17 декабря 2012 г., 23:04 пользователь Alexandr Kobets <[email protected]> написал: > Можно и в client.conf: > up /path/to/script > > > -- > WBR, Alexandr Kobets
Не происходит соединения - отваливается по тайм-ауту :-( Dec 17 23:34:14 sterver openvpn: Adjusting environment for openvpn: succeeded Dec 17 23:34:15 sterver openvpn[30742]: OpenVPN 2.1.4 x86_64-alt-linux-gnu [SSL] [LZO2] [EPOLL] built on Nov 30 2010 Dec 17 23:34:15 sterver openvpn[30742]: IMPORTANT: OpenVPN's default port number is now 1194, based on an official port number assignment by IANA. OpenVPN 2.0-beta16 and earlier used 5000 as the default port. Dec 17 23:34:15 sterver openvpn[30742]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts Dec 17 23:34:15 sterver openvpn[30742]: LZO compression initialized Dec 17 23:34:15 sterver openvpn[30742]: TUN/TAP device tap0 opened Dec 17 23:34:15 sterver openvpn[30742]: /sbin/ip link set addr ee:05:99:1b:10:36 dev tap0 Dec 17 23:34:15 sterver openvpn[30742]: TUN/TAP link layer address set to ee:05:99:1b:10:36 Dec 17 23:34:15 sterver openvpn[30742]: /etc/openvpn/dhcp_tun0.sh tap0 1500 1577 init Dec 17 23:34:45 sterver dhcpcd[30793]: tap0: dhcpcd 4.0.15 starting Dec 17 23:34:45 sterver openvpn: tap0: dhcpcd 4.0.15 starting Dec 17 23:34:45 sterver dhcpcd[30793]: tap0: broadcasting for a lease Dec 17 23:34:45 sterver openvpn: tap0: broadcasting for a lease Dec 17 23:35:15 sterver dhcpcd[30793]: tap0: timed out Dec 17 23:35:15 sterver openvpn: tap0: timed out Dec 17 23:35:15 sterver openvpn[30742]: script failed: external program exited with error status: 1 Dec 17 23:35:15 sterver openvpn[30742]: Exiting Dec 17 23:35:15 sterver openvpn: openvpn startup failed То есть он начинает запускать скрипт сразу после установки мак-адреса интерфейса, до чрута - тогда когда еще тоннеля еще не установлено. Вот без скрипта: Dec 17 23:36:13 sterver openvpn: Adjusting environment for openvpn: succeeded Dec 17 23:36:14 sterver openvpn[30951]: OpenVPN 2.1.4 x86_64-alt-linux-gnu [SSL] [LZO2] [EPOLL] built on Nov 30 2010 Dec 17 23:36:14 sterver openvpn[30951]: IMPORTANT: OpenVPN's default port number is now 1194, based on an official port number assignment by IANA. OpenVPN 2.0-beta16 and earlier used 5000 as the default port. Dec 17 23:36:14 sterver openvpn[30951]: NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables Dec 17 23:36:14 sterver openvpn[30951]: LZO compression initialized Dec 17 23:36:14 sterver openvpn[30951]: TUN/TAP device tap0 opened Dec 17 23:36:14 sterver openvpn[30951]: /sbin/ip link set addr ee:05:99:1b:10:36 dev tap0 Dec 17 23:36:14 sterver openvpn[30951]: TUN/TAP link layer address set to ee:05:99:1b:10:36 Dec 17 23:36:14 sterver openvpn[30984]: chroot to '/var/lib/openvpn' and cd to '/' succeeded Dec 17 23:36:14 sterver openvpn[30984]: GID set to openvpn Dec 17 23:36:14 sterver openvpn[30984]: UID set to openvpn Dec 17 23:36:14 sterver openvpn[30984]: UDPv4 link local (bound): [undef]:1194 Dec 17 23:36:14 sterver openvpn[30984]: UDPv4 link remote: 81.ххх.ххх.60:1194 Dec 17 23:36:14 sterver openvpn: openvpn startup succeeded Dec 17 23:36:14 sterver openvpn[30984]: Peer Connection Initiated with 81.ххх.ххх.60:1194 Dec 17 23:36:15 sterver openvpn[30984]: Initialization Sequence Completed А теперь руками dhcpcd -C resolv.conf tap0: Dec 17 23:38:05 sterver dhcpcd[31052]: tap0: dhcpcd 4.0.15 starting Dec 17 23:38:05 sterver dhcpcd[31052]: tap0: broadcasting for a lease Dec 17 23:38:05 sterver dhcpcd[31052]: tap0: offered 192.168.23.200 from 192.168.23.1 Dec 17 23:38:05 sterver dhcpcd[31052]: tap0: acknowledged 192.168.23.200 from 192.168.23.1 Dec 17 23:38:05 sterver dhcpcd[31052]: tap0: leased 192.168.23.200 for 22896000 seconds -- С уважением, Целищев Сергей _______________________________________________ Sysadmins mailing list [email protected] https://lists.altlinux.org/mailman/listinfo/sysadmins
