トップ > Debian > OpenVPNの出力(verb 4)

OpenVPNの出力(verb 4)

Debian メモ

起動。

degas@debian:/etc/openvpn$ sudo openvpn /etc/openvpn/server.conf 
Thu Jan 17 03:25:59 2008 us=595048 Current Parameter Settings:
Thu Jan 17 03:25:59 2008 us=595336   config = '/etc/openvpn/server.conf'
Thu Jan 17 03:25:59 2008 us=595397   mode = 1
Thu Jan 17 03:25:59 2008 us=595452   persist_config = DISABLED
Thu Jan 17 03:25:59 2008 us=595509   persist_mode = 1
Thu Jan 17 03:25:59 2008 us=595565   show_ciphers = DISABLED
Thu Jan 17 03:25:59 2008 us=595620   show_digests = DISABLED
Thu Jan 17 03:25:59 2008 us=595675   show_engines = DISABLED
Thu Jan 17 03:25:59 2008 us=595731   genkey = DISABLED
Thu Jan 17 03:25:59 2008 us=595786   key_pass_file = '[UNDEF]'
Thu Jan 17 03:25:59 2008 us=595841   show_tls_ciphers = DISABLED
Thu Jan 17 03:25:59 2008 us=595898   proto = 0
Thu Jan 17 03:25:59 2008 us=595953   local = '[UNDEF]'
Thu Jan 17 03:25:59 2008 us=596008   remote_list = NULL
Thu Jan 17 03:25:59 2008 us=596211   remote_random = DISABLED
Thu Jan 17 03:25:59 2008 us=596269   local_port = 1194
Thu Jan 17 03:25:59 2008 us=596325   remote_port = 1194
Thu Jan 17 03:25:59 2008 us=596380   remote_float = DISABLED
Thu Jan 17 03:25:59 2008 us=596437   ipchange = '[UNDEF]'
Thu Jan 17 03:25:59 2008 us=596492   bind_local = ENABLED
Thu Jan 17 03:25:59 2008 us=596547   dev = 'tun'
Thu Jan 17 03:25:59 2008 us=596603   dev_type = '[UNDEF]'
Thu Jan 17 03:25:59 2008 us=596658   dev_node = '[UNDEF]'
Thu Jan 17 03:25:59 2008 us=596713   tun_ipv6 = DISABLED
Thu Jan 17 03:25:59 2008 us=596769   ifconfig_local = '10.100.100.1'
Thu Jan 17 03:25:59 2008 us=596837   ifconfig_remote_netmask = '10.100.100.2'
Thu Jan 17 03:25:59 2008 us=596895   ifconfig_noexec = DISABLED
Thu Jan 17 03:25:59 2008 us=596950   ifconfig_nowarn = DISABLED
Thu Jan 17 03:25:59 2008 us=597006   shaper = 0
Thu Jan 17 03:25:59 2008 us=597061   tun_mtu = 1500
Thu Jan 17 03:25:59 2008 us=597116   tun_mtu_defined = ENABLED
Thu Jan 17 03:25:59 2008 us=597172   link_mtu = 1500
Thu Jan 17 03:25:59 2008 us=597227   link_mtu_defined = DISABLED
Thu Jan 17 03:25:59 2008 us=597283   tun_mtu_extra = 0
Thu Jan 17 03:25:59 2008 us=597338   tun_mtu_extra_defined = DISABLED
Thu Jan 17 03:25:59 2008 us=597395   fragment = 0
Thu Jan 17 03:25:59 2008 us=597451   mtu_discover_type = -1
Thu Jan 17 03:25:59 2008 us=597506   mtu_test = 0
Thu Jan 17 03:25:59 2008 us=597561   mlock = DISABLED
Thu Jan 17 03:25:59 2008 us=597617   keepalive_ping = 10
Thu Jan 17 03:25:59 2008 us=597673   keepalive_timeout = 120
Thu Jan 17 03:25:59 2008 us=597729   inactivity_timeout = 0
Thu Jan 17 03:25:59 2008 us=597785   ping_send_timeout = 10
Thu Jan 17 03:25:59 2008 us=597841   ping_rec_timeout = 240
Thu Jan 17 03:25:59 2008 us=597897   ping_rec_timeout_action = 2
Thu Jan 17 03:25:59 2008 us=597953   ping_timer_remote = DISABLED
Thu Jan 17 03:25:59 2008 us=598009   remap_sigusr1 = 0
Thu Jan 17 03:25:59 2008 us=598065   explicit_exit_notification = 0
Thu Jan 17 03:25:59 2008 us=598137   persist_tun = ENABLED
Thu Jan 17 03:25:59 2008 us=598195   persist_local_ip = DISABLED
Thu Jan 17 03:25:59 2008 us=598252   persist_remote_ip = DISABLED
Thu Jan 17 03:25:59 2008 us=598307   persist_key = ENABLED
Thu Jan 17 03:25:59 2008 us=598363   mssfix = 1450
Thu Jan 17 03:25:59 2008 us=598417   passtos = DISABLED
Thu Jan 17 03:25:59 2008 us=598473   resolve_retry_seconds = 1000000000
Thu Jan 17 03:25:59 2008 us=598530   connect_retry_seconds = 5
Thu Jan 17 03:25:59 2008 us=598585   username = '[UNDEF]'
Thu Jan 17 03:25:59 2008 us=598640   groupname = '[UNDEF]'
Thu Jan 17 03:25:59 2008 us=598696   chroot_dir = '[UNDEF]'
Thu Jan 17 03:25:59 2008 us=598751   cd_dir = '[UNDEF]'
