|
本帖最后由 patqian 于 2024-7-29 15:17 编辑
电脑A日志
- 2024-07-25 22:16:14 WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
- 2024-07-25 22:16:14 DEPRECATED OPTION: --cipher set to \\'AES-256-CBC\\' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). OpenVPN ignores --cipher for cipher negotiations.
- 2024-07-25 22:16:14 Note: \\'--allow-compression\\' is not set to \\'no\\', disabling data channel offload.
- 2024-07-25 22:16:14 OpenVPN 2.6.10 [git:v2.6.10/ba0f62fb950c56a0] Windows [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [AEAD] [DCO] built on Apr 15 2024
- 2024-07-25 22:16:14 Windows version 10.0 (Windows 10 or greater), amd64 executable
- 2024-07-25 22:16:14 library versions: OpenSSL 3.2.1 30 Jan 2024, LZO 2.10
- 2024-07-25 22:16:14 DCO version: 1.1.1
- 2024-07-25 22:16:14 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:25343
- 2024-07-25 22:16:14 Need hold release from management interface, waiting...
- 2024-07-25 22:16:14 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:63207
- 2024-07-25 22:16:14 MANAGEMENT: CMD \\'state on\\'
- 2024-07-25 22:16:14 MANAGEMENT: CMD \\'log on all\\'
- 2024-07-25 22:16:14 MANAGEMENT: CMD \\'echo on all\\'
- 2024-07-25 22:16:14 MANAGEMENT: CMD \\'bytecount 5\\'
- 2024-07-25 22:16:14 MANAGEMENT: CMD \\'state\\'
- 2024-07-25 22:16:14 MANAGEMENT: CMD \\'hold off\\'
- 2024-07-25 22:16:14 MANAGEMENT: CMD \\'hold release\\'
- 2024-07-25 22:16:15 MANAGEMENT: CMD \\'username "Auth" "test01"\\'
- 2024-07-25 22:16:15 MANAGEMENT: CMD \\'password [...]\\'
- 2024-07-25 22:16:15 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
- 2024-07-25 22:16:15 TCP/UDP: Preserving recently used remote address: [AF_INET]221.59.60.206:1194
- 2024-07-25 22:16:15 Socket Buffers: R=[65536->65536] S=[65536->65536]
- 2024-07-25 22:16:15 UDPv4 link local: (not bound)
- 2024-07-25 22:16:15 UDPv4 link remote: [AF_INET]221.59.60.206:1194
- 2024-07-25 22:16:15 MANAGEMENT: >STATE:1721916975,WAIT,,,,,,
- 2024-07-25 22:16:15 MANAGEMENT: >STATE:1721916975,AUTH,,,,,,
- 2024-07-25 22:16:15 TLS: Initial packet from [AF_INET]221.59.60.206:1194, sid=d0ec1141 142a9305
- 2024-07-25 22:16:15 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
- 2024-07-25 22:16:15 VERIFY OK: depth=1, C=CN, O=iKuai, CN=iKuai Device CA
- 2024-07-25 22:16:15 VERIFY OK: depth=0, C=CN, O=iKuai, CN=iKuai OpenVPN Server
- 2024-07-25 22:16:15 Control Channel: TLSv1.2, cipher TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, peer certificate: 2048 bits RSA, signature: RSA-SHA256, peer temporary key: 256 bits ECprime256v1
- 2024-07-25 22:16:15 [iKuai OpenVPN Server] Peer Connection Initiated with [AF_INET]221.59.60.206:1194
- 2024-07-25 22:16:15 TLS: move_session: dest=TM_ACTIVE src=TM_INITIAL reinit_src=1
- 2024-07-25 22:16:15 TLS: tls_multi_process: initial untrusted session promoted to trusted
- 2024-07-25 22:16:17 MANAGEMENT: >STATE:1721916977,GET_CONFIG,,,,,,
- 2024-07-25 22:16:17 SENT CONTROL [iKuai OpenVPN Server]: \\'PUSH_REQUEST\\' (status=1)
