   local_port = 0
Mon Aug 15 11:27:58 2011 us=795921   remote = '3.3.3.2'
Mon Aug 15 11:27:58 2011 us=795946   remote_port = 1194
Mon Aug 15 11:27:58 2011 us=795970   remote_float = DISABLED
Mon Aug 15 11:27:58 2011 us=795993   bind_defined = DISABLED
Mon Aug 15 11:27:58 2011 us=796016   bind_local = DISABLED
Mon Aug 15 11:27:58 2011 us=796038   connect_retry_seconds = 5
Mon Aug 15 11:27:58 2011 us=796060   connect_timeout = 10
Mon Aug 15 11:27:58 2011 us=796081   connect_retry_max = 0
Mon Aug 15 11:27:58 2011 us=796102   socks_proxy_server = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=796122   socks_proxy_port = 0
Mon Aug 15 11:27:58 2011 us=796143   socks_proxy_retry = DISABLED
Mon Aug 15 11:27:58 2011 us=796172 Connection profiles END
Mon Aug 15 11:27:58 2011 us=796193   remote_random = DISABLED
Mon Aug 15 11:27:58 2011 us=796212   ipchange = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=796230   dev = 'tap'
Mon Aug 15 11:27:58 2011 us=796248   dev_type = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=796266   dev_node = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=796285   lladdr = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=796303   topology = 1
Mon Aug 15 11:27:58 2011 us=796321   tun_ipv6 = DISABLED
Mon Aug 15 11:27:58 2011 us=796339   ifconfig_local = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=796358   ifconfig_remote_netmask = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=796393   ifconfig_noexec = DISABLED
Mon Aug 15 11:27:58 2011 us=796412   ifconfig_nowarn = DISABLED
Mon Aug 15 11:27:58 2011 us=796431   shaper = 0
Mon Aug 15 11:27:58 2011 us=796449   tun_mtu = 1500
Mon Aug 15 11:27:58 2011 us=796468   tun_mtu_defined = ENABLED
Mon Aug 15 11:27:58 2011 us=796486   link_mtu = 1500
Mon Aug 15 11:27:58 2011 us=796505   link_mtu_defined = DISABLED
Mon Aug 15 11:27:58 2011 us=796523   tun_mtu_extra = 32
Mon Aug 15 11:27:58 2011 us=796541   tun_mtu_extra_defined = ENABLED
Mon Aug 15 11:27:58 2011 us=796565   fragment = 0
Mon Aug 15 11:27:58 2011 us=796584   mtu_discover_type = -1
Mon Aug 15 11:27:58 2011 us=796598   mtu_test = 0
Mon Aug 15 11:27:58 2011 us=796621   mlock = DISABLED
Mon Aug 15 11:27:58 2011 us=796640   keepalive_ping = 0
Mon Aug 15 11:27:58 2011 us=796658   keepalive_timeout = 0
Mon Aug 15 11:27:58 2011 us=796676   inactivity_timeout = 0
Mon Aug 15 11:27:58 2011 us=796695   ping_send_timeout = 10
Mon Aug 15 11:27:58 2011 us=796713   ping_rec_timeout = 0
Mon Aug 15 11:27:58 2011 us=796732   ping_rec_timeout_action = 0
Mon Aug 15 11:27:58 2011 us=796750   ping_timer_remote = DISABLED
Mon Aug 15 11:27:58 2011 us=796769   remap_sigusr1 = 0
Mon Aug 15 11:27:58 2011 us=796787   explicit_exit_notification = 0
Mon Aug 15 11:27:58 2011 us=796827   persist_tun = DISABLED
Mon Aug 15 11:27:58 2011 us=796847   persist_local_ip = DISABLED
Mon Aug 15 11:27:58 2011 us=796866   persist_remote_ip = DISABLED
Mon Aug 15 11:27:58 2011 us=796921   persist_key = DISABLED
Mon Aug 15 11:27:58 2011 us=796940   mssfix = 1450
Mon Aug 15 11:27:58 2011 us=796960   passtos = DISABLED
Mon Aug 15 11:27:58 2011 us=796993   resolve_retry_seconds = 1000000000
Mon Aug 15 11:27:58 2011 us=797013   username = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=797032   groupname = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=797052   chroot_dir = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=797071   cd_dir = '/usr/local/etc/openvpn'
Mon Aug 15 11:27:58 2011 us=797096   writepid = '/var/run/openvpn.pid'
Mon Aug 15 11:27:58 2011 us=797132   up_script = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=797151   down_script = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=797169   down_pre = DISABLED
