I'm using /interface ovpn-client to connect to an openvpn server running on a Debian box. After upgrading from 6.43.7 to 6.44 my server logs are flooded with messages like this:
Code: Select all
IP packet with unknown IP version=0 seenCode: Select all
/interface ovpn-client
add certificate=client.crt_0 cipher=aes256 connect-to=XXXXXXXXXXXXXXXXXXXXXXX.com mac-address=FE:DA:87:73:D7:6D name=v-0001 port=1195 user=nobody
Code: Select all
mode server
tls-server
keepalive 10 60
status server.log
dev tun
proto tcp-server
local XXX.XXX.XXX.XXX
port 1195
cipher AES-256-CBC
user openvpn
group openvpn
persist-key
persist-tun
ca /path/to/ca.crt
cert /path/to/server.crt
key /path/to/server.key
dh /path/to/dh.pem
topology subnet
server 192.168.32.0 255.255.224.0
ccd-exclusive
client-config-dir /path/to/ips/
client-to-client
script-security 2
learn-address "/usr/bin/sudo /path/to/learn-address.sh"
Code: Select all
mode server
tls-server
keepalive 30 240
status /var/log/openvpn/tcp.log
dev tun
proto tcp-server
local XXX.XXX.XXX.XXX
port 1194
cipher AES-256-CBC
user openvpn
group openvpn
chroot /etc/openvpn/server/ips
persist-key
persist-tun
pkcs12 /etc/openvpn/server/server/XXXX.p12
dh /etc/openvpn/server/server/dh4096.pem
ifconfig 10.1.0.1 10.1.0.254
route 10.1.0.0 255.255.0.0
push "route 10.0.0.0 255.255.0.0"
push "route 10.1.0.0 255.255.0.0"
ccd-exclusive
client-config-dir ./tcp/ # this is relative to the chroot
Cheers,
Hendrik