Thu Jan 17 03:25:59 2008 us=598807   writepid = '[UNDEF]'
Thu Jan 17 03:25:59 2008 us=598862   up_script = '[UNDEF]'
Thu Jan 17 03:25:59 2008 us=598917   down_script = '[UNDEF]'
Thu Jan 17 03:25:59 2008 us=598973   down_pre = DISABLED
Thu Jan 17 03:25:59 2008 us=599027   up_restart = DISABLED
Thu Jan 17 03:25:59 2008 us=599082   up_delay = DISABLED
Thu Jan 17 03:25:59 2008 us=599137   daemon = DISABLED
Thu Jan 17 03:25:59 2008 us=599192   inetd = 0
Thu Jan 17 03:25:59 2008 us=599246   log = DISABLED
Thu Jan 17 03:25:59 2008 us=599517   suppress_timestamps = DISABLED
Thu Jan 17 03:25:59 2008 us=599579   nice = 0
Thu Jan 17 03:25:59 2008 us=599635   verbosity = 4
Thu Jan 17 03:25:59 2008 us=599690   mute = 0
Thu Jan 17 03:25:59 2008 us=599745   gremlin = 0
Thu Jan 17 03:25:59 2008 us=599800   status_file = 'openvpn-status.log'
Thu Jan 17 03:25:59 2008 us=599857   status_file_version = 1
Thu Jan 17 03:25:59 2008 us=599914   status_file_update_freq = 60
Thu Jan 17 03:25:59 2008 us=599970   occ = ENABLED
Thu Jan 17 03:25:59 2008 us=600026   rcvbuf = 65536
Thu Jan 17 03:25:59 2008 us=600104   sndbuf = 65536
Thu Jan 17 03:25:59 2008 us=600161   socks_proxy_server = '[UNDEF]'
Thu Jan 17 03:25:59 2008 us=600218   socks_proxy_port = 0
Thu Jan 17 03:25:59 2008 us=600273   socks_proxy_retry = DISABLED
Thu Jan 17 03:25:59 2008 us=600328   fast_io = DISABLED
Thu Jan 17 03:25:59 2008 us=600383   comp_lzo = ENABLED
Thu Jan 17 03:25:59 2008 us=600438   comp_lzo_adaptive = ENABLED
Thu Jan 17 03:25:59 2008 us=600494   route_script = '[UNDEF]'
Thu Jan 17 03:25:59 2008 us=600550   route_default_gateway = '[UNDEF]'
Thu Jan 17 03:25:59 2008 us=600606   route_noexec = DISABLED
Thu Jan 17 03:25:59 2008 us=600662   route_delay = 0
Thu Jan 17 03:25:59 2008 us=600718   route_delay_window = 30
Thu Jan 17 03:25:59 2008 us=600774   route_delay_defined = DISABLED
Thu Jan 17 03:25:59 2008 us=600835   route 10.100.100.0/255.255.255.0/nil/nil
Thu Jan 17 03:25:59 2008 us=600893   management_addr = '[UNDEF]'
Thu Jan 17 03:25:59 2008 us=600950   management_port = 0
Thu Jan 17 03:25:59 2008 us=601006   management_user_pass = '[UNDEF]'
Thu Jan 17 03:25:59 2008 us=601063   management_log_history_cache = 250
Thu Jan 17 03:25:59 2008 us=601120   management_echo_buffer_size = 100
Thu Jan 17 03:25:59 2008 us=601177   management_query_passwords = DISABLED
Thu Jan 17 03:25:59 2008 us=601233   management_hold = DISABLED
Thu Jan 17 03:25:59 2008 us=601290   shared_secret_file = '[UNDEF]'
Thu Jan 17 03:25:59 2008 us=601348   key_direction = 0
Thu Jan 17 03:25:59 2008 us=601407   ciphername_defined = ENABLED
Thu Jan 17 03:25:59 2008 us=601464   ciphername = 'BF-CBC'
Thu Jan 17 03:25:59 2008 us=601520   authname_defined = ENABLED
Thu Jan 17 03:25:59 2008 us=601578   authname = 'SHA1'
Thu Jan 17 03:25:59 2008 us=601635   keysize = 0
Thu Jan 17 03:25:59 2008 us=601692   engine = DISABLED
Thu Jan 17 03:25:59 2008 us=601747   replay = ENABLED
Thu Jan 17 03:25:59 2008 us=601804   mute_replay_warnings = DISABLED
Thu Jan 17 03:25:59 2008 us=601862   replay_window = 64
Thu Jan 17 03:25:59 2008 us=601919   replay_time = 15
Thu Jan 17 03:25:59 2008 us=601977   packet_id_file = '[UNDEF]'
Thu Jan 17 03:25:59 2008 us=602034   use_iv = ENABLED
Thu Jan 17 03:25:59 2008 us=602090   test_crypto = DISABLED
Thu Jan 17 03:25:59 2008 us=602147   tls_server = ENABLED
Thu Jan 17 03:25:59 2008 us=602203   tls_client = DISABLED
Thu Jan 17 03:25:59 2008 us=602259   key_method = 2
Thu Jan 17 03:25:59 2008 us=602315   ca_file = 'easy-rsa/keys/ca.crt'
Thu Jan 17 03:25:59 2008 us=602374   dh_file = 'easy-rsa/keys/dh1024.pem'
Thu Jan 17 03:25:59 2008 us=602432   cert_file = 'easy-rsa/keys/server.crt'
