Beantwortet: Fehlermeldung / PID_ERR replay-window backtrack occurred

T

traveler

Junior Member
´nabend.

seit einiger zeit habe ich im log immer eine fehlermeldung zu stehen. der verbingungsaufbau funktioniert einwandfrei. hier ein logauszug:

13.04.2016 21:13:34 Log env_block: add PATH=C:\Windows\System32;C:\Windows;C:\Windows\System32\Wbem
13.04.2016 21:13:38 Log TEST ROUTES: 2/2 succeeded len=1 ret=1 a=0 u/d=up
13.04.2016 21:13:38 Log Initialization Sequence Completed
13.04.2016 21:13:38 Log MANAGEMENT: >STATE:1460574818,CONNECTED,SUCCESS,10.15.31.247,62.212.82.51
13.04.2016 21:13:38 Log State Change Event - Running
13.04.2016 21:13:44 State CONNECTED
13.04.2016 21:13:44 Log PID_ERR replay-window backtrack occurred [3] [SSL-0] [000_0112] 0:8 0:5 t=1460574824[0] r=[-2,64,15,3,1] sl=[56,8,64,528]
13.04.2016 21:20:01 Log PID_ERR replay-window backtrack occurred [5] [SSL-0] [00000_002>>EEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEE] 0:630 0:625 t=1460575201[0] r=[-2,64,15,5,1] sl=[10,64,64,528]
13.04.2016 21:33:17 Log PID_ERR replay-window backtrack occurred [10] [SSL-0] [00000000___000666666666666677788999>>>>>>>>>>>>>>>>>>>>>>>>>>>EE] 0:1030 0:1020 t=1460575997[0] r=[0,64,15,10,1] sl=[58,64,64,528]
13.04.2016 22:13:28 Log TLS: soft reset sec=0 bytes=1717562/0 pkts=4758/0
13.04.2016 22:13:29 Log VERIFY OK: depth=1, C=CH, ST=Zug, L=Zug, O=Perfect Privacy, CN=Perfect Privacy, emailAddress=admin@perfect-privacy.com
13.04.2016 22:13:29 Log VERIFY OK: nsCertType=SERVER
13.04.2016 22:13:29 Log VERIFY OK: depth=0, C=CH, ST=Zug, O=Perfect Privacy, CN=server, emailAddress=admin@perfect-privacy.com
13.04.2016 22:13:29 Log Data Channel Encrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
13.04.2016 22:13:29 Log Data Channel Encrypt: Using 512 bit message hash 'SHA512' for HMAC authentication
13.04.2016 22:13:29 Log Data Channel Decrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
13.04.2016 22:13:29 Log Data Channel Decrypt: Using 512 bit message hash 'SHA512' for HMAC authentication
13.04.2016 22:13:29 Log Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-CAMELLIA256-SHA, 4096 bit RSA
13.04.2016 22:20:27 Log PID_ERR replay-window backtrack occurred [3] [SSL-1] [000_0088EEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEE] 0:58 0:55 t=1460578827[0] r=[0,64,15,3,1] sl=[6,58,64,528]
13.04.2016 22:29:02 Log PID_ERR replay-window backtrack occurred [5] [SSL-1] [00000_013>>EEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEE] 0:322 0:317 t=1460579342[0] r=[-3,64,15,5,1] sl=[62,64,64,528]
13.04.2016 23:09:18 Log PID_ERR replay-window backtrack occurred [44] [SSL-1] [0000000000000000000000000000000000000000000__1222222234555555555] 0:10856 0:10812 t=1460581758[0] r=[-1,64,15,44,1] sl=[24,64,64,528]
13.04.2016 23:13:28 Log TLS: tls_process: killed expiring key
13.04.2016 23:13:29 Log TLS: soft reset sec=0 bytes=47557655/0 pkts=58594/0
13.04.2016 23:13:29 Log VERIFY OK: depth=1, C=CH, ST=Zug, L=Zug, O=Perfect Privacy, CN=Perfect Privacy, emailAddress=admin@perfect-privacy.com
13.04.2016 23:13:29 Log VERIFY OK: nsCertType=SERVER
13.04.2016 23:13:29 Log VERIFY OK: depth=0, C=CH, ST=Zug, O=Perfect Privacy, CN=server, emailAddress=admin@perfect-privacy.com
13.04.2016 23:13:30 Log Data Channel Encrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
13.04.2016 23:13:30 Log Data Channel Encrypt: Using 512 bit message hash 'SHA512' for HMAC authentication
13.04.2016 23:13:30 Log Data Channel Decrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
