我的 VPN 有问题。我最近获得了一个 IPv6 地址,想将其用于 OpenVPN。如果我改用 IPv4 地址,则可以连接,这让我觉得我可能做错了什么,或者它还不受支持。
您可以在下面找到我的 server.conf 和 client.ovpn:
服务器.conf:
port 1194
proto udp6
dev tun-ipv6
local 2a0a:51c0:0000:0227:0000:0000:0000:0002
ca /path/to/ca.crt
cert /path/to/server.crt
key /path/to/server.key
dh /path/to/dh.pem
crl-verify /etc/openvpn/server/crl.pem
server 10.132.178.0 255.255.255.0
server-ipv6 fdbc:291a:f690:3a84::/64
push "redirect-gateway ipv6 def1"
push "route-ipv6 ::/0"
push "route-metric 2000"
push "dhcp-option DNS 2001:1608:10:25::1c04:b12f"
push "dhcp-option DNS 2001:1608:10:25::9249:d69b"
duplicate-cn
cipher AES-256-CBC
tls-version-min 1.2
tls-cipher TLS-DHE-RSA-WITH-AES-256-GCM-SHA384:TLS-DHE-RSA-WITH-AES-256-CBC-SHA256:TLS-DHE-RSA-WITH-AES-128-GCM-SHA256:TLS-DHE-RSA-WITH-AES-128-CBC-SHA256
auth SHA512
auth-nocache
keepalive 20 60
persist-key
persist-tun
compress lz4
daemon
askpass /etc/openvpn/server/pass.txt
user nobody
group nobody
client-config-dir /etc/openvpn/ccd
log-append /var/log/openvpn.log
verb 4)
客户端.ovpn:
client
dev tun-ipv6
proto udp6
remote 2a0a:51c0:0000:0227:0000:0000:0000:0002 1194
ca "path to CA"
cert "path to client cert"
key "path to client key"
cipher AES-256-CBC
auth SHA512
auth-nocache
tls-version-min 1.0
tls-cipher TLS-DHE-RSA-WITH-AES-256-GCM-SHA384:TLS-DHE-RSA-WITH-AES-256-CBC-SHA256:TLS-DHE-RSA-WITH-AES-128-GCM-SHA256:TLS-DHE-RSA-WITH-AES-128-CBC-SHA256
remote-cert-tls server
resolv-retry infinite
compress lz4
nobind
persist-key
mute-replay-warnings
verb 4
register-dns
任何帮助都将不胜感激!