Olá Pessoal,

Estou configurando uma VPN aqui no trabalho entre duas filiais com o OpenVpn quando dou /etc/openvpn start roda beleza mas se tento dar ping na outra ponta (ping 10.0.0.2) não vai e nem vice-versa já desabilitei firewall já entrei em contato c/ BrasilTelecom para ver se o roteador não estava bloqueando e nada ! No log da a seguinte mensagem:

Thu Sep 13 15:07:17 2007 us=375248 OpenVPN 2.0.8 i686-suse-linux-gnu [SSL] [LZO] [EPOLL] built on Nov 25 2006
Thu Sep 13 15:07:17 2007 us=375462 WARNING: --ping should normally be used with --ping-restart or --ping-exit
Thu Sep 13 15:07:17 2007 us=375498 WARNING: you are using user/group/chroot without persist-key/persist-tun -- this may cause
restarts to fail
Thu Sep 13 15:07:17 2007 us=376239 WARNING: file 'chave' is group or others accessible
Thu Sep 13 15:07:17 2007 us=376548 Static Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
Thu Sep 13 15:07:17 2007 us=376641 Static Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Thu Sep 13 15:07:17 2007 us=376828 Static Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
Thu Sep 13 15:07:17 2007 us=376869 Static Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Thu Sep 13 15:07:17 2007 us=376970 LZO compression initialized
Thu Sep 13 15:07:17 2007 us=410969 TUN/TAP device tun0 opened
Thu Sep 13 15:07:17 2007 us=411335 TUN/TAP TX queue length set to 100
Thu Sep 13 15:07:17 2007 us=411464 /sbin/ifconfig tun0 10.0.0.2 pointopoint 10.0.0.1 mtu 1500
Thu Sep 13 15:07:17 2007 us=424396 Data Channel MTU parms [ L:1545 D:1450 EF:45 EB:135 ET:0 EL:0 AF:3/1 ]
Thu Sep 13 15:07:17 2007 us=424715 Local Options String: 'V4,dev-type tun,link-mtu 1545,tun-mtu 1500,proto UDPv4,ifconfig 10.0
.0.1 10.0.0.2,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,secret'
Thu Sep 13 15:07:17 2007 us=424752 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1545,tun-mtu 1500,proto UDPv4,ifc
onfig 10.0.0.2 10.0.0.1,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,secret'
Thu Sep 13 15:07:17 2007 us=424990 Local Options hash (VER=V4): 'f1025742'
Thu Sep 13 15:07:17 2007 us=425048 Expected Remote Options hash (VER=V4): '099d04aa'
Thu Sep 13 15:07:17 2007 us=427495 GID set to nobody
Thu Sep 13 15:07:17 2007 us=427787 UID set to nobody
Thu Sep 13 15:07:17 2007 us=427961 Socket Buffers: R=[109568->131072] S=[109568->131072]
Thu Sep 13 15:07:17 2007 us=428035 UDPv4 link local (bound): [undef]:5599
Thu Sep 13 15:07:17 2007 us=428082 UDPv4 link remote: xxx.xxx.xx.xxx:5599
WWWWWWWWWWWWThu Sep 13 15:09:17 2007 us=884696 NOTE: failed to obtain options consistency info from peer -- this could occur i
f the remote peer is running a version of OpenVPN before 1.5-beta8 or if there is a network connectivity problem, and will not
necessarily prevent OpenVPN from running (0 bytes received from peer, 0 bytes authenticated data channel traffic) -- you can
disable the options consistency check with --disable-occ.
WWWWWWWWWWWWWW

Ambas as pontas estão com a versão 2.0.8

Arquivo de configuração da matriz:
dev tun
ifconfig 10.0.0.1 10.0.0.2
cd /etc/openvpn
secret chave
port 5599
user nobody
group nobody
comp-lzo
status /var/log/openvpn-status.log
log /var/log/openvpn.log
ping 15
ping-restart 120
verb 5

Arquivo Filial:

remote xxx.xxx.xx.xxx
float
port 5599
dev tun
persist-tun
ifconfig 10.0.0.2 10.0.0.1
comp-lzo
cd /etc/openvpn
secret chave
user nobody
group nobody
status /var/log/openvpn-status.log
log /var/log/openvpn.log
verb 5
ping 15


Agradeço a ajuda se alguém tiver alguma dica !