scroll/openvpn.txt

## openvpn.txt
 openvpn --config marin.petrov.ovpn
Mon Jan  7 15:14:08 2019 WARNING: file 'marin.petrov.key' is group or others accessible
Mon Jan  7 15:14:08 2019 OpenVPN 2.4.4 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Sep  5 2018
Mon Jan  7 15:14:08 2019 library versions: OpenSSL 1.1.0g  2 Nov 2017, LZO 2.08
Mon Jan  7 15:14:08 2019 WARNING: --ns-cert-type is DEPRECATED.  Use --remote-cert-tls instead.
Enter Private Key Password: ******
Mon Jan  7 15:15:13 2019 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Mon Jan  7 15:15:13 2019 TCP/UDP: Preserving recently used remote address: [AF_INET]195.24.36.147:1194
Mon Jan  7 15:15:13 2019 Socket Buffers: R=[212992->212992] S=[212992->212992]
Mon Jan  7 15:15:13 2019 UDP link local: (not bound)
Mon Jan  7 15:15:13 2019 UDP link remote: [AF_INET]195.24.36.147:1194
Mon Jan  7 15:15:13 2019 TLS: Initial packet from [AF_INET]195.24.36.147:1194, sid=e5d587c8 4ef4d43a
Mon Jan  7 15:15:14 2019 VERIFY OK: depth=1, C=BG, ST=SF, L=Sofia, O=WWFX, OU=Boyana, CN=wwfx ca, name=WorldWide FX, emailAddress=tech@wwfx.net
Mon Jan  7 15:15:14 2019 VERIFY OK: nsCertType=SERVER
Mon Jan  7 15:15:14 2019 VERIFY OK: depth=0, C=BG, ST=SF, L=Sofia, O=WWFX, OU=Boyana, CN=router, name=WorldWide FX, emailAddress=tech@wwfx.net
Mon Jan  7 15:15:14 2019 Control Channel: TLSv1, cipher SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
Mon Jan  7 15:15:14 2019 [router] Peer Connection Initiated with [AF_INET]195.24.36.147:1194
Mon Jan  7 15:15:15 2019 SENT CONTROL [router]: 'PUSH_REQUEST' (status=1)
Mon Jan  7 15:15:15 2019 PUSH: Received control message: 'PUSH_REPLY,route 192.168.10.0 255.255.255.0,route 10.73.37.16 255.255.255.248,route 192.168.11.0 255.255.255.0,route 192.168.12.0 255.255.255.0,route 192.168.13.0 255.255.255.0,route 192.168.16.0 255.255.255.0,route 192.168.17.0 255.255.255.0,route 192.168.20.0 255.255.252.0,route 192.168.25.0 255.255.255.0,route 10.10.0.0 255.255.0.0,route add -net 192.168.10.0 255.255.255.0,route add -net 10.73.37.16 255.255.255.248,route add -net 192.168.11.0 255.255.255.0,route add -net 192.168.12.0 255.255.255.0,route add -net 192.168.13.0 255.255.255.0,route add -net 192.168.16.0 255.255.255.0,route add -net 192.168.17.0 255.255.255.0,route add -net 192.168.20.0 255.255.252.0,route add -net 192.168.25.0 255.255.255.0,route add -net 10.10.0.0 255.255.0.0,dhcp-option DNS 10.73.37.22,dhcp-option DNS 10.73.37.22,route 192.168.9.0 255.255.255.0,topology net30,ping 10,ping-restart 120,ifconfig 192.168.9.194 192.168.9.193'
Mon Jan  7 15:15:15 2019 Options error: route parameter network/IP 'add' must be a valid address
Mon Jan  7 15:15:15 2019 Options error: route parameter network/IP 'add' must be a valid address
Mon Jan  7 15:15:15 2019 Options error: route parameter network/IP 'add' must be a valid address
Mon Jan  7 15:15:15 2019 Options error: route parameter network/IP 'add' must be a valid address
Mon Jan  7 15:15:15 2019 Options error: route parameter network/IP 'add' must be a valid address
Mon Jan  7 15:15:15 2019 Options error: route parameter network/IP 'add' must be a valid address
Mon Jan  7 15:15:15 2019 Options error: route parameter network/IP 'add' must be a valid address
Mon Jan  7 15:15:15 2019 Options error: route parameter network/IP 'add' must be a valid address
Mon Jan  7 15:15:15 2019 Options error: route parameter network/IP 'add' must be a valid address
Mon Jan  7 15:15:15 2019 Options error: route parameter network/IP 'add' must be a valid address
Mon Jan  7 15:15:15 2019 OPTIONS IMPORT: timers and/or timeouts modified
Mon Jan  7 15:15:15 2019 OPTIONS IMPORT: --ifconfig/up options modified
Mon Jan  7 15:15:15 2019 OPTIONS IMPORT: route options modified
Mon Jan  7 15:15:15 2019 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Mon Jan  7 15:15:15 2019 Outgoing Data Channel: Cipher 'BF-CBC' initialized with 128 bit key
Mon Jan  7 15:15:15 2019 WARNING: INSECURE cipher with block size less than 128 bit (64 bit).  This allows attacks like SWEET32.  Mitigate by using a --cipher with a larger block size (e.g. AES-256-CBC).
