Подключение по OpenVPN
Никак не могу подключиться к сервису hideme.ru по OpenVPN. Интернет от провайдера по PPPoE. Если я правильно понял ошибки в консоле, то дело в маршрутизации. Подскажите какие маршруты нужно добавить и как это сделать.
$ sudo openvpn --config "Ukraine, Kharkov S1.ovpn"
Mon Jul 13 21:28:50 2015 us=981597 Current Parameter Settings:
Mon Jul 13 21:28:50 2015 us=981684 config = 'Ukraine, Kharkov S1.ovpn'
Mon Jul 13 21:28:50 2015 us=981700 mode = 0
Mon Jul 13 21:28:50 2015 us=981711 persist_config = DISABLED
Mon Jul 13 21:28:50 2015 us=981722 persist_mode = 1
Mon Jul 13 21:28:50 2015 us=981732 show_ciphers = DISABLED
Mon Jul 13 21:28:50 2015 us=981742 show_digests = DISABLED
Mon Jul 13 21:28:50 2015 us=981752 show_engines = DISABLED
Mon Jul 13 21:28:50 2015 us=981763 genkey = DISABLED
Mon Jul 13 21:28:50 2015 us=981774 key_pass_file = '[UNDEF]'
Mon Jul 13 21:28:50 2015 us=981785 show_tls_ciphers = DISABLED
Mon Jul 13 21:28:50 2015 us=981795 Connection profiles [default]:
Mon Jul 13 21:28:50 2015 us=981806 proto = tcp-client
Mon Jul 13 21:28:50 2015 us=981816 local = '[UNDEF]'
Mon Jul 13 21:28:50 2015 us=981827 local_port = 0
Mon Jul 13 21:28:50 2015 us=981837 remote = '46.148.21.34'
Mon Jul 13 21:28:50 2015 us=981847 remote_port = 443
Mon Jul 13 21:28:50 2015 us=981857 remote_float = DISABLED
Mon Jul 13 21:28:50 2015 us=981867 bind_defined = DISABLED
Mon Jul 13 21:28:50 2015 us=981877 bind_local = DISABLED
Mon Jul 13 21:28:50 2015 us=981887 NOTE: --mute triggered...
Mon Jul 13 21:28:50 2015 us=981913 256 variation(s) on previous 20 message(s) suppressed by --mute
Mon Jul 13 21:28:50 2015 us=981925 OpenVPN 2.3.2 i686-pc-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [PKCS11] [eurephia] [MH] [IPv6] built on Dec 1 2014
Mon Jul 13 21:28:50 2015 us=998060 WARNING: file 'in_9413743.key' is group or others accessible
Mon Jul 13 21:28:51 2015 us=3783 LZO compression initialized
Mon Jul 13 21:28:51 2015 us=3881 Control Channel MTU parms [ L:1576 D:140 EF:40 EB:0 ET:0 EL:0 ]
Mon Jul 13 21:28:51 2015 us=3926 Socket Buffers: R=[87380->131072] S=[16384->131072]
Mon Jul 13 21:28:51 2015 us=3961 Data Channel MTU parms [ L:1576 D:1450 EF:44 EB:135 ET:32 EL:0 AF:3/1 ]
Mon Jul 13 21:28:51 2015 us=3986 Local Options String: 'V4,dev-type tap,link-mtu 1576,tun-mtu 1532,proto TCPv4_CLIENT,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Mon Jul 13 21:28:51 2015 us=3998 Expected Remote Options String: 'V4,dev-type tap,link-mtu 1576,tun-mtu 1532,proto TCPv4_SERVER,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Mon Jul 13 21:28:51 2015 us=4021 Local Options hash (VER=V4): '31fdf004'
Mon Jul 13 21:28:51 2015 us=4039 Expected Remote Options hash (VER=V4): '3e6d1056'
Mon Jul 13 21:28:51 2015 us=4064 Attempting to establish TCP connection with [AF_INET]46.148.21.34:443 [nonblock]
Mon Jul 13 21:28:52 2015 us=4227 TCP connection established with [AF_INET]46.148.21.34:443
