Форум Фотогалерея Деловой мир Мелитополя
Мелитополь
Мелитопольский форум
 
 RSS  FAQFAQ   ПоискПоиск   ПользователиПользователи   ГруппыГруппы   РегистрацияРегистрация 
 ПрофильПрофиль   Войти и проверить личные сообщенияВойти и проверить личные сообщения   ВходВход 

OpenVPN клиент на Ubuntu 12.10

 
Начать новую тему   Ответить на тему    Список форумов Мелитополь -> Unix&Linux
Предыдущая тема :: Следующая тема  
Автор Сообщение
chilly86

Почетный гражданин


Пол: Пол: Он
Зарегистрирован: 08.11.2006
Сообщения: 7326
Откуда: /home/chilly86/
Репутация: 225.4
голосов: 112

СообщениеДобавлено: Пт Ноя 16, 2012 20:35 pm    Заголовок сообщения: OpenVPN клиент на Ubuntu 12.10 Ответить с цитатой

Понадобилось мне, значит, соединить домашний комп, на котором установлена 64х битная Ubuntu 12.10 с рабочим сервером. На удалённом сервере поднят ОпенВПН и админ выдал мне ключи и конфигурационный файл. На ОС семейства Windows проблем в подключением не возникло: установил клиент, автоматически был установлен вируальный адаптер. Скинул ключи, подправил пути в конфе и подключение произошло. Решил я, что раз уже убунту у меня стоит второй ОС, то нужно сделать так, что бы и она подключалась к серверу.

Что я собственно сделал:

1. Установил OpenVPN клиент:

Код:
sudo apt-get install openvpn


Установка прошла без проблем. Была создана папка /etc/openvpn куда я поместил конфигурационный файл. Привожу его уже с учётом поправки путей к ключам:

Скрыто: 
Код:
dev tun
client
tls-client
daemon
remote remote.server

ca /etc/openvpn/keys/ca.crt
tls-auth /etc/openvpn/keys/ta.key
cert /etc/openvpn/keys/client.crt
key /etc/openvpn/keys/client.key

tls-timeout 15
ns-cert-type server

status /var/log/openvpn/openvpn-status.log
log /var/log/openvpn/openvpn.log
verb 6

#proto tcp-client
proto udp
port 1194

comp-lzo

tun-mtu 1500
tun-mtu-extra 32
mssfix 1450
keepalive 10 60

verb 4

nobind
persist-key
persist-tun

;route-delay 5


Ключи скинул в /etc/openvpn/keys/ и включил логирование.
На всякий случай дал chmod 777 для этой папки

Делаю

Код:
sudo service openvpn start


и вот что происходит:
Код:

 * Starting virtual private network daemon(s)...
 *   Autostarting VPN 'client'     


И все... ни "fail" ни "ok"

