linode openvpn routing all traffic to client

2013-09-04 22:20:00 +08:00
 masterqing
大家好,我照着这片教程https://library.linode.com/networking/openvpn/ubuntu-12.04-precise装的OPENVPN,奇怪的是在win7下面用OPEN CLIENT可以上YOUTUBE,用ubuntu12.04的client可以连上OPENVPN,但就是看不了YOUTUBE, 我把LOG贴出来:

WIN7 client LOG:Wed Sep 04 19:34:28 2013 OpenVPN 2.3.2 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [PKCS11] [eurephia] [IPv6] built on Aug 8 2013
Enter Management Password:
Wed Sep 04 19:34:28 2013 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:25340
Wed Sep 04 19:34:28 2013 Need hold release from management interface, waiting...
Wed Sep 04 19:34:28 2013 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:25340
Wed Sep 04 19:34:28 2013 MANAGEMENT: CMD 'state on'
Wed Sep 04 19:34:28 2013 MANAGEMENT: CMD 'log all on'
Wed Sep 04 19:34:29 2013 MANAGEMENT: CMD 'hold off'
Wed Sep 04 19:34:29 2013 MANAGEMENT: CMD 'hold release'
Wed Sep 04 19:34:29 2013 Socket Buffers: R=[8192->8192] S=[8192->8192]
Wed Sep 04 19:34:29 2013 UDPv4 link local: [undef]
Wed Sep 04 19:34:29 2013 UDPv4 link remote: [AF_INET]106.186.xx.xx:xxxx
Wed Sep 04 19:34:29 2013 MANAGEMENT: >STATE:1378294469,WAIT,,,
Wed Sep 04 19:34:29 2013 MANAGEMENT: >STATE:1378294469,AUTH,,,
Wed Sep 04 19:34:29 2013 TLS: Initial packet from [AF_INET]106.186.xx.xx:xxxx, sid=c5cac251 a46b9495
Wed Sep 04 19:34:31 2013 VERIFY OK:
Wed Sep 04 19:34:31 2013 VERIFY OK: nsCertType=SERVER
Wed Sep 04 19:34:31 2013 VERIFY OK:
Wed Sep 04 19:34:35 2013 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
Wed Sep 04 19:34:35 2013 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Wed Sep 04 19:34:35 2013 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
Wed Sep 04 19:34:35 2013 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Wed Sep 04 19:34:35 2013 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
Wed Sep 04 19:34:35 2013 [server] Peer Connection Initiated with [AF_INET]106.186.xx.xx:xxxx
Wed Sep 04 19:34:36 2013 MANAGEMENT: >STATE:1378294476,GET_CONFIG,,,
Wed Sep 04 19:34:38 2013 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
Wed Sep 04 19:34:38 2013 PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1 bypass-dhcp,dhcp-option DNS 10.8.0.1,route 10.8.0.1,topology net30,ping 10,ping-restart 120,ifconfig 10.8.0.6 10.8.0.5'
Wed Sep 04 19:34:38 2013 OPTIONS IMPORT: timers and/or timeouts modified
Wed Sep 04 19:34:38 2013 OPTIONS IMPORT: --ifconfig/up options modified
Wed Sep 04 19:34:38 2013 OPTIONS IMPORT: route options modified
Wed Sep 04 19:34:38 2013 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Wed Sep 04 19:34:38 2013 do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
Wed Sep 04 19:34:38 2013 MANAGEMENT: >STATE:1378294478,ASSIGN_IP,,10.8.0.6,
Wed Sep 04 19:34:38 2013 open_tun, tt->ipv6=0
Wed Sep 04 19:34:38 2013 TAP-WIN32 device [Local Area Connection 2] opened: \\.\Global\{2C97BEE7-5727-41C0-B62A-E79D3CBE8F77}.tap
Wed Sep 04 19:34:38 2013 TAP-Windows Driver Version 9.9
Wed Sep 04 19:34:38 2013 Notified TAP-Windows driver to set a DHCP IP/netmask of 10.8.0.6/255.255.255.252 on interface {2C97BEE7-5727-41C0-B62A-E79D3CBE8F77} [DHCP-serv: 10.8.0.5, lease-time: 31536000]
Wed Sep 04 19:34:38 2013 Successful ARP Flush on interface [22] {2C97BEE7-5727-41C0-B62A-E79D3CBE8F77}
Wed Sep 04 19:34:40 2013 TEST ROUTES: 2/2 succeeded len=1 ret=1 a=0 u/d=up
Wed Sep 04 19:34:40 2013 C:\Windows\system32\route.exe ADD 106.186.xx.xx MASK 255.255.255.255 192.168.42.129
Wed Sep 04 19:34:40 2013 env_block: add PATH=C:\Windows\System32;C:\WINDOWS;C:\WINDOWS\System32\Wbem
Wed Sep 04 19:34:40 2013 C:\Windows\system32\route.exe ADD 192.168.42.129 MASK 255.255.255.255 192.168.42.129 IF 20
Wed Sep 04 19:34:40 2013 env_block: add PATH=C:\Windows\System32;C:\WINDOWS;C:\WINDOWS\System32\Wbem
Wed Sep 04 19:34:40 2013 C:\Windows\system32\route.exe ADD 0.0.0.0 MASK 128.0.0.0 10.8.0.5
Wed Sep 04 19:34:40 2013 env_block: add PATH=C:\Windows\System32;C:\WINDOWS;C:\WINDOWS\System32\Wbem
Wed Sep 04 19:34:40 2013 C:\Windows\system32\route.exe ADD 128.0.0.0 MASK 128.0.0.0 10.8.0.5
Wed Sep 04 19:34:40 2013 env_block: add PATH=C:\Windows\System32;C:\WINDOWS;C:\WINDOWS\System32\Wbem
Wed Sep 04 19:34:40 2013 MANAGEMENT: >STATE:1378294480,ADD_ROUTES,,,
Wed Sep 04 19:34:40 2013 C:\Windows\system32\route.exe ADD 10.8.0.1 MASK 255.255.255.255 10.8.0.5
Wed Sep 04 19:34:40 2013 env_block: add PATH=C:\Windows\System32;C:\WINDOWS;C:\WINDOWS\System32\Wbem
Wed Sep 04 19:34:40 2013 Initialization Sequence Completed
Wed Sep 04 19:34:40 2013 MANAGEMENT: >STATE:1378294480,CONNECTED,SUCCESS,10.8.0.6,106.186.xx.xx



