Jump to content

Recommended Posts

Здраствуйте.

роутер keenetic extra, os последеняя.

конфиг openvpn почистил от комментов, указал доступы через <auth-user-pass>

включаю и статус - "Не подключено" спустя 1 минуту статус "Готов" 

Пакеты отправляются, но не принимаются.

Через "Приоритеты подключений" сделал ноутбук под openvpn - интернет на ноуте пропал.

лог и скриншот ниже

помогите разобраться. нужно Openvpn подключить на устройство, без возможности выхода в интернет без VPN

ikev2 пробовал, "Нет подключение", IKE0 down..

Spoiler
Янв 3 22:51:10 ndm
Core::Syslog: the system log has been cleared.
Янв 3 22:51:20 kernel
IPv6: ADDRCONF(NETDEV_UP): ovpn_br0: link is not ready
Янв 3 22:51:20 ndm
Network::Interface::Base: "OpenVPN0": interface is up.
Янв 3 22:51:20 ndm
Core::System::Configuration: saving (http/rci).
Янв 3 22:51:23 OpenVPN0
OpenVPN 2.4.6 [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [AEAD]
Янв 3 22:51:23 OpenVPN0
library versions: OpenSSL 1.1.1l 24 Aug 2021, LZO 2.10
Янв 3 22:51:23 OpenVPN0
NOTE: --fast-io is disabled since we are not using UDP
Янв 3 22:51:23 OpenVPN0
Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
Янв 3 22:51:23 OpenVPN0
Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
Янв 3 22:51:23 OpenVPN0
Socket Buffers: R=[87380->87380] S=[16384->16384]
Янв 3 22:51:23 OpenVPN0
Attempting to establish TCP connection with [AF_INET]196.240******:443 [nonblock]
Янв 3 22:51:24 OpenVPN0
TCP connection established with [AF_INET]196.240******:443
Янв 3 22:51:24 OpenVPN0
TCP_CLIENT link local: (not bound)
Янв 3 22:51:24 OpenVPN0
TCP_CLIENT link remote: [AF_INET]196.240******:443
Янв 3 22:51:24 OpenVPN0
NOTE: UID/GID downgrade will be delayed because of --client, --pull, or --up-delay
Янв 3 22:51:24 OpenVPN0
TLS: Initial packet from [AF_INET]196.240******:443, sid=3636131b fc7ad84e
Янв 3 22:51:25 ndm
Core::System::Configuration: configuration saved.
Янв 3 22:51:25 OpenVPN0
VERIFY SCRIPT OK: depth=2, C=CH, O=ProtonVPN AG, CN=ProtonVPN Root CA
Янв 3 22:51:25 OpenVPN0
VERIFY OK: depth=2, C=CH, O=ProtonVPN AG, CN=ProtonVPN Root CA
Янв 3 22:51:25 OpenVPN0
VERIFY SCRIPT OK: depth=1, C=CH, O=ProtonVPN AG, CN=ProtonVPN Intermediate CA 1
Янв 3 22:51:25 OpenVPN0
VERIFY OK: depth=1, C=CH, O=ProtonVPN AG, CN=ProtonVPN Intermediate CA 1
Янв 3 22:51:25 OpenVPN0
VERIFY KU OK
Янв 3 22:51:25 OpenVPN0
Validating certificate extended key usage
Янв 3 22:51:25 OpenVPN0
++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
Янв 3 22:51:25 OpenVPN0
VERIFY EKU OK
Янв 3 22:51:25 OpenVPN0
VERIFY SCRIPT OK: depth=0, CN=lv-01.protonvpn.net
Янв 3 22:51:25 OpenVPN0
VERIFY OK: depth=0, CN=lv-01.protonvpn.net
Янв 3 22:51:25 OpenVPN0
WARNING: 'link-mtu' is used inconsistently, local='link-mtu 1635', remote='link-mtu 1636'
Янв 3 22:51:25 OpenVPN0
