Forum Freedom-IP VPN

Forum d'entraide de la communauté Freedom-IP VPN

Vous n'êtes pas identifié(e).

#26 2012-06-18 18:50:40

David
Bof !!!
Inscription : 2012-01-30
Messages : 6 132

Re : vpn se lance mais navigation impossible

Re ...

Bon ... comme vous m'aviez dit que le pare feu de votre distribution est désactivé ... nous allons voir celui du modem.
Pourriez-vous me faire une copie d'écran de la page "Firewall Rules" et une autre de la page "Services" ... merci.

Cordialement, David.

Hors ligne

#27 2012-06-18 19:02:52

spatzounette
Membre
Inscription : 2012-06-16
Messages : 30

Re : vpn se lance mais navigation impossible

Hors ligne

#28 2012-06-18 20:00:59

David
Bof !!!
Inscription : 2012-01-30
Messages : 6 132

Re : vpn se lance mais navigation impossible

# sudo iptables -L
Chain INPUT (policy ACCEPT)
target     prot opt source               destination         

Chain FORWARD (policy ACCEPT)
target     prot opt source               destination         

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination

Hors ligne

#29 2012-06-18 20:21:54

spatzounette
Membre
Inscription : 2012-06-16
Messages : 30

Re : vpn se lance mais navigation impossible

Bonsoir( j'étais parti me nourrir).

Voici ce que donne sudo iptables -L:

spatzounette@spatzounette-desktop:~$ sudo iptables -L
Chain INPUT (policy DROP)
target     prot opt source               destination         
ACCEPT     tcp  --  8.8.8.8              anywhere            tcp flags:!FIN,SYN,RST,ACK/SYN 
ACCEPT     udp  --  8.8.8.8              anywhere            
ACCEPT     tcp  --  8.8.4.4              anywhere            tcp flags:!FIN,SYN,RST,ACK/SYN 
ACCEPT     udp  --  8.8.4.4              anywhere            
ACCEPT     tcp  --  208.67.222.222       anywhere            tcp flags:!FIN,SYN,RST,ACK/SYN 
ACCEPT     udp  --  208.67.222.222       anywhere            
ACCEPT     all  --  anywhere             anywhere            
ACCEPT     icmp --  anywhere             anywhere            limit: avg 10/sec burst 5 
DROP       all  --  224.0.0.0/8          anywhere            
DROP       all  --  anywhere             224.0.0.0/8         
DROP       all  --  255.255.255.255      anywhere            
DROP       all  --  anywhere             0.0.0.0             
DROP       all  --  anywhere             anywhere            state INVALID 
LSI        all  -f  anywhere             anywhere            limit: avg 10/min burst 5 
INBOUND    all  --  anywhere             anywhere            
LOG_FILTER  all  --  anywhere             anywhere            
LOG        all  --  anywhere             anywhere            LOG level info prefix `Unknown Input' 

Chain FORWARD (policy DROP)
target     prot opt source               destination         
ACCEPT     icmp --  anywhere             anywhere            limit: avg 10/sec burst 5 
LOG_FILTER  all  --  anywhere             anywhere            
LOG        all  --  anywhere             anywhere            LOG level info prefix `Unknown Forward' 

Chain OUTPUT (policy DROP)
target     prot opt source               destination         
ACCEPT     tcp  --  192.168.0.3          8.8.8.8             tcp dpt:domain 
ACCEPT     udp  --  192.168.0.3          8.8.8.8             udp dpt:domain 
ACCEPT     tcp  --  192.168.0.3          8.8.4.4             tcp dpt:domain 
ACCEPT     udp  --  192.168.0.3          8.8.4.4             udp dpt:domain 
ACCEPT     tcp  --  192.168.0.3          208.67.222.222      tcp dpt:domain 
ACCEPT     udp  --  192.168.0.3          208.67.222.222      udp dpt:domain 
ACCEPT     all  --  anywhere             anywhere            
DROP       all  --  224.0.0.0/8          anywhere            
DROP       all  --  anywhere             224.0.0.0/8         
DROP       all  --  255.255.255.255      anywhere            
DROP       all  --  anywhere             0.0.0.0             
DROP       all  --  anywhere             anywhere            state INVALID 
OUTBOUND   all  --  anywhere             anywhere            
LOG_FILTER  all  --  anywhere             anywhere            
LOG        all  --  anywhere             anywhere            LOG level info prefix `Unknown Output' 

