用强天鹅配置vpn
用强天鹅配置vpn
提问于 2015-05-07 11:57:07
我需要做一个vpn站点到站点,公司的整合给了我这些对撞机.
网关: 41.xxx.xx.xx
主机IP : 41.xxx.x.xx端口xxxx
转换集: esp-aes-256 esp-md5-hmac
预共享密钥:
我配置了Strongswan http://www.strongswan.org。但不幸的是,我没能让它开始工作。
以前有人这样做过吗?谢谢。
edited........................................这是我的auth.log
May 11 21:23:52 li348-231 sshd[3000]: Connection closed by 58.108.232.7 [preauth]
May 11 21:24:05 li348-231 sshd[3012]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.173.14.143 user=root
May 11 21:24:07 li348-231 sshd[3012]: Failed password for root from 60.173.14.143 port 39095 ssh2
May 11 21:24:10 li348-231 sshd[3012]: Received disconnect from 60.173.14.143: 11: Normal Shutdown, Thank you for playing [preauth]
May 11 21:24:13 li348-231 sshd[3015]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.173.14.143 user=root
May 11 21:24:15 li348-231 sshd[3015]: Failed password for root from 60.173.14.143 port 41129 ssh2
May 11 21:24:15 li348-231 sshd[3015]: Received disconnect from 60.173.14.143: 11: Normal Shutdown, Thank you for playing [preauth]
May 11 21:25:01 li348-231 CRON[3018]: pam_unix(cron:session): session opened for user root by (uid=0)
May 11 21:25:01 li348-231 CRON[3018]: pam_unix(cron:session): session closed for user root
May 11 21:26:21 li348-231 ipsec_starter[3021]: Starting strongSwan 5.1.2 IPsec [starter]...
May 11 21:26:21 li348-231 ipsec_starter[3040]: charon (3041) started after 20 ms
May 11 21:29:47 li348-231 ipsec_starter[3040]: charon stopped after 200 ms
May 11 21:29:47 li348-231 ipsec_starter[3040]: ipsec starter stopped
May 11 21:29:50 li348-231 ipsec_starter[3204]: Starting strongSwan 5.1.2 IPsec [starter]...
May 11 21:29:50 li348-231 ipsec_starter[3225]: charon (3226) started after 20 ms
May 11 21:35:01 li348-231 CRON[3310]: pam_unix(cron:session): session opened for user root by (uid=0)
May 11 21:35:01 li348-231 CRON[3310]: pam_unix(cron:session): session closed for user root编辑以添加尾-f /var/log/syslog输出
May 12 09:02:06 li348-231 charon: 00[CFG] loading attribute certificates from '/etc/ipsec.d/acerts'
May 12 09:02:06 li348-231 charon: 00[CFG] loading crls from '/etc/ipsec.d/crls'
May 12 09:02:06 li348-231 charon: 00[CFG] loading secrets from '/etc/ipsec.secrets'
May 12 09:02:06 li348-231 charon: 00[CFG] loaded IKE secret for @blinks.com @ccxtnm.net
May 12 09:02:06 li348-231 charon: 00[LIB] loaded plugins: charon test-vectors aes rc2 sha1 sha2 md4 md5 rdrand random nonce x509 revocation constraints pkcs1 pkcs7 pkcs8 pkcs12 pem openssl xcbc cmac hmac ctr ccm gcm attr kernel-netlink resolve socket-default stroke updown eap-identity eap-mschapv2 addrblock
May 12 09:02:06 li348-231 charon: 00[LIB] unable to load 5 plugin features (5 due to unmet dependencies)
May 12 09:02:06 li348-231 charon: 00[LIB] dropped capabilities, running as uid 0, gid 0
May 12 09:02:06 li348-231 charon: 00[JOB] spawning 16 worker threads
May 12 09:02:06 li348-231 charon: 10[CFG] received stroke: add connection 'net-net'
May 12 09:02:06 li348-231 charon: 10[CFG] added configuration 'net-net'回答 1
Ask Ubuntu用户
发布于 2015-05-11 22:19:45
您应该提供由StrongSwan服务器生成的日志,以便人们可以帮助您。下面是如何找到与问题相关的日志:
- 启动VPN服务器使用: sudo ipsec启动
- 一旦VPN服务器运行,请在终端中键入以下命令,以查看计算机上发生了什么: sudo -f /var/log/syslog --该命令允许您在登录到syslog时看到终端上的事件。
- 现在尝试从VPN客户端连接。如果客户端能够到达服务器,您将看到在
syslog中charon进程下记录的事件。如果您没有看到任何与charon相关的信息,这很可能是一个网络连接问题。 - 还可以使用
sudo tail -x /var/log/syslog > debugfile将syslog的最后一行x转储到debugfile以进行更好的分析。 - 如果您无法识别问题,请在此张贴这些日志。
页面原文内容由Ask Ubuntu提供。腾讯云小微IT领域专用引擎提供翻译支持
原文链接:
https://askubuntu.com/questions/620560
复制相关文章
相似问题
腾讯云开发者
Copyright © 2013 - 2026 Tencent Cloud. All Rights Reserved. 腾讯云 版权所有
深圳市腾讯计算机系统有限公司 ICP备案/许可证号:粤B2-20090059 
粤公网安备44030502008569号
腾讯云计算(北京)有限责任公司 京ICP证150476号 | 京ICP备11018762号