Nee geen firewall update ofzo,
Dit is de log van mijn cliënt router
Clientlog:
20210619 20:00:01 W WARNING: Using --management on a TCP port WITHOUT passwords is STRONGLY discouraged and considered insecure
20210619 20:00:01 W WARNING: file '/tmp/openvpncl/credentials' is group or others accessible
20210619 20:00:01 I OpenVPN 2.4.6 mipsel-unknown-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD] built on Aug 22 2018
20210619 20:00:01 I library versions: OpenSSL 1.1.0i 14 Aug 2018 LZO 2.09
20210619 20:00:01 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:16
20210619 20:00:01 W WARNING: No server certificate verification method has been enabled. See
http://openvpn.net/howto.html#mitm for more info.
20210619 20:00:01 W NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
20210619 20:00:01 I TCP/UDP: Preserving recently used remote address: [AF_INET]x.x.x.x:1194
20210619 20:00:01 Socket Buffers: R=[32767->32767] S=[32767->32767]
20210619 20:00:01 I UDPv4 link local: (not bound)
20210619 20:00:01 I UDPv4 link remote: [AF_INET]x.x.x.x:1194
20210619 20:00:01 TLS: Initial packet from [AF_INET]x.x.x.x:1194 sid=e43bb0 449d1
20210619 20:00:01 W WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
20210619 20:00:01 VERIFY OK: depth=1 C=TW ST=TW L=Taipei O=ASUS CN=RT-AC66U emailAddress=me@myhost.mydomain
20210619 20:00:01 VERIFY OK: depth=0 C=TW ST=TW L=Taipei O=ASUS CN=RT-AC66U emailAddress=me@myhost.mydomain
20210619 20:00:02 W WARNING: 'link-mtu' is used inconsistently local='link-mtu 1570' remote='link-mtu 1558'
20210619 20:00:02 W WARNING: 'auth' is used inconsistently local='auth SHA256' remote='auth SHA1'
20210619 20:00:02 Control Channel: TLSv1.2 cipher TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384 1024 bit RSA
20210619 20:00:02 I [RT-AC66U] Peer Connection Initiated with [AF_INET]x.x.x.x:1194
20210619 20:00:03 SENT CONTROL [RT-AC66U]: 'PUSH_REQUEST' (status=1)
20210619 20:00:03 PUSH: Received control message: 'PUSH_REPLY route 192.168.1.0 255.255.255.0 vpn_gateway 500 redirect-gateway def1 route-gateway 10.9.0.1 topology subnet ping 15 ping-restart 60 ifconfig 10.9.0.2 255.255.255.0 peer-id 2 cipher AES-128-GCM'
20210619 20:00:03 OPTIONS IMPORT: timers and/or timeouts modified
20210619 20:00:03 NOTE: --mute triggered...
20210619 20:00:03 6 variation(s) on previous 3 message(s) suppressed by --mute
20210619 20:00:03 Data Channel: using negotiated cipher 'AES-128-GCM'
20210619 20:00:03 Outgoing Data Channel: Cipher 'AES-128-GCM' initialized with 128 bit key
20210619 20:00:03 Incoming Data Channel: Cipher 'AES-128-GCM' initialized with 128 bit key
20210619 20:00:03 I TUN/TAP device tun1 opened
20210619 20:00:03 TUN/TAP TX queue length set to 100
20210619 20:00:03 D do_ifconfig tt->did_ifconfig_ipv6_setup=0
20210619 20:00:03 I /sbin/ifconfig tun1 10.9.0.2 netmask 255.255.255.0 mtu 1500 broadcast 10.9.0.255
20210619 20:00:03 /sbin/route add -net x.x.x.x netmask 255.255.255.255 gw 192.168.0.254
20210619 20:00:03 /sbin/route add -net 0.0.0.0 netmask 128.0.0.0 gw 10.9.0.1
20210619 20:00:03 /sbin/route add -net 128.0.0.0 netmask 128.0.0.0 gw 10.9.0.1
20210619 20:00:03 /sbin/route add -net 192.168.1.0 netmask 255.255.255.0 metric 500 gw 10.9.0.1
20210619 20:00:03 I Initialization Sequence Completed
20210619 21:00:02 TLS: soft reset sec=0 bytes=23961/-1 pkts=529/0
20210619 21:00:03 VERIFY OK: depth=1 C=TW ST=TW L=Taipei O=ASUS CN=RT-AC66U emailAddress=me@myhost.mydomain
20210619 21:00:03 VERIFY OK: depth=0 C=TW ST=TW L=Taipei O=ASUS CN=RT-AC66U emailAddress=me@myhost.mydomain
20210619 21:00:03 W WARNING: 'link-mtu' is used inconsistently local='link-mtu 1570' remote='link-mtu 1558'
20210619 21:00:03 W WARNING: 'auth' is used inconsistently local='auth SHA256' remote='auth SHA1'
20210619 21:00:03 Outgoing Data Channel: Cipher 'AES-128-GCM' initialized with 128 bit key
20210619 21:00:03 Incoming Data Channel: Cipher 'AES-128-GCM' initialized with 128 bit key
20210619 21:00:03 Control Channel: TLSv1.2 cipher TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384 1024 bit RSA
20210619 21:01:37 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:16
20210619 21:01:38 D MANAGEMENT: CMD 'state'
20210619 21:01:38 MANAGEMENT: Client disconnected
20210619 21:01:38 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:16
20210619 21:01:38 D MANAGEMENT: CMD 'state'
20210619 21:01:38 MANAGEMENT: Client disconnected
20210619 21:01:38 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:16
20210619 21:01:38 D MANAGEMENT: CMD 'state'
20210619 21:01:38 MANAGEMENT: Client disconnected
20210619 21:01:38 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:16
20210619 21:01:38 D MANAGEMENT: CMD 'status 2'
20210619 21:01:38 MANAGEMENT: Client disconnected
20210619 21:01:38 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:16
20210619 21:01:38 D MANAGEMENT: CMD 'log 500'
19700101 01:00:00