Автор Тема: [решено]OpenVPN и Kubuntu 9.04 (Прочитано 1609 раз)

Iliya · « : 20 Октября 2009, 13:40:42 »

Создал конфиг и скопировал файлы ключей в /etc/openvpn

Цитировать

client

;dev tap
dev tun

;dev-node MyTap

;proto tcp
proto udp

remote 111.222.213.444 1194
;remote my-server-2 1194

;remote-random

resolv-retry infinite

nobind

;user nobody
;group nobody

persist-key
persist-tun

;http-proxy-retry # retry on connection failures
;http-proxy [proxy server] [proxy port #]

;mute-replay-warnings

ca /etc/openvpn/ca.crt
cert /etc/openvpn/client1.crt
key /etc/openvpn/client1.key

;ns-cert-type server

;tls-auth ta.key 1

;cipher x

comp-lzo

verb 5

;mute 20

Запускаю openvpn командой
sudo /etc/init.d/openvpn start openvpn

Цитировать

* Starting virtual private network daemon(s)... * Starting VPN 'openvpn' [ OK ]

Никаких ошибок не выдаётся но и трафик не шифруется и не создаётся туннель

Цитировать

Таблица маршутизации ядра протокола IP
Destination Gateway Genmask Flags Metric Ref Use Iface
10.21.143.0 * 255.255.255.128 U 1 0 0 eth0
link-local * 255.255.0.0 U 1000 0 0 eth0
default 10.21.143.126 0.0.0.0 UG 0 0 0 eth0

В network Management появляется иконка с названием openvpn подключения, но кнопка подключения не активна, тоже самое и со всеми другими подключениями через gui они не редактируются и не подключаются

fwhr · « **Ответ #1 :** 20 Октября 2009, 13:45:35 »

Включи в конфиге лог и читай...

Iliya · « **Ответ #2 :** 20 Октября 2009, 13:50:50 »

Глупый вопрос: как это сделать?
verb 5 - отвечет за подробность лога, я правильно понимаю?

fwhr · « **Ответ #3 :** 20 Октября 2009, 14:06:18 »

log-append /var/log/openvpn.log

Iliya · « **Ответ #4 :** 20 Октября 2009, 14:17:24 »

