Connection reset, restarting (-1)

stevenhemelaere · #1 (**permalink**) 06-20-2009, 09:55 AM

When using standard configured SSL VPN i'm getting this.

Does anyone know why this happens, and what this means?

It happens all the time:

Code:

2009:06:19-15:54:16 <VPN NAME> openvpn[32268]: Re-using SSL/TLS context
2009:06:19-15:54:16 <VPN NAME> openvpn[32268]: LZO compression initialized
2009:06:19-15:54:16 <VPN NAME> openvpn[32268]: Control Channel MTU parms [ L:1560 D:140 EF:40 EB:0 ET:0 EL:0 ]
2009:06:19-15:54:16 <VPN NAME> openvpn[32268]: Data Channel MTU parms [ L:1560 D:1450 EF:60 EB:135 ET:0 EL:0 AF:3/1 ]
2009:06:19-15:54:16 <VPN NAME> openvpn[32268]: Local Options hash (VER=V4): '79ef4284'
2009:06:19-15:54:16 <VPN NAME> openvpn[32268]: Expected Remote Options hash (VER=V4): '958c5492'
2009:06:19-15:54:16 <VPN NAME> openvpn[32268]: TCP connection established with <IP ADDRESS>:31774
2009:06:19-15:54:16 <VPN NAME> openvpn[32268]: TCPv4_SERVER link local: [undef]
2009:06:19-15:54:16 <VPN NAME> openvpn[32268]: TCPv4_SERVER link remote: <IP ADDRESS>:31774
2009:06:19-15:54:17 <VPN NAME> openvpn[32268]: <IP ADDRESS>:31774 VERIFY OK: depth=1, /C=be/L=<CITY>/O=<NAME>/CN=<NAME>_VPN_CA/emailAddress=<EMAILADDRESS 1>
2009:06:19-15:54:17 <VPN NAME> openvpn[32268]: <IP ADDRESS>:31774 VERIFY OK: depth=0, /C=be/L=<CITY>/O=<NAME>/CN=<NAME>/emailAddress=<EMAILADDRESS 2>
2009:06:19-15:54:18 <VPN NAME> openvpn[32268]: <IP ADDRESS>:31774 TLS: Username/Password authentication succeeded for username '<USERNAME>' 
2009:06:19-15:54:18 <VPN NAME> openvpn[32268]: <IP ADDRESS>:31774 Data Channel Encrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
2009:06:19-15:54:18 <VPN NAME> openvpn[32268]: <IP ADDRESS>:31774 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
2009:06:19-15:54:18 <VPN NAME> openvpn[32268]: <IP ADDRESS>:31774 Data Channel Decrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
2009:06:19-15:54:18 <VPN NAME> openvpn[32268]: <IP ADDRESS>:31774 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
2009:06:19-15:54:18 <VPN NAME> openvpn[32268]: <IP ADDRESS>:31774 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
2009:06:19-15:54:18 <VPN NAME> openvpn[32268]: <IP ADDRESS>:31774 [<NAME>] Peer Connection Initiated with <IP ADDRESS>:31774
2009:06:19-15:55:13 <VPN NAME> openvpn[32268]: <NAME>/<IP ADDRESS>:31774 Connection reset, restarting [-1]
2009:06:19-15:55:13 <VPN NAME> openvpn[32268]: TCP/UDP: Closing socket
2009:06:19-15:55:19 <VPN NAME> openvpn[32268]: Re-using SSL/TLS context
2009:06:19-15:55:19 <VPN NAME> openvpn[32268]: LZO compression initialized
2009:06:19-15:55:19 <VPN NAME> openvpn[32268]: Control Channel MTU parms [ L:1560 D:140 EF:40 EB:0 ET:0 EL:0 ]
2009:06:19-15:55:19 <VPN NAME> openvpn[32268]: Data Channel MTU parms [ L:1560 D:1450 EF:60 EB:135 ET:0 EL:0 AF:3/1 ]
2009:06:19-15:55:19 <VPN NAME> openvpn[32268]: Local Options hash (VER=V4): '79ef4284'
2009:06:19-15:55:19 <VPN NAME> openvpn[32268]: Expected Remote Options hash (VER=V4): '958c5492'
2009:06:19-15:55:19 <VPN NAME> openvpn[32268]: TCP connection established with <IP ADDRESS>:34083
2009:06:19-15:55:19 <VPN NAME> openvpn[32268]: TCPv4_SERVER link local: [undef]
2009:06:19-15:55:19 <VPN NAME> openvpn[32268]: TCPv4_SERVER link remote: <IP ADDRESS>:34083
2009:06:19-15:55:20 <VPN NAME> openvpn[32268]: <IP ADDRESS>:34083 VERIFY OK: depth=1, /C=be/L=<CITY>/O=<NAME>/CN=<NAME>_VPN_CA/emailAddress=<EMAILADDRESS 1>
2009:06:19-15:55:20 <VPN NAME> openvpn[32268]: <IP ADDRESS>:34083 VERIFY OK: depth=0, /C=be/L=<CITY>/O=<NAME>/CN=<NAME>/emailAddress=<EMAILADDRESS 2>
