OpenVPN可以很好地处理移动数据,但不能通过ADSL连接。
OpenVPN可以很好地处理移动数据,但不能通过ADSL连接。
提问于 2019-09-26 07:04:07
我已经在一台OpenVPN机器上安装了CentOS,并在它上创建了一个用户。然后我在我的电脑上安装了客户端软件,并试图连接到VPN。奇怪的问题是,当我使用基于移动数据的Internet时,我可以连接到VPN,但是当我使用ADSL连接时,连接失败,我得到以下错误:
注意:此错误日志中的IP更改为
示例
Thu Sep 26 08:44:29 2019 OpenVPN 2.4.7 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [AEAD] built on Apr 25 2019
Thu Sep 26 08:44:29 2019 Windows version 6.2 (Windows 8 or greater) 64bit
Thu Sep 26 08:44:29 2019 library versions: OpenSSL 1.1.0j 20 Nov 2018, LZO 2.10
Thu Sep 26 08:44:29 2019 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:25341
Thu Sep 26 08:44:29 2019 Need hold release from management interface, waiting...
Thu Sep 26 08:44:29 2019 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:25341
Thu Sep 26 08:44:29 2019 MANAGEMENT: CMD 'state on'
Thu Sep 26 08:44:29 2019 MANAGEMENT: CMD 'log all on'
Thu Sep 26 08:44:29 2019 MANAGEMENT: CMD 'echo all on'
Thu Sep 26 08:44:29 2019 MANAGEMENT: CMD 'bytecount 5'
Thu Sep 26 08:44:29 2019 MANAGEMENT: CMD 'hold off'
Thu Sep 26 08:44:29 2019 MANAGEMENT: CMD 'hold release'
Thu Sep 26 08:44:29 2019 Outgoing Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Thu Sep 26 08:44:29 2019 Outgoing Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Thu Sep 26 08:44:29 2019 Incoming Control Channel Encryption: Cipher 'AES-256-CTR' initialized with 256 bit key
Thu Sep 26 08:44:29 2019 Incoming Control Channel Encryption: Using 256 bit message hash 'SHA256' for HMAC authentication
Thu Sep 26 08:44:29 2019 TCP/UDP: Preserving recently used remote address: [AF_INET]104.179.258.10:50555
Thu Sep 26 08:44:29 2019 Socket Buffers: R=[65536->65536] S=[65536->65536]
Thu Sep 26 08:44:29 2019 Attempting to establish TCP connection with [AF_INET]104.179.258.10:50555 [nonblock]
Thu Sep 26 08:44:29 2019 MANAGEMENT: >STATE:1569474869,TCP_CONNECT,,,,,,
Thu Sep 26 08:44:31 2019 TCP connection established with [AF_INET]104.179.258.10:50555
Thu Sep 26 08:44:31 2019 TCP_CLIENT link local: (not bound)
Thu Sep 26 08:44:31 2019 TCP_CLIENT link remote: [AF_INET]104.179.258.10:50555
Thu Sep 26 08:44:31 2019 MANAGEMENT: >STATE:1569474871,WAIT,,,,,,
Thu Sep 26 08:44:32 2019 MANAGEMENT: >STATE:1569474872,AUTH,,,,,,
Thu Sep 26 08:44:32 2019 TLS: Initial packet from [AF_INET]104.179.258.10:50555, sid=fcdf87ec 47b25bf8
Thu Sep 26 08:45:00 2019 read TCP_CLIENT: Unknown error (code=10060)
Thu Sep 26 08:45:00 2019 Connection reset, restarting [-1]
Thu Sep 26 08:45:00 2019 SIGUSR1[soft,connection-reset] received, process restarting
Thu Sep 26 08:45:00 2019 MANAGEMENT: >STATE:1569474900,RECONNECTING,connection-reset,,,,,
Thu Sep 26 08:45:00 2019 Restart pause, 5 second(s)
Thu Sep 26 08:45:05 2019 TCP/UDP: Preserving recently used remote address: [AF_INET]104.179.258.10:50555
Thu Sep 26 08:45:05 2019 Socket Buffers: R=[65536->65536] S=[65536->65536]
Thu Sep 26 08:45:05 2019 Attempting to establish TCP connection with [AF_INET]104.179.258.10:50555 [nonblock]
Thu Sep 26 08:45:05 2019 MANAGEMENT: >STATE:1569474905,TCP_CONNECT,,,,,,