выкладываю сам лог

Цитировать

Tue Oct 20 14:10:28 2009 us=436075 Current Parameter Settings:
Tue Oct 20 14:10:28 2009 us=436285 config = '/etc/openvpn/openvpn.conf'
Tue Oct 20 14:10:28 2009 us=436318 mode = 0
Tue Oct 20 14:10:28 2009 us=436347 persist_config = DISABLED
Tue Oct 20 14:10:28 2009 us=436372 persist_mode = 1
Tue Oct 20 14:10:28 2009 us=436395 show_ciphers = DISABLED
Tue Oct 20 14:10:28 2009 us=436418 show_digests = DISABLED
Tue Oct 20 14:10:28 2009 us=436441 show_engines = DISABLED
Tue Oct 20 14:10:28 2009 us=436464 genkey = DISABLED
Tue Oct 20 14:10:28 2009 us=436488 key_pass_file = '[UNDEF]'
Tue Oct 20 14:10:28 2009 us=436511 show_tls_ciphers = DISABLED
Tue Oct 20 14:10:28 2009 us=436537 Connection profiles [default]:
Tue Oct 20 14:10:28 2009 us=436562 proto = udp
Tue Oct 20 14:10:28 2009 us=436586 local = '[UNDEF]'
Tue Oct 20 14:10:28 2009 us=436611 local_port = 0
Tue Oct 20 14:10:28 2009 us=436635 remote = '11.22.333.444'
Tue Oct 20 14:10:28 2009 us=436659 remote_port = 1194
Tue Oct 20 14:10:28 2009 us=436682 remote_float = DISABLED
Tue Oct 20 14:10:28 2009 us=436705 bind_defined = DISABLED
Tue Oct 20 14:10:28 2009 us=436727 bind_local = DISABLED
Tue Oct 20 14:10:28 2009 us=436750 connect_retry_seconds = 5
Tue Oct 20 14:10:28 2009 us=436773 connect_timeout = 10
Tue Oct 20 14:10:28 2009 us=436796 connect_retry_max = 0
Tue Oct 20 14:10:28 2009 us=436819 socks_proxy_server = '[UNDEF]'
Tue Oct 20 14:10:28 2009 us=436842 socks_proxy_port = 0
Tue Oct 20 14:10:28 2009 us=436865 socks_proxy_retry = DISABLED
Tue Oct 20 14:10:28 2009 us=436892 Connection profiles END
Tue Oct 20 14:10:28 2009 us=436915 remote_random = DISABLED
Tue Oct 20 14:10:28 2009 us=436938 ipchange = '[UNDEF]'
Tue Oct 20 14:10:28 2009 us=436961 dev = 'tun'
Tue Oct 20 14:10:28 2009 us=436983 dev_type = '[UNDEF]'
Tue Oct 20 14:10:28 2009 us=437006 dev_node = '[UNDEF]'
Tue Oct 20 14:10:28 2009 us=437029 lladdr = '[UNDEF]'
Tue Oct 20 14:10:28 2009 us=437052 topology = 1
Tue Oct 20 14:10:28 2009 us=437074 tun_ipv6 = DISABLED
Tue Oct 20 14:10:28 2009 us=437097 ifconfig_local = '[UNDEF]'
Tue Oct 20 14:10:28 2009 us=437121 ifconfig_remote_netmask = '[UNDEF]'
Tue Oct 20 14:10:28 2009 us=437144 ifconfig_noexec = DISABLED
Tue Oct 20 14:10:28 2009 us=437167 ifconfig_nowarn = DISABLED
Tue Oct 20 14:10:28 2009 us=437189 shaper = 0
Tue Oct 20 14:10:28 2009 us=437212 tun_mtu = 1500
Tue Oct 20 14:10:28 2009 us=437235 tun_mtu_defined = ENABLED
Tue Oct 20 14:10:28 2009 us=437258 link_mtu = 1500
Tue Oct 20 14:10:28 2009 us=437281 link_mtu_defined = DISABLED
Tue Oct 20 14:10:28 2009 us=437304 tun_mtu_extra = 0
Tue Oct 20 14:10:28 2009 us=437327 tun_mtu_extra_defined = DISABLED
Tue Oct 20 14:10:28 2009 us=437350 fragment = 0
Tue Oct 20 14:10:28 2009 us=437373 mtu_discover_type = -1
Tue Oct 20 14:10:28 2009 us=437396 mtu_test = 0
Tue Oct 20 14:10:28 2009 us=437419 mlock = DISABLED
Tue Oct 20 14:10:28 2009 us=437442 keepalive_ping = 0
Tue Oct 20 14:10:28 2009 us=437464 keepalive_timeout = 0
Tue Oct 20 14:10:28 2009 us=437487 inactivity_timeout = 0
Tue Oct 20 14:10:28 2009 us=437509 ping_send_timeout = 0
