1 Temat przez tomi513 (edytowany przez tomi513 2011-04-10 20:16:24)

  • Zarejestrowany: 2010-06-10
  • Posty: 1,011

Temat: openvpn client

Mam już wygenerowane certyfikaty dla routera, serwer mam postawiony na debianie i łącze się już z windowsem, ale gdzie mam certyfikaty i klucze przekopiować i jak skonfigurować router jako klienta? Możecie mi dać pliki konfiguracyjnego z klientem pod openwrt?

2 Odpowiedź przez Cezary

  • Skąd: Warszawa
  • Zarejestrowany: 2006-02-25
  • Posty: 115,947

Odp: openvpn client

takie same są jak serwera, inny konfig jak już.

Masz niepotrzebny router, uszkodzony czy nie - chętnie przygarnę go.

Cezary's Strona

3 Odpowiedź przez tomi513

  • Zarejestrowany: 2010-06-10
  • Posty: 1,011

Odp: openvpn client

skonfigurowałem w pliku /etc/config/openvpn
pliki z certyfikatami skopiowałem do /etc/openvpn/
a to dostaje w logach

cat /etc/config/openvpn
Apr 10 21:32:07 1043dn daemon.err openvpn(sample_client)[5984]: read UDPv4 [ECONNREFUSED]: Connection refused (code=146)
Apr 10 21:32:37 1043dn daemon.err openvpn(sample_client)[5984]: TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Apr 10 21:32:37 1043dn daemon.err openvpn(sample_client)[5984]: TLS Error: TLS handshake failed
Apr 10 21:32:37 1043dn daemon.notice openvpn(sample_client)[5984]: TCP/UDP: Closing socket
Apr 10 21:32:37 1043dn daemon.notice openvpn(sample_client)[5984]: SIGUSR1[soft,tls-error] received, process restarting
Apr 10 21:32:37 1043dn daemon.notice openvpn(sample_client)[5984]: Restart pause, 2 second(s)
Apr 10 21:32:39 1043dn daemon.warn openvpn(sample_client)[5984]: WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
Apr 10 21:32:39 1043dn daemon.warn openvpn(sample_client)[5984]: NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Apr 10 21:32:39 1043dn daemon.notice openvpn(sample_client)[5984]: Re-using SSL/TLS context
Apr 10 21:32:39 1043dn daemon.notice openvpn(sample_client)[5984]: LZO compression initialized
Apr 10 21:32:39 1043dn daemon.notice openvpn(sample_client)[5984]: Control Channel MTU parms [ L:1542 D:138 EF:38 EB:0 ET:0 EL:0 ]
Apr 10 21:32:39 1043dn daemon.notice openvpn(sample_client)[5984]: Socket Buffers: R=[114688->131072] S=[114688->131072]
Apr 10 21:32:39 1043dn daemon.notice openvpn(sample_client)[5984]: Data Channel MTU parms [ L:1542 D:1450 EF:42 EB:135 ET:0 EL:0 AF:3/1 ]
Apr 10 21:32:39 1043dn daemon.notice openvpn(sample_client)[5984]: UDPv4 link local: [undef]
Apr 10 21:32:39 1043dn daemon.notice openvpn(sample_client)[5984]: UDPv4 link remote: serwer_ip:6025
Apr 10 21:32:39 1043dn daemon.err openvpn(sample_client)[5984]: read UDPv4 [ECONNREFUSED]: Connection refused (code=146)
Apr 10 21:32:41 1043dn daemon.err openvpn(sample_client)[5984]: read UDPv4 [ECONNREFUSED]: Connection refused (code=146)
Apr 10 21:32:46 1043dn daemon.err openvpn(sample_client)[5984]: read UDPv4 [ECONNREFUSED]: Connection refused (code=146)
Apr 10 21:32:54 1043dn daemon.err openvpn(sample_client)[5984]: read UDPv4 [ECONNREFUSED]: Connection refused (code=146)

Apr 10 21:33:01 1043dn cron.info crond[2362]: crond: USER root pid 6001 cmd /etc/init.d/temp
Apr 10 21:33:10 1043dn daemon.err openvpn(sample_client)[5984]: read UDPv4 [ECONNREFUSED]: Connection refused (code=146)
Apr 10 21:33:27 1043dn daemon.info hostapd: wlan0: STA 00:1d:e0:08:d2:f5 WPA: group key handshake completed (RSN)
Apr 10 21:33:39 1043dn daemon.err openvpn(sample_client)[5984]: TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Apr 10 21:33:39 1043dn daemon.err openvpn(sample_client)[5984]: TLS Error: TLS handshake failed
Apr 10 21:33:39 1043dn daemon.notice openvpn(sample_client)[5984]: TCP/UDP: Closing socket
Apr 10 21:33:39 1043dn daemon.notice openvpn(sample_client)[5984]: SIGUSR1[soft,tls-error] received, process restarting
Apr 10 21:33:39 1043dn daemon.notice openvpn(sample_client)[5984]: Restart pause, 2 second(s)
Apr 10 21:33:41 1043dn daemon.warn openvpn(sample_client)[5984]: WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
Apr 10 21:33:41 1043dn daemon.warn openvpn(sample_client)[5984]: NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Apr 10 21:33:41 1043dn daemon.notice openvpn(sample_client)[5984]: Re-using SSL/TLS context
Apr 10 21:33:41 1043dn daemon.notice openvpn(sample_client)[5984]: LZO compression initialized
Apr 10 21:33:41 1043dn daemon.notice openvpn(sample_client)[5984]: Control Channel MTU parms [ L:1542 D:138 EF:38 EB:0 ET:0 EL:0 ]
Apr 10 21:33:41 1043dn daemon.notice openvpn(sample_client)[5984]: Socket Buffers: R=[114688->131072] S=[114688->131072]
Apr 10 21:33:41 1043dn daemon.notice openvpn(sample_client)[5984]: Data Channel MTU parms [ L:1542 D:1450 EF:42 EB:135 ET:0 EL:0 AF:3/1 ]
Apr 10 21:33:41 1043dn daemon.notice openvpn(sample_client)[5984]: UDPv4 link local: [undef]
Apr 10 21:33:41 1043dn daemon.notice openvpn(sample_client)[5984]: UDPv4 link remote: serwer_ip:6025
Apr 10 21:33:41 1043dn daemon.err openvpn(sample_client)[5984]: read UDPv4 [ECONNREFUSED]: Connection refused (code=146)
Apr 10 21:33:43 1043dn daemon.err openvpn(sample_client)[5984]: read UDPv4 [ECONNREFUSED]: Connection refused (code=146)
Apr 10 21:33:47 1043dn daemon.err openvpn(sample_client)[5984]: read UDPv4 [ECONNREFUSED]: Connection refused (code=146)

4 Odpowiedź przez tomi513

  • Zarejestrowany: 2010-06-10
  • Posty: 1,011

Odp: openvpn client

ok działa trzeba było zmienić udp na tcp