LINUX.ORG.RU
ФорумSecurity

OpenVPN - помогите разобраться

 


0

1

Здравствуйте. Решил недавно арендовать VPS (Centos 7 / KVM) и поднять на нем openvpn. Однако нормальных статьей на эту тему не нашел, а сам я чайник, поднял на основе автоматического скрипта: https://github.com/Angristan/OpenVPN-install

Из за того что в нашей стране заблокировано практически все и очень жесткий контроль, работает только TCP и то порт подобрал 7654 для надежности.

С ios и андроид телефонов все ок. Коннектится быстро и без проблем.

Теперь проблема вот в чем: С компа windows 7/10 и macos никак не хочет коннектится. У меня на windows 10 еще стоит expressvpn (который как выяснилось тоже на базе openvpn) и когда он подключен то иногда коннетится мой созданный профиль ovpn , а вот самостоятельно никак.

Лог с работающего VPN на iOS:

2018-06-14 23:06:48 Connecting to [185.211.246.254]:9876 (185.211.246.254) via TCPv4

2018-06-14 23:06:48 EVENT: CONNECTING

2018-06-14 23:06:48 Tunnel Options:V4,dev-type tun,link-mtu 1571,tun-mtu 1500,proto TCPv4_CLIENT,keydir 1,cipher AES-128-CBC,auth SHA256,keysize 128,tls-auth,key-method 2,tls-client

2018-06-14 23:06:48 Creds: UsernameEmpty/PasswordEmpty

2018-06-14 23:06:48 Peer Info:

IV_GUI_VER=net.openvpn.connect.ios 1.2.9-0

IV_VER=3.2

IV_PLAT=ios

IV_NCP=2

IV_TCPNL=1

IV_PROTO=2

IV_IPv6=0

IV_AUTO_SESS=1

2018-06-14 23:06:48 VERIFY OK : depth=1

cert. version : 3

serial number : F1:53:7F:6B:90:DE:18:D5

issuer name : CN=cn_AOht7vBOQqi8sQP2

subject name : CN=cn_AOht7vBOQqi8sQP2

issued on : 2018-06-12 23:03:17

expires on : 2028-06-09 23:03:17

signed using : RSA with SHA-256

RSA key size : 2048 bits

basic constraints : CA=true

key usage : Key Cert Sign, CRL Sign

2018-06-14 23:06:48 VERIFY OK : depth=0

cert. version : 3

serial number : 16:A2:93:35:59:65:65:93:7C:64:91:41:C0:D9:E0:79

issuer name : CN=cn_AOht7vBOQqi8sQP2

subject name : CN=server_FJeTp2kp8adTaTvQ

issued on : 2018-06-12 23:04:08

expires on : 2028-06-09 23:04:08

signed using : RSA with SHA-256

RSA key size : 2048 bits

basic constraints : CA=false

subject alt name : server_FJeTp2kp8adTaTvQ

key usage : Digital Signature, Key Encipherment

ext key usage : TLS Web Server Authentication

2018-06-14 23:06:49 SSL Handshake: TLSv1.2/TLS-DHE-RSA-WITH-AES-128-GCM-SHA256

2018-06-14 23:06:49 Session is ACTIVE

2018-06-14 23:06:49 EVENT: GET_CONFIG

2018-06-14 23:06:49 Sending PUSH_REQUEST to server...

2018-06-14 23:06:49 OPTIONS:

0 [dhcp-option] [DNS] [8.8.8.8]

1 [dhcp-option] [DNS] [8.8.4.4]

2 [redirect-gateway] [def1] [bypass-dhcp]

3 [route-gateway] [10.8.0.1]

4 [topology] [subnet]

5 [ping] [10]

6 [ping-restart] [120]

7 [ifconfig] [10.8.0.2] [255.255.255.0]

8 [peer-id] [0]

9 [cipher] [AES-256-GCM]

10 [block-ipv6]

2018-06-14 23:06:49 PROTOCOL OPTIONS:

cipher: AES-256-GCM

digest: SHA256

compress: NONE

peer ID: 0

2018-06-14 23:06:49 EVENT: ASSIGN_IP

2018-06-14 23:06:49 NIP: preparing TUN network settings

2018-06-14 23:06:49 NIP: init TUN network settings with endpoint: 185.211.246.254

2018-06-14 23:06:49 NIP: adding IPv4 address to network settings 10.8.0.2/255.255.255.0

2018-06-14 23:06:49 NIP: adding (included) IPv4 route 10.8.0.0/24

2018-06-14 23:06:49 NIP: redirecting all IPv4 traffic to TUN interface

2018-06-14 23:06:49 NIP: adding DNS 8.8.8.8

2018-06-14 23:06:49 NIP: adding DNS 8.8.4.4

2018-06-14 23:06:49 NIP: blocking all IPv6 traffic - not supported

2018-06-14 23:06:49 Connected via NetworkExtensionTUN

2018-06-14 23:06:49 EVENT: CONNECTED @185.211.246.254:9876 (185.211.246.254) via /TCPv4 on NetworkExtensionTUN/10.8.0.2/ gw=[/]

Вот лог windows 10 без express vpn:

Thu Jun 14 22:55:22 2018 OpenVPN 2.4.6 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [AEAD] built on Apr 26 2018

Thu Jun 14 22:55:22 2018 Windows version 6.2 (Windows 8 or greater) 64bit

Thu Jun 14 22:55:22 2018 library versions: OpenSSL 1.1.0h 27 Mar 2018, LZO 2.10

Thu Jun 14 22:55:22 2018 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:25347

Thu Jun 14 22:55:22 2018 Need hold release from management interface, waiting...

Thu Jun 14 22:55:22 2018 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:25347

Thu Jun 14 22:55:22 2018 MANAGEMENT: CMD 'state on'

Thu Jun 14 22:55:22 2018 MANAGEMENT: CMD 'log all on'

Thu Jun 14 22:55:22 2018 MANAGEMENT: CMD 'echo all on'

Thu Jun 14 22:55:22 2018 MANAGEMENT: CMD 'bytecount 5'

Thu Jun 14 22:55:22 2018 MANAGEMENT: CMD 'hold off'

Thu Jun 14 22:55:22 2018 MANAGEMENT: CMD 'hold release'

Thu Jun 14 22:55:22 2018 Outgoing Control Channel Authentication: Using 256 bit message hash 'SHA256' for HMAC authentication

Thu Jun 14 22:55:22 2018 Incoming Control Channel Authentication: Using 256 bit message hash 'SHA256' for HMAC authentication

Thu Jun 14 22:55:22 2018 TCP/UDP: Preserving recently used remote address: [AF_INET]185.211.246.254:9876

Thu Jun 14 22:55:22 2018 Socket Buffers: R=[65536->65536] S=[65536->65536]

Thu Jun 14 22:55:22 2018 Attempting to establish TCP connection with [AF_INET]185.211.246.254:9876 [nonblock]

Thu Jun 14 22:55:22 2018 MANAGEMENT:

STATE:1528998922,TCP_CONNECT,,,,,,

Thu Jun 14 22:55:23 2018 TCP connection established with [AF_INET]185.211.246.254:9876

Thu Jun 14 22:55:23 2018 TCP_CLIENT link local: (not bound)

