[GELÖST] OpenVPN-Server bleibt immer wieder stehen…

Started by Marcel_75, January 31, 2024, 01:06:24 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions
January 31, 2024, 01:06:24 AM Last Edit: January 31, 2024, 11:42:36 PM by Marcel_75
Hallo zusammen,

keine Ahnung warum, aber ich kämpfe aktuell mit dem Problem, dass der OpenVPN-Server meiner OPNsense nach kurzer Zeit immer wieder folgendes Problem bekommt:

Code Select
Cannot open TUN/TAP dev /dev/tun1: Device busy (errno=16)

Klar kann ich notfalls per SSH auf die Kiste gehen und dann per:

Code Select
ps auxwww | grep openvpn

den OpenVPN-Prozess suchen und dann 'killen' – und danach lässt sich der OpenVPN-Server auch wieder problemlos per GUI neu starten – aber das ist ja nicht normal und nützt mir vor allem nichts, wenn ich unterwegs bin...

Das Problem hatte ich schon beim frisch installierten 23.7 und nun leider auch weiterhin mit der aktuellen 24.1.

Ich hatte den OpenVPN-Server heute 1x entfernt und per "Wizard" noch einmal neu angelegt, aber auch das brachte keine Abhilfe.

Was sollte ich als nächstes machen, um das Problem in den Griff zu bekommen?

The fact that we live at the bottom of a deep gravity well, on the surface of a gas covered planet going around a nuclear fireball 90 million miles away and think this to be normal is obviously some indication of how skewed our perspective tends to be. (Douglas Adams)
January 31, 2024, 01:29:33 AM #1 Last Edit: January 31, 2024, 01:38:41 AM by Marcel_75
Habe im logfile mal auf 'debug' gestellt – es dauert keine 10 Minuten und der stürzt ab... aber warum?

