Задать вопрос
  • Почему не подключается к OpenVPN?

    @lufarepe Автор вопроса
    Dmitry Tallmange,
    1 * * * Превышен интервал ожидания для запроса.
    2 * * * Превышен интервал ожидания для запроса.
    3 * * * Превышен интервал ожидания для запроса.
  • Почему не подключается к OpenVPN?

    @lufarepe Автор вопроса
    Dmitry Tallmange, OpenVPN я настраиваю на роутере, если в конфиге прописываю tap и пытаюсь подключиться, то не грузит не один сайт.
  • Почему не подключается к OpenVPN?

    @lufarepe Автор вопроса
    Dmitry Tallmange,
    Ответ от 185.63.189.69: число байт=32 время=46мс TTL=53
    Ответ от 185.63.189.69: число байт=32 время=40мс TTL=53
    Ответ от 185.63.189.69: число байт=32 время=43мс TTL=53
    Ответ от 185.63.189.69: число байт=32 время=39мс TTL=53
  • Почему не подключается к OpenVPN?

    @lufarepe Автор вопроса
    С tap тоже не могу подключиться.
    Лог
    Thu Apr 19 18:30:01 2018 us=850955 OpenVPN 2.3.2 arm-v7a8-linux-gnueabi [SSL (OpenSSL)] [LZO] [EPOLL] [MH] [IPv6] built on Aug  7 2013
    Thu Apr 19 18:30:01 2018 us=851626 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
    Thu Apr 19 18:30:01 2018 us=855899 WARNING: file '/etc/openvpn/client.key' is group or others accessible
    Thu Apr 19 18:30:01 2018 us=857303 LZO compression initialized
    Thu Apr 19 18:30:01 2018 us=858280 Control Channel MTU parms [ L:1590 D:138 EF:38 EB:0 ET:0 EL:0 ]
    Thu Apr 19 18:30:01 2018 us=858676 Socket Buffers: R=[110592->131072] S=[110592->131072]
    Thu Apr 19 18:30:01 2018 us=859348 Data Channel MTU parms [ L:1590 D:1450 EF:58 EB:135 ET:32 EL:0 AF:3/1 ]
    Thu Apr 19 18:30:01 2018 us=859653 Local Options String: 'V4,dev-type tap,link-mtu 1590,tun-mtu 1532,proto UDPv4,comp-lzo,cipher AES-256-CBC,auth SHA1,keysize 256,key-method 2,tls-client'
    Thu Apr 19 18:30:01 2018 us=859745 Expected Remote Options String: 'V4,dev-type tap,link-mtu 1590,tun-mtu 1532,proto UDPv4,comp-lzo,cipher AES-256-CBC,auth SHA1,keysize 256,key-method 2,tls-server'
    Thu Apr 19 18:30:01 2018 us=859958 Local Options hash (VER=V4): 'c6c7c21a'
    Thu Apr 19 18:30:01 2018 us=860141 Expected Remote Options hash (VER=V4): '1a6d5c5d'
    Thu Apr 19 18:30:01 2018 us=862583 UDPv4 link local: [undef]
    Thu Apr 19 18:30:01 2018 us=866062 UDPv4 link remote: [AF_INET]185.63.189.69:1194
    WRThu Apr 19 18:30:01 2018 us=911385 TLS: Initial packet from [AF_INET]185.63.189.69:1194, sid=14ab940a 2223b117
    WWRWRWRThu Apr 19 18:30:02 2018 us=44454 VERIFY OK: depth=1, C=DE, ST=Bayern, L=Gunzenhausen, O=HideME, CN=HideME CA, emailAddress=feedback@hideme.ru
    Thu Apr 19 18:30:02 2018 us=50283 VERIFY OK: depth=0, C=DE, ST=Bayern, L=Gunzenhausen, O=HideME, CN=server, emailAddress=feedback@hideme.ru
    WRWWWWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRRRRWWWWRRRRThu Apr 19 18:30:08 2018 us=964185 WARNING: 'link-mtu' is used inconsistently, local='link-mtu 1590', remote='link-mtu 1574'
    Thu Apr 19 18:30:08 2018 us=964735 WARNING: 'cipher' is used inconsistently, local='cipher AES-256-CBC', remote='cipher BF-CBC'
    Thu Apr 19 18:30:08 2018 us=965192 WARNING: 'keysize' is used inconsistently, local='keysize 256', remote='keysize 128'
    Thu Apr 19 18:30:08 2018 us=971327 Data Channel Encrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
    Thu Apr 19 18:30:08 2018 us=971907 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
    Thu Apr 19 18:30:08 2018 us=972517 Data Channel Decrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
    Thu Apr 19 18:30:08 2018 us=972975 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
    WThu Apr 19 18:30:08 2018 us=974898 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA
    Thu Apr 19 18:30:08 2018 us=975966 [server] Peer Connection Initiated with [AF_INET]185.63.189.69:1194
    Thu Apr 19 18:30:11 2018 us=391623 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
    WRRThu Apr 19 18:30:11 2018 us=440608 PUSH: Received control message: 'PUSH_REPLY,route-gateway 10.110.192.1,ping 8,ping-restart 30,ifconfig 10.110.200.119 255.224.0.0'
    Thu Apr 19 18:30:11 2018 us=443050 OPTIONS IMPORT: timers and/or timeouts modified
    Thu Apr 19 18:30:11 2018 us=443508 OPTIONS IMPORT: --ifconfig/up options modified
    Thu Apr 19 18:30:11 2018 us=443874 OPTIONS IMPORT: route-related options modified
    Thu Apr 19 18:30:11 2018 us=450955 ROUTE_GATEWAY ON_LINK IFACE=rmnet0 HWADDR=00:00:00:00:00:00
    Thu Apr 19 18:30:11 2018 us=454404 TUN/TAP device tap0 opened
    Thu Apr 19 18:30:11 2018 us=454678 TUN/TAP TX queue length set to 100
    Thu Apr 19 18:30:11 2018 us=454922 do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
    Thu Apr 19 18:30:11 2018 us=455258 /sbin/ifconfig tap0 10.110.200.119 netmask 255.224.0.0 mtu 1500 broadcast 10.127.255.255
    Thu Apr 19 18:30:11 2018 us=476622 /sbin/route add -net 185.63.189.69 netmask 255.255.255.255 dev rmnet0
    Thu Apr 19 18:30:11 2018 us=484283 /sbin/route add -net 0.0.0.0 netmask 128.0.0.0 gw 10.110.192.1
    Thu Apr 19 18:30:11 2018 us=491821 /sbin/route add -net 128.0.0.0 netmask 128.0.0.0 gw 10.110.192.1
    Thu Apr 19 18:30:11 2018 us=499024 Initialization Sequence Completed
    WRwrWrWRwrWrWRwRwRwRwRwrWrWrWrWrWRwRwrWRwRwRwrWrWrW
  • Почему не подключается к OpenVPN?

