OpenVPN impossible de se connecter en dehors du NAT

OpenVPN impossible de se connecter en dehors du NAT - Réseaux - Réseaux grand public / SoHo

Marsh Posté le 15-04-2017 à 12:12:49    

Bonjour,
 
Mon serveur vpn est installé sur un debian qui est dans un NAT, adresse : 192.168.1.29. Le client est installé sur un windows.
Quand je suis dans le réseau NAT mon client qui est inSur la configuration de ma box j'ai ajouté une règle NAT
 
port interne   port externe   protocole   appareil
443                  443               UDP      192.168.1.29
 
 
Quand je veux me connecter depuis l’extérieur du NAT je mets l'adresse de ma livebox dans le fichier client.ovpn en gardant le port 443. Je n'arrive pas à me connecter.
 
 
Log du client (windows)

Code :
  1. Thu Apr 13 10:51:27 2017 NOTE: --user option is not implemented on Windows
  2. Thu Apr 13 10:51:27 2017 NOTE: --group option is not implemented on Windows
  3. Thu Apr 13 10:51:27 2017 us=83064 Current Parameter Settings:
  4. Thu Apr 13 10:51:27 2017 us=83064   config = 'client.ovpn'
  5. Thu Apr 13 10:51:27 2017 us=83064   mode = 0
  6. Thu Apr 13 10:51:27 2017 us=83064   show_ciphers = DISABLED
  7. Thu Apr 13 10:51:27 2017 us=83064   show_digests = DISABLED
  8. Thu Apr 13 10:51:27 2017 us=83064   show_engines = DISABLED
  9. Thu Apr 13 10:51:27 2017 us=83064   genkey = DISABLED
  10. Thu Apr 13 10:51:27 2017 us=83064   key_pass_file = '[UNDEF]'
  11. Thu Apr 13 10:51:27 2017 us=83064   show_tls_ciphers = DISABLED
  12. Thu Apr 13 10:51:27 2017 us=83064 Connection profiles [default]:
  13. Thu Apr 13 10:51:27 2017 us=83064   proto = udp
  14. Thu Apr 13 10:51:27 2017 us=83064   local = '[UNDEF]'
  15. Thu Apr 13 10:51:27 2017 us=83064   local_port = 0
  16. Thu Apr 13 10:51:27 2017 us=83064   remote = '@_router'
  17. Thu Apr 13 10:51:27 2017 us=83064   remote_port = 443
  18. Thu Apr 13 10:51:27 2017 us=83064   remote_float = DISABLED
  19. Thu Apr 13 10:51:27 2017 us=84041   bind_defined = DISABLED
  20. Thu Apr 13 10:51:27 2017 us=84041   bind_local = DISABLED
  21. Thu Apr 13 10:51:27 2017 us=84041   connect_retry_seconds = 5
  22. Thu Apr 13 10:51:27 2017 us=84041   connect_timeout = 10
  23. Thu Apr 13 10:51:27 2017 us=84041   connect_retry_max = 0
  24. Thu Apr 13 10:51:27 2017 us=84041   socks_proxy_server = '[UNDEF]'
  25. Thu Apr 13 10:51:27 2017 us=84041   socks_proxy_port = 0
  26. Thu Apr 13 10:51:27 2017 us=84041   socks_proxy_retry = DISABLED
  27. Thu Apr 13 10:51:27 2017 us=84041   tun_mtu = 1500
  28. Thu Apr 13 10:51:27 2017 us=84041   tun_mtu_defined = ENABLED
  29. Thu Apr 13 10:51:27 2017 us=84041   link_mtu = 1500
  30. Thu Apr 13 10:51:27 2017 us=84041   link_mtu_defined = DISABLED
  31. Thu Apr 13 10:51:27 2017 us=84041   tun_mtu_extra = 0
  32. Thu Apr 13 10:51:27 2017 us=84041   tun_mtu_extra_defined = DISABLED
  33. Thu Apr 13 10:51:27 2017 us=84041   mtu_discover_type = -1
  34. Thu Apr 13 10:51:27 2017 us=84041   fragment = 0
  35. Thu Apr 13 10:51:27 2017 us=84041   mssfix = 1450
  36. Thu Apr 13 10:51:27 2017 us=84041   explicit_exit_notification = 0
  37. Thu Apr 13 10:51:27 2017 us=84041 Connection profiles END
  38. Thu Apr 13 10:51:27 2017 us=84041   remote_random = DISABLED
  39. Thu Apr 13 10:51:27 2017 us=84041   ipchange = '[UNDEF]'
  40. Thu Apr 13 10:51:27 2017 us=84041   dev = 'tun'