Chain INBOUND (1 references)
target     prot opt source               destination         
ACCEPT     tcp  --  anywhere             anywhere            state RELATED,ESTABLISHED 
ACCEPT     udp  --  anywhere             anywhere            state RELATED,ESTABLISHED 
ACCEPT     tcp  --  anywhere             anywhere            tcp dpt:https 
ACCEPT     udp  --  anywhere             anywhere            udp dpt:https 
ACCEPT     tcp  --  anywhere             anywhere            tcp dpt:openvpn 
ACCEPT     udp  --  anywhere             anywhere            udp dpt:openvpn 
LSI        all  --  anywhere             anywhere            

Chain LOG_FILTER (5 references)
target     prot opt source               destination         

Chain LSI (2 references)
target     prot opt source               destination         
LOG_FILTER  all  --  anywhere             anywhere            
LOG        tcp  --  anywhere             anywhere            tcp flags:FIN,SYN,RST,ACK/SYN limit: avg 1/sec burst 5 LOG level info prefix `Inbound ' 
DROP       tcp  --  anywhere             anywhere            tcp flags:FIN,SYN,RST,ACK/SYN 
LOG        tcp  --  anywhere             anywhere            tcp flags:FIN,SYN,RST,ACK/RST limit: avg 1/sec burst 5 LOG level info prefix `Inbound ' 
DROP       tcp  --  anywhere             anywhere            tcp flags:FIN,SYN,RST,ACK/RST 
LOG        icmp --  anywhere             anywhere            icmp echo-request limit: avg 1/sec burst 5 LOG level info prefix `Inbound ' 
DROP       icmp --  anywhere             anywhere            icmp echo-request 
LOG        all  --  anywhere             anywhere            limit: avg 5/sec burst 5 LOG level info prefix `Inbound ' 
DROP       all  --  anywhere             anywhere            

Chain LSO (0 references)
target     prot opt source               destination         
LOG_FILTER  all  --  anywhere             anywhere            
LOG        all  --  anywhere             anywhere            limit: avg 5/sec burst 5 LOG level info prefix `Outbound ' 
REJECT     all  --  anywhere             anywhere            reject-with icmp-port-unreachable 

Chain OUTBOUND (1 references)
target     prot opt source               destination         
ACCEPT     icmp --  anywhere             anywhere            
ACCEPT     tcp  --  anywhere             anywhere            state RELATED,ESTABLISHED 
ACCEPT     udp  --  anywhere             anywhere            state RELATED,ESTABLISHED 
ACCEPT     all  --  anywhere             anywhere            

traceroute 74.125.230.223

traceroute to 74.125.230.223 (74.125.230.223), 30 hops max, 60 byte packets
send: Opération non permise

Hors ligne

#30 2012-06-18 20:52:23

David
Bof !!!
Inscription : 2012-01-30
Messages : 6 132

Re : vpn se lance mais navigation impossible

Hors ligne

#31 2012-06-18 21:11:39

spatzounette
Membre
Inscription : 2012-06-16
Messages : 30

Re : vpn se lance mais navigation impossible

Bon , ma commande iptables donne un résultat correct.
Vpn activé et logs de connexion:

Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info>  Activation (eth0) starting connection 'Auto eth0'
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info>  (eth0): device state change: 3 -> 4 (reason 0)
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info>  Activation (eth0) Stage 1 of 5 (Device Prepare) scheduled...
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info>  Activation (eth0) Stage 1 of 5 (Device Prepare) started...
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info>  Activation (eth0) Stage 2 of 5 (Device Configure) scheduled...
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info>  Activation (eth0) Stage 1 of 5 (Device Prepare) complete.
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info>  Activation (eth0) Stage 2 of 5 (Device Configure) starting...
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info>  (eth0): device state change: 4 -> 5 (reason 0)
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info>  Activation (eth0) Stage 2 of 5 (Device Configure) successful.
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info>  Activation (eth0) Stage 3 of 5 (IP Configure Start) scheduled.
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info>  Activation (eth0) Stage 2 of 5 (Device Configure) complete.
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info>  Activation (eth0) Stage 3 of 5 (IP Configure Start) started...
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info>  (eth0): device state change: 5 -> 7 (reason 0)
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info>  Activation (eth0) Stage 4 of 5 (IP4 Configure Get) scheduled...
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info>  Activation (eth0) Stage 4 of 5 (IP6 Configure Get) scheduled...
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info>  Activation (eth0) Stage 3 of 5 (IP Configure Start) complete.
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info>  Activation (eth0) Stage 4 of 5 (IP4 Configure Get) started...
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info>  Activation (eth0) Stage 4 of 5 (IP4 Configure Get) complete.
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info>  Activation (eth0) Stage 4 of 5 (IP6 Configure Get) started...
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info>  Activation (eth0) Stage 5 of 5 (IP Configure Commit) scheduled...
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info>  Activation (eth0) Stage 4 of 5 (IP6 Configure Get) complete.
Jun 18 21:55:09 spatzounette-desktop NetworkManager: <info>  Activation (eth0) Stage 5 of 5 (IP Configure Commit) started...
Jun 18 21:55:11 spatzounette-desktop NetworkManager: <info>  (eth0): device state change: 7 -> 8 (reason 0)
Jun 18 21:55:11 spatzounette-desktop NetworkManager: <info>  Policy set 'Auto eth0' (eth0) as default for routing and DNS.
Jun 18 21:55:11 spatzounette-desktop NetworkManager: <info>  Activation (eth0) successful, device activated.
Jun 18 21:55:11 spatzounette-desktop NetworkManager: <info>  Activation (eth0) Stage 5 of 5 (IP Configure Commit) complete.
Jun 18 21:56:38 spatzounette-desktop NetworkManager: <info>  Starting VPN service 'org.freedesktop.NetworkManager.openvpn'...
Jun 18 21:56:38 spatzounette-desktop NetworkManager: <info>  VPN service 'org.freedesktop.NetworkManager.openvpn' started (org.freedesktop.NetworkManager.openvpn), PID 1838
Jun 18 21:56:38 spatzounette-desktop NetworkManager: <info>  VPN service 'org.freedesktop.NetworkManager.openvpn' just appeared, activating connections
Jun 18 21:56:38 spatzounette-desktop NetworkManager: <info>  VPN plugin state changed: 1
Jun 18 21:56:38 spatzounette-desktop NetworkManager: <info>  VPN plugin state changed: 3
Jun 18 21:56:38 spatzounette-desktop NetworkManager: <info>  VPN connection 'NL_freedomip' (Connect) reply received.
Jun 18 21:56:38 spatzounette-desktop nm-openvpn[1844]: OpenVPN 2.1.3 i486-pc-linux-gnu [SSL] [LZO2] [EPOLL] [PKCS11] [MH] [PF_INET6] [eurephia] built on Mar 29 2011
Jun 18 21:56:38 spatzounette-desktop nm-openvpn[1844]: WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
Jun 18 21:56:38 spatzounette-desktop nm-openvpn[1844]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Jun 18 21:56:38 spatzounette-desktop nm-openvpn[1844]: WARNING: file '/home/spatzounette/freedomip/ta.key' is group or others accessible