Mon Aug 15 11:27:58 2011 us=797188   up_restart = DISABLED
Mon Aug 15 11:27:58 2011 us=797206   up_delay = DISABLED
Mon Aug 15 11:27:58 2011 us=797225   daemon = ENABLED
Mon Aug 15 11:27:58 2011 us=797243   inetd = 0
Mon Aug 15 11:27:58 2011 us=797261   log = ENABLED
Mon Aug 15 11:27:58 2011 us=797280   suppress_timestamps = DISABLED
Mon Aug 15 11:27:58 2011 us=797298   nice = 0
Mon Aug 15 11:27:58 2011 us=797317   verbosity = 5
Mon Aug 15 11:27:58 2011 us=797335   mute = 0
Mon Aug 15 11:27:58 2011 us=797353   gremlin = 0
Mon Aug 15 11:27:58 2011 us=797372   status_file = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=797390   status_file_version = 1
Mon Aug 15 11:27:58 2011 us=797408   status_file_update_freq = 60
Mon Aug 15 11:27:58 2011 us=797427   occ = ENABLED
Mon Aug 15 11:27:58 2011 us=797445   rcvbuf = 65536
Mon Aug 15 11:27:58 2011 us=797464   sndbuf = 65536
Mon Aug 15 11:27:58 2011 us=797482   sockflags = 0
Mon Aug 15 11:27:58 2011 us=797500   fast_io = DISABLED
Mon Aug 15 11:27:58 2011 us=797519   lzo = 7
Mon Aug 15 11:27:58 2011 us=797537   route_script = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=797556   route_default_gateway = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=797589   route_default_metric = 0
Mon Aug 15 11:27:58 2011 us=797612   route_noexec = DISABLED
Mon Aug 15 11:27:58 2011 us=797630   route_delay = 0
Mon Aug 15 11:27:58 2011 us=797649   route_delay_window = 30
Mon Aug 15 11:27:58 2011 us=797667   route_delay_defined = DISABLED
Mon Aug 15 11:27:58 2011 us=797685   route_nopull = DISABLED
Mon Aug 15 11:27:58 2011 us=797704   route_gateway_via_dhcp = DISABLED
Mon Aug 15 11:27:58 2011 us=797723   max_routes = 100
Mon Aug 15 11:27:58 2011 us=797741   allow_pull_fqdn = DISABLED
Mon Aug 15 11:27:58 2011 us=797760   management_addr = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=797778   management_port = 0
Mon Aug 15 11:27:58 2011 us=797797   management_user_pass = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=797820   management_log_history_cache = 250
Mon Aug 15 11:27:58 2011 us=797839   management_echo_buffer_size = 100
Mon Aug 15 11:27:58 2011 us=797858   management_write_peer_info_file = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=797877   management_client_user = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=797895   management_client_group = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=797914   management_flags = 0
Mon Aug 15 11:27:58 2011 us=797932   shared_secret_file = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=797951   key_direction = 0
Mon Aug 15 11:27:58 2011 us=797970   ciphername_defined = ENABLED
Mon Aug 15 11:27:58 2011 us=798005   ciphername = 'BF-CBC'
Mon Aug 15 11:27:58 2011 us=798030   authname_defined = ENABLED
Mon Aug 15 11:27:58 2011 us=798049   authname = 'SHA1'
Mon Aug 15 11:27:58 2011 us=798247   prng_hash = 'SHA1'
Mon Aug 15 11:27:58 2011 us=798267   prng_nonce_secret_len = 16
Mon Aug 15 11:27:58 2011 us=798286   keysize = 0
Mon Aug 15 11:27:58 2011 us=798306   engine = DISABLED
Mon Aug 15 11:27:58 2011 us=798326   replay = ENABLED
Mon Aug 15 11:27:58 2011 us=798346   mute_replay_warnings = DISABLED
Mon Aug 15 11:27:58 2011 us=798366   replay_window = 64
Mon Aug 15 11:27:58 2011 us=798386   replay_time = 15
Mon Aug 15 11:27:58 2011 us=798406   packet_id_file = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=798436   use_iv = ENABLED
Mon Aug 15 11:27:58 2011 us=798461   test_crypto = DISABLED
Mon Aug 15 11:27:58 2011 us=798481   tls_server = DISABLED
Mon Aug 15 11:27:58 2011 us=798501   tls_client = ENABLED
Mon Aug 15 11:27:58 2011 us=798521   key_method = 2
