padre Posted May 9, 2021 Share Posted May 9, 2021 добрый день. устройство keenetic 4g модем 3372 оператор билайн Пытаюсь подключиться к openVpn серверу. конфиг-файл рабочий. при подключение следующие логи Май 8 19:01:57 ndm Core::Syslog: the system log has been cleared. Май 8 19:02:00 ndm Network::Interface::Base: "OpenVPN0": interface is up. Май 8 19:02:00 ndm Core::ConfigurationSaver: saving configuration... Май 8 19:02:03 OpenVPN0 OpenVPN 2.4.6 [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [AEAD] Май 8 19:02:03 OpenVPN0 library versions: OpenSSL 1.1.1k 25 Mar 2021, LZO 2.10 Май 8 19:02:03 OpenVPN0 Outgoing Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key Май 8 19:02:03 OpenVPN0 Outgoing Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication Май 8 19:02:03 OpenVPN0 Incoming Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key Май 8 19:02:03 OpenVPN0 Incoming Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication Май 8 19:02:03 OpenVPN0 Socket Buffers: R=[155648->155648] S=[155648->155648] Май 8 19:02:03 OpenVPN0 UDP link local: (not bound) Май 8 19:02:03 OpenVPN0 UDP link remote: [AF_INET]**.**.**.**:*** Май 8 19:02:03 OpenVPN0 NOTE: UID/GID downgrade will be delayed because of --client, --pull, or --up-delay Май 8 19:02:03 OpenVPN0 TLS: Initial packet from [AF_INET]**.**.**.**:***, sid=e3d9348 edc3240 Май 8 19:02:03 OpenVPN0 VERIFY SCRIPT OK: depth=1, CN=server Май 8 19:02:03 OpenVPN0 VERIFY OK: depth=1, CN=server Май 8 19:02:03 OpenVPN0 VERIFY KU OK Май 8 19:02:03 OpenVPN0 Validating certificate extended key usage Май 8 19:02:03 OpenVPN0 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication Май 8 19:02:03 OpenVPN0 VERIFY EKU OK Май 8 19:02:04 OpenVPN0 VERIFY SCRIPT OK: depth=0, CN=server2 Май 8 19:02:04 OpenVPN0 VERIFY OK: depth=0, CN=server2 Май 8 19:02:04 ndm Core::ConfigurationSaver: configuration saved. Май 8 19:02:04 OpenVPN0 WARNING: 'keydir' is present in local config but missing in remote config, local='keydir 0' Май 8 19:02:04 OpenVPN0 Control Channel: TLSv1.2, cipher TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384, 384 bit EC, curve: secp384r1 Май 8 19:02:04 OpenVPN0 [server2] Peer Connection Initiated with [AF_INET]62.77.158.2:1194 Май 8 19:02:04 ndm Network::Interface::OpenVpn: "OpenVPN0": connecting via CdcEthernet0 (CdcEthernet0). Май 8 19:02:04 ndm Network::Interface::OpenVpn: "OpenVPN0": added host route to remote endpoint**.**.**.** via 192.168.8.1. Май 8 19:02:05 OpenVPN0 SENT CONTROL [server2]: 'PUSH_REQUEST' (status=1) Май 8 19:02:05 OpenVPN0 PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1 bypass-dhcp,dhcp-option DNS **.**.**.**,dhcp-option DNS **.**.**.**,route-gateway 10.8.0.1, topology subnet,ping 10,ping-restart 120,ifconfig 10.8.0.50 255.255.255.0,peer-id 0,cipher AES-256-GCM' Май 8 19:02:05 OpenVPN0 OPTIONS IMPORT: timers and/or timeouts modified Май 8 19:02:05 OpenVPN0 OPTIONS IMPORT: --ifconfig/up options modified Май 8 19:02:05 OpenVPN0 OPTIONS IMPORT: route options modified Май 8 19:02:05 OpenVPN0 OPTIONS IMPORT: route-related options modified Май 8 19:02:05 OpenVPN0 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified Май 8 19:02:05 OpenVPN0 OPTIONS IMPORT: peer-id set Май 8 19:02:05 OpenVPN0 OPTIONS IMPORT: adjusting link_mtu to 1624 Май 8 19:02:05 OpenVPN0 OPTIONS IMPORT: data channel crypto options modified Май 8 19:02:05 OpenVPN0 Outgoing Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key Май 8 19:02:05 OpenVPN0 Incoming Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key Май 8 19:02:05 OpenVPN0 TUN/TAP device tun0 opened Май 8 19:02:05 OpenVPN0 TUN/TAP TX queue length set to 100 Май 8 19:02:05 OpenVPN0 do_ifconfig, tt->did_ifconfig_ipv6_setup=0 Май 8 19:02:06 ndm Network::Interface::Ip: "OpenVPN0": IP address is 10.8.0.50/24. Май 8 19:02:06 OpenVPN0 GID set to nobody Май 8 19:02:06 OpenVPN0 UID set to nobody Май 8 19:02:06 OpenVPN0 Initialization Sequence Completed Май 8 19:02:07 ndm Http::Nginx: loaded SSL certificate for "*.keenetic.io". Май 8 19:02:07 ndm Http::Nginx: loaded SSL certificate for "*.keenetic.link". Май 8 19:02:07 ndm Core::Server: started Session /var/run/ndm.core.socket. Май 8 19:02:07 ndm Core::Session: client disconnected. Май 8 19:02:07 ndm Http::Manager: updated configuration. Май 8 19:02:07 ndm Core::Server: started Session /var/run/ndm.core.socket. Май 8 19:02:08 ndm Core::Session: client disconnected. Май 8 19:02:12 ndhcpc OpenVPN0: NDM DHCP Client, v3.2.45. Май 8 19:02:12 ndhcpc OpenVPN0: created PID file "/var/run/ndhcpc-ovpn_br0.pid". Май 8 19:02:13 ndm Network::Interface::Ip: "OpenVPN0": IP address cleared. Май 8 19:02:14 ndm Http::Nginx: loaded SSL certificate for "*.keenetic.io". Май 8 19:02:14 ndm Http::Nginx: loaded SSL certificate for "*.keenetic.link". Май 8 19:02:14 ndm Core::Server: started Session /var/run/ndm.core.socket. Май 8 19:02:15 ndm Core::Session: client disconnected. Май 8 19:02:15 ndm Http::Manager: updated configuration. Май 8 19:02:15 ndm Core::Server: started Session /var/run/ndm.core.socket. Май 8 19:02:15 ndm Core::Session: client disconnected. подскажите в какую сторону копать. кто чистить ip? Quote Link to comment Share on other sites More sharing options...
Filat Posted May 12, 2021 Share Posted May 12, 2021 (edited) У меня тоже стал убираться ИП адрес. После соединения сервер выделяет ИП,начинает отображаться, а через секунд 5 пишет Нет Ип адреса. Сам понять не могу, в какую сторону копать начать. Протесил с рабочими конфигами 2 сервиса, и там и там тот же эффект. Extra (KN-1710) Edited May 12, 2021 by Filat указание модели Quote Link to comment Share on other sites More sharing options...
Le ecureuil Posted May 12, 2021 Share Posted May 12, 2021 @padre, @Filat DHCP отключите на интерфейсе через cli. Как он у вас там оказался вообще? Quote Link to comment Share on other sites More sharing options...
Usatyj Posted May 12, 2021 Share Posted May 12, 2021 (edited) 7 часов назад, Le ecureuil сказал: @padre, @Filat DHCP отключите на интерфейсе через cli. Как он у вас там оказался вообще? Никогда такого не было и вот опять!) Ultra ll, 3.6.4: Май 13 01:02:09 ndhcpc OpenVPN1: NDM DHCP Client, v3.2.4 Май 13 01:02:09 ndhcpc OpenVPN1: NDM DHCP Client, v3.2.45. Май 13 01:02:09 ndhcpc OpenVPN1: created PID file "/var/run/ndhcpc-ovpn_br1.pid". Май 13 01:02:10 ndm Network::Interface::Ip: "OpenVPN1": IP address cleared. Не нашел команды cli для отключения на интерфейсе( Edited May 12, 2021 by Usatyj Quote Link to comment Share on other sites More sharing options...
Filat Posted May 13, 2021 Share Posted May 13, 2021 Оооо спасибо всем, не знаю как через cli удалить, я сохранил startup-config, нашел секцию interface OpenVPN0 и удалил строчку ip address dhcp и загрузил обратно в роутер. После перегруза все заработало. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.