我正在尝试在 Windows 2003 Server 上使用以下配置安装 openvpn:
port 1194
proto udp
dev tun
ca ca.crt
cert server.crt
key server.key
dh dh1024.pem
server 192.168.111.0 255.255.255.0
ip-win32 dynamic
route-method exe
route-delay 10
tap-sleep 5
ifconfig-pool-persist ipp.txt
push "dhcp-option DNS 8.8.8.8"
push "dhcp-option DNS 8.8.4.4"
keepalive 10 120
comp-lzo
persist-key
persist-tun
status openvpn-status.log
verb 3
好吧。当服务器启动时,我尝试连接客户端,它成功了!问题是,当我尝试从服务器 ping 到客户端或从客户端 ping 到服务器时,没有响应,当我尝试转到共享文件夹时,它没有找到任何东西。
查看日志我看到了这一点:
Sat Mar 19 10:27:06 2011 OpenVPN 2.1.4 i686-pc-mingw32 [SSL] [LZO2] [PKCS11] built on Nov 8 2010
Sat Mar 19 10:27:06 2011 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Sat Mar 19 10:27:07 2011 Diffie-Hellman initialized with 1024 bit key
Sat Mar 19 10:27:07 2011 TLS-Auth MTU parms [ L:1542 D:138 EF:38 EB:0 ET:0 EL:0 ]
Sat Mar 19 10:27:07 2011 Socket Buffers: R=[8192->8192] S=[8192->8192]
Sat Mar 19 10:27:07 2011 ROUTE default_gateway=192.168.222.99
Sat Mar 19 10:27:07 2011 TAP-WIN32 device [Local Area Connection 2] opened: \\.\Global\{310416B9-3D78-4777-8C0B-FD52C4823F49}.tap
Sat Mar 19 10:27:07 2011 TAP-Win32 Driver Version 9.7
Sat Mar 19 10:27:07 2011 TAP-Win32 MTU=1500
Sat Mar 19 10:27:07 2011 Notified TAP-Win32 driver to set a DHCP IP/netmask of 192.168.111.1/255.255.255.252 on interface {310416B9-3D78-4777-8C0B-FD52C4823F49} [DHCP-serv: 192.168.111.2, lease-time: 31536000]
Sat Mar 19 10:27:07 2011 Sleeping for 10 seconds...
Sat Mar 19 10:27:17 2011 NOTE: FlushIpNetTable failed on interface [1966085] {310416B9-3D78-4777-8C0B-FD52C4823F49} (status=259) : No more data is available.
Sat Mar 19 10:27:17 2011 C:\WINDOWS\system32\route.exe ADD 192.168.111.0 MASK 255.255.255.0 192.168.111.2
The route addition failed: Either the interface index is wrong or the gateway does not lie on the same network as the interface. Check the IP Address Table for the machine.
Sat Mar 19 10:27:17 2011 Data Channel MTU parms [ L:1542 D:1450 EF:42 EB:135 ET:0 EL:0 AF:3/1 ]
Sat Mar 19 10:27:17 2011 UDPv4 link local (bound): [undef]:1194
Sat Mar 19 10:27:17 2011 UDPv4 link remote: [undef]
Sat Mar 19 10:27:17 2011 MULTI: multi_init called, r=256 v=256
Sat Mar 19 10:27:17 2011 IFCONFIG POOL: base=192.168.111.4 size=62
Sat Mar 19 10:27:17 2011 IFCONFIG POOL LIST
Sat Mar 19 10:27:17 2011 Initialization Sequence Completed
注意:FlushIpNetTable 在接口 [1966085] {310416B9-3D78-4777-8C0B-FD52C4823F49} (status=259) 上失败:没有更多可用数据。2011
年 3 月 19 日星期六 10:27:17 C:\WINDOWS\system32\route.exe ADD 192.168.111.0 MASK 255.255.255.0 192.168.111.2 路由添加失败:接口索引错误或网关与接口不在同一网络上。检查机器的 IP 地址表。
我认为 192.168.111.2 上的 DHCP 服务器无法启动,但我不知道原因。你知道哪里出了问题吗?我看到有好几个人在 Windows 2003 服务器上遇到了同样的问题。我已经在 Windows XP 上安装了它,运行正常。
提前致谢!
答案1
不要在“推送 dhcp-option DNS”行中使用 Google 的公共 DNS,而是使用您网络上的 DNS 服务器。