Endpoints / dev-openvpn-r1

dev-openvpn-r1

Cylera Sensor VPN (Prod) — dev-openvpn-r1

Healthy Kubernetes
Connected Sessions
135
Status
Healthy
Open Findings
0
Connected Sessions (135)
Common Name Real IP Virtual IP Duration
cy-musc-06 128.23.128.10 10.240.1.6 3d 19h
cy-mrcb-02 194.75.245.33 10.240.0.34 3d 19h
UNDEF 208.127.196.80 10s
cy-ncat-03 164.39.215.52 10.240.1.254 3d 18h
cy-mrcb-01 194.75.245.33 10.240.0.182 3d 19h
cy-ulhn-01 208.127.197.209 10.240.1.34 3d 19h
cy-rwj-12 208.68.21.187 10.240.1.170 3d 18h
cy-weill-04 157.139.204.176 10.240.0.90 3d 19h
cy-bpth-02 208.127.192.26 10.240.2.6 3d 18h
cy-brad-01 213.146.148.135 10.240.1.186 3d 18h
cy-ulhn-07 208.127.197.212 10.240.0.62 3d 19h
cy-sluhn-08 199.96.255.156 10.240.1.162 3d 18h
cy-mrcb-12 194.75.245.33 10.240.0.78 26s
cy-numb-05 194.75.245.43 10.240.0.70 3d 19h
cy-stst-02 208.127.192.29 10.240.0.54 3d 19h
cy-yosc-01 208.127.192.101 10.240.0.130 3d 19h
cy-bvhs-02 24.52.86.170 10.240.1.94 3d 18h
cy-sluhn-05 199.96.255.154 10.240.1.62 3d 18h
cy-crst-03 208.127.192.123 10.240.0.134 3d 19h
cy-musc-10 12.47.27.130 10.240.1.86 3d 18h
cy-hrhc-01 8.45.172.10 10.240.0.198 3d 19h
cy-impl-03 193.39.80.21 10.240.1.242 3d 18h
cy-ulhn-02 208.127.197.21 10.240.1.190 7h 30m
cy-sluhn-15 199.96.255.30 10.240.1.146 3d 18h
cy-numb-01 194.75.245.43 10.240.0.206 3d 19h
cy-rwj-15 208.68.21.187 10.240.0.106 3d 19h
cy-musc-01 128.23.81.70 10.240.0.246 3d 19h
cy-ulhn-08 208.127.197.214 10.240.0.14 3d 19h
cy-cwft-02 208.127.199.157 10.240.1.250 3d 18h
cy-crst-04 208.127.192.123 10.240.1.182 3d 11h
cy-impl-01 193.32.22.52 10.240.1.178 3d 18h
cy-bvhs-03 24.52.86.170 10.240.1.98 3d 18h
cy-linc-01 64.37.30.110 10.240.0.170 3d 19h
cy-midc-01 208.127.193.18 10.240.0.166 3d 19h
cy-keck-09 63.247.1.238 10.240.0.122 3d 19h
cy-rwj-17 208.68.21.187 10.240.1.70 3d 18h
mtsr-03 66.36.112.10 10.240.1.218 3d 18h
cy-yosc-02 208.127.192.117 10.240.0.138 3d 19h
appliance-ecrmc-01 207.62.110.161 10.240.0.126 3d 10h
cy-sluhn-10 199.96.255.159 10.240.0.150 3d 19h
sluhn-03 199.96.255.30 10.240.0.254 3d 19h
cy-shnd-01 62.172.67.18 10.240.1.38 3d 19h
