Forum Freedom-IP VPN
Forum d'entraide de la communauté Freedom-IP VPN
Vous n'êtes pas identifié(e).
- Contributions : Récentes | Sans réponse
Annonce
#26 2012-06-18 18:50:40
- David
- Bof !!!
- Inscription : 2012-01-30
- Messages : 6 132
Re : vpn se lance mais navigation impossible
Re ...
Bon ... comme vous m'aviez dit que le pare feu de votre distribution est désactivé ... nous allons voir celui du modem.
Pourriez-vous me faire une copie d'écran de la page "Firewall Rules" et une autre de la page "Services" ... merci.
Cordialement, David.
Hors ligne
#27 2012-06-18 19:02:52
- spatzounette
- Membre
- Inscription : 2012-06-16
- Messages : 30
Re : vpn se lance mais navigation impossible
Hors ligne
#28 2012-06-18 20:00:59
- David
- Bof !!!
- Inscription : 2012-01-30
- Messages : 6 132
Re : vpn se lance mais navigation impossible
# sudo iptables -L
Chain INPUT (policy ACCEPT)
target prot opt source destination
Chain FORWARD (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destinationHors ligne
#29 2012-06-18 20:21:54
- spatzounette
- Membre
- Inscription : 2012-06-16
- Messages : 30
Re : vpn se lance mais navigation impossible
Bonsoir( j'étais parti me nourrir).
Voici ce que donne sudo iptables -L:
spatzounette@spatzounette-desktop:~$ sudo iptables -L
Chain INPUT (policy DROP)
target prot opt source destination
ACCEPT tcp -- 8.8.8.8 anywhere tcp flags:!FIN,SYN,RST,ACK/SYN
ACCEPT udp -- 8.8.8.8 anywhere
ACCEPT tcp -- 8.8.4.4 anywhere tcp flags:!FIN,SYN,RST,ACK/SYN
ACCEPT udp -- 8.8.4.4 anywhere
ACCEPT tcp -- 208.67.222.222 anywhere tcp flags:!FIN,SYN,RST,ACK/SYN
ACCEPT udp -- 208.67.222.222 anywhere
ACCEPT all -- anywhere anywhere
ACCEPT icmp -- anywhere anywhere limit: avg 10/sec burst 5
DROP all -- 224.0.0.0/8 anywhere
DROP all -- anywhere 224.0.0.0/8
DROP all -- 255.255.255.255 anywhere
DROP all -- anywhere 0.0.0.0
DROP all -- anywhere anywhere state INVALID
LSI all -f anywhere anywhere limit: avg 10/min burst 5
INBOUND all -- anywhere anywhere
LOG_FILTER all -- anywhere anywhere
LOG all -- anywhere anywhere LOG level info prefix `Unknown Input'
Chain FORWARD (policy DROP)
target prot opt source destination
ACCEPT icmp -- anywhere anywhere limit: avg 10/sec burst 5
LOG_FILTER all -- anywhere anywhere
LOG all -- anywhere anywhere LOG level info prefix `Unknown Forward'
Chain OUTPUT (policy DROP)
target prot opt source destination
ACCEPT tcp -- 192.168.0.3 8.8.8.8 tcp dpt:domain
ACCEPT udp -- 192.168.0.3 8.8.8.8 udp dpt:domain
ACCEPT tcp -- 192.168.0.3 8.8.4.4 tcp dpt:domain
ACCEPT udp -- 192.168.0.3 8.8.4.4 udp dpt:domain
ACCEPT tcp -- 192.168.0.3 208.67.222.222 tcp dpt:domain
ACCEPT udp -- 192.168.0.3 208.67.222.222 udp dpt:domain
ACCEPT all -- anywhere anywhere
DROP all -- 224.0.0.0/8 anywhere
DROP all -- anywhere 224.0.0.0/8
DROP all -- 255.255.255.255 anywhere
DROP all -- anywhere 0.0.0.0
DROP all -- anywhere anywhere state INVALID
OUTBOUND all -- anywhere anywhere
LOG_FILTER all -- anywhere anywhere
LOG all -- anywhere anywhere LOG level info prefix `Unknown Output'
Chain INBOUND (1 references)
target prot opt source destination
ACCEPT tcp -- anywhere anywhere state RELATED,ESTABLISHED
ACCEPT udp -- anywhere anywhere state RELATED,ESTABLISHED
ACCEPT tcp -- anywhere anywhere tcp dpt:https
ACCEPT udp -- anywhere anywhere udp dpt:https
ACCEPT tcp -- anywhere anywhere tcp dpt:openvpn
ACCEPT udp -- anywhere anywhere udp dpt:openvpn
LSI all -- anywhere anywhere
Chain LOG_FILTER (5 references)
target prot opt source destination
Chain LSI (2 references)
target prot opt source destination
LOG_FILTER all -- anywhere anywhere
LOG tcp -- anywhere anywhere tcp flags:FIN,SYN,RST,ACK/SYN limit: avg 1/sec burst 5 LOG level info prefix `Inbound '
DROP tcp -- anywhere anywhere tcp flags:FIN,SYN,RST,ACK/SYN
LOG tcp -- anywhere anywhere tcp flags:FIN,SYN,RST,ACK/RST limit: avg 1/sec burst 5 LOG level info prefix `Inbound '
DROP tcp -- anywhere anywhere tcp flags:FIN,SYN,RST,ACK/RST
LOG icmp -- anywhere anywhere icmp echo-request limit: avg 1/sec burst 5 LOG level info prefix `Inbound '
