Я настроил свой OpenVPN сервер. Но возникла проблема: не могу подключиться через SSH тунел на Linux. На Windows подключение происходит без проблем через SSH тунель, а на Linux не удается. Логи OpenVPN:
Fri Mar 16 11:25:13 2018 OpenVPN 2.3.2 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [PKCS11] [eurephia] [MH] [IPv6] built on Jun 22 2017
Enter Auth Username:[HIDE]
Enter Auth Password:
Fri Mar 16 11:25:20 2018 Control Channel Authentication: tls-auth using INLINE static key file
Fri Mar 16 11:25:20 2018 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Fri Mar 16 11:25:20 2018 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Fri Mar 16 11:25:20 2018 Socket Buffers: R=[87380->200000] S=[16384->200000]
Fri Mar 16 11:25:20 2018 Attempting to establish TCP connection with [AF_INET]127.0.0.1:3128 [nonblock]
Fri Mar 16 11:25:20 2018 TCP connection established with [AF_INET]127.0.0.1:3128
Fri Mar 16 11:25:20 2018 Send to HTTP proxy: 'CONNECT xx.xx.xx.xx:443 HTTP/1.0'
Fri Mar 16 11:25:20 2018 HTTP proxy returned: 'HTTP/1.1 200 OK'
Fri Mar 16 11:25:22 2018 TCPv4_CLIENT link local: [undef]
Fri Mar 16 11:25:22 2018 TCPv4_CLIENT link remote: [AF_INET]127.0.0.1:3128
Fri Mar 16 11:25:23 2018 TLS: Initial packet from [AF_INET]127.0.0.1:3128, sid=c7a7cb46 7c3fed24
Fri Mar 16 11:25:23 2018 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Fri Mar 16 11:25:23 2018 Connection reset, restarting [0]
Fri Mar 16 11:25:23 2018 SIGUSR1[soft,connection-reset] received, process restarting
Fri Mar 16 11:25:23 2018 Restart pause, 5 second(s)
Сам SSH тунел запускаю с помощью
~$ ssh -o StrictHostKeyChecking=no -L 0.0.0.0:3128:XXX:3128 -N -v -p 22 LOGIN@SERVER
OpenSSH_6.6.1, OpenSSL 1.0.1f 6 Jan 2014
debug1: Reading configuration data /home/XXX/.ssh/config
debug1: /home/XXX/.ssh/config line 25: Applying options for SERVER
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: /etc/ssh/ssh_config line 19: Applying options for *
debug1: Connecting to SERVER [xx.xx.xx.xx] port 22.
debug1: Connection established.
debug1: identity file /home/hacker/.ssh/MasterKey type 1
debug1: identity file /home/hacker/.ssh/MasterKey-cert type -1
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_6.6.1p1 Ubuntu-2ubuntu2.10
debug1: Remote protocol version 2.0, remote software version OpenSSH_6.6.1p1 Ubuntu-2ubuntu2.8
debug1: match: OpenSSH_6.6.1p1 Ubuntu-2ubuntu2.8 pat OpenSSH_6.6.1* compat 0x04000000
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: server->client aes128-ctr hmac-md5-etm@openssh.com none
debug1: kex: client->server aes128-ctr hmac-md5-etm@openssh.com none
debug1: sending SSH2_MSG_KEX_ECDH_INIT
debug1: expecting SSH2_MSG_KEX_ECDH_REPLY
debug1: Server host key: ECDSA 0d:61:e2:c9:1e:cf:c6:c5:9a:5b:bb:8e:bf:d2:72:ff
debug1: Host 'SERVER' is known and matches the ECDSA host key.
debug1: Found key in /home/XXX/.ssh/known_hosts:1
debug1: ssh_ecdsa_verify: signature correct
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: SSH2_MSG_SERVICE_REQUEST sent
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue: publickey,password
debug1: Next authentication method: publickey
debug1: Offering RSA public key: /home/XXX/.ssh/MasterKey
debug1: Server accepts key: pkalg ssh-rsa blen 279
debug1: Authentication succeeded (publickey).
Authenticated to SERVER ([xx.xx.xx.xx]:22).
debug1: Local connections to 0.0.0.0:3128 forwarded to remote address XXX:3128
debug1: Local forwarding listening on 0.0.0.0 port 3128.
debug1: channel 0: new [port listener]
debug1: Requesting no-more-sessions@openssh.com
debug1: Entering interactive session.
debug1: Connection to port 3128 forwarding to SERVER port 3128 requested.
debug1: channel 1: new [direct-tcpip]
Конфиг файл:
# Automatically generated OpenVPN client config file
# Generated on Thu Mar 15 08:05:39 2018 by SERVER
# Default Cipher
cipher AES-256-CBC
setenv FORWARD_COMPATIBLE 1
client
server-poll-timeout 4
nobind
remote xx.xx.xx.xx 443 tcp
http-proxy 127.0.0.1 3128
http-proxy-retry
http-proxy-option AGENT Mozilla/5.0+(Windows;+U;+Windows+NT+5.0;+en-GB;+rv:1.7.6)+Gecko/20050226+Firefox/1.0.1
dev tun
dev-type tun
ns-cert-type server
setenv opt tls-version-min 1.0 or-highest
reneg-sec 604800
sndbuf 100000
rcvbuf 100000
auth-user-pass
comp-lzo no
verb 3
setenv PUSH_PEER_INFO
<ca>
SERTIFICATE
</ca>
<cert>
CERTIFICATE
</cert>
<key>
PRIVATE KEY
</key>
key-direction 1
<tls-auth>
OpenVPN Static key
</tls-auth>
В чем может быть проблема?