Thu Jan 17 03:25:59 2008 us=602491   priv_key_file = 'easy-rsa/keys/server.key'
Thu Jan 17 03:25:59 2008 us=602548   pkcs12_file = '[UNDEF]'
Thu Jan 17 03:25:59 2008 us=602605   cipher_list = '[UNDEF]'
Thu Jan 17 03:25:59 2008 us=602661   tls_verify = '[UNDEF]'
Thu Jan 17 03:25:59 2008 us=602719   tls_remote = '[UNDEF]'
Thu Jan 17 03:25:59 2008 us=602776   crl_file = '[UNDEF]'
Thu Jan 17 03:25:59 2008 us=602833   ns_cert_type = 0
Thu Jan 17 03:25:59 2008 us=602890   tls_timeout = 2
Thu Jan 17 03:25:59 2008 us=602947   renegotiate_bytes = 0
Thu Jan 17 03:25:59 2008 us=603004   renegotiate_packets = 0
Thu Jan 17 03:25:59 2008 us=603063   renegotiate_seconds = 3600
Thu Jan 17 03:25:59 2008 us=603120   handshake_window = 60
Thu Jan 17 03:25:59 2008 us=603178   transition_window = 3600
Thu Jan 17 03:25:59 2008 us=603235   single_session = DISABLED
Thu Jan 17 03:25:59 2008 us=603870   tls_exit = DISABLED
Thu Jan 17 03:25:59 2008 us=603934   tls_auth_file = '[UNDEF]'
Thu Jan 17 03:25:59 2008 us=604002   server_network = 10.100.100.0
Thu Jan 17 03:25:59 2008 us=604093   server_netmask = 255.255.255.0
Thu Jan 17 03:25:59 2008 us=604159   server_bridge_ip = 0.0.0.0
Thu Jan 17 03:25:59 2008 us=604224   server_bridge_netmask = 0.0.0.0
Thu Jan 17 03:25:59 2008 us=604290   server_bridge_pool_start = 0.0.0.0
Thu Jan 17 03:25:59 2008 us=604356   server_bridge_pool_end = 0.0.0.0
Thu Jan 17 03:25:59 2008 us=604415   push_list = 'route 192.168.100.0 255.255.255.0,route 10.100.100.1,ping 10,ping-restart 120'
Thu Jan 17 03:25:59 2008 us=604475   ifconfig_pool_defined = ENABLED
Thu Jan 17 03:25:59 2008 us=604541   ifconfig_pool_start = 10.100.100.4
Thu Jan 17 03:25:59 2008 us=604608   ifconfig_pool_end = 10.100.100.251
Thu Jan 17 03:25:59 2008 us=604673   ifconfig_pool_netmask = 0.0.0.0
Thu Jan 17 03:25:59 2008 us=604731   ifconfig_pool_persist_filename = 'ipp.txt'
Thu Jan 17 03:25:59 2008 us=604790   ifconfig_pool_persist_refresh_freq = 600
Thu Jan 17 03:25:59 2008 us=604848   ifconfig_pool_linear = DISABLED
Thu Jan 17 03:25:59 2008 us=604905   n_bcast_buf = 256
Thu Jan 17 03:25:59 2008 us=604961   tcp_queue_limit = 64
Thu Jan 17 03:25:59 2008 us=605017   real_hash_size = 256
Thu Jan 17 03:25:59 2008 us=605074   virtual_hash_size = 256
Thu Jan 17 03:25:59 2008 us=605131   client_connect_script = '[UNDEF]'
Thu Jan 17 03:25:59 2008 us=605190   learn_address_script = '[UNDEF]'
Thu Jan 17 03:25:59 2008 us=605248   client_disconnect_script = '[UNDEF]'
Thu Jan 17 03:25:59 2008 us=605306   client_config_dir = '[UNDEF]'
Thu Jan 17 03:25:59 2008 us=605363   ccd_exclusive = DISABLED
Thu Jan 17 03:25:59 2008 us=605419   tmp_dir = '[UNDEF]'
Thu Jan 17 03:25:59 2008 us=605475   push_ifconfig_defined = DISABLED
Thu Jan 17 03:25:59 2008 us=605541   push_ifconfig_local = 0.0.0.0
Thu Jan 17 03:25:59 2008 us=605607   push_ifconfig_remote_netmask = 0.0.0.0
Thu Jan 17 03:25:59 2008 us=605664   enable_c2c = DISABLED
Thu Jan 17 03:25:59 2008 us=605720   duplicate_cn = DISABLED
Thu Jan 17 03:25:59 2008 us=605776   cf_max = 0
Thu Jan 17 03:25:59 2008 us=605832   cf_per = 0
Thu Jan 17 03:25:59 2008 us=605890   max_clients = 1024
Thu Jan 17 03:25:59 2008 us=605947   max_routes_per_client = 256
Thu Jan 17 03:25:59 2008 us=606004   client_cert_not_required = DISABLED
Thu Jan 17 03:25:59 2008 us=606062   username_as_common_name = DISABLED
Thu Jan 17 03:25:59 2008 us=606121   auth_user_pass_verify_script = '[UNDEF]'
Thu Jan 17 03:25:59 2008 us=606179   auth_user_pass_verify_script_via_file = DISABLED
Thu Jan 17 03:25:59 2008 us=606236   client = DISABLED
Thu Jan 17 03:25:59 2008 us=606292   pull = DISABLED
Thu Jan 17 03:25:59 2008 us=606347   auth_user_pass_file = '[UNDEF]'