Mon Jul 13 21:28:52 2015 us=4314 TCPv4_CLIENT link local: [undef]
Mon Jul 13 21:28:52 2015 us=4329 TCPv4_CLIENT link remote: [AF_INET]46.148.21.34:443
Mon Jul 13 21:28:52 2015 us=49962 TLS: Initial packet from [AF_INET]46.148.21.34:443, sid=91fe090c 5b12b355
Mon Jul 13 21:28:52 2015 us=994064 VERIFY OK: depth=1, C=DE, ST=Bayern, L=Gunzenhausen, O=HideME, CN=HideME CA, emailAddress=feedback@hideme.ru
Mon Jul 13 21:28:52 2015 us=994572 VERIFY OK: nsCertType=SERVER
Mon Jul 13 21:28:52 2015 us=994590 VERIFY OK: depth=0, C=DE, ST=Bayern, L=Gunzenhausen, O=HideME, CN=server, emailAddress=feedback@hideme.ru
Mon Jul 13 21:28:54 2015 us=961746 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
Mon Jul 13 21:28:54 2015 us=961796 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Mon Jul 13 21:28:54 2015 us=961882 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
Mon Jul 13 21:28:54 2015 us=961895 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Mon Jul 13 21:28:54 2015 us=961947 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA
Mon Jul 13 21:28:54 2015 us=961979 [server] Peer Connection Initiated with [AF_INET]46.148.21.34:443
Mon Jul 13 21:28:57 2015 us=52216 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
Mon Jul 13 21:28:57 2015 us=125911 PUSH: Received control message: 'PUSH_REPLY,route-gateway 10.116.0.1,ping 10,ping-restart 30,ifconfig 10.116.45.100 255.224.0.0'
Mon Jul 13 21:28:57 2015 us=125988 OPTIONS IMPORT: timers and/or timeouts modified
Mon Jul 13 21:28:57 2015 us=126003 OPTIONS IMPORT: --ifconfig/up options modified
Mon Jul 13 21:28:57 2015 us=126014 OPTIONS IMPORT: route-related options modified
Mon Jul 13 21:28:57 2015 us=126179 ROUTE_GATEWAY ON_LINK IFACE=ppp1 HWADDR=00:00:00:00:00:00
Mon Jul 13 21:28:57 2015 us=126480 TUN/TAP device tap0 opened
Mon Jul 13 21:28:57 2015 us=126504 TUN/TAP TX queue length set to 100
Mon Jul 13 21:28:57 2015 us=126524 do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
Mon Jul 13 21:28:57 2015 us=126554 /sbin/ip link set dev tap0 up mtu 1500
Mon Jul 13 21:28:57 2015 us=129798 /sbin/ip addr add dev tap0 10.116.45.100/11 broadcast 10.127.255.255
Mon Jul 13 21:28:57 2015 us=132974 /sbin/ip route add 46.148.21.34/32 via 0.0.0.0
RTNETLINK answers: No such device
Mon Jul 13 21:28:57 2015 us=135979 ERROR: Linux route add command failed: external program exited with error status: 2
Mon Jul 13 21:28:57 2015 us=136064 /sbin/ip route add 0.0.0.0/1 via 10.116.0.1
Mon Jul 13 21:28:57 2015 us=137630 /sbin/ip route add 128.0.0.0/1 via 10.116.0.1
Mon Jul 13 21:28:57 2015 us=140763 Initialization Sequence Completed
Mon Jul 13 21:29:27 2015 us=136001 [server] Inactivity timeout (--ping-restart), restarting
Mon Jul 13 21:29:27 2015 us=136211 TCP/UDP: Closing socket
Mon Jul 13 21:29:27 2015 us=136254 SIGUSR1[soft,ping-restart] received, process restarting
