Package: openvpn Version: 2.3.3-1 Severity: grave Justification: renders package unusable
I can connect to OpenVPN server (2.3.2), no data is passed thru the tunnel. I use networm-manager openvpn plugin. Tcpdump see packages traveling out the client's both on tun0 interface and client's eth interface. I can't see any traffic on servers's tun interface. Server's ethernet interface receives packets from client(encapsulated traffic). There is a lot of "Bad LZO decompression header byte: 0" message in server log. Other clients (mostly Windows and Android) don't have such a problem. The tunnel worked on the same laptop before. Some update made the problem. I tried to use openvpn openvpn_2.2.1-8+deb7u2_amd64.deb without succes. Log from the server (After last line with "VERIFY OK"): hu Sep 11 23:59:57 2014 83.26.245.199:46853 WARNING: 'dev-type' is used inconsistently, local='dev-type tun', remote='dev-type tap' Thu Sep 11 23:59:57 2014 83.26.245.199:46853 WARNING: 'link-mtu' is used inconsistently, local='link-mtu 1542', remote='link-mtu 1578' Thu Sep 11 23:59:57 2014 83.26.245.199:46853 WARNING: 'tun-mtu' is used inconsistently, local='tun-mtu 1500', remote='tun-mtu 1532' Thu Sep 11 23:59:57 2014 83.26.245.199:46853 WARNING: 'mtu-dynamic' is present in remote config but missing in local config, remote='mtu-dynamic' Thu Sep 11 23:59:57 2014 83.26.245.199:46853 Data Channel Encrypt: Cipher 'BF- CBC' initialized with 128 bit key Thu Sep 11 23:59:57 2014 83.26.245.199:46853 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication Thu Sep 11 23:59:57 2014 83.26.245.199:46853 Data Channel Decrypt: Cipher 'BF- CBC' initialized with 128 bit key Thu Sep 11 23:59:57 2014 83.26.245.199:46853 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication Fri Sep 12 00:00:02 2014 83.26.245.199:46853 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA Fri Sep 12 00:00:02 2014 83.26.245.199:46853 [hieracium] Peer Connection Initiated with [AF_INET]83.26.245.199:46853 Fri Sep 12 00:00:02 2014 MULTI: new connection by client 'hieracium' will cause previous active sessions by this client to be dropped. Remember to use the --duplicate-cn option if you want multiple clients using the same certificate or username to concurrently connect. Fri Sep 12 00:00:02 2014 MULTI_sva: pool returned IPv4=169.254.3.6, IPv6=(Not enabled) Fri Sep 12 00:00:02 2014 MULTI: Learn: 169.254.3.6 -> hieracium/83.26.245.199:46853 Fri Sep 12 00:00:02 2014 MULTI: primary virtual IP for hieracium/83.26.245.199:46853: 169.254.3.6 Fri Sep 12 00:00:02 2014 hieracium/83.26.245.199:46853 Bad LZO decompression header byte: 0 Fri Sep 12 00:00:02 2014 hieracium/83.26.245.199:46853 Bad LZO decompression header byte: 0 Fri Sep 12 00:00:02 2014 hieracium/83.26.245.199:46853 Bad LZO decompression header byte: 0 Fri Sep 12 00:00:03 2014 hieracium/83.26.245.199:46853 Bad LZO decompression header byte: 0 Fri Sep 12 00:00:03 2014 hieracium/83.26.245.199:46853 Bad LZO decompression header byte: 0 ..... 645 variation(s) on previous 10 message(s) suppressed by --mute -- System Information: Debian Release: jessie/sid APT prefers testing APT policy: (500, 'testing') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.15.5MK (SMP w/4 CPU cores) Locale: LANG=pl_PL.UTF-8, LC_CTYPE=pl_PL.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages openvpn depends on: ii debconf [debconf-2.0] 1.5.53 ii initscripts 2.88dsf-53.4 ii iproute2 3.16.0-2 ii libc6 2.19-10 ii liblzo2-2 2.08-1 ii libpam0g 1.1.8-3.1 ii libpkcs11-helper1 1.11-1 ii libssl1.0.0 1.0.1i-2 Versions of packages openvpn recommends: ii easy-rsa 2.2.2-1 Versions of packages openvpn suggests: ii openssl 1.0.1i-2 pn resolvconf <none> -- debconf information: openvpn/create_tun: false -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