13.04.2016 23:13:30 Log Data Channel Decrypt: Using 512 bit message hash 'SHA512' for HMAC authentication
13.04.2016 23:13:30 Log Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-CAMELLIA256-SHA, 4096 bit RSA
13.04.2016 23:14:29 Log PID_ERR replay-window backtrack occurred [12] [SSL-2] [000000000000_00] 0:15 0:3 t=1460582069[0] r=[0,64,15,12,1] sl=[49,15,64,528]
13.04.2016 23:15:09 Log PID_ERR replay-window backtrack occurred [18] [SSL-2] [00000000000000000__008888889999999999999999999999999999999999999] 0:4467 0:4449 t=1460582109[0] r=[0,64,15,18,1] sl=[13,64,64,528]
13.04.2016 23:15:25 Log PID_ERR replay-window backtrack occurred [23] [SSL-2] [00000000000000000000000_00067EEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEE] 0:6166 0:6143 t=1460582125[0] r=[0,64,15,23,1] sl=[42,64,64,528]
13.04.2016 23:19:05 Log PID_ERR replay-window backtrack occurred [27] [SSL-2] [000000000000000000000000000_01>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>] 0:44323 0:44296 t=1460582345[0] r=[-1,64,15,27,1] sl=[29,64,64,528]
13.04.2016 23:26:41 Log PID_ERR replay-window backtrack occurred [31] [SSL-2] [0000000000000000000000000000000_00666666666666666666666666666666] 0:118644 0:118613 t=1460582801[0] r=[0,64,15,31,1] sl=[12,64,64,528]
13.04.2016 23:26:46 Log PID_ERR replay-window backtrack occurred [45] [SSL-2] [00000000000000000000000000000000000000000_____000000005555555555] 0:118946 0:118901 t=1460582806[0] r=[0,64,15,45,1] sl=[30,64,64,528]
13.04.2016 23:26:46 Log PID_ERR replay-window backtrack occurred [54] [SSL-2] [000000000000000000000000000000000000000000000000000____000000000] 0:118956 0:118902 t=1460582806[0] r=[0,64,15,54,1] sl=[20,64,64,528]
13.04.2016 23:26:46 Log PID_ERR replay-window backtrack occurred [65] [SSL-2] [000000000000000000000000000000000000000000000000000000000000000_] 0:118968 0:118903 t=1460582806[0] r=[0,64,15,65,1] sl=[8,64,64,528]
13.04.2016 23:26:46 Log PID_ERR large diff [65] [SSL-2] [000000000000000000000000000000000000000000000000000000000000000_] 0:118968 0:118903 t=1460582806[0] r=[0,64,15,65,1] sl=[8,64,64,528]
13.04.2016 23:26:46 Log PID_ERR replay-window backtrack occurred [88] [SSL-2] [0000000000000000000000000000000000000000000000000000000000000000] 0:118992 0:118904 t=1460582806[0] r=[0,64,15,88,1] sl=[48,64,64,528]
13.04.2016 23:26:46 Log PID_ERR large diff [88] [SSL-2] [0000000000000000000000000000000000000000000000000000000000000000] 0:118992 0:118904 t=1460582806[0] r=[0,64,15,88,1] sl=[48,64,64,528]
13.04.2016 23:26:46 Log PID_ERR large diff [87] [SSL-2] [0000000000000000000000000000000000000000000000000000000000000000] 0:118992 0:118905 t=1460582806[0] r=[0,64,15,88,1] sl=[48,64,64,528]
13.04.2016 23:28:28 Log PID_ERR large diff [71] [SSL-2] [0000000000000000000000000000000000000000000000000000000000000000] 0:138006 0:137935 t=1460582908[0] r=[0,64,15,88,1] sl=[42,64,64,528]
13.04.2016 23:28:28 Log PID_ERR large diff [71] [SSL-2] [0000000000000000000000000000000000000000000000000000000000000000] 0:138007 0:137936 t=1460582908[0] r=[0,64,15,88,1] sl=[41,64,64,528]
14.04.2016 00:13:29 Log TLS: tls_process: killed expiring key
14.04.2016 00:13:30 Log TLS: soft reset sec=0 bytes=735058661/0 pkts=806345/0
14.04.2016 00:13:30 Log PID_ERR replay-window backtrack occurred [3] [TLS_AUTH-0] [00__0EEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEE] 1460574747:198 1460574747:195 t=1460585610[0] r=[0,64,15,3,1] sl=[58,64,64,528]
14.04.2016 00:13:31 Log VERIFY OK: depth=1, C=CH, ST=Zug, L=Zug, O=Perfect Privacy, CN=Perfect Privacy, emailAddress=admin@perfect-privacy.com