виртуальный адаптер в ifconfig при этом не появляется

вот что пишет openvpn.log
ничего криминального я в нем не вижу

Скрыто: 
Fri Nov 16 20:30:49 2012 us=408668 Current Parameter Settings:
Fri Nov 16 20:30:49 2012 us=408773 config = '/etc/openvpn/client.conf'
Fri Nov 16 20:30:49 2012 us=408792 mode = 0
Fri Nov 16 20:30:49 2012 us=408807 persist_config = DISABLED
Fri Nov 16 20:30:49 2012 us=408821 persist_mode = 1
Fri Nov 16 20:30:49 2012 us=408835 show_ciphers = DISABLED
Fri Nov 16 20:30:49 2012 us=408849 show_digests = DISABLED
Fri Nov 16 20:30:49 2012 us=408862 show_engines = DISABLED
Fri Nov 16 20:30:49 2012 us=408876 genkey = DISABLED
Fri Nov 16 20:30:49 2012 us=408889 key_pass_file = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=408903 show_tls_ciphers = DISABLED
Fri Nov 16 20:30:49 2012 us=408919 Connection profiles [default]:
Fri Nov 16 20:30:49 2012 us=408933 proto = udp
Fri Nov 16 20:30:49 2012 us=408947 local = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=408960 local_port = 0
Fri Nov 16 20:30:49 2012 us=408974 remote = 'remote.server'
Fri Nov 16 20:30:49 2012 us=408988 remote_port = 1194
Fri Nov 16 20:30:49 2012 us=409002 remote_float = DISABLED
Fri Nov 16 20:30:49 2012 us=409015 bind_defined = DISABLED
Fri Nov 16 20:30:49 2012 us=409028 bind_local = DISABLED
Fri Nov 16 20:30:49 2012 us=409042 connect_retry_seconds = 5
Fri Nov 16 20:30:49 2012 us=409056 connect_timeout = 10
Fri Nov 16 20:30:49 2012 us=409069 connect_retry_max = 0
Fri Nov 16 20:30:49 2012 us=409083 socks_proxy_server = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=409160 socks_proxy_port = 0
Fri Nov 16 20:30:49 2012 us=409185 socks_proxy_retry = DISABLED
Fri Nov 16 20:30:49 2012 us=409212 Connection profiles END
Fri Nov 16 20:30:49 2012 us=409235 remote_random = DISABLED
Fri Nov 16 20:30:49 2012 us=409261 ipchange = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=409284 dev = 'tun'
Fri Nov 16 20:30:49 2012 us=409298 dev_type = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=409311 dev_node = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=409324 lladdr = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=409337 topology = 1
Fri Nov 16 20:30:49 2012 us=409350 tun_ipv6 = DISABLED
Fri Nov 16 20:30:49 2012 us=409363 ifconfig_local = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=409376 ifconfig_remote_netmask = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=409389 ifconfig_noexec = DISABLED
Fri Nov 16 20:30:49 2012 us=409401 ifconfig_nowarn = DISABLED
Fri Nov 16 20:30:49 2012 us=409414 ifconfig_ipv6_local = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=409427 ifconfig_ipv6_netbits = 0
Fri Nov 16 20:30:49 2012 us=409440 ifconfig_ipv6_remote = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=409454 shaper = 0
Fri Nov 16 20:30:49 2012 us=409467 tun_mtu = 1500
Fri Nov 16 20:30:49 2012 us=409481 tun_mtu_defined = ENABLED
Fri Nov 16 20:30:49 2012 us=409494 link_mtu = 1500
Fri Nov 16 20:30:49 2012 us=409507 link_mtu_defined = DISABLED
Fri Nov 16 20:30:49 2012 us=409520 tun_mtu_extra = 32
Fri Nov 16 20:30:49 2012 us=409533 tun_mtu_extra_defined = ENABLED
Fri Nov 16 20:30:49 2012 us=409546 fragment = 0
