我有一个旧版本的 pfSense (2.3.2),运行 OpenVPN 客户端连接到商业服务器。过去几年,OpenVPN 连接断开的频率越来越高,现在大约每天一次。有一段时间,它甚至无法打开,这样我的所有流量都可以畅通无阻。我不确定我是否修复了这个问题,或者那个特定的故障情况不再是问题。
当 VPN 出现故障时,重新启动服务即可。网络日志中充满了:
Sep 16 13:45:24 openvpn 13283 RESOLVE: Cannot resolve host address: us-commercialOpenVPNProvider.com: hostname nor servname provided, or not known
Ping
也无法tracerte
解析地址,我的 Pi-Hole 中充满了对同一名称的请求。Pi-Hole 缓存只有大约 5 分钟,所以它应该能够在该名称丢失之前刷新缓存,对吧?这是 DNS 问题,还是 DNS 只是个幌子,我还有另一个问题?
第 2 天
我将今天失败的 nslookup 与昨天的 nslookup 进行了比较,结果让我很惊讶。所有 DNS 记录都不一样。我认为这是 DNS/负载平衡问题。
Server: <pihole>
Address: 172.16.x.x
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
Non-authoritative answer:
Name: <CommercialOpenVPNProvider>.com
Addresses: 66.115.169.196
66.115.169.205
66.115.168.2
66.115.168.4
66.115.169.218
66.115.169.244
66.115.169.228
66.115.169.220
66.115.168.25
66.115.168.14
66.115.169.210
66.115.169.211
66.115.168.11
C:\Users\<USER>>nslookup <CommercialOpenVPNProvider>.com
Server: <pihole>
Address: 172.16.x.x
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
Non-authoritative answer:
Name: <CommercialOpenVPNProvider>.com
Addresses: 66.115.169.239
66.115.168.28
66.115.168.19
66.115.168.18
66.115.169.223
66.115.168.10
66.115.169.205
66.115.169.226
66.115.169.203
66.115.168.24
66.115.169.244
66.115.168.9
66.115.168.13
C:\Users\<USER>>