Skip to content

Connecting with udp 53 (sometimes?) fail

I don't now why..

What we see:

  1. trys to connect with udp/53
  2. After 30 seconds: timeout
  3. Then it trys next --remote 
2024-04-11 14:52:13 Note: --cipher is not set. OpenVPN versions before 2.5 defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
2024-04-11 14:52:13 Note: Kernel support for ovpn-dco missing, disabling data channel offload.
2024-04-11 14:52:13 OpenVPN 2.6.10 [git:makepkg/ba0f62fb950c56a0+] x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] [DCO] built on Mar 20 2024
2024-04-11 14:52:13 library versions: OpenSSL 3.2.1 30 Jan 2024, LZO 2.10
2024-04-11 14:52:13 DCO version: N/A
2024-04-11 14:52:13 MANAGEMENT: Connected to management server at [AF_INET]127.0.0.1:6061
2024-04-11 14:52:13 WARNING: you are using user/group/chroot/setcon without persist-tun -- this may cause restarts to fail
2024-04-11 14:52:13 WARNING: you are using user/group/chroot/setcon without persist-key -- this may cause restarts to fail
2024-04-11 14:52:13 TCP/UDP: Preserving recently used remote address: [AF_INET]163.172.58.132:53
2024-04-11 14:52:13 Socket Buffers: R=[212992->212992] S=[212992->212992]
2024-04-11 14:52:13 UDPv4 link local: (not bound)
2024-04-11 14:52:13 UDPv4 link remote: [AF_INET]163.172.58.132:53
2024-04-11 14:52:13 NOTE: UID/GID downgrade will be delayed because of --client, --pull, or --up-delay
2024-04-11 14:52:13 MANAGEMENT: CMD ''
2024-04-11 14:52:13 MANAGEMENT: CMD 'state on'
2024-04-11 14:52:43 [UNDEF] Inactivity timeout (--ping-restart), restarting
2024-04-11 14:52:43 SIGUSR1[soft,ping-restart] received, process restarting
2024-04-11 14:52:43 MANAGEMENT: >STATE:1712839963,RECONNECTING,ping-restart,,,,,
2024-04-11 14:52:43 Restart pause, 1 second(s)
2024-04-11 14:52:44 WARNING: you are using user/group/chroot/setcon without persist-tun -- this may cause restarts to fail
2024-04-11 14:52:44 WARNING: you are using user/group/chroot/setcon without persist-key -- this may cause restarts to fail
2024-04-11 14:52:44 TCP/UDP: Preserving recently used remote address: [AF_INET]51.159.197.108:1194
2024-04-11 14:52:44 Socket Buffers: R=[212992->212992] S=[212992->212992]
2024-04-11 14:52:44 UDPv4 link local: (not bound)
2024-04-11 14:52:44 UDPv4 link remote: [AF_INET]51.159.197.108:1194
2024-04-11 14:52:44 MANAGEMENT: >STATE:1712839964,WAIT,,,,,,
2024-04-11 14:52:44 MANAGEMENT: >STATE:1712839964,AUTH,,,,,,
2024-04-11 14:52:44 TLS: Initial packet from [AF_INET]51.159.197.108:1194, sid=90abce52 ccd2e707
2024-04-11 14:52:44 VERIFY OK: depth=1, CN=LEAP Root CA
2024-04-11 14:52:44 VERIFY KU OK
2024-04-11 14:52:44 Validating certificate extended key usage
2024-04-11 14:52:44 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
2024-04-11 14:52:44 VERIFY EKU OK
2024-04-11 14:52:44 VERIFY OK: depth=0, CN=vpn02-par
2024-04-11 14:52:44 Control Channel: TLSv1.3, cipher TLSv1.3 TLS_AES_256_GCM_SHA384, peer certificate: 256 bits ECprime256v1, signature: ecdsa-with-SHA256, peer temporary key: 253 bits X25519
2024-04-11 14:52:44 [vpn02-par] Peer Connection Initiated with [AF_INET]51.159.197.108:1194
Edited by Pea Nut