Fri Nov 16 20:30:49 2012 us=409559 mtu_discover_type = -1
Fri Nov 16 20:30:49 2012 us=409573 mtu_test = 0
Fri Nov 16 20:30:49 2012 us=409586 mlock = DISABLED
Fri Nov 16 20:30:49 2012 us=409599 keepalive_ping = 10
Fri Nov 16 20:30:49 2012 us=409613 keepalive_timeout = 60
Fri Nov 16 20:30:49 2012 us=409626 inactivity_timeout = 0
Fri Nov 16 20:30:49 2012 us=409639 ping_send_timeout = 10
Fri Nov 16 20:30:49 2012 us=409653 ping_rec_timeout = 60
Fri Nov 16 20:30:49 2012 us=409666 ping_rec_timeout_action = 2
Fri Nov 16 20:30:49 2012 us=409679 ping_timer_remote = DISABLED
Fri Nov 16 20:30:49 2012 us=409692 remap_sigusr1 = 0
Fri Nov 16 20:30:49 2012 us=409705 explicit_exit_notification = 0
Fri Nov 16 20:30:49 2012 us=409719 persist_tun = ENABLED
Fri Nov 16 20:30:49 2012 us=409732 persist_local_ip = DISABLED
Fri Nov 16 20:30:49 2012 us=409745 persist_remote_ip = DISABLED
Fri Nov 16 20:30:49 2012 us=409757 persist_key = ENABLED
Fri Nov 16 20:30:49 2012 us=409773 mssfix = 1450
Fri Nov 16 20:30:49 2012 us=409787 passtos = DISABLED
Fri Nov 16 20:30:49 2012 us=409800 resolve_retry_seconds = 1000000000
Fri Nov 16 20:30:49 2012 us=409824 username = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=409838 groupname = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=409851 chroot_dir = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=409865 cd_dir = '/etc/openvpn'
Fri Nov 16 20:30:49 2012 us=409879 writepid = '/var/run/openvpn.client.pid'
Fri Nov 16 20:30:49 2012 us=409892 up_script = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=409906 down_script = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=409919 down_pre = DISABLED
Fri Nov 16 20:30:49 2012 us=409932 up_restart = DISABLED
Fri Nov 16 20:30:49 2012 us=409945 up_delay = DISABLED
Fri Nov 16 20:30:49 2012 us=409958 daemon = ENABLED
Fri Nov 16 20:30:49 2012 us=409972 inetd = 0
Fri Nov 16 20:30:49 2012 us=409985 log = ENABLED
Fri Nov 16 20:30:49 2012 us=409998 suppress_timestamps = DISABLED
Fri Nov 16 20:30:49 2012 us=410011 nice = 0
Fri Nov 16 20:30:49 2012 us=410024 verbosity = 4
Fri Nov 16 20:30:49 2012 us=410037 mute = 0
Fri Nov 16 20:30:49 2012 us=410050 gremlin = 0
Fri Nov 16 20:30:49 2012 us=410064 status_file = '/var/log/openvpn/openvpn-status.log'
Fri Nov 16 20:30:49 2012 us=410077 status_file_version = 1
Fri Nov 16 20:30:49 2012 us=410091 status_file_update_freq = 60
Fri Nov 16 20:30:49 2012 us=410108 occ = ENABLED
Fri Nov 16 20:30:49 2012 us=410122 rcvbuf = 65536
Fri Nov 16 20:30:49 2012 us=410135 sndbuf = 65536
Fri Nov 16 20:30:49 2012 us=410148 sockflags = 0
Fri Nov 16 20:30:49 2012 us=410161 fast_io = DISABLED
Fri Nov 16 20:30:49 2012 us=410174 lzo = 7
Fri Nov 16 20:30:49 2012 us=410187 route_script = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=410201 route_default_gateway = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=410214 route_default_metric = 0
Fri Nov 16 20:30:49 2012 us=410227 route_noexec = DISABLED
Fri Nov 16 20:30:49 2012 us=410241 route_delay = 0
Fri Nov 16 20:30:49 2012 us=410255 route_delay_window = 30
Fri Nov 16 20:30:49 2012 us=410268 route_delay_defined = DISABLED
Fri Nov 16 20:30:49 2012 us=410282 route_nopull = DISABLED
Fri Nov 16 20:30:49 2012 us=410295 route_gateway_via_dhcp = DISABLED