  41. Thu Apr 13 10:51:27 2017 us=84041   dev_type = '[UNDEF]'
  42. Thu Apr 13 10:51:27 2017 us=84041   dev_node = '[UNDEF]'
  43. Thu Apr 13 10:51:27 2017 us=84041   lladdr = '[UNDEF]'
  44. Thu Apr 13 10:51:27 2017 us=84041   topology = 1
  45. Thu Apr 13 10:51:27 2017 us=84041   tun_ipv6 = DISABLED
  46. Thu Apr 13 10:51:27 2017 us=84041   ifconfig_local = '[UNDEF]'
  47. Thu Apr 13 10:51:27 2017 us=84041   ifconfig_remote_netmask = '[UNDEF]'
  48. Thu Apr 13 10:51:27 2017 us=84041   ifconfig_noexec = DISABLED
  49. Thu Apr 13 10:51:27 2017 us=84041   ifconfig_nowarn = DISABLED
  50. Thu Apr 13 10:51:27 2017 us=84041   ifconfig_ipv6_local = '[UNDEF]'
  51. Thu Apr 13 10:51:27 2017 us=84041   ifconfig_ipv6_netbits = 0
  52. Thu Apr 13 10:51:27 2017 us=84041   ifconfig_ipv6_remote = '[UNDEF]'
  53. Thu Apr 13 10:51:27 2017 us=84041   shaper = 0
  54. Thu Apr 13 10:51:27 2017 us=84041   mtu_test = 0
  55. Thu Apr 13 10:51:27 2017 us=84041   mlock = DISABLED
  56. Thu Apr 13 10:51:27 2017 us=84041   keepalive_ping = 0
  57. Thu Apr 13 10:51:27 2017 us=84041   keepalive_timeout = 0
  58. Thu Apr 13 10:51:27 2017 us=84041   inactivity_timeout = 0
  59. Thu Apr 13 10:51:27 2017 us=84041   ping_send_timeout = 0
  60. Thu Apr 13 10:51:27 2017 us=84041   ping_rec_timeout = 0
  61. Thu Apr 13 10:51:27 2017 us=84041   ping_rec_timeout_action = 0
  62. Thu Apr 13 10:51:27 2017 us=84041   ping_timer_remote = DISABLED
  63. Thu Apr 13 10:51:27 2017 us=84041   remap_sigusr1 = 0
  64. Thu Apr 13 10:51:27 2017 us=84041   persist_tun = ENABLED
  65. Thu Apr 13 10:51:27 2017 us=84041   persist_local_ip = DISABLED
  66. Thu Apr 13 10:51:27 2017 us=84041   persist_remote_ip = DISABLED
  67. Thu Apr 13 10:51:27 2017 us=84041   persist_key = ENABLED
  68. Thu Apr 13 10:51:27 2017 us=84041   passtos = DISABLED
  69. Thu Apr 13 10:51:27 2017 us=84041   resolve_retry_seconds = 1000000000
  70. Thu Apr 13 10:51:27 2017 us=84041   username = '[UNDEF]'
  71. Thu Apr 13 10:51:27 2017 us=84041   groupname = '[UNDEF]'
  72. Thu Apr 13 10:51:27 2017 us=84041   chroot_dir = '[UNDEF]'
  73. Thu Apr 13 10:51:27 2017 us=84041   cd_dir = '[UNDEF]'
  74. Thu Apr 13 10:51:27 2017 us=84041   writepid = '[UNDEF]'
  75. Thu Apr 13 10:51:27 2017 us=84041   up_script = '[UNDEF]'
  76. Thu Apr 13 10:51:27 2017 us=84041   down_script = '[UNDEF]'
  77. Thu Apr 13 10:51:27 2017 us=84041   down_pre = DISABLED
  78. Thu Apr 13 10:51:27 2017 us=84041   up_restart = DISABLED
  79. Thu Apr 13 10:51:27 2017 us=84041   up_delay = DISABLED
  80. Thu Apr 13 10:51:27 2017 us=84041   daemon = DISABLED
  81. Thu Apr 13 10:51:27 2017 us=84041   inetd = 0
  82. Thu Apr 13 10:51:27 2017 us=84041   log = ENABLED
  83. Thu Apr 13 10:51:27 2017 us=84041   suppress_timestamps = DISABLED
  84. Thu Apr 13 10:51:27 2017 us=84041   nice = 0
  85. Thu Apr 13 10:51:27 2017 us=84041   verbosity = 6
  86. Thu Apr 13 10:51:27 2017 us=84041   mute = 0
  87. Thu Apr 13 10:51:27 2017 us=84041   gremlin = 0
  88. Thu Apr 13 10:51:27 2017 us=84041   status_file = '[UNDEF]'
  89. Thu Apr 13 10:51:27 2017 us=84041   status_file_version = 1
  90. Thu Apr 13 10:51:27 2017 us=84041   status_file_update_freq = 60
  91. Thu Apr 13 10:51:27 2017 us=84041   occ = ENABLED
  92. Thu Apr 13 10:51:27 2017 us=84041   rcvbuf = 0
  93. Thu Apr 13 10:51:27 2017 us=84041   sndbuf = 0
  94. Thu Apr 13 10:51:27 2017 us=84041   sockflags = 0