ubuntu client log: Sep 4 19:12:18 Satellite ovpn-client[1072]: Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
Sep 4 19:12:18 Satellite ovpn-client[1072]: Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Sep 4 19:12:18 Satellite ovpn-client[1072]: Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
Sep 4 19:12:18 Satellite ovpn-client[1072]: Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Sep 4 19:12:18 Satellite ovpn-client[1072]: Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
Sep 4 19:12:18 Satellite ovpn-client[1072]: [server] Peer Connection Initiated with [AF_INET]106.186.xx.xx:xxxx
Sep 4 19:12:21 Satellite ovpn-client[1072]: SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
Sep 4 19:12:21 Satellite ovpn-client[1072]: PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1 bypass-dhcp,dhcp-option DNS 10.8.0.1,route 10.8.0.1,topology net30,ping 10,ping-restart 120,ifconfig 10.8.0.6 10.8.0.5'
Sep 4 19:12:21 Satellite ovpn-client[1072]: OPTIONS IMPORT: timers and/or timeouts modified
Sep 4 19:12:21 Satellite ovpn-client[1072]: OPTIONS IMPORT: --ifconfig/up options modified
Sep 4 19:12:21 Satellite ovpn-client[1072]: OPTIONS IMPORT: route options modified
Sep 4 19:12:21 Satellite ovpn-client[1072]: OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Sep 4 19:12:21 Satellite ovpn-client[1072]: ROUTE default_gateway=192.168.42.129
Sep 4 19:12:21 Satellite ovpn-client[1072]: TUN/TAP device tun0 opened
Sep 4 19:12:21 Satellite ovpn-client[1072]: TUN/TAP TX queue length set to 100
Sep 4 19:12:21 Satellite ovpn-client[1072]: do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
Sep 4 19:12:21 Satellite ovpn-client[1072]: /sbin/ifconfig tun0 10.8.0.6 pointopoint 10.8.0.5 mtu 1500
Sep 4 19:12:21 Satellite ovpn-client[1072]: /sbin/route add -net 106.186.xx.xx netmask 255.255.255.255 gw 192.168.42.129
Sep 4 19:12:21 Satellite ovpn-client[1072]: /sbin/route add -net 0.0.0.0 netmask 128.0.0.0 gw 10.8.0.5
Sep 4 19:12:21 Satellite ovpn-client[1072]: /sbin/route add -net 128.0.0.0 netmask 128.0.0.0 gw 10.8.0.5
Sep 4 19:12:21 Satellite ovpn-client[1072]: /sbin/route add -net 10.8.0.1 netmask 255.255.255.255 gw 10.8.0.5
Sep 4 19:12:21 Satellite ovpn-client[1072]: Initialization Sequence Completed
Sep 4 19:13:35 Satellite ovpn-client[1072]: Replay-window backtrack occurred [1]
Sep 4 19:13:39 Satellite ovpn-client[1072]: Replay-window backtrack occurred [2]
1047 次点击
所在节点    Linode
0 条回复

这是一个专为移动设备优化的页面(即为了让你能够在 Google 搜索结果里秒开这个页面),如果你希望参与 V2EX 社区的讨论,你可以继续到 V2EX 上打开本讨论主题的完整版本。

https://www.v2ex.com/t/81349

V2EX 是创意工作者们的社区,是一个分享自己正在做的有趣事物、交流想法,可以遇见新朋友甚至新机会的地方。

V2EX is a community of developers, designers and creative people.

© 2021 V2EX