歡迎您光臨本站 註冊首頁
開源互助社區>文檔>運維技術

啟動OpenVPN時出錯~ 待高人相助

←手機掃碼閱讀     火星人 @ 2014-03-04 , reply:0

啟動OpenVPN時出錯~ 待高人相助

這是 server.conf 文件

local 209.59.209.243

port 1194

proto udp

dev tun

ca /etc/openvpn/ca.crt
cert /etc/openvpn/server.crt
key /etc/openvpn/server.key  # This file should be kept secret

dh /etc/openvpn/dh1024.pem

server 10.8.0.0 255.255.255.0

ifconfig-pool-persist /etc/openvpn/ipp.txt

client-to-client

keepalive 10 120

comp-lzo

max-clients 10

user nobody
group nobody

persist-key
persist-tun

status /var/log/openvpn/openvpn-status.log

verb 4

push "dhcp-option DNS 10.8.0.1"
push "dhcp-option DNS 64.79.200.111"
push "dhcp-option DNS 64.79.200.113"

這是出錯信息

# openvpn /etc/openvpn/server.conf
Fri Feb 27 20:42:25 2009 us=138164 Current Parameter Settings:
Fri Feb 27 20:42:25 2009 us=138233   config = '/etc/openvpn/server.conf'
Fri Feb 27 20:42:25 2009 us=138246   mode = 1
Fri Feb 27 20:42:25 2009 us=138257   persist_config = DISABLED
Fri Feb 27 20:42:25 2009 us=138268   persist_mode = 1
Fri Feb 27 20:42:25 2009 us=138278   show_ciphers = DISABLED
Fri Feb 27 20:42:25 2009 us=138288   show_digests = DISABLED
Fri Feb 27 20:42:25 2009 us=138298   show_engines = DISABLED
Fri Feb 27 20:42:25 2009 us=138308   genkey = DISABLED
Fri Feb 27 20:42:25 2009 us=138318   key_pass_file = ''
Fri Feb 27 20:42:25 2009 us=138329   show_tls_ciphers = DISABLED
Fri Feb 27 20:42:25 2009 us=138339   proto = 0
Fri Feb 27 20:42:25 2009 us=138349   local = '209.59.209.243'
Fri Feb 27 20:42:25 2009 us=138359   remote_list = NULL
Fri Feb 27 20:42:25 2009 us=138371   remote_random = DISABLED
Fri Feb 27 20:42:25 2009 us=138382   local_port = 1194
Fri Feb 27 20:42:25 2009 us=138397   remote_port = 1194
Fri Feb 27 20:42:25 2009 us=138408   remote_float = DISABLED
Fri Feb 27 20:42:25 2009 us=138418   ipchange = ''
Fri Feb 27 20:42:25 2009 us=138428   bind_defined = DISABLED
Fri Feb 27 20:42:25 2009 us=138438   bind_local = ENABLED
Fri Feb 27 20:42:25 2009 us=138448   dev = 'tun'
Fri Feb 27 20:42:25 2009 us=138457   dev_type = ''
Fri Feb 27 20:42:25 2009 us=138467   dev_node = ''
Fri Feb 27 20:42:25 2009 us=138477   lladdr = ''
Fri Feb 27 20:42:25 2009 us=138487   topology = 1
Fri Feb 27 20:42:25 2009 us=138497   tun_ipv6 = DISABLED
Fri Feb 27 20:42:25 2009 us=138507   ifconfig_local = '10.8.0.1'
Fri Feb 27 20:42:25 2009 us=138519   ifconfig_remote_netmask = '10.8.0.2'
Fri Feb 27 20:42:25 2009 us=138530   ifconfig_noexec = DISABLED
Fri Feb 27 20:42:25 2009 us=138539   ifconfig_nowarn = DISABLED
Fri Feb 27 20:42:25 2009 us=138549   shaper = 0
Fri Feb 27 20:42:25 2009 us=138559   tun_mtu = 1500
Fri Feb 27 20:42:25 2009 us=138569   tun_mtu_defined = ENABLED
Fri Feb 27 20:42:25 2009 us=138579   link_mtu = 1500
Fri Feb 27 20:42:25 2009 us=138589   link_mtu_defined = DISABLED
Fri Feb 27 20:42:25 2009 us=138599   tun_mtu_extra = 0
Fri Feb 27 20:42:25 2009 us=138609   tun_mtu_extra_defined = DISABLED
Fri Feb 27 20:42:25 2009 us=138619   fragment = 0
Fri Feb 27 20:42:25 2009 us=138629   mtu_discover_type = -1
Fri Feb 27 20:42:25 2009 us=138638   mtu_test = 0
Fri Feb 27 20:42:25 2009 us=138651   mlock = DISABLED
Fri Feb 27 20:42:25 2009 us=138662   keepalive_ping = 10
Fri Feb 27 20:42:25 2009 us=138672   keepalive_timeout = 120
Fri Feb 27 20:42:25 2009 us=138682   inactivity_timeout = 0
Fri Feb 27 20:42:25 2009 us=138692   ping_send_timeout = 10
Fri Feb 27 20:42:25 2009 us=138702   ping_rec_timeout = 240
Fri Feb 27 20:42:25 2009 us=138711   ping_rec_timeout_action = 2
Fri Feb 27 20:42:25 2009 us=138721   ping_timer_remote = DISABLED
Fri Feb 27 20:42:25 2009 us=138731   remap_sigusr1 = 0
Fri Feb 27 20:42:25 2009 us=138741   explicit_exit_notification = 0
Fri Feb 27 20:42:25 2009 us=138750   persist_tun = ENABLED
Fri Feb 27 20:42:25 2009 us=138760   persist_local_ip = DISABLED
Fri Feb 27 20:42:25 2009 us=138770   persist_remote_ip = DISABLED
Fri Feb 27 20:42:25 2009 us=138779   persist_key = ENABLED
Fri Feb 27 20:42:25 2009 us=138789   mssfix = 1450
Fri Feb 27 20:42:25 2009 us=138799   passtos = DISABLED
Fri Feb 27 20:42:25 2009 us=138809   resolve_retry_seconds = 1000000000
Fri Feb 27 20:42:25 2009 us=138819   connect_retry_seconds = 5
Fri Feb 27 20:42:25 2009 us=138829   connect_timeout = 10
Fri Feb 27 20:42:25 2009 us=138838   connect_retry_max = 0
Fri Feb 27 20:42:25 2009 us=138848   username = 'nobody'
Fri Feb 27 20:42:25 2009 us=138858   groupname = 'nobody'
Fri Feb 27 20:42:25 2009 us=138868   chroot_dir = ''
Fri Feb 27 20:42:25 2009 us=138877   cd_dir = ''
Fri Feb 27 20:42:25 2009 us=138887   writepid = ''
Fri Feb 27 20:42:25 2009 us=138897   up_script = ''
Fri Feb 27 20:42:25 2009 us=138907   down_script = ''
Fri Feb 27 20:42:25 2009 us=138916   down_pre = DISABLED
Fri Feb 27 20:42:25 2009 us=139105   up_restart = DISABLED
Fri Feb 27 20:42:25 2009 us=139117   up_delay = DISABLED
Fri Feb 27 20:42:25 2009 us=139128   daemon = DISABLED
Fri Feb 27 20:42:25 2009 us=139138   inetd = 0
Fri Feb 27 20:42:25 2009 us=139148   log = DISABLED
Fri Feb 27 20:42:25 2009 us=139157   suppress_timestamps = DISABLED
Fri Feb 27 20:42:25 2009 us=139167   nice = 0
Fri Feb 27 20:42:25 2009 us=139177   verbosity = 4
Fri Feb 27 20:42:25 2009 us=139187   mute = 0
Fri Feb 27 20:42:25 2009 us=139197   gremlin = 0
Fri Feb 27 20:42:25 2009 us=139206   status_file = '/var/log/openvpn/openvpn-status.log'
Fri Feb 27 20:42:25 2009 us=139216   status_file_version = 1
Fri Feb 27 20:42:25 2009 us=139226   status_file_update_freq = 60
Fri Feb 27 20:42:25 2009 us=139236   occ = ENABLED
Fri Feb 27 20:42:25 2009 us=139246   rcvbuf = 65536
Fri Feb 27 20:42:25 2009 us=139256   sndbuf = 65536
Fri Feb 27 20:42:25 2009 us=139266   sockflags = 0
Fri Feb 27 20:42:25 2009 us=139275   socks_proxy_server = ''
Fri Feb 27 20:42:25 2009 us=139285   socks_proxy_port = 0
Fri Feb 27 20:42:25 2009 us=139295   socks_proxy_retry = DISABLED
Fri Feb 27 20:42:25 2009 us=139305   fast_io = DISABLED
Fri Feb 27 20:42:25 2009 us=139314   lzo = 7
Fri Feb 27 20:42:25 2009 us=139324   route_script = ''
Fri Feb 27 20:42:25 2009 us=139334   route_default_gateway = ''
Fri Feb 27 20:42:25 2009 us=139344   route_default_metric = 0
Fri Feb 27 20:42:25 2009 us=139353   route_noexec = DISABLED
Fri Feb 27 20:42:25 2009 us=139363   route_delay = 0
Fri Feb 27 20:42:25 2009 us=139373   route_delay_window = 30
Fri Feb 27 20:42:25 2009 us=139382   route_delay_defined = DISABLED
Fri Feb 27 20:42:25 2009 us=139397   route_nopull = DISABLED
Fri Feb 27 20:42:25 2009 us=139409   route 10.8.0.0/255.255.255.0/nil/nil
Fri Feb 27 20:42:25 2009 us=139419   management_addr = ''
Fri Feb 27 20:42:25 2009 us=139429   management_port = 0
Fri Feb 27 20:42:25 2009 us=139439   management_user_pass = ''