Jun 18 21:56:38 spatzounette-desktop nm-openvpn[1844]: Control Channel Authentication: using '/home/spatzounette/freedomip/ta.key' as a OpenVPN static key file
Jun 18 21:56:38 spatzounette-desktop nm-openvpn[1844]: LZO compression initialized
Jun 18 21:56:38 spatzounette-desktop nm-openvpn[1844]: Attempting to establish TCP connection with [AF_INET]94.23.148.176:443 [nonblock]
Jun 18 21:56:39 spatzounette-desktop nm-openvpn[1844]: TCP connection established with [AF_INET]94.23.148.176:443
Jun 18 21:56:39 spatzounette-desktop nm-openvpn[1844]: TCPv4_CLIENT link local: [undef]
Jun 18 21:56:39 spatzounette-desktop nm-openvpn[1844]: TCPv4_CLIENT link remote: [AF_INET]94.23.148.176:443
Jun 18 21:56:40 spatzounette-desktop nm-openvpn[1844]: [server] Peer Connection Initiated with [AF_INET]94.23.148.176:443
Jun 18 21:56:43 spatzounette-desktop nm-openvpn[1844]: TUN/TAP device tun0 opened
Jun 18 21:56:43 spatzounette-desktop nm-openvpn[1844]: /sbin/ifconfig tun0 10.8.23.202 pointopoint 10.8.23.201 mtu 1500
Jun 18 21:56:43 spatzounette-desktop NetworkManager:    SCPlugin-Ifupdown: devices added (path: /sys/devices/virtual/net/tun0, iface: tun0)
Jun 18 21:56:43 spatzounette-desktop NetworkManager:    SCPlugin-Ifupdown: device added (path: /sys/devices/virtual/net/tun0, iface: tun0): no ifupdown configuration found.
Jun 18 21:56:43 spatzounette-desktop nm-openvpn[1844]: /usr/lib/network-manager-openvpn/nm-openvpn-service-openvpn-helper tun0 1500 1560 10.8.23.202 10.8.23.201 init
Jun 18 21:56:43 spatzounette-desktop NetworkManager: <info>  VPN connection 'NL_freedomip' (IP Config Get) reply received.
Jun 18 21:56:43 spatzounette-desktop NetworkManager: <info>  VPN Gateway: 94.23.148.176
Jun 18 21:56:43 spatzounette-desktop NetworkManager: <info>  Internal Gateway: 10.8.23.201
Jun 18 21:56:43 spatzounette-desktop NetworkManager: <info>  Tunnel Device: tun0
Jun 18 21:56:43 spatzounette-desktop NetworkManager: <info>  Internal IP4 Address: 10.8.23.202
Jun 18 21:56:43 spatzounette-desktop NetworkManager: <info>  Internal IP4 Prefix: 32
Jun 18 21:56:43 spatzounette-desktop NetworkManager: <info>  Internal IP4 Point-to-Point Address: 10.8.23.201
Jun 18 21:56:43 spatzounette-desktop NetworkManager: <info>  Maximum Segment Size (MSS): 0
Jun 18 21:56:43 spatzounette-desktop NetworkManager: <info>  Static Route: 10.8.0.1/32   Next Hop: 10.8.0.1
Jun 18 21:56:43 spatzounette-desktop NetworkManager: <info>  Internal IP4 DNS: 8.8.8.8
Jun 18 21:56:43 spatzounette-desktop NetworkManager: <info>  Internal IP4 DNS: 8.8.4.4
Jun 18 21:56:43 spatzounette-desktop nm-openvpn[1844]: Initialization Sequence Completed
Jun 18 21:56:43 spatzounette-desktop NetworkManager: <info>  DNS Domain: '(none)'
Jun 18 21:56:43 spatzounette-desktop NetworkManager: <info>  Login Banner:
Jun 18 21:56:43 spatzounette-desktop NetworkManager: <info>  -----------------------------------------
Jun 18 21:56:43 spatzounette-desktop NetworkManager: <info>  (null)
Jun 18 21:56:43 spatzounette-desktop NetworkManager: <info>  -----------------------------------------
Jun 18 21:56:44 spatzounette-desktop NetworkManager: <info>  VPN connection 'NL_freedomip' (IP Config Get) complete.
Jun 18 21:56:44 spatzounette-desktop NetworkManager: <info>  Policy set 'NL_freedomip' (tun0) as default for routing and DNS.
Jun 18 21:56:44 spatzounette-desktop NetworkManager: <info>  VPN plugin state changed: 4
Jun 18 21:57:26 spatzounette-desktop nm-openvpn[1844]: /sbin/ifconfig tun0 0.0.0.0
Jun 18 21:57:26 spatzounette-desktop nm-openvpn[1844]: SIGTERM[hard,] received, process exiting
Jun 18 21:57:27 spatzounette-desktop NetworkManager: <info>  Policy set 'Auto eth0' (eth0) as default for routing and DNS.
Jun 18 21:57:27 spatzounette-desktop NetworkManager:    SCPlugin-Ifupdown: devices removed (path: /sys/devices/virtual/net/tun0, iface: tun0)
Jun 18 21:57:40 spatzounette-desktop NetworkManager: <debug> [1340049460.002522] ensure_killed(): waiting for vpn service pid 1838 to exit
Jun 18 21:57:40 spatzounette-desktop NetworkManager: <debug> [1340049460.002621] ensure_killed(): vpn service pid 1838 cleaned up
Jun 18 21:59:54 spatzounette-desktop NetworkManager: <info>  Starting VPN service 'org.freedesktop.NetworkManager.openvpn'...
Jun 18 21:59:54 spatzounette-desktop NetworkManager: <info>  VPN service 'org.freedesktop.NetworkManager.openvpn' started (org.freedesktop.NetworkManager.openvpn), PID 1939
