os_anton
DD-WRT Novice
Joined: 29 Oct 2012
Posts: 2
|
 Posted: Mon Oct 29, 2012 10:11 Post subject: dd-wrt клиент openvpn не создается вирт |
 |
Приветствую!
Имеем роутер tp-link 1043, прошивка DD-WRT v24-sp2 (12/20/11) std. На tp-link подняли open-vpn клиента. В роли openvpn сервера выступает zeroshell. По состоянию интерфейса на zeroshell видно, что туннель создан, на tp-link не создается виртуальный интерфейс (tap/tun). В чем причина?
Состояние на tp-link Server: : Local Address: Remote Address: Client: GET_CONFIG: Local Address: Remote Address: (как то странно).
Лог подключения:
Serverlog Clientlog 20121029 13:01:27 I OpenVPN 2.2.1 mips-linux [SSL] [LZO2] built on Dec 20 2011
20121029 13:01:27 MANAGEMENT: TCP Socket listening on 127.0.0.1:5001
20121029 13:01:27 W WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
20121029 13:01:27 W NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
20121029 13:01:27 W WARNING: file '/tmp/openvpncl/client.key' is group or others accessible
20121029 13:01:27 I LZO compression initialized
20121029 13:01:27 W WARNING: normally if you use --mssfix and/or --fragment you should also set --tun-mtu 1500 (currently it is 1532)
20121029 13:01:27 Control Channel MTU parms [ L:1570 D:138 EF:38 EB:0 ET:0 EL:0 ]
20121029 13:01:27 Socket Buffers: R=[112640->131072] S=[112640->131072]
20121029 13:01:27 Data Channel MTU parms [ L:1570 D:1450 EF:38 EB:135 ET:0 EL:0 AF:3/1 ]
20121029 13:01:27 Local Options String: 'V4 dev-type tun link-mtu 1570 tun-mtu 1532 proto UDPv4 comp-lzo cipher BF-CBC auth MD5 keysize 128 key-method 2 tls-client'
20121029 13:01:27 Expected Remote Options String: 'V4 dev-type tun link-mtu 1570 tun-mtu 1532 proto UDPv4 comp-lzo cipher BF-CBC auth MD5 keysize 128 key-method 2 tls-server'
20121029 13:01:27 Local Options hash (VER=V4): '491e46cc'
20121029 13:01:27 Expected Remote Options hash (VER=V4): 'cd8af427'
20121029 13:01:27 I UDPv4 link local: [undef]
20121029 13:01:27 I UDPv4 link remote: 62.148.x.x:1202
20121029 13:01:27 TLS: Initial packet from 62.148.x.x:1202 sid=c07d5b33 d42cd324
20121029 13:01:27 VERIFY OK: depth=1 /C=RU/ST=Kaluga/L=Spichka/O=zone.com/OU=IT/CN=Gigiena_CA/emailAddress=admin@zone@com
20121029 13:01:27 VERIFY OK: depth=0 /OU=Hosts/CN= domain.zone.com
20121029 13:01:28 W WARNING: 'dev-type' is used inconsistently local='dev-type tun' remote='dev-type tap'
20121029 13:01:28 W WARNING: 'link-mtu' is used inconsistently local='link-mtu 1570' remote='link-mtu 1558'
20121029 13:01:28 W WARNING: 'cipher' is used inconsistently local='cipher BF-CBC' remote='cipher [null-cipher]'
20121029 13:01:28 W WARNING: 'auth' is used inconsistently local='auth MD5' remote='auth SHA1'
20121029 13:01:28 W WARNING: 'keysize' is used inconsistently local='keysize 128' remote='keysize 0'
20121029 13:01:28 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
20121029 13:01:28 Data Channel Encrypt: Using 128 bit message hash 'MD5' for HMAC authentication
20121029 13:01:28 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
20121029 13:01:28 Data Channel Decrypt: Using 128 bit message hash 'MD5' for HMAC authentication
20121029 13:01:28 Control Channel: TLSv1 cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA 1024 bit RSA
20121029 13:01:28 I [domain.zone.com] Peer Connection Initiated with 62.148.x.x:1202
20121029 13:01:29 N Authenticate/Decrypt packet error: packet HMAC authentication failed
20121029 13:01:30 N Authenticate/Decrypt packet error: packet HMAC authentication failed
20121029 13:01:30 SENT CONTROL [domain.zone.com]: 'PUSH_REQUEST' (status=1)
20121029 13:01:31 N Authenticate/Decrypt packet error: packet HMAC authentication failed
20121029 13:01:32 N Authenticate/Decrypt packet error: packet HMAC authentication failed
20121029 13:01:34 N Authenticate/Decrypt packet error: packet HMAC authentication failed
20121029 13:01:35 N Authenticate/Decrypt packet error: packet HMAC authentication failed
20121029 13:01:35 SENT CONTROL [domain.zone.com]: 'PUSH_REQUEST' (status=1)
20121029 13:01:36 MANAGEMENT: Client connected from 127.0.0.1:5001
20121029 13:01:36 D MANAGEMENT: CMD 'state'
20121029 13:01:36 MANAGEMENT: Client disconnected
20121029 13:01:36 MANAGEMENT: Client connected from 127.0.0.1:5001
20121029 13:01:36 D MANAGEMENT: CMD 'state'
20121029 13:01:36 MANAGEMENT: Client disconnected
20121029 13:01:36 MANAGEMENT: Client connected from 127.0.0.1:5001
20121029 13:01:36 D MANAGEMENT: CMD 'state'
20121029 13:01:36 MANAGEMENT: Client disconnected
20121029 13:01:36 MANAGEMENT: Client connected from 127.0.0.1:5001
20121029 13:01:36 D MANAGEMENT: CMD 'log 500'
19700101 00:00:00 |
|
