设为首页收藏本站
切换到窄版

 找回密码
 注册
快捷导航
专门网»论坛 其他版块 网络技术 求助:用OpenVPN搭建服务器,客户端连不上 ...
返回列表 发新帖
查看: 2586|回复: 5

求助:用OpenVPN搭建服务器,客户端连不上

[复制链接] |自动提醒
阅读字号:
lydov

7

回帖

0

积分

25

资产值

入门会员 Rank: 1

注册时间
2008-4-15
发表于 2008-4-25 13:39:05| 字数 11,512| - 中国–重庆–重庆–江津区 电信 | 显示全部楼层 |阅读模式
Sever端已经正常,是绿色的,但是client就不正常了,不知道是哪错了。希望知道的朋友告诉我一下。

这是client上面的信息显示
Fri Apr 25 13:35:29 2008 us=330194 Current Parameter Settings:
Fri Apr 25 13:35:29 2008 us=330237   config = 'client.ovpn'
Fri Apr 25 13:35:29 2008 us=330247   mode = 0
Fri Apr 25 13:35:29 2008 us=330256   show_ciphers = DISABLED
Fri Apr 25 13:35:29 2008 us=330265   show_digests = DISABLED
Fri Apr 25 13:35:29 2008 us=330275   show_engines = DISABLED
Fri Apr 25 13:35:29 2008 us=330284   genkey = DISABLED
Fri Apr 25 13:35:29 2008 us=330293   key_pass_file = '[UNDEF]'
Fri Apr 25 13:35:29 2008 us=330302   show_tls_ciphers = DISABLED
Fri Apr 25 13:35:29 2008 us=330311   proto = 2
Fri Apr 25 13:35:29 2008 us=330319   local = '[UNDEF]'
Fri Apr 25 13:35:29 2008 us=330330   remote_list[0] = {'lydov.3322.org', 443}
Fri Apr 25 13:35:29 2008 us=330340   remote_random = DISABLED
Fri Apr 25 13:35:29 2008 us=330348   local_port = 1194
Fri Apr 25 13:35:29 2008 us=330358   remote_port = 1194
Fri Apr 25 13:35:29 2008 us=330367   remote_float = DISABLED
Fri Apr 25 13:35:29 2008 us=330376   ipchange = '[UNDEF]'
Fri Apr 25 13:35:29 2008 us=330385   bind_local = DISABLED
Fri Apr 25 13:35:29 2008 us=330394   dev = 'tun'
Fri Apr 25 13:35:29 2008 us=330402   dev_type = '[UNDEF]'
Fri Apr 25 13:35:29 2008 us=330411   dev_node = '[UNDEF]'
Fri Apr 25 13:35:29 2008 us=330420   tun_ipv6 = DISABLED
Fri Apr 25 13:35:29 2008 us=330429   ifconfig_local = '[UNDEF]'
Fri Apr 25 13:35:29 2008 us=330439   ifconfig_remote_netmask = '[UNDEF]'
Fri Apr 25 13:35:29 2008 us=330448   ifconfig_noexec = DISABLED
Fri Apr 25 13:35:29 2008 us=330458   ifconfig_nowarn = DISABLED
Fri Apr 25 13:35:29 2008 us=330466   shaper = 0
Fri Apr 25 13:35:29 2008 us=330475   tun_mtu = 1500
Fri Apr 25 13:35:29 2008 us=330484   tun_mtu_defined = ENABLED
Fri Apr 25 13:35:29 2008 us=330493   link_mtu = 1500
Fri Apr 25 13:35:29 2008 us=330502   link_mtu_defined = DISABLED
Fri Apr 25 13:35:29 2008 us=330511   tun_mtu_extra = 0
Fri Apr 25 13:35:29 2008 us=330520   tun_mtu_extra_defined = DISABLED
Fri Apr 25 13:35:29 2008 us=330529   fragment = 0
Fri Apr 25 13:35:29 2008 us=330538   mtu_discover_type = -1
Fri Apr 25 13:35:29 2008 us=330547   mtu_test = 0
Fri Apr 25 13:35:29 2008 us=330555   mlock = DISABLED
Fri Apr 25 13:35:29 2008 us=330564   keepalive_ping = 0
Fri Apr 25 13:35:29 2008 us=330573   keepalive_timeout = 0
Fri Apr 25 13:35:29 2008 us=330581   inactivity_timeout = 0
Fri Apr 25 13:35:29 2008 us=330591   ping_send_timeout = 0
Fri Apr 25 13:35:29 2008 us=330599   ping_rec_timeout = 0
Fri Apr 25 13:35:29 2008 us=330608   ping_rec_timeout_action = 0
Fri Apr 25 13:35:29 2008 us=330617   ping_timer_remote = DISABLED
Fri Apr 25 13:35:29 2008 us=330626   remap_sigusr1 = 0
Fri Apr 25 13:35:29 2008 us=330635   explicit_exit_notification = 0
Fri Apr 25 13:35:29 2008 us=330644   persist_tun = DISABLED
Fri Apr 25 13:35:29 2008 us=330653   persist_local_ip = DISABLED
Fri Apr 25 13:35:29 2008 us=330662   persist_remote_ip = DISABLED
Fri Apr 25 13:35:29 2008 us=330672   persist_key = DISABLED
Fri Apr 25 13:35:29 2008 us=330680   mssfix = 1450
Fri Apr 25 13:35:29 2008 us=330690   resolve_retry_seconds = 1000000000
Fri Apr 25 13:35:29 2008 us=330699   connect_retry_seconds = 5
Fri Apr 25 13:35:29 2008 us=330708   username = '[UNDEF]'
Fri Apr 25 13:35:29 2008 us=330717   groupname = '[UNDEF]'
Fri Apr 25 13:35:29 2008 us=330726   chroot_dir = '[UNDEF]'
Fri Apr 25 13:35:29 2008 us=330735   cd_dir = '[UNDEF]'
Fri Apr 25 13:35:29 2008 us=330743   writepid = '[UNDEF]'
Fri Apr 25 13:35:29 2008 us=330752   up_script = '[UNDEF]'
Fri Apr 25 13:35:29 2008 us=330761   down_script = '[UNDEF]'
Fri Apr 25 13:35:29 2008 us=330770   down_pre = DISABLED
Fri Apr 25 13:35:29 2008 us=330782   up_restart = DISABLED
Fri Apr 25 13:35:29 2008 us=330792   up_delay = DISABLED
Fri Apr 25 13:35:29 2008 us=330801   daemon = DISABLED
Fri Apr 25 13:35:29 2008 us=330809   inetd = 0
Fri Apr 25 13:35:29 2008 us=330818   log = DISABLED
Fri Apr 25 13:35:29 2008 us=330826   suppress_timestamps = DISABLED
Fri Apr 25 13:35:29 2008 us=330835   nice = 0
Fri Apr 25 13:35:29 2008 us=330844   verbosity = 4
Fri Apr 25 13:35:29 2008 us=552726   mute = 0
Fri Apr 25 13:35:29 2008 us=552743   gremlin = 0
Fri Apr 25 13:35:29 2008 us=552753   status_file = 'openvpn-status.log'
Fri Apr 25 13:35:29 2008 us=552762   status_file_version = 1
Fri Apr 25 13:35:29 2008 us=552770   status_file_update_freq = 60
Fri Apr 25 13:35:29 2008 us=552779   occ = ENABLED
Fri Apr 25 13:35:29 2008 us=552787   rcvbuf = 0
Fri Apr 25 13:35:29 2008 us=552796   sndbuf = 0
Fri Apr 25 13:35:29 2008 us=552804 BEGIN http_proxy
Fri Apr 25 13:35:29 2008 us=552813   server = '10.0.0.172'
Fri Apr 25 13:35:29 2008 us=552822   port = 80
Fri Apr 25 13:35:29 2008 us=552831   auth_method_string = 'none'
Fri Apr 25 13:35:29 2008 us=552839   auth_file = '[UNDEF]'
Fri Apr 25 13:35:29 2008 us=552848   retry = DISABLED
Fri Apr 25 13:35:29 2008 us=552856   timeout = 5
Fri Apr 25 13:35:29 2008 us=552864   http_version = '1.0'
Fri Apr 25 13:35:29 2008 us=552873   user_agent = '[UNDEF]'
Fri Apr 25 13:35:29 2008 us=552881 END http_proxy
Fri Apr 25 13:35:29 2008 us=572251   socks_proxy_server = '[UNDEF]'
Fri Apr 25 13:35:29 2008 us=572269   socks_proxy_port = 0
Fri Apr 25 13:35:29 2008 us=572278   socks_proxy_retry = DISABLED
Fri Apr 25 13:35:29 2008 us=572286   fast_io = DISABLED
