ComputerBase Menü
Aktuelles

Sophos Site-to-Site SSL

Quasi identisch. Von beiden Seiten aus bleiben die bei Sophos stecken.
 
Ich habe gerade nochmal in das Live Log des SSL VPN geschaut. Hier der Auszug: (Vom Standort B)

Code: 
2019:01:06-13:58:25 ddns openvpn[48978]: Closing TUN/TAP interface
2019:01:06-13:58:25 ddns openvpn[48978]: /bin/ip addr del dev tun1 10.242.2.2/24
2019:01:06-13:58:25 ddns openvpn[48978]: PLUGIN_CLOSE: /usr/lib/openvpn/plugins/openvpn-plugin-utm.so
2019:01:06-13:58:25 ddns openvpn[48978]: SIGHUP[soft,decryption-error] received, process restarting
2019:01:06-13:58:25 ddns openvpn[48978]: DEPRECATED OPTION: --tls-remote, please update your configuration
2019:01:06-13:58:25 ddns openvpn[48978]: OpenVPN 2.3.10 i686-suse-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [MH] [IPv6] built on Jun 29 2017
2019:01:06-13:58:25 ddns openvpn[48978]: library versions: OpenSSL 1.0.2j-fips 26 Sep 2016, LZO 2.09
2019:01:06-13:58:25 ddns openvpn[48978]: Restart pause, 10 second(s)
2019:01:06-13:58:26 ddns openvpn[48978]: MANAGEMENT: Client disconnected
2019:01:06-13:58:26 ddns openvpn[48817]: MANAGEMENT: Client disconnected
2019:01:06-13:58:35 ddns openvpn[48978]: PLUGIN_INIT: POST /usr/lib/openvpn/plugins/openvpn-plugin-utm.so '[/usr/lib/openvpn/plugins/openvpn-plugin-utm.so] [REF_SslCliThomashome]' intercepted=PLUGIN_UP|PLUGIN_DOWN|PLUGIN_ROUTE_UP|PLUGIN_ROUTE_PREDOWN
2019:01:06-13:58:35 ddns openvpn[48978]: Socket Buffers: R=[87380->87380] S=[16384->16384]
2019:01:06-13:58:35 ddns openvpn[48978]: Attempting to establish TCP connection with [AF_INET]217.17.192.224:443 [nonblock]
2019:01:06-13:58:36 ddns openvpn[48978]: TCP connection established with [AF_INET]217.17.192.224:443 (via [AF_INET]192.168.100.5:36629)
2019:01:06-13:58:36 ddns openvpn[48978]: TCPv4_CLIENT link local: [undef]
2019:01:06-13:58:36 ddns openvpn[48978]: TCPv4_CLIENT link remote: [AF_INET]217.17.192.224:443
2019:01:06-13:58:36 ddns openvpn[48978]: TLS: Initial packet from [AF_INET]217.17.192.224:443 (via [AF_INET]192.168.100.5:36629), sid=f7809158 36b98be9
2019:01:06-13:58:37 ddns openvpn[48978]: VERIFY OK: depth=1, C=de, L=Ilmenau, O=TU Ilm, CN=TU Ilm VPN CA, emailAddress=thomas@may-aw.eu
2019:01:06-13:58:37 ddns openvpn[48978]: VERIFY X509NAME OK: C=de, L=Ilmenau, O=TU Ilm, CN=sophosutm, emailAddress=thomas@may-aw.eu
2019:01:06-13:58:37 ddns openvpn[48978]: VERIFY OK: depth=0, C=de, L=Ilmenau, O=TU Ilm, CN=sophosutm, emailAddress=thomas@may-aw.eu
2019:01:06-13:58:37 ddns openvpn[48978]: WARNING: 'link-mtu' is used inconsistently, local='link-mtu 1556', remote='link-mtu 1560'
2019:01:06-13:58:37 ddns openvpn[48978]: WARNING: 'auth' is used inconsistently, local='auth MD5', remote='auth SHA1'
2019:01:06-13:58:37 ddns openvpn[48978]: Data Channel Encrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
2019:01:06-13:58:37 ddns openvpn[48978]: Data Channel Encrypt: Using 128 bit message hash 'MD5' for HMAC authentication
2019:01:06-13:58:37 ddns openvpn[48978]: Data Channel Decrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
2019:01:06-13:58:37 ddns openvpn[48978]: Data Channel Decrypt: Using 128 bit message hash 'MD5' for HMAC authentication
2019:01:06-13:58:37 ddns openvpn[48978]: Control Channel: TLSv1.2, cipher TLSv1/SSLv3 DHE-RSA-AES256-GCM-SHA384, 2048 bit RSA
2019:01:06-13:58:37 ddns openvpn[48978]: [sophosutm] Peer Connection Initiated with [AF_INET]217.17.192.224:443 (via [AF_INET]192.168.100.5:36629)
2019:01:06-13:58:39 ddns openvpn[48978]: SENT CONTROL [sophosutm]: 'PUSH_REQUEST' (status=1)
2019:01:06-13:58:39 ddns openvpn[48978]: PUSH: Received control message: 'PUSH_REPLY,topology subnet,route-gateway 10.242.2.1,route 192.168.1.0 255.255.255.0,route 192.168.2.0 255.255.255.0,setenv-safe remote_network_1 192.168.1.0/24,setenv-safe remote_network_2 192.168.2.0/24,setenv-safe local_network_1 192.168.20.0/24,ifconfig 10.242.2.2 255.255.255.0'
