[Sysadmins] OpenVPN сервер через Alterator

Владимир Саломатин salomatin.ru на mail.ru
Вс Апр 18 12:21:43 UTC 2010 

> > Не сканируется порт 1194.
> > Это нормально?  
> 
> Должен быть открыт, проверьте настройки iptables.
 
Похоже iptables не причем. Даже на 127.0.0.1 и на адрес сетевой не открыт.
Что-то не запустилось, хотя  

[root на comp-Celeron-M-413ca8 /]# service openvpn status
openvpn is running
Status of VPN iface-tun0 written to /var/log/messages

и

[root на comp-Celeron-M-413ca8 /]# ip a s

10: tun0: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UNKNOWN qlen 
100
    link/[65534]
    inet 10.8.0.1 peer 10.8.0.2/32 scope global tun0
 
После запуска: 

tail /var/log/messages

Jan  1 04:22:20 comp-Celeron-M-413ca8 openvpn[16663]: OpenVPN 2.0.8 i586-alt-linux-gnu [SSL] [LZO] 
[EPOLL] built on Jun  5 2009
Jan  1 04:22:20 comp-Celeron-M-413ca8 openvpn[16663]: Diffie-Hellman initialized with 1024 bit key
Jan  1 04:22:20 comp-Celeron-M-413ca8 openvpn[16663]: WARNING: 
file '/var/lib/ssl/private/openvpn-server.key' is group or others accessible
Jan  1 04:22:20 comp-Celeron-M-413ca8 openvpn[16663]: TLS-Auth MTU parms [ L:1542 D:138 EF:38 EB:0 
ET:0 EL:0 ]
Jan  1 04:22:20 comp-Celeron-M-413ca8 openvpn[16663]: TUN/TAP device tun0 opened
Jan  1 04:22:20 comp-Celeron-M-413ca8 openvpn[16663]: ip link set dev tun0 up mtu 1500
Jan  1 04:22:20 comp-Celeron-M-413ca8 openvpn[16663]: ip addr add dev tun0 local 10.8.0.1 peer 
10.8.0.2
Jan  1 04:22:20 comp-Celeron-M-413ca8 openvpn[16663]: /etc/net/scripts/openvpn.action tun0 1500 
1542 10.8.0.1 10.8.0.2 init
Jan  1 04:22:20 comp-Celeron-M-413ca8 openvpn[16663]: ip route add 10.8.0.0/24 via 10.8.0.2
Jan  1 04:22:20 comp-Celeron-M-413ca8 openvpn[16663]: Data Channel MTU parms [ L:1542 D:1450 EF:42 
EB:135 ET:0 EL:0 AF:3/1 ]
Jan  1 04:22:20 comp-Celeron-M-413ca8 openvpn[16704]: chroot to '/var/lib/openvpn' and cd to '/' 
succeeded
Jan  1 04:22:20 comp-Celeron-M-413ca8 openvpn[16704]: GID set to openvpn
Jan  1 04:22:20 comp-Celeron-M-413ca8 openvpn[16704]: UID set to openvpn
Jan  1 04:22:20 comp-Celeron-M-413ca8 openvpn[16704]: UDPv4 link local (bound): [undef]:1194
Jan  1 04:22:20 comp-Celeron-M-413ca8 openvpn[16704]: UDPv4 link remote: [undef]
Jan  1 04:22:20 comp-Celeron-M-413ca8 openvpn[16704]: MULTI: multi_init called, r=256 v=256
Jan  1 04:22:20 comp-Celeron-M-413ca8 openvpn[16704]: IFCONFIG POOL: base=10.8.0.4 size=62
Jan  1 04:22:20 comp-Celeron-M-413ca8 openvpn[16704]: IFCONFIG POOL LIST
Jan  1 04:22:20 comp-Celeron-M-413ca8 openvpn[16704]: Initialization Sequence Completed


а порт даже не открывается.

Подробная информация о списке рассылки Sysadmins