openvpn服务没法启动,跪求大家帮助!
日志如下:Sun Dec 19 19:09:20 2010 us=595335 duplicate_cn = DISABLED
Sun Dec 19 19:09:20 2010 us=595373 cf_max = 0
Sun Dec 19 19:09:20 2010 us=595410 cf_per = 0
Sun Dec 19 19:09:20 2010 us=595447 max_clients = 30
Sun Dec 19 19:09:20 2010 us=595485 max_routes_per_client = 256
Sun Dec 19 19:09:20 2010 us=595540 client_cert_not_required = ENABLED
Sun Dec 19 19:09:20 2010 us=595577 username_as_common_name = ENABLED
Sun Dec 19 19:09:20 2010 us=595615 auth_user_pass_verify_script = ''
Sun Dec 19 19:09:20 2010 us=595653 auth_user_pass_verify_script_via_file = DISABLED
Sun Dec 19 19:09:20 2010 us=595741 port_share_host = ''
Sun Dec 19 19:09:20 2010 us=595822 port_share_port = 0
Sun Dec 19 19:09:20 2010 us=595864 client = DISABLED
Sun Dec 19 19:09:20 2010 us=595901 pull = DISABLED
Sun Dec 19 19:09:20 2010 us=595938 auth_user_pass_file = ''
Sun Dec 19 19:09:20 2010 us=596066 OpenVPN 2.1_rc4 i386-redhat-linux-gnu built on Dec 16 2007
AUTH-PAM: BACKGROUND: INIT service='openvpn'
Sun Dec 19 19:09:20 2010 us=607051 PLUGIN_INIT: POST /usr/lib/openvpn/plugin/lib/openvpn-auth-pam.so ' ' inter
cepted=PLUGIN_AUTH_USER_PASS_VERIFY
Sun Dec 19 19:09:20 2010 us=613148 Note: cannot open openvpn-status.log for WRITE
Sun Dec 19 19:09:20 2010 us=615907 Note: cannot open ipp.txt for READ/WRITE
Sun Dec 19 19:09:20 2010 us=627782 Diffie-Hellman initialized with 1024 bit key
Sun Dec 19 19:09:20 2010 us=631909 WARNING: This configuration may accept clients which do not present a certificate
Sun Dec 19 19:09:20 2010 us=632273 Control Channel Authentication: using 'ta.key' as a OpenVPN static key file
Sun Dec 19 19:09:20 2010 us=632362 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Sun Dec 19 19:09:20 2010 us=632471 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Sun Dec 19 19:09:20 2010 us=632752 TLS-Auth MTU parms [ L:1544 D:168 EF:68 EB:0 ET:0 EL:0 ]
Sun Dec 19 19:09:20 2010 us=637556 TCP/UDP: Socket bind failed on local address 192.168.0.22:443: Permission denied
Sun Dec 19 19:09:20 2010 us=637636 Exiting
server.conf
local 192.168.0.22
port 443
proto tcp
dev tun
ca ca.crt
cert server.crt
key server.key
dh dh1024.pem
server 10.8.0.0 255.255.0.0
ifconfig-pool-persist ipp.txt
client-to-client
;duplicate-cn
keepalive 10 120
tls-auth ta.key 0
plugin /usr/lib/openvpn/plugin/lib/openvpn-auth-pam.so openvpn
client-cert-not-required
username-as-common-name
comp-lzo
max-clients 30
user nobody
group nobody
persist-key
persist-tun
status openvpn-status.log
log /var/log/openvpn.log
log-appendopenvpn.log
verb 4
;mute 20
大家帮看看是怎么回事啊?好像提示没有权限?? 上跪求的PP 上跪求的PP 在Centos5上弄过,好长时间记不清了~很菜基本照着教程弄滴~ Posted by 502315278 on 2010-12-19 11:31 http://www.ibmnb.com/images/common/back.gif
Sun Dec 19 19:09:20 2010 us=637556 TCP/UDP: Socket bind failed on local address 192.168.0.22:443: Permission denied
看一下你运行openvpn server上nobody用户和组是否存在 怎么看啊?能说具体点吗? 忘了说的,我的就是centos5.0,+我QQ:502315278吧,一起探讨一下可以吗? /etc/group文件包含所有组
/etc/shadow和/etc/passwd系统存在的所有用户名
你在这几个文件里找找看是否有nobody存在,没有的话需要手工添加。 还有,最好把selinux关了,否则可能也会使得nobody用户没有权限。
页:
[1]