Tue Oct 20 14:10:28 2009 us=437532 ping_rec_timeout = 0
Tue Oct 20 14:10:28 2009 us=437554 ping_rec_timeout_action = 0
Tue Oct 20 14:10:28 2009 us=437577 ping_timer_remote = DISABLED
Tue Oct 20 14:10:28 2009 us=437600 remap_sigusr1 = 0
Tue Oct 20 14:10:28 2009 us=437623 explicit_exit_notification = 0
Tue Oct 20 14:10:28 2009 us=437646 persist_tun = ENABLED
Tue Oct 20 14:10:28 2009 us=437669 persist_local_ip = DISABLED
Tue Oct 20 14:10:28 2009 us=437692 persist_remote_ip = DISABLED
Tue Oct 20 14:10:28 2009 us=437715 persist_key = ENABLED
Tue Oct 20 14:10:28 2009 us=437738 mssfix = 1450
Tue Oct 20 14:10:28 2009 us=437760 passtos = DISABLED
Tue Oct 20 14:10:28 2009 us=437783 resolve_retry_seconds = 1000000000
Tue Oct 20 14:10:28 2009 us=437807 username = '[UNDEF]'
Tue Oct 20 14:10:28 2009 us=437830 groupname = '[UNDEF]'
Tue Oct 20 14:10:28 2009 us=437853 chroot_dir = '[UNDEF]'
Tue Oct 20 14:10:28 2009 us=437895 cd_dir = '/etc/openvpn'
Tue Oct 20 14:10:28 2009 us=437919 writepid = '/var/run/openvpn.openvpn.pid'
Tue Oct 20 14:10:28 2009 us=437943 up_script = '[UNDEF]'
Tue Oct 20 14:10:28 2009 us=437966 down_script = '[UNDEF]'
Tue Oct 20 14:10:28 2009 us=437989 down_pre = DISABLED
Tue Oct 20 14:10:28 2009 us=438012 up_restart = DISABLED
Tue Oct 20 14:10:28 2009 us=438034 up_delay = DISABLED
Tue Oct 20 14:10:28 2009 us=438057 daemon = ENABLED
Tue Oct 20 14:10:28 2009 us=438080 inetd = 0
Tue Oct 20 14:10:28 2009 us=438103 log = ENABLED
Tue Oct 20 14:10:28 2009 us=438125 suppress_timestamps = DISABLED
Tue Oct 20 14:10:28 2009 us=438149 nice = 0
Tue Oct 20 14:10:28 2009 us=438172 verbosity = 5
Tue Oct 20 14:10:28 2009 us=438194 mute = 0
Tue Oct 20 14:10:28 2009 us=438217 gremlin = 0
Tue Oct 20 14:10:28 2009 us=438241 status_file = '/var/run/openvpn.openvpn.status'
Tue Oct 20 14:10:28 2009 us=438264 status_file_version = 1
Tue Oct 20 14:10:28 2009 us=438287 status_file_update_freq = 10
Tue Oct 20 14:10:28 2009 us=438310 occ = ENABLED
Tue Oct 20 14:10:28 2009 us=438333 rcvbuf = 65536
Tue Oct 20 14:10:28 2009 us=438356 sndbuf = 65536
Tue Oct 20 14:10:28 2009 us=438378 sockflags = 0
Tue Oct 20 14:10:28 2009 us=438401 fast_io = DISABLED
Tue Oct 20 14:10:28 2009 us=438424 lzo = 7
Tue Oct 20 14:10:28 2009 us=438447 route_script = '[UNDEF]'
Tue Oct 20 14:10:28 2009 us=438469 route_default_gateway = '[UNDEF]'
Tue Oct 20 14:10:28 2009 us=438492 route_default_metric = 0
Tue Oct 20 14:10:28 2009 us=438515 route_noexec = DISABLED
Tue Oct 20 14:10:28 2009 us=438538 route_delay = 0
Tue Oct 20 14:10:28 2009 us=438560 route_delay_window = 30
Tue Oct 20 14:10:28 2009 us=438583 route_delay_defined = DISABLED
Tue Oct 20 14:10:28 2009 us=438606 route_nopull = DISABLED
Tue Oct 20 14:10:28 2009 us=438629 route_gateway_via_dhcp = DISABLED
Tue Oct 20 14:10:28 2009 us=438653 allow_pull_fqdn = DISABLED
Tue Oct 20 14:10:28 2009 us=438680 management_addr = '[UNDEF]'
Tue Oct 20 14:10:28 2009 us=438704 management_port = 0
Tue Oct 20 14:10:28 2009 us=438735 management_user_pass = '[UNDEF]'
Tue Oct 20 14:10:28 2009 us=438760 management_log_history_cache = 250
Tue Oct 20 14:10:28 2009 us=438784 management_echo_buffer_size = 100