Fri Feb 27 20:42:25 2009 us=139450   management_log_history_cache = 250
Fri Feb 27 20:42:25 2009 us=139459   management_echo_buffer_size = 100
Fri Feb 27 20:42:25 2009 us=139469   management_query_passwords = DISABLED
Fri Feb 27 20:42:25 2009 us=139479   management_hold = DISABLED
Fri Feb 27 20:42:25 2009 us=139489   management_client = DISABLED
Fri Feb 27 20:42:25 2009 us=139499   management_signal = DISABLED
Fri Feb 27 20:42:25 2009 us=139509   management_forget_disconnect = DISABLED
Fri Feb 27 20:42:25 2009 us=139519   management_write_peer_info_file = ''
Fri Feb 27 20:42:25 2009 us=139529   shared_secret_file = ''
Fri Feb 27 20:42:25 2009 us=139547   key_direction = 0
Fri Feb 27 20:42:25 2009 us=139557   ciphername_defined = ENABLED
Fri Feb 27 20:42:25 2009 us=139567   ciphername = 'BF-CBC'
Fri Feb 27 20:42:25 2009 us=139577   authname_defined = ENABLED
Fri Feb 27 20:42:25 2009 us=139587   authname = 'SHA1'
Fri Feb 27 20:42:25 2009 us=139596   keysize = 0
Fri Feb 27 20:42:25 2009 us=139606   engine = DISABLED
Fri Feb 27 20:42:25 2009 us=139616   replay = ENABLED
Fri Feb 27 20:42:25 2009 us=139626   mute_replay_warnings = DISABLED
Fri Feb 27 20:42:25 2009 us=139636   replay_window = 64
Fri Feb 27 20:42:25 2009 us=139646   replay_time = 15
Fri Feb 27 20:42:25 2009 us=139656   packet_id_file = ''
Fri Feb 27 20:42:25 2009 us=139666   use_iv = ENABLED
Fri Feb 27 20:42:25 2009 us=139675   test_crypto = DISABLED
Fri Feb 27 20:42:25 2009 us=139685   tls_server = ENABLED
Fri Feb 27 20:42:25 2009 us=139695   tls_client = DISABLED
Fri Feb 27 20:42:25 2009 us=139705   key_method = 2
Fri Feb 27 20:42:25 2009 us=139715   ca_file = '/etc/openvpn/ca.crt'
Fri Feb 27 20:42:25 2009 us=139725   ca_path = ''
Fri Feb 27 20:42:25 2009 us=139734   dh_file = '/etc/openvpn/dh1024.pem'
Fri Feb 27 20:42:25 2009 us=139744   cert_file = '/etc/openvpn/server.crt'
Fri Feb 27 20:42:25 2009 us=139755   priv_key_file = '/etc/openvpn/server.key'
Fri Feb 27 20:42:25 2009 us=139815   pkcs12_file = ''
Fri Feb 27 20:42:25 2009 us=139827   cipher_list = ''
Fri Feb 27 20:42:25 2009 us=139836   tls_verify = ''
Fri Feb 27 20:42:25 2009 us=139846   tls_remote = ''
Fri Feb 27 20:42:25 2009 us=139855   crl_file = ''
Fri Feb 27 20:42:25 2009 us=139865   ns_cert_type = 0
Fri Feb 27 20:42:25 2009 us=139874   remote_cert_ku = 0
Fri Feb 27 20:42:25 2009 us=139884   remote_cert_ku = 0
Fri Feb 27 20:42:25 2009 us=139893   remote_cert_ku = 0
Fri Feb 27 20:42:25 2009 us=139902   remote_cert_ku = 0
Fri Feb 27 20:42:25 2009 us=139911   remote_cert_ku = 0
Fri Feb 27 20:42:25 2009 us=139920   remote_cert_ku = 0
Fri Feb 27 20:42:25 2009 us=139929   remote_cert_ku = 0
Fri Feb 27 20:42:25 2009 us=139938   remote_cert_ku = 0
Fri Feb 27 20:42:25 2009 us=139947   remote_cert_ku = 0
Fri Feb 27 20:42:25 2009 us=139956   remote_cert_ku = 0
Fri Feb 27 20:42:25 2009 us=139965   remote_cert_ku = 0
Fri Feb 27 20:42:25 2009 us=139974   remote_cert_ku = 0
Fri Feb 27 20:42:25 2009 us=139983   remote_cert_ku = 0
Fri Feb 27 20:42:25 2009 us=139993   remote_cert_ku = 0
Fri Feb 27 20:42:25 2009 us=140002   remote_cert_ku = 0
Fri Feb 27 20:42:25 2009 us=140011   remote_cert_ku = 0
Fri Feb 27 20:42:25 2009 us=140020   remote_cert_eku = ''
Fri Feb 27 20:42:25 2009 us=140030   tls_timeout = 2
Fri Feb 27 20:42:25 2009 us=140039   renegotiate_bytes = 0