2019:01:06-13:58:39 ddns openvpn[48978]: OPTIONS IMPORT: --ifconfig/up options modified
2019:01:06-13:58:39 ddns openvpn[48978]: OPTIONS IMPORT: route options modified
2019:01:06-13:58:39 ddns openvpn[48978]: OPTIONS IMPORT: route-related options modified
2019:01:06-13:58:39 ddns openvpn[48978]: OPTIONS IMPORT: environment modified
2019:01:06-13:58:39 ddns openvpn[48978]: ROUTE_GATEWAY 192.168.100.1/255.255.255.0 IFACE=eth1 HWADDR=00:15:5d:64:7b:03
2019:01:06-13:58:39 ddns openvpn[48978]: TUN/TAP device tun1 opened
2019:01:06-13:58:39 ddns openvpn[48978]: TUN/TAP TX queue length set to 100
2019:01:06-13:58:39 ddns openvpn[48978]: do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
2019:01:06-13:58:39 ddns openvpn[48978]: /bin/ip link set dev tun1 up mtu 1500
2019:01:06-13:58:39 ddns openvpn[48978]: /bin/ip addr add dev tun1 10.242.2.2/24 broadcast 10.242.2.255
2019:01:06-13:58:39 ddns openvpn[48978]: PLUGIN_CALL: POST /usr/lib/openvpn/plugins/openvpn-plugin-utm.so/PLUGIN_UP status=0
2019:01:06-13:58:39 ddns openvpn[48978]: /bin/ip route add 192.168.1.0/24 dev tun1 via 10.242.2.1
2019:01:06-13:58:39 ddns openvpn[48978]: /bin/ip route add 192.168.2.0/24 dev tun1 via 10.242.2.1
2019:01:06-13:58:39 ddns openvpn[48978]: id="2203" severity="info" sys="SecureNet" sub="vpn" event="Site-to-site VPN up" variant="ssl" connection="REF_SslCliThomashome" address="192.168.100.5"
2019:01:06-13:58:39 ddns openvpn[48978]: PLUGIN_CALL: POST /usr/lib/openvpn/plugins/openvpn-plugin-utm.so/PLUGIN_ROUTE_UP status=0
2019:01:06-13:58:39 ddns openvpn[48978]: Initialization Sequence Completed
2019:01:06-13:58:40 ddns openvpn[48978]: MANAGEMENT: Client connected from /var/run/openvpn_mgmt_REF_SslCliThomashome
2019:01:06-13:58:40 ddns openvpn[48978]: MANAGEMENT: CMD 'state'
2019:01:06-13:58:40 ddns openvpn[48817]: MANAGEMENT: Client connected from /var/run/openvpn_mgmt
2019:01:06-13:58:40 ddns openvpn[48817]: MANAGEMENT: CMD 'status -1'
2019:01:06-13:58:41 ddns openvpn[48978]: Connection reset, restarting [0]
2019:01:06-13:58:41 ddns openvpn[48978]: id="2204" severity="info" sys="SecureNet" sub="vpn" event="Site-to-site VPN down" variant="ssl" connection="REF_SslCliThomashome" address="192.168.100.5"
2019:01:06-13:58:41 ddns openvpn[48978]: PLUGIN_CALL: POST /usr/lib/openvpn/plugins/openvpn-plugin-utm.so/PLUGIN_ROUTE_PREDOWN status=0
2019:01:06-13:58:41 ddns openvpn[48978]: /bin/ip route del 192.168.1.0/24
2019:01:06-13:58:41 ddns openvpn[48978]: /bin/ip route del 192.168.2.0/24
2019:01:06-13:58:41 ddns openvpn[48978]: PLUGIN_CALL: POST /usr/lib/openvpn/plugins/openvpn-plugin-utm.so/PLUGIN_DOWN status=0
2019:01:06-13:58:41 ddns openvpn[48978]: Closing TUN/TAP interface
2019:01:06-13:58:41 ddns openvpn[48978]: /bin/ip addr del dev tun1 10.242.2.2/24
2019:01:06-13:58:41 ddns openvpn[48978]: PLUGIN_CLOSE: /usr/lib/openvpn/plugins/openvpn-plugin-utm.so
2019:01:06-13:58:41 ddns openvpn[48978]: SIGHUP[soft,connection-reset] received, process restarting
2019:01:06-13:58:41 ddns openvpn[48978]: DEPRECATED OPTION: --tls-remote, please update your configuration
2019:01:06-13:58:41 ddns openvpn[48978]: OpenVPN 2.3.10 i686-suse-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [MH] [IPv6] built on Jun 29 2017
2019:01:06-13:58:41 ddns openvpn[48978]: library versions: OpenSSL 1.0.2j-fips 26 Sep 2016, LZO 2.09
2019:01:06-13:58:41 ddns openvpn[48978]: Restart pause, 10 second(s)
2019:01:06-13:58:50 ddns openvpn[48978]: MANAGEMENT: Client disconnected
2019:01:06-13:58:50 ddns openvpn[48817]: MANAGEMENT: Client disconnected
2019:01:06-13:58:51 ddns openvpn[48978]: PLUGIN_INIT: POST /usr/lib/openvpn/plugins/openvpn-plugin-utm.so '[/usr/lib/openvpn/plugins/openvpn-plugin-utm.so] [REF_SslCliThomashome]' intercepted=PLUGIN_UP|PLUGIN_DOWN|PLUGIN_ROUTE_UP|PLUGIN_ROUTE_PREDOWN
