On Mon, Sep 14, 2015 at 08:38:32PM -0400, Johan Huldtgren wrote: > >I see some errors in output: > > > >... > >Mon Sep 14 10:33:06 2015 SENT CONTROL [ovpn-brq.example.com]: 'PUSH_REQUEST' > >(status=1) > >Mon Sep 14 10:33:06 2015 PUSH: Received control message: > >'PUSH_REPLY,route-gateway 10.40.204.1,route 10.0.0.0 255.0.0.0,dhcp-option > >DNS 10.38.5.26,dhcp-option DNS 10.35.255.14,dhcp-option DOMAIN > >example.com,ping 30,ping-exit 600,explicit-exit-notify 3,topology > >subnet,ifconfig 10.40.204.79 255.255.252.0' > >Mon Sep 14 10:33:06 2015 OPTIONS IMPORT: timers and/or timeouts modified > >Mon Sep 14 10:33:06 2015 OPTIONS IMPORT: explicit notify parm(s) modified > >Mon Sep 14 10:33:06 2015 OPTIONS IMPORT: --ifconfig/up options modified > >Mon Sep 14 10:33:06 2015 OPTIONS IMPORT: route options modified > >Mon Sep 14 10:33:06 2015 OPTIONS IMPORT: route-related options modified > >Mon Sep 14 10:33:06 2015 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option > >options modified > >Mon Sep 14 10:33:06 2015 ROUTE_GATEWAY 10.34.131.254 > >Mon Sep 14 10:33:06 2015 TUN/TAP device /dev/tun0 opened > >Mon Sep 14 10:33:06 2015 do_ifconfig, tt->ipv6=0, > >tt->did_ifconfig_ipv6_setup=0 > >Mon Sep 14 10:33:06 2015 /sbin/ifconfig tun0 10.40.204.79 10.40.204.79 mtu > >1360 netmask 255.255.252.0 up link0 > >Mon Sep 14 10:33:06 2015 /sbin/route add -net 10.40.204.0 10.40.204.79 > >-netmask 255.255.252.0 > >route: writing to routing socket: File exists > >add net 10.40.204.0: gateway 10.40.204.79: File exists > >Mon Sep 14 10:33:06 2015 ERROR: OpenBSD/NetBSD route add command failed: > >external program exited with error status: 1 > >Mon Sep 14 10:33:06 2015 PLUGIN_CALL: POST > >/usr/local/lib/openvpn/plugins/openvpn-plugin-down-root.so/PLUGIN_UP status=0 > >Mon Sep 14 10:33:06 2015 /etc/openvpn/ovpn-brq-udp-client.up tun0 1360 1417 > >10.40.204.79 255.255.252.0 init > >OpenVPN run: > >Opening socket /var/pdnsd/pdnsd.status > >Succeeded > >Mon Sep 14 10:33:06 2015 /sbin/route add -net 10.0.0.0 10.40.204.1 -netmask > >255.0.0.0 > >add net 10.0.0.0: gateway 10.40.204.1 > >Mon Sep 14 10:33:06 2015 GID set to _openvpn > >Mon Sep 14 10:33:06 2015 UID set to _openvpn > >Mon Sep 14 10:33:06 2015 Initialization Sequence Completed > > While I too see those errors they are not new, I've got them in my log since > as far as my logs go back. > > Functionality seems unaffected, I installed the patched version and could > connect successfully and work > as I normally would.