Fri Nov 16 20:30:49 2012 us=410309 max_routes = 100
Fri Nov 16 20:30:49 2012 us=410322 allow_pull_fqdn = DISABLED
Fri Nov 16 20:30:49 2012 us=410335 management_addr = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=410349 management_port = 0
Fri Nov 16 20:30:49 2012 us=410363 management_user_pass = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=410376 management_log_history_cache = 250
Fri Nov 16 20:30:49 2012 us=410389 management_echo_buffer_size = 100
Fri Nov 16 20:30:49 2012 us=410402 management_write_peer_info_file = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=410416 management_client_user = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=410429 management_client_group = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=410442 management_flags = 0
Fri Nov 16 20:30:49 2012 us=410456 shared_secret_file = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=410469 key_direction = 0
Fri Nov 16 20:30:49 2012 us=410483 ciphername_defined = ENABLED
Fri Nov 16 20:30:49 2012 us=410496 ciphername = 'BF-CBC'
Fri Nov 16 20:30:49 2012 us=410509 authname_defined = ENABLED
Fri Nov 16 20:30:49 2012 us=410522 authname = 'SHA1'
Fri Nov 16 20:30:49 2012 us=410535 prng_hash = 'SHA1'
Fri Nov 16 20:30:49 2012 us=410548 prng_nonce_secret_len = 16
Fri Nov 16 20:30:49 2012 us=410561 keysize = 0
Fri Nov 16 20:30:49 2012 us=410574 engine = DISABLED
Fri Nov 16 20:30:49 2012 us=410587 replay = ENABLED
Fri Nov 16 20:30:49 2012 us=410601 mute_replay_warnings = DISABLED
Fri Nov 16 20:30:49 2012 us=410614 replay_window = 64
Fri Nov 16 20:30:49 2012 us=410627 replay_time = 15
Fri Nov 16 20:30:49 2012 us=410640 packet_id_file = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=410653 use_iv = ENABLED
Fri Nov 16 20:30:49 2012 us=410666 test_crypto = DISABLED
Fri Nov 16 20:30:49 2012 us=410680 tls_server = DISABLED
Fri Nov 16 20:30:49 2012 us=410692 tls_client = ENABLED
Fri Nov 16 20:30:49 2012 us=410724 key_method = 2
Fri Nov 16 20:30:49 2012 us=410739 ca_file = '/etc/openvpn/keys/ca.crt'
Fri Nov 16 20:30:49 2012 us=410759 ca_path = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=410772 dh_file = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=410786 cert_file = '/etc/openvpn/keys/client.crt'
Fri Nov 16 20:30:49 2012 us=410800 priv_key_file = '/etc/openvpn/keys/client.key'
Fri Nov 16 20:30:49 2012 us=410814 pkcs12_file = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=410827 cipher_list = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=410840 tls_verify = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=410854 tls_export_cert = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=410867 tls_remote = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=410881 crl_file = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=410894 ns_cert_type = 64
Fri Nov 16 20:30:49 2012 us=410908 remote_cert_ku[i] = 0
Fri Nov 16 20:30:49 2012 us=410922 remote_cert_ku[i] = 0
Fri Nov 16 20:30:49 2012 us=410935 remote_cert_ku[i] = 0
Fri Nov 16 20:30:49 2012 us=410948 remote_cert_ku[i] = 0
Fri Nov 16 20:30:49 2012 us=410962 remote_cert_ku[i] = 0
Fri Nov 16 20:30:49 2012 us=410975 remote_cert_ku[i] = 0