Thu Jun 14 22:55:23 2018 TCP_CLIENT link remote: [AF_INET]185.211.246.254:9876

Thu Jun 14 22:55:23 2018 MANAGEMENT: >STATE:1528998923,WAIT,,,,,,

Thu Jun 14 22:55:23 2018 MANAGEMENT: >STATE:1528998923,AUTH,,,,,,

Thu Jun 14 22:55:23 2018 TLS: Initial packet from [AF_INET]185.211.246.254:9876, sid=94670892 1f4bb1c2

Thu Jun 14 22:55:24 2018 Connection reset, restarting [-1]

Thu Jun 14 22:55:24 2018 SIGUSR1[soft,connection-reset] received, process restarting

Thu Jun 14 22:55:24 2018 MANAGEMENT: >STATE:1528998924,RECONNECTING,connection-reset,,,,,

Thu Jun 14 22:55:24 2018 Restart pause, 5 second(s)

Вот конфигурация самого профиля (клиентовского):

client
proto tcp-client
remote 185.211.246.254 9876
dev tun
resolv-retry infinite
nobind
persist-key
persist-tun
remote-cert-tls server
verify-x509-name server_FJeTp2kp8adTaTvQ name
auth SHA256
auth-nocache
cipher AES-128-CBC
tls-client
tls-version-min 1.2
tls-cipher TLS-DHE-RSA-WITH-AES-128-GCM-SHA256
setenv opt block-outside-dns
verb 3
<ca>
-----BEGIN CERTIFICATE-----
ТУТ СЕРТИФИКАТ
-----END CERTIFICATE-----
</ca>
<cert>
ТУТ СЕРТИФИКАТ
-----END CERTIFICATE-----
</cert>
<key>
-----BEGIN PRIVATE KEY-----
ТУТ КЛЮЧ
-----END PRIVATE KEY-----
</key>
key-direction 1
<tls-auth>
КЛЮЧ
</tls-auth>

Настройка со стороны сервера /etc/openvpn/server.conf

port 9876
proto tcp
dev tun
user nobody
group nobody
persist-key
persist-tun
keepalive 1800 3600
topology subnet
server 10.8.0.0 255.255.255.0
ifconfig-pool-persist ipp.txt
push «dhcp-option DNS 8.8.8.8»
push «dhcp-option DNS 8.8.4.4»
push «redirect-gateway def1 bypass-dhcp»
crl-verify crl.pem
ca ca.crt
cert server_FJeTp2kp8adTaTvQ.crt
key server_FJeTp2kp8adTaTvQ.key
tls-auth tls-auth.key 0
dh dh.pem
auth SHA256
cipher AES-128-CBC
tls-server
tls-version-min 1.2
tls-cipher TLS-DHE-RSA-WITH-AES-128-GCM-SHA256
status openvpn.log
verb 3

Помогите пожалуйста настроить под windows 10! Очень прошу Вас!

Ответ на: комментарий от kostik87

Там вообще нет этого параметра server.conf:

port 9876
proto tcp
dev tun
user nobody
group nobody
persist-key
persist-tun
keepalive 1800 3600
topology subnet
server 10.8.0.0 255.255.255.0
ifconfig-pool-persist ipp.txt
push «dhcp-option DNS 8.8.8.8»
push «dhcp-option DNS 8.8.4.4»
push «redirect-gateway def1 bypass-dhcp»
crl-verify crl.pem
ca ca.crt
cert server_FJeTp2kp8adTaTvQ.crt
key server_FJeTp2kp8adTaTvQ.key
tls-auth tls-auth.key 0
dh dh.pem
auth SHA256
cipher AES-128-CBC
tls-server
tls-version-min 1.2
tls-cipher TLS-DHE-RSA-WITH-AES-128-GCM-SHA256
status openvpn.log
verb 3

grandlovelace
() автор топика
Ответ на: комментарий от XMs


/etc/openvpn:

OpenVPN CLIENT LIST
Updated,Fri Jun 15 02:47:37 2018
Common Name,Real Address,Bytes Received,Bytes Sent,Connected Since
erkin,95.85.101.246:53167,184149,838608,Fri Jun 15 02:42:51 2018
UNDEF,95.85.102.89:9828,116,68,Fri Jun 15 02:47:30 2018
kamuska,95.85.102.89:34688,293181,1034005,Fri Jun 15 02:00:23 2018
ROUTING TABLE
Virtual Address,Common Name,Real Address,Last Ref
10.8.0.5,erkin,95.85.101.246:53167,Fri Jun 15 02:47:36 2018
10.8.0.6,kamuska,95.85.102.89:34688,Fri Jun 15 02:46:38 2018
GLOBAL STATS
Max bcast/mcast queue length,0
END

юзеры kamuska и erkin вошли с телефонов, а вот UNDEF - походу мою попытка, он просто не авторизовался.


/var/log:


Jun 15 02:46:59 batmaz openvpn: Fri Jun 15 02:46:59 2018 vlada/95.85.102.89:18438 Connection reset, restarting [0]
Jun 15 02:46:59 batmaz openvpn: Fri Jun 15 02:46:59 2018 vlada/95.85.102.89:18438 SIGUSR1[soft,connection-reset] received, client-instance restarting
Jun 15 02:47:30 batmaz openvpn: Fri Jun 15 02:47:30 2018 TCP connection established with [AF_INET]95.85.102.89:9828
Jun 15 02:47:31 batmaz openvpn: Fri Jun 15 02:47:31 2018 95.85.102.89:9828 TLS: Initial packet from [AF_INET]95.85.102.89:9828, sid=49484c4b cd999f8a
Jun 15 02:47:37 batmaz openvpn: Fri Jun 15 02:47:37 2018 TCP connection established with [AF_INET]95.85.102.89:33203
Jun 15 02:47:38 batmaz openvpn: Fri Jun 15 02:47:38 2018 95.85.102.89:33203 TLS: Initial packet from [AF_INET]95.85.102.89:33203, sid=cb3b805a 0a366715
Jun 15 02:47:43 batmaz openvpn: Fri Jun 15 02:47:43 2018 TCP connection established with [AF_INET]95.85.102.89:43175
Jun 15 02:47:44 batmaz openvpn: Fri Jun 15 02:47:44 2018 95.85.102.89:43175 TLS: Initial packet from [AF_INET]95.85.102.89:43175, sid=4283279e eac3605a
Jun 15 02:47:49 batmaz openvpn: Fri Jun 15 02:47:49 2018 TCP connection established with [AF_INET]95.85.102.89:52564
Jun 15 02:47:50 batmaz openvpn: Fri Jun 15 02:47:50 2018 95.85.102.89:52564 TLS: Initial packet from [AF_INET]95.85.102.89:52564, sid=b99109b8 5d9aab39
Jun 15 02:47:56 batmaz openvpn: Fri Jun 15 02:47:56 2018 TCP connection established with [AF_INET]95.85.102.89:61108
Jun 15 02:47:57 batmaz openvpn: Fri Jun 15 02:47:57 2018 95.85.102.89:61108 TLS: Initial packet from [AF_INET]95.85.102.89:61108, sid=22487013 9a4af393
Jun 15 02:48:07 batmaz openvpn: Fri Jun 15 02:48:07 2018 TCP connection established with [AF_INET]95.85.102.89:64233
Jun 15 02:48:08 batmaz openvpn: Fri Jun 15 02:48:08 2018 95.85.102.89:64233 TLS: Initial packet from [AF_INET]95.85.102.89:64233, sid=126d50b4 353e3657
Jun 15 02:48:28 batmaz openvpn: Fri Jun 15 02:48:28 2018 TCP connection established with [AF_INET]95.85.102.89:64001
Jun 15 02:48:29 batmaz openvpn: Fri Jun 15 02:48:29 2018 95.85.102.89:64001 TLS: Initial packet from [AF_INET]95.85.102.89:64001, sid=eecd44da d2bc86ef
Jun 15 02:48:30 batmaz openvpn: Fri Jun 15 02:48:30 2018 95.85.102.89:9828 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Jun 15 02:48:30 batmaz openvpn: Fri Jun 15 02:48:30 2018 95.85.102.89:9828 TLS Error: TLS handshake failed

