LINUX.ORG.RU

Не работает vpn

 , , , ,


0

2

Добрый день, я новичок в Archlinux, встретился с следующей проблемой: Испортировал файл .ovpn, подключился, но соединения нет. Пакеты networkmanager, networkmanager-applet, networkmanager-openvpn установлены, никаких ошибок не вижу, просто нет подключиния.

Попытался подключиться через консоль командой sudo openvpn –config file.ovpn –management localhost 1194 И без ‘–management localhost 1194’, вижу много логов, но не понимаю о чем они


2021-04-10 12:55:50 setsockopt(IPV6_V6ONLY=0)
2021-04-10 12:55:50 MANAGEMENT: TCP Socket listening on [AF_INET6]::1:1194
2021-04-10 12:55:50 WARNING: --ns-cert-type is DEPRECATED.  Use --remote-cert-tls instead.
2021-04-10 12:55:50 TCP/UDP: Preserving recently used remote address: [AF_INET]212.33.23.174:1194
2021-04-10 12:55:50 Socket Buffers: R=[212992->212992] S=[212992->212992]
2021-04-10 12:55:50 UDP link local: (not bound)
2021-04-10 12:55:50 UDP link remote: [AF_INET]212.33.23.174:1194
2021-04-10 12:55:50 TLS: Initial packet from [AF_INET]212.33.23.174:1194, sid=d520f7eb 4a3c32e6
2021-04-10 12:55:50 VERIFY OK: depth=1, C=RU, ST=Russia, L=Moscow, O=QSOFT Ltd, OU=IT Dep, CN=v.qsoft.ru, emailAddress=adm1n@qsoft.ru
2021-04-10 12:55:50 VERIFY OK: nsCertType=SERVER
2021-04-10 12:55:50 VERIFY OK: depth=0, C=RU, ST=Russia, L=Moscow, O=QSOFT Ltd, OU=IT Dep, CN=v.qsoft.ru, emailAddress=adm1n@qsoft.ru
2021-04-10 12:55:50 WARNING: 'link-mtu' is used inconsistently, local='link-mtu 1542', remote='link-mtu 1442'
2021-04-10 12:55:50 WARNING: 'tun-mtu' is used inconsistently, local='tun-mtu 1500', remote='tun-mtu 1400'
2021-04-10 12:55:50 Control Channel: TLSv1.3, cipher TLSv1.3 TLS_AES_256_GCM_SHA384, 1024 bit RSA
2021-04-10 12:55:50 [v.qsoft.ru] Peer Connection Initiated with [AF_INET]212.33.23.174:1194
2021-04-10 12:55:51 SENT CONTROL [v.qsoft.ru]: 'PUSH_REQUEST' (status=1)
2021-04-10 12:55:51 PUSH: Received control message: 'PUSH_REPLY,route 172.27.0.0 255.255.0.0,route 172.27.2.205 255.255.255.255,route 172.19.0.0 255.255.0.0,route 10.1.0.234 255.255.255.255,route 10.1.0.233 255.255.255.255,route 10.1.0.245 255.255.255.255,route 10.1.0.246 255.255.255.255,route 10.1.0.203 255.255.255.255,route 10.1.210.35 255.255.255.255,route 90.156.233.56 255.255.255.255,route 90.156.233.57 255.255.255.255,route 90.156.238.10 255.255.255.255,route 92.53.115.24 255.255.255.248,route 144.76.28.102 255.255.255.255,route 10.252.0.0 255.255.0.0,route 10.70.0.0 255.255.0.0,route 10.61.160.11 255.255.255.255,route 10.61.162.2 255.255.255.255,route 10.61.162.3 255.255.255.255,route 10.255.2.0 255.255.255.0,route 81.177.165.251 255.255.255.255,route 104.199.89.195 255.255.255.255,route 192.168.102.78 255.255.255.255,route 10.80.0.0 255.255.0.0,route 176.107.161.73 255.255.255.255,route 176.107.161.74 255.255.255.255,route 176.107.161.75 255.255.255.255,push-continuation 2'
2021-04-10 12:55:51 PUSH: Received control message: 'PUSH_REPLY,route 92.242.38.226 255.255.255.255,route 10.99.200.11 255.255.255.255,route 45.60.130.21 255.255.255.255,route 176.115.205.136 255.255.255.255,route 89.208.208.203 255.255.255.255,route 10.183.69.0 255.255.255.0,route 185.130.212.41 255.255.255.0,route 10.2.233.40 255.255.255.0,route 10.2.233.43 255.255.255.0,route 91.197.176.231 255.255.255.255,route 192.168.108.0 255.255.255.0,route 192.168.242.0 255.255.255.0,route 62.105.148.126 255.255.255.255,route 10.162.246.70 255.255.255.255,route 193.105.40.47 255.255.255.255,route 5.188.197.18 255.255.255.255,route 213.221.5.149 255.255.255.255,route 178.154.248.11 255.255.255.255,route 178.154.248.133 255.255.255.255,dhcp-option DNS 172.27.1.1,route-gateway 10.90.0.1,topology subnet,ping 10,ping-restart 120,ifconfig 10.90.0.7 255.255.255.0,peer-id 2,cipher AES-256-GCM,push-continuation 1'
2021-04-10 12:55:51 OPTIONS IMPORT: timers and/or timeouts modified
2021-04-10 12:55:51 OPTIONS IMPORT: --ifconfig/up options modified
2021-04-10 12:55:51 OPTIONS IMPORT: route options modified
2021-04-10 12:55:51 OPTIONS IMPORT: route-related options modified
2021-04-10 12:55:51 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
2021-04-10 12:55:51 OPTIONS IMPORT: peer-id set
2021-04-10 12:55:51 OPTIONS IMPORT: adjusting link_mtu to 1625
2021-04-10 12:55:51 OPTIONS IMPORT: data channel crypto options modified
2021-04-10 12:55:51 Data Channel: using negotiated cipher 'AES-256-GCM'
2021-04-10 12:55:51 Outgoing Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
2021-04-10 12:55:51 Incoming Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
2021-04-10 12:55:51 net_route_v4_best_gw query: dst 0.0.0.0
2021-04-10 12:55:51 net_route_v4_best_gw result: via 192.168.3.1 dev eno1
2021-04-10 12:55:51 ROUTE_GATEWAY 192.168.3.1/255.255.255.0 IFACE=eno1 HWADDR=18:c0:4d:4c:60:6c
2021-04-10 12:55:51 TUN/TAP device tun0 opened
2021-04-10 12:55:51 net_iface_mtu_set: mtu 1500 for tun0
2021-04-10 12:55:51 net_iface_up: set tun0 up
2021-04-10 12:55:51 net_addr_v4_add: 10.90.0.7/24 dev tun0
