Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

it does not connect to vpn (lot of reconnect messages in log) #2

Open
devopsalexandr opened this issue May 10, 2022 · 1 comment
Open

it does not connect to vpn (lot of reconnect messages in log) #2

devopsalexandr opened this issue May 10, 2022 · 1 comment

Comments

@devopsalexandr
Copy link

devopsalexandr commented May 10, 2022
edited
Loading

all pods start successfully but it does not work

In openvpn pod log many strange logs:

2022-05-10 17:45:27 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
2022-05-10 17:45:27 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
2022-05-10 17:45:27 TCP connection established with [AF_INET]127.0.0.1:46739
2022-05-10 17:45:27 127.0.0.1:46739 Connection reset, restarting [0]
2022-05-10 17:45:27 127.0.0.1:46739 SIGUSR1[soft,connection-reset] received, client-instance restarting
2022-05-10 17:45:32 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
2022-05-10 17:45:32 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
2022-05-10 17:45:32 TCP connection established with [AF_INET]127.0.0.1:42341
2022-05-10 17:45:32 127.0.0.1:42341 Connection reset, restarting [0]
2022-05-10 17:45:32 127.0.0.1:42341 SIGUSR1[soft,connection-reset] received, client-instance restarting
2022-05-10 17:45:37 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
2022-05-10 17:45:37 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
2022-05-10 17:45:37 TCP connection established with [AF_INET]127.0.0.1:36745
2022-05-10 17:45:37 127.0.0.1:36745 Connection reset, restarting [0]
2022-05-10 17:45:37 127.0.0.1:36745 SIGUSR1[soft,connection-reset] received, client-instance restarting
2022-05-10 17:45:42 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
2022-05-10 17:45:42 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
2022-05-10 17:45:42 TCP connection established with [AF_INET]127.0.0.1:39041
2022-05-10 17:45:42 127.0.0.1:39041 Connection reset, restarting [0]
2022-05-10 17:45:42 127.0.0.1:39041 SIGUSR1[soft,connection-reset] received, client-instance restarting

verb 5

022-05-10 18:28:19 us=904977 TCP/UDP: Closing socket
2022-05-10 18:28:24 us=890548 MULTI: multi_create_instance called
2022-05-10 18:28:24 us=890666 Re-using SSL/TLS context
2022-05-10 18:28:24 us=890844 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
2022-05-10 18:28:24 us=890881 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
2022-05-10 18:28:24 us=891111 Control Channel MTU parms [ L:1623 D:1182 EF:68 EB:0 ET:0 EL:3 ]
2022-05-10 18:28:24 us=891169 Data Channel MTU parms [ L:1623 D:1450 EF:123 EB:406 ET:0 EL:3 ]
2022-05-10 18:28:24 us=891240 Local Options String (VER=V4): 'V4,dev-type tun,link-mtu 1559,tun-mtu 1500,proto TCPv4_SERVER,keydir 0,cipher AES-256-CBC,auth SHA1,keysize 256,tls-auth,key-method 2,tls-server'
2022-05-10 18:28:24 us=891253 Expected Remote Options String (VER=V4): 'V4,dev-type tun,link-mtu 1559,tun-mtu 1500,proto TCPv4_CLIENT,keydir 1,cipher AES-256-CBC,auth SHA1,keysize 256,tls-auth,key-method 2,tls-client'
2022-05-10 18:28:24 us=891293 TCP connection established with [AF_INET]127.0.0.1:34619
2022-05-10 18:28:24 us=891306 TCPv4_SERVER link local: (not bound)
2022-05-10 18:28:24 us=891314 TCPv4_SERVER link remote: [AF_INET]127.0.0.1:34619
2022-05-10 18:28:24 us=891519 127.0.0.1:34619 Connection reset, restarting [0]
2022-05-10 18:28:24 us=891534 127.0.0.1:34619 SIGUSR1[soft,connection-reset] received, client-instance restarting
2022-05-10 18:28:24 us=891663 TCP/UDP: Closing socket

on udp

2022-05-10 19:40:56 UDPv4 link remote: [AF_UNSPEC]
2022-05-10 19:40:56 GID set to nogroup
2022-05-10 19:40:56 UID set to nobody
2022-05-10 19:40:56 MULTI: multi_init called, r=256 v=256
2022-05-10 19:40:56 IFCONFIG POOL IPv4: base=10.240.0.4 size=16382
2022-05-10 19:40:56 Initialization Sequence Completed
2022-05-10 19:41:19 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:8989
2022-05-10 19:41:19 MANAGEMENT: CMD 'status'
2022-05-10 19:41:19 MANAGEMENT: Client disconnected
2022-05-10 19:41:47 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:8989
2022-05-10 19:41:47 MANAGEMENT: CMD 'status'
2022-05-10 19:41:47 MANAGEMENT: Client disconnected
@wzooff
Copy link
Owner

wzooff commented May 11, 2022

These bunch of reconnect messages in log may be related to k8s healthcheck. It's just trying to connect to vpn port. You can write your own check that will not try to connect to openvpn server. Feel free to contribute ^_^

@wzooff wzooff changed the title it does not connect to vpn it does not connect to vpn (lot of reconnect messages in log) May 11, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@wzooff @devopsalexandr