OpenVPN blocca connessioni SSH

La rete, Internet, configurazione di Servizi e tutto ciò che permette la comunicazione tra macchine

OpenVPN blocca connessioni SSH

Messaggioda io78 » 12/02/2020, 15:21

Ciao a tutti,

ho preso un VPS sul quale ho la necessità di aprire una connessione VPN verso un server esterno.

Il mio problema è che quando faccio partire openVPN con il relativo file di configurazione non riesco ad effettuare nuove connessioni SSH verso il server VPS. Immagino ci sia qualche configurazione di routing da cambiare.

C'è qualcuno che sa darmi qualche indicazione?

Provider: Contabo
OpenVPN: 2.4.7
OS: Debian 9 Server

Questi i messaggio dopo l'avvio della connessione VPN
Wed Feb 12 14:46:05 2020 WARNING: file 'pass.txt' is group or others accessible
Wed Feb 12 14:46:05 2020 OpenVPN 2.4.7 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Sep 5 2019
Wed Feb 12 14:46:05 2020 library versions: OpenSSL 1.1.1c 28 May 2019, LZO 2.10
Wed Feb 12 14:46:05 2020 TCP/UDP: Preserving recently used remote address: [AF_INET]yyy.yyy.47.100:443
Wed Feb 12 14:46:05 2020 Socket Buffers: R=[131072->131072] S=[16384->16384]
Wed Feb 12 14:46:05 2020 Attempting to establish TCP connection with [AF_INET]yyy.yyy.47.100:443 [nonblock]
Wed Feb 12 14:46:06 2020 TCP connection established with [AF_INET]yyy.yyy.47.100:443
Wed Feb 12 14:46:06 2020 TCP_CLIENT link local: (not bound)
Wed Feb 12 14:46:06 2020 TCP_CLIENT link remote: [AF_INET]yyy.yyy.47.100:443
Wed Feb 12 14:46:06 2020 TLS: Initial packet from [AF_INET]yyy.yyy.47.100:443, sid=8421ed4e d7e5b437
Wed Feb 12 14:46:06 2020 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Wed Feb 12 14:46:06 2020 VERIFY OK: depth=1, C=it, L=Cuneo, O=ORGANIZATION, CN=ORGANIZATION VPN CA, emailAddress=support.vpn@devel.it
Wed Feb 12 14:46:06 2020 VERIFY X509NAME OK: C=it, L=Cuneo, O=ORGANIZATION, CN=s-organization-2, emailAddress=support.vpn@devel.it
Wed Feb 12 14:46:06 2020 VERIFY OK: depth=0, C=it, L=Cuneo, O=ORGANIZATION, CN=s-organization-2, emailAddress=support.vpn@devel.it
Wed Feb 12 14:46:06 2020 Control Channel: TLSv1.2, cipher TLSv1.2 DHE-RSA-AES256-GCM-SHA384, 2048 bit RSA
Wed Feb 12 14:46:06 2020 [s-organization-2] Peer Connection Initiated with [AF_INET]yyy.yyy.47.100:443
Wed Feb 12 14:46:08 2020 SENT CONTROL [s-organization-2]: 'PUSH_REQUEST' (status=1)
Wed Feb 12 14:46:08 2020 PUSH: Received control message: 'PUSH_REPLY,route-gateway xxx.xxx.2.1,route-gateway xxx.xxx.2.1,topology subnet,ping 10,ping-restart 120,redirect-gateway def1,dhcp-option DNS zzz.zzz.0.5,dhcp-option DNS zzz.zzz.0.83,dhcp-option DOMAIN orgdomain.local,ifconfig xxx.xxx.2.4 255.255.255.0'
Wed Feb 12 14:46:08 2020 OPTIONS IMPORT: timers and/or timeouts modified
Wed Feb 12 14:46:08 2020 OPTIONS IMPORT: --ifconfig/up options modified
Wed Feb 12 14:46:08 2020 OPTIONS IMPORT: route options modified
Wed Feb 12 14:46:08 2020 OPTIONS IMPORT: route-related options modified
Wed Feb 12 14:46:08 2020 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Wed Feb 12 14:46:08 2020 Outgoing Data Channel: Cipher 'AES-128-CBC' initialized with 128 bit key
Wed Feb 12 14:46:08 2020 Outgoing Data Channel: Using 160 bit message hash 'SHA1' for HMAC authentication
Wed Feb 12 14:46:08 2020 Incoming Data Channel: Cipher 'AES-128-CBC' initialized with 128 bit key
Wed Feb 12 14:46:08 2020 Incoming Data Channel: Using 160 bit message hash 'SHA1' for HMAC authentication
Wed Feb 12 14:46:08 2020 ROUTE_GATEWAY zzz.zzz.64.1
Wed Feb 12 14:46:08 2020 TUN/TAP device tun0 opened
Wed Feb 12 14:46:08 2020 TUN/TAP TX queue length set to 100
Wed Feb 12 14:46:08 2020 /sbin/ip link set dev tun0 up mtu 1500
Wed Feb 12 14:46:08 2020 /sbin/ip addr add dev tun0 xxx.xxx.2.4/24 broadcast xxx.xxx.2.255
Wed Feb 12 14:46:12 2020 /sbin/ip route add yyy.yyy.47.100/32 via zzz.zzz.64.1
Error: Nexthop has invalid gateway.
Wed Feb 12 14:46:12 2020 ERROR: Linux route add command failed: external program exited with error status: 2
Wed Feb 12 14:46:12 2020 /sbin/ip route add 0.0.0.0/1 via xxx.xxx.2.1
Wed Feb 12 14:46:12 2020 /sbin/ip route add 128.0.0.0/1 via xxx.xxx.2.1
io78
Newbie
Newbie
 
Messaggi: 17
Iscritto il: 12/04/2013, 14:58

Torna a Network

Chi c’è in linea

Visitano il forum: Nessuno e 7 ospiti

cron