Open VPN

1. Open VPN

Victor Cardoso
Vic2132

(usa Outra)

Enviado em 24/10/2017 - 18:50h

Oi!!!
Eu estou tendo um problema com o openvpn, ele não está funcionando... Eu tento usar e aparece isso no terminal.

Tue Oct 24 18:48:48 2017 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Tue Oct 24 18:48:48 2017 NOTE: --fast-io is disabled since we are not using UDP
Tue Oct 24 18:48:48 2017 TCP/UDP: Preserving recently used remote address: [AF_INET]176.126.237.214:443
Tue Oct 24 18:48:48 2017 Socket Buffers: R=[87380->87380] S=[16384->16384]
Tue Oct 24 18:48:48 2017 Attempting to establish TCP connection with [AF_INET]176.126.237.214:443 [nonblock]
Tue Oct 24 18:48:49 2017 TCP connection established with [AF_INET]176.126.237.214:443
Tue Oct 24 18:48:49 2017 TCP_CLIENT link local: (not bound)
Tue Oct 24 18:48:49 2017 TCP_CLIENT link remote: [AF_INET]176.126.237.214:443
Tue Oct 24 18:48:50 2017 TLS: Initial packet from [AF_INET]176.126.237.214:443, sid=a37cc078 7dfeb89a
Tue Oct 24 18:48:50 2017 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Tue Oct 24 18:48:59 2017 VERIFY OK: depth=1, C=CH, ST=Zurich, L=Zurich, O=vpnbook.com, OU=IT, CN=vpnbook.com, name=vpnbook.com, emailAddress=admin@vpnbook.com
Tue Oct 24 18:48:59 2017 VERIFY OK: depth=0, C=CH, ST=Zurich, L=Zurich, O=vpnbook.com, OU=IT, CN=vpnbook.com, name=vpnbook.com, emailAddress=admin@vpnbook.com
Tue Oct 24 18:49:06 2017 Control Channel: TLSv1, cipher SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
Tue Oct 24 18:49:06 2017 [vpnbook.com] Peer Connection Initiated with [AF_INET]176.126.237.214:443
Tue Oct 24 18:49:07 2017 SENT CONTROL [vpnbook.com]: 'PUSH_REQUEST' (status=1)
Tue Oct 24 18:49:08 2017 PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1,dhcp-option DNS 84.200.69.80,dhcp-option DNS 37.235.1.177,route 10.9.0.1,topology net30,ping 5,ping-restart 30,ifconfig 10.9.1.6 10.9.1.5'
Tue Oct 24 18:49:08 2017 OPTIONS IMPORT: timers and/or timeouts modified
Tue Oct 24 18:49:08 2017 OPTIONS IMPORT: --ifconfig/up options modified
Tue Oct 24 18:49:08 2017 OPTIONS IMPORT: route options modified
Tue Oct 24 18:49:08 2017 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Tue Oct 24 18:49:08 2017 Outgoing Data Channel: Cipher 'AES-128-CBC' initialized with 128 bit key
Tue Oct 24 18:49:08 2017 Outgoing Data Channel: Using 160 bit message hash 'SHA1' for HMAC authentication
Tue Oct 24 18:49:08 2017 Incoming Data Channel: Cipher 'AES-128-CBC' initialized with 128 bit key
Tue Oct 24 18:49:08 2017 Incoming Data Channel: Using 160 bit message hash 'SHA1' for HMAC authentication
Tue Oct 24 18:49:08 2017 ROUTE_GATEWAY 192.168.25.1/255.255.255.0 IFACE=wlp6s0b1 HWADDR=00:1b:b1:aa:85:c3
Tue Oct 24 18:49:08 2017 ERROR: Cannot ioctl TUNSETIFF tun1: Operation not permitted (errno=1)
Tue Oct 24 18:49:08 2017 Exiting due to fatal error


E eu não sei mais o que fazer... o que eu posso fazer para concertar...


E eu uso ARCH LINUX


  


2. Re: Open VPN

Patrick Costa da Silva
patrickpcs

(usa Nenhuma)

Enviado em 24/10/2017 - 21:08h

No final houve uma operação não permitida, OpenVPN como outros utilitários de bom precisam de privilégios administrativos para operações como alteração de rotas do seu sistema. Já tentou executar como root?


Edit: parece que vc tem privilégios perdão, vi que as alterações de rotas foram aplicadas com êxito....entretanto a seguinte ação não foi bem sucedida;
Tue Oct 24 18:49:08 2017 ERROR: Cannot ioctl TUNSETIFF tun1: Operation not permitted (errno=1) 


Edit2: uma rápida pesquisa simples no Google pelo termos do erro me levaram a uma página que relata também ser problemas de privilégios. No caso ele usou o sudo mas no seu como usa o arch pode ser interessante para testes e diagnósticos executar diretamente como root.

https://serverfault.com/questions/647231/getting-cannot-ioctl-tunsetiff-tun-operation-not-permitted-...