- 2024-07-25 22:16:17 PUSH: Received control message: \\'PUSH_REPLY,route 192.168.9.0 255.255.255.255,route 10.7.0.0 255.255.0.0,dhcp-option DNS 2408:8888::8,dhcp-option DNS 2408:8899::8,dhcp-option DNS 2408:8642:111:22:2000::1,redirect-gateway ipv6,dhcp-option DNS 221.12.1.227,dhcp-option DNS 221.12.33.227,dhcp-option DNS 10.7.7.1,tun-ipv6,route-gateway 10.7.7.1,topology subnet,ping 10,ping-restart 60,ifconfig-ipv6 2408:8642:111:22:2000::1000/67 2408:8642:111:22:2000::1,ifconfig 10.7.7.3 255.255.255.0,peer-id 3,cipher AES-256-GCM\\'
- 2024-07-25 22:16:17 Flag \\'def1\\' added to --redirect-gateway (iservice is in use)
- 2024-07-25 22:16:17 OPTIONS IMPORT: --ifconfig/up options modified
- 2024-07-25 22:16:17 OPTIONS IMPORT: route options modified
- 2024-07-25 22:16:17 OPTIONS IMPORT: route-related options modified
- 2024-07-25 22:16:17 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
- 2024-07-25 22:16:17 interactive service msg_channel=592
- 2024-07-25 22:16:17 ROUTE_GATEWAY 188.188.12.1/255.255.254.0 I=11 HWADDR=00:0c:29:bb:81:fb
- 2024-07-25 22:16:17 GDG6: remote_host_ipv6=n/a
- 2024-07-25 22:16:17 NOTE: GetBestInterfaceEx returned error: 找不到元素。 (code=1168)
- 2024-07-25 22:16:17 ROUTE6: default_gateway=UNDEF
- 2024-07-25 22:16:17 open_tun
- 2024-07-25 22:16:17 tap-windows6 device [OpenVPN TAP-Windows6] opened
- 2024-07-25 22:16:17 TAP-Windows Driver Version 9.27
- 2024-07-25 22:16:17 Set TAP-Windows TUN subnet mode network/local/netmask = 10.7.7.0/10.7.7.3/255.255.255.0 [SUCCEEDED]
- 2024-07-25 22:16:17 Notified TAP-Windows driver to set a DHCP IP/netmask of 10.7.7.3/255.255.255.0 on interface {DEE13F06-A758-4EE7-8FE4-124EBC780787} [DHCP-serv: 10.7.7.0, lease-time: 31536000]
- 2024-07-25 22:16:17 Successful ARP Flush on interface [14] {DEE13F06-A758-4EE7-8FE4-124EBC780787}
- 2024-07-25 22:16:17 MANAGEMENT: >STATE:1721916977,ASSIGN_IP,,10.7.7.3,,,,,2408:8642:111:22:2000::1000
- 2024-07-25 22:16:17 IPv4 MTU set to 1400 on interface 14 using service
- 2024-07-25 22:16:17 INET6 address service: add 2408:8642:111:22:2000::1000/128
- 2024-07-25 22:16:17 add_route_ipv6(2408:8642:111:22:2000::/67 -> 2408:8642:111:22:2000::1000 metric 0) IF 14
- 2024-07-25 22:16:17 IPv6 route addition via service succeeded
- 2024-07-25 22:16:17 IPv6 dns servers set using service
- 2024-07-25 22:16:17 IPv6 MTU set to 1400 on interface 14 using service
- 2024-07-25 22:16:17 Data Channel: cipher \\'AES-256-GCM\\', peer-id: 3, compression: \\'lzo\\'
- 2024-07-25 22:16:17 Timers: ping 10, ping-restart 60
- 2024-07-25 22:16:22 TEST ROUTES: 3/3 succeeded len=2 ret=1 a=0 u/d=up
- 2024-07-25 22:16:22 C:\Windows\system32\route.exe ADD 221.59.60.206 MASK 255.255.255.255 188.188.12.1
- 2024-07-25 22:16:22 Route addition via service succeeded
- 2024-07-25 22:16:22 C:\Windows\system32\route.exe ADD 0.0.0.0 MASK 128.0.0.0 10.7.7.1
- 2024-07-25 22:16:22 Route addition via service succeeded
- 2024-07-25 22:16:22 C:\Windows\system32\route.exe ADD 128.0.0.0 MASK 128.0.0.0 10.7.7.1
- 2024-07-25 22:16:22 Route addition via service succeeded