    @lufarepe Автор вопроса
    Если честно, не разбираюсь в этом, я просто пытаюсь настроить работу VPN на роутере.
    Конфиг
    remote 185.63.189.69 1194
    
    ca /etc/openvpn/ca.crt
    cert /etc/openvpn/client.crt
    key /etc/openvpn/client.key
    
    proto udp
    
    client
    tls-client
    dev tap
    resolv-retry infinite
    nobind
    persist-key
    persist-tun
    comp-lzo
    cipher AES-256-CBC
    redirect-gateway def1
    verb 5
    log /tmp/openvpn.log

    Что нужно поправить?
  • Почему не подключается к OpenVPN?

    @lufarepe Автор вопроса
    изменил на tap, но все равно не подключается
    Конфиг
    remote 185.63.189.69 1194
    
    ca /etc/openvpn/ca.crt
    cert /etc/openvpn/client.crt
    key /etc/openvpn/client.key
    
    proto udp
    
    client
    tls-client
    dev tap
    resolv-retry infinite
    nobind
    persist-key
    persist-tun
    comp-lzo
    cipher AES-256-CBC
    redirect-gateway def1
    verb 5
    log /tmp/openvpn.log


    Лог
    Thu Apr 19 18:30:01 2018 us=850955 OpenVPN 2.3.2 arm-v7a8-linux-gnueabi [SSL (OpenSSL)] [LZO] [EPOLL] [MH] [IPv6] built on Aug  7 2013
    Thu Apr 19 18:30:01 2018 us=851626 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
    Thu Apr 19 18:30:01 2018 us=855899 WARNING: file '/etc/openvpn/client.key' is group or others accessible
    Thu Apr 19 18:30:01 2018 us=857303 LZO compression initialized
    Thu Apr 19 18:30:01 2018 us=858280 Control Channel MTU parms [ L:1590 D:138 EF:38 EB:0 ET:0 EL:0 ]
    Thu Apr 19 18:30:01 2018 us=858676 Socket Buffers: R=[110592->131072] S=[110592->131072]
    Thu Apr 19 18:30:01 2018 us=859348 Data Channel MTU parms [ L:1590 D:1450 EF:58 EB:135 ET:32 EL:0 AF:3/1 ]
    Thu Apr 19 18:30:01 2018 us=859653 Local Options String: 'V4,dev-type tap,link-mtu 1590,tun-mtu 1532,proto UDPv4,comp-lzo,cipher AES-256-CBC,auth SHA1,keysize 256,key-method 2,tls-client'
    Thu Apr 19 18:30:01 2018 us=859745 Expected Remote Options String: 'V4,dev-type tap,link-mtu 1590,tun-mtu 1532,proto UDPv4,comp-lzo,cipher AES-256-CBC,auth SHA1,keysize 256,key-method 2,tls-server'
    Thu Apr 19 18:30:01 2018 us=859958 Local Options hash (VER=V4): 'c6c7c21a'
    Thu Apr 19 18:30:01 2018 us=860141 Expected Remote Options hash (VER=V4): '1a6d5c5d'
    Thu Apr 19 18:30:01 2018 us=862583 UDPv4 link local: [undef]
    Thu Apr 19 18:30:01 2018 us=866062 UDPv4 link remote: [AF_INET]185.63.189.69:1194
    WRThu Apr 19 18:30:01 2018 us=911385 TLS: Initial packet from [AF_INET]185.63.189.69:1194, sid=14ab940a 2223b117
    WWRWRWRThu Apr 19 18:30:02 2018 us=44454 VERIFY OK: depth=1, C=DE, ST=Bayern, L=Gunzenhausen, O=HideME, CN=HideME CA, emailAddress=feedback@hideme.ru