2019:01:06-13:58:51 ddns openvpn[48978]: Socket Buffers: R=[87380->87380] S=[16384->16384]
2019:01:06-13:58:51 ddns openvpn[48978]: Attempting to establish TCP connection with [AF_INET]217.17.192.224:443 [nonblock]
2019:01:06-13:58:52 ddns openvpn[48978]: TCP connection established with [AF_INET]217.17.192.224:443 (via [AF_INET]192.168.100.5:36630)
2019:01:06-13:58:52 ddns openvpn[48978]: TCPv4_CLIENT link local: [undef]
2019:01:06-13:58:52 ddns openvpn[48978]: TCPv4_CLIENT link remote: [AF_INET]217.17.192.224:443
2019:01:06-13:58:53 ddns openvpn[48978]: TLS: Initial packet from [AF_INET]217.17.192.224:443 (via [AF_INET]192.168.100.5:36630), sid=fa9b0dda c6e0b50a
2019:01:06-13:58:53 ddns openvpn[48978]: VERIFY OK: depth=1, C=de, L=Ilmenau, O=TU Ilm, CN=TU Ilm VPN CA, emailAddress=thomas@may-aw.eu
2019:01:06-13:58:53 ddns openvpn[48978]: VERIFY X509NAME OK: C=de, L=Ilmenau, O=TU Ilm, CN=sophosutm, emailAddress=thomas@may-aw.eu
2019:01:06-13:58:53 ddns openvpn[48978]: VERIFY OK: depth=0, C=de, L=Ilmenau, O=TU Ilm, CN=sophosutm, emailAddress=thomas@may-aw.eu
2019:01:06-13:58:53 ddns openvpn[48978]: WARNING: 'link-mtu' is used inconsistently, local='link-mtu 1556', remote='link-mtu 1560'
2019:01:06-13:58:53 ddns openvpn[48978]: WARNING: 'auth' is used inconsistently, local='auth MD5', remote='auth SHA1'
2019:01:06-13:58:53 ddns openvpn[48978]: Data Channel Encrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
2019:01:06-13:58:53 ddns openvpn[48978]: Data Channel Encrypt: Using 128 bit message hash 'MD5' for HMAC authentication
2019:01:06-13:58:53 ddns openvpn[48978]: Data Channel Decrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
2019:01:06-13:58:53 ddns openvpn[48978]: Data Channel Decrypt: Using 128 bit message hash 'MD5' for HMAC authentication
2019:01:06-13:58:53 ddns openvpn[48978]: Control Channel: TLSv1.2, cipher TLSv1/SSLv3 DHE-RSA-AES256-GCM-SHA384, 2048 bit RSA
2019:01:06-13:58:53 ddns openvpn[48978]: [sophosutm] Peer Connection Initiated with [AF_INET]217.17.192.224:443 (via [AF_INET]192.168.100.5:36630)
2019:01:06-13:58:55 ddns openvpn[48978]: SENT CONTROL [sophosutm]: 'PUSH_REQUEST' (status=1)
2019:01:06-13:58:56 ddns openvpn[48978]: PUSH: Received control message: 'PUSH_REPLY,topology subnet,route-gateway 10.242.2.1,route 192.168.1.0 255.255.255.0,route 192.168.2.0 255.255.255.0,setenv-safe remote_network_1 192.168.1.0/24,setenv-safe remote_network_2 192.168.2.0/24,setenv-safe local_network_1 192.168.20.0/24,ifconfig 10.242.2.2 255.255.255.0'
2019:01:06-13:58:56 ddns openvpn[48978]: OPTIONS IMPORT: --ifconfig/up options modified
2019:01:06-13:58:56 ddns openvpn[48978]: OPTIONS IMPORT: route options modified
2019:01:06-13:58:56 ddns openvpn[48978]: OPTIONS IMPORT: route-related options modified
2019:01:06-13:58:56 ddns openvpn[48978]: OPTIONS IMPORT: environment modified
2019:01:06-13:58:56 ddns openvpn[48978]: ROUTE_GATEWAY 192.168.100.1/255.255.255.0 IFACE=eth1 HWADDR=00:15:5d:64:7b:03
2019:01:06-13:58:56 ddns openvpn[48978]: TUN/TAP device tun1 opened
2019:01:06-13:58:56 ddns openvpn[48978]: TUN/TAP TX queue length set to 100
2019:01:06-13:58:56 ddns openvpn[48978]: do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
2019:01:06-13:58:56 ddns openvpn[48978]: /bin/ip link set dev tun1 up mtu 1500
2019:01:06-13:58:56 ddns openvpn[48978]: /bin/ip addr add dev tun1 10.242.2.2/24 broadcast 10.242.2.255
2019:01:06-13:58:56 ddns openvpn[48978]: PLUGIN_CALL: POST /usr/lib/openvpn/plugins/openvpn-plugin-utm.so/PLUGIN_UP status=0
2019:01:06-13:58:56 ddns openvpn[48978]: /bin/ip route add 192.168.1.0/24 dev tun1 via 10.242.2.1
2019:01:06-13:58:56 ddns openvpn[48978]: /bin/ip route add 192.168.2.0/24 dev tun1 via 10.242.2.1
