论坛风格切换切换到宽版
发帖 回复
返回列表
  • 1929阅读
  • 3回复

[问题求助]openvpn windows client连接linux server问题 [复制链接]

 上一主题 下一主题
离线kyabcd.
初中三年级
 
发帖
2041
C币
-235287
威望
375
贡献值
1
银元
-1
铜钱
4573
人人网人气币
0
只看楼主 倒序阅读 使用道具 楼主  发表于: 2009-05-01
vpn拨号成功了,但是.分配的ip和网关似乎有问题--- 印刷
ipconfig /al.l显示--------------彩票
Eth.ernet adapter 本地连接 7:<性病>

        Connection-specif.ic DNS Suf.fix  . :外贸
        Description. . . . . . . . . . . .. : TAP-Win32 Adapter V8             汽车
        Physical Address. . . . .. . .. . . : 00-FF-94-28-2B-E6健康
   .     Dhcp E.nabled. . . . . . . . . . . : Yes            杀毒
        Autoconfiguration .Enabled . . .. . : Yes    外汇
    .    IP A.ddress. . . . . . . . . . . . : 10.8.0.6学习
        Subnet Mask. . . . . .. . . . . . . : 10.8.0.5--------------彩票
        Default Gatew.ay . . .. . . . . . . :.
        DHCP Server . . . . . . . . .. . . : 10.8..0.4           建材
        Lease Obtained. . . . . . . . . . : 2007年1..2月28日 14:02:34投资
        Lease Ex.pires . . . . .. . . . . . : 2008年12月27日 14:02:34    外汇
怎么子网掩码是10.8..0.5,奇怪,网关也没有(广告)

Server端 ifconf.ig tun0服务器
tun0      Link encap:UNSPEC.  HWaddr F2-B7-AB-.24-F1-B7-57-F5-00-00-00-00-00-00-00-00  .<性病>
          ine.t ad.dr:10.8.0.1  P-t-P:10.8.0.2  Mask:255.255.255.255.
          UP POINTOPOINT RUNNING NOARP MULTICAST  M.TU:1500  Metric:.1虚拟主机
        .  RX packets:0 errors:0 dropped:0. overruns:0 frame:0--------------彩票
          TX packets:0 errors:0 dropp.ed:0 overruns:0 carrier:.0外贸
        .  collisions:0 t.xqueuelen:100 .
  .        RX bytes:0 (0.0 b)  TX bytes:0 (0..0 b)(广告)

client无法ping通10.8.0.1 、10.8.0.4,看那.个掩.码应该也ping不通


windows上cli.ent的log:           女人
Fri Dec 28 14:02:26 2007 NOTE: --u.ser option is not implemented on W.indows学习
Fri Dec 28 14:02:26 2007 NOTE: --group option .is not implemented on Windows.             汽车
Fri Dec 28 14:02:26 200.7 OpenVPN 2.0.9 Win32-MinGW [SSL] [LZO] buil.t on Oct  1 .2006           女人
F.ri Dec 28 14:02:26 2007 I.MPORTANT: OpenVPN's default port numb.er is now 1194., based on an official port number assignment by .IANA.  OpenVPN 2.0-beta16 and earlier used 5000 as the default port.外贸
Fri Dec 28 14:02:26 2007 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.              乙肝
Fri Dec. 28 14:02:.27 2007 LZO compression initialized.
F.ri Dec 28 .14:02:27 2007 UDPv4 link local: [undef].
Fri Dec 28 14:02:27 2007. UDP.v4 link remote: 172.16.12.254:1194             汽车
Fri Dec 28 1.4:02:27 2007 WARNING: 'dev-type' is used inconsistently,. local='dev-type tap', remote='.dev-type tun'           女人
Fri Dec 28 14:02:27 2007 WARNING: 'link-mtu' is used i.nconsistentl.y, l.ocal='link-mtu 1574', remote='link-mtu 1542'    外汇
Fri Dec 28 14:02.:27 2007 WARNING: 'tun-mtu' is used inconsisten.tly, local='tun-mtu 1532', remote='tun-mtu .1500'.
Fri Dec 28 14:02:27 2007 [ATA_Server] Peer .Connection In.itiated with 172.16.12.25.4:1194学习
Fri Dec 28 14:02:28 2007 WARNING: Since you are using. --dev tap, the second argument to --ifconfig must be a netma.sk,. for example something like 255..255.255.0. (silence this war.ning with --ifconfig-nowarn)             电子
Fri Dec 28 14:02:28 2007 OpenVPN ROUTE: .OpenVPN needs a gateway parameter for a --route option and no default was sp.ecified by either --ro.ute-gateway or .--ifconfig options<性病>
Fri Dec 28 14:02:28 2007 OpenVPN ROUTE: failed to parse/resolve ro.ute for host/network: 1.92.168.0..0.
Fri Dec 28 14:02:28 2007 .OpenVPN ROUTE: Open.VPN needs a gate.way parameter for a --route option and no default was specified by either .--route-gateway or --ifconfig options             汽车
Fri Dec 28 14:02:28 2.007 OpenVPN ROUTE: failed to p.arse/resolve route for host/network: 10.8.0..1虚拟主机
Fri Dec 28 14:02:28 2007 TAP-WIN32 device [本地连接 7] opened: \\.\Global\{94282B.E6-.F51E-4236.-902D-39414AB448F1}.tap.
F.ri Dec 28 14:02:28 2007 Notified TAP-Win32 driver t.o set a DHCP IP/netmask of 10.8.0.6/10.8.0..5 on interface {94282BE6-F51E-4236-902D-39414AB448F1} [DHCP-serv:. 10.8.0.4, lea.se-time: 31536000]域名
Fri Dec 28 14:02:28 2007 Successful ARP Flush on i.nte.rface [2] {94282.BE6-F51E-4236-902D-39414AB448F1}服务器
Fri Dec 28 14:02:.34 2007 Initialization Sequence Completed.健康



