filtragem de dispositivos VPN ASUS Asuswrt Merlin

0

Estou tentando fazer o seguinte funcionar: link

Eu passei por cada etapa e comecei do zero muitas vezes, mas sempre com o mesmo resultado ... todos os dispositivos da rede acabam passando pela VPN. Eu tenho alguns telefones, tablets e PCs e uma TV na minha rede. Eu basicamente quero apenas a TV para usar o OpenVPN e o resto para usar a conexão ISP padrão. Eu não usei o último arquivo de lote, pois não preciso dele.

Meu roteador é o Asus AC68U, executando o Asuswrt-Merlin v. RT-AC68U_378.54_2

Login do sistema na ativação de VPN:

Jun 20 19:33:11 rc_service: httpd 491:notify_rc start_vpnclient1
Jun 20 19:33:11 kernel: tun: Universal TUN/TAP device driver, 1.6
Jun 20 19:33:11 kernel: tun: (C) 1999-2004 Max Krasnyansky <[email protected]>
Jun 20 19:33:13 openvpn[1113]: DEPRECATED OPTION: --tls-remote, please update your configuration
Jun 20 19:33:13 openvpn[1113]: OpenVPN 2.3.6 arm-unknown-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [MH] [IPv6] built on Jun 10 2015
Jun 20 19:33:13 openvpn[1113]: library versions: OpenSSL 1.0.2a 19 Mar 2015, LZO 2.08
Jun 20 19:33:13 openvpn[1113]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Jun 20 19:33:13 openvpn[1113]: Control Channel Authentication: using 'static.key' as a OpenVPN static key file
Jun 20 19:33:13 openvpn[1113]: Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Jun 20 19:33:13 openvpn[1113]: Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Jun 20 19:33:13 openvpn[1113]: Socket Buffers: R=[122880->131072] S=[122880->131072]
Jun 20 19:33:13 openvpn[1114]: UDPv4 link local: [undef]
Jun 20 19:33:13 openvpn[1114]: UDPv4 link remote: [AF_INET]107.181.xx.xxx:1194
Jun 20 19:33:13 openvpn[1114]: TLS: Initial packet from [AF_INET]107.181.xx.xxx:1194, sid=b716b428 ba1bfb13
Jun 20 19:33:14 openvpn[1114]: VERIFY OK: depth=1, /C=US/ST=CA/L=SanFrancisco/O=Fort-Funston/CN=Fort-Funston_CA/[email protected]
Jun 20 19:33:14 openvpn[1114]: VERIFY OK: nsCertType=SERVER
Jun 20 19:33:14 openvpn[1114]: VERIFY X509NAME OK: /C=US/ST=CA/O=Fort-Funston/CN=server_v1/[email protected]
Jun 20 19:33:14 openvpn[1114]: VERIFY OK: depth=0, /C=US/ST=CA/O=Fort-Funston/CN=server_v1/[email protected]
Jun 20 19:33:17 openvpn[1114]: Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
Jun 20 19:33:17 openvpn[1114]: Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Jun 20 19:33:17 openvpn[1114]: Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
Jun 20 19:33:17 openvpn[1114]: Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Jun 20 19:33:17 openvpn[1114]: Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA
Jun 20 19:33:17 openvpn[1114]: [server_v1] Peer Connection Initiated with [AF_INET]107.181.69.130:1194
Jun 20 19:33:19 openvpn[1114]: SENT CONTROL [server_v1]: 'PUSH_REQUEST' (status=1)
Jun 20 19:33:19 openvpn[1114]: PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1,dhcp-option DNS 10.10.0.1,route 10.10.0.1,topology net30,ping 10,ping-restart 60,ifconfig 10.10.2.10 10.10.2.9'
Jun 20 19:33:19 openvpn[1114]: OPTIONS IMPORT: timers and/or timeouts modified
Jun 20 19:33:19 openvpn[1114]: OPTIONS IMPORT: --ifconfig/up options modified
Jun 20 19:33:19 openvpn[1114]: OPTIONS IMPORT: route options modified
Jun 20 19:33:19 openvpn[1114]: OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Jun 20 19:33:19 openvpn[1114]: TUN/TAP device tun11 opened
Jun 20 19:33:19 openvpn[1114]: TUN/TAP TX queue length set to 100
Jun 20 19:33:19 openvpn[1114]: do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
Jun 20 19:33:19 openvpn[1114]: /usr/sbin/ip link set dev tun11 up mtu 1500
Jun 20 19:33:19 openvpn[1114]: /usr/sbin/ip addr add dev tun11 local 10.10.2.10 peer 10.10.2.9
Jun 20 19:33:21 openvpn[1114]: /usr/sbin/ip route add 107.181.xx.xxx/32 via 10.24.xx.x
Jun 20 19:33:21 openvpn[1114]: /usr/sbin/ip route add 0.0.0.0/1 via 10.10.2.9
Jun 20 19:33:21 openvpn[1114]: /usr/sbin/ip route add 128.0.0.0/1 via 10.10.2.9
Jun 20 19:33:21 openvpn[1114]: /usr/sbin/ip route add 10.10.0.1/32 via 10.10.2.9
Jun 20 19:33:21 openvpn-routing: Skipping, not in routing policy mode
Jun 20 19:33:21 custom script: Running /jffs/scripts/openvpn-event (args: )
Jun 20 19:33:21 openvpn[1114]: Initialization Sequence Completed

Por favor, deixe-me saber se você precisar de mais informações.

Muito obrigado antecipadamente

    
por pechar 21.06.2015 / 20:07

0 respostas