Code Select
2024-01-31T01:19:03 Notice openvpn_server1 Exiting due to fatal error
2024-01-31T01:19:03 Error openvpn_server1 Cannot open TUN/TAP dev /dev/tun1: Device busy (errno=16)
2024-01-31T01:19:03 Notice openvpn_server1 TUN/TAP device ovpns1 exists previously, keep at program end
2024-01-31T01:19:03 Notice openvpn_server1 CRL: loaded 1 CRLs from file /var/etc/openvpn/server1.crl-verify
2024-01-31T01:19:03 Warning openvpn_server1 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
2024-01-31T01:19:03 Notice openvpn_server1 library versions: OpenSSL 3.0.12 24 Oct 2023, LZO 2.10
2024-01-31T01:19:03 Notice openvpn_server1 OpenVPN 2.6.8 amd64-portbld-freebsd13.2 [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [MH/RECVDA] [AEAD]
2024-01-31T01:19:03 Notice openvpn_server1 Initialization Sequence Completed
2024-01-31T01:19:03 Notice openvpn_server1 UDPv4 link remote: [AF_UNSPEC]
2024-01-31T01:19:03 Notice openvpn_server1 UDPv4 link local (bound): [AF_INET]10.89.89.2:1194
2024-01-31T01:19:03 Notice openvpn_server1 /usr/local/etc/inc/plugins.inc.d/openvpn/ovpn-linkup ovpns1 1500 0 10.0.39.1 255.255.255.0 init
2024-01-31T01:19:03 Notice openvpn_server1 /sbin/ifconfig ovpns1 10.0.39.1/24 mtu 1500 up
2024-01-31T01:19:03 Notice openvpn_server1 TUN/TAP device /dev/tun1 opened
2024-01-31T01:19:03 Notice openvpn_server1 TUN/TAP device ovpns1 exists previously, keep at program end
2024-01-31T01:19:03 Notice openvpn_server1 CRL: loaded 1 CRLs from file /var/etc/openvpn/server1.crl-verify
2024-01-31T01:19:03 Warning openvpn_server1 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
2024-01-31T01:19:03 Notice openvpn_server1 library versions: OpenSSL 3.0.12 24 Oct 2023, LZO 2.10
2024-01-31T01:19:03 Notice openvpn_server1 OpenVPN 2.6.8 amd64-portbld-freebsd13.2 [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [MH/RECVDA] [AEAD]
2024-01-31T01:19:03 Notice openvpn_server1 SIGTERM[hard,] received, process exiting
2024-01-31T01:19:03 Notice openvpn_server1 /usr/local/etc/inc/plugins.inc.d/openvpn/ovpn-linkdown ovpns1 1500 0 10.0.39.1 255.255.255.0 init
2024-01-31T01:19:03 Notice openvpn_server1 /sbin/ifconfig ovpns1 10.0.39.1 -alias
2024-01-31T01:19:03 Error openvpn_server1 event_wait : Interrupted system call (fd=-1,code=4)
2024-01-31T01:17:30 Notice openvpn_server1 Initialization Sequence Completed
2024-01-31T01:17:30 Notice openvpn_server1 UDPv4 link remote: [AF_UNSPEC]
2024-01-31T01:17:30 Notice openvpn_server1 UDPv4 link local (bound): [AF_INET]10.89.89.2:1194
2024-01-31T01:17:29 Notice openvpn_server1 /usr/local/etc/inc/plugins.inc.d/openvpn/ovpn-linkup ovpns1 1500 0 10.0.39.1 255.255.255.0 init
2024-01-31T01:17:29 Notice openvpn_server1 /sbin/ifconfig ovpns1 10.0.39.1/24 mtu 1500 up
2024-01-31T01:17:29 Notice openvpn_server1 TUN/TAP device /dev/tun1 opened
2024-01-31T01:17:29 Notice openvpn_server1 TUN/TAP device ovpns1 exists previously, keep at program end
2024-01-31T01:17:29 Notice openvpn_server1 CRL: loaded 1 CRLs from file /var/etc/openvpn/server1.crl-verify
2024-01-31T01:17:29 Warning openvpn_server1 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
2024-01-31T01:17:29 Notice openvpn_server1 library versions: OpenSSL 3.0.12 24 Oct 2023, LZO 2.10
2024-01-31T01:17:29 Notice openvpn_server1 OpenVPN 2.6.8 amd64-portbld-freebsd13.2 [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [MH/RECVDA] [AEAD]
2024-01-31T01:17:29 Notice openvpn_server1 SIGTERM[hard,] received, process exiting
2024-01-31T01:17:29 Notice openvpn_server1 /usr/local/etc/inc/plugins.inc.d/openvpn/ovpn-linkdown ovpns1 1500 0 10.0.39.1 255.255.255.0 init
2024-01-31T01:17:29 Notice openvpn_server1 /sbin/ifconfig ovpns1 10.0.39.1 -alias
2024-01-31T01:17:29 Error openvpn_server1 event_wait : Interrupted system call (fd=-1,code=4)