2019:01:06-13:58:56 ddns openvpn[48978]: id="2203" severity="info" sys="SecureNet" sub="vpn" event="Site-to-site VPN up" variant="ssl" connection="REF_SslCliThomashome" address="192.168.100.5"
2019:01:06-13:58:56 ddns openvpn[48978]: PLUGIN_CALL: POST /usr/lib/openvpn/plugins/openvpn-plugin-utm.so/PLUGIN_ROUTE_UP status=0
2019:01:06-13:58:56 ddns openvpn[48978]: Initialization Sequence Completed
2019:01:06-13:58:57 ddns openvpn[48978]: MANAGEMENT: Client connected from /var/run/openvpn_mgmt_REF_SslCliThomashome
2019:01:06-13:58:57 ddns openvpn[48978]: MANAGEMENT: CMD 'state'
2019:01:06-13:58:57 ddns openvpn[48817]: MANAGEMENT: Client connected from /var/run/openvpn_mgmt
2019:01:06-13:58:57 ddns openvpn[48817]: MANAGEMENT: CMD 'status -1'
2019:01:06-13:59:06 ddns openvpn[48978]: Authenticate/Decrypt packet error: packet HMAC authentication failed
2019:01:06-13:59:06 ddns openvpn[48978]: Fatal decryption error (process_incoming_link), restarting
2019:01:06-13:59:06 ddns openvpn[48978]: id="2204" severity="info" sys="SecureNet" sub="vpn" event="Site-to-site VPN down" variant="ssl" connection="REF_SslCliThomashome" address="192.168.100.5"
2019:01:06-13:59:06 ddns openvpn[48978]: PLUGIN_CALL: POST /usr/lib/openvpn/plugins/openvpn-plugin-utm.so/PLUGIN_ROUTE_PREDOWN status=0
2019:01:06-13:59:06 ddns openvpn[48978]: /bin/ip route del 192.168.1.0/24
2019:01:06-13:59:06 ddns openvpn[48978]: /bin/ip route del 192.168.2.0/24
2019:01:06-13:59:06 ddns openvpn[48978]: PLUGIN_CALL: POST /usr/lib/openvpn/plugins/openvpn-plugin-utm.so/PLUGIN_DOWN status=0
2019:01:06-13:59:06 ddns openvpn[48978]: Closing TUN/TAP interface
2019:01:06-13:59:06 ddns openvpn[48978]: /bin/ip addr del dev tun1 10.242.2.2/24
2019:01:06-13:59:06 ddns openvpn[48978]: PLUGIN_CLOSE: /usr/lib/openvpn/plugins/openvpn-plugin-utm.so
2019:01:06-13:59:06 ddns openvpn[48978]: SIGHUP[soft,decryption-error] received, process restarting
2019:01:06-13:59:06 ddns openvpn[48978]: DEPRECATED OPTION: --tls-remote, please update your configuration
2019:01:06-13:59:06 ddns openvpn[48978]: OpenVPN 2.3.10 i686-suse-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [MH] [IPv6] built on Jun 29 2017
2019:01:06-13:59:06 ddns openvpn[48978]: library versions: OpenSSL 1.0.2j-fips 26 Sep 2016, LZO 2.09
2019:01:06-13:59:06 ddns openvpn[48978]: Restart pause, 10 second(s)
2019:01:06-13:59:07 ddns openvpn[48978]: MANAGEMENT: Client disconnected
2019:01:06-13:59:07 ddns openvpn[48817]: MANAGEMENT: Client disconnected
2019:01:06-13:59:16 ddns openvpn[48978]: PLUGIN_INIT: POST /usr/lib/openvpn/plugins/openvpn-plugin-utm.so '[/usr/lib/openvpn/plugins/openvpn-plugin-utm.so] [REF_SslCliThomashome]' intercepted=PLUGIN_UP|PLUGIN_DOWN|PLUGIN_ROUTE_UP|PLUGIN_ROUTE_PREDOWN
2019:01:06-13:59:16 ddns openvpn[48978]: Socket Buffers: R=[87380->87380] S=[16384->16384]
2019:01:06-13:59:16 ddns openvpn[48978]: Attempting to establish TCP connection with [AF_INET]217.17.192.224:443 [nonblock]
2019:01:06-13:59:17 ddns openvpn[48978]: TCP connection established with [AF_INET]217.17.192.224:443 (via [AF_INET]192.168.100.5:36631)
2019:01:06-13:59:17 ddns openvpn[48978]: TCPv4_CLIENT link local: [undef]
2019:01:06-13:59:17 ddns openvpn[48978]: TCPv4_CLIENT link remote: [AF_INET]217.17.192.224:443
2019:01:06-13:59:17 ddns openvpn[48978]: TLS: Initial packet from [AF_INET]217.17.192.224:443 (via [AF_INET]192.168.100.5:36631), sid=ebcefd24 8ba4cdb6
2019:01:06-13:59:17 ddns openvpn[48978]: VERIFY OK: depth=1, C=de, L=Ilmenau, O=TU Ilm, CN=TU Ilm VPN CA, emailAddress=thomas@may-aw.eu
2019:01:06-13:59:17 ddns openvpn[48978]: VERIFY X509NAME OK: C=de, L=Ilmenau, O=TU Ilm, CN=sophosutm, emailAddress=thomas@may-aw.eu
2019:01:06-13:59:17 ddns openvpn[48978]: VERIFY OK: depth=0, C=de, L=Ilmenau, O=TU Ilm, CN=sophosutm, emailAddress=thomas@may-aw.eu
