openvpn probleme - Réseaux - Réseaux grand public / SoHo
MarshPosté le 09-03-2007 à 10:26:17
Bonjour.j'essaie d'etablir une connection vpn avec openvpn. Mon client tourne sous windows xp et mon serveur sous linux redhat. lorsque j'etabli la connexion, elle ne fonctionne pas (je n'ai d'adresse ip) et les ping ne fonctionnent pas.voir la fin du log ci dessous Je n'ai pas de tunnel crée alors que dans les logs j'ai : Thu Mar 08 14:17:45 2007 [intranet] Peer Connection Initiated with 81.251.86.2:1194
mon firewall du coté client est desactivé et du coté serveur, une regle dit que le protocole tap accepte tout De plus, lorsque je rajoute certaines options sur le serveur comme server 10.8.0.0 255.255.255.0
et je redemarre openvpn: il me met cet erreur Mar 8 14:32:57 intranet openvpn[16333]: Unrecognized option or missing parameter(s) in openvpn.conf:76: server Mar 8 14:32:57 intranet openvpn[16333]: Use --help for more information. mar 8 14:32:57 intranet openvpn: failed
merci
voici les logs du client
Thu Mar 08 14:17:42 2007 OpenVPN 2.0.9 Win32-MinGW [SSL] [LZO] built on Oct 1 2006 Thu Mar 08 14:17:42 2007 IMPORTANT: OpenVPN's default port number is now 1194, based on an official port number assignment by IANA. OpenVPN 2.0-beta16 and earlier used 5000 as the default port. Thu Mar 08 14:17:42 2007 Control Channel Authentication: using 'ta.key' as a OpenVPN static key file Thu Mar 08 14:17:42 2007 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication Thu Mar 08 14:17:42 2007 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication Thu Mar 08 14:17:42 2007 LZO compression initialized Thu Mar 08 14:17:42 2007 Control Channel MTU parms [ L:1574 D:166 EF:66 EB:0 ET:0 EL:0 ] Thu Mar 08 14:17:42 2007 Data Channel MTU parms [ L:1574 D:1450 EF:42 EB:135 ET:32 EL:0 AF:3/1 ] Thu Mar 08 14:17:42 2007 Local Options hash (VER=V4): '13a273ba' Thu Mar 08 14:17:42 2007 Expected Remote Options hash (VER=V4): '360696c5' Thu Mar 08 14:17:42 2007 UDPv4 link local: [undef] Thu Mar 08 14:17:42 2007 UDPv4 link remote: 81.251.86.2:1194 Thu Mar 08 14:17:42 2007 TLS: Initial packet from 81.251.86.2:1194, sid=59a0eea6 492b7964 Thu Mar 08 14:17:43 2007 VERIFY OK: depth=1, /C=FR/ST=FR/L=ALES/O=AGSI/CN=intranet/emailAddress=olivier@ai.com Thu Mar 08 14:17:43 2007 VERIFY OK: nsCertType=SERVER Thu Mar 08 14:17:43 2007 VERIFY OK: depth=0, /C=FR/ST=FR/O=AGSI/CN=intranet/emailAddress=olivier@ai.com Thu Mar 08 14:17:45 2007 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key Thu Mar 08 14:17:45 2007 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication Thu Mar 08 14:17:45 2007 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key Thu Mar 08 14:17:45 2007 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication Thu Mar 08 14:17:45 2007 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA Thu Mar 08 14:17:45 2007 [intranet] Peer Connection Initiated with 81.251.86.2:1194 Thu Mar 08 14:17:46 2007 SENT CONTROL [intranet]: 'PUSH_REQUEST' (status=1) Thu Mar 08 14:17:52 2007 SENT CONTROL [intranet]: 'PUSH_REQUEST' (status=1) Thu Mar 08 14:17:58 2007 SENT CONTROL [intranet]: 'PUSH_REQUEST' (status=1)
Marsh Posté le 09-03-2007 à 10:26:17
Bonjour.j'essaie d'etablir une connection vpn avec openvpn. Mon client tourne sous windows xp et mon serveur sous linux redhat.
lorsque j'etabli la connexion, elle ne fonctionne pas (je n'ai d'adresse ip) et les ping ne fonctionnent pas.voir la fin du log ci dessous
Je n'ai pas de tunnel crée alors que dans les logs j'ai :
Thu Mar 08 14:17:45 2007 [intranet] Peer Connection Initiated with 81.251.86.2:1194
mon firewall du coté client est desactivé et du coté serveur, une regle dit que le protocole tap accepte tout
De plus, lorsque je rajoute certaines options sur le serveur comme
server 10.8.0.0 255.255.255.0
et je redemarre openvpn:
il me met cet erreur
Mar 8 14:32:57 intranet openvpn[16333]: Unrecognized option or missing parameter(s) in openvpn.conf:76: server
Mar 8 14:32:57 intranet openvpn[16333]: Use --help for more information.
mar 8 14:32:57 intranet openvpn: failed
merci
voici les logs du client
Thu Mar 08 14:17:42 2007 OpenVPN 2.0.9 Win32-MinGW [SSL] [LZO] built on Oct 1 2006
Thu Mar 08 14:17:42 2007 IMPORTANT: OpenVPN's default port number is now 1194, based on an official port number assignment by IANA. OpenVPN 2.0-beta16 and earlier used 5000 as the default port.
Thu Mar 08 14:17:42 2007 Control Channel Authentication: using 'ta.key' as a OpenVPN static key file
Thu Mar 08 14:17:42 2007 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Thu Mar 08 14:17:42 2007 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Thu Mar 08 14:17:42 2007 LZO compression initialized
Thu Mar 08 14:17:42 2007 Control Channel MTU parms [ L:1574 D:166 EF:66 EB:0 ET:0 EL:0 ]
Thu Mar 08 14:17:42 2007 Data Channel MTU parms [ L:1574 D:1450 EF:42 EB:135 ET:32 EL:0 AF:3/1 ]
Thu Mar 08 14:17:42 2007 Local Options hash (VER=V4): '13a273ba'
Thu Mar 08 14:17:42 2007 Expected Remote Options hash (VER=V4): '360696c5'
Thu Mar 08 14:17:42 2007 UDPv4 link local: [undef]
Thu Mar 08 14:17:42 2007 UDPv4 link remote: 81.251.86.2:1194
Thu Mar 08 14:17:42 2007 TLS: Initial packet from 81.251.86.2:1194, sid=59a0eea6 492b7964
Thu Mar 08 14:17:43 2007 VERIFY OK: depth=1, /C=FR/ST=FR/L=ALES/O=AGSI/CN=intranet/emailAddress=olivier@ai.com
Thu Mar 08 14:17:43 2007 VERIFY OK: nsCertType=SERVER
Thu Mar 08 14:17:43 2007 VERIFY OK: depth=0, /C=FR/ST=FR/O=AGSI/CN=intranet/emailAddress=olivier@ai.com
Thu Mar 08 14:17:45 2007 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
Thu Mar 08 14:17:45 2007 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Thu Mar 08 14:17:45 2007 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
Thu Mar 08 14:17:45 2007 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Thu Mar 08 14:17:45 2007 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
Thu Mar 08 14:17:45 2007 [intranet] Peer Connection Initiated with 81.251.86.2:1194
Thu Mar 08 14:17:46 2007 SENT CONTROL [intranet]: 'PUSH_REQUEST' (status=1)
Thu Mar 08 14:17:52 2007 SENT CONTROL [intranet]: 'PUSH_REQUEST' (status=1)
Thu Mar 08 14:17:58 2007 SENT CONTROL [intranet]: 'PUSH_REQUEST' (status=1)