2024-01-31T01:12:12 Notice openvpn_server1 Initialization Sequence Completed
2024-01-31T01:12:12 Notice openvpn_server1 UDPv4 link remote: [AF_UNSPEC]
2024-01-31T01:12:12 Notice openvpn_server1 UDPv4 link local (bound): [AF_INET]10.89.89.2:1194
2024-01-31T01:12:12 Notice openvpn_server1 /usr/local/etc/inc/plugins.inc.d/openvpn/ovpn-linkup ovpns1 1500 0 10.0.39.1 255.255.255.0 init
2024-01-31T01:12:12 Notice openvpn_server1 /sbin/ifconfig ovpns1 10.0.39.1/24 mtu 1500 up
2024-01-31T01:12:12 Notice openvpn_server1 TUN/TAP device /dev/tun1 opened
2024-01-31T01:12:12 Notice openvpn_server1 TUN/TAP device ovpns1 exists previously, keep at program end
2024-01-31T01:12:12 Notice openvpn_server1 CRL: loaded 1 CRLs from file /var/etc/openvpn/server1.crl-verify
2024-01-31T01:12:12 Warning openvpn_server1 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
2024-01-31T01:12:12 Notice openvpn_server1 library versions: OpenSSL 3.0.12 24 Oct 2023, LZO 2.10
2024-01-31T01:12:12 Notice openvpn_server1 OpenVPN 2.6.8 amd64-portbld-freebsd13.2 [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [MH/RECVDA] [AEAD]
2024-01-31T01:12:12 Notice openvpn_server1 SIGTERM[hard,] received, process exiting
2024-01-31T01:12:12 Notice openvpn_server1 /usr/local/etc/inc/plugins.inc.d/openvpn/ovpn-linkdown ovpns1 1500 0 10.0.39.1 255.255.255.0 init
2024-01-31T01:12:12 Notice openvpn_server1 /sbin/ifconfig ovpns1 10.0.39.1 -alias
2024-01-31T01:12:12 Error openvpn_server1 event_wait : Interrupted system call (fd=-1,code=4)
2024-01-31T01:11:53 Notice openvpn_server1 Initialization Sequence Completed
2024-01-31T01:11:53 Notice openvpn_server1 UDPv4 link remote: [AF_UNSPEC]
2024-01-31T01:11:53 Notice openvpn_server1 UDPv4 link local (bound): [AF_INET]10.89.89.2:1194
2024-01-31T01:11:53 Notice openvpn_server1 /usr/local/etc/inc/plugins.inc.d/openvpn/ovpn-linkup ovpns1 1500 0 10.0.39.1 255.255.255.0 init
2024-01-31T01:11:53 Notice openvpn_server1 /sbin/ifconfig ovpns1 10.0.39.1/24 mtu 1500 up
2024-01-31T01:11:53 Notice openvpn_server1 TUN/TAP device /dev/tun1 opened
2024-01-31T01:11:53 Notice openvpn_server1 TUN/TAP device ovpns1 exists previously, keep at program end
2024-01-31T01:11:53 Notice openvpn_server1 CRL: loaded 1 CRLs from file /var/etc/openvpn/server1.crl-verify
2024-01-31T01:11:53 Warning openvpn_server1 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
2024-01-31T01:11:53 Notice openvpn_server1 library versions: OpenSSL 3.0.12 24 Oct 2023, LZO 2.10
2024-01-31T01:11:53 Notice openvpn_server1 OpenVPN 2.6.8 amd64-portbld-freebsd13.2 [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [MH/RECVDA] [AEAD]
2024-01-31T01:11:53 Notice openvpn_server1 SIGTERM[hard,] received, process exiting
2024-01-31T01:11:53 Notice openvpn_server1 /usr/local/etc/inc/plugins.inc.d/openvpn/ovpn-linkdown ovpns1 1500 0 10.0.39.1 255.255.255.0 init
2024-01-31T01:11:53 Notice openvpn_server1 /sbin/ifconfig ovpns1 10.0.39.1 -alias
2024-01-31T01:11:53 Error openvpn_server1 event_wait : Interrupted system call (fd=-1,code=4)
2024-01-31T01:11:53 Notice openvpn_server1 Initialization Sequence Completed
2024-01-31T01:11:53 Notice openvpn_server1 UDPv4 link remote: [AF_UNSPEC]
2024-01-31T01:11:53 Notice openvpn_server1 UDPv4 link local (bound): [AF_INET]10.89.89.2:1194
2024-01-31T01:11:52 Notice openvpn_server1 /usr/local/etc/inc/plugins.inc.d/openvpn/ovpn-linkup ovpns1 1500 0 10.0.39.1 255.255.255.0 init
2024-01-31T01:11:52 Notice openvpn_server1 /sbin/ifconfig ovpns1 10.0.39.1/24 mtu 1500 up
2024-01-31T01:11:52 Notice openvpn_server1 TUN/TAP device /dev/tun1 opened
2024-01-31T01:11:52 Notice openvpn_server1 TUN/TAP device ovpns1 exists previously, keep at program end