2019:01:06-13:59:17 ddns openvpn[48978]: WARNING: 'link-mtu' is used inconsistently, local='link-mtu 1556', remote='link-mtu 1560'
2019:01:06-13:59:17 ddns openvpn[48978]: WARNING: 'auth' is used inconsistently, local='auth MD5', remote='auth SHA1'
2019:01:06-13:59:17 ddns openvpn[48978]: Data Channel Encrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
2019:01:06-13:59:17 ddns openvpn[48978]: Data Channel Encrypt: Using 128 bit message hash 'MD5' for HMAC authentication
2019:01:06-13:59:17 ddns openvpn[48978]: Data Channel Decrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
2019:01:06-13:59:17 ddns openvpn[48978]: Data Channel Decrypt: Using 128 bit message hash 'MD5' for HMAC authentication
2019:01:06-13:59:17 ddns openvpn[48978]: Control Channel: TLSv1.2, cipher TLSv1/SSLv3 DHE-RSA-AES256-GCM-SHA384, 2048 bit RSA
2019:01:06-13:59:17 ddns openvpn[48978]: [sophosutm] Peer Connection Initiated with [AF_INET]217.17.192.224:443 (via [AF_INET]192.168.100.5:36631)
2019:01:06-13:59:20 ddns openvpn[48978]: SENT CONTROL [sophosutm]: 'PUSH_REQUEST' (status=1)
2019:01:06-13:59:20 ddns openvpn[48978]: PUSH: Received control message: 'PUSH_REPLY,topology subnet,route-gateway 10.242.2.1,route 192.168.1.0 255.255.255.0,route 192.168.2.0 255.255.255.0,setenv-safe remote_network_1 192.168.1.0/24,setenv-safe remote_network_2 192.168.2.0/24,setenv-safe local_network_1 192.168.20.0/24,ifconfig 10.242.2.2 255.255.255.0'
2019:01:06-13:59:20 ddns openvpn[48978]: OPTIONS IMPORT: --ifconfig/up options modified
2019:01:06-13:59:20 ddns openvpn[48978]: OPTIONS IMPORT: route options modified
2019:01:06-13:59:20 ddns openvpn[48978]: OPTIONS IMPORT: route-related options modified
2019:01:06-13:59:20 ddns openvpn[48978]: OPTIONS IMPORT: environment modified
2019:01:06-13:59:20 ddns openvpn[48978]: ROUTE_GATEWAY 192.168.100.1/255.255.255.0 IFACE=eth1 HWADDR=00:15:5d:64:7b:03
2019:01:06-13:59:20 ddns openvpn[48978]: TUN/TAP device tun1 opened
2019:01:06-13:59:20 ddns openvpn[48978]: TUN/TAP TX queue length set to 100
2019:01:06-13:59:20 ddns openvpn[48978]: do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
2019:01:06-13:59:20 ddns openvpn[48978]: /bin/ip link set dev tun1 up mtu 1500
2019:01:06-13:59:20 ddns openvpn[48978]: /bin/ip addr add dev tun1 10.242.2.2/24 broadcast 10.242.2.255
2019:01:06-13:59:20 ddns openvpn[48978]: PLUGIN_CALL: POST /usr/lib/openvpn/plugins/openvpn-plugin-utm.so/PLUGIN_UP status=0
2019:01:06-13:59:20 ddns openvpn[48978]: /bin/ip route add 192.168.1.0/24 dev tun1 via 10.242.2.1
2019:01:06-13:59:20 ddns openvpn[48978]: /bin/ip route add 192.168.2.0/24 dev tun1 via 10.242.2.1
2019:01:06-13:59:20 ddns openvpn[48978]: id="2203" severity="info" sys="SecureNet" sub="vpn" event="Site-to-site VPN up" variant="ssl" connection="REF_SslCliThomashome" address="192.168.100.5"
2019:01:06-13:59:20 ddns openvpn[48978]: PLUGIN_CALL: POST /usr/lib/openvpn/plugins/openvpn-plugin-utm.so/PLUGIN_ROUTE_UP status=0
2019:01:06-13:59:20 ddns openvpn[48978]: Initialization Sequence Completed
2019:01:06-13:59:21 ddns openvpn[48978]: MANAGEMENT: Client connected from /var/run/openvpn_mgmt_REF_SslCliThomashome
2019:01:06-13:59:21 ddns openvpn[48978]: MANAGEMENT: CMD 'state'
2019:01:06-13:59:21 ddns openvpn[48817]: MANAGEMENT: Client connected from /var/run/openvpn_mgmt
2019:01:06-13:59:21 ddns openvpn[48817]: MANAGEMENT: CMD 'status -1'
2019:01:06-13:59:30 ddns openvpn[48978]: Authenticate/Decrypt packet error: packet HMAC authentication failed
2019:01:06-13:59:30 ddns openvpn[48978]: Fatal decryption error (process_incoming_link), restarting
2019:01:06-13:59:30 ddns openvpn[48978]: id="2204" severity="info" sys="SecureNet" sub="vpn" event="Site-to-site VPN down" variant="ssl" connection="REF_SslCliThomashome" address="192.168.100.5"
