probleme connexion net 2 Net

Forum traitant de la distribution sécurisée montante nommée IP cop et basée sur la distribution Smoothwall. C'est à l'heure actuelle le forum le plus actif du site.

Modérateur: modos Ixus

Publier une réponse

probleme connexion net 2 Net

Messagepar maledjo » 22 Fév 2008 17:37

Bonjour,

j'utilise 2 boite ipcop et sur chaque boite est installé Zerina. je creer une connexion net 2 net pour creer un tunnel openvpn entre ces 2 boite.
Mais la connexion ne passe. Le log du serveur renvoie ceci:


00:04:43 OVPN_ipcopAipcopB Diffie-Hellman initialized with 1024 bit key
00:04:43 OVPN_ipcopAipcopB LZO compression initialized
00:04:43 OVPN_ipcopAipcopB WARNING: normally if you use --mssfix and/or --fragment, you should also set --tun-mtu 1500 (currently it is 1400)
00:04:43 OVPN_ipcopAipcopB Control Channel MTU parms [ L:1442 D:138 EF:38 EB:0 ET:0 EL:0 ]
00:04:43 OVPN_ipcopAipcopB TUN/TAP device tun0 opened
00:04:43 OVPN_ipcopAipcopB /sbin/ifconfig tun0 10.196.225.1 pointopoint 10.196.225.2 mtu 1400
00:04:43 OVPN_ipcopAipcopB /sbin/route add -net 192.168.20.0 netmask 255.255.255.0 gw 10.196.225.2
00:04:43 OVPN_ipcopAipcopB Data Channel MTU parms [ L:1442 D:1442 EF:42 EB:135 ET:0 EL:0 AF:3/1 ]
00:04:43 OVPN_ipcopAipcopB Local Options hash (VER=V4): 'c73390d6'
00:04:43 OVPN_ipcopAipcopB Expected Remote Options hash (VER=V4): '3e35aacf'
00:04:43 OVPN_ipcopAipcopB UDPv4 link local (bound): [undef]:2211
00:04:43 OVPN_ipcopAipcopB UDPv4 link remote: 192.168.1.200:2211
00:04:46 OVPN_ipcopAipcopB[14175]: read UDPv4 No route to host (code=113)
00:05:00 OVPN_ipcopAipcopB[14175]: read UDPv4 No route to host (code=113)
00:05:04 OVPN_ipcopAipcopB[14175]: read UDPv4 No route to host (code=113)
00:05:08 OVPN_ipcopAipcopB[14175]: read UDPv4 No route to host (code=113)
00:05:12 OVPN_ipcopAipcopB[14175]: read UDPv4 No route to host (code=113)
00:05:43 OVPN_ipcopAipcopB [UNDEF] Inactivity timeout (--ping-restart), restarting
00:05:43 OVPN_ipcopAipcopB TCP/UDP: Closing socket
00:05:43 OVPN_ipcopAipcopB /sbin/route del -net 192.168.20.0 netmask 255.255.255.0
00:05:43 OVPN_ipcopAipcopB Closing TUN/TAP interface
00:05:43 OVPN_ipcopAipcopB SIGUSR1[soft,ping-restart] received, process restarting
00:05:43 OVPN_ipcopAipcopB Restart pause, 2 second(s)
00:05:45 OVPN_ipcopAipcopB Diffie-Hellman initialized with 1024 bit key
00:05:45 OVPN_ipcopAipcopB LZO compression initialized
00:05:45 OVPN_ipcopAipcopB WARNING: normally if you use --mssfix and/or --fragment, you should also set --tun-mtu 1500 (currently it is 1400)
00:05:45 OVPN_ipcopAipcopB Control Channel MTU parms [ L:1442 D:138 EF:38 EB:0 ET:0 EL:0 ]
00:05:45 OVPN_ipcopAipcopB TUN/TAP device tun0 opened
00:05:45 OVPN_ipcopAipcopB /sbin/ifconfig tun0 10.196.225.1 pointopoint 10.196.225.2 mtu 1400
00:05:45 OVPN_ipcopAipcopB /sbin/route add -net 192.168.20.0 netmask 255.255.255.0 gw 10.196.225.2
00:05:45 OVPN_ipcopAipcopB Data Channel MTU parms [ L:1442 D:1442 EF:42 EB:135 ET:0 EL:0 AF:3/1 ]
00:05:45 OVPN_ipcopAipcopB Local Options hash (VER=V4): 'c73390d6'
00:05:45 OVPN_ipcopAipcopB Expected Remote Options hash (VER=V4): '3e35aacf'
00:05:45 OVPN_ipcopAipcopB UDPv4 link local (bound): [undef]:2211
00:05:45 OVPN_ipcopAipcopB UDPv4 link remote: 192.168.1.200:2211
00:05:48 OVPN_ipcopAipcopB[14175]: read UDPv4 No route to host (code=113)
00:06:45 OVPN_ipcopAipcopB [UNDEF] Inactivity timeout (--ping-restart), restarting
00:06:45 OVPN_ipcopAipcopB TCP/UDP: Closing socket
00:06:45 OVPN_ipcopAipcopB /sbin/route del -net 192.168.20.0 netmask 255.255.255.0
00:06:45 OVPN_ipcopAipcopB Closing TUN/TAP interface
00:06:45 OVPN_ipcopAipcopB SIGUSR1[soft,ping-restart] received, process restarting
00:06:45 OVPN_ipcopAipcopB Restart pause, 2 second(s)

celui du client est:

14:01:00 OVPN_ipcopAipcopB WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
14:01:00 OVPN_ipcopAipcopB WARNING: file '/var/ipcop/ovpn/n2nconf/ipcopAipcopB/ipcopAipcopB.p12' is group or others accessible
14:01:00 OVPN_ipcopAipcopB LZO compression initialized
14:01:00 OVPN_ipcopAipcopB WARNING: normally if you use --mssfix and/or --fragment, you should also set --tun-mtu 1500 (currently it is 1400)
14:01:00 OVPN_ipcopAipcopB Control Channel MTU parms [ L:1442 D:138 EF:38 EB:0 ET:0 EL:0 ]
14:01:00 OVPN_ipcopAipcopB TUN/TAP device tun0 opened
14:01:00 OVPN_ipcopAipcopB /sbin/ifconfig tun0 10.196.225.2 pointopoint 10.196.225.1 mtu 1400
14:01:00 OVPN_ipcopAipcopB /sbin/route add -net 192.168.10.0 netmask 255.255.255.0 gw 10.196.225.1
14:01:00 OVPN_ipcopAipcopB Data Channel MTU parms [ L:1442 D:1442 EF:42 EB:135 ET:0 EL:0 AF:3/1 ]
14:01:00 OVPN_ipcopAipcopB Local Options hash (VER=V4): '3e35aacf'
14:01:00 OVPN_ipcopAipcopB Expected Remote Options hash (VER=V4): 'c73390d6'
14:01:00 OVPN_ipcopAipcopB UDPv4 link local (bound): [undef]:2211
14:01:00 OVPN_ipcopAipcopB UDPv4 link remote: 196.207.209.55:2211
14:01:00 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_ACK_V1)
14:01:01 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_CONTROL_V1)
14:01:02 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_ACK_V1)
14:01:04 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_CONTROL_V1)
14:01:04 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_ACK_V1)
14:01:06 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_CONTROL_V1)
14:01:06 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_ACK_V1)
14:01:08 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_CONTROL_V1)
14:01:09 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_ACK_V1)
14:01:10 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_CONTROL_V1)
14:01:10 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_ACK_V1)
14:01:12 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_CONTROL_V1)
14:01:12 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_ACK_V1)
14:01:14 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_CONTROL_V1)
14:01:14 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_ACK_V1)
14:01:16 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_CONTROL_V1)
14:01:16 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_ACK_V1)
14:01:18 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_CONTROL_V1)
14:01:22 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_ACK_V1)
14:01:24 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_CONTROL_V1)
14:01:27 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_ACK_V1)
14:01:29 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_CONTROL_V1)
14:01:29 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_ACK_V1)
14:01:32 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_CONTROL_V1)
14:01:32 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_ACK_V1)
14:01:34 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_CONTROL_V1)
14:01:34 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_ACK_V1)
14:01:36 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_CONTROL_V1)
14:01:38 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_ACK_V1)
14:01:40 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_CONTROL_V1)
14:01:40 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_ACK_V1)
14:01:42 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_CONTROL_V1)
14:01:43 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_ACK_V1)
14:01:44 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_CONTROL_V1)
14:01:44 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_ACK_V1)
14:01:46 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_CONTROL_V1)
14:01:46 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_ACK_V1)
14:01:48 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_CONTROL_V1)
14:01:48 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_ACK_V1)
14:01:50 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_CONTROL_V1)
14:01:51 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_ACK_V1)
14:01:52 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_CONTROL_V1)
14:01:52 OVPN_ipcopAipcopB TLS Error: Unroutable control packet received from 196.207.209.55:2211 (si=3 op=P_ACK_V1)
14:01:54 OVPN_ipcopAipcopB[26700]: read UDPv4 Connection refused (code=111)
14:01:56 OVPN_ipcopAipcopB[26700]: read UDPv4 Connection refused (code=111)
14:01:56 OVPN_ipcopAipcopB TLS: Initial packet from 196.207.209.55:2211, sid=6d3e73a7 9483a6ae
14:01:57 OVPN_ipcopAipcopB VERIFY ERROR: depth=1, error=self signed certificate in certificate chain: /C=SN/ST=Dakar/L=Dakar/O=ipcopA/OU=IT/CN=ipcopA_CA/emailAddress=aliou.dia@ati.sn
14:01:57 OVPN_ipcopAipcopB TLS_ERROR: BIO read tls_read_plaintext error: error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed
14:01:57 OVPN_ipcopAipcopB TLS Error: TLS object -> incoming plaintext read error
14:01:57 OVPN_ipcopAipcopB TLS Error: TLS handshake failed
14:01:57 OVPN_ipcopAipcopB TCP/UDP: Closing socket
14:01:57 OVPN_ipcopAipcopB /sbin/route del -net 192.168.10.0 netmask 255.255.255.0
14:01:57 OVPN_ipcopAipcopB Closing TUN/TAP interface
14:01:57 OVPN_ipcopAipcopB SIGUSR1[soft,tls-error] received, process restarting
14:01:57 OVPN_ipcopAipcopB Restart pause, 2 second(s)


quelqu'un sait-it ce qui ne va pas???????
Avatar de l’utilisateur
maledjo
Matelot
Matelot
 
Messages: 10
Inscrit le: 14 Jan 2008 16:38
Haut
Publier une réponse

Retour vers IPCop

Qui est en ligne ?

Utilisateur(s) parcourant actuellement ce forum : Google [Bot] et 1 invité

Powered by boolaz