OpenVPN Client Fruehstart (3.0 r32753)

Post new topic   Reply to topic    DD-WRT Forum Index -> Allgemeine Fragen
Author Message
Exordium
DD-WRT Novice


Joined: 13 Feb 2008
Posts: 24

PostPosted: Fri Jul 21, 2017 23:51    Post subject: OpenVPN Client Fruehstart (3.0 r32753) Reply with quote
Hallo

Ich versuche einen R7000 (als OVPN Client) mit einer pfSense Firewall zu verheiraten.

Komischerweise startet der OVPN-Client auf dem R7000 ziemlich früh. Noch bevor überhaupt die Systemzeit gesetzt und das WAN Interface aktiviert wurde. Dies führt dazu, dass die Zertifikatsprüfung in die Hose geht, weil das Router-Datum noch auf dem 1. Jan 1970 steht. Kurz darauf, wenn das WAN Interface up und die Zeit gesetzt ist, fliegt der OpenVPN Client allerdings raus und startet auch nicht mehr von alleine.

Das manuelle Starten des Clients, wenn der Router oben ist, funktioniert dann einwandfrei...

Wie kann man den Start des OVPN-Clients auf dem Router verzögern, bis alles andere hochgelaufen ist?

Hier noch die entsprechenden syslog-Einträge:

Quote:

Jan 1 01:00:09 VPN-RTR01 syslog.info syslogd started: BusyBox v1.27.0
Jan 1 00:00:09 VPN-RTR01 user.info : openvpn : OpenVPN daemon (Client) starting/restarting...
Jan 1 00:00:09 VPN-RTR01 user.info : cron : cron daemon successfully started
Jan 1 00:00:09 VPN-RTR01 cron.info cron[899]: (CRON) STARTUP (fork ok)
Jan 1 00:00:10 VPN-RTR01 user.info : vpn modules : vpn modules successfully unloaded
Jan 1 00:00:10 VPN-RTR01 user.info : vpn modules : nf_conntrack_proto_gre successfully loaded
Jan 1 00:00:10 VPN-RTR01 user.info : vpn modules : nf_nat_proto_gre successfully loaded
Jan 1 00:00:10 VPN-RTR01 user.info : vpn modules : nf_conntrack_pptp successfully loaded
Jan 1 00:00:10 VPN-RTR01 user.info : vpn modules : nf_nat_pptp successfully loaded
Jan 1 00:00:10 VPN-RTR01 user.info : dnsmasq : dnsmasq daemon successfully started
Jan 1 00:00:10 VPN-RTR01 daemon.warn openvpn[885]: WARNING: file '/tmp/openvpncl/client.key' is group or others accessible
Jan 1 00:00:10 VPN-RTR01 daemon.warn openvpn[885]: WARNING: file '/tmp/openvpncl/ta.key' is group or others accessible
Jan 1 00:00:10 VPN-RTR01 daemon.notice openvpn[885]: OpenVPN 2.4.3 arm-unknown-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Jul 19 2017
Jan 1 00:00:10 VPN-RTR01 daemon.notice openvpn[885]: library versions: OpenSSL 1.0.2l 25 May 2017, LZO 2.09
Jan 1 00:00:10 VPN-RTR01 daemon.notice openvpn[960]: MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:16
Jan 1 00:00:10 VPN-RTR01 daemon.warn openvpn[960]: WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Jan 1 00:00:10 VPN-RTR01 daemon.warn openvpn[960]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Jan 1 00:00:10 VPN-RTR01 daemon.warn openvpn[960]: WARNING: Your certificate is not yet valid!
Jan 1 00:00:10 VPN-RTR01 daemon.notice openvpn[960]: Outgoing Control Channel Authentication: Using 256 bit message hash 'SHA256' for HMAC authentication
Jan 1 00:00:10 VPN-RTR01 daemon.notice openvpn[960]: Incoming Control Channel Authentication: Using 256 bit message hash 'SHA256' for HMAC authentication
Jan 1 00:00:10 VPN-RTR01 daemon.notice openvpn[960]: TCP/UDP: Preserving recently used remote address: [AF_INET]xxx.xxx.xxx.xxx:1195
Jan 1 00:00:10 VPN-RTR01 daemon.notice openvpn[960]: Socket Buffers: R=[180224->180224] S=[180224->180224]
Jan 1 00:00:10 VPN-RTR01 daemon.notice openvpn[960]: UDPv4 link local: (not bound)
Jan 1 00:00:10 VPN-RTR01 daemon.notice openvpn[960]: UDPv4 link remote: [AF_INET]xxx.xxx.xxx.xxx:1195
Jan 1 00:00:11 VPN-RTR01 user.info : vpn modules : vpn modules successfully unloaded
Jan 1 00:00:11 VPN-RTR01 user.info : vpn modules : nf_conntrack_proto_gre successfully loaded
Jan 1 00:00:11 VPN-RTR01 user.info : vpn modules : nf_nat_proto_gre successfully loaded
Jan 1 00:00:11 VPN-RTR01 user.info : vpn modules : nf_conntrack_pptp successfully loaded
Jan 1 00:00:11 VPN-RTR01 user.info : vpn modules : nf_nat_pptp successfully loaded
Jan 1 00:00:11 VPN-RTR01 user.info : process_monitor successfully started
Jan 1 00:00:11 VPN-RTR01 user.info : wland : WLAN daemon successfully stopped
Jul 21 23:22:52 VPN-RTR01 user.info : cron : cron daemon successfully stopped
Jul 21 23:22:52 VPN-RTR01 user.info : wland : WLAN daemon successfully started
Jul 21 23:22:52 VPN-RTR01 user.info : WAN is up. IP: 192.168.254.252
Jul 21 23:22:52 VPN-RTR01 user.info : openvpn : OpenVPN daemon (Client) successfully stopped
Jul 21 23:22:52 VPN-RTR01 daemon.err openvpn[960]: event_wait : Interrupted system call (code=4)
Jul 21 23:22:52 VPN-RTR01 daemon.notice openvpn[960]: SIGTERM[hard,] received, process exiting
Jul 21 23:22:53 VPN-RTR01 daemon.debug process_monitor[1058]: Restarting cron (time sync change)
Jul 21 23:22:53 VPN-RTR01 daemon.debug process_monitor[1058]: We need to re-update after 3600 seconds
Jul 21 23:22:53 VPN-RTR01 daemon.info process_monitor[1058]: set timer: 3600 seconds, callback: ntp_main()
Jul 21 23:22:53 VPN-RTR01 user.info : cron : cron daemon successfully started
Jul 21 23:22:53 VPN-RTR01 cron.info cron[1077]: (CRON) STARTUP (fork ok)


Gruß
Exo
Sponsor
Display posts from previous:    Page 1 of 1
Post new topic   Reply to topic    DD-WRT Forum Index -> Allgemeine Fragen All times are GMT

Navigation

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum