求高手帮我解答一下OPENVPN连接上的一个问题
我用是官方下的最新版本。配置好服务与客户端,不用拔号,取消配置文件里的代理那断。可以正常的接入服务端。我用上拔号,加上10。0。0。172 80代理。拔号,连接不上,详细看LOG
Fri Jan 15 21:31:44 2010 us=875000 Current Parameter Settings:
Fri Jan 15 21:31:44 2010 us=875000 config = 'test.ovpn'
Fri Jan 15 21:31:44 2010 us=875000 mode = 0
Fri Jan 15 21:31:44 2010 us=875000 show_ciphers = DISABLED
Fri Jan 15 21:31:44 2010 us=875000 show_digests = DISABLED
Fri Jan 15 21:31:44 2010 us=875000 show_engines = DISABLED
Fri Jan 15 21:31:44 2010 us=875000 genkey = DISABLED
Fri Jan 15 21:31:44 2010 us=875000 key_pass_file = ''
Fri Jan 15 21:31:44 2010 us=875000 show_tls_ciphers = DISABLED
Fri Jan 15 21:31:44 2010 us=875000 Connection profiles :
Fri Jan 15 21:31:44 2010 us=875000 proto = tcp-client
Fri Jan 15 21:31:44 2010 us=875000 local = ''
Fri Jan 15 21:31:44 2010 us=875000 local_port = 0
Fri Jan 15 21:31:44 2010 us=875000 remote = '220.114.28.33'
Fri Jan 15 21:31:44 2010 us=875000 remote_port = 443
Fri Jan 15 21:31:44 2010 us=875000 remote_float = DISABLED
Fri Jan 15 21:31:44 2010 us=875000 bind_defined = DISABLED
Fri Jan 15 21:31:44 2010 us=875000 bind_local = DISABLED
Fri Jan 15 21:31:44 2010 us=875000 connect_retry_seconds = 5
Fri Jan 15 21:31:44 2010 us=875000 connect_timeout = 10
Fri Jan 15 21:31:44 2010 us=875000 connect_retry_max = 0
Fri Jan 15 21:31:44 2010 us=875000 BEGIN http_proxy
Fri Jan 15 21:31:44 2010 us=875000 server = '10.0.0.172'
Fri Jan 15 21:31:44 2010 us=875000 port = 80
Fri Jan 15 21:31:44 2010 us=875000 auth_method_string = 'none'
Fri Jan 15 21:31:44 2010 us=875000 auth_file = ''
Fri Jan 15 21:31:44 2010 us=875000 retry = DISABLED
Fri Jan 15 21:31:44 2010 us=875000 timeout = 5
Fri Jan 15 21:31:44 2010 us=875000 http_version = '1.0'
Fri Jan 15 21:31:44 2010 us=875000 user_agent = ''
Fri Jan 15 21:31:44 2010 us=875000 END http_proxy
Fri Jan 15 21:31:44 2010 us=875000 socks_proxy_server = ''
Fri Jan 15 21:31:44 2010 us=875000 socks_proxy_port = 0
Fri Jan 15 21:31:44 2010 us=875000 socks_proxy_retry = DISABLED
Fri Jan 15 21:31:44 2010 us=875000 Connection profiles END
Fri Jan 15 21:31:44 2010 us=875000 remote_random = DISABLED
Fri Jan 15 21:31:44 2010 us=875000 ipchange = ''
Fri Jan 15 21:31:44 2010 us=875000 dev = 'tun'
Fri Jan 15 21:31:44 2010 us=875000 dev_type = ''
Fri Jan 15 21:31:44 2010 us=875000 dev_node = ''
Fri Jan 15 21:31:44 2010 us=875000 lladdr = ''
Fri Jan 15 21:31:44 2010 us=875000 topology = 1
Fri Jan 15 21:31:44 2010 us=875000 tun_ipv6 = DISABLED
Fri Jan 15 21:31:44 2010 us=875000 ifconfig_local = ''
Fri Jan 15 21:31:44 2010 us=875000 ifconfig_remote_netmask = ''
Fri Jan 15 21:31:44 2010 us=875000 ifconfig_noexec = DISABLED
Fri Jan 15 21:31:44 2010 us=875000 ifconfig_nowarn = DISABLED
Fri Jan 15 21:31:44 2010 us=875000 shaper = 0
Fri Jan 15 21:31:44 2010 us=875000 tun_mtu = 1500
Fri Jan 15 21:31:44 2010 us=875000 tun_mtu_defined = ENABLED
Fri Jan 15 21:31:44 2010 us=875000 link_mtu = 1500
Fri Jan 15 21:31:44 2010 us=875000 link_mtu_defined = DISABLED
Fri Jan 15 21:31:44 2010 us=875000 tun_mtu_extra = 0
Fri Jan 15 21:31:44 2010 us=875000 tun_mtu_extra_defined = DISABLED
Fri Jan 15 21:31:44 2010 us=875000 fragment = 0
Fri Jan 15 21:31:44 2010 us=875000 mtu_discover_type = -1
Fri Jan 15 21:31:44 2010 us=875000 mtu_test = 0
Fri Jan 15 21:31:44 2010 us=875000 mlock = DISABLED
Fri Jan 15 21:31:44 2010 us=875000 keepalive_ping = 0