Jun 15 02:48:30 batmaz openvpn: Fri Jun 15 02:48:30 2018 95.85.102.89:9828 Fatal TLS error (check_tls_errors_co), restarting
Jun 15 02:48:30 batmaz openvpn: Fri Jun 15 02:48:30 2018 95.85.102.89:9828 SIGUSR1[soft,tls-error] received, client-instance restarting
Jun 15 02:48:38 batmaz openvpn: Fri Jun 15 02:48:38 2018 95.85.102.89:33203 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Jun 15 02:48:38 batmaz openvpn: Fri Jun 15 02:48:38 2018 95.85.102.89:33203 TLS Error: TLS handshake failed
Jun 15 02:48:38 batmaz openvpn: Fri Jun 15 02:48:38 2018 95.85.102.89:33203 Fatal TLS error (check_tls_errors_co), restarting
Jun 15 02:48:38 batmaz openvpn: Fri Jun 15 02:48:38 2018 95.85.102.89:33203 SIGUSR1[soft,tls-error] received, client-instance restarting
Jun 15 02:48:43 batmaz openvpn: Fri Jun 15 02:48:43 2018 95.85.102.89:43175 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Jun 15 02:48:43 batmaz openvpn: Fri Jun 15 02:48:43 2018 95.85.102.89:43175 TLS Error: TLS handshake failed
Jun 15 02:48:43 batmaz openvpn: Fri Jun 15 02:48:43 2018 95.85.102.89:43175 Fatal TLS error (check_tls_errors_co), restarting
Jun 15 02:48:43 batmaz openvpn: Fri Jun 15 02:48:43 2018 95.85.102.89:43175 SIGUSR1[soft,tls-error] received, client-instance restarting
Jun 15 02:48:49 batmaz openvpn: Fri Jun 15 02:48:49 2018 95.85.102.89:52564 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Jun 15 02:48:49 batmaz openvpn: Fri Jun 15 02:48:49 2018 95.85.102.89:52564 TLS Error: TLS handshake failed
Jun 15 02:48:49 batmaz openvpn: Fri Jun 15 02:48:49 2018 95.85.102.89:52564 Fatal TLS error (check_tls_errors_co), restarting
Jun 15 02:48:49 batmaz openvpn: Fri Jun 15 02:48:49 2018 95.85.102.89:52564 SIGUSR1[soft,tls-error] received, client-instance restarting

grandlovelace
() автор топика

Из за того что в нашей стране заблокировано практически все и очень жесткий контроль, работает только TCP и то порт подобрал 7654 для надежности.

что за страна? очень сильно интересно

anonymous
()
Ответ на: комментарий от grandlovelace

Почитай что такое MTU.

Он настраивается в свойствах сетевого интерфейса в Windows Vista и выше это делается в «Центр управления сетями» в свойствах сетевого подключения.

kostik87 ★★★★★
()
Последнее исправление: kostik87 (всего исправлений: 1)
Ответ на: комментарий от grandlovelace 
Jun 15 02:47:30 batmaz openvpn: Fri Jun 15 02:47:30 2018 TCP connection established with [AF_INET]95.85.102.89:9828
Jun 15 02:47:31 batmaz openvpn: Fri Jun 15 02:47:31 2018 95.85.102.89:9828 TLS: Initial packet from [AF_INET]95.85.102.89:9828, sid=49484c4b cd999f8a
Jun 15 02:47:37 batmaz openvpn: Fri Jun 15 02:47:37 2018 TCP connection established with [AF_INET]95.85.102.89:33203
Jun 15 02:47:38 batmaz openvpn: Fri Jun 15 02:47:38 2018 95.85.102.89:33203 TLS: Initial packet from [AF_INET]95.85.102.89:33203, sid=cb3b805a 0a366715
Jun 15 02:47:43 batmaz openvpn: Fri Jun 15 02:47:43 2018 TCP connection established with [AF_INET]95.85.102.89:43175
Jun 15 02:47:44 batmaz openvpn: Fri Jun 15 02:47:44 2018 95.85.102.89:43175 TLS: Initial packet from [AF_INET]95.85.102.89:43175, sid=4283279e eac3605a
Jun 15 02:47:49 batmaz openvpn: Fri Jun 15 02:47:49 2018 TCP connection established with [AF_INET]95.85.102.89:52564
Jun 15 02:47:50 batmaz openvpn: Fri Jun 15 02:47:50 2018 95.85.102.89:52564 TLS: Initial packet from [AF_INET]95.85.102.89:52564, sid=b99109b8 5d9aab39
Jun 15 02:47:56 batmaz openvpn: Fri Jun 15 02:47:56 2018 TCP connection established with [AF_INET]95.85.102.89:61108
Jun 15 02:47:57 batmaz openvpn: Fri Jun 15 02:47:57 2018 95.85.102.89:61108 TLS: Initial packet from [AF_INET]95.85.102.89:61108, sid=22487013 9a4af393
Jun 15 02:48:07 batmaz openvpn: Fri Jun 15 02:48:07 2018 TCP connection established with [AF_INET]95.85.102.89:64233
Jun 15 02:48:08 batmaz openvpn: Fri Jun 15 02:48:08 2018 95.85.102.89:64233 TLS: Initial packet from [AF_INET]95.85.102.89:64233, sid=126d50b4 353e3657
Jun 15 02:48:28 batmaz openvpn: Fri Jun 15 02:48:28 2018 TCP connection established with [AF_INET]95.85.102.89:64001
Jun 15 02:48:29 batmaz openvpn: Fri Jun 15 02:48:29 2018 95.85.102.89:64001 TLS: Initial packet from [AF_INET]95.85.102.89:64001, sid=eecd44da d2bc86ef
Jun 15 02:48:30 batmaz openvpn: Fri Jun 15 02:48:30 2018 95.85.102.89:9828 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Jun 15 02:48:30 batmaz openvpn: Fri Jun 15 02:48:30 2018 95.85.102.89:9828 TLS Error: TLS handshake failed

Поставь verb побольше, а ещё поставь на виндовой машине wireshark и посмотри, доходят ли TLS-пакеты от сервера. Может, чего полезного увидишь

XMs ★★★★★
()
Ответ на: комментарий от XMs

Поставил ничего не меняется, так долго грузит и не коннектится. Кстати, скажи пожалуйста почему TCP соединение пытается произвести портом 9828,33203.43175 и тд, даже если у меня стоит порт 9876 и на сервере на клиенте?

grandlovelace
() автор топика
Ответ на: комментарий от grandlovelace

ничего не меняется

Лог должен стать более подробным.


почему TCP соединение пытается произвести портом 9828,33203.43175 и тд, даже если у меня стоит порт 9876 и на сервере на клиенте?

