Re: [Sysadmins] OpenVPN сервер через Alterator

Sun, 18 Apr 2010 05:21:56 -0700 

> > Не сканируется порт 1194.
> > Это нормально?  
> 
> Должен быть открыт, проверьте настройки iptables.
 
Похоже iptables не причем. Даже на 127.0.0.1 и на адрес сетевой не открыт.
Что-то не запустилось, хотя  

[r...@comp-celeron-m-413ca8 /]# service openvpn status
openvpn is running
Status of VPN iface-tun0 written to /var/log/messages

и

[r...@comp-celeron-m-413ca8 /]# ip a s

10: tun0: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast 
state UNKNOWN qlen 
100
    link/[65534]
    inet 10.8.0.1 peer 10.8.0.2/32 scope global tun0
 
После запуска: 

tail /var/log/messages

Jan  1 04:22:20 comp-Celeron-M-413ca8 openvpn[16663]: OpenVPN 2.0.8 
i586-alt-linux-gnu [SSL] [LZO] 
[EPOLL] built on Jun  5 2009
Jan  1 04:22:20 comp-Celeron-M-413ca8 openvpn[16663]: Diffie-Hellman 
initialized with 1024 bit key
Jan  1 04:22:20 comp-Celeron-M-413ca8 openvpn[16663]: WARNING: 
file '/var/lib/ssl/private/openvpn-server.key' is group or others accessible
Jan  1 04:22:20 comp-Celeron-M-413ca8 openvpn[16663]: TLS-Auth MTU parms [ 
L:1542 D:138 EF:38 EB:0 
ET:0 EL:0 ]
Jan  1 04:22:20 comp-Celeron-M-413ca8 openvpn[16663]: TUN/TAP device tun0 opened
Jan  1 04:22:20 comp-Celeron-M-413ca8 openvpn[16663]: ip link set dev tun0 up 
mtu 1500
Jan  1 04:22:20 comp-Celeron-M-413ca8 openvpn[16663]: ip addr add dev tun0 
local 10.8.0.1 peer 
10.8.0.2
Jan  1 04:22:20 comp-Celeron-M-413ca8 openvpn[16663]: 
/etc/net/scripts/openvpn.action tun0 1500 
1542 10.8.0.1 10.8.0.2 init
Jan  1 04:22:20 comp-Celeron-M-413ca8 openvpn[16663]: ip route add 10.8.0.0/24 
via 10.8.0.2
Jan  1 04:22:20 comp-Celeron-M-413ca8 openvpn[16663]: Data Channel MTU parms [ 
L:1542 D:1450 EF:42 
EB:135 ET:0 EL:0 AF:3/1 ]
Jan  1 04:22:20 comp-Celeron-M-413ca8 openvpn[16704]: chroot to 
'/var/lib/openvpn' and cd to '/' 
succeeded
Jan  1 04:22:20 comp-Celeron-M-413ca8 openvpn[16704]: GID set to openvpn
Jan  1 04:22:20 comp-Celeron-M-413ca8 openvpn[16704]: UID set to openvpn
Jan  1 04:22:20 comp-Celeron-M-413ca8 openvpn[16704]: UDPv4 link local (bound): 
[undef]:1194
Jan  1 04:22:20 comp-Celeron-M-413ca8 openvpn[16704]: UDPv4 link remote: [undef]
Jan  1 04:22:20 comp-Celeron-M-413ca8 openvpn[16704]: MULTI: multi_init called, 
r=256 v=256
Jan  1 04:22:20 comp-Celeron-M-413ca8 openvpn[16704]: IFCONFIG POOL: 
base=10.8.0.4 size=62
Jan  1 04:22:20 comp-Celeron-M-413ca8 openvpn[16704]: IFCONFIG POOL LIST
Jan  1 04:22:20 comp-Celeron-M-413ca8 openvpn[16704]: Initialization Sequence 
Completed


а порт даже не открывается. 
_______________________________________________
Sysadmins mailing list
[email protected]
https://lists.altlinux.org/mailman/listinfo/sysadmins

Ответить