    Thu Apr 19 18:30:02 2018 us=50283 VERIFY OK: depth=0, C=DE, ST=Bayern, L=Gunzenhausen, O=HideME, CN=server, emailAddress=feedback@hideme.ru
    WRWWWWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRWRRRRWWWWRRRRThu Apr 19 18:30:08 2018 us=964185 WARNING: 'link-mtu' is used inconsistently, local='link-mtu 1590', remote='link-mtu 1574'
    Thu Apr 19 18:30:08 2018 us=964735 WARNING: 'cipher' is used inconsistently, local='cipher AES-256-CBC', remote='cipher BF-CBC'
    Thu Apr 19 18:30:08 2018 us=965192 WARNING: 'keysize' is used inconsistently, local='keysize 256', remote='keysize 128'
    Thu Apr 19 18:30:08 2018 us=971327 Data Channel Encrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
    Thu Apr 19 18:30:08 2018 us=971907 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
    Thu Apr 19 18:30:08 2018 us=972517 Data Channel Decrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
    Thu Apr 19 18:30:08 2018 us=972975 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
    WThu Apr 19 18:30:08 2018 us=974898 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA
    Thu Apr 19 18:30:08 2018 us=975966 [server] Peer Connection Initiated with [AF_INET]185.63.189.69:1194
    Thu Apr 19 18:30:11 2018 us=391623 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
    WRRThu Apr 19 18:30:11 2018 us=440608 PUSH: Received control message: 'PUSH_REPLY,route-gateway 10.110.192.1,ping 8,ping-restart 30,ifconfig 10.110.200.119 255.224.0.0'
    Thu Apr 19 18:30:11 2018 us=443050 OPTIONS IMPORT: timers and/or timeouts modified
    Thu Apr 19 18:30:11 2018 us=443508 OPTIONS IMPORT: --ifconfig/up options modified
    Thu Apr 19 18:30:11 2018 us=443874 OPTIONS IMPORT: route-related options modified
    Thu Apr 19 18:30:11 2018 us=450955 ROUTE_GATEWAY ON_LINK IFACE=rmnet0 HWADDR=00:00:00:00:00:00
    Thu Apr 19 18:30:11 2018 us=454404 TUN/TAP device tap0 opened
    Thu Apr 19 18:30:11 2018 us=454678 TUN/TAP TX queue length set to 100
    Thu Apr 19 18:30:11 2018 us=454922 do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
    Thu Apr 19 18:30:11 2018 us=455258 /sbin/ifconfig tap0 10.110.200.119 netmask 255.224.0.0 mtu 1500 broadcast 10.127.255.255
    Thu Apr 19 18:30:11 2018 us=476622 /sbin/route add -net 185.63.189.69 netmask 255.255.255.255 dev rmnet0
    Thu Apr 19 18:30:11 2018 us=484283 /sbin/route add -net 0.0.0.0 netmask 128.0.0.0 gw 10.110.192.1
    Thu Apr 19 18:30:11 2018 us=491821 /sbin/route add -net 128.0.0.0 netmask 128.0.0.0 gw 10.110.192.1
    Thu Apr 19 18:30:11 2018 us=499024 Initialization Sequence Completed
    WRwrWrWRwrWrWRwRwRwRwRwrWrWrWrWrWRwRwrWRwRwRwrWrWrW