Потому что и на сервере, и на клиенте ты указываешь порт сервера. У клиента же соединение может быть на любом порту

XMs ★★★★★
()
Ответ на: комментарий от XMs


Fri Jun 15 18:17:29 2018 us=697343 Current Parameter Settings:
Fri Jun 15 18:17:29 2018 us=698337 config = 'murik.ovpn'
Fri Jun 15 18:17:29 2018 us=698337 mode = 0
Fri Jun 15 18:17:29 2018 us=698337 show_ciphers = DISABLED
Fri Jun 15 18:17:29 2018 us=698337 show_digests = DISABLED
Fri Jun 15 18:17:29 2018 us=698337 show_engines = DISABLED
Fri Jun 15 18:17:29 2018 us=698337 genkey = DISABLED
Fri Jun 15 18:17:29 2018 us=698337 key_pass_file = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=698337 show_tls_ciphers = DISABLED
Fri Jun 15 18:17:29 2018 us=698337 connect_retry_max = 0
Fri Jun 15 18:17:29 2018 us=698834 Connection profiles [0]:
Fri Jun 15 18:17:29 2018 us=698834 proto = tcp-client
Fri Jun 15 18:17:29 2018 us=698834 local = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=698834 local_port = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=698834 remote = '185.211.246.254'
Fri Jun 15 18:17:29 2018 us=698834 remote_port = '9876'
Fri Jun 15 18:17:29 2018 us=698834 remote_float = DISABLED
Fri Jun 15 18:17:29 2018 us=698834 bind_defined = DISABLED
Fri Jun 15 18:17:29 2018 us=698834 bind_local = DISABLED
Fri Jun 15 18:17:29 2018 us=698834 bind_ipv6_only = DISABLED
Fri Jun 15 18:17:29 2018 us=698834 connect_retry_seconds = 5
Fri Jun 15 18:17:29 2018 us=699335 connect_timeout = 120
Fri Jun 15 18:17:29 2018 us=699335 socks_proxy_server = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=699335 socks_proxy_port = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=699335 tun_mtu = 1500
Fri Jun 15 18:17:29 2018 us=699335 tun_mtu_defined = ENABLED
Fri Jun 15 18:17:29 2018 us=699335 link_mtu = 1500
Fri Jun 15 18:17:29 2018 us=699335 link_mtu_defined = DISABLED
Fri Jun 15 18:17:29 2018 us=699335 tun_mtu_extra = 0
Fri Jun 15 18:17:29 2018 us=699335 tun_mtu_extra_defined = DISABLED
Fri Jun 15 18:17:29 2018 us=699335 mtu_discover_type = -1
Fri Jun 15 18:17:29 2018 us=699335 fragment = 0
Fri Jun 15 18:17:29 2018 us=699836 mssfix = 1450
Fri Jun 15 18:17:29 2018 us=699836 explicit_exit_notification = 0
Fri Jun 15 18:17:29 2018 us=699836 Connection profiles END
Fri Jun 15 18:17:29 2018 us=699836 remote_random = DISABLED
Fri Jun 15 18:17:29 2018 us=699836 ipchange = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=699836 dev = 'tun'
Fri Jun 15 18:17:29 2018 us=699836 dev_type = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=699836 dev_node = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=699836 lladdr = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=700338 topology = 1
Fri Jun 15 18:17:29 2018 us=700338 ifconfig_local = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=700338 ifconfig_remote_netmask = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=700338 ifconfig_noexec = DISABLED
Fri Jun 15 18:17:29 2018 us=700338 ifconfig_nowarn = DISABLED
Fri Jun 15 18:17:29 2018 us=700338 ifconfig_ipv6_local = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=700338 ifconfig_ipv6_netbits = 0
Fri Jun 15 18:17:29 2018 us=700338 ifconfig_ipv6_remote = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=700338 shaper = 0
Fri Jun 15 18:17:29 2018 us=700338 mtu_test = 0
Fri Jun 15 18:17:29 2018 us=700338 mlock = DISABLED
Fri Jun 15 18:17:29 2018 us=700338 keepalive_ping = 0
Fri Jun 15 18:17:29 2018 us=700338 keepalive_timeout = 0
Fri Jun 15 18:17:29 2018 us=700839 inactivity_timeout = 0
Fri Jun 15 18:17:29 2018 us=700839 ping_send_timeout = 0
Fri Jun 15 18:17:29 2018 us=700839 ping_rec_timeout = 0
Fri Jun 15 18:17:29 2018 us=700839 ping_rec_timeout_action = 0
Fri Jun 15 18:17:29 2018 us=700839 ping_timer_remote = DISABLED
Fri Jun 15 18:17:29 2018 us=700839 remap_sigusr1 = 0
Fri Jun 15 18:17:29 2018 us=700839 persist_tun = ENABLED
Fri Jun 15 18:17:29 2018 us=700839 persist_local_ip = DISABLED
Fri Jun 15 18:17:29 2018 us=700839 persist_remote_ip = DISABLED
Fri Jun 15 18:17:29 2018 us=700839 persist_key = ENABLED
Fri Jun 15 18:17:29 2018 us=700839 passtos = DISABLED
Fri Jun 15 18:17:29 2018 us=700839 resolve_retry_seconds = 1000000000
Fri Jun 15 18:17:29 2018 us=701340 resolve_in_advance = DISABLED
Fri Jun 15 18:17:29 2018 us=701340 username = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=701340 groupname = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=701340 chroot_dir = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=701340 cd_dir = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=701340 writepid = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=701340 up_script = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=701340 down_script = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=701340 down_pre = DISABLED
Fri Jun 15 18:17:29 2018 us=701340 up_restart = DISABLED
Fri Jun 15 18:17:29 2018 us=701842 up_delay = DISABLED
Fri Jun 15 18:17:29 2018 us=701842 daemon = DISABLED
Fri Jun 15 18:17:29 2018 us=701842 inetd = 0
Fri Jun 15 18:17:29 2018 us=701842 log = ENABLED
Fri Jun 15 18:17:29 2018 us=701842 suppress_timestamps = DISABLED
Fri Jun 15 18:17:29 2018 us=701842 machine_readable_output = DISABLED
Fri Jun 15 18:17:29 2018 us=701842 nice = 0
Fri Jun 15 18:17:29 2018 us=701842 verbosity = 9
Fri Jun 15 18:17:29 2018 us=701842 mute = 0
Fri Jun 15 18:17:29 2018 us=701842 gremlin = 0
Fri Jun 15 18:17:29 2018 us=701842 status_file = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=701842 status_file_version = 1
Fri Jun 15 18:17:29 2018 us=702375 status_file_update_freq = 60
Fri Jun 15 18:17:29 2018 us=702375 occ = ENABLED
Fri Jun 15 18:17:29 2018 us=702375 rcvbuf = 0
Fri Jun 15 18:17:29 2018 us=702375 sndbuf = 0
Fri Jun 15 18:17:29 2018 us=702375 sockflags = 0
Fri Jun 15 18:17:29 2018 us=702375 fast_io = DISABLED
Fri Jun 15 18:17:29 2018 us=702375 comp.alg = 0
Fri Jun 15 18:17:29 2018 us=702375 comp.flags = 0
Fri Jun 15 18:17:29 2018 us=702375 route_script = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=702375 route_default_gateway = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=702375 route_default_metric = 0
Fri Jun 15 18:17:29 2018 us=702876 route_noexec = DISABLED
Fri Jun 15 18:17:29 2018 us=702876 route_delay = 5
Fri Jun 15 18:17:29 2018 us=702876 route_delay_window = 30
Fri Jun 15 18:17:29 2018 us=702876 route_delay_defined = ENABLED
Fri Jun 15 18:17:29 2018 us=702876 route_nopull = DISABLED
Fri Jun 15 18:17:29 2018 us=703346 route_gateway_via_dhcp = DISABLED
Fri Jun 15 18:17:29 2018 us=703346 allow_pull_fqdn = DISABLED

