服务器 Gind.cn
  1. 服务器 Gind.cn
  3. OpenVPN不断重新授权
Intereting Posts
Cisco Jabber 10.5通过GPO安装 被动模式下的VSFTP连接数量 从离线wim删除一个Windows服务? 无法从一个EC2实例scp到另一个EC2实例 ASP.Net应用程序在磁盘空间不足时不能再写入数据库 自更新以来,邮件IMAP始终断开连接 Hyper-V处理器 configurationdnsdist POWERSHELL:术语“新接受的域”不被识别为cmdlet的名称 计算机名称是否保证在域中是唯一的? MPLS服务提供商是否通过NNI互相访问? 在embedded式Linux中清除用户和/或root密码 将现有的Linux服务器备份到虚拟机虚拟机 在Ubuntu中pipe理多个站点的多个用户 MySQL表不存在

OpenVPN不断重新授权

在过去的几个月中,我一直在为我的家人在小型VPS上运行OpenVPN,并对此感到满意。 上周我的主机重新启动了这个盒子,现在我遇到了问题。 他们把TUN重新打开了,这在过去使我重新运转起来。

我可以连接到VPN,但是当我尝试通过它访问networking时,连接陷入连续的重新授权循环中。 我已经阅读了日志文件,但这对我来说是希腊语。 任何人都可以帮助理解这一点? 以下是一个会话的日志文件。

我已经尝试重新启动OpenVPN服务并重新启动我的实例,对此问题也没有任何影响。 我认为它必须通过VPN路由stream量,但除了重新启动硬件之外,我没有改变任何东西,所以我不确定会触发什么。 客户端密钥也是一样的。 