ここまでが設定の読み込み結果の出力。
以下はverb 3と同じ。

Thu Jan 17 03:25:59 2008 us=606410 OpenVPN 2.0.9 i486-pc-linux-gnu [SSL] [LZO] [EPOLL] built on Sep 20 2007
Thu Jan 17 03:25:59 2008 us=663032 Diffie-Hellman initialized with 1024 bit key
Thu Jan 17 03:25:59 2008 us=667038 TLS-Auth MTU parms [ L:1542 D:138 EF:38 EB:0 ET:0 EL:0 ]
Thu Jan 17 03:25:59 2008 us=669261 TUN/TAP device tun0 opened
Thu Jan 17 03:25:59 2008 us=669442 TUN/TAP TX queue length set to 100
Thu Jan 17 03:25:59 2008 us=669588 ifconfig tun0 10.100.100.1 pointopoint 10.100.100.2 mtu 1500
Thu Jan 17 03:25:59 2008 us=683714 route add -net 10.100.100.0 netmask 255.255.255.0 gw 10.100.100.2
Thu Jan 17 03:25:59 2008 us=693366 Data Channel MTU parms [ L:1542 D:1450 EF:42 EB:135 ET:0 EL:0 AF:3/1 ]
Thu Jan 17 03:25:59 2008 us=693561 Socket Buffers: R=[109568->131072] S=[109568->131072]
Thu Jan 17 03:25:59 2008 us=693642 UDPv4 link local (bound): [undef]:1194
Thu Jan 17 03:25:59 2008 us=693699 UDPv4 link remote: [undef]
Thu Jan 17 03:25:59 2008 us=693774 MULTI: multi_init called, r=256 v=256
Thu Jan 17 03:25:59 2008 us=693937 IFCONFIG POOL: base=10.100.100.4 size=62
Thu Jan 17 03:25:59 2008 us=694102 IFCONFIG POOL LIST
Thu Jan 17 03:25:59 2008 us=694168 ClientWin,10.100.100.4
Thu Jan 17 03:25:59 2008 us=694303 Initialization Sequence Completed