grandlovelace
() автор топика
Ответ на: комментарий от XMs


Fri Jun 15 18:17:29 2018 us=703346 management_addr = '127.0.0.1'
Fri Jun 15 18:17:29 2018 us=703346 management_port = '25347'
Fri Jun 15 18:17:29 2018 us=703346 management_user_pass = 'stdin'
Fri Jun 15 18:17:29 2018 us=703346 management_log_history_cache = 250
Fri Jun 15 18:17:29 2018 us=703346 management_echo_buffer_size = 100
Fri Jun 15 18:17:29 2018 us=703346 management_write_peer_info_file = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=703346 management_client_user = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=703346 management_client_group = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=703346 management_flags = 6
Fri Jun 15 18:17:29 2018 us=703346 shared_secret_file = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=703879 key_direction = 1
Fri Jun 15 18:17:29 2018 us=703879 ciphername = 'AES-128-CBC'
Fri Jun 15 18:17:29 2018 us=703879 ncp_enabled = ENABLED
Fri Jun 15 18:17:29 2018 us=703879 ncp_ciphers = 'AES-256-GCM:AES-128-GCM'
Fri Jun 15 18:17:29 2018 us=703879 authname = 'SHA256'
Fri Jun 15 18:17:29 2018 us=703879 prng_hash = 'SHA1'
Fri Jun 15 18:17:29 2018 us=703879 prng_nonce_secret_len = 16
Fri Jun 15 18:17:29 2018 us=703879 keysize = 0
Fri Jun 15 18:17:29 2018 us=703879 engine = DISABLED
Fri Jun 15 18:17:29 2018 us=703879 replay = ENABLED
Fri Jun 15 18:17:29 2018 us=703879 mute_replay_warnings = DISABLED
Fri Jun 15 18:17:29 2018 us=703879 replay_window = 64
Fri Jun 15 18:17:29 2018 us=704387 replay_time = 15
Fri Jun 15 18:17:29 2018 us=704387 packet_id_file = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=704387 use_iv = ENABLED
Fri Jun 15 18:17:29 2018 us=704387 test_crypto = DISABLED
Fri Jun 15 18:17:29 2018 us=704387 tls_server = DISABLED
Fri Jun 15 18:17:29 2018 us=704387 tls_client = ENABLED
Fri Jun 15 18:17:29 2018 us=704387 key_method = 2
Fri Jun 15 18:17:29 2018 us=704387 ca_file = '[INLINE]'
Fri Jun 15 18:17:29 2018 us=704881 ca_path = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=704881 dh_file = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=704881 cert_file = '[INLINE]'
Fri Jun 15 18:17:29 2018 us=704881 extra_certs_file = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=704881 priv_key_file = '[INLINE]'
Fri Jun 15 18:17:29 2018 us=704881 pkcs12_file = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=704881 cryptoapi_cert = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=704881 cipher_list = 'TLS-DHE-RSA-WITH-AES-128-GCM-SHA256'
Fri Jun 15 18:17:29 2018 us=704881 tls_cert_profile = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=704881 tls_verify = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=704881 tls_export_cert = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=705353 verify_x509_type = 2
Fri Jun 15 18:17:29 2018 us=705353 verify_x509_name = 'server_FJeTp2kp8adTaTvQ'
Fri Jun 15 18:17:29 2018 us=705353 crl_file = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=705353 ns_cert_type = 0
Fri Jun 15 18:17:29 2018 us=705353 remote_cert_ku = 65535
Fri Jun 15 18:17:29 2018 us=705353 remote_cert_ku = 0
Fri Jun 15 18:17:29 2018 us=705353 remote_cert_ku = 0
Fri Jun 15 18:17:29 2018 us=705353 remote_cert_ku = 0
Fri Jun 15 18:17:29 2018 us=705353 remote_cert_ku = 0
Fri Jun 15 18:17:29 2018 us=705852 remote_cert_ku = 0
Fri Jun 15 18:17:29 2018 us=705852 remote_cert_ku = 0
Fri Jun 15 18:17:29 2018 us=705852 remote_cert_ku = 0
Fri Jun 15 18:17:29 2018 us=705852 remote_cert_ku = 0
Fri Jun 15 18:17:29 2018 us=705852 remote_cert_ku = 0
Fri Jun 15 18:17:29 2018 us=705852 remote_cert_ku = 0
Fri Jun 15 18:17:29 2018 us=705852 remote_cert_ku = 0
Fri Jun 15 18:17:29 2018 us=705852 remote_cert_ku = 0
Fri Jun 15 18:17:29 2018 us=705852 remote_cert_ku = 0
Fri Jun 15 18:17:29 2018 us=705852 remote_cert_ku = 0
Fri Jun 15 18:17:29 2018 us=705852 remote_cert_ku = 0
Fri Jun 15 18:17:29 2018 us=705852 remote_cert_eku = 'TLS Web Server Authentication'
Fri Jun 15 18:17:29 2018 us=705852 ssl_flags = 192
Fri Jun 15 18:17:29 2018 us=706387 tls_timeout = 2
Fri Jun 15 18:17:29 2018 us=706387 renegotiate_bytes = -1
Fri Jun 15 18:17:29 2018 us=706387 renegotiate_packets = 0
Fri Jun 15 18:17:29 2018 us=706387 renegotiate_seconds = 3600
Fri Jun 15 18:17:29 2018 us=706387 handshake_window = 60
Fri Jun 15 18:17:29 2018 us=706387 transition_window = 3600
Fri Jun 15 18:17:29 2018 us=706387 single_session = DISABLED
Fri Jun 15 18:17:29 2018 us=706387 push_peer_info = DISABLED
Fri Jun 15 18:17:29 2018 us=706387 tls_exit = DISABLED
Fri Jun 15 18:17:29 2018 us=706387 tls_auth_file = '[INLINE]'
Fri Jun 15 18:17:29 2018 us=706387 tls_crypt_file = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=706387 pkcs11_protected_authentication = DISABLED
Fri Jun 15 18:17:29 2018 us=706887 pkcs11_protected_authentication = DISABLED
Fri Jun 15 18:17:29 2018 us=706887 pkcs11_protected_authentication = DISABLED
Fri Jun 15 18:17:29 2018 us=706887 pkcs11_protected_authentication = DISABLED
Fri Jun 15 18:17:29 2018 us=706887 pkcs11_protected_authentication = DISABLED
Fri Jun 15 18:17:29 2018 us=706887 pkcs11_protected_authentication = DISABLED
Fri Jun 15 18:17:29 2018 us=706887 pkcs11_protected_authentication = DISABLED
Fri Jun 15 18:17:29 2018 us=706887 pkcs11_protected_authentication = DISABLED
Fri Jun 15 18:17:29 2018 us=706887 pkcs11_protected_authentication = DISABLED
Fri Jun 15 18:17:29 2018 us=706887 pkcs11_protected_authentication = DISABLED
Fri Jun 15 18:17:29 2018 us=706887 pkcs11_protected_authentication = DISABLED
Fri Jun 15 18:17:29 2018 us=706887 pkcs11_protected_authentication = DISABLED
Fri Jun 15 18:17:29 2018 us=706887 pkcs11_protected_authentication = DISABLED
Fri Jun 15 18:17:29 2018 us=707388 pkcs11_protected_authentication = DISABLED
Fri Jun 15 18:17:29 2018 us=707388 pkcs11_protected_authentication = DISABLED
Fri Jun 15 18:17:29 2018 us=707388 pkcs11_protected_authentication = DISABLED