kann hier jemand weiterhelfen? welche ursache hat die fehlermeldung?

thx.
 
Sort by date Sort by votes
15.04.2016 10:46:10 Log MANAGEMENT: >STATE:1460709970,CONNECTED,SUCCESS,10.41.13.16,195.138.249.2
15.04.2016 10:46:10 Log State Change Event - Running
15.04.2016 10:46:11 State CONNECTED
15.04.2016 10:50:22 Log PID_ERR replay-window backtrack occurred [1] [SSL-0] [0_00000000000000000000000000000000000000000000000000000000000000] 0:629975 0:629974 t=1460710222[0] r=[-2,64,15,1,1] sl=[41,64,64,528]
15.04.2016 10:50:52 Log PID_ERR replay-window backtrack occurred [19] [SSL-0] [0000000000__________00000000000000000000000000000000000000000000] 0:987137 0:987118 t=1460710252[0] r=[-2,64,15,19,1] sl=[63,64,64,528]

Das sieht bei mir genauso aus !!!
 
Upvote 0 Downvote
Canna said:
Ich habe die DNS Server geändert und es hat wieder funktioniert.
Click to expand...

bei mir leider nicht. die fehlermeldung besteht weiterhin.


JackCarver said:
Das deutet auf Netzwerkprobleme hin, die meist mit dem Router zusammen hängen. Im OpenVPN Forum gibt es dazu auch Threads:

https://forums.openvpn.net/topic12624.html
Click to expand...

bis vor ca. 2 monaten lief alles ohne fehlermeldung und meine hardware hat sich nicht geändert. evtl wurde vom isp ein fw-update aufgespielt und dies verursacht die fehlermeldung, ist aber sehr unwahrscheinlich.

kann jemand etwas dazu sagen, wie schwerwiegend das ganze ist? ist die ursache zu vernachlässigen oder besteht ein massives sicherheitsproblem?

thx.
 
Upvote 0 Downvote
Also ich denke mal das beeinträchtigt den Speed der VPN Verbindung. Ansonsten kann da eigentlich nicht viel passieren. Prüfe aber mal den Router. Welche Optionen du dort unter Firewall hast, stelle auch die Uhrzeit dort korrekt ein und so weiter
 
Upvote 0 Downvote
PP Frank said:
Also ich denke mal das beeinträchtigt den Speed der VPN Verbindung. Ansonsten kann da eigentlich nicht viel passieren. Prüfe aber mal den Router. Welche Optionen du dort unter Firewall hast, stelle auch die Uhrzeit dort korrekt ein und so weiter
Click to expand...

