Disconnects after Upgrade

Got a problem with Viscosity or need help? Ask here!

sporkman

Posts: 5
Joined: Thu Aug 07, 2014 7:20 am

Post by sporkman » Fri Apr 29, 2016 4:06 am
I have someone remote (and not in the same country or timezone) that I'm trying to troubleshoot and I'm not having much luck.

They appear to connect and then disconnect, then reconnect.

From their side, this is in the log:
Code: Select all
 Apr 28 12:49:17 PM: State changed to Connecting
Apr 28 12:49:17 PM: Viscosity Windows 1.6.2 (1434)
Apr 28 12:49:17 PM: Running on Microsoft Windows 7 Professional
Apr 28 12:49:17 PM: Bringing up interface...
Apr 28 12:49:19 PM: Checking reachability status of connection...
Apr 28 12:49:19 PM: Connection is reachable. Starting connection attempt.
Apr 28 12:49:20 PM: OpenVPN 2.3.10 Windows-MSVC [SSL (OpenSSL)] [LZO]
[PKCS11] [IPv6] built on Mar  2 2016
Apr 28 12:49:20 PM: library versions: OpenSSL 1.0.2g  1 Mar 2016, LZO 2.09
Apr 28 12:49:23 PM: do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
Apr 28 12:49:23 PM: open_tun, tt->ipv6=0
Apr 28 12:49:23 PM: TAP-WIN32 device [foo.ovpn] opened:
\\.\Global\{6AEF1D9B-F10D-4879-A44D-514A54BBB27A}.tap
Apr 28 12:49:23 PM: Notified TAP-Windows driver to set a DHCP IP/netmask
of 10.99.99.1/255.255.255.252 on interface
{6AEF1D9B-F10D-4879-A44D-514A54BBB27A} [DHCP-serv: 10.99.99.2,
lease-time: 31536000]
Apr 28 12:49:23 PM: Successful ARP Flush on interface [22]
{6AEF1D9B-F10D-4879-A44D-514A54BBB27A}
Apr 28 12:49:23 PM: Attempting to establish TCP connection with
[AF_INET]x.x.x.x:443 [nonblock]
Apr 28 12:49:24 PM: TCP connection established with
[AF_INET]x.x.x.x:443
Apr 28 12:49:24 PM: TCPv4_CLIENT link local: [undef]
Apr 28 12:49:24 PM: TCPv4_CLIENT link remote: [AF_INET]x.x.x.x:443
Apr 28 12:49:27 PM: Peer Connection Initiated with
[AF_INET]x.x.x.x:443
Apr 28 12:49:32 PM: Initialization Sequence Completed
Apr 28 12:49:33 PM: DNS set to Full.
Apr 28 12:49:33 PM: State changed to Connected
On my end:
Code: Select all
Apr 28 10:41:52 obox openvpn_ian[858]: SIGUSR1[soft,connection-reset] received, process restarting
Apr 28 10:41:52 obox openvpn_ian[858]: Restart pause, 1 second(s)
Apr 28 10:41:53 obox openvpn_ian[858]: Re-using pre-shared static key
Apr 28 10:41:53 obox openvpn_ian[858]: Socket Buffers: R=[65536->65536] S=[32768->65536]
Apr 28 10:41:53 obox openvpn_ian[858]: Preserving previous TUN/TAP instance: tun1
Apr 28 10:41:53 obox openvpn_ian[858]: Data Channel MTU parms [ L:1546 D:1450 EF:46 EB:4 ET:0 EL:0 ]
Apr 28 10:41:53 obox openvpn_ian[858]: Local Options String: 'V4,dev-type tun,link-mtu 1546,tun-mtu 1500,proto TCPv4_SERVER,ifconfig 10.99.99.1 10.99.99.2,cipher BF-CBC,auth SHA1,keysize 128,secret'
Apr 28 10:41:53 obox openvpn_ian[858]: Expected Remote Options String: 'V4,dev-type tun,link-mtu 1546,tun-mtu 1500,proto TCPv4_CLIENT,ifconfig 10.99.99.2 10.99.99.1,cipher BF-CBC,auth SHA1,keysize 128,secret'
Apr 28 10:41:53 obox openvpn_ian[858]: Local Options hash (VER=V4): '2274833e'
Apr 28 10:41:53 obox openvpn_ian[858]: Expected Remote Options hash (VER=V4): 'b0f101f1'
Apr 28 10:41:53 obox openvpn_ian[858]: Listening for incoming TCP connection on [AF_INET]10.77.66.50:443
Apr 28 10:47:56 obox openvpn_ian[858]: TCP connection established with [AF_INET]y.y.y.y:56732
Apr 28 10:47:56 obox openvpn_ian[858]: TCPv4_SERVER link local (bound): [AF_INET]10.77.66.50:443
Apr 28 10:47:56 obox openvpn_ian[858]: TCPv4_SERVER link remote: [AF_INET]y.y.y.y:56732
Apr 28 10:47:56 obox openvpn_ian[858]: WARNING: Bad encapsulated packet length from peer (5635), which must be > 0 and <= 1546 -- please ensure that --tun-mtu or --link-mtu is equal on both peers -- this condition could also indicate a possible active attack on the TCP link -- [Attempting restart...]
Apr 28 10:47:56 obox openvpn_ian[858]: Connection reset, restarting [0]
Apr 28 10:47:56 obox openvpn_ian[858]: TCP/UDP: Closing socket
Apr 28 10:47:56 obox openvpn_ian[858]: SIGUSR1[soft,connection-reset] received, process restarting
Note the "bad encapsulated packet length" message. The only thing the remote user has done so far is upgrade to 1.6.2 from an older version. Worked before, broken after. Server is running OpenVPN 2.3.6 with PolarSSL.

Where are the configs stored for the windows version (I run the Mac version myself)?

Eric

User avatar
Posts: 1146
Joined: Sun Jan 03, 2010 3:27 am

Post by Eric » Fri Apr 29, 2016 8:29 am
Hi sporkman,

Is an MTU defined on the peers connection? If the user is disconnecting, something should be appearing in the log after what you have posted as well.
You can find information on where data is stored here:
https://www.sparklabs.com/support/kb/ar ... -settings/

Regards,
Eric
Eric Thorpe
Viscosity Developer

Web: http://www.sparklabs.com
Support: http://www.sparklabs.com/support
Twitter: http://twitter.com/sparklabs
2 posts Page 1 of 1