Mon Aug 15 11:27:58 2011 us=798542   ca_file = '/usr/local/etc/openvpn/Client.crt'
Mon Aug 15 11:27:58 2011 us=798562   ca_path = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=798600   dh_file = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=798625   cert_file = '/usr/local/etc/openvpn/AClient.crt'
Mon Aug 15 11:27:58 2011 us=798645   priv_key_file = '/usr/local/etc/openvpn/AClient.key'
Mon Aug 15 11:27:58 2011 us=798688   pkcs12_file = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=798708   cipher_list = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=798728   tls_verify = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=798748   tls_export_cert = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=798768   tls_remote = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=798788   crl_file = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=798807   ns_cert_type = 0
Mon Aug 15 11:27:58 2011 us=798827   remote_cert_ku[i] = 0
Mon Aug 15 11:27:58 2011 us=798846   remote_cert_ku[i] = 0
Mon Aug 15 11:27:58 2011 us=798886   remote_cert_ku[i] = 0
Mon Aug 15 11:27:58 2011 us=798923   remote_cert_ku[i] = 0
Mon Aug 15 11:27:58 2011 us=798948   remote_cert_ku[i] = 0
Mon Aug 15 11:27:58 2011 us=798968   remote_cert_ku[i] = 0
Mon Aug 15 11:27:58 2011 us=798988   remote_cert_ku[i] = 0
Mon Aug 15 11:27:58 2011 us=799007   remote_cert_ku[i] = 0
Mon Aug 15 11:27:58 2011 us=799027   remote_cert_ku[i] = 0
Mon Aug 15 11:27:58 2011 us=799047   remote_cert_ku[i] = 0
Mon Aug 15 11:27:58 2011 us=799066   remote_cert_ku[i] = 0
Mon Aug 15 11:27:58 2011 us=799086   remote_cert_ku[i] = 0
Mon Aug 15 11:27:58 2011 us=799105   remote_cert_ku[i] = 0
Mon Aug 15 11:27:58 2011 us=799125   remote_cert_ku[i] = 0
Mon Aug 15 11:27:58 2011 us=799145   remote_cert_ku[i] = 0
Mon Aug 15 11:27:58 2011 us=799164   remote_cert_ku[i] = 0
Mon Aug 15 11:27:58 2011 us=799184   remote_cert_eku = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=799203   tls_timeout = 2
Mon Aug 15 11:27:58 2011 us=799223   renegotiate_bytes = 0
Mon Aug 15 11:27:58 2011 us=799242   renegotiate_packets = 0
Mon Aug 15 11:27:58 2011 us=799261   renegotiate_seconds = 3600
Mon Aug 15 11:27:58 2011 us=799281   handshake_window = 60
Mon Aug 15 11:27:58 2011 us=799300   transition_window = 3600
Mon Aug 15 11:27:58 2011 us=799319   single_session = DISABLED
Mon Aug 15 11:27:58 2011 us=799339   push_peer_info = DISABLED
Mon Aug 15 11:27:58 2011 us=799358   tls_exit = DISABLED
Mon Aug 15 11:27:58 2011 us=799377   tls_auth_file = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=799419   server_network = 0.0.0.0
Mon Aug 15 11:27:58 2011 us=799441   server_netmask = 0.0.0.0
Mon Aug 15 11:27:58 2011 us=799462   server_bridge_ip = 0.0.0.0
Mon Aug 15 11:27:58 2011 us=799482   server_bridge_netmask = 0.0.0.0
Mon Aug 15 11:27:58 2011 us=799504   server_bridge_pool_start = 0.0.0.0
Mon Aug 15 11:27:58 2011 us=799524   server_bridge_pool_end = 0.0.0.0
Mon Aug 15 11:27:58 2011 us=799544   ifconfig_pool_defined = DISABLED
Mon Aug 15 11:27:58 2011 us=799565   ifconfig_pool_start = 0.0.0.0
Mon Aug 15 11:27:58 2011 us=799627   ifconfig_pool_end = 0.0.0.0
Mon Aug 15 11:27:58 2011 us=799652   ifconfig_pool_netmask = 0.0.0.0
Mon Aug 15 11:27:58 2011 us=799671   ifconfig_pool_persist_filename = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=799690   ifconfig_pool_persist_refresh_freq = 600
Mon Aug 15 11:27:58 2011 us=799710   n_bcast_buf = 256
Mon Aug 15 11:27:58 2011 us=799730   tcp_queue_limit = 64
Mon Aug 15 11:27:58 2011 us=799749   real_hash_size = 256
Mon Aug 15 11:27:58 2011 us=799769   virtual_hash_size = 256
