Добрый день. Пытаемся настроить туннель между офисами.
1 офис : Сервер Ubuntu 10.04.3, openvpn 2.1.0. Стоит за шлюзом (Cisco IP X.X.X.X). IP 192.168.25.9, локальная сетка 192.168.25.0/24. Конфиг сервера:
port 4768
proto udp
dev tun
ca /etc/openvpn/keys/ca.crt
cert /etc/openvpn/keys/server.crt
key /etc/openvpn/keys/server.key
dh /etc/openvpn/keys/dh1024.pem
server 10.10.111.0 255.255.255.0
ifconfig-pool-persist ipp.txt
push "route 192.168.25.0 255.255.255.0"
client-config-dir ccd
route 192.168.111.0 255.255.255.0
route 192.168.1.0 255.255.255.0
route 192.168.0.0 255.255.255.0
client-to-client
keepalive 10 120
comp-lzo
max-clients 100
user nobody
group nogroup
persist-key
persist-tun
status /var/log/openvpn/openvpn-status.log
log /var/log/openvpn/openvpn.log
verb 6
mute 20
eth0 Link encap:Ethernet HWaddr цифры
inet addr:192.168.25.9 Bcast:192.168.25.255 Mask:255.255.255.0
inet6 addr: цифры/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:68112 errors:0 dropped:0 overruns:0 frame:0
TX packets:21025 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:7720245 (7.7 MB) TX bytes:3414228 (3.4 MB)
tun0 Link encap:UNSPEC HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00
inet addr:10.10.111.1 P-t-P:10.10.111.2 Mask:255.255.255.255
UP POINTOPOINT RUNNING NOARP MULTICAST MTU:1500 Metric:1
RX packets:669 errors:0 dropped:0 overruns:0 frame:0
TX packets:16925 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:100
RX bytes:53453 (53.4 KB) TX bytes:1347145 (1.3 MB)
10.10.111.2 0.0.0.0 255.255.255.255 UH 0 0 0 tun0
192.168.1.0 10.10.111.2 255.255.255.0 UG 0 0 0 tun0
192.168.0.0 10.10.111.2 255.255.255.0 UG 0 0 0 tun0
10.10.111.0 10.10.111.2 255.255.255.0 UG 0 0 0 tun0
192.168.111.0 10.10.111.2 255.255.255.0 UG 0 0 0 tun0
192.168.25.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0
169.254.0.0 0.0.0.0 255.255.0.0 U 0 0 0 eth0
0.0.0.0 192.168.25.1 0.0.0.0 UG 0 0 0 eth0
2 офис: Клиент FreeBSD 8.2, openvpn 2.1.4, является шлюзом. IP внешний A.B.C.D, внутренний 192.168.0.110, локальная сетка 192.168.0.0/24. Конфиг клиента
client
dev tun
proto udp
remote X.X.X.X 4768
resolv-retry infinite
nobind
persist-key
persist-tun
ca /usr/local/etc/openvpn/keys/ca.crt
cert /usr/local/etc/openvpn/keys/dikom.crt
key /usr/local/etc/openvpn/keys/dikom.key
comp-lzo
verb 6
mute 20
user nobody
group nogroup
status /var/log/openvpn/openvpn-status.log
log /var/log/openvpn/openvpn.log
rl0: flags=8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> metric 0 mtu 1500
options=3808<VLAN_MTU,WOL_UCAST,WOL_MCAST,WOL_MAGIC>
ether цифры
inet A.B.C.D netmask 0xfffffffc broadcast провайдера
media: Ethernet autoselect (100baseTX <full-duplex>)
status: active
xl0: flags=8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> metric 0 mtu 1500
options=82009<RXCSUM,VLAN_MTU,WOL_MAGIC,LINKSTATE>
ether цифры
inet 192.168.0.110 netmask 0xffffff00 broadcast 192.168.0.255
media: Ethernet autoselect (100baseTX <full-duplex>)
status: active
tun1: flags=8151<UP,POINTOPOINT,RUNNING,PROMISC,MULTICAST> metric 0 mtu 1500
options=80000<LINKSTATE>
inet 10.10.111.14 --> 10.10.111.13 netmask 0xffffffff
Opened by PID 86934
default ip провайдера UGS 1167 8026801 rl0
10.10.111.0/24 10.10.111.13 UGS 0 24134 tun1
10.10.111.13 link#20 UH 0 5 tun1
10.10.111.14 link#20 UHS 0 6 lo0
192.168.25.0/24 tun1 US 0 2648 tun1
сетка провайдера/30 link#1 U 0 2 rl0
A.B.C.D link#1 UHS 0 26864 lo0
127.0.0.1 link#6 UH 0 1437550 lo0
192.168.0.0/24 link#2 U 88 9683556 xl0
192.168.0.110 link#2 UHS 3 74436 lo0