DROP icmp -- anywhere anywhere icmp echo-request
LOG all -- anywhere anywhere limit: avg 5/sec burst 5 LOG level info prefix `Inbound '
DROP all -- anywhere anywhere
Chain LSO (0 references)
target prot opt source destination
LOG_FILTER all -- anywhere anywhere
LOG all -- anywhere anywhere limit: avg 5/sec burst 5 LOG level info prefix `Outbound '
REJECT all -- anywhere anywhere reject-with icmp-port-unreachable
Chain OUTBOUND (1 references)
target prot opt source destination
ACCEPT icmp -- anywhere anywhere
ACCEPT tcp -- anywhere anywhere state RELATED,ESTABLISHED
ACCEPT udp -- anywhere anywhere state RELATED,ESTABLISHED
ACCEPT all -- anywhere anywhere traceroute 74.125.230.223
traceroute to 74.125.230.223 (74.125.230.223), 30 hops max, 60 byte packets
send: Opération non permiseHors ligne
#30 2012-06-18 20:52:23
- David
- Bof !!!
- Inscription : 2012-01-30
- Messages : 6 132
Re : vpn se lance mais navigation impossible
Hors ligne
#31 2012-06-18 21:11:39
- spatzounette
- Membre
- Inscription : 2012-06-16
- Messages : 30
Re : vpn se lance mais navigation impossible
Bon , ma commande iptables donne un résultat correct.
Vpn activé et logs de connexion:
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info> Activation (eth0) starting connection 'Auto eth0'
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info> (eth0): device state change: 3 -> 4 (reason 0)
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info> Activation (eth0) Stage 1 of 5 (Device Prepare) scheduled...
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info> Activation (eth0) Stage 1 of 5 (Device Prepare) started...
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info> Activation (eth0) Stage 2 of 5 (Device Configure) scheduled...
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info> Activation (eth0) Stage 1 of 5 (Device Prepare) complete.
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info> Activation (eth0) Stage 2 of 5 (Device Configure) starting...
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info> (eth0): device state change: 4 -> 5 (reason 0)
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info> Activation (eth0) Stage 2 of 5 (Device Configure) successful.
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info> Activation (eth0) Stage 3 of 5 (IP Configure Start) scheduled.
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info> Activation (eth0) Stage 2 of 5 (Device Configure) complete.
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info> Activation (eth0) Stage 3 of 5 (IP Configure Start) started...
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info> (eth0): device state change: 5 -> 7 (reason 0)
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info> Activation (eth0) Stage 4 of 5 (IP4 Configure Get) scheduled...
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info> Activation (eth0) Stage 4 of 5 (IP6 Configure Get) scheduled...
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info> Activation (eth0) Stage 3 of 5 (IP Configure Start) complete.
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info> Activation (eth0) Stage 4 of 5 (IP4 Configure Get) started...
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info> Activation (eth0) Stage 4 of 5 (IP4 Configure Get) complete.
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info> Activation (eth0) Stage 4 of 5 (IP6 Configure Get) started...
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info> Activation (eth0) Stage 5 of 5 (IP Configure Commit) scheduled...
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info> Activation (eth0) Stage 4 of 5 (IP6 Configure Get) complete.
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info> Activation (eth0) Stage 5 of 5 (IP Configure Commit) started...
Jun 18 21:55:11 spatzounette-desktop NetworkManager: <info> (eth0): device state change: 7 -> 8 (reason 0)
Jun 18 21:55:11 spatzounette-desktop NetworkManager: <info> Policy set 'Auto eth0' (eth0) as default for routing and DNS.