Fri Feb 27 20:42:25 2009 us=140049   renegotiate_packets = 0
Fri Feb 27 20:42:25 2009 us=140058   renegotiate_seconds = 3600
Fri Feb 27 20:42:25 2009 us=140068   handshake_window = 60
Fri Feb 27 20:42:25 2009 us=140077   transition_window = 3600
Fri Feb 27 20:42:25 2009 us=140087   single_session = DISABLED
Fri Feb 27 20:42:25 2009 us=140096   tls_exit = DISABLED
Fri Feb 27 20:42:25 2009 us=140105   tls_auth_file = ''
Fri Feb 27 20:42:25 2009 us=140116   server_network = 10.8.0.0
Fri Feb 27 20:42:25 2009 us=140127   server_netmask = 255.255.255.0
Fri Feb 27 20:42:25 2009 us=140138   server_bridge_ip = 0.0.0.0
Fri Feb 27 20:42:25 2009 us=140148   server_bridge_netmask = 0.0.0.0
Fri Feb 27 20:42:25 2009 us=140159   server_bridge_pool_start = 0.0.0.0
Fri Feb 27 20:42:25 2009 us=140170   server_bridge_pool_end = 0.0.0.0
Fri Feb 27 20:42:25 2009 us=140180   push_list = 'dhcp-option DNS 10.8.0.1,dhcp-option DNS 64.79.200.111,dhcp-option DNS 64.79.200.113,route 10.8.0.0 255.255.255.0,topology net30,ping 10,ping-restart 120'
Fri Feb 27 20:42:25 2009 us=140190   ifconfig_pool_defined = ENABLED
Fri Feb 27 20:42:25 2009 us=140201   ifconfig_pool_start = 10.8.0.4
Fri Feb 27 20:42:25 2009 us=140212   ifconfig_pool_end = 10.8.0.251
Fri Feb 27 20:42:25 2009 us=140222   ifconfig_pool_netmask = 0.0.0.0
Fri Feb 27 20:42:25 2009 us=140232   ifconfig_pool_persist_filename = '/etc/openvpn/ipp.txt'
Fri Feb 27 20:42:25 2009 us=140242   ifconfig_pool_persist_refresh_freq = 600
Fri Feb 27 20:42:25 2009 us=140251   n_bcast_buf = 256
Fri Feb 27 20:42:25 2009 us=140261   tcp_queue_limit = 64
Fri Feb 27 20:42:25 2009 us=140270   real_hash_size = 256
Fri Feb 27 20:42:25 2009 us=140280   virtual_hash_size = 256
Fri Feb 27 20:42:25 2009 us=140289   client_connect_script = ''
Fri Feb 27 20:42:25 2009 us=140299   learn_address_script = ''
Fri Feb 27 20:42:25 2009 us=140308   client_disconnect_script = ''
Fri Feb 27 20:42:25 2009 us=140318   client_config_dir = ''
Fri Feb 27 20:42:25 2009 us=140328   ccd_exclusive = DISABLED
Fri Feb 27 20:42:25 2009 us=140337   tmp_dir = ''
Fri Feb 27 20:42:25 2009 us=140347   push_ifconfig_defined = DISABLED
Fri Feb 27 20:42:25 2009 us=140357   push_ifconfig_local = 0.0.0.0
Fri Feb 27 20:42:25 2009 us=140367   push_ifconfig_remote_netmask = 0.0.0.0
Fri Feb 27 20:42:25 2009 us=140377   enable_c2c = ENABLED
Fri Feb 27 20:42:25 2009 us=140387   duplicate_cn = DISABLED
Fri Feb 27 20:42:25 2009 us=140398   cf_max = 0
Fri Feb 27 20:42:25 2009 us=140408   cf_per = 0
Fri Feb 27 20:42:25 2009 us=140418   max_clients = 10
Fri Feb 27 20:42:25 2009 us=354110   max_routes_per_client = 256
Fri Feb 27 20:42:25 2009 us=354131   client_cert_not_required = DISABLED
Fri Feb 27 20:42:25 2009 us=354142   username_as_common_name = DISABLED
Fri Feb 27 20:42:25 2009 us=354153   auth_user_pass_verify_script = ''
Fri Feb 27 20:42:25 2009 us=354163   auth_user_pass_verify_script_via_file = DISABLED
Fri Feb 27 20:42:25 2009 us=354173   port_share_host = ''
Fri Feb 27 20:42:25 2009 us=354183   port_share_port = 0
Fri Feb 27 20:42:25 2009 us=354193   client = DISABLED
Fri Feb 27 20:42:25 2009 us=354203   pull = DISABLED
Fri Feb 27 20:42:25 2009 us=354213   auth_user_pass_file = ''
Fri Feb 27 20:42:25 2009 us=354229 OpenVPN 2.1_rc7 i686-pc-linux-gnu built on Feb 26 2009
Illegal instruction