Fri Jan 15 21:31:44 2010 us=875000 keepalive_timeout = 0
Fri Jan 15 21:31:44 2010 us=875000 inactivity_timeout = 0
Fri Jan 15 21:31:44 2010 us=875000 ping_send_timeout = 0
Fri Jan 15 21:31:44 2010 us=875000 ping_rec_timeout = 0
Fri Jan 15 21:31:44 2010 us=875000 ping_rec_timeout_action = 0
Fri Jan 15 21:31:44 2010 us=875000 ping_timer_remote = DISABLED
Fri Jan 15 21:31:44 2010 us=875000 remap_sigusr1 = 0
Fri Jan 15 21:31:44 2010 us=875000 explicit_exit_notification = 0
Fri Jan 15 21:31:44 2010 us=875000 persist_tun = DISABLED
Fri Jan 15 21:31:44 2010 us=875000 persist_local_ip = DISABLED
Fri Jan 15 21:31:45 2010 us=125000 persist_remote_ip = DISABLED
Fri Jan 15 21:31:45 2010 us=125000 persist_key = DISABLED
Fri Jan 15 21:31:45 2010 us=125000 mssfix = 1450
Fri Jan 15 21:31:45 2010 us=125000 resolve_retry_seconds = 1000000000
Fri Jan 15 21:31:45 2010 us=125000 username = ''
Fri Jan 15 21:31:45 2010 us=125000 groupname = ''
Fri Jan 15 21:31:45 2010 us=125000 chroot_dir = ''
Fri Jan 15 21:31:45 2010 us=125000 cd_dir = ''
Fri Jan 15 21:31:45 2010 us=125000 writepid = ''
Fri Jan 15 21:31:45 2010 us=125000 up_script = ''
Fri Jan 15 21:31:45 2010 us=125000 down_script = ''
Fri Jan 15 21:31:45 2010 us=125000 down_pre = DISABLED
Fri Jan 15 21:31:45 2010 us=125000 up_restart = DISABLED
Fri Jan 15 21:31:45 2010 us=125000 up_delay = DISABLED
Fri Jan 15 21:31:45 2010 us=125000 daemon = DISABLED
Fri Jan 15 21:31:45 2010 us=125000 inetd = 0
Fri Jan 15 21:31:45 2010 us=125000 log = DISABLED
Fri Jan 15 21:31:45 2010 us=140000 suppress_timestamps = DISABLED
Fri Jan 15 21:31:45 2010 us=140000 nice = 0
Fri Jan 15 21:31:45 2010 us=140000 verbosity = 4
Fri Jan 15 21:31:45 2010 us=140000 mute = 0
Fri Jan 15 21:31:45 2010 us=140000 gremlin = 0
Fri Jan 15 21:31:45 2010 us=140000 status_file = 'openvpn-status.log'
Fri Jan 15 21:31:45 2010 us=140000 status_file_version = 1
Fri Jan 15 21:31:45 2010 us=140000 status_file_update_freq = 60
Fri Jan 15 21:31:45 2010 us=140000 occ = ENABLED
Fri Jan 15 21:31:45 2010 us=140000 rcvbuf = 0
Fri Jan 15 21:31:45 2010 us=140000 sndbuf = 0
Fri Jan 15 21:31:45 2010 us=140000 sockflags = 0
Fri Jan 15 21:31:45 2010 us=140000 fast_io = DISABLED
Fri Jan 15 21:31:45 2010 us=140000 lzo = 7
Fri Jan 15 21:31:45 2010 us=140000 route_script = ''
Fri Jan 15 21:31:45 2010 us=140000 route_default_gateway = ''
Fri Jan 15 21:31:45 2010 us=140000 route_default_metric = 0
Fri Jan 15 21:31:45 2010 us=140000 route_noexec = DISABLED
Fri Jan 15 21:31:45 2010 us=171000 route_delay = 5
Fri Jan 15 21:31:45 2010 us=171000 route_delay_window = 30
Fri Jan 15 21:31:45 2010 us=171000 route_delay_defined = ENABLED
Fri Jan 15 21:31:45 2010 us=171000 route_nopull = DISABLED
Fri Jan 15 21:31:45 2010 us=171000 route_gateway_via_dhcp = DISABLED
Fri Jan 15 21:31:45 2010 us=171000 max_routes = 100
Fri Jan 15 21:31:45 2010 us=171000 allow_pull_fqdn = DISABLED
Fri Jan 15 21:31:45 2010 us=171000 management_addr = ''
Fri Jan 15 21:31:45 2010 us=171000 management_port = 0
Fri Jan 15 21:31:45 2010 us=171000 management_user_pass = ''
Fri Jan 15 21:31:45 2010 us=171000 management_log_history_cache = 250
Fri Jan 15 21:31:45 2010 us=171000 management_echo_buffer_size = 100
Fri Jan 15 21:31:45 2010 us=171000 management_write_peer_info_file = ''
Fri Jan 15 21:31:45 2010 us=171000 management_client_user = ''
Fri Jan 15 21:31:45 2010 us=171000 management_client_group = ''