cy-ggcl-01 86.28.80.75 10.240.1.202 3d 18h
cy-keck-11 63.247.1.238 10.240.0.118 3d 19h
cy-rwj-16 208.68.21.187 10.240.0.6 3d 19h
cy-rbth-01 82.3.52.132 10.240.0.234 3d 18h
cy-sluhn-11 199.96.255.30 10.240.0.154 3d 19h
cy-rwj-19 208.68.21.187 10.240.0.98 3d 19h
cy-csct-02 193.60.168.82 10.240.1.126 1d 20h
cy-bolt-01 86.12.131.52 10.240.1.14 3d 18h
cy-rwj-18 208.68.21.187 10.240.1.78 3d 18h
cy-etsx-01 208.127.197.121 10.240.1.174 3d 18h
cy-sluhn-17 199.96.255.158 10.240.1.58 3d 18h
cy-acmc-01 69.54.53.130 10.240.1.222 3d 18h
jaye 73.108.14.132 10.240.4.38 2h 4m
cy-keck-06 170.85.55.104 10.240.0.190 3d 19h
cy-rwj-14 208.68.21.187 10.240.0.162 3d 19h
cy-mrcb-08 194.75.245.33 10.240.0.42 3d 19h
cy-nort-02 208.127.192.122 10.240.0.58 3d 19h
cy-crst-01 208.127.192.123 10.240.0.186 3d 19h
cy-ulhn-10 208.127.197.207 10.240.1.42 3d 18h
cy-rwj-08 208.68.21.187 10.240.1.158 3d 18h
brst-01 170.163.42.132 10.240.1.54 3d 18h
cy-rwj-11 208.68.21.187 10.240.1.134 3d 18h
cy-tame-02 62.255.170.178 10.240.0.218 3d 18h
cy-rwj-07 208.68.21.187 10.240.0.242 3d 19h
cy-sluhn-13 199.96.255.152 10.240.0.146 3d 19h
cy-nema-01 162.244.227.85 10.240.0.18 3d 19h
cy-rwj-01 208.68.21.187 10.240.1.142 3d 18h
cy-musc-03 70.150.207.30 10.240.0.10 3d 19h
cy-sluhn-12 199.96.255.158 10.240.0.158 3d 19h
cy-sluhn-06 199.96.255.30 10.240.1.2 3d 19h
cy-musc-08 128.23.128.5 10.240.0.22 3d 19h
cy-sluhn-16 199.96.255.30 10.240.0.222 3d 19h
cy-sluhn-04 199.96.255.151 10.240.0.102 3d 19h
cy-eshh-03 208.127.199.160 10.240.1.110 3d 18h
cy-nema-02 162.244.227.85 10.240.1.26 3d 18h
cy-sluhn-14 199.96.255.157 10.240.0.214 8h 10m
cy-impl-02 193.39.80.20 10.240.0.38 3d 19h
cy-musc-07 128.23.128.16 10.240.1.82 3d 18h
cy-hsct-01 62.172.67.18 10.240.0.66 3d 19h
cy-numb-04 194.75.245.44 10.240.0.210 3d 19h
cy-dgsc-01 81.145.194.98 10.240.1.194 3d 18h
puppetmaster 35.211.156.128 10.240.4.122 3d 18h
cy-eshh-01 208.127.193.203 10.240.1.50 3d 18h
cy-grmp-02 62.172.67.19 10.240.0.142 3d 19h
cy-musc-05 128.23.151.175 10.240.1.226 3d 18h
cy-jump-01 35.207.39.63 10.240.4.30 3d 19h
zabbix 35.211.22.164 10.240.4.50 3d 19h