Thu Sep 26 08:45:06 2019 TCP connection established with [AF_INET]104.179.258.10:50555
Thu Sep 26 08:45:06 2019 TCP_CLIENT link local: (not bound)
Thu Sep 26 08:45:06 2019 TCP_CLIENT link remote: [AF_INET]104.179.258.10:50555
Thu Sep 26 08:45:06 2019 MANAGEMENT: >STATE:1569474906,WAIT,,,,,,
Thu Sep 26 08:45:06 2019 MANAGEMENT: >STATE:1569474906,AUTH,,,,,,
Thu Sep 26 08:45:06 2019 TLS: Initial packet from [AF_INET]104.179.258.10:50555, sid=a1b6af90 ed5ef60f
Thu Sep 26 08:45:36 2019 read TCP_CLIENT: Unknown error (code=10060)
Thu Sep 26 08:45:36 2019 Connection reset, restarting [-1]
Thu Sep 26 08:45:36 2019 SIGUSR1[soft,connection-reset] received, process restarting
Thu Sep 26 08:45:36 2019 MANAGEMENT: >STATE:1569474936,RECONNECTING,connection-reset,,,,,
Thu Sep 26 08:45:36 2019 Restart pause, 5 second(s)
Thu Sep 26 08:45:41 2019 TCP/UDP: Preserving recently used remote address: [AF_INET]104.179.258.10:50555
Thu Sep 26 08:45:41 2019 Socket Buffers: R=[65536->65536] S=[65536->65536]
Thu Sep 26 08:45:41 2019 Attempting to establish TCP connection with [AF_INET]104.179.258.10:50555 [nonblock]
Thu Sep 26 08:45:41 2019 MANAGEMENT: >STATE:1569474941,TCP_CONNECT,,,,,,`你知道问题是什么吗?我该怎么解决呢?
回答 2
Server Fault用户
发布于 2019-09-26 09:10:46
错误代码10060是套接字超时。您的互联网提供商可能会过滤您为OpenVPN配置的端口。尝试重新配置服务器以使用TCP而不是UDP,并尝试将telnet发送到服务器使用的端口。如果它不能工作,那么配置您的服务器使用一个不太可能被过滤的端口,比如443。
Server Fault用户
发布于 2022-01-07 22:53:52
我也有同样的问题。我检查了来自NordVPN的此链接和TCP连接。与我遇到的问题相同的ADSL网络。NordVPN连接工作得很好,但是除了openvpn+proxy连接之外,所有其他openvpn和UDP连接都被阻塞。openvpn+proxy非常慢。
我不知道为什么NordVPN、TCP和UDP连接没有任何问题。但我们的联系被封锁了。例如,NordVPN使用端口1194作为它们的连接,并且工作非常好。我使用了端口443和1194和.,但是我们的连接没有与任何端口一起工作。我检查了同一台PC和网络中的端口,端口没有阻塞,并且是开放的,我可以访问ports.It,这意味着如果我想使用端口443作为web服务器,它没有任何问题,但是当我使用端口443进行Openvpn时,使用openvpn连接或openvpn-gui发送的数据包似乎会被过滤或阻塞。
有可能吗?我们能做什么?NordVPN如何解决这个问题?我们的客户端配置是:
client
dev tun
proto tcp
remote server.domain.add 443
resolv-retry infinite
nobind
pull
tun-mtu 1500
tun-mtu-extra 32
mssfix 1450
persist-key
persist-tun
auth-user-pass
comp-lzo
verb 3
redirect-gateway autolocal
<ca>
-----BEGIN CERTIFICATE-----
...
-----END CERTIFICATE-----
</ca>
<cert>
-----BEGIN CERTIFICATE-----
...
-----END CERTIFICATE-----
</cert>
<key>
-----BEGIN PRIVATE KEY-----
...
-----END PRIVATE KEY-----
</key>nordvpn客户端配置是:
client
dev tun
proto tcp
remote ip.add 443
resolv-retry infinite
remote-random
nobind
tun-mtu 1500
tun-mtu-extra 32
mssfix 1450
persist-key
persist-tun
ping 15
ping-restart 0
ping-timer-rem
reneg-sec 0
comp-lzo no
remote-cert-tls server
auth-user-pass
verb 3
pull
fast-io
cipher AES-256-CBC
auth SHA512
<ca>
-----BEGIN CERTIFICATE-----
...
-----END CERTIFICATE-----
</ca>
key-direction 1
<tls-auth>
# 2048 bit OpenVPN static key
...
-----END OpenVPN Static key V1-----
</tls-auth>页面原文内容由Server Fault提供。腾讯云小微IT领域专用引擎提供翻译支持
原文链接:
https://serverfault.com/questions/985688
复制相关文章
相似问题
腾讯云开发者
Copyright © 2013 - 2026 Tencent Cloud. All Rights Reserved. 腾讯云 版权所有
深圳市腾讯计算机系统有限公司 ICP备案/许可证号:粤B2-20090059 
粤公网安备44030502008569号
腾讯云计算(北京)有限责任公司 京ICP证150476号 | 京ICP备11018762号