grandlovelace
() автор топика
Ответ на: комментарий от XMs


Fri Jun 15 18:17:29 2018 us=707388 pkcs11_private_mode = 00000000
Fri Jun 15 18:17:29 2018 us=707388 pkcs11_private_mode = 00000000
Fri Jun 15 18:17:29 2018 us=707388 pkcs11_private_mode = 00000000
Fri Jun 15 18:17:29 2018 us=707388 pkcs11_private_mode = 00000000
Fri Jun 15 18:17:29 2018 us=707388 pkcs11_private_mode = 00000000
Fri Jun 15 18:17:29 2018 us=707388 pkcs11_private_mode = 00000000
Fri Jun 15 18:17:29 2018 us=707388 pkcs11_private_mode = 00000000
Fri Jun 15 18:17:29 2018 us=707388 pkcs11_private_mode = 00000000
Fri Jun 15 18:17:29 2018 us=707388 pkcs11_private_mode = 00000000
Fri Jun 15 18:17:29 2018 us=707889 pkcs11_private_mode = 00000000
Fri Jun 15 18:17:29 2018 us=707889 pkcs11_private_mode = 00000000
Fri Jun 15 18:17:29 2018 us=707889 pkcs11_private_mode = 00000000
Fri Jun 15 18:17:29 2018 us=707889 pkcs11_private_mode = 00000000
Fri Jun 15 18:17:29 2018 us=707889 pkcs11_private_mode = 00000000
Fri Jun 15 18:17:29 2018 us=707889 pkcs11_private_mode = 00000000
Fri Jun 15 18:17:29 2018 us=707889 pkcs11_private_mode = 00000000
Fri Jun 15 18:17:29 2018 us=707889 pkcs11_cert_private = DISABLED
Fri Jun 15 18:17:29 2018 us=707889 pkcs11_cert_private = DISABLED
Fri Jun 15 18:17:29 2018 us=707889 pkcs11_cert_private = DISABLED
Fri Jun 15 18:17:29 2018 us=707889 pkcs11_cert_private = DISABLED
Fri Jun 15 18:17:29 2018 us=707889 pkcs11_cert_private = DISABLED
Fri Jun 15 18:17:29 2018 us=708392 pkcs11_cert_private = DISABLED
Fri Jun 15 18:17:29 2018 us=708392 pkcs11_cert_private = DISABLED
Fri Jun 15 18:17:29 2018 us=708392 pkcs11_cert_private = DISABLED
Fri Jun 15 18:17:29 2018 us=708392 pkcs11_cert_private = DISABLED
Fri Jun 15 18:17:29 2018 us=708392 pkcs11_cert_private = DISABLED
Fri Jun 15 18:17:29 2018 us=708392 pkcs11_cert_private = DISABLED
Fri Jun 15 18:17:29 2018 us=708392 pkcs11_cert_private = DISABLED
Fri Jun 15 18:17:29 2018 us=708392 pkcs11_cert_private = DISABLED
Fri Jun 15 18:17:29 2018 us=708392 pkcs11_cert_private = DISABLED
Fri Jun 15 18:17:29 2018 us=708392 pkcs11_cert_private = DISABLED
Fri Jun 15 18:17:29 2018 us=708392 pkcs11_cert_private = DISABLED
Fri Jun 15 18:17:29 2018 us=708892 pkcs11_pin_cache_period = -1
Fri Jun 15 18:17:29 2018 us=708892 pkcs11_id = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=708892 pkcs11_id_management = DISABLED
Fri Jun 15 18:17:29 2018 us=708892 server_network = 0.0.0.0
Fri Jun 15 18:17:29 2018 us=708892 server_netmask = 0.0.0.0
Fri Jun 15 18:17:29 2018 us=708892 server_network_ipv6 = ::
Fri Jun 15 18:17:29 2018 us=708892 server_netbits_ipv6 = 0
Fri Jun 15 18:17:29 2018 us=708892 server_bridge_ip = 0.0.0.0
Fri Jun 15 18:17:29 2018 us=708892 server_bridge_netmask = 0.0.0.0
Fri Jun 15 18:17:29 2018 us=708892 server_bridge_pool_start = 0.0.0.0
Fri Jun 15 18:17:29 2018 us=708892 server_bridge_pool_end = 0.0.0.0
Fri Jun 15 18:17:29 2018 us=708892 ifconfig_pool_defined = DISABLED
Fri Jun 15 18:17:29 2018 us=708892 ifconfig_pool_start = 0.0.0.0
Fri Jun 15 18:17:29 2018 us=709393 ifconfig_pool_end = 0.0.0.0
Fri Jun 15 18:17:29 2018 us=709393 ifconfig_pool_netmask = 0.0.0.0
Fri Jun 15 18:17:29 2018 us=709393 ifconfig_pool_persist_filename = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=709393 ifconfig_pool_persist_refresh_freq = 600
Fri Jun 15 18:17:29 2018 us=709393 ifconfig_ipv6_pool_defined = DISABLED
Fri Jun 15 18:17:29 2018 us=709393 ifconfig_ipv6_pool_base = ::
Fri Jun 15 18:17:29 2018 us=709393 ifconfig_ipv6_pool_netbits = 0
Fri Jun 15 18:17:29 2018 us=709393 n_bcast_buf = 256
Fri Jun 15 18:17:29 2018 us=709393 tcp_queue_limit = 64
Fri Jun 15 18:17:29 2018 us=709393 real_hash_size = 256
Fri Jun 15 18:17:29 2018 us=709393 virtual_hash_size = 256
Fri Jun 15 18:17:29 2018 us=709393 client_connect_script = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=709393 learn_address_script = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=709393 client_disconnect_script = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=709895 client_config_dir = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=709895 ccd_exclusive = DISABLED
Fri Jun 15 18:17:29 2018 us=709895 tmp_dir = 'C:\Users\HP\AppData\Local\Temp\'
Fri Jun 15 18:17:29 2018 us=709895 push_ifconfig_defined = DISABLED
Fri Jun 15 18:17:29 2018 us=709895 push_ifconfig_local = 0.0.0.0
Fri Jun 15 18:17:29 2018 us=709895 push_ifconfig_remote_netmask = 0.0.0.0
Fri Jun 15 18:17:29 2018 us=709895 push_ifconfig_ipv6_defined = DISABLED
Fri Jun 15 18:17:29 2018 us=709895 push_ifconfig_ipv6_local = ::/0
Fri Jun 15 18:17:29 2018 us=710397 push_ifconfig_ipv6_remote = ::
Fri Jun 15 18:17:29 2018 us=710397 enable_c2c = DISABLED
Fri Jun 15 18:17:29 2018 us=710397 duplicate_cn = DISABLED
Fri Jun 15 18:17:29 2018 us=710397 cf_max = 0
Fri Jun 15 18:17:29 2018 us=710397 cf_per = 0
Fri Jun 15 18:17:29 2018 us=710397 max_clients = 1024
Fri Jun 15 18:17:29 2018 us=710397 max_routes_per_client = 256
Fri Jun 15 18:17:29 2018 us=710397 auth_user_pass_verify_script = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=710397 auth_user_pass_verify_script_via_file = DISABLED
Fri Jun 15 18:17:29 2018 us=710397 auth_token_generate = DISABLED
Fri Jun 15 18:17:29 2018 us=710397 auth_token_lifetime = 0
Fri Jun 15 18:17:29 2018 us=710397 client = ENABLED
Fri Jun 15 18:17:29 2018 us=710397 pull = ENABLED
Fri Jun 15 18:17:29 2018 us=710397 auth_user_pass_file = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=710898 show_net_up = DISABLED
Fri Jun 15 18:17:29 2018 us=710898 route_method = 0
Fri Jun 15 18:17:29 2018 us=710898 block_outside_dns = DISABLED
Fri Jun 15 18:17:29 2018 us=710898 ip_win32_defined = DISABLED
Fri Jun 15 18:17:29 2018 us=710898 ip_win32_type = 3
Fri Jun 15 18:17:29 2018 us=710898 dhcp_masq_offset = 0
Fri Jun 15 18:17:29 2018 us=710898 dhcp_lease_time = 31536000
Fri Jun 15 18:17:29 2018 us=710898 tap_sleep = 0
Fri Jun 15 18:17:29 2018 us=710898 dhcp_options = DISABLED
Fri Jun 15 18:17:29 2018 us=710898 dhcp_renew = DISABLED
Fri Jun 15 18:17:29 2018 us=710898 dhcp_pre_release = DISABLED
Fri Jun 15 18:17:29 2018 us=710898 domain = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=711367 netbios_scope = '[UNDEF]'
Fri Jun 15 18:17:29 2018 us=711367 netbios_node_type = 0
Fri Jun 15 18:17:29 2018 us=711367 disable_nbt = DISABLED