WARNING: 'comp-lzo' is present in remote config but missing in local config, remote='comp-lzo'
Янв 3 22:51:25 OpenVPN0
Control Channel: TLSv1.3, cipher TLSv1.3 TLS_AES_256_GCM_SHA384, 4096 bit RSA
Янв 3 22:51:25 OpenVPN0
[lv-01.protonvpn.net] Peer Connection Initiated with [AF_INET]196.240******:443
Янв 3 22:51:26 ndm
Network::Interface::OpenVpn: "OpenVPN0": connecting via ISP (FastEthernet0/Vlan2).
Янв 3 22:51:26 ndm
Network::Interface::OpenVpn: "OpenVPN0": added host route to remote endpoint 196.240****** via 192.168*****.
Янв 3 22:51:27 OpenVPN0
SENT CONTROL [lv-01.protonvpn.net]: 'PUSH_REQUEST' (status=1)
Янв 3 22:51:27 OpenVPN0
PUSH: Received control message: 'PUSH_REPLY,dhcp-option DNS 10.80.0.1,redirect-gateway def1,explicit-exit-notify,comp-lzo no,route-gateway 10.80.0.1,topology subnet,ping 10,ping-restart 60,socket-flags TCP_NODELAY,ifconfig 10.80.0.3 255.255.0.0,peer-id 0,cipher AES-256-GCM'
Янв 3 22:51:27 OpenVPN0
OPTIONS IMPORT: timers and/or timeouts modified
Янв 3 22:51:27 OpenVPN0
OPTIONS IMPORT: --explicit-exit-notify can only be used with --proto udp
Янв 3 22:51:27 OpenVPN0
OPTIONS IMPORT: compression parms modified
Янв 3 22:51:27 OpenVPN0
OPTIONS IMPORT: --socket-flags option modified
Янв 3 22:51:27 OpenVPN0
OPTIONS IMPORT: --ifconfig/up options modified
Янв 3 22:51:27 OpenVPN0
OPTIONS IMPORT: route options modified
Янв 3 22:51:27 OpenVPN0
OPTIONS IMPORT: route-related options modified
Янв 3 22:51:27 OpenVPN0
OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Янв 3 22:51:27 OpenVPN0
OPTIONS IMPORT: peer-id set
Янв 3 22:51:27 OpenVPN0
OPTIONS IMPORT: adjusting link_mtu to 1658
Янв 3 22:51:27 OpenVPN0
OPTIONS IMPORT: data channel crypto options modified
Янв 3 22:51:27 OpenVPN0
Data Channel: using negotiated cipher 'AES-256-GCM'
Янв 3 22:51:27 OpenVPN0
Outgoing Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
Янв 3 22:51:27 OpenVPN0
Incoming Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
Янв 3 22:51:27 OpenVPN0
TUN/TAP device tun0 opened
Янв 3 22:51:27 OpenVPN0
TUN/TAP TX queue length set to 100
Янв 3 22:51:27 OpenVPN0
do_ifconfig, tt->did_ifconfig_ipv6_setup=0
Янв 3 22:51:27 kernel
IPv6: ADDRCONF(NETDEV_CHANGE): ovpn_br0: link becomes ready
Янв 3 22:51:27 ndm
Network::Interface::Ip: "OpenVPN0": IP address is 10.80.0.3/16.
Янв 3 22:51:28 OpenVPN0
GID set to nobody
Янв 3 22:51:28 OpenVPN0
UID set to nobody
Янв 3 22:51:28 OpenVPN0
Initialization Sequence Completed
Янв 3 22:51:28 ndm
Core::Server: started Session /var/run/ndm.core.socket.
Янв 3 22:51:28 ndm
Core::Session: client disconnected.
Янв 3 22:51:28 ndm
Http::Manager: updated configuration.
Янв 3 22:51:28 ndm
Core::Server: started Session /var/run/ndm.core.socket.
Янв 3 22:51:28 ndm
Core::Session: client disconnected.

 

 

Сним44ок.PNG

Edited by firohid572
Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...