Your comment is not correct, I don't see the ERROR without Stuart's diff. See below with openvpn not having the diff: ... Mon Sep 14 19:49:39 2015 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info. Mon Sep 14 19:49:39 2015 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts Mon Sep 14 19:49:39 2015 PLUGIN_INIT: POST /usr/local/lib/openvpn/plugins/openvpn-plugin-down-root.so '[/usr/local/lib/openvpn/plugins/openvpn-plugin-down-root.so] [/etc/openvpn/ovpn-brq-udp-client.down]' interce pted=PLUGIN_UP|PLUGIN_DOWN Mon Sep 14 19:49:39 2015 WARNING: normally if you use --mssfix and/or --fragment, you should also set --tun-mtu 1500 (currently it is 1360) Mon Sep 14 19:49:39 2015 Socket Buffers: R=[41600->65536] S=[9216->65536] Mon Sep 14 19:49:39 2015 NOTE: UID/GID downgrade will be delayed because of --client, --pull, or --up-delay Mon Sep 14 19:49:39 2015 UDPv4 link local: [undef] Mon Sep 14 19:49:39 2015 UDPv4 link remote: [AF_INET]213.175.37.11:443 Mon Sep 14 19:49:39 2015 TLS: Initial packet from [AF_INET]213.175.37.11:443, sid=8a4fe076 84fb7f1e Mon Sep 14 19:49:39 2015 VERIFY OK: depth=1, C=US, ST=North Carolina, L=Raleigh, O=Example Com, Inc., OU=IS, CN=Example Com IS CA, emailAddress=sysadmin-...@example.com Mon Sep 14 19:49:39 2015 VERIFY OK: depth=0, C=US, ST=North Carolina, O=Example Com, Inc., OU=Information Technology, CN=ovpn-brq.example.com, emailAddress=serviced...@example.com Mon Sep 14 19:49:40 2015 Data Channel Encrypt: Cipher 'AES-256-CBC' initialized with 256 bit key Mon Sep 14 19:49:40 2015 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication Mon Sep 14 19:49:40 2015 Data Channel Decrypt: Cipher 'AES-256-CBC' initialized with 256 bit key Mon Sep 14 19:49:40 2015 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication Mon Sep 14 19:49:40 2015 Control Channel: TLSv1.2, cipher TLSv1/SSLv3 DHE-RSA-AES256-GCM-SHA384, 2048 bit RSA Mon Sep 14 19:49:40 2015 [ovpn-brq.example.com] Peer Connection Initiated with [AF_INET]213.175.37.11:443 Mon Sep 14 19:49:43 2015 SENT CONTROL [ovpn-brq.example.com]: 'PUSH_REQUEST' (status=1) Mon Sep 14 19:49:43 2015 PUSH: Received control message: 'PUSH_REPLY,route-gateway 10.40.204.1,route 10.0.0.0 255.0.0.0,dhcp-option DNS 10.38.5.26,dhcp-option DNS 10.35.255.14,dhcp-option DOMAIN example.com,ping 3 0,ping-exit 600,explicit-exit-notify 3,topology subnet,ifconfig 10.40.204.40 255.255.252.0' Mon Sep 14 19:49:43 2015 OPTIONS IMPORT: timers and/or timeouts modified Mon Sep 14 19:49:43 2015 OPTIONS IMPORT: explicit notify parm(s) modified Mon Sep 14 19:49:43 2015 OPTIONS IMPORT: --ifconfig/up options modified Mon Sep 14 19:49:43 2015 OPTIONS IMPORT: route options modified Mon Sep 14 19:49:43 2015 OPTIONS IMPORT: route-related options modified Mon Sep 14 19:49:43 2015 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified Mon Sep 14 19:49:43 2015 ROUTE_GATEWAY 192.168.0.1 Mon Sep 14 19:49:43 2015 TUN/TAP device /dev/tun0 opened Mon Sep 14 19:49:43 2015 do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0 Mon Sep 14 19:49:43 2015 /sbin/ifconfig tun0 10.40.204.40 10.40.204.40 mtu 1360 netmask 255.255.252.0 up -link0 Mon Sep 14 19:49:43 2015 /sbin/route add -net 10.40.204.0 10.40.204.40 -netmask 255.255.252.0 add net 10.40.204.0: gateway 10.40.204.40 Mon Sep 14 19:49:43 2015 PLUGIN_CALL: POST /usr/local/lib/openvpn/plugins/openvpn-plugin-down-root.so/PLUGIN_UP status=0 Mon Sep 14 19:49:43 2015 /etc/openvpn/ovpn-brq-udp-client.up tun0 1360 1417 10.40.204.40 255.255.252.0 init OpenVPN run: Opening socket /var/pdnsd/pdnsd.status Succeeded Mon Sep 14 19:49:43 2015 /sbin/route add -net 10.0.0.0 10.40.204.1 -netmask 255.0.0.0 add net 10.0.0.0: gateway 10.40.204.1 Mon Sep 14 19:49:43 2015 GID set to _openvpn Mon Sep 14 19:49:43 2015 UID set to _openvpn Mon Sep 14 19:49:43 2015 Initialization Sequence Completed j.