3. Re: Open VPN

Victor Cardoso
Vic2132

(usa Outra)

Enviado em 25/10/2017 - 20:04h

patrickpcs escreveu:

No final houve uma operação não permitida, OpenVPN como outros utilitários de bom precisam de privilégios administrativos para operações como alteração de rotas do seu sistema. Já tentou executar como root?


Edit: parece que vc tem privilégios perdão, vi que as alterações de rotas foram aplicadas com êxito....entretanto a seguinte ação não foi bem sucedida;
Tue Oct 24 18:49:08 2017 ERROR: Cannot ioctl TUNSETIFF tun1: Operation not permitted (errno=1) 


Edit2: uma rápida pesquisa simples no Google pelo termos do erro me levaram a uma página que relata também ser problemas de privilégios. No caso ele usou o sudo mas no seu como usa o arch pode ser interessante para testes e diagnósticos executar diretamente como root.

https://serverfault.com/questions/647231/getting-cannot-ioctl-tunsetiff-tun-operation-not-permitted-...




Mesmo assim, continua não funcionando...

[root@ArchL Desktop]# cd /home/vic2132/VPN/Euro2/
[root@ArchL Euro2]# ls
vpnbook-euro2-tcp443.ovpn vpnbook-euro2-udp25000.ovpn
vpnbook-euro2-tcp80.ovpn vpnbook-euro2-udp53.ovpn
[root@ArchL Euro2]# openvpn vpnbook-euro2-tcp443.ovpn
Wed Oct 25 20:02:23 2017 OpenVPN 2.4.4 x86_64-unknown-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Sep 26 2017
Wed Oct 25 20:02:23 2017 library versions: OpenSSL 1.1.0f 25 May 2017, LZO 2.10
Enter Auth Username: vpnbook
Enter Auth Password: *******
Wed Oct 25 20:02:38 2017 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Wed Oct 25 20:02:38 2017 NOTE: --fast-io is disabled since we are not using UDP
Wed Oct 25 20:02:38 2017 TCP/UDP: Preserving recently used remote address: [AF_INET]176.126.237.214:443
Wed Oct 25 20:02:38 2017 Socket Buffers: R=[87380->87380] S=[16384->16384]
Wed Oct 25 20:02:38 2017 Attempting to establish TCP connection with [AF_INET]176.126.237.214:443 [nonblock]
Wed Oct 25 20:02:39 2017 TCP connection established with [AF_INET]176.126.237.214:443
Wed Oct 25 20:02:39 2017 TCP_CLIENT link local: (not bound)
Wed Oct 25 20:02:39 2017 TCP_CLIENT link remote: [AF_INET]176.126.237.214:443
Wed Oct 25 20:02:40 2017 TLS: Initial packet from [AF_INET]176.126.237.214:443, sid=19f45043 0ee71e7b
Wed Oct 25 20:02:40 2017 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Wed Oct 25 20:02:48 2017 VERIFY OK: depth=1, C=CH, ST=Zurich, L=Zurich, O=vpnbook.com, OU=IT, CN=vpnbook.com, name=vpnbook.com, emailAddress=admin@vpnbook.com
Wed Oct 25 20:02:48 2017 VERIFY OK: depth=0, C=CH, ST=Zurich, L=Zurich, O=vpnbook.com, OU=IT, CN=vpnbook.com, name=vpnbook.com, emailAddress=admin@vpnbook.com
Wed Oct 25 20:02:53 2017 Control Channel: TLSv1, cipher SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
Wed Oct 25 20:02:53 2017 [vpnbook.com] Peer Connection Initiated with [AF_INET]176.126.237.214:443
Wed Oct 25 20:02:54 2017 SENT CONTROL [vpnbook.com]: 'PUSH_REQUEST' (status=1)
Wed Oct 25 20:02:57 2017 AUTH: Received control message: AUTH_FAILED
Wed Oct 25 20:02:57 2017 SIGTERM[soft,auth-failure] received, process exiting
[root@ArchL Euro2]#






4. Re: Open VPN

Patrick Costa da Silva
patrickpcs

(usa Nenhuma)

Enviado em 25/10/2017 - 20:34h

Pela saída exposta obtivemos progressos meu caro, entretanto o problema agora é autenticação;
Wed Oct 25 20:02:57 2017 AUTH: Received control message: AUTH_FAILED
Wed Oct 25 20:02:57 2017 SIGTERM[soft,auth-failure] received, process exiting


Certifique-se que as credenciais estão corretas.

Você pode visitar também a url https://openvpn.net/index.php/open-source/documentation/howto.html






Patrocínio

Site hospedado pelo provedor RedeHost.
Linux banner
Linux banner
Linux banner

Destaques

Artigos

Dicas

Tópicos

Top 10 do mês

Scripts