Tenho um servidor Slackware13 com Openvpn 2.0.9 com a seguinte configuração:
cat /etc/openvpn/servervpn.conf
# /etc/openvpn/server.conf
proto udp
port 1194
dev tun
comp-lzo
server 10.0.0.0 255.255.255.0
push "route 192.168.1.0 255.255.255.0"
push "dhcp-option DNS 192.168.1.0"
persist-tun
persist-key
float
keepalive 10 120
ifconfig-pool-persist /etc/openvpn/ipp.txt
max-clients 3
tls-server
dh /etc/openvpn/dh/dh1024.pem
ca /etc/openvpn/certs/ca.crt
cert /etc/openvpn/certs/server.crt
key /etc/openvpn/keys/server.key
tls-auth /etc/openvpn/keys/static.key
log-append /var/log/openvpn.log
status /var/log/openvpn-status.log
verb 6
Starto o serviço usando :
#openvpn --config /etc/openvpn/servervpn.conf --daemon
porem o serviço parece não subir pois a saida do comando netstat -nlpt não mostra o mesmo:
# netstat -nlpt
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN 2743/sshd
tcp6 0 0 :::22 :::* LISTEN 2743/sshd
e tbem não aparece nada no nmap:
# nmap localhost
Starting Nmap 5.00 ( Nmap - Free Security Scanner For Network Exploration & Security Audits. ) at 2010-02-01 14:45 BRST
Interesting ports on localhost (127.0.0.1):
Not shown: 999 closed ports
PORT STATE SERVICE
22/tcp open ssh
Nmap done: 1 IP address (1 host up) scanned in 0.28 seconds
mas aparece no ps aux:
# ps aux | grep openvpn
root 4343 0.0 0.3 3880 924 ? Ss 14:26 0:00 openvpn --config /etc/openvpn/servervpn.conf --daemon
já no log do openvpn as linhas finais o serviço parece estar funcionando:
# cat /var/log/openvpn.log
TLS-Auth MTU parms [ L:1542 D:166 EF:66 EB:0 ET:0 EL:0 ]
TUN/TAP device tun0 opened
TUN/TAP TX queue length set to 100
/sbin/ifconfig tun0 10.0.0.1 pointopoint 10.0.0.2 mtu 1500
/sbin/route add -net 10.0.0.0 netmask 255.255.255.0 gw 10.0.0.2
Data Channel MTU parms [ L:1542 D:1450 EF:42 EB:135 ET:0 EL:0 AF:3/1 ]
Socket Buffers: R=[111616->131072] S=[111616->131072]
UDPv4 link local (bound): [undef]:1194
UDPv4 link remote: [undef]
MULTI: multi_init called, r=256 v=256
IFCONFIG POOL: base=10.0.0.4 size=62
IFCONFIG POOL LIST
Initialization Sequence Completed
tento conectar usando GUI openvpn for windows mas sem sucesso com a seguinte config:
# cat client.ovpn
# /etc/openvpn/client.conf
remote teste.homelinux.net
proto udp
port 1194
client
pull
dev tun
comp-lzo
keepalive 10 120
float
tls-client
dh dh1024.pem
ca ca.crt
cert cliente.crt
key cliente.key
alguem poderia dar uma luz? Parece estar tudo normal mas não conecta