  95. Thu Apr 13 10:51:27 2017 us=84041   fast_io = DISABLED
  96. Thu Apr 13 10:51:27 2017 us=84041   lzo = 7
  97. Thu Apr 13 10:51:27 2017 us=84041   route_script = '[UNDEF]'
  98. Thu Apr 13 10:51:27 2017 us=84041   route_default_gateway = '[UNDEF]'
  99. Thu Apr 13 10:51:27 2017 us=84041   route_default_metric = 0
  100. Thu Apr 13 10:51:27 2017 us=84041   route_noexec = DISABLED
  101. Thu Apr 13 10:51:27 2017 us=84041   route_delay = 5
  102. Thu Apr 13 10:51:27 2017 us=84041   route_delay_window = 30
  103. Thu Apr 13 10:51:27 2017 us=84041   route_delay_defined = ENABLED
  104. Thu Apr 13 10:51:27 2017 us=84041   route_nopull = DISABLED
  105. Thu Apr 13 10:51:27 2017 us=84041   route_gateway_via_dhcp = DISABLED
  106. Thu Apr 13 10:51:27 2017 us=84041   max_routes = 100
  107. Thu Apr 13 10:51:27 2017 us=84041   allow_pull_fqdn = DISABLED
  108. Thu Apr 13 10:51:27 2017 us=84041   management_addr = '127.0.0.1'
  109. Thu Apr 13 10:51:27 2017 us=84041   management_port = 25340
  110. Thu Apr 13 10:51:27 2017 us=84041   management_user_pass = 'stdin'
  111. Thu Apr 13 10:51:27 2017 us=84041   management_log_history_cache = 250
  112. Thu Apr 13 10:51:27 2017 us=84041   management_echo_buffer_size = 100
  113. Thu Apr 13 10:51:27 2017 us=84041   management_write_peer_info_file = '[UNDEF]'
  114. Thu Apr 13 10:51:27 2017 us=84041   management_client_user = '[UNDEF]'
  115. Thu Apr 13 10:51:27 2017 us=84041   management_client_group = '[UNDEF]'
  116. Thu Apr 13 10:51:27 2017 us=84041   management_flags = 6
  117. Thu Apr 13 10:51:27 2017 us=84041   shared_secret_file = '[UNDEF]'
  118. Thu Apr 13 10:51:27 2017 us=84041   key_direction = 0
  119. Thu Apr 13 10:51:27 2017 us=84041   ciphername_defined = ENABLED
  120. Thu Apr 13 10:51:27 2017 us=84041   ciphername = 'BF-CBC'
  121. Thu Apr 13 10:51:27 2017 us=84041   authname_defined = ENABLED
  122. Thu Apr 13 10:51:27 2017 us=84041   authname = 'SHA1'
  123. Thu Apr 13 10:51:27 2017 us=84041   prng_hash = 'SHA1'
  124. Thu Apr 13 10:51:27 2017 us=84041   prng_nonce_secret_len = 16
  125. Thu Apr 13 10:51:27 2017 us=84041   keysize = 0
  126. Thu Apr 13 10:51:27 2017 us=84041   engine = DISABLED
  127. Thu Apr 13 10:51:27 2017 us=84041   replay = ENABLED
  128. Thu Apr 13 10:51:27 2017 us=84041   mute_replay_warnings = DISABLED
  129. Thu Apr 13 10:51:27 2017 us=84041   replay_window = 64
  130. Thu Apr 13 10:51:27 2017 us=84041   replay_time = 15
  131. Thu Apr 13 10:51:27 2017 us=84041   packet_id_file = '[UNDEF]'
  132. Thu Apr 13 10:51:27 2017 us=84041   use_iv = ENABLED
  133. Thu Apr 13 10:51:27 2017 us=84041   test_crypto = DISABLED
  134. Thu Apr 13 10:51:27 2017 us=84041   tls_server = DISABLED
  135. Thu Apr 13 10:51:27 2017 us=84041   tls_client = ENABLED
  136. Thu Apr 13 10:51:27 2017 us=84041   key_method = 2
  137. Thu Apr 13 10:51:27 2017 us=84041   ca_file = 'ca.crt'
  138. Thu Apr 13 10:51:27 2017 us=84041   ca_path = '[UNDEF]'
  139. Thu Apr 13 10:51:27 2017 us=84041   dh_file = '[UNDEF]'
  140. Thu Apr 13 10:51:27 2017 us=84041   cert_file = 'client.crt'
  141. Thu Apr 13 10:51:27 2017 us=84041   extra_certs_file = '[UNDEF]'
  142. Thu Apr 13 10:51:27 2017 us=84041   priv_key_file = 'client.key'
  143. Thu Apr 13 10:51:27 2017 us=84041   pkcs12_file = '[UNDEF]'
  144. Thu Apr 13 10:51:27 2017 us=84041   cryptoapi_cert = '[UNDEF]'
