Здравствуйте. Поднял OpenVPN сервер с помощью streisand на Google Cloud. Пытаюсь подключаться с винды 7, скачал последний опенвпн гуй, закинул конфиг и ловлю ошибку:
Tue Mar 26 17:28:36 2019 OpenVPN 2.4.7 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [AEAD] built on Feb 21 2019
Tue Mar 26 17:28:36 2019 Windows version 6.1 (Windows 7) 64bit
Tue Mar 26 17:28:36 2019 library versions: OpenSSL 1.1.0j 20 Nov 2018, LZO 2.10
Tue Mar 26 17:28:36 2019 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:25343
Tue Mar 26 17:28:36 2019 Need hold release from management interface, waiting...
Tue Mar 26 17:28:36 2019 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:25343
Tue Mar 26 17:28:36 2019 MANAGEMENT: CMD 'state on'
Tue Mar 26 17:28:36 2019 MANAGEMENT: CMD 'log all on'
Tue Mar 26 17:28:36 2019 MANAGEMENT: CMD 'echo all on'
Tue Mar 26 17:28:36 2019 MANAGEMENT: CMD 'bytecount 5'
Tue Mar 26 17:28:36 2019 MANAGEMENT: CMD 'hold off'
Tue Mar 26 17:28:36 2019 MANAGEMENT: CMD 'hold release'
Tue Mar 26 17:28:36 2019 Outgoing Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Tue Mar 26 17:28:36 2019 Outgoing Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Tue Mar 26 17:28:36 2019 Incoming Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Tue Mar 26 17:28:36 2019 Incoming Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Tue Mar 26 17:28:36 2019 TCP/UDP: Preserving recently used remote address: [AF_INET]*IP сервера*:443
Tue Mar 26 17:28:36 2019 Socket Buffers: R=[8192->8192] S=[8192->8192]
Tue Mar 26 17:28:36 2019 Attempting to establish TCP connection with [AF_INET]*IP сервера*:443 [nonblock]
Tue Mar 26 17:28:36 2019 MANAGEMENT: >STATE:1553610516,TCP_CONNECT,,,,,,
Tue Mar 26 17:28:37 2019 TCP connection established with [AF_INET]*IP сервера*:443
Tue Mar 26 17:28:37 2019 TCP_CLIENT link local: (not bound)
Tue Mar 26 17:28:37 2019 TCP_CLIENT link remote: [AF_INET]*IP сервера*:443
Tue Mar 26 17:28:37 2019 MANAGEMENT: >STATE:1553610517,WAIT,,,,,,
Tue Mar 26 17:28:37 2019 MANAGEMENT: >STATE:1553610517,AUTH,,,,,,
Tue Mar 26 17:28:37 2019 TLS: Initial packet from [AF_INET]*IP сервера*:443, sid=1071d365 8b1f5b7a
Tue Mar 26 17:28:38 2019 VERIFY OK: depth=1, C=US, ST=California, L=Beverly Hills, O=ACME CORPORATION, OU=Anvil Department, CN=ca-certificate
Tue Mar 26 17:28:38 2019 VERIFY KU OK
Tue Mar 26 17:28:38 2019 Validating certificate extended key usage
Tue Mar 26 17:28:38 2019 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
Tue Mar 26 17:28:38 2019 VERIFY EKU OK
Tue Mar 26 17:28:38 2019 VERIFY X509NAME OK: C=US, ST=California, L=Beverly Hills, O=ACME CORPORATION, OU=Anvil Department, CN=moon-venture-tiger
Tue Mar 26 17:28:38 2019 VERIFY OK: depth=0, C=US, ST=California, L=Beverly Hills, O=ACME CORPORATION, OU=Anvil Department, CN=moon-venture-tiger
Tue Mar 26 17:28:38 2019 Connection reset, restarting [0]
Tue Mar 26 17:28:38 2019 SIGUSR1[soft,connection-reset] received, process restarting
Tue Mar 26 17:28:38 2019 MANAGEMENT: >STATE:1553610518,RECONNECTING,connection-reset,,,,,
Tue Mar 26 17:28:38 2019 Restart pause, 5 second(s)
Конфиг клиента:
client
remote *IP сервера* 443
proto tcp
dev tun
cipher AES-256-CBC
auth SHA256
resolv-retry infinite
nobind
persist-key
persist-tun
remote-cert-tls server
verify-x509-name moon-venture-tiger name
tls-version-min 1.2
compress
verb 3
route *IP сервера* 255.255.255.255 net_gateway
*Тут дальше сертификаты*
Куда копать?