Fri Apr 25 13:35:29 2008 us=572295   comp_lzo = ENABLED
Fri Apr 25 13:35:29 2008 us=572303   comp_lzo_adaptive = ENABLED
Fri Apr 25 13:35:29 2008 us=572323   route_script = '[UNDEF]'
Fri Apr 25 13:35:29 2008 us=572332   route_default_gateway = '[UNDEF]'
Fri Apr 25 13:35:29 2008 us=572340   route_noexec = DISABLED
Fri Apr 25 13:35:29 2008 us=572349   route_delay = 0
Fri Apr 25 13:35:29 2008 us=572357   route_delay_window = 30
Fri Apr 25 13:35:29 2008 us=572366   route_delay_defined = ENABLED
Fri Apr 25 13:35:29 2008 us=572374   management_addr = '[UNDEF]'
Fri Apr 25 13:35:29 2008 us=572383   management_port = 0
Fri Apr 25 13:35:29 2008 us=572392   management_user_pass = '[UNDEF]'
Fri Apr 25 13:35:29 2008 us=586948   management_log_history_cache = 250
Fri Apr 25 13:35:29 2008 us=586966   management_echo_buffer_size = 100
Fri Apr 25 13:35:29 2008 us=586976   management_query_passwords = DISABLED
Fri Apr 25 13:35:29 2008 us=586986   management_hold = DISABLED
Fri Apr 25 13:35:29 2008 us=586995   shared_secret_file = '[UNDEF]'
Fri Apr 25 13:35:29 2008 us=587004   key_direction = 0
Fri Apr 25 13:35:29 2008 us=587013   ciphername_defined = ENABLED
Fri Apr 25 13:35:29 2008 us=587022   ciphername = 'BF-CBC'
Fri Apr 25 13:35:29 2008 us=587031   authname_defined = ENABLED
Fri Apr 25 13:35:29 2008 us=587039   authname = 'SHA1'
Fri Apr 25 13:35:29 2008 us=587047   keysize = 0
Fri Apr 25 13:35:29 2008 us=587055   engine = DISABLED
Fri Apr 25 13:35:29 2008 us=587064   replay = ENABLED
Fri Apr 25 13:35:29 2008 us=587072   mute_replay_warnings = ENABLED
Fri Apr 25 13:35:29 2008 us=587081   replay_window = 0
Fri Apr 25 13:35:29 2008 us=587089   replay_time = 0
Fri Apr 25 13:35:29 2008 us=608633   packet_id_file = '[UNDEF]'
Fri Apr 25 13:35:29 2008 us=608651   use_iv = ENABLED
Fri Apr 25 13:35:29 2008 us=608660   test_crypto = DISABLED
Fri Apr 25 13:35:29 2008 us=608668   tls_server = DISABLED
Fri Apr 25 13:35:29 2008 us=608677   tls_client = ENABLED
Fri Apr 25 13:35:29 2008 us=608686   key_method = 2
Fri Apr 25 13:35:29 2008 us=608694   ca_file = 'F:\OPENVPN\KEY\ca.crt'
Fri Apr 25 13:35:29 2008 us=608703   dh_file = '[UNDEF]'
Fri Apr 25 13:35:29 2008 us=608711   cert_file = 'F:\OPENVPN\KEY\client.crt'
Fri Apr 25 13:35:29 2008 us=608721   priv_key_file = 'F:\OPENVPN\KEY\client.key'
Fri Apr 25 13:35:29 2008 us=608730   pkcs12_file = '[UNDEF]'
Fri Apr 25 13:35:29 2008 us=608738   cryptoapi_cert = '[UNDEF]'
Fri Apr 25 13:35:29 2008 us=608746   cipher_list = '[UNDEF]'
Fri Apr 25 13:35:29 2008 us=608755   tls_verify = '[UNDEF]'
Fri Apr 25 13:35:29 2008 us=608763   tls_remote = '[UNDEF]'
Fri Apr 25 13:35:29 2008 us=631616   crl_file = '[UNDEF]'
Fri Apr 25 13:35:29 2008 us=631634   ns_cert_type = 0
Fri Apr 25 13:35:29 2008 us=631643   tls_timeout = 2
Fri Apr 25 13:35:29 2008 us=631651   renegotiate_bytes = 0
