Openvpn logs software#
the forum software doesn't like johnpoz or me, the attachments/logs/etc he references in his post aren't visible to me. (This actually sucks pretty bad right at the moment, but oh well.) because of #2, there's effectively no way for me to look back in time to see who connected when. something on my firewall continuously polls OpenVPN status even though no-one's logged in to the admin GUI ģ. server startup looks an awful lot like a tunnel coming up!Ģ. when someone connects, it does log their username.
Openvpn logs how to#
Jul 10 11:19:51 remote openvpn: Initialization Sequence CompletedĪm I missing something obvious here? I don't want to know who's connected right now, I know how to find that out, I want to know who connected at (e.g.) 3:48AM last Wednesday. Jul 10 11:19:51 remote openvpn: TCPv4_SERVER link remote: Jul 10 11:19:51 remote openvpn: TUN/TAP device /dev/tun1 opened Jul 10 11:19:51 remote openvpn: TUN/TAP device ovpns1 exists previously, keep at program end Jul 10 11:19:51 remote openvpn: Control Channel Authentication: using '/var/etc/openvpn/server1.tls-auth' as a OpenVPN static key file Jul 10 11:19:51 remote openvpn: WARNING: POTENTIALLY DANGEROUS OPTION -client-cert-not-required may accept clients which do not present a certificate Jul 10 11:19:51 remote openvpn: Initializing OpenSSL support for engine 'cryptodev' Jul 10 11:19:51 remote openvpn: NOTE: the current -script-security setting may allow this configuration to call user-defined scripts Jul 10 11:19:51 remote openvpn: WARNING: using -duplicate-cn and -client-config-dir together is probably not what you want Jul 10 11:19:51 remote openvpn: library versions: OpenSSL 1.0.1s-freebsd, LZO 2.10 even when I do find an openvpn connection event in the log, it doesn't appear to log the username: Jul 10 11:19:51 remote openvpn: OpenVPN 2.3.17 amd64-portbld-freebsd10.3 built on Jun 26 2017 Which means that thanks to clog, I'm only storing ~48hrs of openvpn log, and that it's also really hard to find what I'm looking for among the logspam, andĢ. Jul 9 07:33:46 remote openvpn: MANAGEMENT: Client disconnected Jul 9 07:33:46 remote openvpn: MANAGEMENT: CMD 'quit' Jul 9 07:33:46 remote openvpn: MANAGEMENT: CMD 'status 2' Jul 9 07:33:46 remote openvpn: MANAGEMENT: Client connected from /var/etc/openvpn/server1.sock Jul 9 07:32:44 remote openvpn: MANAGEMENT: Client disconnected Jul 9 07:32:44 remote openvpn: MANAGEMENT: CMD 'quit' Jul 9 07:32:44 remote openvpn: MANAGEMENT: CMD 'status 2' Jul 9 07:32:44 remote openvpn: MANAGEMENT: Client connected from /var/etc/openvpn/server1.sock Jul 9 07:31:42 remote openvpn: MANAGEMENT: Client disconnected Jul 9 07:31:42 remote openvpn: MANAGEMENT: CMD 'quit' Jul 9 07:31:41 remote openvpn: MANAGEMENT: CMD 'status 2' The entire log is filled with Jul 9 07:31:41 remote openvpn: MANAGEMENT: Client connected from /var/etc/openvpn/server1.sock So I went looking in /var/log/openvpn.log to see who had logged in using pfSense, and I was unable to do so for two reasons:ġ.
0 kommentar(er)