Fri Jan 15 21:31:45 2010 us=203000 management_flags = 0
Fri Jan 15 21:31:45 2010 us=203000 shared_secret_file = ''
Fri Jan 15 21:31:45 2010 us=203000 key_direction = 0
Fri Jan 15 21:31:45 2010 us=203000 ciphername_defined = ENABLED
Fri Jan 15 21:31:45 2010 us=203000 ciphername = 'BF-CBC'
Fri Jan 15 21:31:45 2010 us=203000 authname_defined = ENABLED
Fri Jan 15 21:31:45 2010 us=203000 authname = 'SHA1'
Fri Jan 15 21:31:45 2010 us=203000 prng_hash = 'SHA1'
Fri Jan 15 21:31:45 2010 us=203000 prng_nonce_secret_len = 16
Fri Jan 15 21:31:45 2010 us=203000 keysize = 0
Fri Jan 15 21:31:45 2010 us=203000 engine = DISABLED
Fri Jan 15 21:31:45 2010 us=203000 replay = ENABLED
Fri Jan 15 21:31:45 2010 us=203000 mute_replay_warnings = ENABLED
Fri Jan 15 21:31:45 2010 us=203000 replay_window = 64
Fri Jan 15 21:31:45 2010 us=203000 replay_time = 15
Fri Jan 15 21:31:45 2010 us=203000 packet_id_file = ''
Fri Jan 15 21:31:45 2010 us=203000 use_iv = ENABLED
Fri Jan 15 21:31:45 2010 us=218000 test_crypto = DISABLED
Fri Jan 15 21:31:45 2010 us=218000 tls_server = DISABLED
Fri Jan 15 21:31:45 2010 us=218000 tls_client = ENABLED
Fri Jan 15 21:31:45 2010 us=218000 key_method = 2
Fri Jan 15 21:31:45 2010 us=218000 ca_file = 'ca.crt'
Fri Jan 15 21:31:45 2010 us=218000 ca_path = ''
Fri Jan 15 21:31:45 2010 us=218000 dh_file = ''
Fri Jan 15 21:31:45 2010 us=218000 cert_file = 'client.crt'
Fri Jan 15 21:31:45 2010 us=218000 priv_key_file = 'client.key'
Fri Jan 15 21:31:45 2010 us=218000 pkcs12_file = ''
Fri Jan 15 21:31:45 2010 us=218000 cryptoapi_cert = ''
Fri Jan 15 21:31:45 2010 us=218000 cipher_list = ''
Fri Jan 15 21:31:45 2010 us=218000 tls_verify = ''
Fri Jan 15 21:31:45 2010 us=218000 tls_remote = ''
Fri Jan 15 21:31:45 2010 us=218000 crl_file = ''
Fri Jan 15 21:31:45 2010 us=218000 ns_cert_type = 0
Fri Jan 15 21:31:45 2010 us=250000 remote_cert_ku = 0
Fri Jan 15 21:31:45 2010 us=250000 remote_cert_ku = 0
Fri Jan 15 21:31:45 2010 us=250000 remote_cert_ku = 0
Fri Jan 15 21:31:45 2010 us=250000 remote_cert_ku = 0
Fri Jan 15 21:31:45 2010 us=250000 remote_cert_ku = 0
Fri Jan 15 21:31:45 2010 us=250000 remote_cert_ku = 0
Fri Jan 15 21:31:45 2010 us=250000 remote_cert_ku = 0
Fri Jan 15 21:31:45 2010 us=250000 remote_cert_ku = 0
Fri Jan 15 21:31:45 2010 us=250000 remote_cert_ku = 0
Fri Jan 15 21:31:45 2010 us=250000 remote_cert_ku = 0
Fri Jan 15 21:31:45 2010 us=250000 remote_cert_ku = 0
Fri Jan 15 21:31:45 2010 us=250000 remote_cert_ku = 0
Fri Jan 15 21:31:45 2010 us=250000 remote_cert_ku = 0
Fri Jan 15 21:31:45 2010 us=250000 remote_cert_ku = 0
Fri Jan 15 21:31:45 2010 us=250000 remote_cert_ku = 0
Fri Jan 15 21:31:45 2010 us=250000 remote_cert_ku = 0
Fri Jan 15 21:31:45 2010 us=265000 remote_cert_eku = ''
Fri Jan 15 21:31:45 2010 us=265000 tls_timeout = 2
Fri Jan 15 21:31:45 2010 us=265000 renegotiate_bytes = 0
Fri Jan 15 21:31:45 2010 us=265000 renegotiate_packets = 0
Fri Jan 15 21:31:45 2010 us=265000 renegotiate_seconds = 3600
Fri Jan 15 21:31:45 2010 us=265000 handshake_window = 60
Fri Jan 15 21:31:45 2010 us=265000 transition_window = 3600
Fri Jan 15 21:31:45 2010 us=265000 single_session = DISABLED
Fri Jan 15 21:31:45 2010 us=265000 tls_exit = DISABLED
Fri Jan 15 21:31:45 2010 us=265000 tls_auth_file = ''
Fri Jan 15 21:31:45 2010 us=265000 pkcs11_protected_authentication = DISABLED
Fri Jan 15 21:31:45 2010 us=265000 pkcs11_protected_authentication = DISABLED