Tue Oct 20 14:10:28 2009 us=438808 management_write_peer_info_file = '[UNDEF]'
Tue Oct 20 14:10:28 2009 us=438831 management_flags = 0
Tue Oct 20 14:10:28 2009 us=438854 shared_secret_file = '[UNDEF]'
Tue Oct 20 14:10:28 2009 us=438877 key_direction = 0
Tue Oct 20 14:10:28 2009 us=438900 ciphername_defined = ENABLED
Tue Oct 20 14:10:28 2009 us=438924 ciphername = 'BF-CBC'
Tue Oct 20 14:10:28 2009 us=438947 authname_defined = ENABLED
Tue Oct 20 14:10:28 2009 us=438970 authname = 'SHA1'
Tue Oct 20 14:10:28 2009 us=438994 keysize = 0
Tue Oct 20 14:10:28 2009 us=439017 engine = DISABLED
Tue Oct 20 14:10:28 2009 us=439039 replay = ENABLED
Tue Oct 20 14:10:28 2009 us=439063 mute_replay_warnings = DISABLED
Tue Oct 20 14:10:28 2009 us=439086 replay_window = 64
Tue Oct 20 14:10:28 2009 us=439110 replay_time = 15
Tue Oct 20 14:10:28 2009 us=439133 packet_id_file = '[UNDEF]'
Tue Oct 20 14:10:28 2009 us=439156 use_iv = ENABLED
Tue Oct 20 14:10:28 2009 us=439178 test_crypto = DISABLED
Tue Oct 20 14:10:28 2009 us=439202 tls_server = DISABLED
Tue Oct 20 14:10:28 2009 us=439225 tls_client = ENABLED
Tue Oct 20 14:10:28 2009 us=439248 key_method = 2
Tue Oct 20 14:10:28 2009 us=439271 ca_file = '/etc/openvpn/ca.crt'
Tue Oct 20 14:10:28 2009 us=439295 ca_path = '[UNDEF]'
Tue Oct 20 14:10:28 2009 us=439318 dh_file = '[UNDEF]'
Tue Oct 20 14:10:28 2009 us=439341 cert_file = '/etc/openvpn/client1.crt'
Tue Oct 20 14:10:28 2009 us=439364 priv_key_file = '/etc/openvpn/client1.key'
Tue Oct 20 14:10:28 2009 us=439388 pkcs12_file = '[UNDEF]'
Tue Oct 20 14:10:28 2009 us=439410 cipher_list = '[UNDEF]'
Tue Oct 20 14:10:28 2009 us=439434 tls_verify = '[UNDEF]'
Tue Oct 20 14:10:28 2009 us=439457 tls_remote = '[UNDEF]'
Tue Oct 20 14:10:28 2009 us=439505 crl_file = '[UNDEF]'
Tue Oct 20 14:10:28 2009 us=439529 ns_cert_type = 0
Tue Oct 20 14:10:28 2009 us=439552 remote_cert_ku = 0
Tue Oct 20 14:10:28 2009 us=439575 remote_cert_ku = 0
Tue Oct 20 14:10:28 2009 us=439598 remote_cert_ku = 0
Tue Oct 20 14:10:28 2009 us=439621 remote_cert_ku = 0
Tue Oct 20 14:10:28 2009 us=439644 remote_cert_ku = 0
Tue Oct 20 14:10:28 2009 us=439667 remote_cert_ku = 0
Tue Oct 20 14:10:28 2009 us=439690 remote_cert_ku = 0
Tue Oct 20 14:10:28 2009 us=439712 remote_cert_ku = 0
Tue Oct 20 14:10:28 2009 us=439735 remote_cert_ku = 0
Tue Oct 20 14:10:28 2009 us=439758 remote_cert_ku = 0
Tue Oct 20 14:10:28 2009 us=439780 remote_cert_ku = 0
Tue Oct 20 14:10:28 2009 us=439803 remote_cert_ku = 0
Tue Oct 20 14:10:28 2009 us=439825 remote_cert_ku = 0
Tue Oct 20 14:10:28 2009 us=439847 remote_cert_ku = 0
Tue Oct 20 14:10:28 2009 us=439870 remote_cert_ku = 0
Tue Oct 20 14:10:28 2009 us=439892 remote_cert_ku = 0
Tue Oct 20 14:10:28 2009 us=439915 remote_cert_eku = '[UNDEF]'
Tue Oct 20 14:10:28 2009 us=439939 tls_timeout = 2
Tue Oct 20 14:10:28 2009 us=439962 renegotiate_bytes = 0
Tue Oct 20 14:10:28 2009 us=439985 renegotiate_packets = 0
Tue Oct 20 14:10:28 2009 us=440008 renegotiate_seconds = 3600
Tue Oct 20 14:10:28 2009 us=440040 handshake_window = 60
Tue Oct 20 14:10:28 2009 us=440065 transition_window = 3600