Mon Aug 15 11:27:58 2011 us=799789   client_connect_script = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=799808   learn_address_script = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=799828   client_disconnect_script = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=799847   client_config_dir = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=799867   ccd_exclusive = DISABLED
Mon Aug 15 11:27:58 2011 us=799887   tmp_dir = '/tmp'
Mon Aug 15 11:27:58 2011 us=799906   push_ifconfig_defined = DISABLED
Mon Aug 15 11:27:58 2011 us=799927   push_ifconfig_local = 0.0.0.0
Mon Aug 15 11:27:58 2011 us=799948   push_ifconfig_remote_netmask = 0.0.0.0
Mon Aug 15 11:27:58 2011 us=799967   enable_c2c = DISABLED
Mon Aug 15 11:27:58 2011 us=799987   duplicate_cn = DISABLED
Mon Aug 15 11:27:58 2011 us=800006   cf_max = 0
Mon Aug 15 11:27:58 2011 us=800026   cf_per = 0
Mon Aug 15 11:27:58 2011 us=800045   max_clients = 1024
Mon Aug 15 11:27:58 2011 us=800064   max_routes_per_client = 256
Mon Aug 15 11:27:58 2011 us=800084   auth_user_pass_verify_script = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=800123   auth_user_pass_verify_script_via_file = DISABLED
Mon Aug 15 11:27:58 2011 us=800143   ssl_flags = 0
Mon Aug 15 11:27:58 2011 us=800162   port_share_host = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=800193   port_share_port = 0
Mon Aug 15 11:27:58 2011 us=800217   client = ENABLED
Mon Aug 15 11:27:58 2011 us=800236   pull = ENABLED
Mon Aug 15 11:27:58 2011 us=800256   auth_user_pass_file = '[UNDEF]'
Mon Aug 15 11:27:58 2011 us=800281 OpenVPN 2.2.1 i386-portbld-freebsd9.0 [SSL] [LZO2] [eurephia] built on Jul 27 2011
Mon Aug 15 11:27:58 2011 us=800355 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
Mon Aug 15 11:27:58 2011 us=800375 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Mon Aug 15 11:27:58 2011 us=802475 WARNING: file '/usr/local/etc/openvpn/ClientAlbanyToMCI.key' is group or others accessible
Mon Aug 15 11:27:58 2011 us=803146 LZO compression initialized
Mon Aug 15 11:27:58 2011 us=803718 Control Channel MTU parms [ L:1574 D:138 EF:38 EB:0 ET:0 EL:0 ]
Mon Aug 15 11:27:58 2011 us=803914 Socket Buffers: R=[268435456->65536] S=[57344->65536]
Mon Aug 15 11:27:58 2011 us=804041 Data Channel MTU parms [ L:1574 D:1450 EF:42 EB:135 ET:32 EL:0 AF:3/1 ]
Mon Aug 15 11:27:58 2011 us=804083 Local Options String: 'V4,dev-type tap,link-mtu 1574,tun-mtu 1532,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Mon Aug 15 11:27:58 2011 us=804103 Expected Remote Options String: 'V4,dev-type tap,link-mtu 1574,tun-mtu 1532,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Mon Aug 15 11:27:58 2011 us=804139 Local Options hash (VER=V4): 'd79ca330'
Mon Aug 15 11:27:58 2011 us=804165 Expected Remote Options hash (VER=V4): 'f7df56b8'
Mon Aug 15 11:27:58 2011 us=807808 UDPv4 link local: [undef]
Mon Aug 15 11:27:58 2011 us=808035 UDPv4 link remote: 3.3.3.2:1194
WRMon Aug 15 11:27:58 2011 us=811880 TLS: Initial packet from 3.3.3.2:1194, sid=894417f2 ba973063
WWWRRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRMon Aug 15 11:27:58 2011 us=890173 VERIFY OK: depth=1, /C=CA/ST=Province/L=Ville/O=Test/emailAddress=AAAA@AAAA.COM/CN=Server-internal-ca
Mon Aug 15 11:27:58 2011 us=890946 VERIFY OK: depth=0, /C=CA/ST=Province/L=Ville/O=Test/emailAddress=AAAA@AAAA.COM/CN=Server.test.com
WRWRWRWRWRWRWRWWWWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRRRRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWWWWRRRRWRWRMon Aug 15 11:27:58 2011 us=982209 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
Mon Aug 15 11:27:58 2011 us=982247 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Mon Aug 15 11:27:58 2011 us=982308 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