sluhn-02 199.96.255.30 10.240.1.66 3d 18h
cy-mrcb-03 194.75.245.33 10.240.0.194 3d 19h
cy-derb-02 208.127.199.211 10.240.2.2 3d 18h
cy-etsx-05 208.127.197.122 10.240.1.106 3d 18h
cy-derb-01 208.127.199.212 10.240.1.198 16h 54m
cy-cwft-01 208.127.193.202 10.240.1.246 3d 18h
cy-west-01 62.172.67.16 10.240.0.202 3d 19h
cy-weill-05 157.139.216.64 10.240.0.86 3d 19h
cy-rwj-09 208.68.21.187 10.240.1.154 3d 18h
cy-keck-08 63.247.1.237 10.240.1.118 3d 18h
cy-nort-01 208.127.196.232 10.240.0.50 3d 19h
cy-dgft-01 208.127.199.140 10.240.1.214 3d 18h
cy-dgsc-02 81.145.194.98 10.240.0.46 3d 19h
cy-nhs-01 137.221.156.103 10.240.1.114 3d 18h
cy-rwj-13 208.68.21.187 10.240.1.130 3d 18h
cy-lans-01 51.52.157.220 10.240.0.174 3d 19h
cy-musc-09 128.23.128.0 10.240.1.74 3d 18h
cy-keck-05 63.247.1.238 10.240.1.238 3d 18h
cy-rwj-10 208.68.21.187 10.240.1.150 3d 18h
cy-ulhn-05 208.127.197.212 10.240.1.122 3d 18h
cy-live-01 209.104.34.8 10.240.0.26 3d 19h
cy-keck-10 63.247.1.238 10.240.1.234 3d 18h
cy-rbth-03 82.3.52.132 10.240.0.230 3d 18h
cy-bord-01 62.172.67.19 10.240.1.206 3d 18h
cy-weill-03 157.139.198.122 10.240.0.114 3d 19h
cy-ulhn-04 208.127.197.207 10.240.1.46 3d 18h
cy-tame-01 62.255.170.178 10.240.0.226 3d 18h
cy-lan-02 62.172.67.90 10.240.0.178 3d 19h
cy-sluhn-07 199.96.255.158 10.240.0.250 3d 19h
cy-rwj-04 208.68.21.187 10.240.0.110 3d 19h
cy-rwj-05 208.68.21.187 10.240.0.238 3d 19h
cy-rwj-02 208.68.21.187 10.240.1.138 3d 18h
cy-mrcb-07 194.75.245.33 10.240.0.82 3d 19h
cy-keck-03 63.247.1.238 10.240.1.230 3d 18h
cy-ayar-01 185.248.255.172 10.240.1.30 3d 10h
cy-musc-02 128.23.128.19 10.240.1.90 3d 18h
cy-rwj-06 208.68.21.187 10.240.1.166 3d 18h
cy-keck-07 63.247.1.233 10.240.1.102 3d 18h
cy-numb-06 194.75.245.45 10.240.0.74 3d 19h
cy-mrcb-06 194.75.245.33 10.240.0.30 3d 19h
cy-stst-01 208.127.199.60 10.240.1.22 3d 19h
cy-sluhn-18 199.96.255.152 10.240.0.94 3d 19h
cy-crst-02 208.127.192.123 10.240.2.10 3d 12h
cy-keck-02 63.247.1.236 10.240.1.18 3d 19h
cy-blackpool-teaching 5.61.123.16 10.240.1.210 3d 18h
cy-rbth-02 82.3.52.132 10.240.1.10 3d 18h
Findings