  145. Thu Apr 13 10:51:27 2017 us=84041   cipher_list = '[UNDEF]'
  146. Thu Apr 13 10:51:27 2017 us=84041   tls_verify = '[UNDEF]'
  147. Thu Apr 13 10:51:27 2017 us=84041   tls_export_cert = '[UNDEF]'
  148. Thu Apr 13 10:51:27 2017 us=84041   verify_x509_type = 0
  149. Thu Apr 13 10:51:27 2017 us=84041   verify_x509_name = '[UNDEF]'
  150. Thu Apr 13 10:51:27 2017 us=84041   crl_file = '[UNDEF]'
  151. Thu Apr 13 10:51:27 2017 us=84041   ns_cert_type = 1
  152. Thu Apr 13 10:51:27 2017 us=84041   remote_cert_ku[i] = 0
  153. Thu Apr 13 10:51:27 2017 us=84041   remote_cert_ku[i] = 0
  154. Thu Apr 13 10:51:27 2017 us=84041   remote_cert_ku[i] = 0
  155. Thu Apr 13 10:51:27 2017 us=84041   remote_cert_ku[i] = 0
  156. Thu Apr 13 10:51:27 2017 us=84041   remote_cert_ku[i] = 0
  157. Thu Apr 13 10:51:27 2017 us=84041   remote_cert_ku[i] = 0
  158. Thu Apr 13 10:51:27 2017 us=84041   remote_cert_ku[i] = 0
  159. Thu Apr 13 10:51:27 2017 us=84041   remote_cert_ku[i] = 0
  160. Thu Apr 13 10:51:27 2017 us=84041   remote_cert_ku[i] = 0
  161. Thu Apr 13 10:51:27 2017 us=84041   remote_cert_ku[i] = 0
  162. Thu Apr 13 10:51:27 2017 us=84041   remote_cert_ku[i] = 0
  163. Thu Apr 13 10:51:27 2017 us=84041   remote_cert_ku[i] = 0
  164. Thu Apr 13 10:51:27 2017 us=84041   remote_cert_ku[i] = 0
  165. Thu Apr 13 10:51:27 2017 us=84041   remote_cert_ku[i] = 0
  166. Thu Apr 13 10:51:27 2017 us=84041   remote_cert_ku[i] = 0
  167. Thu Apr 13 10:51:27 2017 us=84041   remote_cert_ku[i] = 0
  168. Thu Apr 13 10:51:27 2017 us=84041   remote_cert_eku = '[UNDEF]'
  169. Thu Apr 13 10:51:27 2017 us=84041   ssl_flags = 0
  170. Thu Apr 13 10:51:27 2017 us=84041   tls_timeout = 2
  171. Thu Apr 13 10:51:27 2017 us=84041   renegotiate_bytes = -1
  172. Thu Apr 13 10:51:27 2017 us=84041   renegotiate_packets = 0
  173. Thu Apr 13 10:51:27 2017 us=84041   renegotiate_seconds = 3600
  174. Thu Apr 13 10:51:27 2017 us=84041   handshake_window = 60
  175. Thu Apr 13 10:51:27 2017 us=84041   transition_window = 3600
  176. Thu Apr 13 10:51:27 2017 us=84041   single_session = DISABLED
  177. Thu Apr 13 10:51:27 2017 us=84041   push_peer_info = DISABLED
  178. Thu Apr 13 10:51:27 2017 us=84041   tls_exit = DISABLED
  179. Thu Apr 13 10:51:27 2017 us=84041   tls_auth_file = '[UNDEF]'
  180. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_protected_authentication = DISABLED
  181. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_protected_authentication = DISABLED
  182. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_protected_authentication = DISABLED
  183. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_protected_authentication = DISABLED
  184. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_protected_authentication = DISABLED
  185. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_protected_authentication = DISABLED
  186. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_protected_authentication = DISABLED
  187. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_protected_authentication = DISABLED
  188. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_protected_authentication = DISABLED
  189. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_protected_authentication = DISABLED
  190. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_protected_authentication = DISABLED