2009:06:19-15:55:20 <VPN NAME> openvpn[32268]: <IP ADDRESS>:34083 TLS: Username/Password authentication succeeded for username '<USERNAME>' 
2009:06:19-15:55:20 <VPN NAME> openvpn[32268]: <IP ADDRESS>:34083 Data Channel Encrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
2009:06:19-15:55:20 <VPN NAME> openvpn[32268]: <IP ADDRESS>:34083 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
2009:06:19-15:55:20 <VPN NAME> openvpn[32268]: <IP ADDRESS>:34083 Data Channel Decrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
2009:06:19-15:55:20 <VPN NAME> openvpn[32268]: <IP ADDRESS>:34083 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
2009:06:19-15:55:20 <VPN NAME> openvpn[32268]: <IP ADDRESS>:34083 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
2009:06:19-15:55:20 <VPN NAME> openvpn[32268]: <IP ADDRESS>:34083 [<NAME>] Peer Connection Initiated with <IP ADDRESS>:34083
2009:06:19-15:56:26 <VPN NAME> openvpn[32268]: <NAME>/<IP ADDRESS>:34083 Connection reset, restarting [-1]
2009:06:19-15:56:27 <VPN NAME> openvpn[32268]: TCP/UDP: Closing socket
2009:06:19-15:56:33 <VPN NAME> openvpn[32268]: Re-using SSL/TLS context
2009:06:19-15:56:33 <VPN NAME> openvpn[32268]: LZO compression initialized
2009:06:19-15:56:33 <VPN NAME> openvpn[32268]: Control Channel MTU parms [ L:1560 D:140 EF:40 EB:0 ET:0 EL:0 ]
2009:06:19-15:56:33 <VPN NAME> openvpn[32268]: Data Channel MTU parms [ L:1560 D:1450 EF:60 EB:135 ET:0 EL:0 AF:3/1 ]
2009:06:19-15:56:33 <VPN NAME> openvpn[32268]: Local Options hash (VER=V4): '79ef4284'
2009:06:19-15:56:34 <VPN NAME> openvpn[32268]: Expected Remote Options hash (VER=V4): '958c5492'
2009:06:19-15:56:34 <VPN NAME> openvpn[32268]: TCP connection established with <IP ADDRESS>:37073
2009:06:19-15:56:34 <VPN NAME> openvpn[32268]: TCPv4_SERVER link local: [undef]
2009:06:19-15:56:34 <VPN NAME> openvpn[32268]: TCPv4_SERVER link remote: <IP ADDRESS>:37073
2009:06:19-15:56:35 <VPN NAME> openvpn[32268]: <IP ADDRESS>:37073 VERIFY OK: depth=1, /C=be/L=<CITY>/O=<NAME>/CN=<NAME>_VPN_CA/emailAddress=<EMAILADDRESS 1>
2009:06:19-15:56:35 <VPN NAME> openvpn[32268]: <IP ADDRESS>:37073 VERIFY OK: depth=0, /C=be/L=<CITY>/O=<NAME>/CN=<NAME>/emailAddress=<EMAILADDRESS 2>
2009:06:19-15:56:35 <VPN NAME> openvpn[32268]: <IP ADDRESS>:37073 TLS: Username/Password authentication succeeded for username '<USERNAME>' 
2009:06:19-15:56:35 <VPN NAME> openvpn[32268]: <IP ADDRESS>:37073 Data Channel Encrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
2009:06:19-15:56:35 <VPN NAME> openvpn[32268]: <IP ADDRESS>:37073 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
2009:06:19-15:56:35 <VPN NAME> openvpn[32268]: <IP ADDRESS>:37073 Data Channel Decrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
2009:06:19-15:56:35 <VPN NAME> openvpn[32268]: <IP ADDRESS>:37073 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
2009:06:19-15:56:35 <VPN NAME> openvpn[32268]: <IP ADDRESS>:37073 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
2009:06:19-15:56:35 <VPN NAME> openvpn[32268]: <IP ADDRESS>:37073 [<NAME>] Peer Connection Initiated with <IP ADDRESS>:37073
2009:06:19-15:57:07 <VPN NAME> openvpn[32268]: <NAME>/<IP ADDRESS>:37073 Connection reset, restarting [-1]
2009:06:19-15:57:07 <VPN NAME> openvpn[32268]: TCP/UDP: Closing socket

bkortleven · #2 (**permalink**) 12-07-2009, 08:36 AM

I'm having the exact same problem here with a firewall of ours.
A second user on the remote side tried to get a connection using the SSLVPN client, where another one was already logged in...
The second one failed with the exact same log info in the firewall.

After restarting local routers etc, both the computers weren't able to reconnect...

Any idea how you resolved it?