No open findings

Recent Events
Time Event Common Name
55s ago Disconnect unknown
55s ago Tls error unknown
55s ago Tls error unknown
55s ago Tls error unknown
1m ago Connect cy-mrcb-12
1m ago Connect cy-mrcb-12
1m ago Connect unknown
1m ago Duplicate common name cy-mrcb-12
1m ago Connect cy-mrcb-12
1m ago Session stale UNDEF
1m ago Reconnect UNDEF
2m ago Connect cy-mrcb-12
2m ago Connect cy-mrcb-12
2m ago Connect unknown
2m ago Duplicate common name cy-mrcb-12
2m ago Connect cy-mrcb-12
2m ago Session stale UNDEF
2m ago Session stale UNDEF
2m ago Session stale UNDEF
3m ago Connect cy-mrcb-12
3m ago Connect cy-mrcb-12
3m ago Connect unknown
3m ago Duplicate common name cy-mrcb-12
3m ago Connect cy-mrcb-12
4m ago Disconnect unknown
Recent Logs All Logs
Time Event Class Common Name Message
47s ago Tls negotiation cy-live-01 cy-live-01/209.104.34.8:49942 Control Channel: TLSv1.2, cipher TLSv1/SSLv3 DHE-RSA-AES256-GCM-SHA384, 2048 bit RSA
47s ago Tls negotiation cy-live-01 cy-live-01/209.104.34.8:49942 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
47s ago Tls negotiation cy-live-01 cy-live-01/209.104.34.8:49942 WARNING: INSECURE cipher with block size less than 128 bit (64 bit). This allows attacks like SWEET32. Mitigate by using a --cipher with a larger block size (e.g. AES-256-CBC).
47s ago Tls negotiation cy-live-01 cy-live-01/209.104.34.8:49942 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
47s ago Tls negotiation cy-live-01 cy-live-01/209.104.34.8:49942 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
47s ago Tls negotiation cy-live-01 cy-live-01/209.104.34.8:49942 WARNING: INSECURE cipher with block size less than 128 bit (64 bit). This allows attacks like SWEET32. Mitigate by using a --cipher with a larger block size (e.g. AES-256-CBC).
47s ago Tls negotiation cy-live-01 cy-live-01/209.104.34.8:49942 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
47s ago Tls negotiation cy-live-01 cy-live-01/209.104.34.8:49942 WARNING: 'keydir' is present in local config but missing in remote config, local='keydir 1'
47s ago Tls negotiation cy-live-01 cy-live-01/209.104.34.8:49942 VERIFY OK: depth=0, CN=cy-live-01
47s ago Tls negotiation cy-live-01 cy-live-01/209.104.34.8:49942 VERIFY OK: depth=1, CN=ca\\n
48s ago Tls negotiation cy-live-01 cy-live-01/209.104.34.8:49942 TLS: soft reset sec=3435 bytes=76001355/67108864 pkts=243527/0
56s ago Client disconnected 208.127.196.80:63833 SIGUSR1[soft,tls-error] received, client-instance restarting
56s ago Tls error 208.127.196.80:63833 Fatal TLS error (check_tls_errors_co), restarting
56s ago Tls error 208.127.196.80:63833 TLS Error: TLS handshake failed
56s ago Tls error 208.127.196.80:63833 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
1m ago Tls negotiation cy-mrcb-12 cy-mrcb-12/194.75.245.33:60594 SENT CONTROL [cy-mrcb-12]: 'PUSH_REPLY,route 10.20.1.0 255.255.240.0,route 10.23.240.10 255.255.255.255,route 10.240.0.0 255.255.0.0,dhcp-option DOMAIN vpn.svc.cluster.local svc.cluster.local cluster.local c.cylera-infra.internal google.internal,dhcp-option DNS 10.23.240.10,route 10.240.0.1,topology net30,ping 10,ping-restart 60,ifconfig 10.240.0.78 10.240.0.77' (status=1)
1m ago Tls negotiation cy-mrcb-12 cy-mrcb-12/194.75.245.33:60594 send_push_reply(): safe_cap=940
1m ago Tls negotiation cy-mrcb-12 cy-mrcb-12/194.75.245.33:60594 PUSH: Received control message: 'PUSH_REQUEST'
1m ago Client connected cy-mrcb-12 MULTI: primary virtual IP for cy-mrcb-12/194.75.245.33:60594: 10.240.0.78
1m ago Client connected cy-mrcb-12 MULTI: Learn: 10.240.0.78 -> cy-mrcb-12/194.75.245.33:60594
1m ago Virtual ip assigned MULTI_sva: pool returned IPv4=10.240.0.78, IPv6=(Not enabled)
1m ago Duplicate common name cy-mrcb-12 MULTI: new connection by client 'cy-mrcb-12' will cause previous active sessions by this client to be dropped. Remember to use the --duplicate-cn option if you want multiple clients using the same certificate or username to concurrently connect.
1m ago Client connected cy-mrcb-12 194.75.245.33:60594 [cy-mrcb-12] Peer Connection Initiated with [AF_INET]194.75.245.33:60594
1m ago Tls negotiation 194.75.245.33:60594 Control Channel: TLSv1.2, cipher TLSv1/SSLv3 DHE-RSA-AES256-GCM-SHA384, 2048 bit RSA
