Ich wollte gestern von 131 auf 132 updaten. Danach ging bei mir erst einmal gar nichts mehr. Also Kommando zurueck und wieder auf 131. Alles wieder gut. Mein Kopf liess es aber nicht zu, dass ich das Update nicht hinkriege. Also nochmals von vorne und nun auch mit einer frischen 131 als Basis. Nach ein wenig rumgefummel funktioniert mehrheitlich alles wieder. Netflix auf TV wird durch IPS geblockt, auch wenn man "Monitor Traffic only" aktiviert...strange, aber nun gut.
Was nun aber bei mir nicht mehr geht, ist OpenVPN. Hab alles neu eingerichtet. Host/root certificate und dann Client neu eingerichtet. Habe dann auf Android und Win10 versucht mich zu verbinden. Folgendes bekomme ich zu Gesicht (Android Log):
Code: Select all
2019-06-09 14:48:00 official build 0.7.8 running on samsung SM-G955F (universal8895), Android 9 (PPR1.180610.011) API 28, ABI arm64-v8a, (samsungE4:user/release-keys)
2019-06-09 14:48:00 Building configuration…
2019-06-09 14:48:00 started Socket Thread
2019-06-09 14:48:00 Network Status: CONNECTED LTE to MOBILE gprs..
2019-06-09 14:48:00 Debug state info: CONNECTED LTE to MOBILE gprs.., pause: userPause, shouldbeconnected: true, network: SHOULDBECONNECTED
2019-06-09 14:48:00 Debug state info: CONNECTED LTE to MOBILE gprs.., pause: userPause, shouldbeconnected: true, network: SHOULDBECONNECTED
2019-06-09 14:48:00 Current Parameter Settings:
2019-06-09 14:48:00 Waiting 0s seconds between connection attempt
2019-06-09 14:48:00 config = '/data/user/0/de.blinkt.openvpn/cache/android.conf'
2019-06-09 14:48:00 mode = 0
2019-06-09 14:48:00 show_ciphers = DISABLED
2019-06-09 14:48:00 show_digests = DISABLED
2019-06-09 14:48:00 show_engines = DISABLED
2019-06-09 14:48:00 genkey = DISABLED
2019-06-09 14:48:00 key_pass_file = '[UNDEF]'
2019-06-09 14:48:00 show_tls_ciphers = DISABLED
2019-06-09 14:48:00 connect_retry_max = 0
2019-06-09 14:48:00 Connection profiles [0]:
2019-06-09 14:48:00 proto = tcp-client
2019-06-09 14:48:00 local = '[UNDEF]'
2019-06-09 14:48:00 local_port = '[UNDEF]'
2019-06-09 14:48:00 remote = 'xxxxxxxxxxxxx'
2019-06-09 14:48:00 remote_port = '443'
2019-06-09 14:48:00 remote_float = DISABLED
2019-06-09 14:48:00 bind_defined = DISABLED
2019-06-09 14:48:00 bind_local = DISABLED
2019-06-09 14:48:00 bind_ipv6_only = DISABLED
2019-06-09 14:48:00 connect_retry_seconds = 2
2019-06-09 14:48:00 connect_timeout = 120
2019-06-09 14:48:00 socks_proxy_server = '[UNDEF]'
2019-06-09 14:48:00 socks_proxy_port = '[UNDEF]'
2019-06-09 14:48:00 tun_mtu = 1500
2019-06-09 14:48:00 tun_mtu_defined = ENABLED
2019-06-09 14:48:00 link_mtu = 1500
2019-06-09 14:48:00 link_mtu_defined = DISABLED
2019-06-09 14:48:00 tun_mtu_extra = 0
2019-06-09 14:48:00 tun_mtu_extra_defined = DISABLED
2019-06-09 14:48:00 mtu_discover_type = -1
2019-06-09 14:48:00 fragment = 0
2019-06-09 14:48:00 mssfix = 1450
2019-06-09 14:48:00 explicit_exit_notification = 0
2019-06-09 14:48:00 tls_auth_file = '[[INLINE]]'
2019-06-09 14:48:00 key_direction = not set