Wed Nov 7 11:16:16 2012 MULTI: multi_create_instance called Wed Nov 7 11:16:16 2012 xxx.xxx.xxx.xxx:50631 Re-using SSL/TLS context Wed Nov 7 11:16:16 2012 xxx.xxx.xxx.xxx:50631 LZO compression initialized Wed Nov 7 11:16:17 2012 xxx.xxx.xxx.xxx:50631 Control Channel MTU parms [ L:1542 D:138 EF:38 EB:0 ET:0 EL:0 ] Wed Nov 7 11:16:17 2012 xxx.xxx.xxx.xxx:50631 Data Channel MTU parms [ L:1542 D:1450 EF:42 EB:135 ET:0 EL:0 AF:3/1 ] Wed Nov 7 11:16:17 2012 xxx.xxx.xxx.xxx:50631 Local Options hash (VER=V4): '530fdded' Wed Nov 7 11:16:17 2012 xxx.xxx.xxx.xxx:50631 Expected Remote Options hash (VER=V4): '41690919' Wed Nov 7 11:16:17 2012 xxx.xxx.xxx.xxx:50631 TLS: Initial packet from [AF_INET]xxx.xxx.xxx.xxx:50631, sid=d4a3e774 69029449 Wed Nov 7 11:16:17 2012 xxx.xxx.xxx.xxx:50631 VERIFY OK: depth=1, /C=US/ST=TX/L=City/O=engr/CN=domain_CA/[email protected] Wed Nov 7 11:16:17 2012 xxx.xxx.xxx.xxx:50631 VERIFY OK: depth=0, /C=US/ST=TX/L=City/O=engr/CN=mycomputer/[email protected] Wed Nov 7 11:16:18 2012 xxx.xxx.xxx.xxx:50631 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key Wed Nov 7 11:16:18 2012 xxx.xxx.xxx.xxx:50631 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication Wed Nov 7 11:16:18 2012 xxx.xxx.xxx.xxx:50631 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key Wed Nov 7 11:16:18 2012 xxx.xxx.xxx.xxx:50631 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication Wed Nov 7 11:16:18 2012 xxx.xxx.xxx.xxx:50631 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA Wed Nov 7 11:16:18 2012 xxx.xxx.xxx.xxx:50631 [mycomputer] Peer Connection Initiated with [AF_INET]xxx.xxx.xxx.xxx:50631 Wed Nov 7 11:16:18 2012 mycomputer/xxx.xxx.xxx.xxx:50631 MULTI: Learn: 10.8.0.26 -> mycomputer/xxx.xxx.xxx.xxx:50631 Wed Nov 7 11:16:18 2012 mycomputer/xxx.xxx.xxx.xxx:50631 MULTI: primary virtual IP for mycomputer/xxx.xxx.xxx.xxx:50631: 10.8.0.26 Wed Nov 7 11:16:20 2012 mycomputer/xxx.xxx.xxx.xxx:50631 PUSH: Received control message: 'PUSH_REQUEST' Wed Nov 7 11:16:20 2012 mycomputer/xxx.xxx.xxx.xxx:50631 SENT CONTROL [mycomputer]: 'PUSH_REPLY,redirect-gateway def1 bypass-dhcp,dhcp-option DNS 10.8.0.1,route 10.8.0.1,topology net30,ping 10,ping-restart 120,ifconfig 10.8.0.26 10.8.0.25' (status=1) Wed Nov 7 11:17:00 2012 MULTI: multi_create_instance called Wed Nov 7 11:17:00 2012 xxx.xxx.xxx.xxx:64732 Re-using SSL/TLS context Wed Nov 7 11:17:00 2012 xxx.xxx.xxx.xxx:64732 LZO compression initialized Wed Nov 7 11:17:00 2012 xxx.xxx.xxx.xxx:64732 Control Channel MTU parms [ L:1542 D:138 EF:38 EB:0 ET:0 EL:0 ] Wed Nov 7 11:17:00 2012 xxx.xxx.xxx.xxx:64732 Data Channel MTU parms [ L:1542 D:1450 EF:42 EB:135 ET:0 EL:0 AF:3/1 ] Wed Nov 7 11:17:00 2012 xxx.xxx.xxx.xxx:64732 Local Options hash (VER=V4): '530fdded' Wed Nov 7 11:17:00 2012 xxx.xxx.xxx.xxx:64732 Expected Remote Options hash (VER=V4): '41690919' Wed Nov 7 11:17:00 2012 xxx.xxx.xxx.xxx:64732 TLS: Initial packet from [AF_INET]xxx.xxx.xxx.xxx:64732, sid=fc2b0817 0fa801c1 Wed Nov 7 11:17:00 2012 read UDPv4 [ECONNREFUSED]: Connection refused (code=111) Wed Nov 7 11:17:00 2012 xxx.xxx.xxx.xxx:64732 VERIFY OK: depth=1, /C=US/ST=TX/L=City/O=engr/CN=domain_CA/[email protected] Wed Nov 7 11:17:00 2012 xxx.xxx.xxx.xxx:64732 VERIFY OK: depth=0, /C=US/ST=TX/L=City/O=engr/CN=mycomputer/[email protected] Wed Nov 7 11:17:01 2012 xxx.xxx.xxx.xxx:64732 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key Wed Nov 7 11:17:01 2012 xxx.xxx.xxx.xxx:64732 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication Wed Nov 7 11:17:01 2012 xxx.xxx.xxx.xxx:64732 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key Wed Nov 7 11:17:01 