Mon Aug 15 11:27:58 2011 us=982328 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
WMon Aug 15 11:27:58 2011 us=982500 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA
Mon Aug 15 11:27:58 2011 us=982564 [Server.test.com] Peer Connection Initiated with 3.3.3.2:1194
Mon Aug 15 11:28:01 2011 us=77222 SENT CONTROL [Server.test.com]: 'PUSH_REQUEST' (status=1)
WRRWRMon Aug 15 11:28:01 2011 us=82057 PUSH: Received control message: 'PUSH_REPLY,route-gateway 172.16.10.1,ping 10,ping-restart 60,ifconfig 172.16.10.2 255.255.255.0'
Mon Aug 15 11:28:01 2011 us=82680 OPTIONS IMPORT: timers and/or timeouts modified
Mon Aug 15 11:28:01 2011 us=82790 OPTIONS IMPORT: --ifconfig/up options modified
Mon Aug 15 11:28:01 2011 us=82878 OPTIONS IMPORT: route-related options modified
Mon Aug 15 11:28:01 2011 us=88745 TUN/TAP device /dev/tap0 opened
Mon Aug 15 11:28:01 2011 us=89029 /sbin/ifconfig tap0 172.16.10.2 netmask 255.255.255.0 mtu 1500 up
Mon Aug 15 11:28:01 2011 us=97570 Initialization Sequence Completed
WrWWRRWWRWRRWWRRWRWRWWRRwrWRwrWRwrWRwRwrWRwrWrWRwRwrWrWRwRwrWrW
rWrWrWrWrWrWrWMon Aug 15 11:45:39 2011 us=870033 write UDPv4: No buffer space available (code=55)
rWrWrWrWrWrWrWrWrWrWrWMon Aug 15 11:45:39 2011 us=871223 write UDPv4: No buffer space available (code=55)
rWrWrWrWrWrWrWrWrWrWrWrWrWrWrWMon Aug 15 11:45:39 2011 us=874219 write UDPv4: No buffer space available (code=55)
rWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWMon Aug 15 11:45:39 2011 us=876193 write UDPv4: No buffer space available (code=55)
rWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWMon Aug 15 11:45:39 2011 us=878575 write UDPv4: No buffer space available (code=55)
rWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWMon Aug 15 11:45:39 2011 us=880711 write UDPv4: No buffer space available (code=55)
rWrWrWrWrWMon Aug 15 11:45:39 2011 us=881266 write UDPv4: No buffer space available (code=55)
rWrWrWrWrWrWrWrWrWMon Aug 15 11:45:39 2011 us=882191 write UDPv4: No buffer space available (code=55)
rWrWrWrWrWrWrWrWrWrWrWrWrWMon Aug 15 11:45:39 2011 us=885409 write UDPv4: No buffer space available (code=55)
rWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWMon Aug 15 11:45:39 2011 us=887351 write UDPv4: No buffer space available (code=55)
rWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWMon Aug 15 11:45:39 2011 us=889460 write UDPv4: No buffer space available (code=55)
rWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWMon Aug 15 11:45:39 2011 us=892461 write UDPv4: No buffer space available (code=55)
rWrWrWMon Aug 15 11:45:39 2011 us=892851 write UDPv4: No buffer space available (code=55)
rWrWrWrWrWrWrWMon Aug 15 11:45:39 2011 us=893588 write UDPv4: No buffer space available (code=55)
rWrWrWrWrWrWrWrWrWrWrWMon Aug 15 11:45:39 2011 us=894854 write UDPv4: No buffer space available (code=55)
rWrWrWrWrWrWrWrWrWrWrWrWrWrWrWMon Aug 15 11:45:39 2011 us=896492 write UDPv4: No buffer space available (code=55)
rWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWMon Aug 15 11:45:39 2011 us=898361 write UDPv4: No buffer space available (code=55)
rWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWrWMon Aug 15 11:45:39 2011 us=900725 write UDPv4: No buffer space available (code=55)

...


If you have any ideas on hw to solve this issues, 
please do not hesitate to share them.

Thanks,

Jean Aumont
jaumont@mediagrif.com





>Release-Note:
>Audit-Trail:
>Unformatted:

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201108161423.p7GENP2e063076>

Header And Logo

Peripheral Links

Site Navigation

Header And Logo

Peripheral Links

Search

Site Navigation