Eu finalmente resolvi o meu problema: foi devido ao meu roteador, eu não atualizei por um longo tempo. E no final da atualização, tudo estava funcionando:)
Obrigado
Eu criei uma VPN com o OpenVPN no meu Rapsberry Pi 3 (Ubuntu Mate) com este tutorial: link . Mas quando tento conectar meu computador na minha VPN com o Tunnelblick, tenho este erro:
Aquiestáoarquivodelog:
2016-12-1821:48:55us=588356CurrentParameterSettings:2016-12-1821:48:55us=588588config='/.../config.ovpn'2016-12-1821:48:55us=588603mode=02016-12-1821:48:55us=588613show_ciphers=DISABLED2016-12-1821:48:55us=588623show_digests=DISABLED2016-12-1821:48:55us=588632show_engines=DISABLED2016-12-1821:48:55us=588641genkey=DISABLED2016-12-1821:48:55us=588651key_pass_file='[UNDEF]'2016-12-1821:48:55us=588661show_tls_ciphers=DISABLED2016-12-1821:48:55us=588670Connectionprofiles[default]:2016-12-1821:48:55us=588683proto=udp2016-12-1821:48:55us=588693local='[UNDEF]'2016-12-1821:48:55us=588703local_port=02016-12-1821:48:55us=588712remote='MYIP'2016-12-1821:48:55us=588722remote_port=11942016-12-1821:48:55us=588731remote_float=DISABLED2016-12-1821:48:55us=588741bind_defined=DISABLED2016-12-1821:48:55us=588750bind_local=DISABLED2016-12-1821:48:55us=588760connect_retry_seconds=52016-12-1821:48:55us=588769connect_timeout=102016-12-1821:48:55us=588778NOTE:--mutetriggered...2016-12-1821:48:55us=588799255variation(s)onprevious20message(s)suppressedby--mute2016-12-1821:48:55us=588812OpenVPN2.3.12x86_64-apple-darwin[SSL(OpenSSL)][LZO][PKCS11][MH][IPv6]builtonNov1720162016-12-1821:48:55us=588830libraryversions:OpenSSL1.0.2j26Sep2016,LZO2.092016-12-1821:48:55us=589832MANAGEMENT:TCPSocketlisteningon[AF_INET]127.0.0.1:13392016-12-1821:48:55us=589940Needholdreleasefrommanagementinterface,waiting...2016-12-1821:48:55us=998065MANAGEMENT:Clientconnectedfrom[AF_INET]127.0.0.1:13392016-12-1821:48:55*Tunnelblick:openvpnstartstartingOpenVPN2016-12-1821:48:56*Tunnelblick:EstablishedcommunicationwithOpenVPN2016-12-1821:48:56*Tunnelblick:ObtainedpassphrasefromtheKeychain2016-12-1821:48:56us=15623MANAGEMENT:CMD'pid'2016-12-1821:48:56us=15778MANAGEMENT:CMD'stateon'2016-12-1821:48:56us=15946MANAGEMENT:CMD'state'2016-12-1821:48:56us=16068MANAGEMENT:CMD'bytecount1'2016-12-1821:48:56us=16155MANAGEMENT:CMD'holdrelease'2016-12-1821:48:56us=16395NOTE:thecurrent--script-securitysettingmayallowthisconfigurationtocalluser-definedscripts2016-12-1821:48:56us=37387MANAGEMENT:CMD'password[...]'2016-12-1821:48:56us=37565WARNING:thisconfigurationmaycachepasswordsinmemory--usetheauth-nocacheoptiontopreventthis2016-12-1821:48:56us=38716ControlChannelAuthentication:tls-authusingINLINEstatickeyfile2016-12-1821:48:56us=38788OutgoingControlChannelAuthentication:Using160bitmessagehash'SHA1'forHMACauthentication2016-12-1821:48:56us=38840IncomingControlChannelAuthentication:Using160bitmessagehash'SHA1'forHMACauthentication2016-12-1821:48:56us=38914LZOcompressioninitialized2016-12-1821:48:56us=39034ControlChannelMTUparms[L:1558D:1184EF:66EB:0ET:0EL:3]2016-12-1821:48:56us=39119SocketBuffers:R=[196724->196724]S=[9216->9216]2016-12-1821:48:56us=39180DataChannelMTUparms[L:1558D:1450EF:58EB:143ET:0EL:3AF:3/1]2016-12-1821:48:56us=39241LocalOptionsString:'V4,dev-typetun,link-mtu1558,tun-mtu1500,protoUDPv4,comp-lzo,keydir1,cipherAES-128-CBC,authSHA1,keysize128,tls-auth,key-method2,tls-client'2016-12-1821:48:56us=39289ExpectedRemoteOptionsString:'V4,dev-typetun,link-mtu1558,tun-mtu1500,protoUDPv4,comp-lzo,keydir0,cipherAES-128-CBC,authSHA1,keysize128,tls-auth,key-method2,tls-server'2016-12-1821:48:56us=39340LocalOptionshash(VER=V4):'272f1b58'2016-12-1821:48:56us=39392ExpectedRemoteOptionshash(VER=V4):'a2e63101'2016-12-1821:48:56us=39444UDPv4linklocal:[undef]2016-12-1821:48:56us=39496UDPv4linkremote:[AF_INET]myip:11942016-12-1821:48:56us=39561MANAGEMENT:>STATE:1482094136,WAIT,,,2016-12-1821:48:56us=39689UDPv4WRITE[42]to[AF_INET]myip:1194:P_CONTROL_HARD_RESET_CLIENT_V2kid=0pid=[#1][]pid=0DATAlen=02016-12-1821:48:58us=416600UDPv4WRITE[42]to[AF_INET]MYIP:1194:P_CONTROL_HARD_RESET_CLIENT_V2kid=0pid=[#2][]pid=0DATAlen=02016-12-1821:49:03us=192515UDPv4WRITE[42]to[AF_INET]myip:1194:P_CONTROL_HARD_RESET_CLIENT_V2kid=0pid=[#3][]pid=0DATAlen=02016-12-1821:49:11us=502022UDPv4WRITE[42]to[AF_INET]myip:1194:P_CONTROL_HARD_RESET_CLIENT_V2kid=0pid=[#4][]pid=0DATAlen=02016-12-1821:49:27us=831284UDPv4WRITE[42]to[AF_INET]myip:1194:P_CONTROL_HARD_RESET_CLIENT_V2kid=0pid=[#5][]pid=0DATAlen=0
Aquiestáoarquivodeconfiguração:
local192.168.1.21devtunprotoudpport1194ca/etc/openvpn/easy-rsa/keys/ca.crtcert/etc/openvpn/easy-rsa/keys/NissaVPN.crtkey/etc/openvpn/easy-rsa/keys/NissaVPN.keydh/etc/openvpn/easy-rsa/keys/dh2048.pemserver10.8.0.0255.255.255.0ifconfig10.8.0.110.8.0.2push"route 10.8.0.1 255.255.255.255"
push "route 10.8.0.0 255.255.255.0"
push "route 192.168.1.21 255.255.255.0"
push "dhcp-option DNS 192.168.1.1"
push "redirect-gateway def1"
client-to-client
duplicate-cn
keepalive 10 120
tls-auth /etc/openvpn/easy-rsa/keys/ta.key 0
cipher AES-128-CBC
comp-lzo
user nobody
group nogroup
persist-key
persist-tun
status /var/log/openvpn-status.log 20
log /var/log/openvpn.log
verb 1
Aqui está a chave RSA padrão:
client
dev tun
proto udp
remote MYIP 1194
resolv-retry infinite
nobind
persist-key
persist-tun
mute-replay-warnings
ns-cert-type server
key-direction 1
cipher AES-128-CBC
comp-lzo
verb 1
mute 20
Aqui está o arquivo de firewall openvpn:
#!/bin/sh
iptables -t nat -A POSTROUTING -s 10.8.0.0/24 -o eth0 -j SNAT --to-source 192.168.1.21
O que posso fazer para repará-lo? Eu desabilitei meu firewall e meu roteador está configurado.
Eu finalmente resolvi o meu problema: foi devido ao meu roteador, eu não atualizei por um longo tempo. E no final da atualização, tudo estava funcionando:)
Obrigado
Tags vpn openvpn mate ubuntu raspberry-pi