Задать вопрос

Chainique

Комментарии

  • Как настроить VPN клиент сервиса Surfshark на роутере Keenetic?

    @Chainique Автор вопроса
    Короче говоря, я разобрался с этим сам, просто вбив в поисковик вот это:

    Unrecognized option or missing or extra parameter(s) in configuration: block-outside-dns


    Пусть в файле конфигурации ovpn и отсутствует строка block-outside-dns, все равно нужно было добавить строку pull-filter ignore "block-outside-dns".

    А логи-то и правда очень полезная вещь.
    Написано

  • Как настроить VPN клиент сервиса Surfshark на роутере Keenetic?

    @Chainique Автор вопроса
    И правда, действительно активно ругается:

    syslog
    [I] Mar 12 18:28:38 ndm: Core::Syslog: the system log has been cleared. 
[I] Mar 12 18:28:41 ndm: Network::Interface::Base: "OpenVPN0": interface is up. 
[I] Mar 12 18:28:41 ndm: Core::System::Configuration: saving (http/rci). 
[I] Mar 12 18:28:42 ndhcpc: GigabitEthernet1: received ACK for 100.115.38.150 from 91.144.168.22 lease 1800 sec. 
[I] Mar 12 18:28:44 OpenVPN0: OpenVPN 2.4.6 [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [AEAD] 
[I] Mar 12 18:28:44 OpenVPN0: library versions: OpenSSL 1.1.1m  14 Dec 2021, LZO 2.10 
[W] Mar 12 18:28:44 OpenVPN0: WARNING: --ping should normally be used with --ping-restart or --ping-exit 
[I] Mar 12 18:28:44 OpenVPN0: Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication 
[I] Mar 12 18:28:44 OpenVPN0: Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication 
[I] Mar 12 18:28:44 OpenVPN0: Socket Buffers: R=[155648->155648] S=[155648->155648] 
[I] Mar 12 18:28:44 OpenVPN0: UDP link local (bound): [AF_INET]100.115.38.150:48920 
[I] Mar 12 18:28:44 OpenVPN0: UDP link remote: [AF_INET]37.120.201.69:1194 
[I] Mar 12 18:28:44 OpenVPN0: NOTE: UID/GID downgrade will be delayed because of --client, --pull, or --up-delay 
[I] Mar 12 18:28:44 OpenVPN0: TLS: Initial packet from [AF_INET]37.120.201.69:1194, sid=5f6f9d54 4be14cce 
[I] Mar 12 18:28:44 OpenVPN0: VERIFY SCRIPT OK: depth=2, C=VG, O=Surfshark, CN=Surfshark Root CA 
[I] Mar 12 18:28:44 OpenVPN0: VERIFY OK: depth=2, C=VG, O=Surfshark, CN=Surfshark Root CA 
[I] Mar 12 18:28:44 OpenVPN0: VERIFY SCRIPT OK: depth=1, C=VG, O=Surfshark, CN=Surfshark Intermediate CA 
[I] Mar 12 18:28:44 OpenVPN0: VERIFY OK: depth=1, C=VG, O=Surfshark, CN=Surfshark Intermediate CA 
[I] Mar 12 18:28:44 OpenVPN0: VERIFY KU OK 
[I] Mar 12 18:28:44 OpenVPN0: Validating certificate extended key usage 
[I] Mar 12 18:28:44 OpenVPN0: ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication 
[I] Mar 12 18:28:44 OpenVPN0: VERIFY EKU OK 
[I] Mar 12 18:28:44 OpenVPN0: VERIFY SCRIPT OK: depth=0, CN=it-mil-v020.prod.surfshark.com 
[I] Mar 12 18:28:44 OpenVPN0: VERIFY OK: depth=0, CN=it-mil-v020.prod.surfshark.com 
[W] Mar 12 18:28:45 OpenVPN0: WARNING: 'link-mtu' is used inconsistently, local='link-mtu 1601', remote='link-mtu 1581' 
[W] Mar 12 18:28:45 OpenVPN0: WARNING: 'tun-mtu' is used inconsistently, local='tun-mtu 1500', remote='tun-mtu 1532' 
[W] Mar 12 18:28:45 OpenVPN0: WARNING: 'cipher' is used inconsistently, local='cipher AES-256-CBC', remote='cipher AES-256-GCM' 
[W] Mar 12 18:28:45 OpenVPN0: WARNING: 'auth' is used inconsistently, local='auth SHA512', remote='auth [null-digest]' 
[I] Mar 12 18:28:45 OpenVPN0: Control Channel: TLSv1.2, cipher TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, 2048 bit RSA 
[I] Mar 12 18:28:45 OpenVPN0: [it-mil-v020.prod.surfshark.com] Peer Connection Initiated with [AF_INET]37.120.201.69:1194 
[I] Mar 12 18:28:45 ndm: Network::Interface::OpenVpn: "OpenVPN0": connecting via ISP (GigabitEthernet1). 
[I] Mar 12 18:28:45 ndm: Network::Interface::OpenVpn: "OpenVPN0": added host route to remote endpoint 37.120.201.69 via 100.115.63.254. 
[I] Mar 12 18:28:45 ndm: Core::System::Configuration: configuration saved. 
[I] Mar 12 18:28:46 OpenVPN0: SENT CONTROL [it-mil-v020.prod.surfshark.com]: 'PUSH_REQUEST' (status=1) 
[I] Mar 12 18:28:47 OpenVPN0: PUSH: Received control message: 'PUSH_REPLY,dhcp-option DNS 162.252.172.57,dhcp-option DNS 149.154.159.92,redirect-gateway def1,sndbuf 524288,rcvbuf 524288,explicit-exit-notify,block-outside-dns,route-gateway 10.8.8.1,topology subnet,ping 60,ping-restart 180,ifconfig 10.8.8.37 255.255.255.0,peer-id 55,cipher AES-256-GCM' 
[E] Mar 12 18:28:47 OpenVPN0: Unrecognized option or missing or extra parameter(s) in configuration: (line 7): block-outside-dns (2.4.6) 
[E] Mar 12 18:28:47 OpenVPN0: Exiting due to fatal error 
[E] Mar 12 18:28:47 ndm: Service: "OpenVPN0": unexpectedly stopped. 
[W] Mar 12 18:28:47 ndm: Network::Interface::OpenVpn: "OpenVPN0": configuration is invalid.

    Написано