Jun 18 21:55:11 spatzounette-desktop NetworkManager: <info> Activation (eth0) successful, device activated.
Jun 18 21:55:11 spatzounette-desktop NetworkManager: <info> Activation (eth0) Stage 5 of 5 (IP Configure Commit) complete.
Jun 18 21:56:38 spatzounette-desktop NetworkManager: <info> Starting VPN service 'org.freedesktop.NetworkManager.openvpn'...
Jun 18 21:56:38 spatzounette-desktop NetworkManager: <info> VPN service 'org.freedesktop.NetworkManager.openvpn' started (org.freedesktop.NetworkManager.openvpn), PID 1838
Jun 18 21:56:38 spatzounette-desktop NetworkManager: <info> VPN service 'org.freedesktop.NetworkManager.openvpn' just appeared, activating connections
Jun 18 21:56:38 spatzounette-desktop NetworkManager: <info> VPN plugin state changed: 1
Jun 18 21:56:38 spatzounette-desktop NetworkManager: <info> VPN plugin state changed: 3
Jun 18 21:56:38 spatzounette-desktop NetworkManager: <info> VPN connection 'NL_freedomip' (Connect) reply received.
Jun 18 21:56:38 spatzounette-desktop nm-openvpn[1844]: OpenVPN 2.1.3 i486-pc-linux-gnu [SSL] [LZO2] [EPOLL] [PKCS11] [MH] [PF_INET6] [eurephia] built on Mar 29 2011
Jun 18 21:56:38 spatzounette-desktop nm-openvpn[1844]: WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Jun 18 21:56:38 spatzounette-desktop nm-openvpn[1844]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Jun 18 21:56:38 spatzounette-desktop nm-openvpn[1844]: WARNING: file '/home/spatzounette/freedomip/ta.key' is group or others accessible
Jun 18 21:56:38 spatzounette-desktop nm-openvpn[1844]: Control Channel Authentication: using '/home/spatzounette/freedomip/ta.key' as a OpenVPN static key file
Jun 18 21:56:38 spatzounette-desktop nm-openvpn[1844]: LZO compression initialized
Jun 18 21:56:38 spatzounette-desktop nm-openvpn[1844]: Attempting to establish TCP connection with [AF_INET]94.23.148.176:443 [nonblock]
Jun 18 21:56:39 spatzounette-desktop nm-openvpn[1844]: TCP connection established with [AF_INET]94.23.148.176:443
Jun 18 21:56:39 spatzounette-desktop nm-openvpn[1844]: TCPv4_CLIENT link local: [undef]
Jun 18 21:56:39 spatzounette-desktop nm-openvpn[1844]: TCPv4_CLIENT link remote: [AF_INET]94.23.148.176:443
Jun 18 21:56:40 spatzounette-desktop nm-openvpn[1844]: [server] Peer Connection Initiated with [AF_INET]94.23.148.176:443
Jun 18 21:56:43 spatzounette-desktop nm-openvpn[1844]: TUN/TAP device tun0 opened
Jun 18 21:56:43 spatzounette-desktop nm-openvpn[1844]: /sbin/ifconfig tun0 10.8.23.202 pointopoint 10.8.23.201 mtu 1500
Jun 18 21:56:43 spatzounette-desktop NetworkManager: SCPlugin-Ifupdown: devices added (path: /sys/devices/virtual/net/tun0, iface: tun0)
Jun 18 21:56:43 spatzounette-desktop NetworkManager: SCPlugin-Ifupdown: device added (path: /sys/devices/virtual/net/tun0, iface: tun0): no ifupdown configuration found.
Jun 18 21:56:43 spatzounette-desktop nm-openvpn[1844]: /usr/lib/network-manager-openvpn/nm-openvpn-service-openvpn-helper tun0 1500 1560 10.8.23.202 10.8.23.201 init
Jun 18 21:56:43 spatzounette-desktop NetworkManager: <info> VPN connection 'NL_freedomip' (IP Config Get) reply received.
