Nefunguje OPENVPN2
Petr Janda
janda na netbox.cz
Pondělí Červen 12 07:43:12 CEST 2006
On Sun, Jun 11, 2006 at 09:45:18PM +0200, LINUX wrote:
> Mam problem S OPENVPN na FC5
>
> Nemozem sa pripojit s winxpsp2 postupoval som podla navodu a nic.
> Pripajam sa na lokalnej sieti.
>
> config linux server
> mode server
> tls-server
> dev tap0
> ifconfig 10.0.1.100 255.255.255.0
> ifconfig-pool 10.0.1.1 10.0.1.90 255.255.255.0
> duplicate-cn
>
> ca /etc/openvpn/cacert.pem
> cert /etc/openvpn/vpn.crt
> key /etc/openvpn/vpn.key
> dh /etc/openvpn/dh1024.pem
>
> log-append /var/log/openvpn
> status /var/run/openvpn/vpn.status 10
>
> user openvpn
> group openvpn
> comp-lzo
> verb 3
>
> config winxpsp2:
>
> remote 192.168.1.168
> tls-client
> dev tap0
> pull
>
> mute 10
> ca cacert.pem
> cert vpn.crt
> key vpn.key
>
> comp-lzo
> verb 3
>
> Server LOG:
> Sun Jun 11 20:43:25 2006 event_wait : Interrupted system call (code=4)
> Sun Jun 11 20:43:25 2006 TCP/UDP: Closing socket
> Sun Jun 11 20:43:25 2006 Closing TUN/TAP interface
> Sun Jun 11 20:43:25 2006 SIGTERM[hard,] received, process exiting
> Sun Jun 11 20:43:28 2006 OpenVPN 2.1_beta14 x86_64-redhat-linux-gnu [SSL] [LZO1] [EPOLL] built on Apr 14 2006
> Sun Jun 11 20:43:28 2006 WARNING: you are using user/group/chroot without persist-tun -- this may cause restarts to fail
> Sun Jun 11 20:43:28 2006 WARNING: you are using user/group/chroot without persist-key -- this may cause restarts to fail
> Sun Jun 11 20:43:28 2006 WARNING: --keepalive option is missing from server config
> Sun Jun 11 20:43:28 2006 Diffie-Hellman initialized with 1024 bit key
> Sun Jun 11 20:43:28 2006 WARNING: file '/etc/openvpn/vpn.key' is group or others accessible
> Sun Jun 11 20:43:28 2006 TLS-Auth MTU parms [ L:1574 D:138 EF:38 EB:0 ET:0 EL:0 ]
> Sun Jun 11 20:43:28 2006 TUN/TAP device tap0 opened
> Sun Jun 11 20:43:28 2006 TUN/TAP TX queue length set to 100
> Sun Jun 11 20:43:28 2006 /sbin/ip link set dev tap0 up mtu 1500
> Sun Jun 11 20:43:28 2006 /sbin/ip addr add dev tap0 10.0.1.100/24 broadcast 10.0.1.255
> Sun Jun 11 20:43:28 2006 Data Channel MTU parms [ L:1574 D:1450 EF:42 EB:135 ET:32 EL:0 AF:3/1 ]
> Sun Jun 11 20:43:28 2006 GID set to openvpn
> Sun Jun 11 20:43:28 2006 UID set to openvpn
> Sun Jun 11 20:43:28 2006 Socket Buffers: R=[126976->131072] S=[126976->131072]
> Sun Jun 11 20:43:28 2006 UDPv4 link local (bound): [undef]:1194
> Sun Jun 11 20:43:28 2006 UDPv4 link remote: [undef]
> Sun Jun 11 20:43:28 2006 MULTI: multi_init called, r=256 v=256
> Sun Jun 11 20:43:28 2006 IFCONFIG POOL: base=10.0.1.1 size=90
> Sun Jun 11 20:43:28 2006 Initialization Sequence Completed
>
> Client LOG:
> Sun Jun 11 21:37:24 2006 OpenVPN 2.0_beta14 Win32-MinGW [SSL] [LZO] built on Oct 20 2004
> Sun Jun 11 21:37:28 2006 LZO compression initialized
> Sun Jun 11 21:37:28 2006 Control Channel MTU parms [ L:1574 D:138 EF:38 EB:0 ET:0 EL:0 ]
> Sun Jun 11 21:37:28 2006 Data Channel MTU parms [ L:1574 D:1450 EF:42 EB:19 ET:32 EL:0 ]
> Sun Jun 11 21:37:28 2006 Local Options hash (VER=V4): 'd79ca330'
> Sun Jun 11 21:37:28 2006 Expected Remote Options hash (VER=V4): 'f7df56b8'
> Sun Jun 11 21:37:28 2006 UDPv4 link local (bound): [undef]:5000
> Sun Jun 11 21:37:28 2006 UDPv4 link remote: 192.168.1.168:5000
> Sun Jun 11 21:37:28 2006 read UDPv4: Connection reset by peer (WSAECONNRESET) (code=10054)
>
>
>
> Momentalne som zistil ze ani na server sa neda pripojit telnetom a neviem kde je problem.
>
Dela to na me dojem, ze server posloucha na portu 1194, ale klient leze
na 192.168.1.168:5000
Telnet je TCP vase konfigurace VPN pouziva UDP, takze to nepujde :-)
S pozdravem
Petr Janda
--
email: janda_at_netbox_dot_cz
Další informace o konferenci Linux