Fri Nov 16 20:30:49 2012 us=410988 remote_cert_ku[i] = 0
Fri Nov 16 20:30:49 2012 us=411002 remote_cert_ku[i] = 0
Fri Nov 16 20:30:49 2012 us=411015 remote_cert_ku[i] = 0
Fri Nov 16 20:30:49 2012 us=411028 remote_cert_ku[i] = 0
Fri Nov 16 20:30:49 2012 us=411041 remote_cert_ku[i] = 0
Fri Nov 16 20:30:49 2012 us=411054 remote_cert_ku[i] = 0
Fri Nov 16 20:30:49 2012 us=411067 remote_cert_ku[i] = 0
Fri Nov 16 20:30:49 2012 us=411081 remote_cert_ku[i] = 0
Fri Nov 16 20:30:49 2012 us=411094 remote_cert_ku[i] = 0
Fri Nov 16 20:30:49 2012 us=411107 remote_cert_ku[i] = 0
Fri Nov 16 20:30:49 2012 us=411120 remote_cert_eku = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=411134 tls_timeout = 15
Fri Nov 16 20:30:49 2012 us=411147 renegotiate_bytes = 0
Fri Nov 16 20:30:49 2012 us=411161 renegotiate_packets = 0
Fri Nov 16 20:30:49 2012 us=411174 renegotiate_seconds = 3600
Fri Nov 16 20:30:49 2012 us=411188 handshake_window = 60
Fri Nov 16 20:30:49 2012 us=411201 transition_window = 3600
Fri Nov 16 20:30:49 2012 us=411215 single_session = DISABLED
Fri Nov 16 20:30:49 2012 us=411228 push_peer_info = DISABLED
Fri Nov 16 20:30:49 2012 us=411241 tls_exit = DISABLED
Fri Nov 16 20:30:49 2012 us=411255 tls_auth_file = '/etc/openvpn/keys/ta.key'
Fri Nov 16 20:30:49 2012 us=411269 pkcs11_protected_authentication = DISABLED
Fri Nov 16 20:30:49 2012 us=411282 pkcs11_protected_authentication = DISABLED
Fri Nov 16 20:30:49 2012 us=411295 pkcs11_protected_authentication = DISABLED
Fri Nov 16 20:30:49 2012 us=411308 pkcs11_protected_authentication = DISABLED
Fri Nov 16 20:30:49 2012 us=411322 pkcs11_protected_authentication = DISABLED
Fri Nov 16 20:30:49 2012 us=411335 pkcs11_protected_authentication = DISABLED
Fri Nov 16 20:30:49 2012 us=411348 pkcs11_protected_authentication = DISABLED
Fri Nov 16 20:30:49 2012 us=411361 pkcs11_protected_authentication = DISABLED
Fri Nov 16 20:30:49 2012 us=411375 pkcs11_protected_authentication = DISABLED
Fri Nov 16 20:30:49 2012 us=411388 pkcs11_protected_authentication = DISABLED
Fri Nov 16 20:30:49 2012 us=411401 pkcs11_protected_authentication = DISABLED
Fri Nov 16 20:30:49 2012 us=411414 pkcs11_protected_authentication = DISABLED
Fri Nov 16 20:30:49 2012 us=411428 pkcs11_protected_authentication = DISABLED
Fri Nov 16 20:30:49 2012 us=411441 pkcs11_protected_authentication = DISABLED
Fri Nov 16 20:30:49 2012 us=411454 pkcs11_protected_authentication = DISABLED
Fri Nov 16 20:30:49 2012 us=411467 pkcs11_protected_authentication = DISABLED
Fri Nov 16 20:30:49 2012 us=411482 pkcs11_private_mode = 00000000
Fri Nov 16 20:30:49 2012 us=411496 pkcs11_private_mode = 00000000
Fri Nov 16 20:30:49 2012 us=411509 pkcs11_private_mode = 00000000
Fri Nov 16 20:30:49 2012 us=411522 pkcs11_private_mode = 00000000
Fri Nov 16 20:30:49 2012 us=411535 pkcs11_private_mode = 00000000
Fri Nov 16 20:30:49 2012 us=411548 pkcs11_private_mode = 00000000
Fri Nov 16 20:30:49 2012 us=411562 pkcs11_private_mode = 00000000
Fri Nov 16 20:30:49 2012 us=411581 pkcs11_private_mode = 00000000
Fri Nov 16 20:30:49 2012 us=411595 pkcs11_private_mode = 00000000
Fri Nov 16 20:30:49 2012 us=411609 pkcs11_private_mode = 00000000
Fri Nov 16 20:30:49 2012 us=411622 pkcs11_private_mode = 00000000