Jun 18 21:59:54 spatzounette-desktop NetworkManager: <info>  VPN service 'org.freedesktop.NetworkManager.openvpn' just appeared, activating connections
Jun 18 21:59:54 spatzounette-desktop NetworkManager: <info>  VPN plugin state changed: 1
Jun 18 21:59:54 spatzounette-desktop NetworkManager: <info>  VPN plugin state changed: 3
Jun 18 21:59:54 spatzounette-desktop NetworkManager: <info>  VPN connection 'NL_freedomip' (Connect) reply received.
Jun 18 21:59:54 spatzounette-desktop nm-openvpn[1943]: OpenVPN 2.1.3 i486-pc-linux-gnu [SSL] [LZO2] [EPOLL] [PKCS11] [MH] [PF_INET6] [eurephia] built on Mar 29 2011
Jun 18 21:59:54 spatzounette-desktop nm-openvpn[1943]: WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
Jun 18 21:59:54 spatzounette-desktop nm-openvpn[1943]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Jun 18 21:59:54 spatzounette-desktop nm-openvpn[1943]: WARNING: file '/home/spatzounette/freedomip/ta.key' is group or others accessible
Jun 18 21:59:54 spatzounette-desktop nm-openvpn[1943]: Control Channel Authentication: using '/home/spatzounette/freedomip/ta.key' as a OpenVPN static key file
Jun 18 21:59:54 spatzounette-desktop nm-openvpn[1943]: LZO compression initialized
Jun 18 21:59:54 spatzounette-desktop nm-openvpn[1943]: Attempting to establish TCP connection with [AF_INET]94.23.148.176:443 [nonblock]
Jun 18 21:59:55 spatzounette-desktop nm-openvpn[1943]: TCP connection established with [AF_INET]94.23.148.176:443
Jun 18 21:59:55 spatzounette-desktop nm-openvpn[1943]: TCPv4_CLIENT link local: [undef]
Jun 18 21:59:55 spatzounette-desktop nm-openvpn[1943]: TCPv4_CLIENT link remote: [AF_INET]94.23.148.176:443
Jun 18 21:59:57 spatzounette-desktop nm-openvpn[1943]: [server] Peer Connection Initiated with [AF_INET]94.23.148.176:443
Jun 18 21:59:59 spatzounette-desktop nm-openvpn[1943]: TUN/TAP device tun0 opened
Jun 18 21:59:59 spatzounette-desktop nm-openvpn[1943]: /sbin/ifconfig tun0 10.8.23.202 pointopoint 10.8.23.201 mtu 1500
Jun 18 21:59:59 spatzounette-desktop NetworkManager:    SCPlugin-Ifupdown: devices added (path: /sys/devices/virtual/net/tun0, iface: tun0)
Jun 18 21:59:59 spatzounette-desktop NetworkManager:    SCPlugin-Ifupdown: device added (path: /sys/devices/virtual/net/tun0, iface: tun0): no ifupdown configuration found.
Jun 18 21:59:59 spatzounette-desktop nm-openvpn[1943]: /usr/lib/network-manager-openvpn/nm-openvpn-service-openvpn-helper tun0 1500 1560 10.8.23.202 10.8.23.201 init
Jun 18 21:59:59 spatzounette-desktop NetworkManager: <info>  VPN connection 'NL_freedomip' (IP Config Get) reply received.
Jun 18 21:59:59 spatzounette-desktop NetworkManager: <info>  VPN Gateway: 94.23.148.176
Jun 18 21:59:59 spatzounette-desktop NetworkManager: <info>  Internal Gateway: 10.8.23.201
Jun 18 21:59:59 spatzounette-desktop NetworkManager: <info>  Tunnel Device: tun0
Jun 18 21:59:59 spatzounette-desktop NetworkManager: <info>  Internal IP4 Address: 10.8.23.202
Jun 18 21:59:59 spatzounette-desktop NetworkManager: <info>  Internal IP4 Prefix: 32
Jun 18 21:59:59 spatzounette-desktop NetworkManager: <info>  Internal IP4 Point-to-Point Address: 10.8.23.201
Jun 18 21:59:59 spatzounette-desktop NetworkManager: <info>  Maximum Segment Size (MSS): 0
Jun 18 21:59:59 spatzounette-desktop NetworkManager: <info>  Static Route: 10.8.0.1/32   Next Hop: 10.8.0.1
Jun 18 21:59:59 spatzounette-desktop NetworkManager: <info>  Internal IP4 DNS: 8.8.8.8
Jun 18 21:59:59 spatzounette-desktop NetworkManager: <info>  Internal IP4 DNS: 8.8.4.4
Jun 18 21:59:59 spatzounette-desktop NetworkManager: <info>  DNS Domain: '(none)'
Jun 18 21:59:59 spatzounette-desktop NetworkManager: <info>  Login Banner:
Jun 18 21:59:59 spatzounette-desktop NetworkManager: <info>  -----------------------------------------
Jun 18 21:59:59 spatzounette-desktop NetworkManager: <info>  (null)
Jun 18 21:59:59 spatzounette-desktop NetworkManager: <info>  -----------------------------------------
Jun 18 21:59:59 spatzounette-desktop nm-openvpn[1943]: Initialization Sequence Completed
Jun 18 22:00:00 spatzounette-desktop NetworkManager: <info>  VPN connection 'NL_freedomip' (IP Config Get) complete.
Jun 18 22:00:00 spatzounette-desktop NetworkManager: <info>  Policy set 'NL_freedomip' (tun0) as default for routing and DNS.
Jun 18 22:00:00 spatzounette-desktop NetworkManager: <info>  VPN plugin state changed: 4