Tue Oct 20 14:10:28 2009 us=440088 single_session = DISABLED
Tue Oct 20 14:10:28 2009 us=440111 tls_exit = DISABLED
Tue Oct 20 14:10:28 2009 us=440134 tls_auth_file = '[UNDEF]'
Tue Oct 20 14:10:28 2009 us=440158 pkcs11_protected_authentication = DISABLED
Tue Oct 20 14:10:28 2009 us=440182 pkcs11_protected_authentication = DISABLED
Tue Oct 20 14:10:28 2009 us=440206 pkcs11_protected_authentication = DISABLED
Tue Oct 20 14:10:28 2009 us=440230 pkcs11_protected_authentication = DISABLED
Tue Oct 20 14:10:28 2009 us=440253 pkcs11_protected_authentication = DISABLED
Tue Oct 20 14:10:28 2009 us=440277 pkcs11_protected_authentication = DISABLED
Tue Oct 20 14:10:28 2009 us=440301 pkcs11_protected_authentication = DISABLED
Tue Oct 20 14:10:28 2009 us=440324 pkcs11_protected_authentication = DISABLED
Tue Oct 20 14:10:28 2009 us=440348 pkcs11_protected_authentication = DISABLED
Tue Oct 20 14:10:28 2009 us=440372 pkcs11_protected_authentication = DISABLED
Tue Oct 20 14:10:28 2009 us=440396 pkcs11_protected_authentication = DISABLED
Tue Oct 20 14:10:28 2009 us=440419 pkcs11_protected_authentication = DISABLED
Tue Oct 20 14:10:28 2009 us=440443 pkcs11_protected_authentication = DISABLED
Tue Oct 20 14:10:28 2009 us=440467 pkcs11_protected_authentication = DISABLED
Tue Oct 20 14:10:28 2009 us=440491 pkcs11_protected_authentication = DISABLED
Tue Oct 20 14:10:28 2009 us=440515 pkcs11_protected_authentication = DISABLED
Tue Oct 20 14:10:28 2009 us=440540 pkcs11_private_mode = 00000000
Tue Oct 20 14:10:28 2009 us=440564 pkcs11_private_mode = 00000000
Tue Oct 20 14:10:28 2009 us=440588 pkcs11_private_mode = 00000000
Tue Oct 20 14:10:28 2009 us=440612 pkcs11_private_mode = 00000000
Tue Oct 20 14:10:28 2009 us=440636 pkcs11_private_mode = 00000000
Tue Oct 20 14:10:28 2009 us=440659 pkcs11_private_mode = 00000000
Tue Oct 20 14:10:28 2009 us=440683 pkcs11_private_mode = 00000000
Tue Oct 20 14:10:28 2009 us=440706 pkcs11_private_mode = 00000000
Tue Oct 20 14:10:28 2009 us=440730 pkcs11_private_mode = 00000000
Tue Oct 20 14:10:28 2009 us=440754 pkcs11_private_mode = 00000000
Tue Oct 20 14:10:28 2009 us=440777 pkcs11_private_mode = 00000000
Tue Oct 20 14:10:28 2009 us=440801 pkcs11_private_mode = 00000000
Tue Oct 20 14:10:28 2009 us=440825 pkcs11_private_mode = 00000000
Tue Oct 20 14:10:28 2009 us=440848 pkcs11_private_mode = 00000000
Tue Oct 20 14:10:28 2009 us=440872 pkcs11_private_mode = 00000000
Tue Oct 20 14:10:28 2009 us=440895 pkcs11_private_mode = 00000000
Tue Oct 20 14:10:28 2009 us=440919 pkcs11_cert_private = DISABLED
Tue Oct 20 14:10:28 2009 us=440959 pkcs11_cert_private = DISABLED
Tue Oct 20 14:10:28 2009 us=440984 pkcs11_cert_private = DISABLED
Tue Oct 20 14:10:28 2009 us=441007 pkcs11_cert_private = DISABLED
Tue Oct 20 14:10:28 2009 us=441031 pkcs11_cert_private = DISABLED
Tue Oct 20 14:10:28 2009 us=441054 pkcs11_cert_private = DISABLED
Tue Oct 20 14:10:28 2009 us=441078 pkcs11_cert_private = DISABLED
Tue Oct 20 14:10:28 2009 us=441101 pkcs11_cert_private = DISABLED
Tue Oct 20 14:10:28 2009 us=441125 pkcs11_cert_private = DISABLED
Tue Oct 20 14:10:28 2009 us=441148 pkcs11_cert_private = DISABLED
