服务器 Gind.cn
  1. 服务器 Gind.cn
  3. OPENVPN路由所有stream量 – Synology
Intereting Posts
什么是19mm高的3.5“硬盘叫? 为什么linux在通过networking复制时重命名目录? 只有当查询参数不等于某个值时,HTTPS才会在htaccess中redirect 重负载下的CPU,在ESXi主机上的Windows VPS上进行简单的文件复制 Outlook拒绝连接到Exchange 升级到PHP 5.3.6 在服务器之间划分networkingstream量 使用住宅无线设备自动创buildVLAN 无法访问ZFS格式的驱动器(冗余设置) HTTP不能使用具有自己的域名的EC2实例 为什么计算机对象不是Microsoft Active Directory中的OU? Conntrack显示没有结果 如果我的IP是本地的,不能打开静态文件 XAMPP MySQLbatch file 服务器和客户端在同一台机器上时,iptables端口转发没有效果?

OPENVPN路由所有stream量 – Synology

我有一个Synology NAS,是我的OPENVPN服务器。 我一直在路上,我想把我所有的交通通过我的房子。 这是我的configuration和我的日志。

configuration文件 

dev tun tls-client remote XX.XXX.XXX.XX 1194 # The "float" tells OpenVPN to accept authenticated packets from any address, # not only the address which was specified in the --remote option. # This is useful when you are connecting to a peer which holds a dynamic address # such as a dial-in user or DHCP client. # (Please refer to the manual of OpenVPN for more information.) #float # If redirect-gateway is enabled, the client will redirect it's # default network gateway through the VPN. # It means the VPN connection will firstly connect to the VPN Server # and then to the internet. # (Please refer to the manual of OpenVPN for more information.) push redirect-gateway def1 route 192.168.0.25 255.255.255.0 net_gateway route 10.8.0.0 255.255.255.0 # dhcp-option DNS: To set primary domain name server address. # Repeat this option to set secondary DNS server addresses. push dhcp-option DNS 10.8.0.1 push dhcp-option DNS 192.168.0.25 push dhcp-option DNS 8.8.8.8 push dhcp-option DNS 8.8.4.4 pull proto udp script-security 2 ca ca.crt comp-lzo reneg-sec 0 auth-user-pass Dontbelazy.txt

日志文件 

 Tue Mar 19 13:55:35 2013 OpenVPN 2.2.2 Win32-MSVC++ [SSL] [LZO2] [PKCS11] built on Dec 15 2011 Tue Mar 19 13:55:35 2013 IMPORTANT: OpenVPN's default port number is now 1194, based on an official port number assignment by IANA. OpenVPN 2.0-beta16 and earlier used 5000 as the default port. Tue Mar 19 13:55:35 2013 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info. Tue Mar 19 13:55:35 2013 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts Tue Mar 19 13:55:35 2013 LZO compression initialized Tue Mar 19 13:55:35 2013 UDPv4 link local (bound): [undef]:1194 Tue Mar 19 13:55:35 2013 UDPv4 link remote: XX.XXX.XXX.XX 1194 Tue Mar 19 13:56:35 2013 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity) Tue Mar 19 13:56:35 2013 TLS Error: TLS handshake failed Tue Mar 19 13:56:35 2013 SIGUSR1[soft,tls-error] received, process restarting

尝试改变 

 push redirect-gateway def1 route 192.168.0.25 255.255.255.0 net_gateway route 10.8.0.0 255.255.255.0 

 redirect-gateway 

 push dhcp-option DNS 10.8.0.1 push dhcp-option DNS 192.168.0.25 push dhcp-option DNS 8.8.8.8 push dhcp-option DNS 8.8.4.4 

 dhcp-option DNS <YOUR_ROUTER_LOCAL_IP_ADDRESS>