Fri Jan 15 21:31:45 2010 us=265000 pkcs11_protected_authentication = DISABLED
Fri Jan 15 21:31:45 2010 us=265000 pkcs11_protected_authentication = DISABLED
Fri Jan 15 21:31:45 2010 us=265000 pkcs11_protected_authentication = DISABLED
Fri Jan 15 21:31:45 2010 us=296000 pkcs11_protected_authentication = DISABLED
Fri Jan 15 21:31:45 2010 us=296000 pkcs11_protected_authentication = DISABLED
Fri Jan 15 21:31:45 2010 us=296000 pkcs11_protected_authentication = DISABLED
Fri Jan 15 21:31:45 2010 us=296000 pkcs11_protected_authentication = DISABLED
Fri Jan 15 21:31:45 2010 us=296000 pkcs11_protected_authentication = DISABLED
Fri Jan 15 21:31:45 2010 us=296000 pkcs11_protected_authentication = DISABLED
Fri Jan 15 21:31:45 2010 us=296000 pkcs11_protected_authentication = DISABLED
Fri Jan 15 21:31:45 2010 us=296000 pkcs11_protected_authentication = DISABLED
Fri Jan 15 21:31:45 2010 us=296000 pkcs11_protected_authentication = DISABLED
Fri Jan 15 21:31:45 2010 us=296000 pkcs11_protected_authentication = DISABLED
Fri Jan 15 21:31:45 2010 us=296000 pkcs11_protected_authentication = DISABLED
Fri Jan 15 21:31:45 2010 us=296000 pkcs11_private_mode = 00000000
Fri Jan 15 21:31:45 2010 us=312000 pkcs11_private_mode = 00000000
Fri Jan 15 21:31:45 2010 us=312000 pkcs11_private_mode = 00000000
Fri Jan 15 21:31:45 2010 us=312000 pkcs11_private_mode = 00000000
Fri Jan 15 21:31:45 2010 us=312000 pkcs11_private_mode = 00000000
Fri Jan 15 21:31:45 2010 us=312000 pkcs11_private_mode = 00000000
Fri Jan 15 21:31:45 2010 us=312000 pkcs11_private_mode = 00000000
Fri Jan 15 21:31:45 2010 us=312000 pkcs11_private_mode = 00000000
Fri Jan 15 21:31:45 2010 us=312000 pkcs11_private_mode = 00000000
Fri Jan 15 21:31:45 2010 us=312000 pkcs11_private_mode = 00000000
Fri Jan 15 21:31:45 2010 us=312000 pkcs11_private_mode = 00000000
Fri Jan 15 21:31:45 2010 us=312000 pkcs11_private_mode = 00000000
Fri Jan 15 21:31:45 2010 us=312000 pkcs11_private_mode = 00000000
Fri Jan 15 21:31:45 2010 us=312000 pkcs11_private_mode = 00000000
Fri Jan 15 21:31:45 2010 us=312000 pkcs11_private_mode = 00000000
Fri Jan 15 21:31:45 2010 us=312000 pkcs11_private_mode = 00000000
Fri Jan 15 21:31:45 2010 us=343000 pkcs11_cert_private = DISABLED
Fri Jan 15 21:31:45 2010 us=343000 pkcs11_cert_private = DISABLED
Fri Jan 15 21:31:45 2010 us=343000 pkcs11_cert_private = DISABLED
Fri Jan 15 21:31:45 2010 us=343000 pkcs11_cert_private = DISABLED
Fri Jan 15 21:31:45 2010 us=343000 pkcs11_cert_private = DISABLED
Fri Jan 15 21:31:45 2010 us=343000 pkcs11_cert_private = DISABLED
Fri Jan 15 21:31:45 2010 us=343000 pkcs11_cert_private = DISABLED
Fri Jan 15 21:31:45 2010 us=343000 pkcs11_cert_private = DISABLED
Fri Jan 15 21:31:45 2010 us=343000 pkcs11_cert_private = DISABLED
Fri Jan 15 21:31:45 2010 us=343000 pkcs11_cert_private = DISABLED
Fri Jan 15 21:31:45 2010 us=343000 pkcs11_cert_private = DISABLED
Fri Jan 15 21:31:45 2010 us=343000 pkcs11_cert_private = DISABLED
Fri Jan 15 21:31:45 2010 us=343000 pkcs11_cert_private = DISABLED
Fri Jan 15 21:31:45 2010 us=343000 pkcs11_cert_private = DISABLED
Fri Jan 15 21:31:45 2010 us=343000 pkcs11_cert_private = DISABLED
Fri Jan 15 21:31:45 2010 us=375000 pkcs11_cert_private = DISABLED
Fri Jan 15 21:31:45 2010 us=375000 pkcs11_pin_cache_period = -1
Fri Jan 15 21:31:45 2010 us=375000 pkcs11_id = ''
Fri Jan 15 21:31:45 2010 us=375000 pkcs11_id_management = DISABLED