2019:01:06-13:59:30 ddns openvpn[48978]: PLUGIN_CALL: POST /usr/lib/openvpn/plugins/openvpn-plugin-utm.so/PLUGIN_ROUTE_PREDOWN status=0
2019:01:06-13:59:30 ddns openvpn[48978]: /bin/ip route del 192.168.1.0/24
2019:01:06-13:59:30 ddns openvpn[48978]: /bin/ip route del 192.168.2.0/24
2019:01:06-13:59:30 ddns openvpn[48978]: PLUGIN_CALL: POST /usr/lib/openvpn/plugins/openvpn-plugin-utm.so/PLUGIN_DOWN status=0
2019:01:06-13:59:30 ddns openvpn[48978]: Closing TUN/TAP interface
2019:01:06-13:59:30 ddns openvpn[48978]: /bin/ip addr del dev tun1 10.242.2.2/24
2019:01:06-13:59:30 ddns openvpn[48978]: PLUGIN_CLOSE: /usr/lib/openvpn/plugins/openvpn-plugin-utm.so
2019:01:06-13:59:30 ddns openvpn[48978]: SIGHUP[soft,decryption-error] received, process restarting
2019:01:06-13:59:30 ddns openvpn[48978]: DEPRECATED OPTION: --tls-remote, please update your configuration
2019:01:06-13:59:30 ddns openvpn[48978]: OpenVPN 2.3.10 i686-suse-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [MH] [IPv6] built on Jun 29 2017
2019:01:06-13:59:30 ddns openvpn[48978]: library versions: OpenSSL 1.0.2j-fips 26 Sep 2016, LZO 2.09
2019:01:06-13:59:30 ddns openvpn[48978]: Restart pause, 10 second(s)
2019:01:06-13:59:31 ddns openvpn[48978]: MANAGEMENT: Client disconnected
2019:01:06-13:59:31 ddns openvpn[48817]: MANAGEMENT: Client disconnected
2019:01:06-13:59:40 ddns openvpn[48978]: PLUGIN_INIT: POST /usr/lib/openvpn/plugins/openvpn-plugin-utm.so '[/usr/lib/openvpn/plugins/openvpn-plugin-utm.so] [REF_SslCliThomashome]' intercepted=PLUGIN_UP|PLUGIN_DOWN|PLUGIN_ROUTE_UP|PLUGIN_ROUTE_PREDOWN
2019:01:06-13:59:40 ddns openvpn[48978]: Socket Buffers: R=[87380->87380] S=[16384->16384]
2019:01:06-13:59:40 ddns openvpn[48978]: Attempting to establish TCP connection with [AF_INET]217.17.192.224:443 [nonblock]
2019:01:06-13:59:41 ddns openvpn[48978]: TCP connection established with [AF_INET]217.17.192.224:443 (via [AF_INET]192.168.100.5:36632)
2019:01:06-13:59:41 ddns openvpn[48978]: TCPv4_CLIENT link local: [undef]
2019:01:06-13:59:41 ddns openvpn[48978]: TCPv4_CLIENT link remote: [AF_INET]217.17.192.224:443
2019:01:06-13:59:41 ddns openvpn[48978]: TLS: Initial packet from [AF_INET]217.17.192.224:443 (via [AF_INET]192.168.100.5:36632), sid=5fd34934 df48e36a
2019:01:06-13:59:41 ddns openvpn[48978]: VERIFY OK: depth=1, C=de, L=Ilmenau, O=TU Ilm, CN=TU Ilm VPN CA, emailAddress=thomas@may-aw.eu
2019:01:06-13:59:41 ddns openvpn[48978]: VERIFY X509NAME OK: C=de, L=Ilmenau, O=TU Ilm, CN=sophosutm, emailAddress=thomas@may-aw.eu
2019:01:06-13:59:41 ddns openvpn[48978]: VERIFY OK: depth=0, C=de, L=Ilmenau, O=TU Ilm, CN=sophosutm, emailAddress=thomas@may-aw.eu
2019:01:06-13:59:41 ddns openvpn[48978]: WARNING: 'link-mtu' is used inconsistently, local='link-mtu 1556', remote='link-mtu 1560'
2019:01:06-13:59:41 ddns openvpn[48978]: WARNING: 'auth' is used inconsistently, local='auth MD5', remote='auth SHA1'
2019:01:06-13:59:41 ddns openvpn[48978]: Data Channel Encrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
2019:01:06-13:59:41 ddns openvpn[48978]: Data Channel Encrypt: Using 128 bit message hash 'MD5' for HMAC authentication
2019:01:06-13:59:41 ddns openvpn[48978]: Data Channel Decrypt: Cipher 'AES-128-CBC' initialized with 128 bit key
2019:01:06-13:59:41 ddns openvpn[48978]: Data Channel Decrypt: Using 128 bit message hash 'MD5' for HMAC authentication
2019:01:06-13:59:41 ddns openvpn[48978]: Control Channel: TLSv1.2, cipher TLSv1/SSLv3 DHE-RSA-AES256-GCM-SHA384, 2048 bit RSA
2019:01:06-13:59:41 ddns openvpn[48978]: [sophosutm] Peer Connection Initiated with [AF_INET]217.17.192.224:443 (via [AF_INET]192.168.100.5:36632)
2019:01:06-13:59:44 ddns openvpn[48978]: SENT CONTROL [sophosutm]: 'PUSH_REQUEST' (status=1)