2024-01-31T01:11:52 Notice openvpn_server1 CRL: loaded 1 CRLs from file /var/etc/openvpn/server1.crl-verify
2024-01-31T01:11:52 Warning openvpn_server1 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
2024-01-31T01:11:52 Notice openvpn_server1 library versions: OpenSSL 3.0.12 24 Oct 2023, LZO 2.10
2024-01-31T01:11:52 Notice openvpn_server1 OpenVPN 2.6.8 amd64-portbld-freebsd13.2 [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [MH/RECVDA] [AEAD]
2024-01-31T01:11:52 Notice openvpn_server1 SIGTERM[hard,] received, process exiting
2024-01-31T01:11:52 Notice openvpn_server1 /usr/local/etc/inc/plugins.inc.d/openvpn/ovpn-linkdown ovpns1 1500 0 10.0.39.1 255.255.255.0 init
2024-01-31T01:11:52 Notice openvpn_server1 /sbin/ifconfig ovpns1 10.0.39.1 -alias
2024-01-31T01:11:52 Error openvpn_server1 event_wait : Interrupted system call (fd=-1,code=4)
2024-01-31T01:11:52 Notice openvpn_server1 Initialization Sequence Completed
2024-01-31T01:11:52 Notice openvpn_server1 UDPv4 link remote: [AF_UNSPEC]
2024-01-31T01:11:52 Notice openvpn_server1 UDPv4 link local (bound): [AF_INET]10.89.89.2:1194
2024-01-31T01:11:52 Notice openvpn_server1 /usr/local/etc/inc/plugins.inc.d/openvpn/ovpn-linkup ovpns1 1500 0 10.0.39.1 255.255.255.0 init
2024-01-31T01:11:52 Notice openvpn_server1 /sbin/ifconfig ovpns1 10.0.39.1/24 mtu 1500 up
2024-01-31T01:11:52 Notice openvpn_server1 TUN/TAP device /dev/tun1 opened
2024-01-31T01:11:52 Notice openvpn_server1 TUN/TAP device ovpns1 exists previously, keep at program end
2024-01-31T01:11:52 Notice openvpn_server1 CRL: loaded 1 CRLs from file /var/etc/openvpn/server1.crl-verify
2024-01-31T01:11:52 Warning openvpn_server1 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
2024-01-31T01:11:52 Notice openvpn_server1 library versions: OpenSSL 3.0.12 24 Oct 2023, LZO 2.10
2024-01-31T01:11:52 Notice openvpn_server1 OpenVPN 2.6.8 amd64-portbld-freebsd13.2 [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [MH/RECVDA] [AEAD]
2024-01-31T01:11:52 Notice openvpn_server1 SIGTERM[hard,] received, process exiting
2024-01-31T01:11:52 Notice openvpn_server1 /usr/local/etc/inc/plugins.inc.d/openvpn/ovpn-linkdown ovpns1 1500 0 10.0.39.1 255.255.255.0 init
2024-01-31T01:11:52 Notice openvpn_server1 /sbin/ifconfig ovpns1 10.0.39.1 -alias
2024-01-31T01:11:52 Error openvpn_server1 event_wait : Interrupted system call (fd=-1,code=4)
2024-01-31T01:10:15 Notice openvpn_server1 Initialization Sequence Completed
2024-01-31T01:10:15 Notice openvpn_server1 UDPv4 link remote: [AF_UNSPEC]
2024-01-31T01:10:15 Notice openvpn_server1 UDPv4 link local (bound): [AF_INET]10.89.89.2:1194
2024-01-31T01:10:15 Notice openvpn_server1 /usr/local/etc/inc/plugins.inc.d/openvpn/ovpn-linkup ovpns1 1500 0 10.0.39.1 255.255.255.0 init
2024-01-31T01:10:15 Notice openvpn_server1 /sbin/ifconfig ovpns1 10.0.39.1/24 mtu 1500 up
2024-01-31T01:10:15 Notice openvpn_server1 TUN/TAP device /dev/tun1 opened
2024-01-31T01:10:15 Notice openvpn_server1 TUN/TAP device ovpns1 exists previously, keep at program end
2024-01-31T01:10:15 Notice openvpn_server1 CRL: loaded 1 CRLs from file /var/etc/openvpn/server1.crl-verify
2024-01-31T01:10:15 Warning openvpn_server1 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
2024-01-31T01:10:15 Notice openvpn_server1 library versions: OpenSSL 3.0.12 24 Oct 2023, LZO 2.10
2024-01-31T01:10:15 Notice openvpn_server1 OpenVPN 2.6.8 amd64-portbld-freebsd13.2 [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [MH/RECVDA] [AEAD]
2024-01-31T01:10:15 Notice openvpn_server1 SIGTERM[hard,] received, process exiting
2024-01-31T01:10:15 Notice openvpn_server1 /usr/local/etc/inc/plugins.inc.d/openvpn/ovpn-linkdown ovpns1 1500 0 10.0.39.1 255.255.255.0 init
2024-01-31T01:10:15 Notice openvpn_server1 /sbin/ifconfig ovpns1 10.0.39.1 -alias


