想试试openvpn翻墙,server是linode JP,client是win7
rsa密钥的方式已经被封了,网上流传的混淆流量的方法有些复杂,需要再装个软件,不搞了
直接用静态密钥就可以了
现在的问题是:
vpn可以连上,网卡也能激活,有IP,但怎么设置都获取不到网关地址和DNS地址
如果能获取到,不知道穿墙有没有问题
server.conf:
dev tun
ifconfig 10.8.0.1 10.8.0.2
secret static.key
proto udp
port 35287
comp-lzo
log-append openvpn-static.log
keepalive 10 60
ping-timer-rem
persist-tun
persist-key
user nobody
group nobody
daemon
push "redirect-gateway"
push "dhcp-option DNS 10.8.0.1"
client.ovpn:
remote linode.xxx.xxx 35287
proto udp
dev tun
ifconfig 10.8.0.2 10.8.0.1
secret static.key
comp-lzo
log-append openvpn-static.log
keepalive 10 60
ping-timer-rem
persist-tun
persist-key
redirect-gateway def1
iptables:
iptables -A FORWARD -m state --state RELATED,ESTABLISHED -j ACCEPT
iptables -A FORWARD -s 10.8.0.0/24 -j ACCEPT
iptables -A FORWARD -j REJECT
iptables -t nat -A POSTROUTING -s 10.8.0.0/24 -o eth0 -j MASQUERADE
iptables -A INPUT -i tun+ -j ACCEPT
iptables -A FORWARD -i tun+ -j ACCEPT
net.ipv4.ip_forward=1已设置
求指教,谢谢!
rsa密钥的方式已经被封了,网上流传的混淆流量的方法有些复杂,需要再装个软件,不搞了
直接用静态密钥就可以了
现在的问题是:
vpn可以连上,网卡也能激活,有IP,但怎么设置都获取不到网关地址和DNS地址
如果能获取到,不知道穿墙有没有问题
server.conf:
dev tun
ifconfig 10.8.0.1 10.8.0.2
secret static.key
proto udp
port 35287
comp-lzo
log-append openvpn-static.log
keepalive 10 60
ping-timer-rem
persist-tun
persist-key
user nobody
group nobody
daemon
push "redirect-gateway"
push "dhcp-option DNS 10.8.0.1"
client.ovpn:
remote linode.xxx.xxx 35287
proto udp
dev tun
ifconfig 10.8.0.2 10.8.0.1
secret static.key
comp-lzo
log-append openvpn-static.log
keepalive 10 60
ping-timer-rem
persist-tun
persist-key
redirect-gateway def1
iptables:
iptables -A FORWARD -m state --state RELATED,ESTABLISHED -j ACCEPT
iptables -A FORWARD -s 10.8.0.0/24 -j ACCEPT
iptables -A FORWARD -j REJECT
iptables -t nat -A POSTROUTING -s 10.8.0.0/24 -o eth0 -j MASQUERADE
iptables -A INPUT -i tun+ -j ACCEPT
iptables -A FORWARD -i tun+ -j ACCEPT
net.ipv4.ip_forward=1已设置
求指教,谢谢!
Select Language