Routes:

spatzounette@spatzounette-desktop:~$ route
Table de routage IP du noyau
Destination     Passerelle      Genmask         Indic Metric Ref    Use Iface
vpn2.Freedom-IP 192.168.0.1     255.255.255.255 UGH   0      0        0 eth0
10.8.0.1        10.8.23.201     255.255.255.255 UGH   0      0        0 tun0
10.8.23.201     *               255.255.255.255 UH    0      0        0 tun0
192.168.0.0     *               255.255.255.0   U     1      0        0 eth0
link-local      *               255.255.0.0     U     1000   0        0 eth0
default         10.8.23.201     0.0.0.0         UG    0      0        0 tun0

Tiens la page google a eu le temps de s'afficher mais ça n'a pas été plus loin...
L'adresse IP ne marche pas.
Le traceroute:

traceroute to 74.125.230.223 (74.125.230.223), 30 hops max, 60 byte packets
 1  * * *
 2  * * *
 3  * * *
 4  * * *
 5  * * *
 6  * * *

J'ai fait ctrl-C sinon c'était parti pour des plombes...

Hors ligne

#32 2012-06-18 21:31:12

David
Bof !!!
Inscription : 2012-01-30
Messages : 6 132

Re : vpn se lance mais navigation impossible

Ok ... Merci.

J'ai l'impression que le network manager boucle ... il connecte openvpn, le deconnecte puis le reconnecte ...