Jun 18 21:56:43 spatzounette-desktop NetworkManager: <info> VPN Gateway: 94.23.148.176
Jun 18 21:56:43 spatzounette-desktop NetworkManager: <info> Internal Gateway: 10.8.23.201
Jun 18 21:56:43 spatzounette-desktop NetworkManager: <info> Tunnel Device: tun0
Jun 18 21:56:43 spatzounette-desktop NetworkManager: <info> Internal IP4 Address: 10.8.23.202
Jun 18 21:56:43 spatzounette-desktop NetworkManager: <info> Internal IP4 Prefix: 32
Jun 18 21:56:43 spatzounette-desktop NetworkManager: <info> Internal IP4 Point-to-Point Address: 10.8.23.201
Jun 18 21:56:43 spatzounette-desktop NetworkManager: <info> Maximum Segment Size (MSS): 0
Jun 18 21:56:43 spatzounette-desktop NetworkManager: <info> Static Route: 10.8.0.1/32 Next Hop: 10.8.0.1
Jun 18 21:56:43 spatzounette-desktop NetworkManager: <info> Internal IP4 DNS: 8.8.8.8
Jun 18 21:56:43 spatzounette-desktop NetworkManager: <info> Internal IP4 DNS: 8.8.4.4
Jun 18 21:56:43 spatzounette-desktop nm-openvpn[1844]: Initialization Sequence Completed
Jun 18 21:56:43 spatzounette-desktop NetworkManager: <info> DNS Domain: '(none)'
Jun 18 21:56:43 spatzounette-desktop NetworkManager: <info> Login Banner:
Jun 18 21:56:43 spatzounette-desktop NetworkManager: <info> -----------------------------------------
Jun 18 21:56:43 spatzounette-desktop NetworkManager: <info> (null)
Jun 18 21:56:43 spatzounette-desktop NetworkManager: <info> -----------------------------------------
Jun 18 21:56:44 spatzounette-desktop NetworkManager: <info> VPN connection 'NL_freedomip' (IP Config Get) complete.
Jun 18 21:56:44 spatzounette-desktop NetworkManager: <info> Policy set 'NL_freedomip' (tun0) as default for routing and DNS.
Jun 18 21:56:44 spatzounette-desktop NetworkManager: <info> VPN plugin state changed: 4
Jun 18 21:57:26 spatzounette-desktop nm-openvpn[1844]: /sbin/ifconfig tun0 0.0.0.0
Jun 18 21:57:26 spatzounette-desktop nm-openvpn[1844]: SIGTERM[hard,] received, process exiting
Jun 18 21:57:27 spatzounette-desktop NetworkManager: <info> Policy set 'Auto eth0' (eth0) as default for routing and DNS.
Jun 18 21:57:27 spatzounette-desktop NetworkManager: SCPlugin-Ifupdown: devices removed (path: /sys/devices/virtual/net/tun0, iface: tun0)
Jun 18 21:57:40 spatzounette-desktop NetworkManager: <debug> [1340049460.002522] ensure_killed(): waiting for vpn service pid 1838 to exit
Jun 18 21:57:40 spatzounette-desktop NetworkManager: <debug> [1340049460.002621] ensure_killed(): vpn service pid 1838 cleaned up
Jun 18 21:59:54 spatzounette-desktop NetworkManager: <info> Starting VPN service 'org.freedesktop.NetworkManager.openvpn'...
Jun 18 21:59:54 spatzounette-desktop NetworkManager: <info> VPN service 'org.freedesktop.NetworkManager.openvpn' started (org.freedesktop.NetworkManager.openvpn), PID 1939
Jun 18 21:59:54 spatzounette-desktop NetworkManager: <info> VPN service 'org.freedesktop.NetworkManager.openvpn' just appeared, activating connections
Jun 18 21:59:54 spatzounette-desktop NetworkManager: <info> VPN plugin state changed: 1
Jun 18 21:59:54 spatzounette-desktop NetworkManager: <info> VPN plugin state changed: 3
Jun 18 21:59:54 spatzounette-desktop NetworkManager: <info> VPN connection 'NL_freedomip' (Connect) reply received.