grandlovelace
() автор топика
Ответ на: комментарий от XMs


Fri Jun 15 18:17:29 2018 us=711367 OpenVPN 2.4.6 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [AEAD] built on Apr 26 2018
Fri Jun 15 18:17:29 2018 us=711367 Windows version 6.2 (Windows 8 or greater) 64bit
Fri Jun 15 18:17:29 2018 us=711367 library versions: OpenSSL 1.1.0h 27 Mar 2018, LZO 2.10 Enter Management Password:
Fri Jun 15 18:17:29 2018 us=711367 WE_INIT maxevents=1 flags=0x00000002
Fri Jun 15 18:17:29 2018 us=711367 WE_INIT maxevents=1 capacity=2
Fri Jun 15 18:17:29 2018 us=712382 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:25347
Fri Jun 15 18:17:29 2018 us=712871 Need hold release from management interface, waiting...
Fri Jun 15 18:17:29 2018 us=712871 WE_CTL n=0 ev=0000000004900DA8 rwflags=0x0001 arg=0x0
Fri Jun 15 18:17:29 2018 us=712871 WE_WAIT enter n=1 to=1000
Fri Jun 15 18:17:29 2018 us=712871 [0] ev=00000000000001A8 rwflags=0x0001 arg=0x0
Fri Jun 15 18:17:30 2018 us=177640 WE_WAIT leave rwflags=0x0001 arg=0x0
Fri Jun 15 18:17:30 2018 us=178109 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:25347
Fri Jun 15 18:17:30 2018 us=178109 WE_CTL n=0 ev=0000000004900DA8 rwflags=0x0001 arg=0x0
Fri Jun 15 18:17:30 2018 us=178109 WE_WAIT enter n=1 to=1000
Fri Jun 15 18:17:30 2018 us=178109 [0] ev=00000000000001A8 rwflags=0x0001 arg=0x0
Fri Jun 15 18:17:30 2018 us=178109 WE_WAIT leave [0,0] rwflags=0x0001 arg=0x0
Fri Jun 15 18:17:30 2018 us=178621 WE_CTL n=0 ev=0000000004900DA8 rwflags=0x0001 arg=0x0
Fri Jun 15 18:17:30 2018 us=178621 WE_WAIT enter n=1 to=1000
Fri Jun 15 18:17:30 2018 us=178621 [0] ev=00000000000001A8 rwflags=0x0001 arg=0x0
Fri Jun 15 18:17:30 2018 us=279466 WE_WAIT leave rwflags=0x0001 arg=0x0
Fri Jun 15 18:17:30 2018 us=279942 MANAGEMENT: CMD 'state on'
Fri Jun 15 18:17:30 2018 us=279942 WE_CTL n=0 ev=0000000004900DA8 rwflags=0x0001 arg=0x0
Fri Jun 15 18:17:30 2018 us=279942 WE_WAIT enter n=1 to=1000
Fri Jun 15 18:17:30 2018 us=279942 [0] ev=00000000000001A8 rwflags=0x0001 arg=0x0
Fri Jun 15 18:17:30 2018 us=279942 WE_WAIT leave rwflags=0x0001 arg=0x0
Fri Jun 15 18:17:30 2018 us=279942 MANAGEMENT: CMD 'log all on'
Fri Jun 15 18:17:30 2018 us=287468 WE_CTL n=0 ev=0000000004900DA8 rwflags=0x0001 arg=0x0
Fri Jun 15 18:17:30 2018 us=287468 WE_WAIT enter n=1 to=1000
Fri Jun 15 18:17:30 2018 us=287468 [0] ev=00000000000001A8 rwflags=0x0001 arg=0x0
Fri Jun 15 18:17:30 2018 us=449895 MANAGEMENT: CMD 'echo all on'
Fri Jun 15 18:17:30 2018 us=449895 WE_WAIT leave rwflags=0x0001 arg=0x0
Fri Jun 15 18:17:30 2018 us=449895 WE_CTL n=0 ev=0000000004900DA8 rwflags=0x0001 arg=0x0
Fri Jun 15 18:17:30 2018 us=449895 WE_WAIT enter n=1 to=1000
Fri Jun 15 18:17:30 2018 us=450397 [0] ev=00000000000001A8 rwflags=0x0001 arg=0x0
Fri Jun 15 18:17:31 2018 us=450588 WE_CTL n=0 ev=0000000004900DA8 rwflags=0x0001 arg=0x0
Fri Jun 15 18:17:31 2018 us=450588 WE_WAIT enter n=1 to=1000
Fri Jun 15 18:17:31 2018 us=451058 [0] ev=00000000000001A8 rwflags=0x0001 arg=0x0
Fri Jun 15 18:17:32 2018 us=451413 WE_CTL n=0 ev=0000000004900DA8 rwflags=0x0001 arg=0x0
Fri Jun 15 18:17:32 2018 us=451413 WE_WAIT enter n=1 to=1000
Fri Jun 15 18:17:32 2018 us=451413 [0] ev=00000000000001A8 rwflags=0x0001 arg=0x0
Fri Jun 15 18:17:33 2018 us=452109 WE_CTL n=0 ev=0000000004900DA8 rwflags=0x0001 arg=0x0
Fri Jun 15 18:17:33 2018 us=452109 WE_WAIT enter n=1 to=1000
Fri Jun 15 18:17:33 2018 us=452590 [0] ev=00000000000001A8 rwflags=0x0001 arg=0x0
Fri Jun 15 18:17:34 2018 us=452964 WE_CTL n=0 ev=0000000004900DA8 rwflags=0x0001 arg=0x0
Fri Jun 15 18:17:34 2018 us=452964 WE_WAIT enter n=1 to=1000
Fri Jun 15 18:17:34 2018 us=453426 [0] ev=00000000000001A8 rwflags=0x0001 arg=0x0
Fri Jun 15 18:17:35 2018 us=453888 WE_CTL n=0 ev=0000000004900DA8 rwflags=0x0001 arg=0x0
Fri Jun 15 18:17:35 2018 us=453888 WE_WAIT enter n=1 to=1000
Fri Jun 15 18:17:35 2018 us=454356 [0] ev=00000000000001A8 rwflags=0x0001 arg=0x0
Fri Jun 15 18:17:36 2018 us=455114 WE_CTL n=0 ev=0000000004900DA8 rwflags=0x0001 arg=0x0
Fri Jun 15 18:17:36 2018 us=455114 WE_WAIT enter n=1 to=1000
Fri Jun 15 18:17:36 2018 us=455602 [0] ev=00000000000001A8 rwflags=0x0001 arg=0x0
Fri Jun 15 18:17:37 2018 us=455933 WE_CTL n=0 ev=0000000004900DA8 rwflags=0x0001 arg=0x0
Fri Jun 15 18:17:37 2018 us=455933 WE_WAIT enter n=1 to=1000
Fri Jun 15 18:17:37 2018 us=456435 [0] ev=00000000000001A8 rwflags=0x0001 arg=0x0
Fri Jun 15 18:17:38 2018 us=457321 Signal received from management interface, exiting
Fri Jun 15 18:17:38 2018 us=458296 PKCS#11: pkcs11_terminate - entered
Fri Jun 15 18:17:38 2018 us=458296 PKCS#11: pkcs11_terminate - return