Fri Jan 15 21:31:45 2010 us=375000 server_network = 0.0.0.0
Fri Jan 15 21:31:45 2010 us=375000 server_netmask = 0.0.0.0
Fri Jan 15 21:31:45 2010 us=375000 server_bridge_ip = 0.0.0.0
Fri Jan 15 21:31:45 2010 us=375000 server_bridge_netmask = 0.0.0.0
Fri Jan 15 21:31:45 2010 us=375000 server_bridge_pool_start = 0.0.0.0
Fri Jan 15 21:31:45 2010 us=375000 server_bridge_pool_end = 0.0.0.0
Fri Jan 15 21:31:45 2010 us=375000 ifconfig_pool_defined = DISABLED
Fri Jan 15 21:31:45 2010 us=375000 ifconfig_pool_start = 0.0.0.0
Fri Jan 15 21:31:45 2010 us=375000 ifconfig_pool_end = 0.0.0.0
Fri Jan 15 21:31:45 2010 us=375000 ifconfig_pool_netmask = 0.0.0.0
Fri Jan 15 21:31:45 2010 us=375000 ifconfig_pool_persist_filename = ''
Fri Jan 15 21:31:45 2010 us=390000 ifconfig_pool_persist_refresh_freq = 600
Fri Jan 15 21:31:45 2010 us=390000 n_bcast_buf = 256
Fri Jan 15 21:31:45 2010 us=390000 tcp_queue_limit = 64
Fri Jan 15 21:31:45 2010 us=390000 real_hash_size = 256
Fri Jan 15 21:31:45 2010 us=390000 virtual_hash_size = 256
Fri Jan 15 21:31:45 2010 us=390000 client_connect_script = ''
Fri Jan 15 21:31:45 2010 us=390000 learn_address_script = ''
Fri Jan 15 21:31:45 2010 us=390000 client_disconnect_script = ''
Fri Jan 15 21:31:45 2010 us=390000 client_config_dir = ''
Fri Jan 15 21:31:45 2010 us=390000 ccd_exclusive = DISABLED
Fri Jan 15 21:31:45 2010 us=390000 tmp_dir = ''
Fri Jan 15 21:31:45 2010 us=390000 push_ifconfig_defined = DISABLED
Fri Jan 15 21:31:45 2010 us=390000 push_ifconfig_local = 0.0.0.0
Fri Jan 15 21:31:45 2010 us=390000 push_ifconfig_remote_netmask = 0.0.0.0
Fri Jan 15 21:31:45 2010 us=421000 enable_c2c = DISABLED
Fri Jan 15 21:31:45 2010 us=421000 duplicate_cn = DISABLED
Fri Jan 15 21:31:45 2010 us=421000 cf_max = 0
Fri Jan 15 21:31:45 2010 us=421000 cf_per = 0
Fri Jan 15 21:31:45 2010 us=421000 max_clients = 1024
Fri Jan 15 21:31:45 2010 us=421000 max_routes_per_client = 256
Fri Jan 15 21:31:45 2010 us=421000 auth_user_pass_verify_script = ''
Fri Jan 15 21:31:45 2010 us=421000 auth_user_pass_verify_script_via_file = DISABLED
Fri Jan 15 21:31:45 2010 us=421000 ssl_flags = 0
Fri Jan 15 21:31:45 2010 us=421000 client = ENABLED
Fri Jan 15 21:31:45 2010 us=421000 pull = ENABLED
Fri Jan 15 21:31:45 2010 us=421000 auth_user_pass_file = ''
Fri Jan 15 21:31:45 2010 us=421000 show_net_up = DISABLED
Fri Jan 15 21:31:45 2010 us=421000 route_method = 0
Fri Jan 15 21:31:45 2010 us=421000 ip_win32_defined = DISABLED
Fri Jan 15 21:31:45 2010 us=421000 ip_win32_type = 3
Fri Jan 15 21:31:45 2010 us=437000 dhcp_masq_offset = 0
Fri Jan 15 21:31:45 2010 us=437000 dhcp_lease_time = 31536000
Fri Jan 15 21:31:45 2010 us=437000 tap_sleep = 0
Fri Jan 15 21:31:45 2010 us=437000 dhcp_options = DISABLED
Fri Jan 15 21:31:45 2010 us=437000 dhcp_renew = DISABLED
Fri Jan 15 21:31:45 2010 us=437000 dhcp_pre_release = DISABLED
Fri Jan 15 21:31:45 2010 us=437000 dhcp_release = DISABLED
Fri Jan 15 21:31:45 2010 us=437000 domain = ''
Fri Jan 15 21:31:45 2010 us=437000 netbios_scope = ''
Fri Jan 15 21:31:45 2010 us=437000 netbios_node_type = 0
Fri Jan 15 21:31:45 2010 us=437000 disable_nbt = DISABLED
Fri Jan 15 21:31:45 2010 us=437000 OpenVPN 2.1.1 i686-pc-mingw32 built on Dec 11 2009
Fri Jan 15 21:31:45 2010 us=437000 WARNING: No server certificate verification method has been enabled.See http://openvpn.net/howto.html#mitm for more info.
