Contenu | Rechercher | Menus

Annonce

Si vous avez des soucis pour rester connecté, déconnectez-vous puis reconnectez-vous depuis ce lien en cochant la case
Me connecter automatiquement lors de mes prochaines visites.

À propos de l'équipe du forum.

Pages : 1

#1 Le 30/04/2017, à 10:54

doltoduk

Utiliser openvpn

Bonjour,

alors, j'essaie depuis quelques temps d'utiliser mon VPN. J'ai téléchargé les fichiers de config disponibles. N'ayant jamais utilisé un VPN sous une machine linux, j'ai pas mal lu la doc d'openvpn mais je dois bloquer quelque part. C'est pourquoi j'en suis venu à poster sur un forum.

Alors, après avoir dl, les fichiers, j'ai simplement fait dans un terminal : openvpn chemin_du_fichier_config.ovpn. J'ai ensuite rentré mes identifiants.
Sauf qu'ensuite, aucun site internet ne s'ouvre. Comme si la connection ramait. Le ping sur mon adresse locale fonctionne. J'ai ouvert un pc sous windows et testé le VPN, aucun problème.

Qu'ai-je mal fait ?



Si cela peut aider, mon terminal :

   openvpn chemindufichier.ovpn' 
Sun Apr 30 12:31:11 2017 library versions: OpenSSL 1.0.2k  26 Jan 2017, LZO 2.08
Enter Auth Username: ********
Enter Auth Password: ********
Sun Apr 30 12:31:31 2017 TCP/UDP: Preserving recently used remote address: [AF_INET]94.46.12.209:443
Sun Apr 30 12:31:31 2017 Socket Buffers: R=[87380->87380] S=[16384->16384]
Sun Apr 30 12:31:31 2017 Attempting to establish TCP connection with [AF_INET]94.46.12.209:443 [nonblock]
Sun Apr 30 12:31:32 2017 TCP connection established with [AF_INET]94.46.12.209:443
Sun Apr 30 12:31:32 2017 TCP_CLIENT link local: (not bound)
Sun Apr 30 12:31:32 2017 TCP_CLIENT link remote: [AF_INET]94.46.12.209:443
Sun Apr 30 12:31:32 2017 TLS: Initial packet from [AF_INET]94.46.12.209:443, sid=8919ce74 25e5c4ea
Sun Apr 30 12:31:32 2017 VERIFY OK: depth=1, CN=ChangeMe
Sun Apr 30 12:31:32 2017 Validating certificate key usage
Sun Apr 30 12:31:32 2017 ++ Certificate has key usage  00a0, expects 00a0
Sun Apr 30 12:31:32 2017 VERIFY KU OK
Sun Apr 30 12:31:32 2017 Validating certificate extended key usage
Sun Apr 30 12:31:32 2017 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
Sun Apr 30 12:31:32 2017 VERIFY EKU OK
Sun Apr 30 12:31:32 2017 VERIFY OK: depth=0, CN=server
Sun Apr 30 12:31:33 2017 Control Channel: TLSv1.2, cipher TLSv1/SSLv3 DHE-RSA-AES256-GCM-SHA384, 2048 bit RSA
Sun Apr 30 12:31:33 2017 [server] Peer Connection Initiated with [AF_INET]94.46.12.209:443
Sun Apr 30 12:31:34 2017 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
Sun Apr 30 12:31:34 2017 PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1,dhcp-option DNS 8.8.8.8,dhcp-option DNS 8.8.4.4,route 10.8.1.1,topology net30,ping 5,ping-restart 30,ifconfig 10.8.1.54 10.8.1.53'
Sun Apr 30 12:31:34 2017 OPTIONS IMPORT: timers and/or timeouts modified
Sun Apr 30 12:31:34 2017 OPTIONS IMPORT: --ifconfig/up options modified
Sun Apr 30 12:31:34 2017 OPTIONS IMPORT: route options modified
Sun Apr 30 12:31:34 2017 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Sun Apr 30 12:31:34 2017 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
Sun Apr 30 12:31:34 2017 WARNING: INSECURE cipher with block size less than 128 bit (64 bit).  This allows attacks like SWEET32.  Mitigate by using a --cipher with a larger block size (e.g. AES-256-CBC).
Sun Apr 30 12:31:34 2017 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Sun Apr 30 12:31:34 2017 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
Sun Apr 30 12:31:34 2017 WARNING: INSECURE cipher with block size less than 128 bit (64 bit).  This allows attacks like SWEET32.  Mitigate by using a --cipher with a larger block size (e.g. AES-256-CBC).
Sun Apr 30 12:31:34 2017 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Sun Apr 30 12:31:34 2017 WARNING: cipher with small block size in use, reducing reneg-bytes to 64MB to mitigate SWEET32 attacks.
Sun Apr 30 12:31:34 2017 ROUTE_GATEWAY 192.168.0.254/255.255.255.0 IFACE=eth0 HWADDR=4c:cc:6a:b7:ef:79
Sun Apr 30 12:31:34 2017 TUN/TAP device tun0 opened
Sun Apr 30 12:31:34 2017 TUN/TAP TX queue length set to 100
Sun Apr 30 12:31:34 2017 do_ifconfig, tt->did_ifconfig_ipv6_setup=0
Sun Apr 30 12:31:34 2017 /sbin/ip link set dev tun0 up mtu 1500
Sun Apr 30 12:31:34 2017 /sbin/ip addr add dev tun0 local 10.8.1.54 peer 10.8.1.53
Sun Apr 30 12:31:34 2017 /sbin/ip route add 94.46.12.209/32 via 192.168.0.254
Sun Apr 30 12:31:34 2017 /sbin/ip route add 0.0.0.0/1 via 10.8.1.53
Sun Apr 30 12:31:34 2017 /sbin/ip route add 128.0.0.0/1 via 10.8.1.53
Sun Apr 30 12:31:34 2017 /sbin/ip route add 10.8.1.1/32 via 10.8.1.53
Sun Apr 30 12:31:34 2017 Initialization Sequence Completed
^CSun Apr 30 12:32:58 2017 event_wait : Interrupted system call (code=4)
Sun Apr 30 12:32:58 2017 /sbin/ip route del 10.8.1.1/32
Sun Apr 30 12:32:58 2017 /sbin/ip route del 94.46.12.209/32
Sun Apr 30 12:32:58 2017 /sbin/ip route del 0.0.0.0/1
Sun Apr 30 12:32:58 2017 /sbin/ip route del 128.0.0.0/1
Sun Apr 30 12:32:58 2017 Closing TUN/TAP interface
Sun Apr 30 12:32:58 2017 /sbin/ip addr del dev tun0 local 10.8.1.54 peer 10.8.1.53

Dernière modification par doltoduk (Le 30/04/2017, à 11:33)

Hors ligne

Pages : 1