Fri Nov 16 20:30:49 2012 us=411635 pkcs11_private_mode = 00000000
Fri Nov 16 20:30:49 2012 us=411648 pkcs11_private_mode = 00000000
Fri Nov 16 20:30:49 2012 us=411662 pkcs11_private_mode = 00000000
Fri Nov 16 20:30:49 2012 us=411675 pkcs11_private_mode = 00000000
Fri Nov 16 20:30:49 2012 us=411688 pkcs11_private_mode = 00000000
Fri Nov 16 20:30:49 2012 us=411702 pkcs11_cert_private = DISABLED
Fri Nov 16 20:30:49 2012 us=411715 pkcs11_cert_private = DISABLED
Fri Nov 16 20:30:49 2012 us=411728 pkcs11_cert_private = DISABLED
Fri Nov 16 20:30:49 2012 us=411742 pkcs11_cert_private = DISABLED
Fri Nov 16 20:30:49 2012 us=411755 pkcs11_cert_private = DISABLED
Fri Nov 16 20:30:49 2012 us=411769 pkcs11_cert_private = DISABLED
Fri Nov 16 20:30:49 2012 us=411782 pkcs11_cert_private = DISABLED
Fri Nov 16 20:30:49 2012 us=411795 pkcs11_cert_private = DISABLED
Fri Nov 16 20:30:49 2012 us=411809 pkcs11_cert_private = DISABLED
Fri Nov 16 20:30:49 2012 us=411822 pkcs11_cert_private = DISABLED
Fri Nov 16 20:30:49 2012 us=411835 pkcs11_cert_private = DISABLED
Fri Nov 16 20:30:49 2012 us=411849 pkcs11_cert_private = DISABLED
Fri Nov 16 20:30:49 2012 us=411862 pkcs11_cert_private = DISABLED
Fri Nov 16 20:30:49 2012 us=411875 pkcs11_cert_private = DISABLED
Fri Nov 16 20:30:49 2012 us=411888 pkcs11_cert_private = DISABLED
Fri Nov 16 20:30:49 2012 us=411901 pkcs11_cert_private = DISABLED
Fri Nov 16 20:30:49 2012 us=411914 pkcs11_pin_cache_period = -1
Fri Nov 16 20:30:49 2012 us=411928 pkcs11_id = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=411941 pkcs11_id_management = DISABLED
Fri Nov 16 20:30:49 2012 us=411964 server_network = 0.0.0.0
Fri Nov 16 20:30:49 2012 us=411980 server_netmask = 0.0.0.0
Fri Nov 16 20:30:49 2012 us=412002 server_network_ipv6 = ::
Fri Nov 16 20:30:49 2012 us=412016 server_netbits_ipv6 = 0
Fri Nov 16 20:30:49 2012 us=412031 server_bridge_ip = 0.0.0.0
Fri Nov 16 20:30:49 2012 us=412046 server_bridge_netmask = 0.0.0.0
Fri Nov 16 20:30:49 2012 us=412061 server_bridge_pool_start = 0.0.0.0
Fri Nov 16 20:30:49 2012 us=412076 server_bridge_pool_end = 0.0.0.0
Fri Nov 16 20:30:49 2012 us=412090 ifconfig_pool_defined = DISABLED
Fri Nov 16 20:30:49 2012 us=412104 ifconfig_pool_start = 0.0.0.0
Fri Nov 16 20:30:49 2012 us=412120 ifconfig_pool_end = 0.0.0.0
Fri Nov 16 20:30:49 2012 us=412135 ifconfig_pool_netmask = 0.0.0.0
Fri Nov 16 20:30:49 2012 us=412148 ifconfig_pool_persist_filename = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=412162 ifconfig_pool_persist_refresh_freq = 600
Fri Nov 16 20:30:49 2012 us=412175 ifconfig_ipv6_pool_defined = DISABLED
Fri Nov 16 20:30:49 2012 us=412190 ifconfig_ipv6_pool_base = ::
Fri Nov 16 20:30:49 2012 us=412204 ifconfig_ipv6_pool_netbits = 0
Fri Nov 16 20:30:49 2012 us=412217 n_bcast_buf = 256
Fri Nov 16 20:30:49 2012 us=412230 tcp_queue_limit = 64
Fri Nov 16 20:30:49 2012 us=412243 real_hash_size = 256
Fri Nov 16 20:30:49 2012 us=412256 virtual_hash_size = 256
Fri Nov 16 20:30:49 2012 us=412270 client_connect_script = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=412283 learn_address_script = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=412296 client_disconnect_script = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=412310 client_config_dir = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=412324 ccd_exclusive = DISABLED