verb 9

grandlovelace
() автор топика
Ответ на: комментарий от grandlovelace

9 — это, конечно, многовато, 4–5 было бы достаточно. Ну да ладно. Если запустить на сервере tcpdump, пакеты видно? И да, настрой mtu

XMs ★★★★★
()
Ответ на: комментарий от XMs

TCPDUMP не установлен кажется у меня. Пытаюсь, выдает ошибку:

[root@batmaz ~]# yum install tcpdump Loaded plugins: fastestmirror Loading mirror speeds from cached hostfile epel/x86_64/metalink | 31 kB 00:00:00 Could not retrieve mirrorlist http://poptop.sourceforge.net/yum/stable/mirrorlist-poptop-stable-rhel7 error was 14: HTTP Error 404 - Not Found

One of the configured repositories failed (Unknown), and yum doesn't have enough cached data to continue. At this point the only safe thing yum can do is fail. There are a few ways to work «fix» this:

1. Contact the upstream for the repository and get them to fix the problem.

2. Reconfigure the baseurl/etc. for the repository, to point to a working upstream. This is most often useful if you are using a newer distribution release than is supported by the repository (and the packages for the previous distribution release still work).

3. Run the command with the repository temporarily disabled yum --disablerepo=<repoid> ...

4. Disable the repository permanently, so yum won't use it by default. Yum will then just ignore the repository until you permanently enable it again or use --enablerepo for temporary usage:

yum-config-manager --disable <repoid> or subscription-manager repos --disable=<repoid>

5. Configure the failing repository to be skipped, if it is unavailable. Note that yum will try to contact the repo. when it runs most commands, so will have to try and fail each time (and thus. yum will be be much slower). If it is a very temporary problem though, this is often a nice compromise:

yum-config-manager --save --setopt=<repoid>.skip_if_unavailable=true

Cannot find a valid baseurl for repo: poptop-stable/7

grandlovelace
() автор топика

Если я правильно понял по логам в первом сообщении, проводной провайдер обрывает тебе соединение (шлет ресет, скорее всего), а мобильный - нет.

Попробуй tls-crypt вместо tls-auth, либо используй методы обфускации, которые работают в твоей стране.

anonymous
()
Ответ на: комментарий от anonymous

tls-crypt вместо tls-auth - не помог. Знаешь что странное, я подключаюсь с мобильного (где работает) и компа (где не работает) по одной и той же сети. Не может же работать на мобилах и в iOS и на android, но не работать на windows??? Можно по подробнее о вышеупомянутых методах обфускации?

grandlovelace
() автор топика
Ответ на: комментарий от grandlovelace

Знаешь что странное, я подключаюсь с мобильного (где работает) и компа (где не работает) по одной и той же сети.

Разные шлюзы/настройки у провайдера?

Не может же работать на мобилах и в iOS и на android, но не работать на windows???

Я бы не удивился этому. И ОС может влиять, и оборудование. Например, видел такую ситуацию, когда комп соединялся с сервером VPN через роутер, но не мог подключиться напрямую без него.

Можно по подробнее о вышеупомянутых методах обфускации?

VPN over SSH, SSL (он же HTTPS), DNS (да, есть такое извращение), ShadowSOCKS, и т.д. Можно использовать и специальные обфускаторы типа obfs4. Но чтобы не перебирать все подряд, желательно знать заранее, что конкретно будет работать именно в твоей стране. Если ты пишешь, что ExpressVPN у тебя работает, значит он уже использует один из таких методов, либо применяет свою патченную версию openVPN. Возможно, также стоит попробовать SoftEtherVPN.

Вот проект типа «все в одном»: https://github.com/StreisandEffect/streisand

Конкретно по Туркменистану ValdikSS мог бы подсказать. Он есть на этом форуме и не только.

anonymous
()
Ответ на: комментарий от anonymous

Спасибо за ценные советы. ExpressVPN работает, но только 2-3 сервера из 200+. Остальные все забанили к сожалению( Кстати SoftEther-ом пользуюсь давно, не все сервера подходят но с основном работает. Можно найти рабочие. Попробую связаться с ValdikSS. Еще раз спасибо.

grandlovelace
() автор топика
Ответ на: комментарий от grandlovelace

Центось? Возможно, пакет называется как-то иначе, либо репы левые

XMs ★★★★★
()
Ответ на: комментарий от grandlovelace

Кстати SoftEther-ом пользуюсь давно, не все сервера подходят но с основном работает. Можно найти рабочие.

Если SoftEther в принципе работает, то можно попробовать поднять свой сервер.

anonymous
()
Ответ на: комментарий от grandlovelace

В вашей стране заблокирован OpenVPN. На Android и iOS используется OpenVPN 3, а на компьютере — OpenVPN 2.x, они немного иначе отправляют первые пакеты, из-за чего система DPI вашей страны блокирует подключение OpenVPN 2.x, но не OpenVPN 3.

ValdikSS ★★★★★
()
13 ноября 2018 г.
Ответ на: комментарий от ValdikSS

ValdikSS

Здравствуйте та же страна но вопрос совсем другой может сможете помочь дело такое Как обойти огроничения на скорость интернета ADSL ознокомтесь пожалуйста если не трудно, и коменты посмотрите что бы яснее стало.

Freedom
()

сам я чайник
и поднять на нем openvpn

Можете рассказать, почему выбрали именно vpn? И почему openvpn? Интересно мнение «чайников».

Если винда, то почему не l2tp/ipsec. И почему именно впн, если есть shadowsocks?

anonymous
()
Вы не можете добавлять комментарии в эту тему. Тема перемещена в архив.
Security