Fri Jan 15 21:31:45 2010 us=453000 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Fri Jan 15 21:31:45 2010 us=593000 LZO compression initialized
Fri Jan 15 21:31:45 2010 us=593000 Control Channel MTU parms [ L:1544 D:140 EF:40 EB:0 ET:0 EL:0 ]
Fri Jan 15 21:31:45 2010 us=593000 Data Channel MTU parms [ L:1544 D:1450 EF:44 EB:135 ET:0 EL:0 AF:3/1 ]
Fri Jan 15 21:31:45 2010 us=593000 Local Options String: 'V4,dev-type tun,link-mtu 1544,tun-mtu 1500,proto TCPv4_CLIENT,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Fri Jan 15 21:31:45 2010 us=593000 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1544,tun-mtu 1500,proto TCPv4_SERVER,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Fri Jan 15 21:31:45 2010 us=593000 Local Options hash (VER=V4): '69109d17'
Fri Jan 15 21:31:45 2010 us=593000 Expected Remote Options hash (VER=V4): 'c0103fa8'
Fri Jan 15 21:31:45 2010 us=609000 Attempting to establish TCP connection with 10.0.0.172:80
Fri Jan 15 21:31:45 2010 us=921000 TCP connection established with 10.0.0.172:80
Fri Jan 15 21:31:45 2010 us=921000 Send to HTTP proxy: 'CONNECT 220.114.28.33:443 HTTP/1.0'
Fri Jan 15 21:31:47 2010 us=359000 recv_line: TCP port read failed on recv()
Fri Jan 15 21:31:47 2010 us=359000 TCP/UDP: Closing socket
Fri Jan 15 21:31:47 2010 us=359000 SIGTERM received, process exiting
服务端配置文件:
port 443
proto tcp-server
dev tun
server 192.168.10.0 255.255.255.0
keepalive 20 180
ca ca.crt
cert server.crt
key server.key
dh dh1024.pem
push "redirect-gateway def1"
push "dhcp-option DNS 192.168.10.1"
mode server
tls-server
status C:\\Program Files\\OpenVPN\\log\\openvpn-status.log
comp-lzo
verb 4
客户端配置文件:
client
dev tun
proto tcp-client
remote 220.114.28.33 443
resolv-retry infinite
nobind
http-proxy 10.0.0.172 80
mute-replay-warnings
ca ca.crt
cert client.crt
key client.key
comp-lzo
verb 4
status openvpn-status.log
如果不用拔 号连接我直接去掉了http-proxy 10.0.0.172 80这断。这样可以连上。
求高手解答下,我这个为什么拔号上不了呢。
我拔号端直接为WAP拔号,没有安装其它软件。 Fri Jan 15 22:47:46 2010 us=859000 TCP/UDP: Closing socket
Fri Jan 15 22:47:53 2010 us=687000 MULTI: multi_create_instance called
Fri Jan 15 22:47:53 2010 us=687000 Re-using SSL/TLS context
Fri Jan 15 22:47:53 2010 us=687000 LZO compression initialized
Fri Jan 15 22:47:53 2010 us=687000 Control Channel MTU parms [ L:1544 D:140 EF:40 EB:0 ET:0 EL:0 ]
Fri Jan 15 22:47:53 2010 us=687000 Data Channel MTU parms [ L:1544 D:1450 EF:44 EB:135 ET:0 EL:0 AF:3/1 ]
Fri Jan 15 22:47:53 2010 us=687000 Local Options String: 'V4,dev-type tun,link-mtu 1544,tun-mtu 1500,proto TCPv4_SERVER,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Fri Jan 15 22:47:53 2010 us=687000 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1544,tun-mtu 1500,proto TCPv4_CLIENT,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Fri Jan 15 22:47:53 2010 us=687000 Local Options hash (VER=V4): 'c0103fa8'
Fri Jan 15 22:47:53 2010 us=687000 Expected Remote Options hash (VER=V4): '69109d17'
Fri Jan 15 22:47:53 2010 us=687000 TCP connection established with 123.147.128.34:56109
Fri Jan 15 22:47:53 2010 us=687000 Socket Buffers: R= S=
Fri Jan 15 22:47:53 2010 us=687000 TCPv4_SERVER link local:
Fri Jan 15 22:47:53 2010 us=687000 TCPv4_SERVER link remote: 123.147.128.34:56109
Fri Jan 15 22:47:54 2010 us=437000 123.147.128.34:56109 WARNING: Bad encapsulated packet length from peer (3338), which must be > 0 and <= 1544 -- please ensure that --tun-mtu or --link-mtu is equal on both peers -- this condition could also indicate a possible active attack on the TCP link --