Tue Oct 20 14:10:28 2009 us=441171 pkcs11_cert_private = DISABLED
Tue Oct 20 14:10:28 2009 us=441195 pkcs11_cert_private = DISABLED
Tue Oct 20 14:10:28 2009 us=441219 pkcs11_cert_private = DISABLED
Tue Oct 20 14:10:28 2009 us=441242 pkcs11_cert_private = DISABLED
Tue Oct 20 14:10:28 2009 us=441265 pkcs11_cert_private = DISABLED
Tue Oct 20 14:10:28 2009 us=441289 pkcs11_cert_private = DISABLED
Tue Oct 20 14:10:28 2009 us=441313 pkcs11_pin_cache_period = -1
Tue Oct 20 14:10:28 2009 us=441337 pkcs11_id = '[UNDEF]'
Tue Oct 20 14:10:28 2009 us=441360 pkcs11_id_management = DISABLED
Tue Oct 20 14:10:28 2009 us=441401 server_network = 0.0.0.0
Tue Oct 20 14:10:28 2009 us=441428 server_netmask = 0.0.0.0
Tue Oct 20 14:10:28 2009 us=441453 server_bridge_ip = 0.0.0.0
Tue Oct 20 14:10:28 2009 us=441479 server_bridge_netmask = 0.0.0.0
Tue Oct 20 14:10:28 2009 us=441505 server_bridge_pool_start = 0.0.0.0
Tue Oct 20 14:10:28 2009 us=441531 server_bridge_pool_end = 0.0.0.0
Tue Oct 20 14:10:28 2009 us=441555 ifconfig_pool_defined = DISABLED
Tue Oct 20 14:10:28 2009 us=441581 ifconfig_pool_start = 0.0.0.0
Tue Oct 20 14:10:28 2009 us=441607 ifconfig_pool_end = 0.0.0.0
Tue Oct 20 14:10:28 2009 us=442222 ifconfig_pool_netmask = 0.0.0.0
Tue Oct 20 14:10:28 2009 us=442255 ifconfig_pool_persist_filename = '[UNDEF]'
Tue Oct 20 14:10:28 2009 us=442280 ifconfig_pool_persist_refresh_freq = 600
Tue Oct 20 14:10:28 2009 us=442304 n_bcast_buf = 256
Tue Oct 20 14:10:28 2009 us=442329 tcp_queue_limit = 64
Tue Oct 20 14:10:28 2009 us=442352 real_hash_size = 256
Tue Oct 20 14:10:28 2009 us=442376 virtual_hash_size = 256
Tue Oct 20 14:10:28 2009 us=442399 client_connect_script = '[UNDEF]'
Tue Oct 20 14:10:28 2009 us=442424 learn_address_script = '[UNDEF]'
Tue Oct 20 14:10:28 2009 us=442448 client_disconnect_script = '[UNDEF]'
Tue Oct 20 14:10:28 2009 us=442473 client_config_dir = '[UNDEF]'
Tue Oct 20 14:10:28 2009 us=442498 ccd_exclusive = DISABLED
Tue Oct 20 14:10:28 2009 us=442521 tmp_dir = '[UNDEF]'
Tue Oct 20 14:10:28 2009 us=442544 push_ifconfig_defined = DISABLED
Tue Oct 20 14:10:28 2009 us=442572 push_ifconfig_local = 0.0.0.0
Tue Oct 20 14:10:28 2009 us=442599 push_ifconfig_remote_netmask = 0.0.0.0
Tue Oct 20 14:10:28 2009 us=442623 enable_c2c = DISABLED
Tue Oct 20 14:10:28 2009 us=442647 duplicate_cn = DISABLED
Tue Oct 20 14:10:28 2009 us=442670 cf_max = 0
Tue Oct 20 14:10:28 2009 us=442693 cf_per = 0
Tue Oct 20 14:10:28 2009 us=442717 max_clients = 1024
Tue Oct 20 14:10:28 2009 us=442741 max_routes_per_client = 256
Tue Oct 20 14:10:28 2009 us=442765 client_cert_not_required = DISABLED
Tue Oct 20 14:10:28 2009 us=442789 username_as_common_name = DISABLED
Tue Oct 20 14:10:28 2009 us=442813 auth_user_pass_verify_script = '[UNDEF]'
Tue Oct 20 14:10:28 2009 us=442837 auth_user_pass_verify_script_via_file = DISABLED
Tue Oct 20 14:10:28 2009 us=442861 port_share_host = '[UNDEF]'
Tue Oct 20 14:10:28 2009 us=442884 port_share_port = 0
Tue Oct 20 14:10:28 2009 us=442908 client = ENABLED
Tue Oct 20 14:10:28 2009 us=442931 pull = ENABLED