2019:01:06-13:59:44 ddns openvpn[48978]: PUSH: Received control message: 'PUSH_REPLY,topology subnet,route-gateway 10.242.2.1,route 192.168.1.0 255.255.255.0,route 192.168.2.0 255.255.255.0,setenv-safe remote_network_1 192.168.1.0/24,setenv-safe remote_network_2 192.168.2.0/24,setenv-safe local_network_1 192.168.20.0/24,ifconfig 10.242.2.2 255.255.255.0'
2019:01:06-13:59:44 ddns openvpn[48978]: OPTIONS IMPORT: --ifconfig/up options modified
2019:01:06-13:59:44 ddns openvpn[48978]: OPTIONS IMPORT: route options modified
2019:01:06-13:59:44 ddns openvpn[48978]: OPTIONS IMPORT: route-related options modified
2019:01:06-13:59:44 ddns openvpn[48978]: OPTIONS IMPORT: environment modified
2019:01:06-13:59:44 ddns openvpn[48978]: ROUTE_GATEWAY 192.168.100.1/255.255.255.0 IFACE=eth1 HWADDR=00:15:5d:64:7b:03
2019:01:06-13:59:44 ddns openvpn[48978]: TUN/TAP device tun1 opened
2019:01:06-13:59:44 ddns openvpn[48978]: TUN/TAP TX queue length set to 100
2019:01:06-13:59:44 ddns openvpn[48978]: do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
2019:01:06-13:59:44 ddns openvpn[48978]: /bin/ip link set dev tun1 up mtu 1500
2019:01:06-13:59:44 ddns openvpn[48978]: /bin/ip addr add dev tun1 10.242.2.2/24 broadcast 10.242.2.255
2019:01:06-13:59:44 ddns openvpn[48978]: PLUGIN_CALL: POST /usr/lib/openvpn/plugins/openvpn-plugin-utm.so/PLUGIN_UP status=0
2019:01:06-13:59:44 ddns openvpn[48978]: /bin/ip route add 192.168.1.0/24 dev tun1 via 10.242.2.1
2019:01:06-13:59:44 ddns openvpn[48978]: /bin/ip route add 192.168.2.0/24 dev tun1 via 10.242.2.1
2019:01:06-13:59:44 ddns openvpn[48978]: id="2203" severity="info" sys="SecureNet" sub="vpn" event="Site-to-site VPN up" variant="ssl" connection="REF_SslCliThomashome" address="192.168.100.5"
2019:01:06-13:59:44 ddns openvpn[48978]: PLUGIN_CALL: POST /usr/lib/openvpn/plugins/openvpn-plugin-utm.so/PLUGIN_ROUTE_UP status=0
2019:01:06-13:59:44 ddns openvpn[48978]: Initialization Sequence Completed
2019:01:06-13:59:45 ddns openvpn[48978]: MANAGEMENT: Client connected from /var/run/openvpn_mgmt_REF_SslCliThomashome
2019:01:06-13:59:45 ddns openvpn[48978]: MANAGEMENT: CMD 'state'
2019:01:06-13:59:45 ddns openvpn[48817]: MANAGEMENT: Client connected from /var/run/openvpn_mgmt
2019:01:06-13:59:45 ddns openvpn[48817]: MANAGEMENT: CMD 'status -1'
2019:01:06-13:59:54 ddns openvpn[48978]: Connection reset, restarting [0]
2019:01:06-13:59:54 ddns openvpn[48978]: id="2204" severity="info" sys="SecureNet" sub="vpn" event="Site-to-site VPN down" variant="ssl" connection="REF_SslCliThomashome" address="192.168.100.5"
2019:01:06-13:59:54 ddns openvpn[48978]: PLUGIN_CALL: POST /usr/lib/openvpn/plugins/openvpn-plugin-utm.so/PLUGIN_ROUTE_PREDOWN status=0
2019:01:06-13:59:54 ddns openvpn[48978]: /bin/ip route del 192.168.1.0/24
2019:01:06-13:59:54 ddns openvpn[48978]: /bin/ip route del 192.168.2.0/24
2019:01:06-13:59:54 ddns openvpn[48978]: PLUGIN_CALL: POST /usr/lib/openvpn/plugins/openvpn-plugin-utm.so/PLUGIN_DOWN status=0
2019:01:06-13:59:54 ddns openvpn[48978]: Closing TUN/TAP interface
2019:01:06-13:59:54 ddns openvpn[48978]: /bin/ip addr del dev tun1 10.242.2.2/24
2019:01:06-13:59:54 ddns openvpn[48978]: PLUGIN_CLOSE: /usr/lib/openvpn/plugins/openvpn-plugin-utm.so
2019:01:06-13:59:54 ddns openvpn[48978]: SIGHUP[soft,connection-reset] received, process restarting
2019:01:06-13:59:54 ddns openvpn[48978]: DEPRECATED OPTION: --tls-remote, please update your configuration
2019:01:06-13:59:54 ddns openvpn[48978]: OpenVPN 2.3.10 i686-suse-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [MH] [IPv6] built on Jun 29 2017
2019:01:06-13:59:54 ddns openvpn[48978]: library versions: OpenSSL 1.0.2j-fips 26 Sep 2016, LZO 2.09
2019:01:06-13:59:54 ddns openvpn[48978]: Restart pause, 10 second(s)
2019:01:06-13:59:55 ddns openvpn[48978]: MANAGEMENT: Client disconnected
2019:01:06-13:59:55 ddns openvpn[48817]: MANAGEMENT: Client disconnected
 