Fri Apr 25 13:35:29 2008 us=631659   renegotiate_packets = 0
Fri Apr 25 13:35:29 2008 us=631669   renegotiate_seconds = 3600
Fri Apr 25 13:35:29 2008 us=631677   handshake_window = 60
Fri Apr 25 13:35:29 2008 us=631686   transition_window = 3600
Fri Apr 25 13:35:29 2008 us=631695   single_session = DISABLED
Fri Apr 25 13:35:29 2008 us=631703   tls_exit = DISABLED
Fri Apr 25 13:35:29 2008 us=631711   tls_auth_file = '[UNDEF]'
Fri Apr 25 13:35:29 2008 us=631735   server_network = 0.0.0.0
Fri Apr 25 13:35:29 2008 us=631745   server_netmask = 0.0.0.0
Fri Apr 25 13:35:29 2008 us=631755   server_bridge_ip = 0.0.0.0
Fri Apr 25 13:35:29 2008 us=631765   server_bridge_netmask = 0.0.0.0
Fri Apr 25 13:35:29 2008 us=631775   server_bridge_pool_start = 0.0.0.0
Fri Apr 25 13:35:29 2008 us=654901   server_bridge_pool_end = 0.0.0.0
Fri Apr 25 13:35:29 2008 us=654920   ifconfig_pool_defined = DISABLED
Fri Apr 25 13:35:29 2008 us=654931   ifconfig_pool_start = 0.0.0.0
Fri Apr 25 13:35:29 2008 us=654941   ifconfig_pool_end = 0.0.0.0
Fri Apr 25 13:35:29 2008 us=654950   ifconfig_pool_netmask = 0.0.0.0
Fri Apr 25 13:35:29 2008 us=654960   ifconfig_pool_persist_filename = '[UNDEF]'
Fri Apr 25 13:35:29 2008 us=654970   ifconfig_pool_persist_refresh_freq = 600
Fri Apr 25 13:35:29 2008 us=654979   ifconfig_pool_linear = DISABLED
Fri Apr 25 13:35:29 2008 us=654989   n_bcast_buf = 256
Fri Apr 25 13:35:29 2008 us=654998   tcp_queue_limit = 64
Fri Apr 25 13:35:29 2008 us=655006   real_hash_size = 256
Fri Apr 25 13:35:29 2008 us=655014   virtual_hash_size = 256
Fri Apr 25 13:35:29 2008 us=655023   client_connect_script = '[UNDEF]'
Fri Apr 25 13:35:29 2008 us=655033   learn_address_script = '[UNDEF]'
Fri Apr 25 13:35:29 2008 us=655042   client_disconnect_script = '[UNDEF]'
Fri Apr 25 13:35:29 2008 us=673600   client_config_dir = '[UNDEF]'
Fri Apr 25 13:35:29 2008 us=673619   ccd_exclusive = DISABLED
Fri Apr 25 13:35:29 2008 us=673628   tmp_dir = '[UNDEF]'
Fri Apr 25 13:35:29 2008 us=673637   push_ifconfig_defined = DISABLED
Fri Apr 25 13:35:29 2008 us=673649   push_ifconfig_local = 0.0.0.0
Fri Apr 25 13:35:29 2008 us=673659   push_ifconfig_remote_netmask = 0.0.0.0
Fri Apr 25 13:35:29 2008 us=673668   enable_c2c = DISABLED
Fri Apr 25 13:35:29 2008 us=673677   duplicate_cn = DISABLED
Fri Apr 25 13:35:29 2008 us=673686   cf_max = 0
Fri Apr 25 13:35:29 2008 us=673694   cf_per = 0
Fri Apr 25 13:35:29 2008 us=673702   max_clients = 1024
Fri Apr 25 13:35:29 2008 us=673711   max_routes_per_client = 256
Fri Apr 25 13:35:29 2008 us=673720   client_cert_not_required = DISABLED
Fri Apr 25 13:35:29 2008 us=673729   username_as_common_name = DISABLED
Fri Apr 25 13:35:29 2008 us=673738   auth_user_pass_verify_script = '[UNDEF]'
Fri Apr 25 13:35:29 2008 us=692678   auth_user_pass_verify_script_via_file = DISABLED
