openVPN сервер на MIKROTIK + клиент на win10
Добавлено: 15 окт 2016, 18:34
что сделано. настроен OpenVPN сервер на Mikrotik, настроен клиент на IOS, все работает, проблем нет.
берем тот же самый конфиг и те же самые ключи что использовались в IOS, подцепляем и НЕ РАБОТАЕТ.
клиента запускаю с правами администратора
вот конфиг клиента:
вот лог клиента:
берем тот же самый конфиг и те же самые ключи что использовались в IOS, подцепляем и НЕ РАБОТАЕТ.
клиента запускаю с правами администратора
вот конфиг клиента:
proto tcp-client
# в этой строчке мы указываем адрес в интернете нашего микротика
remote ***.***.***.*** 443
dev tun
nobind
persist-key
tls-client
ca ca.crt
cert client.crt
key client.key
verb 3
ns-cert-type server
cipher AES-256-CBC
auth SHA1
pull
auth-user-pass auth.cfg
вот лог клиента:
Sat Oct 15 18:30:36 2016 OpenVPN 2.3.12 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [PKCS11] [IPv6] built on Oct 3 2016
Sat Oct 15 18:30:36 2016 Windows version 6.2 (Windows 8 or greater) 64bit
Sat Oct 15 18:30:36 2016 library versions: OpenSSL 1.0.1u 22 Sep 2016, LZO 2.09
Enter Management Password:
Sat Oct 15 18:30:36 2016 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:25340
Sat Oct 15 18:30:36 2016 Need hold release from management interface, waiting...
Sat Oct 15 18:30:36 2016 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:25340
Sat Oct 15 18:30:36 2016 MANAGEMENT: CMD 'state on'
Sat Oct 15 18:30:36 2016 MANAGEMENT: CMD 'log all on'
Sat Oct 15 18:30:36 2016 MANAGEMENT: CMD 'hold off'
Sat Oct 15 18:30:36 2016 MANAGEMENT: CMD 'hold release'
Sat Oct 15 18:30:36 2016 Socket Buffers: R=[65536->65536] S=[65536->65536]
Sat Oct 15 18:30:36 2016 Attempting to establish TCP connection with [AF_INET]***.***.***.***:443 [nonblock]
Sat Oct 15 18:30:36 2016 MANAGEMENT: >STATE:1476545436,TCP_CONNECT,,,
Sat Oct 15 18:30:37 2016 TCP connection established with [AF_INET]***.***.***.***:443
Sat Oct 15 18:30:37 2016 TCPv4_CLIENT link local: [undef]
Sat Oct 15 18:30:37 2016 TCPv4_CLIENT link remote: [AF_INET]***.***.***.***:443
Sat Oct 15 18:30:37 2016 MANAGEMENT: >STATE:1476545437,WAIT,,,
Sat Oct 15 18:30:37 2016 MANAGEMENT: >STATE:1476545437,AUTH,,,
Sat Oct 15 18:30:37 2016 TLS: Initial packet from [AF_INET]***.***.***.***:443, sid=d8093025 c3151c4a
Sat Oct 15 18:30:37 2016 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Sat Oct 15 18:30:38 2016 VERIFY OK: depth=1, C=RU, ST=YAroslavlRegion, L=YAroslavl, O=OpenVPN, OU=changeme, CN=server, name=server, emailAddress=alex@mail.ru
Sat Oct 15 18:30:38 2016 VERIFY OK: nsCertType=SERVER
Sat Oct 15 18:30:38 2016 VERIFY OK: depth=0, C=RU, ST=YAroslavlRegion, L=YAroslavl, O=OpenVPN, OU=changeme, CN=server, name=server, emailAddress=alex@mail.ru
Sat Oct 15 18:30:39 2016 Connection reset, restarting [0]
Sat Oct 15 18:30:39 2016 SIGUSR1[soft,connection-reset] received, process restarting
Sat Oct 15 18:30:39 2016 MANAGEMENT: >STATE:1476545439,RECONNECTING,connection-reset,,
Sat Oct 15 18:30:39 2016 Restart pause, 5 second(s)