2019-06-09 14:48:00 tls_crypt_file = '[UNDEF]'
2019-06-09 14:48:00 tls_crypt_v2_file = '[UNDEF]'
2019-06-09 14:48:00 Connection profiles END
2019-06-09 14:48:00 remote_random = DISABLED
2019-06-09 14:48:00 ipchange = '[UNDEF]'
2019-06-09 14:48:00 dev = 'tun'
2019-06-09 14:48:00 dev_type = '[UNDEF]'
2019-06-09 14:48:00 dev_node = '[UNDEF]'
2019-06-09 14:48:00 lladdr = '[UNDEF]'
2019-06-09 14:48:00 topology = 1
2019-06-09 14:48:00 ifconfig_local = '[UNDEF]'
2019-06-09 14:48:00 ifconfig_remote_netmask = '[UNDEF]'
2019-06-09 14:48:00 ifconfig_noexec = DISABLED
2019-06-09 14:48:00 ifconfig_nowarn = ENABLED
2019-06-09 14:48:00 ifconfig_ipv6_local = '[UNDEF]'
2019-06-09 14:48:00 ifconfig_ipv6_netbits = 0
2019-06-09 14:48:00 ifconfig_ipv6_remote = '[UNDEF]'
2019-06-09 14:48:00 shaper = 0
2019-06-09 14:48:00 mtu_test = 0
2019-06-09 14:48:00 mlock = DISABLED
2019-06-09 14:48:00 keepalive_ping = 0
2019-06-09 14:48:00 keepalive_timeout = 0
2019-06-09 14:48:00 inactivity_timeout = 0
2019-06-09 14:48:00 ping_send_timeout = 0
2019-06-09 14:48:00 ping_rec_timeout = 0
2019-06-09 14:48:00 ping_rec_timeout_action = 0
2019-06-09 14:48:00 ping_timer_remote = DISABLED
2019-06-09 14:48:00 remap_sigusr1 = 0
2019-06-09 14:48:00 persist_tun = ENABLED
2019-06-09 14:48:00 persist_local_ip = DISABLED
2019-06-09 14:48:00 persist_remote_ip = DISABLED
2019-06-09 14:48:00 persist_key = DISABLED
2019-06-09 14:48:00 passtos = DISABLED
2019-06-09 14:48:00 resolve_retry_seconds = 60
2019-06-09 14:48:00 resolve_in_advance = ENABLED
2019-06-09 14:48:00 username = '[UNDEF]'
2019-06-09 14:48:00 groupname = '[UNDEF]'
2019-06-09 14:48:00 chroot_dir = '[UNDEF]'
2019-06-09 14:48:00 cd_dir = '[UNDEF]'
2019-06-09 14:48:00 writepid = '[UNDEF]'
2019-06-09 14:48:00 up_script = '[UNDEF]'
2019-06-09 14:48:00 down_script = '[UNDEF]'
2019-06-09 14:48:00 down_pre = DISABLED
2019-06-09 14:48:00 up_restart = DISABLED
2019-06-09 14:48:00 up_delay = DISABLED
2019-06-09 14:48:00 daemon = DISABLED
2019-06-09 14:48:00 inetd = 0
2019-06-09 14:48:00 log = DISABLED
2019-06-09 14:48:00 suppress_timestamps = DISABLED
2019-06-09 14:48:00 machine_readable_output = ENABLED
2019-06-09 14:48:00 nice = 0
2019-06-09 14:48:00 verbosity = 4
2019-06-09 14:48:00 mute = 0
2019-06-09 14:48:00 gremlin = 0
2019-06-09 14:48:00 status_file = '[UNDEF]'
2019-06-09 14:48:00 status_file_version = 1
2019-06-09 14:48:00 status_file_update_freq = 60
2019-06-09 14:48:00 occ = ENABLED
2019-06-09 14:48:00 rcvbuf = 0
2019-06-09 14:48:00 sndbuf = 0
2019-06-09 14:48:00 sockflags = 0
2019-06-09 14:48:00 fast_io = DISABLED
2019-06-09 14:48:00 comp.alg = 0
2019-06-09 14:48:00 comp.flags = 0
2019-06-09 14:48:00 route_script = '[UNDEF]'
2019-06-09 14:48:00 route_default_gateway = '[UNDEF]'
2019-06-09 14:48:00 route_default_metric = 0
2019-06-09 14:48:00 route_noexec = DISABLED
2019-06-09 14:48:00 route_delay = 0
2019-06-09 14:48:00 route_delay_window = 30
2019-06-09 14:48:00 route_delay_defined = DISABLED
