1:1 с твойта конфигурация и пак същата работа. Явно проблема е в клиента, ще пробвам на друга седмица за всеки случай.
Иначе ето логове вижда се че си адва рутовете съвсем нормално:
Wed Aug 17 15:59:42 2011 us=690635 Current Parameter Settings:
Wed Aug 17 15:59:42 2011 us=691607 config = 'toshiba.ovpn'
Wed Aug 17 15:59:42 2011 us=691662 mode = 0
Wed Aug 17 15:59:42 2011 us=691693 show_ciphers = DISABLED
Wed Aug 17 15:59:42 2011 us=691720 show_digests = DISABLED
Wed Aug 17 15:59:42 2011 us=691742 show_engines = DISABLED
Wed Aug 17 15:59:42 2011 us=691768 genkey = DISABLED
Wed Aug 17 15:59:42 2011 us=691790 key_pass_file = '[UNDEF]'
Wed Aug 17 15:59:42 2011 us=692007 show_tls_ciphers = DISABLED
Wed Aug 17 15:59:42 2011 us=692038 proto = 0
Wed Aug 17 15:59:42 2011 us=692060 local = '[UNDEF]'
Wed Aug 17 15:59:42 2011 us=692083 remote_list[0] = {'172.16.20.1', 1194}
Wed Aug 17 15:59:42 2011 us=692105 remote_random = DISABLED
Wed Aug 17 15:59:42 2011 us=692134 local_port = 1194
Wed Aug 17 15:59:42 2011 us=692156 remote_port = 1194
Wed Aug 17 15:59:42 2011 us=692254 remote_float = ENABLED
Wed Aug 17 15:59:42 2011 us=692287 ipchange = '[UNDEF]'
Wed Aug 17 15:59:42 2011 us=692325 bind_local = DISABLED
Wed Aug 17 15:59:42 2011 us=692348 dev = 'tun'
Wed Aug 17 15:59:42 2011 us=692370 dev_type = '[UNDEF]'
Wed Aug 17 15:59:42 2011 us=692411 NOTE: --mute triggered...
Wed Aug 17 15:59:42 2011 us=692455 168 variation(s) on previous 20 message(s) suppressed by --mute
Wed Aug 17 15:59:42 2011 us=692483 OpenVPN 2.0.9 Win32-MinGW [SSL] [LZO] built on Oct 1 2006
Wed Aug 17 15:59:42 2011 us=692735 IMPORTANT: OpenVPN's default port number is now 1194, based on an official port number assignment by IANA. OpenVPN 2.0-beta16 and earlier used 5000 as the default port.
Wed Aug 17 15:59:42 2011 us=700057 Control Channel Authentication: using 'ta.key' as a OpenVPN static key file
Wed Aug 17 15:59:42 2011 us=700120 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Wed Aug 17 15:59:42 2011 us=700148 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Wed Aug 17 15:59:42 2011 us=700369 Control Channel MTU parms [ L:1557 D:166 EF:66 EB:0 ET:0 EL:0 ]
Wed Aug 17 15:59:42 2011 us=731683 Data Channel MTU parms [ L:1557 D:1450 EF:57 EB:4 ET:0 EL:0 ]
Wed Aug 17 15:59:42 2011 us=731809 Local Options String: 'V4,dev-type tun,link-mtu 1557,tun-mtu 1500,proto UDPv4,keydir 1,cipher AES-256-CBC,auth SHA1,keysize 256,tls-auth,key-method 2,tls-client'
Wed Aug 17 15:59:42 2011 us=731836 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1557,tun-mtu 1500,proto UDPv4,keydir 0,cipher AES-256-CBC,auth SHA1,keysize 256,tls-auth,key-method 2,tls-server'
Wed Aug 17 15:59:42 2011 us=731906 Local Options hash (VER=V4): 'ed844052'
Wed Aug 17 15:59:42 2011 us=731939 Expected Remote Options hash (VER=V4): '8a244582'
Wed Aug 17 15:59:42 2011 us=731996 Socket Buffers: R=[8192->8192] S=[8192->8192]
Wed Aug 17 15:59:42 2011 us=732033 UDPv4 link local: [undef]
Wed Aug 17 15:59:42 2011 us=732062 UDPv4 link remote: 172.16.20.1:1194
Wed Aug 17 16:00:30 2011 us=982569 TLS: Initial packet from 172.16.20.1:1194, sid=a7f2979f 9c9be64d