Jun 18 21:59:54 spatzounette-desktop nm-openvpn[1943]: OpenVPN 2.1.3 i486-pc-linux-gnu [SSL] [LZO2] [EPOLL] [PKCS11] [MH] [PF_INET6] [eurephia] built on Mar 29 2011
Jun 18 21:59:54 spatzounette-desktop nm-openvpn[1943]: WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Jun 18 21:59:54 spatzounette-desktop nm-openvpn[1943]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Jun 18 21:59:54 spatzounette-desktop nm-openvpn[1943]: WARNING: file '/home/spatzounette/freedomip/ta.key' is group or others accessible
Jun 18 21:59:54 spatzounette-desktop nm-openvpn[1943]: Control Channel Authentication: using '/home/spatzounette/freedomip/ta.key' as a OpenVPN static key file
Jun 18 21:59:54 spatzounette-desktop nm-openvpn[1943]: LZO compression initialized
Jun 18 21:59:54 spatzounette-desktop nm-openvpn[1943]: Attempting to establish TCP connection with [AF_INET]94.23.148.176:443 [nonblock]
Jun 18 21:59:55 spatzounette-desktop nm-openvpn[1943]: TCP connection established with [AF_INET]94.23.148.176:443
Jun 18 21:59:55 spatzounette-desktop nm-openvpn[1943]: TCPv4_CLIENT link local: [undef]
Jun 18 21:59:55 spatzounette-desktop nm-openvpn[1943]: TCPv4_CLIENT link remote: [AF_INET]94.23.148.176:443
Jun 18 21:59:57 spatzounette-desktop nm-openvpn[1943]: [server] Peer Connection Initiated with [AF_INET]94.23.148.176:443
Jun 18 21:59:59 spatzounette-desktop nm-openvpn[1943]: TUN/TAP device tun0 opened
Jun 18 21:59:59 spatzounette-desktop nm-openvpn[1943]: /sbin/ifconfig tun0 10.8.23.202 pointopoint 10.8.23.201 mtu 1500
Jun 18 21:59:59 spatzounette-desktop NetworkManager: SCPlugin-Ifupdown: devices added (path: /sys/devices/virtual/net/tun0, iface: tun0)
Jun 18 21:59:59 spatzounette-desktop NetworkManager: SCPlugin-Ifupdown: device added (path: /sys/devices/virtual/net/tun0, iface: tun0): no ifupdown configuration found.
Jun 18 21:59:59 spatzounette-desktop nm-openvpn[1943]: /usr/lib/network-manager-openvpn/nm-openvpn-service-openvpn-helper tun0 1500 1560 10.8.23.202 10.8.23.201 init
Jun 18 21:59:59 spatzounette-desktop NetworkManager: <info> VPN connection 'NL_freedomip' (IP Config Get) reply received.
Jun 18 21:59:59 spatzounette-desktop NetworkManager: <info> VPN Gateway: 94.23.148.176
Jun 18 21:59:59 spatzounette-desktop NetworkManager: <info> Internal Gateway: 10.8.23.201
Jun 18 21:59:59 spatzounette-desktop NetworkManager: <info> Tunnel Device: tun0
Jun 18 21:59:59 spatzounette-desktop NetworkManager: <info> Internal IP4 Address: 10.8.23.202
Jun 18 21:59:59 spatzounette-desktop NetworkManager: <info> Internal IP4 Prefix: 32
Jun 18 21:59:59 spatzounette-desktop NetworkManager: <info> Internal IP4 Point-to-Point Address: 10.8.23.201
Jun 18 21:59:59 spatzounette-desktop NetworkManager: <info> Maximum Segment Size (MSS): 0
Jun 18 21:59:59 spatzounette-desktop NetworkManager: <info> Static Route: 10.8.0.1/32 Next Hop: 10.8.0.1
Jun 18 21:59:59 spatzounette-desktop NetworkManager: <info> Internal IP4 DNS: 8.8.8.8
Jun 18 21:59:59 spatzounette-desktop NetworkManager: <info> Internal IP4 DNS: 8.8.4.4
Jun 18 21:59:59 spatzounette-desktop NetworkManager: <info> DNS Domain: '(none)'
Jun 18 21:59:59 spatzounette-desktop NetworkManager: <info> Login Banner:
Jun 18 21:59:59 spatzounette-desktop NetworkManager: <info> -----------------------------------------
Jun 18 21:59:59 spatzounette-desktop NetworkManager: <info> (null)
Jun 18 21:59:59 spatzounette-desktop NetworkManager: <info> -----------------------------------------
Jun 18 21:59:59 spatzounette-desktop nm-openvpn[1943]: Initialization Sequence Completed
Jun 18 22:00:00 spatzounette-desktop NetworkManager: <info> VPN connection 'NL_freedomip' (IP Config Get) complete.
Jun 18 22:00:00 spatzounette-desktop NetworkManager: <info> Policy set 'NL_freedomip' (tun0) as default for routing and DNS.
Jun 18 22:00:00 spatzounette-desktop NetworkManager: <info> VPN plugin state changed: 4Routes:
spatzounette@spatzounette-desktop:~$ route
Table de routage IP du noyau
Destination Passerelle Genmask Indic Metric Ref Use Iface
vpn2.Freedom-IP 192.168.0.1 255.255.255.255 UGH 0 0 0 eth0
10.8.0.1 10.8.23.201 255.255.255.255 UGH 0 0 0 tun0
10.8.23.201 * 255.255.255.255 UH 0 0 0 tun0
192.168.0.0 * 255.255.255.0 U 1 0 0 eth0
link-local * 255.255.0.0 U 1000 0 0 eth0
default 10.8.23.201 0.0.0.0 UG 0 0 0 tun0Tiens la page google a eu le temps de s'afficher mais ça n'a pas été plus loin...