Fri Nov 16 20:30:49 2012 us=412337 tmp_dir = '/tmp'
Fri Nov 16 20:30:49 2012 us=412350 push_ifconfig_defined = DISABLED
Fri Nov 16 20:30:49 2012 us=412366 push_ifconfig_local = 0.0.0.0
Fri Nov 16 20:30:49 2012 us=412381 push_ifconfig_remote_netmask = 0.0.0.0
Fri Nov 16 20:30:49 2012 us=412395 push_ifconfig_ipv6_defined = DISABLED
Fri Nov 16 20:30:49 2012 us=412409 push_ifconfig_ipv6_local = ::/0
Fri Nov 16 20:30:49 2012 us=412424 push_ifconfig_ipv6_remote = ::
Fri Nov 16 20:30:49 2012 us=412444 enable_c2c = DISABLED
Fri Nov 16 20:30:49 2012 us=412458 duplicate_cn = DISABLED
Fri Nov 16 20:30:49 2012 us=412472 cf_max = 0
Fri Nov 16 20:30:49 2012 us=412486 cf_per = 0
Fri Nov 16 20:30:49 2012 us=412499 max_clients = 1024
Fri Nov 16 20:30:49 2012 us=412513 max_routes_per_client = 256
Fri Nov 16 20:30:49 2012 us=412527 auth_user_pass_verify_script = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=412541 auth_user_pass_verify_script_via_file = DISABLED
Fri Nov 16 20:30:49 2012 us=412555 ssl_flags = 0
Fri Nov 16 20:30:49 2012 us=412568 port_share_host = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=412582 port_share_port = 0
Fri Nov 16 20:30:49 2012 us=412595 client = ENABLED
Fri Nov 16 20:30:49 2012 us=412608 pull = ENABLED
Fri Nov 16 20:30:49 2012 us=412622 auth_user_pass_file = '[UNDEF]'
Fri Nov 16 20:30:49 2012 us=412642 OpenVPN 2.2.1 x86_64-linux-gnu [SSL] [LZO2] [EPOLL] [PKCS11] [eurephia] [MH] [PF_INET6] [IPv6 payload 20110424-2 (2.2RC2)] built on Oct 8 2012
Fri Nov 16 20:30:49 2012 us=412787 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Fri Nov 16 20:30:49 2012 us=413608 WARNING: file '/etc/openvpn/keys/lubinskiy.key' is group or others accessible
Fri Nov 16 20:30:49 2012 us=414389 Control Channel Authentication: using '/etc/openvpn/keys/ta.key' as a OpenVPN static key file
Fri Nov 16 20:30:49 2012 us=414421 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Fri Nov 16 20:30:49 2012 us=414440 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Fri Nov 16 20:30:49 2012 us=414473 LZO compression initialized
Fri Nov 16 20:30:49 2012 us=414571 Control Channel MTU parms [ L:1574 D:166 EF:66 EB:0 ET:0 EL:0 ]
Fri Nov 16 20:30:49 2012 us=414624 Socket Buffers: R=[212992->131072] S=[212992->131072]
Fri Nov 16 20:30:49 2012 us=414651 Data Channel MTU parms [ L:1574 D:1450 EF:42 EB:135 ET:32 EL:0 AF:3/1 ]
Fri Nov 16 20:30:49 2012 us=414686 Local Options String: 'V4,dev-type tun,link-mtu 1574,tun-mtu 1532,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,tls-auth,key-method 2,tls-client'
Fri Nov 16 20:30:49 2012 us=414701 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1574,tun-mtu 1532,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,tls-auth,key-method 2,tls-server'
Fri Nov 16 20:30:49 2012 us=414733 Local Options hash (VER=V4): '38c59c72'
Fri Nov 16 20:30:49 2012 us=414755 Expected Remote Options hash (VER=V4): 'e50a8d82'
Fri Nov 16 20:30:49 2012 us=415238 UDPv4 link local: [undef]
Fri Nov 16 20:30:49 2012 us=415344 UDPv4 link remote: [AF_INET]remote.server:1194