Fri Apr 25 13:35:29 2008 us=692697   client = ENABLED
Fri Apr 25 13:35:29 2008 us=692706   pull = ENABLED
Fri Apr 25 13:35:29 2008 us=692715   auth_user_pass_file = '[UNDEF]'
Fri Apr 25 13:35:29 2008 us=692727   show_net_up = DISABLED
Fri Apr 25 13:35:29 2008 us=692736   route_method = 0
Fri Apr 25 13:35:29 2008 us=692745   ip_win32_defined = DISABLED
Fri Apr 25 13:35:29 2008 us=692753   ip_win32_type = 3
Fri Apr 25 13:35:29 2008 us=692761   dhcp_masq_offset = 0
Fri Apr 25 13:35:29 2008 us=692770   dhcp_lease_time = 31536000
Fri Apr 25 13:35:29 2008 us=692778   tap_sleep = 0
Fri Apr 25 13:35:29 2008 us=692787   dhcp_options = DISABLED
Fri Apr 25 13:35:29 2008 us=692795   dhcp_renew = DISABLED
Fri Apr 25 13:35:29 2008 us=692803   dhcp_pre_release = DISABLED
Fri Apr 25 13:35:29 2008 us=692812   dhcp_release = DISABLED
Fri Apr 25 13:35:29 2008 us=692820   domain = '[UNDEF]'
Fri Apr 25 13:35:29 2008 us=713265   netbios_scope = '[UNDEF]'
Fri Apr 25 13:35:29 2008 us=713284   netbios_node_type = 0
Fri Apr 25 13:35:29 2008 us=713293   disable_nbt = DISABLED
Fri Apr 25 13:35:29 2008 us=713314 OpenVPN 2.0.5 Win32-MinGW [SSL] [LZO] built on Nov  2 2005
Fri Apr 25 13:35:29 2008 us=713434 IMPORTANT: OpenVPN's default port number is now 1194, based on an official port number assignment by IANA.  OpenVPN 2.0-beta16 and earlier used 5000 as the default port.
Fri Apr 25 13:35:29 2008 us=713448 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
Fri Apr 25 13:35:29 2008 us=716053 LZO compression initialized
Fri Apr 25 13:35:29 2008 us=716152 Control Channel MTU parms [ L:1544 D:140 EF:40 EB:0 ET:0 EL:0 ]
Fri Apr 25 13:35:29 2008 us=720905 Data Channel MTU parms [ L:1544 D:1450 EF:44 EB:135 ET:0 EL:0 AF:3/1 ]
Fri Apr 25 13:35:29 2008 us=720957 Local Options String: 'V4,dev-type tun,link-mtu 1544,tun-mtu 1500,proto TCPv4_CLIENT,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Fri Apr 25 13:35:29 2008 us=736369 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1544,tun-mtu 1500,proto TCPv4_SERVER,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Fri Apr 25 13:35:29 2008 us=736417 Local Options hash (VER=V4): '69109d17'
Fri Apr 25 13:35:29 2008 us=736434 Expected Remote Options hash (VER=V4): 'c0103fa8'
Fri Apr 25 13:35:29 2008 us=736472 Attempting to establish TCP connection with 10.0.0.172:80
Fri Apr 25 13:35:50 2008 us=698298 TCP: connect to 10.0.0.172:80 failed, will try again in 5 seconds
Fri Apr 25 13:36:16 2008 us=620214 TCP: connect to 10.0.0.172:80 failed, will try again in 5 seconds
Fri Apr 25 13:36:42 2008 us=541252 TCP: connect to 10.0.0.172:80 failed, will try again in 5 seconds
Fri Apr 25 13:37:08 2008 us=572146 TCP: connect to 10.0.0.172:80 failed, will try again in 5 seconds
Fri Apr 25 13:37:34 2008 us=495249 TCP: connect to 10.0.0.172:80 failed, will try again in 5 seconds
回复 支持 反对