- 2024-07-25 22:16:22 MANAGEMENT: >STATE:1721916982,ADD_ROUTES,,,,,,
- 2024-07-25 22:16:22 C:\Windows\system32\route.exe ADD 192.168.9.0 MASK 255.255.255.255 10.7.7.1
- 2024-07-25 22:16:22 Route addition via service succeeded
- 2024-07-25 22:16:22 C:\Windows\system32\route.exe ADD 10.7.0.0 MASK 255.255.0.0 10.7.7.1
- 2024-07-25 22:16:22 Route addition via service succeeded
- 2024-07-25 22:16:22 add_route_ipv6(::/3 -> 2408:8642:111:22:2000::1 metric -1) IF 14
- 2024-07-25 22:16:22 IPv6 route addition via service succeeded
- 2024-07-25 22:16:22 add_route_ipv6(2000::/4 -> 2408:8642:111:22:2000::1 metric -1) IF 14
- 2024-07-25 22:16:22 IPv6 route addition via service succeeded
- 2024-07-25 22:16:22 add_route_ipv6(3000::/4 -> 2408:8642:111:22:2000::1 metric -1) IF 14
- 2024-07-25 22:16:22 IPv6 route addition via service succeeded
- 2024-07-25 22:16:22 add_route_ipv6(fc00::/7 -> 2408:8642:111:22:2000::1 metric -1) IF 14
- 2024-07-25 22:16:22 IPv6 route addition via service succeeded
- 2024-07-25 22:16:22 Initialization Sequence Completed
- 2024-07-25 22:16:22 MANAGEMENT: >STATE:1721916982,CONNECTED,SUCCESS,10.7.7.3,221.59.60.206,1194,,,2408:8642:111:22:2000::1000
复制代码 电脑B日志
- 2024-07-25 22:13:01 WARNING: Compression for receiving enabled. Compression has been used in the past to break encryption. Sent packets are not compressed unless "allow-compression yes" is also set.
- 2024-07-25 22:13:01 DEPRECATED OPTION: --cipher set to \\'AES-256-CBC\\' but missing in --data-ciphers (AES-256-GCM:AES-128-GCM). OpenVPN ignores --cipher for cipher negotiations.
- 2024-07-25 22:13:01 Note: \\'--allow-compression\\' is not set to \\'no\\', disabling data channel offload.
- 2024-07-25 22:13:01 OpenVPN 2.6.10 [git:v2.6.10/ba0f62fb950c56a0] Windows [SSL (OpenSSL)] [LZO] [LZ4] [PKCS11] [AEAD] [DCO] built on Apr 15 2024
- 2024-07-25 22:13:01 Windows version 10.0 (Windows 10 or greater), amd64 executable
- 2024-07-25 22:13:01 library versions: OpenSSL 3.2.1 30 Jan 2024, LZO 2.10
- 2024-07-25 22:13:01 DCO version: 1.1.1
- 2024-07-25 22:13:01 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:25343
- 2024-07-25 22:13:01 Need hold release from management interface, waiting...
- 2024-07-25 22:13:01 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:50154
- 2024-07-25 22:13:02 MANAGEMENT: CMD \\'state on\\'
- 2024-07-25 22:13:02 MANAGEMENT: CMD \\'log on all\\'
- 2024-07-25 22:13:02 MANAGEMENT: CMD \\'echo on all\\'
- 2024-07-25 22:13:02 MANAGEMENT: CMD \\'bytecount 5\\'
- 2024-07-25 22:13:02 MANAGEMENT: CMD \\'state\\'
- 2024-07-25 22:13:02 MANAGEMENT: CMD \\'hold off\\'
- 2024-07-25 22:13:02 MANAGEMENT: CMD \\'hold release\\'
- 2024-07-25 22:13:03 MANAGEMENT: CMD \\'username "Auth" "test02"\\'
- 2024-07-25 22:13:03 MANAGEMENT: CMD \\'password [...]\\'
- 2024-07-25 22:13:03 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
- 2024-07-25 22:13:03 TCP/UDP: Preserving recently used remote address: [AF_INET]221.59.60.206:1194
- 2024-07-25 22:13:03 Socket Buffers: R=[65536->65536] S=[65536->65536]