Auffällig ist da natürlich noch der "event_wait : Interrupted system call (fd=-1,code=4)", aber auch da frage ich mich natürlich – was ist die Ursache dafür?
The fact that we live at the bottom of a deep gravity well, on the surface of a gas covered planet going around a nuclear fireball 90 million miles away and think this to be normal is obviously some indication of how skewed our perspective tends to be. (Douglas Adams)
January 31, 2024, 03:27:10 PM #2
Habe jetzt mal ein Interface welches eigentlich als "Gäste-Netzwerk" gedacht war, wieder entfernt, so dass nur noch WAN und LAN vorhanden sind.

Seitdem läuft der OpenVPN-Server stabil.

Ich verstehe zwar ehrlich gesagt nicht, wie das 'reingrätschen' konnte, aber wer weiß, was ich da wieder nicht beachtet hatte...

In jedem Fall läuft die OPNsense jetzt auch insgesamt wieder "rund" (z.B. habe ich nun auch keine eigenartigen 'timeouts' für 4-5 Sekunden alle paar Minuten mehr).
The fact that we live at the bottom of a deep gravity well, on the surface of a gas covered planet going around a nuclear fireball 90 million miles away and think this to be normal is obviously some indication of how skewed our perspective tends to be. (Douglas Adams)
January 31, 2024, 04:09:26 PM #3
> Habe jetzt mal ein Interface welches eigentlich als "Gäste-Netzwerk" gedacht war, wieder entfernt, so dass nur noch WAN und LAN vorhanden sind.

Was hatte dieses Netz denn als IP Range?
"It doesn't work!" is no valid error description! - Don't forget to [applaud] those offering time & brainpower to help you!
Better have some *sense as no(n)sense! ;)

If you're interested in german-speaking business support, feel free to reach out via PM.
January 31, 2024, 11:45:40 PM #4
Quote from: JeGr on January 31, 2024, 04:09:26 PM
> Habe jetzt mal ein Interface welches eigentlich als "Gäste-Netzwerk" gedacht war, wieder entfernt, so dass nur noch WAN und LAN vorhanden sind.

Was hatte dieses Netz denn als IP Range?

WAN bekommt "Internet" von einer FB Cable aus einem 10.89.89.0/24 Netz
LAN hat bei mir ein 10.5.5.0/24 Netz

Und das nun entfernte OFFICE (bzw. Gäste) Netz hatte ein 10.6.6.0/24 Netz
The fact that we live at the bottom of a deep gravity well, on the surface of a gas covered planet going around a nuclear fireball 90 million miles away and think this to be normal is obviously some indication of how skewed our perspective tends to be. (Douglas Adams)
Print
Go Up Pages1
User actions