我有一个运行openvpn的Debian安装。 我想访问本地ip在我的vpn但ufw(防火墙)块,因为input设备是eth0而不是tun0。
任何想法为什么发生这种情况
server.conf(在服务器上)
proto udp port 1194 dev tun ca easy-rsa/keys/ca.crt cert easy-rsa/keys/domain.crt key easy-rsa/keys/domain.key dh easy-rsa/keys/dh2048.pem topology subnet server 10.8.0.0 255.255.255.0 route 10.8.0.0 255.255.255.0 push "dhcp-option DNS 8.8.8.8" push "topology subnet" client-to-client keepalive 10 120 comp-lzo user ovpn group nogroup persist-key persist-tun client-config-dir ccd cipher AES-256-CBC remote-cert-eku "TLS Web Client Authentication" tls-version-min 1.2 tls-cipher TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384:TLS-DHE-RSA-WITH-AES- 256-GCM-SHA384:TLS-ECDHE-ECDSA-WITH-AES-256-GCM-SHA384:TLS-ECDHE-RSA-WITH- AES-256-CBC-SHA384:TLS-ECDHE-ECDSA-WITH-AES-256-CBC-SHA384:TLS-DHE-RSA-WITH-AES-256-CBC-SHA256 tls-auth easy-rsa/keys/ta.key 0 auth SHA512 ccd中的客户端configuration(在服务器上):
ifconfig-push 10.8.0.5 255.255.255.0 push "redirect-gateway def1 bypass-dhcp"
client.conf(在客户端)
client remote domain 1194 udp ca ca.crt cert iphone.crt key iphone.key comp-lzo yes dev tun proto udp nobind auth-nocache script-security 2 persist-key persist-tun cipher AES-256-CBC verify-x509-name domain name remote-cert-eku "TLS Web Server Authentication" tls-version-min 1.2 auth SHA512