2021-04-10 12:55:51 net_route_v4_add: 172.27.0.0/16 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 net_route_v4_add: 172.27.2.205/32 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 net_route_v4_add: 172.19.0.0/16 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 net_route_v4_add: 10.1.0.234/32 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 net_route_v4_add: 10.1.0.233/32 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 net_route_v4_add: 10.1.0.245/32 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 net_route_v4_add: 10.1.0.246/32 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 net_route_v4_add: 10.1.0.203/32 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 net_route_v4_add: 10.1.210.35/32 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 net_route_v4_add: 90.156.233.56/32 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 net_route_v4_add: 90.156.233.57/32 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 net_route_v4_add: 90.156.238.10/32 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 net_route_v4_add: 92.53.115.24/29 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 net_route_v4_add: 144.76.28.102/32 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 net_route_v4_add: 10.252.0.0/16 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 net_route_v4_add: 10.70.0.0/16 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 net_route_v4_add: 10.61.160.11/32 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 net_route_v4_add: 10.61.162.2/32 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 net_route_v4_add: 10.61.162.3/32 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 net_route_v4_add: 10.255.2.0/24 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 net_route_v4_add: 81.177.165.251/32 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 net_route_v4_add: 104.199.89.195/32 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 net_route_v4_add: 192.168.102.78/32 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 net_route_v4_add: 10.80.0.0/16 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 net_route_v4_add: 176.107.161.73/32 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 net_route_v4_add: 176.107.161.74/32 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 net_route_v4_add: 176.107.161.75/32 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 net_route_v4_add: 92.242.38.226/32 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 net_route_v4_add: 10.99.200.11/32 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 net_route_v4_add: 45.60.130.21/32 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 net_route_v4_add: 176.115.205.136/32 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 net_route_v4_add: 89.208.208.203/32 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 net_route_v4_add: 10.183.69.0/24 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 net_route_v4_add: 185.130.212.41/24 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 sitnl_send: rtnl: generic error (-22): Invalid argument
2021-04-10 12:55:51 ERROR: Linux route add command failed
2021-04-10 12:55:51 net_route_v4_add: 10.2.233.40/24 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 sitnl_send: rtnl: generic error (-22): Invalid argument
2021-04-10 12:55:51 ERROR: Linux route add command failed
2021-04-10 12:55:51 net_route_v4_add: 10.2.233.43/24 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 sitnl_send: rtnl: generic error (-22): Invalid argument
2021-04-10 12:55:51 ERROR: Linux route add command failed
2021-04-10 12:55:51 net_route_v4_add: 91.197.176.231/32 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 net_route_v4_add: 192.168.108.0/24 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 net_route_v4_add: 192.168.242.0/24 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 net_route_v4_add: 62.105.148.126/32 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 net_route_v4_add: 10.162.246.70/32 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 net_route_v4_add: 193.105.40.47/32 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 net_route_v4_add: 5.188.197.18/32 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 net_route_v4_add: 213.221.5.149/32 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 net_route_v4_add: 178.154.248.11/32 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 net_route_v4_add: 178.154.248.133/32 via 10.90.0.1 dev [NULL] table 0 metric -1
2021-04-10 12:55:51 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
2021-04-10 12:55:51 Initialization Sequence Completed

После последнего сообщения работа команды не прекращается, соединения так же нет. Прошу хотя бы направить в какую сторону копать



Последнее исправление: nikirama (всего исправлений: 1)

Ну, соединение устанавливается. Команда и не должна завершаться, это нормально. Как проверял сеть, ping 8.8.8.8 работает? Подозреваю, что используется DNS-резолвер провайдера. Можно указать адреса DNS-сервера VPN, если они тебе известны.

anonymous-angler ★☆
()

ERROR: Linux route add command failed Вангую. смотри в сторону CAP_NET_ADMIN. Попробуй удали user group из конфига и запусти скорее всего будет работать.

anonymous
()
Вы не можете добавлять комментарии в эту тему. Тема перемещена в архив.