- 2024-07-25 22:13:03 UDPv4 link local: (not bound)
- 2024-07-25 22:13:03 UDPv4 link remote: [AF_INET]221.59.60.206:1194
- 2024-07-25 22:13:03 MANAGEMENT: >STATE:1721916783,WAIT,,,,,,
- 2024-07-25 22:13:03 MANAGEMENT: >STATE:1721916783,AUTH,,,,,,
- 2024-07-25 22:13:03 TLS: Initial packet from [AF_INET]221.59.60.206:1194, sid=b50d6a3d 584fdb1a
- 2024-07-25 22:13:03 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
- 2024-07-25 22:13:03 VERIFY OK: depth=1, C=CN, O=iKuai, CN=iKuai Device CA
- 2024-07-25 22:13:03 VERIFY OK: depth=0, C=CN, O=iKuai, CN=iKuai OpenVPN Server
- 2024-07-25 22:13:03 Control Channel: TLSv1.2, cipher TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, peer certificate: 2048 bits RSA, signature: RSA-SHA256, peer temporary key: 256 bits ECprime256v1
- 2024-07-25 22:13:03 [iKuai OpenVPN Server] Peer Connection Initiated with [AF_INET]221.59.60.206:1194
- 2024-07-25 22:13:03 TLS: move_session: dest=TM_ACTIVE src=TM_INITIAL reinit_src=1
- 2024-07-25 22:13:03 TLS: tls_multi_process: initial untrusted session promoted to trusted
- 2024-07-25 22:13:04 MANAGEMENT: >STATE:1721916784,GET_CONFIG,,,,,,
- 2024-07-25 22:13:04 SENT CONTROL [iKuai OpenVPN Server]: \\'PUSH_REQUEST\\' (status=1)
- 2024-07-25 22:13:04 PUSH: Received control message: \\'PUSH_REPLY,route 192.168.9.0 255.255.255.255,route 10.7.0.0 255.255.0.0,dhcp-option DNS 2408:8888::8,dhcp-option DNS 2408:8899::8,dhcp-option DNS 2408:8642:111:22:2000::1,redirect-gateway ipv6,dhcp-option DNS 221.12.1.227,dhcp-option DNS 221.12.33.227,dhcp-option DNS 10.7.7.1,tun-ipv6,route-gateway 10.7.7.1,topology subnet,ping 10,ping-restart 60,ifconfig-ipv6 2408:8642:111:22:2000::1000/67 2408:8642:111:22:2000::1,ifconfig 10.7.7.4 255.255.255.0,peer-id 2,cipher AES-256-GCM\\'
- 2024-07-25 22:13:04 Flag \\'def1\\' added to --redirect-gateway (iservice is in use)
- 2024-07-25 22:13:04 OPTIONS IMPORT: --ifconfig/up options modified
- 2024-07-25 22:13:04 OPTIONS IMPORT: route options modified
- 2024-07-25 22:13:04 OPTIONS IMPORT: route-related options modified
- 2024-07-25 22:13:04 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
- 2024-07-25 22:13:04 interactive service msg_channel=680
- 2024-07-25 22:13:04 ROUTE_GATEWAY 188.188.12.1/255.255.254.0 I=11 HWADDR=00:0c:29:5c:49:07
- 2024-07-25 22:13:04 GDG6: remote_host_ipv6=n/a
- 2024-07-25 22:13:04 NOTE: GetBestInterfaceEx returned error: 找不到元素。 (code=1168)
- 2024-07-25 22:13:04 ROUTE6: default_gateway=UNDEF
- 2024-07-25 22:13:04 open_tun
- 2024-07-25 22:13:04 tap-windows6 device [OpenVPN TAP-Windows6] opened
- 2024-07-25 22:13:04 TAP-Windows Driver Version 9.27
- 2024-07-25 22:13:04 Set TAP-Windows TUN subnet mode network/local/netmask = 10.7.7.0/10.7.7.4/255.255.255.0 [SUCCEEDED]
- 2024-07-25 22:13:04 Notified TAP-Windows driver to set a DHCP IP/netmask of 10.7.7.4/255.255.255.0 on interface {DEE13F06-A758-4EE7-8FE4-124EBC780787} [DHCP-serv: 10.7.7.0, lease-time: 31536000]
- 2024-07-25 22:13:04 Successful ARP Flush on interface [14] {DEE13F06-A758-4EE7-8FE4-124EBC780787}