高人幫我看看  我錯在哪啊。。。謝謝了
《解決方案》

看最後一行,是不是哪個模塊的編譯有問題。 都重新編譯一下
《解決方案》

是不是哪個模塊沒裝好?
我裝了Openssl,LZO和OpenVPN, 按理說系統上已經自帶了Openssl,但我找不到它的安裝路徑,在configure OpenVPN的時候如果不帶參數,就會報找不到Openssl的Headers的錯,所以我乾脆就又裝了一個SSL。。。
搞不明白到底哪個沒裝好了
《解決方案》

OpenSSL的下載地址:http://www.openssl.org/

LZO的下載地址:http://www.oberhumer.com/opensource/lzo/

以上兩個 都裝了話,安裝openvpn時,添加如下參數就可以 成功的

1、./configure --with-lzo-headers=/usr/local/include --with-lzo-lib=/usr/local/lib --with-ssl-headers=/usr/local/ssl/include/ --with-ssl-lib=/usr/local/ssl/lib/

如果不帶--with-ssl-headers的話,就會出現下面的錯誤
《解決方案》

回復 #1 poppy2009 的帖子

安裝的有問題

[火星人 ] 啟動OpenVPN時出錯~ 待高人相助已經有544次圍觀

http://coctec.com/docs/service/show-post-22929.html

熱門文章

  1. sed當中使用變數替換以及執行外部命令
  2. 英特爾的VT-x、VT-d、VT-c技術概述
  3. NXDomain指的是什麼意思?
  4. CACTI不能顯示圖像,rra下沒有文件!許可權,PATH,snmpwalk沒問題
  5. VPN技術討論——IPsec VPN與SSL VPN的比較。
  6. vsftp的問題500 OOPS: unrecognised variable in config file: cal_root
  7. openldap 很慢問題
  8. 為何htpasswd命令不能用
  9. tomcat的CLOSE_WAIT是怎麼回事
  10. 開源資產管理軟體—OCS-NG

最新文章

  1. 如何使用DMA66的硬碟
  2. 網卡設置指南
  3. Linux下新手裝網卡指南
  4. 設置串列埠和數據機
  5. 如何在Linux上使用HAProxy配置HTTP負載均衡系統
  6. 解決 502 bad gateway
  7. 配置mysql5.5主從伺服器
  8. Mongodb中關於GUID的顯示問題詳析
  9. Openssl實現雙向認證教程(附服務端客戶端程式碼)
  10. JVM執行時資料區劃分原理詳解