L'adresse IP ne marche pas.
Le traceroute:
traceroute to 74.125.230.223 (74.125.230.223), 30 hops max, 60 byte packets
1 * * *
2 * * *
3 * * *
4 * * *
5 * * *
6 * * *J'ai fait ctrl-C sinon c'était parti pour des plombes...
Hors ligne
#32 2012-06-18 21:31:12
- David
- Bof !!!
- Inscription : 2012-01-30
- Messages : 6 132
Re : vpn se lance mais navigation impossible
Ok ... Merci.
J'ai l'impression que le network manager boucle ... il connecte openvpn, le deconnecte puis le reconnecte ...
Et le même test, avec un iptables tout vide et sans utiliser NetworkManager mais :
sudo openvpn --config NL_freedomip.ovpnEt me retourner les log d'OpenVPN, les routes, ... bref comme ci dessus 
Je vous aurais fait travailler 
Cordialement, David.
Hors ligne
#33 2012-06-18 21:41:59
- spatzounette
- Membre
- Inscription : 2012-06-16
- Messages : 30
Re : vpn se lance mais navigation impossible
Cette commande me retourne une erreur:(vpn activé)
spatzounette@spatzounette-desktop:~$ sudo openvpn --config NL_freedomip.ovpn
Options error: In [CMD-LINE]:1: Error opening configuration file: NL_freedomip.ovpn
Use --help for more information.Hors ligne
#34 2012-06-18 21:47:30
- David
- Bof !!!
- Inscription : 2012-01-30
- Messages : 6 132
Re : vpn se lance mais navigation impossible
Hors ligne
#35 2012-06-18 22:00:05
- spatzounette
- Membre
- Inscription : 2012-06-16
- Messages : 30
Re : vpn se lance mais navigation impossible
Ok, voilà...
spatzounette@spatzounette-desktop:~$ cd /home/spatzounette/freedomip
spatzounette@spatzounette-desktop:~/freedomip$ sudo openvpn --config NL_freedomip.ovpn
Mon Jun 18 22:52:15 2012 OpenVPN 2.1.3 i486-pc-linux-gnu [SSL] [LZO2] [EPOLL] [PKCS11] [MH] [PF_INET6] [eurephia] built on Mar 29 2011
Enter Auth Username:fip_11895w410z
Enter Auth Password:
Mon Jun 18 22:53:19 2012 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Mon Jun 18 22:53:19 2012 WARNING: file 'ta.key' is group or others accessible
Mon Jun 18 22:53:19 2012 Control Channel Authentication: using 'ta.key' as a OpenVPN static key file
Mon Jun 18 22:53:19 2012 LZO compression initialized
Mon Jun 18 22:53:19 2012 Attempting to establish TCP connection with [AF_INET]94.23.148.176:443 [nonblock]
Mon Jun 18 22:53:20 2012 TCP connection established with [AF_INET]94.23.148.176:443
Mon Jun 18 22:53:20 2012 TCPv4_CLIENT link local: [undef]
Mon Jun 18 22:53:20 2012 TCPv4_CLIENT link remote: [AF_INET]94.23.148.176:443
Mon Jun 18 22:53:20 2012 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Mon Jun 18 22:53:21 2012 [server] Peer Connection Initiated with [AF_INET]94.23.148.176:443
Mon Jun 18 22:53:23 2012 TUN/TAP device tun0 opened
Mon Jun 18 22:53:23 2012 /sbin/ifconfig tun0 10.8.23.202 pointopoint 10.8.23.201 mtu 1500
Mon Jun 18 22:53:23 2012 Initialization Sequence CompletedRoutes
spatzounette@spatzounette-desktop:~$ route
Table de routage IP du noyau
Destination Passerelle Genmask Indic Metric Ref Use Iface
192.168.0.0 * 255.255.255.0 U 1 0 0 eth0
link-local * 255.255.0.0 U 1000 0 0 eth0
default 192.168.0.1 0.0.0.0 UG 0 0 0 eth0Hors ligne
#36 2012-06-18 22:07:52
- spatzounette
- Membre
- Inscription : 2012-06-16
- Messages : 30
Re : vpn se lance mais navigation impossible
Tiens, si ça peut faire avancer le schmilblick, avec le vpn connecté Thunderbird a l'air de fonctionner du moins en réception de messages
...et j'arrive à écouter une radio web sur Audacious.Y'a juste Ffirefox qui marche pas...