  191. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_protected_authentication = DISABLED
  192. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_protected_authentication = DISABLED
  193. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_protected_authentication = DISABLED
  194. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_protected_authentication = DISABLED
  195. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_protected_authentication = DISABLED
  196. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_private_mode = 00000000
  197. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_private_mode = 00000000
  198. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_private_mode = 00000000
  199. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_private_mode = 00000000
  200. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_private_mode = 00000000
  201. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_private_mode = 00000000
  202. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_private_mode = 00000000
  203. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_private_mode = 00000000
  204. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_private_mode = 00000000
  205. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_private_mode = 00000000
  206. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_private_mode = 00000000
  207. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_private_mode = 00000000
  208. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_private_mode = 00000000
  209. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_private_mode = 00000000
  210. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_private_mode = 00000000
  211. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_private_mode = 00000000
  212. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_cert_private = DISABLED
  213. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_cert_private = DISABLED
  214. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_cert_private = DISABLED
  215. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_cert_private = DISABLED
  216. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_cert_private = DISABLED
  217. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_cert_private = DISABLED
  218. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_cert_private = DISABLED
  219. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_cert_private = DISABLED
  220. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_cert_private = DISABLED
  221. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_cert_private = DISABLED
  222. Thu Apr 13 10:51:27 2017 us=84041   pkcs11_cert_private = DISABLED
  223. Thu Apr 13 10:51:27 2017 us=85019   pkcs11_cert_private = DISABLED
  224. Thu Apr 13 10:51:27 2017 us=85019   pkcs11_cert_private = DISABLED
  225. Thu Apr 13 10:51:27 2017 us=85019   pkcs11_cert_private = DISABLED
  226. Thu Apr 13 10:51:27 2017 us=85019   pkcs11_cert_private = DISABLED
  227. Thu Apr 13 10:51:27 2017 us=85019   pkcs11_cert_private = DISABLED
  228. Thu Apr 13 10:51:27 2017 us=85019   pkcs11_pin_cache_period = -1
  229. Thu Apr 13 10:51:27 2017 us=85019   pkcs11_id = '[UNDEF]'
  230. Thu Apr 13 10:51:27 2017 us=85019   pkcs11_id_management = DISABLED
  231. Thu Apr 13 10:51:27 2017 us=85019   server_network = 0.0.0.0