Mon Jan  7 15:15:15 2019 Outgoing Data Channel: Using 160 bit message hash 'SHA1' for HMAC authentication
Mon Jan  7 15:15:15 2019 Incoming Data Channel: Cipher 'BF-CBC' initialized with 128 bit key
Mon Jan  7 15:15:15 2019 WARNING: INSECURE cipher with block size less than 128 bit (64 bit).  This allows attacks like SWEET32.  Mitigate by using a --cipher with a larger block size (e.g. AES-256-CBC).
Mon Jan  7 15:15:15 2019 Incoming Data Channel: Using 160 bit message hash 'SHA1' for HMAC authentication
Mon Jan  7 15:15:15 2019 WARNING: cipher with small block size in use, reducing reneg-bytes to 64MB to mitigate SWEET32 attacks.
Mon Jan  7 15:15:15 2019 ROUTE_GATEWAY 192.168.8.1/255.255.255.0 IFACE=wlp3s0 HWADDR=84:3a:4b:70:a0:64
Mon Jan  7 15:15:15 2019 ERROR: Cannot open TUN/TAP dev MyTap1: No such file or directory (errno=2)
Mon Jan  7 15:15:15 2019 Exiting due to fatal error
	openvpn --config marin.petrov.ovpn
	Mon Jan 7 15:14:08 2019 WARNING: file 'marin.petrov.key' is group or others accessible
	Mon Jan 7 15:14:08 2019 OpenVPN 2.4.4 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Sep 5 2018
	Mon Jan 7 15:14:08 2019 library versions: OpenSSL 1.1.0g 2 Nov 2017, LZO 2.08
	Mon Jan 7 15:14:08 2019 WARNING: --ns-cert-type is DEPRECATED. Use --remote-cert-tls instead.
	Enter Private Key Password: ******
	Mon Jan 7 15:15:13 2019 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
	Mon Jan 7 15:15:13 2019 TCP/UDP: Preserving recently used remote address: [AF_INET]195.24.36.147:1194
	Mon Jan 7 15:15:13 2019 Socket Buffers: R=[212992->212992] S=[212992->212992]
	Mon Jan 7 15:15:13 2019 UDP link local: (not bound)
	Mon Jan 7 15:15:13 2019 UDP link remote: [AF_INET]195.24.36.147:1194
	Mon Jan 7 15:15:13 2019 TLS: Initial packet from [AF_INET]195.24.36.147:1194, sid=e5d587c8 4ef4d43a
	Mon Jan 7 15:15:14 2019 VERIFY OK: depth=1, C=BG, ST=SF, L=Sofia, O=WWFX, OU=Boyana, CN=wwfx ca, name=WorldWide FX, emailAddress=tech@wwfx.net
	Mon Jan 7 15:15:14 2019 VERIFY OK: nsCertType=SERVER
	Mon Jan 7 15:15:14 2019 VERIFY OK: depth=0, C=BG, ST=SF, L=Sofia, O=WWFX, OU=Boyana, CN=router, name=WorldWide FX, emailAddress=tech@wwfx.net
	Mon Jan 7 15:15:14 2019 Control Channel: TLSv1, cipher SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
	Mon Jan 7 15:15:14 2019 [router] Peer Connection Initiated with [AF_INET]195.24.36.147:1194
	Mon Jan 7 15:15:15 2019 SENT CONTROL [router]: 'PUSH_REQUEST' (status=1)
	Mon Jan 7 15:15:15 2019 PUSH: Received control message: 'PUSH_REPLY,route 192.168.10.0 255.255.255.0,route 10.73.37.16 255.255.255.248,route 192.168.11.0 255.255.255.0,route 192.168.12.0 255.255.255.0,route 192.168.13.0 255.255.255.0,route 192.168.16.0 255.255.255.0,route 192.168.17.0 255.255.255.0,route 192.168.20.0 255.255.252.0,route 192.168.25.0 255.255.255.0,route 10.10.0.0 255.255.0.0,route add -net 192.168.10.0 255.255.255.0,route add -net 10.73.37.16 255.255.255.248,route add -net 