Linux Server的l.og:.
Fri Dec 28 14:03:36 2007 Ope.nVPN 2.0.9 i686.-pc-linux [SSL] [.LZO] [EPOLL] built on Dec 27 2007          婚庆
Fri Dec 28 14:03:36 2007 Diffie.-Hellman initialized with 1024 bit ke.y.
Fri Dec 28 14:03:.36 2007 TL.S-Auth MTU parms [ L:1542 D:138 EF:38 EB:0 ET:0 EL:.0 ].
Fri Dec 28 14:03:36 2007 TUN./TAP dev.ice tun0 opened    外汇
Fri Dec 28 14:03:36 2007 /sb.in/ifconfig tun0 10.8.0.1 poin.topoint 1.0.8.0.2 mtu 1500.
Fri Dec 28 14:03:36 2007 /sbin./route add -ne.t 10.8.0.0 netmask 255.255.25.5.0 gw 10.8.0.2    外汇
Fri Dec 28 14:03:36 2007 Data Cha..nnel MTU parms [ L:1542 D:1450 EF:42 EB:135 ET:0 EL:0 AF:3/1 .]--- 印刷
Fri Dec .28 14:03:36 2007 GID set to nobo.dy    外汇
Fri Dec 28 14:03:36 2007 UID set .t.o nobody域名
Fri Dec 28 14:03:36 2007 UDPv4. link loc.al (bound): [undef]:1194             汽车
Fri Dec 28 .14:03:36 2007 .UDPv4 link remote: [undef]    健康
Fri Dec 28 14:03:36 200.7 MULTI: multi._init called, r=256 v=256    美容
Fri Dec 28 14:03:36 2007 IFCONFIG POOL: base=10.8.0.4 .size=6.2<性病>
Fri Dec 28 14:03:36 2007 Initialization Sequenc.e Com.pleted外贸
Fri Dec. 28 14:03.:45 2007 MULTI: multi_create_instance called(广告)
Fri Dec 28 14:03:4.5 2007 172.16.12.160:1971 Re-.using SSL/TLS context.
Fri Dec .28 14:03:45 20.07 172.16.12.160:1971 LZO compression initialized服务器
Fri Dec 28 14:03:45 2007 172..16.12.160:1971 Control Channel MT.U parms [ L:1542 D:138 EF:38 EB:0 ET:0 EL:.0 ].
Fri Dec 28 14:03:45 2007. 172.16.12.160.:1971 Data Channel MTU parms [ L:15.42 D:1450 EF:42 EB:135 ET:0 EL:0 AF:3/1 ]            杀毒
Fri De.c 28 14:03:45 2007. 172.16.12.160:1971 Local Options hash (VER=.V4): '530fdded'--------------彩票
Fri Dec 28 14.:03:45 2007 172.16.12..160:1971 Expected. Remote Options hash (VER=V4): '41690919'           鲜花
Fri .Dec 28 14:03:45 2007 172.16.12.160:1971 TLS: I.nitial packet from 172.16.12.160:1971, sid=a45c2066. 2f06f75d.
Fri. Dec 28 14:03:45 2007 172..16.12.160:1971 VERIFY OK: depth=1,
Fri Dec 28 14.:0.3:45 2007 172.16.12.160:1971 VERIFY OK: depth=0, .
Fri Dec 28 14:.03:45 2007 172.16.12.160:1971 WARNING: 'dev-type' is used inconsi.stent.ly, .local='dev-type tun', remote='dev-type tap'(广告)
Fri D.ec 28 14:03:45 2007. 172.16.12.160:1971 WARNING: 'link-mtu' is used inconsistently,. local='link-mtu. 1542', remote='link-mtu 1574'<性病>
Fri Dec 28 .1.4:03:45 2007 172.16.12.160:1971 WARNING: 'tun-mtu' is used inconsistently, local='tun-mtu 1500', remote='tun.-mtu .1532'<性病>
Fri Dec 28 14:03:45 2007 172.16.12.160:1971 Data Channel Encrypt: .Ciphe.r 'BF-CBC' initializ.ed with 128 bit key--------------彩票
Fri Dec 28 14:03:45 2007 172.1.6.12.160:1971 Data C.hannel Encrypt: Using 160 bit message hash '.SHA1' for HMAC authentication.
Fri. Dec 28 14:03.:45 2007 172.16.12.160:1971 Data Channel Decrypt: Cipher 'BF-CBC' initi.alized with 128 bit key          婚庆
Fri Dec 28 14:03:45 2007 172.16.12.1.60:1971 Data Ch.annel Decrypt:. Using 160 bit message hash 'SHA1' for HMAC authentication外贸
Fri Dec 28 14:03:45 2007 172.16.12.160:1971 Con..trol Channel: TLSv1, ciph.er TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA.
Fri Dec 2.8 14:03:45 2007 172.16.12.160:1971 [hl] .Peer Connection Initiated with 172.16.1.2.160:1971.
Fri Dec 28 14:03:45 2007 hl/172..16.12.160:1971 MULTI: Lear.n: 10.8.0.6 -.> hl/172.16.12.160:1971
Fr.i Dec 28 14:03:45 2007 hl/172.16.12.160:1971 MULTI: primary .virtual IP for hl/172.16.12.160:1.971: 10.8.0.6.
Fri Dec 28 14:03:46 2007 hl/172.16.12.160:1971 PUSH: R.eceived c.ontrol message: 'PUSH_R.EQUEST'<性病>
Fri Dec 28 14:03:46 2007 hl/172.16.12.160:197.1 SENT CONTROL [hl]: 'PUSH_REPLY,rou.te 1.0.8.0.1,ping 10,ping-restart 120,ifconfig 10..8.0.6 10.8.0.5' (status=1)域名