Tue Oct 20 14:10:28 2009 us=442955 auth_user_pass_file = '[UNDEF]'
Tue Oct 20 14:10:28 2009 us=442985 OpenVPN 2.1_rc11 i486-pc-linux-gnu [SSL] [LZO2] [EPOLL] [PKCS11] built on Mar 9 2009
Tue Oct 20 14:10:28 2009 us=443211 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Tue Oct 20 14:10:28 2009 us=443261 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Tue Oct 20 14:10:28 2009 us=444109 WARNING: file '/etc/openvpn/client1.key' is group or others accessible
Tue Oct 20 14:10:28 2009 us=445141 /usr/bin/openssl-vulnkey -q -b 1024 -m <modulus omitted>
Tue Oct 20 14:10:28 2009 us=623800 LZO compression initialized
Tue Oct 20 14:10:28 2009 us=623925 Control Channel MTU parms [ L:1542 D:138 EF:38 EB:0 ET:0 EL:0 ]
Tue Oct 20 14:10:28 2009 us=623988 Data Channel MTU parms [ L:1542 D:1450 EF:42 EB:135 ET:0 EL:0 AF:3/1 ]
Tue Oct 20 14:10:28 2009 us=624015 Local Options String: 'V4,dev-type tun,link-mtu 1542,tun-mtu 1500,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Tue Oct 20 14:10:28 2009 us=624022 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1542,tun-mtu 1500,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Tue Oct 20 14:10:28 2009 us=624042 Local Options hash (VER=V4): '41690919'
Tue Oct 20 14:10:28 2009 us=624055 Expected Remote Options hash (VER=V4): '530fdded'
Tue Oct 20 14:10:28 2009 us=624905 Socket Buffers: R=[112640->131072] S=[112640->131072]
Tue Oct 20 14:10:28 2009 us=625053 UDPv4 link local: [undef]
Tue Oct 20 14:10:28 2009 us=625112 UDPv4 link remote: 11.22.333.444:1194
WWWWWWWWWWWWWWWWWWWWWWWWWWWWTue Oct 20 14:11:28 2009 us=479969 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Tue Oct 20 14:11:28 2009 us=480045 TLS Error: TLS handshake failed
Tue Oct 20 14:11:28 2009 us=480349 TCP/UDP: Closing socket
Tue Oct 20 14:11:28 2009 us=480418 SIGUSR1[soft,tls-error] received, process restarting
Tue Oct 20 14:11:28 2009 us=480460 Restart pause, 2 second(s)
Tue Oct 20 14:11:30 2009 us=480580 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Tue Oct 20 14:11:30 2009 us=480676 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Tue Oct 20 14:11:30 2009 us=480719 Re-using SSL/TLS context
Tue Oct 20 14:11:30 2009 us=480785 LZO compression initialized
Tue Oct 20 14:11:30 2009 us=480924 Control Channel MTU parms [ L:1542 D:138 EF:38 EB:0 ET:0 EL:0 ]
Tue Oct 20 14:11:30 2009 us=481068 Data Channel MTU parms [ L:1542 D:1450 EF:42 EB:135 ET:0 EL:0 AF:3/1 ]
Tue Oct 20 14:11:30 2009 us=481163 Local Options String: 'V4,dev-type tun,link-mtu 1542,tun-mtu 1500,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Tue Oct 20 14:11:30 2009 us=481193 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1542,tun-mtu 1500,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Tue Oct 20 14:11:30 2009 us=481241 Local Options hash (VER=V4): '41690919'
Tue Oct 20 14:11:30 2009 us=481288 Expected Remote Options hash (VER=V4): '530fdded'
Tue Oct 20 14:11:30 2009 us=481331 Socket Buffers: R=[112640->131072] S=[112640->131072]
Tue Oct 20 14:11:30 2009 us=481369 UDPv4 link local: [undef]
Tue Oct 20 14:11:30 2009 us=481406 UDPv4 link remote: 11.22.333.444:1194
WWWWWWWWWWWWWWWWWWWWWWWWW