Mon Jul 13 21:29:27 2015 us=136274 Restart pause, 5 second(s)
Mon Jul 13 21:29:32 2015 us=136395 Re-using SSL/TLS context
Mon Jul 13 21:29:32 2015 us=136501 LZO compression initialized
Mon Jul 13 21:29:32 2015 us=136572 Control Channel MTU parms [ L:1576 D:140 EF:40 EB:0 ET:0 EL:0 ]
Mon Jul 13 21:29:32 2015 us=136609 Socket Buffers: R=[87380->131072] S=[16384->131072]
Mon Jul 13 21:29:32 2015 us=136630 Data Channel MTU parms [ L:1576 D:1450 EF:44 EB:135 ET:32 EL:0 AF:3/1 ]
Mon Jul 13 21:29:32 2015 us=136657 Local Options String: 'V4,dev-type tap,link-mtu 1576,tun-mtu 1532,proto TCPv4_CLIENT,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Mon Jul 13 21:29:32 2015 us=136670 Expected Remote Options String: 'V4,dev-type tap,link-mtu 1576,tun-mtu 1532,proto TCPv4_SERVER,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Mon Jul 13 21:29:32 2015 us=136693 Local Options hash (VER=V4): '31fdf004'
Mon Jul 13 21:29:32 2015 us=136711 Expected Remote Options hash (VER=V4): '3e6d1056'
Mon Jul 13 21:29:32 2015 us=136728 Attempting to establish TCP connection with [AF_INET]46.148.21.34:443 [nonblock]
Mon Jul 13 21:29:33 2015 us=136894 TCP: connect to [AF_INET]46.148.21.34:443 failed, will try again in 5 seconds: No route to host
Mon Jul 13 21:29:39 2015 us=137272 TCP: connect to [AF_INET]46.148.21.34:443 failed, will try again in 5 seconds: No route to host
Mon Jul 13 21:29:45 2015 us=137649 TCP: connect to [AF_INET]46.148.21.34:443 failed, will try again in 5 seconds: No route to host
Mon Jul 13 21:29:51 2015 us=138038 TCP: connect to [AF_INET]46.148.21.34:443 failed, will try again in 5 seconds: No route to host
Mon Jul 13 21:29:57 2015 us=138372 TCP: connect to [AF_INET]46.148.21.34:443 failed, will try again in 5 seconds: No route to host
Mon Jul 13 21:30:03 2015 us=138756 TCP: connect to [AF_INET]46.148.21.34:443 failed, will try again in 5 seconds: No route to host
Mon Jul 13 21:30:09 2015 us=139139 TCP: connect to [AF_INET]46.148.21.34:443 failed, will try again in 5 seconds: No route to host
^CMon Jul 13 21:30:13 2015 us=622266 /sbin/ip route del 46.148.21.34/32
RTNETLINK answers: No such process
Mon Jul 13 21:30:13 2015 us=623292 ERROR: Linux route delete command failed: external program exited with error status: 2
Mon Jul 13 21:30:13 2015 us=623351 /sbin/ip route del 0.0.0.0/1
Mon Jul 13 21:30:13 2015 us=624279 /sbin/ip route del 128.0.0.0/1
Mon Jul 13 21:30:13 2015 us=625120 Closing TUN/TAP interface
Mon Jul 13 21:30:13 2015 us=625181 /sbin/ip addr del dev tap0 10.116.45.100/11
Mon Jul 13 21:30:13 2015 us=636955 SIGINT[hard,init_instance] received, process exiting
default dev ppp0 scope link
10.87.255.254 dev ppp0 proto kernel scope link src 8х.хх.хх.хх
0.0.0.0/1 via 10.116.0.1 dev tap0
default dev ppp0 scope link
10.87.255.254 dev ppp0 proto kernel scope link src 8х.хх.хх.хх
10.96.0.0/11 dev tap0 proto kernel scope link src 10.116.45.100
128.0.0.0/1 via 10.116.0.1 dev tap0