Fri Jan 15 22:47:54 2010 us=437000 123.147.128.34:56109 Connection reset, restarting
Fri Jan 15 22:47:54 2010 us=437000 123.147.128.34:56109 SIGUSR1 received, client-instance restarting
Fri Jan 15 22:47:54 2010 us=437000 TCP/UDP: Closing socket
这断为服务器的信息。其中有断是服务器让客户端重启服务是怎么回事。求高人解答。 没有人解答?》 http-proxy 10.0.0.17280 mute-replay-warnings
改为
http-proxy 10.0.0.17280http-proxy-timeout20 http-proxy-retry
http-proxy-option AGENT "NokiaN90-1/3.0545.5.1 Series60/2.8 Profile/MIDP-2.0 Configuration/CLDC-1.1"
mute-replay-warnings
试试
[ Edited bysdbz001 on 2010-1-16 21:00 ] WARNING: Bad encapsulated packet length from peer (3338), which must be > 0 and <= 1544 -- please ensure that --tun-mtu or --link-mtu is equal on both peers -- this condition could also indicate a possible active attack on the TCP link --
这断信息我明白就是不知道如何处理。我郁闷了。。
http-proxy 10.0.0.17280 mute-replay-warnings
改为
http-proxy 10.0.0.17280http-proxy-timeout20 http-proxy-retry
http-proxy-option AGENT "NokiaN90-1/3.0545.5.1 Series60/2.8 Profile/MIDP-2.0 Configuration/CLDC-1.1"
mute-replay-warnings
试试
谢谢楼上的朋友。我明天测试下看,现在机器不在这里 http-proxy 10.0.0.17280http-proxy-timeout20 http-proxy-retry
http-proxy-option AGENT "NokiaN90-1/3.0545.5.1 Series60/2.8 Profile/MIDP-2.0 Configuration/CLDC-1.1"
mute-replay-warnings
有点儿明白这断意思,如果不改为被识别为手机,那么有可能移动那边会有问题。。明天测试,再次谢谢楼上的 经过测试还是不行,根本联不上网络了,主机也没有任何反应了。 Thu Jan 28 13:08:18 2010 us=296000 dhcp_renew = DISABLED
Thu Jan 28 13:08:18 2010 us=296000 dhcp_pre_release = DISABLED
Thu Jan 28 13:08:18 2010 us=296000 dhcp_release = DISABLED
Thu Jan 28 13:08:18 2010 us=296000 domain = ''
Thu Jan 28 13:08:18 2010 us=296000 netbios_scope = ''
Thu Jan 28 13:08:18 2010 us=296000 netbios_node_type = 0
Thu Jan 28 13:08:18 2010 us=296000 disable_nbt = DISABLED
Thu Jan 28 13:08:18 2010 us=296000 OpenVPN 2.1.1 i686-pc-mingw32 built on Dec 11 2009
Thu Jan 28 13:08:18 2010 us=296000 WARNING: No server certificate verification method has been enabled.See http://openvpn.net/howto.html#mitm for more info.
Thu Jan 28 13:08:18 2010 us=328000 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Thu Jan 28 13:08:18 2010 us=609000 LZO compression initialized
Thu Jan 28 13:08:18 2010 us=609000 Control Channel MTU parms [ L:1544 D:140 EF:40 EB:0 ET:0 EL:0 ]
Thu Jan 28 13:08:18 2010 us=625000 Data Channel MTU parms [ L:1544 D:1450 EF:44 EB:135 ET:0 EL:0 AF:3/1 ]
Thu Jan 28 13:08:18 2010 us=625000 Local Options String: 'V4,dev-type tun,link-mtu 1544,tun-mtu 1500,proto TCPv4_CLIENT,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Thu Jan 28 13:08:18 2010 us=625000 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1544,tun-mtu 1500,proto TCPv4_SERVER,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Thu Jan 28 13:08:18 2010 us=625000 Local Options hash (VER=V4): '69109d17'
Thu Jan 28 13:08:18 2010 us=625000 Expected Remote Options hash (VER=V4): 'c0103fa8'
Thu Jan 28 13:08:18 2010 us=625000 Attempting to establish TCP connection with 10.0.0.172:80
Thu Jan 28 13:08:19 2010 us=31000 TCP connection established with 10.0.0.172:80
Thu Jan 28 13:08:19 2010 us=31000 Send to HTTP proxy: 'CONNECT 220.114.28.33:443 HTTP/1.0'
Thu Jan 28 13:08:20 2010 us=234000 recv_line: TCP port read failed on recv()
Thu Jan 28 13:08:20 2010 us=234000 TCP/UDP: Closing socket
Thu Jan 28 13:08:20 2010 us=234000 SIGUSR1 received, process restarting
Thu Jan 28 13:08:20 2010 us=234000 Restart pause, 5 second(s)
Thu Jan 28 13:08:25 2010 us=234000 WARNING: No server certificate verification method has been enabled.See http://openvpn.net/howto.html#mitm for more info.