Пользователь решил продолжить мысль 20 Октября 2009, 14:19:01:

Что означает эта ошибка?

Цитировать

Tue Oct 20 14:11:28 2009 us=479969 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)

fwhr · « **Ответ #5 :** 20 Октября 2009, 14:33:47 »

Цитировать

TLS Error: TLS key negotiation failed to occur within 60 seconds

В гугл загляни ради интереса...
Один из его ответов:
http://www.anfes.ru/e107_plugins/content/content.php?content.6

Iliya · « **Ответ #6 :** 20 Октября 2009, 16:20:40 »

Разобрался openvpn заработал, но не подключается ася и большое количество сайтов не открывается. При смене подключений adsl и по сетевой карте, пинг вырастает с 16 до 130-160. Как в ручную прописать dns сервер для этого подключения?

Пользователь решил продолжить мысль 20 Октября 2009, 19:37:59:

разобрался, всё оказалось просто!!!
Моя проблема была в dns, поменял nameserver на 208.67.222.222, 208.67.220.220 и всё заработало.

Извиняюсь за глупые вопросы

Форум русскоязычного сообщества Ubuntu

Автор Тема: [решено]OpenVPN и Kubuntu 9.04 (Прочитано 1609 раз)

Iliya

[решено]OpenVPN и Kubuntu 9.04

fwhr

Re: OpenVPN и Kubuntu 9.04

Iliya

Re: OpenVPN и Kubuntu 9.04

fwhr

Re: OpenVPN и Kubuntu 9.04

Iliya

Re: OpenVPN и Kubuntu 9.04

fwhr

Re: OpenVPN и Kubuntu 9.04

Iliya

Re: OpenVPN и Kubuntu 9.04