вот openvpn-status.log:
Скрыто: 

OpenVPN STATISTICS
Updated,Fri Nov 16 20:34:49 2012
TUN/TAP read bytes,0
TUN/TAP write bytes,0
TCP/UDP read bytes,0
TCP/UDP write bytes,126
Auth read bytes,0
pre-compress bytes,0
post-compress bytes,0
pre-decompress bytes,0
post-decompress bytes,0
END



Прошу помощи в решении проблемы. Буду благодарен за любые подсказки.
Вернуться к началу
Посмотреть профиль Отправить личное сообщение   Посетить сайт автора
kot
Предупреждений : 1

Бывалый


Пол: Пол: Он
Зарегистрирован: 20.09.2007
Сообщения: 1070

Репутация: 91.7
голосов: 19

СообщениеДобавлено: Сб Ноя 17, 2012 11:24 am    Заголовок сообщения: Re: OpenVPN клиент на Ubuntu 12.10 Ответить с цитатой

chilly86 писал(а):

На всякий случай дал chmod 777 для этой папки

Вот этого как раз делать и не нужно было, верни 755 или 750 для /etc/openvpn/keys/ и 600 для /etc/openvpn/keys/*

Вот мой конфиг, вдруг пригодится:

Скрыто: 

Код:

keepalive 10 60
ping-timer-rem
persist-key
persist-tun
dev tun
proto tcp-client
cipher BF-CBC
remote XXX.XXX.XXX.XXX XXXXX
client
ca /XXX/certs/USERNAME/CA_cert.pem
cert /XXX/certs/USERNAME/C_USERNAME.pem
key /XXX/certs/USERNAME/K_USERNAME.pem
tls-auth /XXX/certs/USERNAME/ta.key 1
comp-lzo
verb 3

Вернуться к началу
Посмотреть профиль Отправить личное сообщение  
chilly86

Почетный гражданин


Пол: Пол: Он
Зарегистрирован: 08.11.2006
Сообщения: 7326
Откуда: /home/chilly86/
Репутация: 225.4
голосов: 112

СообщениеДобавлено: Пн Ноя 19, 2012 17:01 pm    Заголовок сообщения: Ответить с цитатой

спасибо за помощь! проблема была в том, что не хватало строки

auth RSA-SHA1

в конце

tls-auth /etc/openvpn/keys/ta.key 1

должна стоять единица

Smile
Вернуться к началу
Посмотреть профиль Отправить личное сообщение   Посетить сайт автора
Показать сообщения:   
Начать новую тему   Ответить на тему    Список форумов Мелитополь -> Unix&Linux Часовой пояс: GMT + 2
Страница 1 из 1

 
Перейти:  
Вы не можете начинать темы
Вы не можете отвечать на сообщения
Вы не можете редактировать свои сообщения
Вы не можете удалять свои сообщения
Вы не можете голосовать в опросах


Powered by phpBB © 2001, 2005 phpBB Group
Русская поддержка phpBB

Р: 504448

База отдыха «Белый парус» пгт Кирилловка Азовское море.
AUKRO-RIP.IN.UA Аукро закрылся -рейтинг сохранился!

Рейтинг Мелитопольских сайтов на Melitopol.org Internet Map Hosting by VivaNET