待ち受け状態。

Thu Jan 17 03:26:19 2008 us=894264 MULTI: multi_create_instance called
Thu Jan 17 03:26:19 2008 us=894463 60.254.***.***:1123 Re-using SSL/TLS context
Thu Jan 17 03:26:19 2008 us=894606 60.254.***.***:1123 LZO compression initialized
Thu Jan 17 03:26:19 2008 us=895232 60.254.***.***:1123 Control Channel MTU parms [ L:1542 D:138 EF:38 EB:0 ET:0 EL:0 ]
Thu Jan 17 03:26:19 2008 us=895327 60.254.***.***:1123 Data Channel MTU parms [ L:1542 D:1450 EF:42 EB:135 ET:0 EL:0 AF:3/1 ]
Thu Jan 17 03:26:19 2008 us=895572 60.254.***.***:1123 Local Options String: 'V4,dev-type tun,link-mtu 1542,tun-mtu 1500,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Thu Jan 17 03:26:19 2008 us=895636 60.254.***.***:1123 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1542,tun-mtu 1500,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Thu Jan 17 03:26:19 2008 us=895786 60.254.***.***:1123 Local Options hash (VER=V4): '530fdded'
Thu Jan 17 03:26:19 2008 us=895895 60.254.***.***:1123 Expected Remote Options hash (VER=V4): '41690919'
Thu Jan 17 03:26:19 2008 us=896096 60.254.***.***:1123 TLS: Initial packet from 60.254.***.***:1123, sid=3b58c0de 4bdcee58
Thu Jan 17 03:26:22 2008 us=136935 60.254.***.***:1123 VERIFY OK: depth=1, /C=**/ST=**/L=**/O=**/CN=OPEN_VPN-CA/emailAddress=foo@baa.net
Thu Jan 17 03:26:22 2008 us=138325 60.254.***.***:1123 VERIFY OK: depth=0, /C=**/ST=**/O=**/CN=ClientWin/emailAddress=foo@baa.net
Thu Jan 17 03:26:22 2008 us=414703 60.254.***.***:1123 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
Thu Jan 17 03:26:22 2008 us=414826 60.254.***.***:1123 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Thu Jan 17 03:26:22 2008 us=415188 60.254.***.***:1123 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
Thu Jan 17 03:26:22 2008 us=415263 60.254.***.***:1123 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Thu Jan 17 03:26:22 2008 us=572947 60.254.***.***:1123 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
Thu Jan 17 03:26:22 2008 us=573113 60.254.***.***:1123 [ClientWin] Peer Connection Initiated with 60.254.***.***:1123
Thu Jan 17 03:26:22 2008 us=573419 ClientWin/60.254.***.***:1123 MULTI: Learn: 10.100.100.6 -> ClientWin/60.254.***.***:1123
Thu Jan 17 03:26:22 2008 us=573507 ClientWin/60.254.***.***:1123 MULTI: primary virtual IP for ClientWin/60.254.***.***:1123: 10.100.100.6
Thu Jan 17 03:26:23 2008 us=673566 ClientWin/60.254.***.***:1123 PUSH: Received control message: 'PUSH_REQUEST'
Thu Jan 17 03:26:23 2008 us=673820 ClientWin/60.254.***.***:1123 SENT CONTROL [ClientWin]: 'PUSH_REPLY,route 192.168.100.0 255.255.255.0,route 10.100.100.1,ping 10,ping-restart 120,ifconfig 10.100.100.6 10.100.100.5' (status=1)

接続完了。

Ctrl-Cで切断。

Thu Jan 17 03:53:30 2008 us=564913 event_wait : Interrupted system call (code=4)
Thu Jan 17 03:53:30 2008 us=566567 TCP/UDP: Closing socket
Thu Jan 17 03:53:30 2008 us=566720 route del -net 10.100.100.0 netmask 255.255.255.0
Thu Jan 17 03:53:30 2008 us=577020 Closing TUN/TAP interface
Thu Jan 17 03:53:30 2008 us=616379 SIGINT[hard,] received, process exiting