Hors ligne
#37 2012-06-18 22:11:52
- David
- Bof !!!
- Inscription : 2012-01-30
- Messages : 6 132
Re : vpn se lance mais navigation impossible
Hors ligne
#38 2012-06-18 22:12:41
- spatzounette
- Membre
- Inscription : 2012-06-16
- Messages : 30
Re : vpn se lance mais navigation impossible
Il ne l'était plus
Hors ligne
#39 2012-06-18 22:14:22
- David
- Bof !!!
- Inscription : 2012-01-30
- Messages : 6 132
Re : vpn se lance mais navigation impossible
Hors ligne
#40 2012-06-18 22:30:18
- spatzounette
- Membre
- Inscription : 2012-06-16
- Messages : 30
Re : vpn se lance mais navigation impossible
Revoilà:
spatzounette@spatzounette-desktop:~$ cd /home/spatzounette/freedomip
spatzounette@spatzounette-desktop:~/freedomip$ sudo openvpn --config NL_freedomip.ovpn
Mon Jun 18 23:20:52 2012 OpenVPN 2.1.3 i486-pc-linux-gnu [SSL] [LZO2] [EPOLL] [PKCS11] [MH] [PF_INET6] [eurephia] built on Mar 29 2011
Enter Auth Username:fip_11895w410z
Enter Auth Password:
Mon Jun 18 23:21:37 2012 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Mon Jun 18 23:21:37 2012 WARNING: file 'ta.key' is group or others accessible
Mon Jun 18 23:21:37 2012 Control Channel Authentication: using 'ta.key' as a OpenVPN static key file
Mon Jun 18 23:21:37 2012 LZO compression initialized
Mon Jun 18 23:21:37 2012 Attempting to establish TCP connection with [AF_INET]94.23.148.176:443 [nonblock]
Mon Jun 18 23:21:38 2012 TCP connection established with [AF_INET]94.23.148.176:443
Mon Jun 18 23:21:38 2012 TCPv4_CLIENT link local: [undef]
Mon Jun 18 23:21:38 2012 TCPv4_CLIENT link remote: [AF_INET]94.23.148.176:443
Mon Jun 18 23:21:38 2012 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Mon Jun 18 23:21:40 2012 [server] Peer Connection Initiated with [AF_INET]94.23.148.176:443
Mon Jun 18 23:21:42 2012 TUN/TAP device tun0 opened
Mon Jun 18 23:21:42 2012 /sbin/ifconfig tun0 10.8.23.202 pointopoint 10.8.23.201 mtu 1500
Mon Jun 18 23:21:42 2012 Initialization Sequence CompletedEt les 3 autres commandes:
spatzounette@spatzounette-desktop:~$ ifconfig
eth0 Link encap:Ethernet HWaddr 00:1e:8c:b4:4e:8e
inet adr:192.168.0.3 Bcast:192.168.0.255 Masque:255.255.255.0
adr inet6: fe80::21e:8cff:feb4:4e8e/64 Scope:Lien
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
Packets reçus:10263 erreurs:0 :0 overruns:0 frame:0
TX packets:8659 errors:0 dropped:0 overruns:0 carrier:2
collisions:0 lg file transmission:1000
Octets reçus:7790263 (7.7 MB) Octets transmis:1387925 (1.3 MB)
lo Link encap:Boucle locale
inet adr:127.0.0.1 Masque:255.0.0.0
adr inet6: ::1/128 Scope:Hôte
UP LOOPBACK RUNNING MTU:16436 Metric:1
Packets reçus:429 erreurs:0 :0 overruns:0 frame:0
TX packets:429 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 lg file transmission:0
Octets reçus:34358 (34.3 KB) Octets transmis:34358 (34.3 KB)
tun0 Link encap:UNSPEC HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00
inet adr:10.8.23.202 P-t-P:10.8.23.201 Masque:255.255.255.255
UP POINTOPOINT RUNNING NOARP MULTICAST MTU:1500 Metric:1
Packets reçus:0 erreurs:0 :0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 lg file transmission:100
Octets reçus:0 (0.0 B) Octets transmis:0 (0.0 B)spatzounette@spatzounette-desktop:~$ route
Table de routage IP du noyau
Destination Passerelle Genmask Indic Metric Ref Use Iface
vpn2.Freedom-IP 192.168.0.1 255.255.255.255 UGH 0 0 0 eth0
10.8.0.1 10.8.23.201 255.255.255.255 UGH 0 0 0 tun0
10.8.23.201 * 255.255.255.255 UH 0 0 0 tun0
192.168.0.0 * 255.255.255.0 U 1 0 0 eth0
link-local * 255.255.0.0 U 1000 0 0 eth0
default 10.8.23.201 128.0.0.0 UG 0 0 0 tun0
128.0.0.0 10.8.23.201 128.0.0.0 UG 0 0 0 tun0
default 192.168.0.1 0.0.0.0 UG 0 0 0 eth0spatzounette@spatzounette-desktop:~$ sudo iptables -L -v
Chain INPUT (policy ACCEPT 11820 packets, 9212K bytes)
pkts bytes target prot opt in out source destination
Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
Chain OUTPUT (policy ACCEPT 10680 packets, 1430K bytes)
pkts bytes target prot opt in out source destination Après quoi le test internet ne donne toujours rien.