2019-06-09 14:48:00 route_nopull = DISABLED
2019-06-09 14:48:00 route_gateway_via_dhcp = DISABLED
2019-06-09 14:48:00 allow_pull_fqdn = DISABLED
2019-06-09 14:48:00 route 0.0.0.0/0.0.0.0/vpn_gateway/default (not set)
2019-06-09 14:48:00 management_addr = '/data/user/0/de.blinkt.openvpn/cache/mgmtsocket'
2019-06-09 14:48:00 management_port = 'unix'
2019-06-09 14:48:00 management_user_pass = '[UNDEF]'
2019-06-09 14:48:00 management_log_history_cache = 250
2019-06-09 14:48:00 management_echo_buffer_size = 100
2019-06-09 14:48:00 management_write_peer_info_file = '[UNDEF]'
2019-06-09 14:48:00 management_client_user = '[UNDEF]'
2019-06-09 14:48:00 management_client_group = '[UNDEF]'
2019-06-09 14:48:00 management_flags = 1830
2019-06-09 14:48:00 shared_secret_file = '[UNDEF]'
2019-06-09 14:48:00 key_direction = not set
2019-06-09 14:48:00 ciphername = 'AES-256-GCM'
2019-06-09 14:48:00 ncp_enabled = ENABLED
2019-06-09 14:48:00 ncp_ciphers = 'AES-256-GCM:AES-128-GCM'
2019-06-09 14:48:00 authname = 'SHA512'
2019-06-09 14:48:00 prng_hash = 'SHA1'
2019-06-09 14:48:00 prng_nonce_secret_len = 16
2019-06-09 14:48:00 keysize = 0
2019-06-09 14:48:00 engine = DISABLED
2019-06-09 14:48:00 replay = ENABLED
2019-06-09 14:48:00 mute_replay_warnings = DISABLED
2019-06-09 14:48:00 replay_window = 64
2019-06-09 14:48:00 replay_time = 15
2019-06-09 14:48:00 packet_id_file = '[UNDEF]'
2019-06-09 14:48:00 test_crypto = DISABLED
2019-06-09 14:48:00 tls_server = DISABLED
2019-06-09 14:48:00 tls_client = ENABLED
2019-06-09 14:48:00 key_method = 2
2019-06-09 14:48:00 ca_file = '[[INLINE]]'
2019-06-09 14:48:00 ca_path = '[UNDEF]'
2019-06-09 14:48:00 dh_file = '[UNDEF]'
2019-06-09 14:48:00 cert_file = '[[INLINE]]'
2019-06-09 14:48:00 extra_certs_file = '[UNDEF]'
2019-06-09 14:48:00 "priv_key_file" = EXTERNAL_PRIVATE_KEY
2019-06-09 14:48:00 pkcs12_file = '[UNDEF]'
2019-06-09 14:48:00 cipher_list = '[UNDEF]'
2019-06-09 14:48:00 cipher_list_tls13 = '[UNDEF]'
2019-06-09 14:48:00 tls_cert_profile = '[UNDEF]'
2019-06-09 14:48:00 tls_verify = '[UNDEF]'
2019-06-09 14:48:00 tls_export_cert = '[UNDEF]'
2019-06-09 14:48:00 verify_x509_type = 0
2019-06-09 14:48:00 verify_x509_name = '[UNDEF]'
2019-06-09 14:48:00 crl_file = '[UNDEF]'
2019-06-09 14:48:00 ns_cert_type = 0
2019-06-09 14:48:00 remote_cert_ku[i] = 0
2019-06-09 14:48:00 remote_cert_ku[i] = 0
2019-06-09 14:48:00 remote_cert_ku[i] = 0
2019-06-09 14:48:00 remote_cert_ku[i] = 0
2019-06-09 14:48:00 remote_cert_ku[i] = 0
2019-06-09 14:48:00 remote_cert_ku[i] = 0
2019-06-09 14:48:00 remote_cert_ku[i] = 0
2019-06-09 14:48:00 remote_cert_ku[i] = 0
2019-06-09 14:48:00 remote_cert_ku[i] = 0
2019-06-09 14:48:00 remote_cert_ku[i] = 0
2019-06-09 14:48:00 remote_cert_ku[i] = 0
2019-06-09 14:48:00 remote_cert_ku[i] = 0
2019-06-09 14:48:00 remote_cert_ku[i] = 0
2019-06-09 14:48:00 remote_cert_ku[i] = 0
2019-06-09 14:48:00 remote_cert_ku[i] = 0
2019-06-09 14:48:00 remote_cert_ku[i] = 0
2019-06-09 14:48:00 remote_cert_eku = '[UNDEF]'