使用道具 举报

lydov

7

回帖

0

积分

25

资产值

入门会员 Rank: 1

注册时间
2008-4-15
 楼主| 发表于 2008-4-25 13:40:08| 字数 311| - 中国–重庆–重庆–江津区 电信 | 显示全部楼层
client我是这样弄的,不知道是哪错了

client
dev tun
proto tcp-client
remote lydov.3322.org 443
resolv-retry infinite
nobind
http-proxy 10.0.0.172 80     #这里填入你的代理服务器地址和端口
mute-replay-warnings
ca F:\\OPENVPN\\KEY\\ca.crt
cert F:\\OPENVPN\\KEY\\client.crt        #这里改成每个客户端相应的证书
key F:\\OPENVPN\\KEY\\client.key        #这里改成每个客户端相应的证书
comp-lzo
verb 4
status openvpn-status.log
回复 支持 反对

使用道具 举报

美国皇帝

275

回帖

0

积分

336

资产值

入门会员 Rank: 1

注册时间
2007-6-7
发表于 2008-4-25 15:36:15| 字数 95| - 中国–广东–广州 电信 | 显示全部楼层
貌似是,你的VPN客户端,将443连接直接转到移动的接口也就是10.0.0.172:80上了,这应该是不行的,因为移动那个接口是一个HTTP代理接口,不会受理你的SSL连接。不知分析得对不?
回复 支持 反对

使用道具 举报

lydov

7

回帖

0

积分

25

资产值

入门会员 Rank: 1

注册时间
2008-4-15
 楼主| 发表于 2008-4-25 19:41:59| 字数 36| - 中国–重庆–重庆–江津区 电信 | 显示全部楼层
还有人知道结果吗?如果我能搭建好,绝对保证给本论坛的朋友免费提供一星期。
回复 支持 反对

使用道具 举报

vincentking

3140

回帖

0

积分

5601

资产值

入门会员 Rank: 1

注册时间
2004-4-10
发表于 2008-4-27 01:46:11| 字数 15| - 中国–辽宁–大连 电信 | 显示全部楼层
有的时候需要很长时间才能连上。
拆卖R32
A31P x31 S1 TREO c500  WII XBOX360 XBOX PS2 WS PSP NDSL S60
回复 支持 反对

使用道具 举报

wokin

2万

回帖

162

积分

2万

资产值

至尊会员II Rank: 4Rank: 4Rank: 4Rank: 4

注册时间
2007-2-14
发表于 2008-7-6 21:49:31| 字数 6| - 中国–山东–济南 移动 | 显示全部楼层
一星期,呵呵
实事求是 实话实说
回复 支持 反对

使用道具 举报

返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 注册

本版积分规则

Powered by Discuz! X3.5 © 2001-2023 Comsenz Inc

GMT+8, 2025-1-17 07:38 , Processed in 0.120181 second(s), 33 queries , Gzip On, OPcache On.

手机版|小黑屋|安卓客户端|iOS客户端|Archiver|备用网址1|备用网址2|在线留言|专门网

返回顶部