  232. Thu Apr 13 10:51:27 2017 us=85019   server_netmask = 0.0.0.0
  233. Thu Apr 13 10:51:27 2017 us=86282   server_network_ipv6 = ::
  234. Thu Apr 13 10:51:27 2017 us=86282   server_netbits_ipv6 = 0
  235. Thu Apr 13 10:51:27 2017 us=86282   server_bridge_ip = 0.0.0.0
  236. Thu Apr 13 10:51:27 2017 us=86282   server_bridge_netmask = 0.0.0.0
  237. Thu Apr 13 10:51:27 2017 us=86282   server_bridge_pool_start = 0.0.0.0
  238. Thu Apr 13 10:51:27 2017 us=86282   server_bridge_pool_end = 0.0.0.0
  239. Thu Apr 13 10:51:27 2017 us=86282   ifconfig_pool_defined = DISABLED
  240. Thu Apr 13 10:51:27 2017 us=86282   ifconfig_pool_start = 0.0.0.0
  241. Thu Apr 13 10:51:27 2017 us=86282   ifconfig_pool_end = 0.0.0.0
  242. Thu Apr 13 10:51:27 2017 us=86282   ifconfig_pool_netmask = 0.0.0.0
  243. Thu Apr 13 10:51:27 2017 us=86282   ifconfig_pool_persist_filename = '[UNDEF]'
  244. Thu Apr 13 10:51:27 2017 us=86282   ifconfig_pool_persist_refresh_freq = 600
  245. Thu Apr 13 10:51:27 2017 us=86282   ifconfig_ipv6_pool_defined = DISABLED
  246. Thu Apr 13 10:51:27 2017 us=86282   ifconfig_ipv6_pool_base = ::
  247. Thu Apr 13 10:51:27 2017 us=86282   ifconfig_ipv6_pool_netbits = 0
  248. Thu Apr 13 10:51:27 2017 us=86282   n_bcast_buf = 256
  249. Thu Apr 13 10:51:27 2017 us=86282   tcp_queue_limit = 64
  250. Thu Apr 13 10:51:27 2017 us=86282   real_hash_size = 256
  251. Thu Apr 13 10:51:27 2017 us=86282   virtual_hash_size = 256
  252. Thu Apr 13 10:51:27 2017 us=86282   client_connect_script = '[UNDEF]'
  253. Thu Apr 13 10:51:27 2017 us=86282   learn_address_script = '[UNDEF]'
  254. Thu Apr 13 10:51:27 2017 us=86282   client_disconnect_script = '[UNDEF]'
  255. Thu Apr 13 10:51:27 2017 us=86282   client_config_dir = '[UNDEF]'
  256. Thu Apr 13 10:51:27 2017 us=86282   ccd_exclusive = DISABLED
  257. Thu Apr 13 10:51:27 2017 us=86282   tmp_dir = 'C:\Users\Idriss\AppData\Local\Temp\'
  258. Thu Apr 13 10:51:27 2017 us=86282   push_ifconfig_defined = DISABLED
  259. Thu Apr 13 10:51:27 2017 us=86282   push_ifconfig_local = 0.0.0.0
  260. Thu Apr 13 10:51:27 2017 us=86282   push_ifconfig_remote_netmask = 0.0.0.0
  261. Thu Apr 13 10:51:27 2017 us=86282   push_ifconfig_ipv6_defined = DISABLED
  262. Thu Apr 13 10:51:27 2017 us=86282   push_ifconfig_ipv6_local = ::/0
  263. Thu Apr 13 10:51:27 2017 us=86282   push_ifconfig_ipv6_remote = ::
  264. Thu Apr 13 10:51:27 2017 us=86282   enable_c2c = DISABLED
  265. Thu Apr 13 10:51:27 2017 us=86282   duplicate_cn = DISABLED
  266. Thu Apr 13 10:51:27 2017 us=86282   cf_max = 0
  267. Thu Apr 13 10:51:27 2017 us=86282   cf_per = 0
  268. Thu Apr 13 10:51:27 2017 us=86282   max_clients = 1024
  269. Thu Apr 13 10:51:27 2017 us=86282   max_routes_per_client = 256
  270. Thu Apr 13 10:51:27 2017 us=86282   auth_user_pass_verify_script = '[UNDEF]'
  271. Thu Apr 13 10:51:27 2017 us=86282   auth_user_pass_verify_script_via_file = DISABLED
  272. Thu Apr 13 10:51:27 2017 us=86282   client = ENABLED
  273. Thu Apr 13 10:51:27 2017 us=86282   pull = ENABLED
  274. Thu Apr 13 10:51:27 2017 us=86282   auth_user_pass_file = '[UNDEF]'
  275. Thu Apr 13 10:51:27 2017 us=86282   show_net_up = DISABLED
  276. Thu Apr 13 10:51:27 2017 us=86282   route_method = 0
  277. Thu Apr 13 10:51:27 2017 us=86282   block_outside_dns = DISABLED