Du musst dich einloggen oder registrieren, um hier zu antworten.

Ähnliche Themen

Z
Fritzboxen Site to Site mit Unifi weiternutzen
Antworten
9
Aufrufe
1.323
Z!mTst3rN
Z
Don-DCH
UniFi Wireguard Site to Site ohne Site Magic - Erfahrungen Tipps und Tricks gesucht
Antworten
0
Aufrufe
792
Don-DCH
Don-DCH
K
site to site vpn blockiert auf einer seite
Antworten
1
Aufrufe
685
Mojo1987
M
C
Site to Site VPN mit TP Link Omada und Fritzboxen
Antworten
8
Aufrufe
2.974
Creddy
C
Don-DCH
Site-to-Site VPN sicher einrichten UniFi IP SEC
Antworten
7
Aufrufe
2.526
patrick888
patrick888
Zurück
Oben

Willkommen auf ComputerBase!

Mit Werbung weiterlesen

Besuche ComputerBase wie gewohnt mit Werbung und Tracking. Die Zustimmung ist jederzeit widerrufbar.

Details im Privacy Center und in der Liste unserer Partner. Ein Widerruf ist möglich in der Datenschutzerklärung.

… oder ComputerBase Pro bestellen

Nutze ComputerBase ohne Werbebanner, Video-Ads und Werbetracking schon für 4 €/Monat oder 36 €/Jahr.

Mehr zu ComputerBase Pro

Bereits Pro-Nutzer? Hier anmelden.

Tracking: Wir und unsere 158 Partner verarbeiten personenbezogene Daten, indem wir mit auf Ihrem Gerät gespeicherten Informationen (z. B. eindeutige Kennungen in Cookies) ein Nutzungsprofil erstellen, um z. B. Anzeigen zu personalisieren. Verarbeitungszwecke: Genaue Standortdaten und Abfrage von Geräteeigenschaften zur Identifikation, Informationen auf einem Gerät speichern und/oder abrufen, Personalisierte Anzeigen und Inhalte, Anzeigen- und Inhaltsmessungen, Erkenntnisse über Zielgruppen und Produktentwicklungen.

Impressum Kontakt Datenschutz