2012 xxx.xxx.xxx.xxx:64732 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication Wed Nov 7 11:17:01 2012 xxx.xxx.xxx.xxx:64732 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA Wed Nov 7 11:17:01 2012 xxx.xxx.xxx.xxx:64732 [mycomputer] Peer Connection Initiated with [AF_INET]xxx.xxx.xxx.xxx:64732 Wed Nov 7 11:17:01 2012 MULTI: new connection by client 'mycomputer' will cause previous active sessions by this client to be dropped. Remember to use the --duplicate-cn option if you want multiple clients using the same certificate or username to concurrently connect. Wed Nov 7 11:17:01 2012 MULTI: Learn: 10.8.0.26 -> mycomputer/xxx.xxx.xxx.xxx:64732 Wed Nov 7 11:17:01 2012 MULTI: primary virtual IP for mycomputer/xxx.xxx.xxx.xxx:64732: 10.8.0.26 Wed Nov 7 11:17:03 2012 mycomputer/xxx.xxx.xxx.xxx:64732 PUSH: Received control message: 'PUSH_REQUEST' Wed Nov 7 11:17:03 2012 mycomputer/xxx.xxx.xxx.xxx:64732 SENT CONTROL [mycomputer]: 'PUSH_REPLY,redirect-gateway def1 bypass-dhcp,dhcp-option DNS 10.8.0.1,route 10.8.0.1,topology net30,ping 10,ping-restart 120,ifconfig 10.8.0.26 10.8.0.25' (status=1) Wed Nov 7 11:17:07 2012 read UDPv4 [ECONNREFUSED]: Connection refused (code=111) Wed Nov 7 11:17:12 2012 read UDPv4 [ECONNREFUSED]: Connection refused (code=111) Wed Nov 7 11:17:20 2012 read UDPv4 [ECONNREFUSED]: Connection refused (code=111) Wed Nov 7 11:17:30 2012 read UDPv4 [ECONNREFUSED]: Connection refused (code=111) Wed Nov 7 11:17:37 2012 read UDPv4 [ECONNREFUSED]: Connection refused (code=111) Wed Nov 7 11:17:46 2012 read UDPv4 [ECONNREFUSED]: Connection refused (code=111) Wed Nov 7 11:17:56 2012 read UDPv4 [ECONNREFUSED]: Connection refused (code=111) Wed Nov 7 11:18:06 2012 read UDPv4 [ECONNREFUSED]: Connection refused (code=111) Wed Nov 7 11:18:08 2012 read UDPv4 [ECONNREFUSED]: Connection refused (code=111) Wed Nov 7 11:18:19 2012 read UDPv4 [ECONNREFUSED]: Connection refused (code=111) Wed Nov 7 11:18:29 2012 read UDPv4 [ECONNREFUSED]: Connection refused (code=111) Wed Nov 7 11:18:39 2012 read UDPv4 [ECONNREFUSED]: Connection refused (code=111) Wed Nov 7 11:18:50 2012 read UDPv4 [ECONNREFUSED]: Connection refused (code=111) Wed Nov 7 11:18:59 2012 read UDPv4 [ECONNREFUSED]: Connection refused (code=111) Wed Nov 7 11:19:09 2012 read UDPv4 [ECONNREFUSED]: Connection refused (code=111) Wed Nov 7 11:19:12 2012 read UDPv4 [ECONNREFUSED]: Connection refused (code=111) Wed Nov 7 11:19:22 2012 read UDPv4 [ECONNREFUSED]: Connection refused (code=111) Wed Nov 7 11:19:32 2012 read UDPv4 [ECONNREFUSED]: Connection refused (code=111) Wed Nov 7 11:19:42 2012 read UDPv4 [ECONNREFUSED]: Connection refused (code=111) Wed Nov 7 11:19:53 2012 read UDPv4 [ECONNREFUSED]: Connection refused (code=111) Wed Nov 7 11:20:03 2012 read UDPv4 [ECONNREFUSED]: Connection refused (code=111) Wed Nov 7 11:20:13 2012 read UDPv4 [ECONNREFUSED]: Connection refused (code=111) Wed Nov 7 11:20:23 2012 read UDPv4 [ECONNREFUSED]: Connection refused (code=111) Wed Nov 7 11:20:34 2012 read UDPv4 [ECONNREFUSED]: Connection refused (code=111) Wed Nov 7 11:20:44 2012 read UDPv4 [ECONNREFUSED]: Connection refused (code=111) Wed Nov 7 11:20:54 2012 read UDPv4 [ECONNREFUSED]: Connection refused (code=111) Wed Nov 7 11:21:03 2012 mycomputer/xxx.xxx.xxx.xxx:64732 [mycomputer] Inactivity timeout (--ping-restart), restarting Wed Nov 7 11:21:03 2012 mycomputer/xxx.xxx.xxx.xxx:64732 SIGUSR1[soft,ping-restart] received, client-instance restarting

我确定这与我的VPN没有任何关系。 我的电脑是一台Mac电脑,而且在开始出现这些问题的同时,我升级到了Mountain Lion。 我使用的VPN客户端Tunnelblick与Mountain Lion不兼容。

解决scheme是卸载Tunnelblick并升级到他们的最新testing版本。 现在我的VPN工作完美无瑕。