Thu Jan 28 13:08:25 2010 us=234000 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Thu Jan 28 13:08:25 2010 us=234000 LZO compression initialized
Thu Jan 28 13:08:25 2010 us=234000 Control Channel MTU parms [ L:1544 D:140 EF:40 EB:0 ET:0 EL:0 ]
Thu Jan 28 13:08:25 2010 us=234000 Data Channel MTU parms [ L:1544 D:1450 EF:44 EB:135 ET:0 EL:0 AF:3/1 ]
Thu Jan 28 13:08:25 2010 us=234000 Local Options String: 'V4,dev-type tun,link-mtu 1544,tun-mtu 1500,proto TCPv4_CLIENT,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Thu Jan 28 13:08:25 2010 us=234000 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1544,tun-mtu 1500,proto TCPv4_SERVER,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Thu Jan 28 13:08:25 2010 us=234000 Local Options hash (VER=V4): '69109d17'
Thu Jan 28 13:08:25 2010 us=234000 Expected Remote Options hash (VER=V4): 'c0103fa8'
Thu Jan 28 13:08:25 2010 us=234000 Attempting to establish TCP connection with 10.0.0.172:80
Thu Jan 28 13:08:25 2010 us=609000 TCP connection established with 10.0.0.172:80
Thu Jan 28 13:08:25 2010 us=609000 Send to HTTP proxy: 'CONNECT 220.114.28.33:443 HTTP/1.0'
Thu Jan 28 13:08:26 2010 us=609000 recv_line: TCP port read failed on recv()
Thu Jan 28 13:08:26 2010 us=609000 TCP/UDP: Closing socket
Thu Jan 28 13:08:26 2010 us=609000 SIGUSR1 received, process restarting
Thu Jan 28 13:08:26 2010 us=609000 Restart pause, 5 second(s)
Thu Jan 28 13:08:31 2010 us=609000 WARNING: No server certificate verification method has been enabled.See http://openvpn.net/howto.html#mitm for more info.
Thu Jan 28 13:08:31 2010 us=609000 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Thu Jan 28 13:08:31 2010 us=609000 LZO compression initialized
Thu Jan 28 13:08:31 2010 us=609000 Control Channel MTU parms [ L:1544 D:140 EF:40 EB:0 ET:0 EL:0 ]
Thu Jan 28 13:08:31 2010 us=609000 Data Channel MTU parms [ L:1544 D:1450 EF:44 EB:135 ET:0 EL:0 AF:3/1 ]
Thu Jan 28 13:08:31 2010 us=625000 Local Options String: 'V4,dev-type tun,link-mtu 1544,tun-mtu 1500,proto TCPv4_CLIENT,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Thu Jan 28 13:08:31 2010 us=625000 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1544,tun-mtu 1500,proto TCPv4_SERVER,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Thu Jan 28 13:08:31 2010 us=625000 Local Options hash (VER=V4): '69109d17'
Thu Jan 28 13:08:31 2010 us=625000 Expected Remote Options hash (VER=V4): 'c0103fa8'
Thu Jan 28 13:08:31 2010 us=625000 Attempting to establish TCP connection with 10.0.0.172:80
Thu Jan 28 13:08:31 2010 us=953000 TCP connection established with 10.0.0.172:80
Thu Jan 28 13:08:31 2010 us=953000 Send to HTTP proxy: 'CONNECT 220.114.28.33:443 HTTP/1.0'
Thu Jan 28 13:08:32 2010 us=953000 recv_line: TCP port read failed on recv()
Thu Jan 28 13:08:32 2010 us=953000 TCP/UDP: Closing socket
Thu Jan 28 13:08:32 2010 us=953000 SIGUSR1 received, process restarting
Thu Jan 28 13:08:32 2010 us=953000 Restart pause, 5 second(s)
Thu Jan 28 13:08:37 2010 us=953000 WARNING: No server certificate verification method has been enabled.See http://openvpn.net/howto.html#mitm for more info.
Thu Jan 28 13:08:37 2010 us=953000 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
将10.0.0.172更换后这样子的。。高手指点下 人呢,帮帮忙啊
页:
[1]