- 2024-07-25 22:13:04 MANAGEMENT: >STATE:1721916784,ASSIGN_IP,,10.7.7.4,,,,,2408:8642:111:22:2000::1000
- 2024-07-25 22:13:04 IPv4 MTU set to 1400 on interface 14 using service
- 2024-07-25 22:13:04 INET6 address service: add 2408:8642:111:22:2000::1000/128
- 2024-07-25 22:13:04 add_route_ipv6(2408:8642:111:22:2000::/67 -> 2408:8642:111:22:2000::1000 metric 0) IF 14
- 2024-07-25 22:13:04 IPv6 route addition via service succeeded
- 2024-07-25 22:13:04 IPv6 dns servers set using service
- 2024-07-25 22:13:04 IPv6 MTU set to 1400 on interface 14 using service
- 2024-07-25 22:13:04 Data Channel: cipher \\'AES-256-GCM\\', peer-id: 2, compression: \\'lzo\\'
- 2024-07-25 22:13:04 Timers: ping 10, ping-restart 60
- 2024-07-25 22:13:09 TEST ROUTES: 3/3 succeeded len=2 ret=1 a=0 u/d=up
- 2024-07-25 22:13:09 C:\Windows\system32\route.exe ADD 221.59.60.206 MASK 255.255.255.255 188.188.12.1
- 2024-07-25 22:13:09 Route addition via service succeeded
- 2024-07-25 22:13:09 C:\Windows\system32\route.exe ADD 0.0.0.0 MASK 128.0.0.0 10.7.7.1
- 2024-07-25 22:13:09 Route addition via service succeeded
- 2024-07-25 22:13:09 C:\Windows\system32\route.exe ADD 128.0.0.0 MASK 128.0.0.0 10.7.7.1
- 2024-07-25 22:13:09 Route addition via service succeeded
- 2024-07-25 22:13:09 MANAGEMENT: >STATE:1721916789,ADD_ROUTES,,,,,,
- 2024-07-25 22:13:09 C:\Windows\system32\route.exe ADD 192.168.9.0 MASK 255.255.255.255 10.7.7.1
- 2024-07-25 22:13:09 Route addition via service succeeded
- 2024-07-25 22:13:09 C:\Windows\system32\route.exe ADD 10.7.0.0 MASK 255.255.0.0 10.7.7.1
- 2024-07-25 22:13:09 Route addition via service succeeded
- 2024-07-25 22:13:09 add_route_ipv6(::/3 -> 2408:8642:111:22:2000::1 metric -1) IF 14
- 2024-07-25 22:13:09 IPv6 route addition via service succeeded
- 2024-07-25 22:13:09 add_route_ipv6(2000::/4 -> 2408:8642:111:22:2000::1 metric -1) IF 14
- 2024-07-25 22:13:09 IPv6 route addition via service succeeded
- 2024-07-25 22:13:09 add_route_ipv6(3000::/4 -> 2408:8642:111:22:2000::1 metric -1) IF 14
- 2024-07-25 22:13:09 IPv6 route addition via service succeeded
- 2024-07-25 22:13:09 add_route_ipv6(fc00::/7 -> 2408:8642:111:22:2000::1 metric -1) IF 14
- 2024-07-25 22:13:09 IPv6 route addition via service succeeded
- 2024-07-25 22:13:09 Initialization Sequence Completed
- 2024-07-25 22:13:09 MANAGEMENT: >STATE:1721916789,CONNECTED,SUCCESS,10.7.7.4,221.59.60.206,1194,,,2408:8642:111:22:2000::1000
复制代码
看最下面 获取到的vpn的地址
A主机是
>STATE:1721916982,CONNECTED,SUCCESS,10.7.7.3,221.59.60.206,1194,,,2408:8642:111:22:2000::1000
B主机
>STATE:1721916789,CONNECTED,SUCCESS,10.7.7.4,221.59.60.206,1194,,,2408:8642:111:22:2000::1000
我在附加配置里面 就添加了这些参数
local ::
proto udp6
server-ipv6 2408:8642:111:22:2000::/67
push "dhcp-option DNS 2408:8888::8"
push "dhcp-option DNS 2408:8899::8"
push "dhcp-option DNS 408:8642:111:22:2000::1"
push "redirect-gateway ipv6"
push "dhcp-option DNS 221.12.1.227"
push "dhcp-option DNS 221.12.33.227"
push "dhcp-option DNS 10.7.7.1"
希望那个大神能帮忙解决下
|
|