Wed Aug 17 16:00:31 2011 us=78780 VERIFY OK: depth=1, /C=BG/ST=Sf/L=Sofia/O=vladko.org/CN=vladko.org_CA/emailAddress=dimitrov@vladko.org
Wed Aug 17 16:00:31 2011 us=80679 VERIFY OK: nsCertType=SERVER
Wed Aug 17 16:00:31 2011 us=80736 VERIFY OK: depth=0, /C=BG/ST=Sf/L=Sofia/O=vladko.org/CN=server/emailAddress=dimitrov@vladko.org
Wed Aug 17 16:00:31 2011 us=635881 WARNING: 'link-mtu' is used inconsistently, local='link-mtu 1557', remote='link-mtu 1487'
Wed Aug 17 16:00:31 2011 us=635969 WARNING: 'tun-mtu' is used inconsistently, local='tun-mtu 1500', remote='tun-mtu 1430'
Wed Aug 17 16:00:31 2011 us=637672 Data Channel Encrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
Wed Aug 17 16:00:31 2011 us=637790 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Wed Aug 17 16:00:31 2011 us=637830 Data Channel Decrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
Wed Aug 17 16:00:31 2011 us=637857 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Wed Aug 17 16:00:31 2011 us=638161 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA
Wed Aug 17 16:00:31 2011 us=638357 [server] Peer Connection Initiated with 172.16.20.1:1194
Wed Aug 17 16:00:32 2011 us=758361 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
Wed Aug 17 16:00:32 2011 us=761129 PUSH: Received control message: 'PUSH_REPLY,route 172.16.20.0 255.255.255.224,route 10.0.0.1,ping 10,ping-restart 60,ifconfig 10.0.0.6 10.0.0.5'
Wed Aug 17 16:00:32 2011 us=761220 OPTIONS IMPORT: timers and/or timeouts modified
Wed Aug 17 16:00:32 2011 us=761242 OPTIONS IMPORT: --ifconfig/up options modified
Wed Aug 17 16:00:32 2011 us=761280 OPTIONS IMPORT: route options modified
Wed Aug 17 16:00:32 2011 us=772581 netsh interface ip set address "Local Area Connection 2" static 10.0.0.6 255.255.255.252
Wed Aug 17 16:00:32 2011 us=985112 TAP-WIN32 device [Local Area Connection 2] opened: \\.\Global\{08982C34-E42F-4057-98EA-57F75B85993B}.tap
Wed Aug 17 16:00:32 2011 us=985181 TAP-Win32 Driver Version 8.4
Wed Aug 17 16:00:32 2011 us=985212 TAP-Win32 MTU=1500
Wed Aug 17 16:00:32 2011 us=986931 Successful ARP Flush on interface [24] {08982C34-E42F-4057-98EA-57F75B85993B}
Wed Aug 17 16:00:35 2011 us=124810 TEST ROUTES: 2/2 succeeded len=2 ret=1 a=0 u/d=up
Wed Aug 17 16:00:35 2011 us=124884 route ADD 172.16.20.0 MASK 255.255.255.224 10.0.0.5
OK!
Wed Aug 17 16:00:35 2011 us=218346 route ADD 10.0.0.1 MASK 255.255.255.255 10.0.0.5
OK!
Wed Aug 17 16:00:35 2011 us=302363 Initialization Sequence Completed
ето и рутинг таблицата после
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.2 30
10.0.0.1 255.255.255.255 10.0.0.5 192.168.1.2 31
10.0.0.4 255.255.255.252 On-link 10.0.0.6 286
10.0.0.6 255.255.255.255 On-link 10.0.0.6 286
10.0.0.7 255.255.255.255 On-link 10.0.0.6 286
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
172.16.20.0 255.255.255.224 10.0.0.5 192.168.1.2 31
Пак тръгва да търси 10.0.0.5 през интерфеиса на който реално идва интернета 192.168.1.2. Затова се мъчих и с този push 10.0.0.0..... иначе да не ми трябва.
Поздрави!