192.168.11.0 255.255.255.0,route add -net 192.168.12.0 255.255.255.0,route add -net 192.168.13.0 255.255.255.0,route add -net 192.168.16.0 255.255.255.0,route add -net 192.168.17.0 255.255.255.0,route add -net 192.168.20.0 255.255.252.0,route add -net 192.168.25.0 255.255.255.0,route add -net 10.10.0.0 255.255.0.0,dhcp-option DNS 10.73.37.22,dhcp-option DNS 10.73.37.22,route 192.168.9.0 255.255.255.0,topology net30,ping 10,ping-restart 120,ifconfig 192.168.9.194 192.168.9.193'
	Mon Jan 7 15:15:15 2019 Options error: route parameter network/IP 'add' must be a valid address
	Mon Jan 7 15:15:15 2019 Options error: route parameter network/IP 'add' must be a valid address
	Mon Jan 7 15:15:15 2019 Options error: route parameter network/IP 'add' must be a valid address
	Mon Jan 7 15:15:15 2019 Options error: route parameter network/IP 'add' must be a valid address
	Mon Jan 7 15:15:15 2019 Options error: route parameter network/IP 'add' must be a valid address
	Mon Jan 7 15:15:15 2019 Options error: route parameter network/IP 'add' must be a valid address
	Mon Jan 7 15:15:15 2019 Options error: route parameter network/IP 'add' must be a valid address
	Mon Jan 7 15:15:15 2019 Options error: route parameter network/IP 'add' must be a valid address
	Mon Jan 7 15:15:15 2019 Options error: route parameter network/IP 'add' must be a valid address
	Mon Jan 7 15:15:15 2019 Options error: route parameter network/IP 'add' must be a valid address
	Mon Jan 7 15:15:15 2019 OPTIONS IMPORT: timers and/or timeouts modified
	Mon Jan 7 15:15:15 2019 OPTIONS IMPORT: --ifconfig/up options modified
	Mon Jan 7 15:15:15 2019 OPTIONS IMPORT: route options modified
	Mon Jan 7 15:15:15 2019 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
	Mon Jan 7 15:15:15 2019 Outgoing Data Channel: Cipher 'BF-CBC' initialized with 128 bit key
	Mon Jan 7 15:15:15 2019 WARNING: INSECURE cipher with block size less than 128 bit (64 bit). This allows attacks like SWEET32. Mitigate by using a --cipher with a larger block size (e.g. AES-256-CBC).
	Mon Jan 7 15:15:15 2019 Outgoing Data Channel: Using 160 bit message hash 'SHA1' for HMAC authentication
	Mon Jan 7 15:15:15 2019 Incoming Data Channel: Cipher 'BF-CBC' initialized with 128 bit key
	Mon Jan 7 15:15:15 2019 WARNING: INSECURE cipher with block size less than 128 bit (64 bit). This allows attacks like SWEET32. Mitigate by using a --cipher with a larger block size (e.g. AES-256-CBC).
	Mon Jan 7 15:15:15 2019 Incoming Data Channel: Using 160 bit message hash 'SHA1' for HMAC authentication
	Mon Jan 7 15:15:15 2019 WARNING: cipher with small block size in use, reducing reneg-bytes to 64MB to mitigate SWEET32 attacks.
	Mon Jan 7 15:15:15 2019 ROUTE_GATEWAY 192.168.8.1/255.255.255.0 IFACE=wlp3s0 HWADDR=84:3a:4b:70:a0:64
	Mon Jan 7 15:15:15 2019 ERROR: Cannot open TUN/TAP dev MyTap1: No such file or directory (errno=2)
	Mon Jan 7 15:15:15 2019 Exiting due to fatal error