den router habe ich soft- und hardresetet. keine änderung.

seit dem update auf 1.8.8.0 hat die fehlermeldung sich verändert/erweitert. jetzt steht im log folgendes:

25.04.2016 06:34:49 Log TEST ROUTES: 2/2 succeeded len=1 ret=1 a=0 u/d=up
25.04.2016 06:34:49 Log Initialization Sequence Completed
25.04.2016 06:34:49 Log MANAGEMENT: >STATE:1461558889,CONNECTED,SUCCESS,10.14.23.18,94.242.243.66
25.04.2016 06:34:49 Log State Change Event - Running
25.04.2016 06:34:55 State CONNECTED
25.04.2016 06:37:23 Log PID_ERR replay-window backtrack occurred [1] [SSL-0] [0_00000002222222222222233333333333333344444444444444444444444444] 0:980 0:979 t=1461559043[0] r=[-3,64,15,1,1] sl=[44,64,64,528]
25.04.2016 06:37:34 Log PID_ERR replay-window backtrack occurred [3] [SSL-0] [000_000222222222222222222222222222222222222222222222222222222222] 0:5885 0:5882 t=1461559054[0] r=[-4,64,15,3,1] sl=[3,64,64,528]
25.04.2016 06:42:09 Log PID_ERR replay-window backtrack occurred [83] [SSL-0] [0000000000000000000000000000000000000000000000000000000000000000] 0:9699 0:9616 t=1461559329[0] r=[0,64,15,83,1] sl=[48,64,64,528]
25.04.2016 06:42:09 Log PID_ERR large diff [83] [SSL-0] [0000000000000000000000000000000000000000000000000000000000000000] 0:9699 0:9616 t=1461559329[0] r=[0,64,15,83,1] sl=[48,64,64,528]
25.04.2016 06:42:09 Log PID_ERR large diff [83] [SSL-0] [0000000000000000000000000000000000000000000000000000000000000000] 0:9700 0:9617 t=1461559329[0] r=[0,64,15,83,1] sl=[47,64,64,528]
25.04.2016 06:42:09 Log PID_ERR large diff [82] [SSL-0] [0000000000000000000000000000000000000000000000000000000000000000] 0:9700 0:9618 t=1461559329[0] r=[0,64,15,83,1] sl=[47,64,64,528]
25.04.2016 06:42:09 Log PID_ERR large diff [81] [SSL-0] [0000000000000000000000000000000000000000000000000000000000000000] 0:9700 0:9619 t=1461559329[0] r=[0,64,15,83,1] sl=[47,64,64,528]
25.04.2016 06:42:09 Log PID_ERR large diff [80] [SSL-0] [0000000000000000000000000000000000000000000000000000000000000000] 0:9700 0:9620 t=1461559329[0] r=[0,64,15,83,1] sl=[47,64,64,528]
25.04.2016 06:42:09 Log PID_ERR large diff [79] [SSL-0] [0000000000000000000000000000000000000000000000000000000000000000] 0:9700 0:9621 t=1461559329[0] r=[0,64,15,83,1] sl=[47,64,64,528]
25.04.2016 06:42:09 Log PID_ERR large diff [78] [SSL-0] [0000000000000000000000000000000000000000000000000000000000000000] 0:9700 0:9622 t=1461559329[0] r=[0,64,15,83,1] sl=[47,64,64,528]

bislang erschien nur PID_ERR replay und jetzt wechselt es auf PID_ERR large diff.
 
Upvote 0 Downvote
Eigentlich gar keine, ausser das der Speed maximal 20 MBit ist.

Eventuell kommt euer Router mit dem UDP nicht so ganz klar. Da sollte man mal versuchen diesen neu zu starten. Hilft das nicht, dann mal auf Werkeseinstellung zurück setzen und danach drauf achten das im Router die richte Uhrzeit drin ist. Letzteres ist durchaus wichtig
 
Upvote 0 Downvote
You must log in or register to reply here.
Back
Top