2019-06-09 14:48:00 ssl_flags = 0
2019-06-09 14:48:00 tls_timeout = 2
2019-06-09 14:48:00 renegotiate_bytes = -1
2019-06-09 14:48:00 renegotiate_packets = 0
2019-06-09 14:48:00 renegotiate_seconds = 3600
2019-06-09 14:48:00 handshake_window = 60
2019-06-09 14:48:00 transition_window = 3600
2019-06-09 14:48:00 single_session = DISABLED
2019-06-09 14:48:00 push_peer_info = DISABLED
2019-06-09 14:48:00 tls_exit = DISABLED
2019-06-09 14:48:00 tls_crypt_v2_genkey_type = '[UNDEF]'
2019-06-09 14:48:00 tls_crypt_v2_genkey_file = '[UNDEF]'
2019-06-09 14:48:00 tls_crypt_v2_metadata = '[UNDEF]'
2019-06-09 14:48:00 client = ENABLED
2019-06-09 14:48:00 pull = ENABLED
2019-06-09 14:48:00 auth_user_pass_file = '[UNDEF]'
2019-06-09 14:48:00 OpenVPN 2.5-icsopenvpn [git:icsopenvpn/v0.7.8-0-g168367a5] arm64-v8a [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Feb 22 2019
2019-06-09 14:48:00 library versions: OpenSSL 1.1.1a 20 Nov 2018, LZO 2.10
2019-06-09 14:48:00 MANAGEMENT: Connected to management server at /data/user/0/de.blinkt.openvpn/cache/mgmtsocket
2019-06-09 14:48:00 MANAGEMENT: CMD 'version 3'
2019-06-09 14:48:00 MANAGEMENT: CMD 'hold release'
2019-06-09 14:48:00 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
2019-06-09 14:48:00 Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
2019-06-09 14:48:00 Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
2019-06-09 14:48:00 Control Channel MTU parms [ L:1623 D:1138 EF:112 EB:0 ET:0 EL:3 ]
2019-06-09 14:48:00 Data Channel MTU parms [ L:1623 D:1450 EF:123 EB:406 ET:0 EL:3 ]
2019-06-09 14:48:00 Local Options String (VER=V4): 'V4,dev-type tun,link-mtu 1551,tun-mtu 1500,proto TCPv4_CLIENT,cipher AES-256-GCM,auth [null-digest],keysize 256,tls-auth,key-method 2,tls-client'
2019-06-09 14:48:00 Expected Remote Options String (VER=V4): 'V4,dev-type tun,link-mtu 1551,tun-mtu 1500,proto TCPv4_SERVER,cipher AES-256-GCM,auth [null-digest],keysize 256,tls-auth,key-method 2,tls-server'
2019-06-09 14:48:00 TCP/UDP: Preserving recently used remote address: [AF_INET]83.76.219.XXX:443
2019-06-09 14:48:00 Socket Buffers: R=[3145728->3145728] S=[1572864->1572864]
2019-06-09 14:48:00 Attempting to establish TCP connection with [AF_INET]83.76.219.XXX:443 [nonblock]
2019-06-09 14:48:00 MANAGEMENT: CMD 'bytecount 2'
2019-06-09 14:48:00 MANAGEMENT: CMD 'needok 'PROTECTFD' ok'
2019-06-09 14:48:00 MANAGEMENT: CMD 'state on'
2019-06-09 14:48:01 TCP connection established with [AF_INET]83.76.219.XXX:443
2019-06-09 14:48:01 MANAGEMENT: CMD 'needok 'PROTECTFD' ok'
2019-06-09 14:48:01 TCP_CLIENT link local: (not bound)
2019-06-09 14:48:01 TCP_CLIENT link remote: [AF_INET]83.76.219.XXX:443
2019-06-09 14:48:01 MANAGEMENT: >STATE:1560084481,WAIT,,,,,,
2019-06-09 14:48:09 Connection reset, restarting [-1]
2019-06-09 14:48:09 TCP/UDP: Closing socket
2019-06-09 14:48:09 Waiting 2s seconds between connection attempt
2019-06-09 14:48:09 SIGUSR1[soft,connection-reset] received, process restarting