Hors ligne
#41 2012-06-18 22:46:13
- David
- Bof !!!
- Inscription : 2012-01-30
- Messages : 6 132
Re : vpn se lance mais navigation impossible
Donc internet toujours HS ... avec url et adresse ip !?
nslookup, traceroute, vous n'avez pas testé !?
Bref ... j'arrête pour aujourd'hui.
Bonne Nuit.
Hors ligne
#42 2012-06-18 22:49:13
- spatzounette
- Membre
- Inscription : 2012-06-16
- Messages : 30
Re : vpn se lance mais navigation impossible
OK la nuit porte conseil.
Hors ligne
#43 2012-10-28 22:20:29
- Geronimo
- Contributeurs
- Inscription : 2012-08-10
- Messages : 85
Re : vpn se lance mais navigation impossible
salut,
réponse tardive, néanmoins j'ai eu un problème similaire sur ma Ubuntu, le problème venait de firestarter!
voici donc la marche à suivre:
Éditez le fichier de configuration /etc/firestarter/user-pre en mode administrateur:
Ecrire ou Ajouter les lignes suivantes :
# Allow traffic on the OpenVPN inteface
$IPT -A INPUT -i tun+ -j ACCEPT
$IPT -A OUTPUT -o tun+ -j ACCEPT
Et hop c'est bon... 
Hors ligne
#44 2012-10-29 00:04:05
- spatzounette
- Membre
- Inscription : 2012-06-16
- Messages : 30
Re : vpn se lance mais navigation impossible
Bonsoir Geronimo et merci de ta réponse (même tardive)!
A vrai dire j' avais "lâché l'affaire"!
Malheureusement le fichier /etc/firestarter/user-pre ne semble pas exister sur ma configuration,
j'ai comme pare-feu: gufw, de plus il est désactivé (il ferait double emploi avec celui du routeur).
Merci quand même...
Hors ligne
#45 2012-10-29 11:02:51
- Geronimo
- Contributeurs
- Inscription : 2012-08-10
- Messages : 85
Re : vpn se lance mais navigation impossible
j'avais le problème même en désactivant firestarter! je pense que ton problème est similaire mais à paramétrer avec gufw
j'ai trouvé un paramétrage similaire sur un forum US:
Edit /etc/default/ufw and set DEFAULT_FORWARD_POLICY to ACCEPT:
DEFAULT_FORWARD_POLICY="ACCEPT"
Hors ligne
#46 2012-10-29 11:11:03
- David
- Bof !!!
- Inscription : 2012-01-30
- Messages : 6 132
Re : vpn se lance mais navigation impossible
spatzounette@spatzounette-desktop:~$ sudo iptables -L -v
Chain INPUT (policy ACCEPT 11820 packets, 9212K bytes)
pkts bytes target prot opt in out source destination
Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
Chain OUTPUT (policy ACCEPT 10680 packets, 1430K bytes)
pkts bytes target prot opt in out source destination Hors ligne
#47 2012-11-06 15:28:20
- Geronimo
- Contributeurs
- Inscription : 2012-08-10
- Messages : 85
Re : vpn se lance mais navigation impossible
David, certains logiciels comme chez moi firestarter ne modifie pas les règles iptables, donc la commande "iptables -L -v" n'apporte pas d'indication au problème.
Hors ligne
#48 2012-11-06 15:48:00
- David
- Bof !!!
- Inscription : 2012-01-30
- Messages : 6 132
Re : vpn se lance mais navigation impossible
Hors ligne