如何将所有互联网stream量redirect到OpenVPN服务器

我已经看到有关强制Internetstream量通过OpenVPN服务器的问题的解决scheme，但都是在Linux中完成的，我只想知道如何在Windows中为路由表添加条目以实现此目的。客户端和服务器之间的连接是好的，我的Windows 7客户端可以build立到Windows 2008服务器的连接，但是当build立Internetstream量仍然从本地Windows 7计算机。以下是详细信息：

服务器：

Windows 2008 Server with one NIC OpenVPN IP Address: 192.168.0.1 Local NIC IP Address (connects the server to the Internet): 10.242.69.107

客户：

 Windows 7 with one NIC OpenVPN IP Address: 192.168.0.2 ISP allocated IP Address: 10.0.8.2 (gateway 10.0.8.1)

服务器OpenVPNconfiguration：

 dev tun ifconfig 192.168.0.1 192.168.0.2 secret static.key push "redirect-gateway def1"

客户端OpenVPNconfiguration：

 remote xxx.xxx.com dev tun ifconfig 192.168.0.2 192.168.0.1 secret static.key

我不是添加路线的专家…等等。我将不胜感激，如果有人可以让我知道如何添加此项在我的服务器/客户端路由表。

编辑：

从客户端的netstat -rnv输出

 IPv4 Route Table =========================================================================== Active Routes: Network Destination Netmask Gateway Interface Metric 0.0.0.0 0.0.0.0 10.0.8.1 10.0.8.2 20 10.0.8.0 255.255.255.252 On-link 10.0.8.2 276 10.0.8.2 255.255.255.255 On-link 10.0.8.2 276 10.0.8.3 255.255.255.255 On-link 10.0.8.2 276 127.0.0.0 255.0.0.0 On-link 127.0.0.1 306 127.0.0.1 255.255.255.255 On-link 127.0.0.1 306 127.255.255.255 255.255.255.255 On-link 127.0.0.1 306 192.168.0.0 255.255.255.252 On-link 192.168.0.2 286 192.168.0.2 255.255.255.255 On-link 192.168.0.2 286 192.168.0.3 255.255.255.255 On-link 192.168.0.2 286 224.0.0.0 240.0.0.0 On-link 127.0.0.1 306 224.0.0.0 240.0.0.0 On-link 10.0.8.2 276 224.0.0.0 240.0.0.0 On-link 192.168.0.2 286 255.255.255.255 255.255.255.255 On-link 127.0.0.1 306 255.255.255.255 255.255.255.255 On-link 10.0.8.2 276 255.255.255.255 255.255.255.255 On-link 192.168.0.2 286 ===========================================================================

编辑：

手动表更新

 IPv4 Route Table =========================================================================== Active Routes: Network Destination Netmask Gateway Interface Metric 0.0.0.0 0.0.0.0 192.168.0.1 10.0.8.2 21 192.168.0.1 255.255.255.255 On-link 10.0.8.2 21 204.236.211.109 255.255.255.255 10.0.8.1 10.0.8.2 21 ===========================================================================

客户端OpenVPN日志：

 Sat Nov 12 10:34:42 2011 us=740000 Notified TAP-Win32 driver to set a DHCP IP/netmask of 192.168.0.2/255.255.255.252 on interface {C79F7583-EF9F-4E4F-86A7-16DC58BAC404} [DHCP-serv: 192.168.0.1, lease-time: 31536000] Sat Nov 12 10:34:42 2011 us=740000 Successful ARP Flush on interface [18] {C79F7583-EF9F-4E4F-86A7-16DC58BAC404} Sat Nov 12 10:34:42 2011 us=771000 Data Channel MTU parms [ L:1544 D:1450 EF:44 EB:4 ET:0 EL:0 ] Sat Nov 12 10:34:42 2011 us=771000 Local Options String: 'V4,dev-type tun,link-mtu 1544,tun-mtu 1500,proto UDPv4,ifconfig 192.168.0.1 192.168.0.2,cipher BF-CBC,auth SHA1,keysize 128,secret' Sat Nov 12 10:34:42 2011 us=771000 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1544,tun-mtu 1500,proto UDPv4,ifconfig 192.168.0.2 192.168.0.1,cipher BF-CBC,auth SHA1,keysize 128,secret' Sat Nov 12 10:34:42 2011 us=771000 Local Options hash (VER=V4): '9960c5ae' Sat Nov 12 10:34:42 2011 us=771000 Expected Remote Options hash (VER=V4): '9978ceb9' Sat Nov 12 10:34:42 2011 us=771000 UDPv4 link local (bound): [undef]:1194 Sat Nov 12 10:34:42 2011 us=771000 UDPv4 link remote: 204.236.211.109:1194 Sat Nov 12 10:34:52 2011 us=615000 Peer Connection Initiated with 204.236.211.109:1194 Sat Nov 12 10:34:59 2011 us=42000 TEST ROUTES: 0/0 succeeded len=-1 ret=1 a=0 u/d=up Sat Nov 12 10:34:59 2011 us=42000 Initialization Sequence Completed

我在Windows 7上遇到了同样的问题。在以pipe理员身份启动VPN客户端之后，它工作正常。看来它不能添加没有pipe理员权限的路线。

问题是默认路由是通过10.0.8.1 ，而不是通过192.168.0.2 。这意味着redirect-gateway被忽略。

redirect-gateway def1应该通过192.168.0.2添加0.0.0.0/1和128.0.0.0/1路由

尝试增加客户端的详细程度，找出为什么没有添加0/1和128/1路由。或者，你可以testing没有def1 ，你应该看到默认路由取代。