  278. Thu Apr 13 10:51:27 2017 us=86282   ip_win32_defined = DISABLED
  279. Thu Apr 13 10:51:27 2017 us=86282   ip_win32_type = 3
  280. Thu Apr 13 10:51:27 2017 us=86282   dhcp_masq_offset = 0
  281. Thu Apr 13 10:51:27 2017 us=86282   dhcp_lease_time = 31536000
  282. Thu Apr 13 10:51:27 2017 us=86282   tap_sleep = 0
  283. Thu Apr 13 10:51:27 2017 us=86282   dhcp_options = DISABLED
  284. Thu Apr 13 10:51:27 2017 us=86282   dhcp_renew = DISABLED
  285. Thu Apr 13 10:51:27 2017 us=86282   dhcp_pre_release = DISABLED
  286. Thu Apr 13 10:51:27 2017 us=86282   dhcp_release = DISABLED
  287. Thu Apr 13 10:51:27 2017 us=86282   domain = '[UNDEF]'
  288. Thu Apr 13 10:51:27 2017 us=86282   netbios_scope = '[UNDEF]'
  289. Thu Apr 13 10:51:27 2017 us=86282   netbios_node_type = 0
  290. Thu Apr 13 10:51:27 2017 us=86282   disable_nbt = DISABLED
  291. Thu Apr 13 10:51:27 2017 us=86282 OpenVPN 2.3.14 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [PKCS11] [IPv6] built on Feb  1 2017
  292. Thu Apr 13 10:51:27 2017 us=86282 Windows version 6.2 (Windows 8 or greater) 64bit
  293. Thu Apr 13 10:51:27 2017 us=86282 library versions: OpenSSL 1.0.2k  26 Jan 2017, LZO 2.09
  294. Enter Management Password:
  295. Thu Apr 13 10:51:27 2017 us=86282 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:25340
  296. Thu Apr 13 10:51:27 2017 us=86282 Need hold release from management interface, waiting...
  297. Thu Apr 13 10:51:27 2017 us=562223 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:25340
  298. Thu Apr 13 10:51:27 2017 us=663013 MANAGEMENT: CMD 'state on'
  299. Thu Apr 13 10:51:27 2017 us=663013 MANAGEMENT: CMD 'log all on'
  300. Thu Apr 13 10:51:27 2017 us=742557 MANAGEMENT: CMD 'hold off'
  301. Thu Apr 13 10:51:27 2017 us=743033 MANAGEMENT: CMD 'hold release'
  302. Thu Apr 13 10:51:27 2017 us=821662 LZO compression initialized
  303. Thu Apr 13 10:51:27 2017 us=822640 Control Channel MTU parms [ L:1542 D:1212 EF:38 EB:0 ET:0 EL:3 ]
  304. Thu Apr 13 10:51:27 2017 us=822640 Socket Buffers: R=[65536->65536] S=[65536->65536]
  305. Thu Apr 13 10:51:27 2017 us=822640 Data Channel MTU parms [ L:1542 D:1450 EF:42 EB:143 ET:0 EL:3 AF:3/1 ]
  306. Thu Apr 13 10:51:27 2017 us=822640 Local Options String: 'V4,dev-type tun,link-mtu 1542,tun-mtu 1500,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
  307. Thu Apr 13 10:51:27 2017 us=822640 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1542,tun-mtu 1500,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
  308. Thu Apr 13 10:51:27 2017 us=822640 Local Options hash (VER=V4): '41690919'
  309. Thu Apr 13 10:51:27 2017 us=822640 Expected Remote Options hash (VER=V4): '530fdded'
  310. Thu Apr 13 10:51:27 2017 us=822640 UDPv4 link local: [undef]
  311. Thu Apr 13 10:51:27 2017 us=822640 UDPv4 link remote: [AF_INET]@_router:443
  312. Thu Apr 13 10:51:27 2017 us=822640 MANAGEMENT: >STATE:1492066287,WAIT,,,
  313. Thu Apr 13 10:51:27 2017 us=822640 UDPv4 WRITE [14] to [AF_INET]@_router:443: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
  314. Thu Apr 13 10:51:27 2017 us=822640 UDPv4 READ [0] from [undef]: DATA UNDEF len=-1
  315. Thu Apr 13 10:51:29 2017 us=937451 UDPv4 WRITE [14] to [AF_INET]@_router:443: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
  316. Thu Apr 13 10:51:33 2017 us=109247 UDPv4 WRITE [14] to [AF_INET]@_router:443: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
