OpenVPN Support Forum

Community Support Forum
https://forums.openvpn.net/

Configuration: VU+ ....bitte einmal draufschauen...

https://forums.openvpn.net/viewtopic.php?t=29429

Page 1 of 1

Configuration: VU+ ....bitte einmal draufschauen...

Posted: Thu Jan 02, 2020 9:06 pm
by Saxxxman
Ich versuche seit Tagen meine Duo2 VU+ Satbox über eine VPN Verbindung (AzireVPN) mit dem Internet zu verbinden.
Vielleicht kann einer der Openvpn Spezies einmal einen Blick drauf werfen... Leider bin ich mit meinen Möglichkeiten am Ende.

Hier ist die Config:
Client config

client
dev tun
proto udp
tun-mtu 1500
mssfix 1300
remote no1.ovpn.azirevpn.net 1194
resolv-retry infinite
auth-user-pass hide.login
nobind
persist-key
persist-tun
remote-cert-tls server
reneg-sec 0
keepalive 10 60
log /etc/openvpn/LOG.txt

script-security 2

mute-replay-warnings
explicit-exit-notify 3

cipher AES-256-CBC
auth SHA512

<ca>
-----BEGIN CERTIFICATE-----
MIIG9DCCBNygAwIBAgIJALTRm7uk+qsqMA0...?

etc....

Das Logfile sagt:

Code: Select all

Thu Jan  2 12:07:58 2020 OpenVPN 2.3.6 mipsel-oe-linux-gnu [SSL (OpenSSL)] [LZO] [EPOLL] [MH] [IPv6] built on Nov 14 2017
Thu Jan  2 12:07:58 2020 library versions: OpenSSL 1.0.2a 19 Mar 2015, LZO 2.09
Thu Jan  2 12:07:58 2020 WARNING: file 'hide.login' is group or others accessible
Thu Jan  2 12:07:58 2020 Control Channel Authentication: tls-auth using INLINE static key file
Thu Jan  2 12:07:58 2020 Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
Thu Jan  2 12:07:58 2020 Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
Thu Jan  2 12:07:58 2020 Socket Buffers: R=[163840->131072] S=[163840->131072]
Thu Jan  2 12:07:59 2020 UDPv4 link local: [undef]
Thu Jan  2 12:07:59 2020 UDPv4 link remote: [AF_INET]194.32.146.85:1194
Thu Jan  2 12:07:59 2020 TLS: Initial packet from [AF_INET]194.32.146.85:1194, sid=71d4134d 7139c698
Thu Jan  2 12:07:59 2020 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Thu Jan  2 12:07:59 2020 VERIFY OK: depth=1, C=SE, ST=Stockholm, L=Stockholm, O=AzireVPN, OU=AzireVPN, CN=ovpn.azirevpn.net, name=AzireVPN, emailAddress=info@azirevpn.com
Thu Jan  2 12:07:59 2020 Validating certificate key usage
Thu Jan  2 12:07:59 2020 ++ Certificate has key usage  00a0, expects 00a0
Thu Jan  2 12:07:59 2020 VERIFY KU OK
Thu Jan  2 12:07:59 2020 Validating certificate extended key usage
Thu Jan  2 12:07:59 2020 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
Thu Jan  2 12:07:59 2020 VERIFY EKU OK
Thu Jan  2 12:07:59 2020 VERIFY OK: depth=0, C=SE, ST=Stockholm, L=Stockholm, O=AzireVPN, OU=AzireVPN, CN=ovpn.azirevpn.net, name=AzireVPN, emailAddress=info@azirevpn.com
Thu Jan  2 12:08:00 2020 Data Channel Encrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
Thu Jan  2 12:08:00 2020 Data Channel Encrypt: Using 512 bit message hash 'SHA512' for HMAC authentication
Thu Jan  2 12:08:00 2020 Data Channel Decrypt: Cipher 'AES-256-CBC' initialized with 256 bit key
Thu Jan  2 12:08:00 2020 Data Channel Decrypt: Using 512 bit message hash 'SHA512' for HMAC authentication
Thu Jan  2 12:08:00 2020 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 4096 bit RSA
Thu Jan  2 12:08:00 2020 [ovpn.azirevpn.net] Peer Connection Initiated with [AF_INET]194.32.146.85:1194
Thu Jan  2 12:08:02 2020 SENT CONTROL [ovpn.azirevpn.net]: 'PUSH_REQUEST' (status=1)
Thu Jan  2 12:08:02 2020 PUSH: Received control message: 'PUSH_REPLY,dhcp-option DNS 91.231.153.2,dhcp-option DNS6 2001:67c:15ec:1337::2,redirect-gateway def1,redirect-gateway ipv6,route-ipv6 2000::/3,tun-ipv6,route-gateway 10.1.2.1,topology subnet,ping 10,ping-restart 30,ifconfig-ipv6 2a0c:dd43:1:1012::1003/64 2a0c:dd43:1:1012::2,ifconfig 10.1.2.4 255.255.255.0,peer-id 2'
Thu Jan  2 12:08:02 2020 Options error: unknown --redirect-gateway flag: ipv6
Thu Jan  2 12:08:02 2020 OPTIONS IMPORT: timers and/or timeouts modified
Thu Jan  2 12:08:02 2020 OPTIONS IMPORT: --ifconfig/up options modified
Thu Jan  2 12:08:02 2020 OPTIONS IMPORT: route options modified
Thu Jan  2 12:08:02 2020 OPTIONS IMPORT: route-related options modified
Thu Jan  2 12:08:02 2020 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Thu Jan  2 12:08:02 2020 OPTIONS IMPORT: peer-id set
Thu Jan  2 12:08:02 2020 ROUTE_GATEWAY 192.168.1.2/255.255.255.0 IFACE=wlan0 HWADDR=78:44:76:b3:0a:a7
Thu Jan  2 12:08:02 2020 ROUTE6: default_gateway=UNDEF
Thu Jan  2 12:08:02 2020 TUN/TAP device tun0 opened
Thu Jan  2 12:08:02 2020 TUN/TAP TX queue length set to 100
Thu Jan  2 12:08:02 2020 do_ifconfig, tt->ipv6=1, tt->did_ifconfig_ipv6_setup=1
Thu Jan  2 12:08:02 2020 /sbin/ip link set dev tun0 up mtu 1500
Thu Jan  2 12:08:02 2020 /sbin/ip addr add dev tun0 10.1.2.4/24 broadcast 10.1.2.255
Thu Jan  2 12:08:02 2020 /sbin/ip -6 addr add 2a0c:dd43:1:1012::1003/64 dev tun0
Thu Jan  2 12:08:02 2020 /sbin/ip route add 194.32.146.85/32 via 192.168.1.2
Thu Jan  2 12:08:02 2020 /sbin/ip route add 0.0.0.0/1 via 10.1.2.1
Thu Jan  2 12:08:02 2020 /sbin/ip route add 128.0.0.0/1 via 10.1.2.1
Thu Jan  2 12:08:02 2020 add_route_ipv6(2000::/3 -> 2a0c:dd43:1:1012::2 metric -1) dev tun0
Thu Jan  2 12:08:02 2020 /sbin/ip -6 route add 2000::/3 dev tun0
Thu Jan  2 12:08:02 2020 Initialization Sequence Completed
Thu Jan  2 12:26:48 2020 event_wait : Interrupted system call (code=4)
Thu Jan  2 12:26:48 2020 SIGTERM received, sending exit notification to peer
Thu Jan  2 12:26:51 2020 /sbin/ip route del 194.32.146.85/32
Thu Jan  2 12:26:51 2020 /sbin/ip route del 0.0.0.0/1
Thu Jan  2 12:26:51 2020 /sbin/ip route del 128.0.0.0/1
Thu Jan  2 12:26:51 2020 delete_route_ipv6(2000::/3)
Thu Jan  2 12:26:51 2020 /sbin/ip -6 route del 2000::/3 dev tun0
Thu Jan  2 12:26:51 2020 Closing TUN/TAP interface
Thu Jan  2 12:26:51 2020 /sbin/ip addr del dev tun0 10.1.2.4/24
Was läuft schief??
Ich bin für jeden Tipp dankbar :-)
:shock:

Ein gesundes und gut verschlüsseltes 2020 :D

Re: Configuration: VU+ ....bitte einmal draufschauen...

Posted: Thu Jan 02, 2020 9:38 pm
by Pippin
Bitte code tags benutzen und Englisch...

Was du nicht geschrieben hast ist was das problem ist.
Laut deinem log steht die verbindung ca. 18 minuten.

Code: Select all

OpenVPN 2.3.6
Uralt...^^^
Wurde besser sein OpenATV 6.x oder OpenPli 7.x zu flashen weil die OpenVPN 2.4.6/2.4.7 im feed haben.
All times are UTC
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/