1m ago Tls negotiation 194.75.245.33:60594 WARNING: cipher with small block size in use, reducing reneg-bytes to 64MB to mitigate SWEET32 attacks.
1m ago Tls negotiation 194.75.245.33:60594 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
1m ago Tls negotiation 194.75.245.33:60594 WARNING: INSECURE cipher with block size less than 128 bit (64 bit). This allows attacks like SWEET32. Mitigate by using a --cipher with a larger block size (e.g. AES-256-CBC).
1m ago Tls negotiation 194.75.245.33:60594 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
1m ago Tls negotiation 194.75.245.33:60594 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
1m ago Tls negotiation 194.75.245.33:60594 WARNING: INSECURE cipher with block size less than 128 bit (64 bit). This allows attacks like SWEET32. Mitigate by using a --cipher with a larger block size (e.g. AES-256-CBC).
1m ago Tls negotiation 194.75.245.33:60594 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
1m ago Tls negotiation 194.75.245.33:60594 WARNING: 'keydir' is present in local config but missing in remote config, local='keydir 1'
1m ago Tls negotiation cy-mrcb-12 194.75.245.33:60594 VERIFY OK: depth=0, CN=cy-mrcb-12
1m ago Tls negotiation 194.75.245.33:60594 VERIFY OK: depth=1, CN=ca\\n
1m ago Tls negotiation 194.75.245.33:60594 TLS: Initial packet from [AF_INET]194.75.245.33:60594, sid=ffcfb0c7 b3e5dea4
1m ago Tls negotiation TCP connection established with [AF_INET]194.75.245.33:60594
1m ago Tls negotiation cy-crst-02 cy-crst-02/208.127.192.123:1546 Control Channel: TLSv1.2, cipher TLSv1/SSLv3 DHE-RSA-AES256-GCM-SHA384, 2048 bit RSA
1m ago Tls negotiation cy-crst-02 cy-crst-02/208.127.192.123:1546 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
1m ago Tls negotiation cy-crst-02 cy-crst-02/208.127.192.123:1546 WARNING: INSECURE cipher with block size less than 128 bit (64 bit). This allows attacks like SWEET32. Mitigate by using a --cipher with a larger block size (e.g. AES-256-CBC).
1m ago Tls negotiation cy-crst-02 cy-crst-02/208.127.192.123:1546 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
1m ago Tls negotiation cy-crst-02 cy-crst-02/208.127.192.123:1546 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
1m ago Tls negotiation cy-crst-02 cy-crst-02/208.127.192.123:1546 WARNING: INSECURE cipher with block size less than 128 bit (64 bit). This allows attacks like SWEET32. Mitigate by using a --cipher with a larger block size (e.g. AES-256-CBC).
1m ago Tls negotiation cy-crst-02 cy-crst-02/208.127.192.123:1546 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
1m ago Tls negotiation cy-crst-02 cy-crst-02/208.127.192.123:1546 WARNING: 'keydir' is present in local config but missing in remote config, local='keydir 1'
1m ago Tls negotiation cy-crst-02 cy-crst-02/208.127.192.123:1546 VERIFY OK: depth=0, CN=cy-crst-02
1m ago Tls negotiation cy-crst-02 cy-crst-02/208.127.192.123:1546 VERIFY OK: depth=1, CN=ca\\n
1m ago Tls negotiation cy-crst-02 cy-crst-02/208.127.192.123:1546 TLS: soft reset sec=0 bytes=1693715/67108864 pkts=3908/0
1m ago Tls negotiation cy-rwj-06 cy-rwj-06/208.68.21.187:39136 Control Channel: TLSv1.2, cipher TLSv1/SSLv3 DHE-RSA-AES256-GCM-SHA384, 2048 bit RSA
1m ago Tls negotiation cy-rwj-06 cy-rwj-06/208.68.21.187:39136 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
1m ago Tls negotiation cy-rwj-06 cy-rwj-06/208.68.21.187:39136 WARNING: INSECURE cipher with block size less than 128 bit (64 bit). This allows attacks like SWEET32. Mitigate by using a --cipher with a larger block size (e.g. AES-256-CBC).
Latest Config Config History
Collected 30m ago — SHA256: cf6fabb836e99d48… 
server 10.240.0.0 255.255.252.0
verb 3
key [REDACTED]
ca /etc/openvpn/certs/pki/ca.crt
cert /etc/openvpn/certs/pki/issued/server.crt
dh /etc/openvpn/certs/pki/dh.pem

key-direction 0
keepalive 10 60
persist-key
persist-tun

proto tcp
port  443
dev tun0
status /tmp/openvpn-status.log

client-config-dir /etc/openvpn/ccd

user nobody
group nogroup

route 10.240.0.0 255.255.0.0
push "route 10.20.1.0 255.255.240.0"
push "route 10.23.240.10 255.255.255.255"
push "route 10.240.0.0 255.255.0.0"
# push "route 10.0.0.0 255.0.0.0"

push "dhcp-option DOMAIN  vpn.svc.cluster.local svc.cluster.local cluster.local c.cylera-infra.internal google.internal"
push "dhcp-option DNS 10.23.240.10"