  317. Thu Apr 13 10:51:41 2017 us=99029 UDPv4 WRITE [14] to [AF_INET]@_router:443: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
  318. Thu Apr 13 10:51:57 2017 us=469387 UDPv4 WRITE [14] to [AF_INET]@_router:443: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
  319. Thu Apr 13 10:52:27 2017 us=693869 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
  320. Thu Apr 13 10:52:27 2017 us=693869 TLS Error: TLS handshake failed
  321. Thu Apr 13 10:52:27 2017 us=693869 TCP/UDP: Closing socket
  322. Thu Apr 13 10:52:27 2017 us=693869 SIGUSR1[soft,tls-error] received, process restarting
  323. Thu Apr 13 10:52:27 2017 us=693869 MANAGEMENT: >STATE:1492066347,RECONNECTING,tls-error,,
  324. Thu Apr 13 10:52:27 2017 us=693869 Restart pause, 2 second(s)
  325. Thu Apr 13 10:52:29 2017 us=694222 Re-using SSL/TLS context
  326. Thu Apr 13 10:52:29 2017 us=694222 LZO compression initialized
  327. Thu Apr 13 10:52:29 2017 us=694222 Control Channel MTU parms [ L:1542 D:1212 EF:38 EB:0 ET:0 EL:3 ]
  328. Thu Apr 13 10:52:29 2017 us=694222 Socket Buffers: R=[65536->65536] S=[65536->65536]
  329. Thu Apr 13 10:52:29 2017 us=694222 Data Channel MTU parms [ L:1542 D:1450 EF:42 EB:143 ET:0 EL:3 AF:3/1 ]
  330. Thu Apr 13 10:52:29 2017 us=694222 Local Options String: 'V4,dev-type tun,link-mtu 1542,tun-mtu 1500,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
  331. Thu Apr 13 10:52:29 2017 us=694222 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1542,tun-mtu 1500,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
  332. Thu Apr 13 10:52:29 2017 us=694222 Local Options hash (VER=V4): '41690919'
  333. Thu Apr 13 10:52:29 2017 us=694222 Expected Remote Options hash (VER=V4): '530fdded'
  334. Thu Apr 13 10:52:29 2017 us=694222 UDPv4 link local: [undef]
  335. Thu Apr 13 10:52:29 2017 us=694222 UDPv4 link remote: [AF_INET]@_router:443
  336. Thu Apr 13 10:52:29 2017 us=694222 MANAGEMENT: >STATE:1492066349,WAIT,,,
  337. Thu Apr 13 10:52:29 2017 us=694222 UDPv4 WRITE [14] to [AF_INET]@_router:443: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
  338. Thu Apr 13 10:52:29 2017 us=694222 UDPv4 READ [0] from [undef]: DATA UNDEF len=-1
  339. Thu Apr 13 10:52:31 2017 us=841933 UDPv4 WRITE [14] to [AF_INET]@_router:443: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0
  340. Thu Apr 13 10:52:35 2017 us=61436 UDPv4 WRITE [14] to [AF_INET]@_router:443: P_CONTROL_HARD_RESET_CLIENT_V2 kid=0 [ ] pid=0 DATA len=0


 
Serveur.conf (debian)
 

Code :
  1. port 443
  2. proto udp
  3. dev tun
  4. ca ca.crt
  5. cert server.crt
  6. key server.key
  7. server 10.8.0.0 255.255.255.0
  8. ifconfig-pool-persist ipp.txt
  9. push "dhcp-option DNS 208.67.222.222"
  10. push "dhcp-option DNS 208.67.220.220"
  11. comp-lzo
  12. user nobody
  13. group nogroup
  14. persist-key
  15. persist-tun
  16. status openvpn-status.log
  17. verb 6


 
before.rules
 

Code :
  1. # START OPENVPN RULES
  2. # NAT table rules
  3. *nat
  4. : POSTROUTING ACCEPT [0:0]
  5. # Allow traffic from OpenVPN client to eth0
  6. -A POSTROUTING -s 10.8.0.0/8 -o eth0 -j MASQUERADE
  7. COMMIT
  8. # END OPENVPN RULES


Reply

Marsh Posté le 15-04-2017 à 12:12:49   

Reply

Sujets relatifs:

Leave a Replay

Make sure you enter the(*)required information where indicate.HTML code is not allowed