[ 本帖最.后由 hlidea 于 2007-12-28 .14:32 编辑 ].
评价一下你浏览此帖子的感受

精彩
感动
搞笑
开心
愤怒
无聊
灌水
回复
举报
分享到 淘江湖 新浪 QQ微博 QQ空间 开心 人人 豆瓣 网易微博 百度 鲜果 白社会 飞信
离线rayabbie.
初中三年级
发帖
2143
C币
-60307
威望
385
贡献值
1
银元
-1
铜钱
4705
人人网人气币
0
只看该作者 沙发  发表于: 2010-04-13
Re:openvpn
server端的配置文件

port 1194

proto udp

dev tun

ca /etc/openvpn/keys/ca.crt
cert /etc/openvpn/keys/server.crt
key /etc/openvpn/keys/server.key  # This file should be kept secret

dh /etc/openvpn/keys/dh1024.pem

server 10.8.0.0 255.255.255.0

ifconfig-pool-persist ipp.txt

keepalive 10 120

comp-lzo

user nobody
group nobody

persist-key
persist-tun

status /var/log/openvpn-status.log

log /var/log/openvpn.log

verb 3
回复
举报
离线花开绿叶明.
初中三年级
发帖
2134
C币
-235037
威望
393
贡献值
1
银元
-5
铜钱
4821
人人网人气币
0
只看该作者 板凳  发表于: 2010-04-13
Re:openvpn
client 端配置文件

client
dev tap
proto udp

remote 172.16.12.254 1194

resolv-retry infinite
nobind
user nobody
group nobody

persist-key
persist-tun

ca ca.crt
cert hl.crt
key hl.key

comp-lzo
回复
举报
离线tonyfuming.
初中三年级
发帖
2210
C币
-234851
威望
424
贡献值
1
银元
-2
铜钱
4990
人人网人气币
0
只看该作者 地板  发表于: 2010-04-13
Re:openvpn
果然把client的dev改成tun就好了,谢谢版大
回复
举报
发帖 回复
返回列表
快速回复
限100 字节
如果您提交过一次失败了,可以用”恢复数据”来恢复帖子内容
 
上一个 下一个