OpenVPN-problem

ericus@charlotte:~$ ls /etc/openvpn/
Ivacy-ca.crt  Ivacy-client.crt  Ivacy-client.key  Ivacy-client.ovpn  Ivacy-client.ovpn~  Ivacy-tls.key  update-resolv-conf

sudo openvpn --config /etc/openvpn/Ivacy-client.ovpn

Mon Mar  9 20:21:28 2009 OpenVPN 2.1_rc11 i486-pc-linux-gnu [SSL] [LZO2] [EPOLL] [PKCS11] built on Oct 15 2008
Enter Auth Username:xxxxxxx
Enter Auth Password:
Mon Mar  9 20:21:35 2009 /usr/bin/openssl-vulnkey -q -b 2048 -m <modulus omitted>
Mon Mar  9 20:21:35 2009 Control Channel Authentication: using '/etc/openvpn/Ivacy-tls.key' as a OpenVPN static key file
Mon Mar  9 20:21:35 2009 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Mon Mar  9 20:21:35 2009 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Mon Mar  9 20:21:35 2009 LZO compression initialized
Mon Mar  9 20:21:35 2009 Local Options hash (VER=V4): '5474e'
Mon Mar  9 20:21:35 2009 Expected Remote Options hash (VER=V4): '141683'
Mon Mar  9 20:21:35 2009 Socket Buffers: R=[112640->131072] S=[112640->131072]
Mon Mar  9 20:21:35 2009 UDPv4 link local: [undef]
Mon Mar  9 20:21:35 2009 UDPv4 link remote: xx.xx.xx.xx:1194
Mon Mar  9 20:21:35 2009 TLS: Initial packet from xx.xx.xx.xx:1194, sid=e47bccdc b494c687
Mon Mar  9 20:21:35 2009 VERIFY OK: depth=1, /C=RU/ST=MR/L=Moscow/O=ivacy.com/CN=ivacy.com_CA/emailAddress=admin@ivacy.com
Mon Mar  9 20:21:35 2009 VERIFY OK: nsCertType=SERVER
Mon Mar  9 20:21:35 2009 VERIFY OK: depth=0, /C=RU/ST=MR/L=Moscow/O=ivacy.com/CN=openvpn.ivacy.com/emailAddress=admin@ivacy.com
Mon Mar  9 20:21:36 2009 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
Mon Mar  9 20:21:36 2009 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Mon Mar  9 20:21:36 2009 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
Mon Mar  9 20:21:36 2009 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Mon Mar  9 20:21:36 2009 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA
Mon Mar  9 20:21:36 2009 [openvpn.ivacy.com] Peer Connection Initiated with 213.232.208.199:1194
Mon Mar  9 20:21:38 2009 SENT CONTROL [openvpn.ivacy.com]: 'PUSH_REQUEST' (status=1)
Mon Mar  9 20:21:38 2009 PUSH: Received control message: 'PUSH_REPLY,route 1.0.0.0 255.0.0.0,dhcp-option DNS 1.254.2.2,dhcp-option DNS 1.254.2.3,dhcp-option DOMAIN vpn,explicit-exit-notify 2,route-gateway 1.2.124.1,topology subnet,ping 10,ping-restart 60,ifconfig 1.2.124.104 255.255.255.0'
Mon Mar  9 20:21:38 2009 OPTIONS IMPORT: timers and/or timeouts modified
Mon Mar  9 20:21:38 2009 OPTIONS IMPORT: explicit notify parm(s) modified
Mon Mar  9 20:21:38 2009 OPTIONS IMPORT: --ifconfig/up options modified
Mon Mar  9 20:21:38 2009 OPTIONS IMPORT: route options modified
Mon Mar  9 20:21:38 2009 OPTIONS IMPORT: route-related options modified
Mon Mar  9 20:21:38 2009 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Mon Mar  9 20:21:38 2009 ROUTE default_gateway=85.226.52.1
Mon Mar  9 20:21:38 2009 TUN/TAP device tun0 opened
Mon Mar  9 20:21:38 2009 TUN/TAP TX queue length set to 100
Mon Mar  9 20:21:38 2009 /sbin/ifconfig tun0 1.2.124.104 netmask 255.255.255.0 mtu 1500 broadcast 1.2.124.255
Mon Mar  9 20:21:38 2009 /etc/openvpn/update-resolv-conf tun0 1500 1542 1.2.124.104 255.255.255.0 init
dhcp-option DNS 1.254.2.2
dhcp-option DNS 1.254.2.3
dhcp-option DOMAIN vpn
Mon Mar  9 20:21:39 2009 /sbin/route add -net 213.232.208.199 netmask 255.255.255.255 gw 85.226.52.1
Mon Mar  9 20:21:39 2009 /sbin/route del -net 0.0.0.0 netmask 0.0.0.0
Mon Mar  9 20:21:39 2009 /sbin/route add -net 0.0.0.0 netmask 0.0.0.0 gw 1.2.124.1
Mon Mar  9 20:21:39 2009 WARNING: potential route subnet conflict between local LAN [1.2.124.0/255.255.255.0] and remote VPN [1.0.0.0/255.0.0.0]
Mon Mar  9 20:21:39 2009 /sbin/route add -net 1.0.0.0 netmask 255.0.0.0 gw 1.2.124.1
Mon Mar  9 20:21:39 2009 Initialization Sequence Completed

There is already a pid file /var/run/dhclient.pid with pid 8291
killed old client process, removed PID file
Internet Systems Consortium DHCP Client V3.1.1
Copyright 2004-2008 Internet Systems Consortium.
All rights reserved.
For info, please visit http://www.isc.org/sw/dhcp/

tun0: unknown hardware address type 65534
tun0: unknown hardware address type 65534
Listening on LPF/tun0/
Sending on   LPF/tun0/
Sending on   Socket/fallback
DHCPDISCOVER on tun0 to 255.255.255.255 port 67 interval 5
DHCPDISCOVER on tun0 to 255.255.255.255 port 67 interval 5
DHCPDISCOVER on tun0 to 255.255.255.255 port 67 interval 5
DHCPDISCOVER on tun0 to 255.255.255.255 port 67 interval 14
DHCPDISCOVER on tun0 to 255.255.255.255 port 67 interval 11
DHCPDISCOVER on tun0 to 255.255.255.255 port 67 interval 12
DHCPDISCOVER on tun0 to 255.255.255.255 port 67 interval 9
No DHCPOFFERS received.
No working leases in persistent database - sleeping.

ericus@charlotte:~$ traceroute www.google.com
traceroute to www.google.com (74.125.79.103), 30 hops max, 40 byte packets
send: Operation not permitted

tun0      Link encap:UNSPEC  HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00  
          inet addr:1.2.124.104  P-t-P:1.2.124.104  Mask:255.255.255.0
          UP POINTOPOINT RUNNING NOARP MULTICAST  MTU:1500  Metric:1
          RX packets:0 errors:0 dropped:0 overruns:0 frame:0
          TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:100 
          RX bytes:0 (0.0 B)  TX bytes:0 (0.0 B)

ericus@charlotte:~$ route -n
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
213.232.208.199 85.226.52.1     255.255.255.255 UGH   0      0        0 eth0
1.2.124.0       0.0.0.0         255.255.255.0   U     0      0        0 tun0
85.226.52.0     0.0.0.0         255.255.252.0   U     1      0        0 eth0
169.254.0.0     0.0.0.0         255.255.0.0     U     1000   0        0 eth0
1.0.0.0         1.2.124.1       255.0.0.0       UG    0      0        0 tun0
0.0.0.0         1.2.124.1       0.0.0.0         UG    0      0        0 tun0