Et le même test, avec un iptables tout vide et sans utiliser NetworkManager mais :

sudo openvpn --config NL_freedomip.ovpn

Et me retourner les log d'OpenVPN, les routes, ... bref comme ci dessus smile

Je vous aurais fait travailler ops

Cordialement, David.

Hors ligne

#33 2012-06-18 21:41:59

spatzounette
Membre
Inscription : 2012-06-16
Messages : 30

Re : vpn se lance mais navigation impossible

Cette commande me retourne une erreur:(vpn activé)

spatzounette@spatzounette-desktop:~$ sudo openvpn --config NL_freedomip.ovpn
Options error: In [CMD-LINE]:1: Error opening configuration file: NL_freedomip.ovpn
Use --help for more information.

Hors ligne

#34 2012-06-18 21:47:30

David
Bof !!!
Inscription : 2012-01-30
Messages : 6 132

Re : vpn se lance mais navigation impossible

Hors ligne

#35 2012-06-18 22:00:05

spatzounette
Membre
Inscription : 2012-06-16
Messages : 30

Re : vpn se lance mais navigation impossible

Ok, voilà...

spatzounette@spatzounette-desktop:~$ cd /home/spatzounette/freedomip
spatzounette@spatzounette-desktop:~/freedomip$ sudo openvpn --config NL_freedomip.ovpn
Mon Jun 18 22:52:15 2012 OpenVPN 2.1.3 i486-pc-linux-gnu [SSL] [LZO2] [EPOLL] [PKCS11] [MH] [PF_INET6] [eurephia] built on Mar 29 2011
Enter Auth Username:fip_11895w410z
Enter Auth Password:
Mon Jun 18 22:53:19 2012 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Mon Jun 18 22:53:19 2012 WARNING: file 'ta.key' is group or others accessible
Mon Jun 18 22:53:19 2012 Control Channel Authentication: using 'ta.key' as a OpenVPN static key file
Mon Jun 18 22:53:19 2012 LZO compression initialized
Mon Jun 18 22:53:19 2012 Attempting to establish TCP connection with [AF_INET]94.23.148.176:443 [nonblock]
Mon Jun 18 22:53:20 2012 TCP connection established with [AF_INET]94.23.148.176:443
Mon Jun 18 22:53:20 2012 TCPv4_CLIENT link local: [undef]
Mon Jun 18 22:53:20 2012 TCPv4_CLIENT link remote: [AF_INET]94.23.148.176:443
Mon Jun 18 22:53:20 2012 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Mon Jun 18 22:53:21 2012 [server] Peer Connection Initiated with [AF_INET]94.23.148.176:443
Mon Jun 18 22:53:23 2012 TUN/TAP device tun0 opened
Mon Jun 18 22:53:23 2012 /sbin/ifconfig tun0 10.8.23.202 pointopoint 10.8.23.201 mtu 1500
Mon Jun 18 22:53:23 2012 Initialization Sequence Completed

Routes

spatzounette@spatzounette-desktop:~$ route
Table de routage IP du noyau
Destination     Passerelle      Genmask         Indic Metric Ref    Use Iface
192.168.0.0     *               255.255.255.0   U     1      0        0 eth0
link-local      *               255.255.0.0     U     1000   0        0 eth0
default         192.168.0.1     0.0.0.0         UG    0      0        0 eth0

Hors ligne

#36 2012-06-18 22:07:52

spatzounette
Membre
Inscription : 2012-06-16
Messages : 30

Re : vpn se lance mais navigation impossible

Tiens, si ça peut faire avancer le schmilblick, avec le vpn connecté Thunderbird a l'air de fonctionner du moins en réception de messages
...et j'arrive à écouter une radio web sur Audacious.Y'a juste Ffirefox qui marche pas...

Hors ligne

#37 2012-06-18 22:11:52

David
Bof !!!
Inscription : 2012-01-30
Messages : 6 132

Re : vpn se lance mais navigation impossible

Hors ligne

#38 2012-06-18 22:12:41

spatzounette
Membre
Inscription : 2012-06-16
Messages : 30

Re : vpn se lance mais navigation impossible

Il ne l'était plus

Hors ligne

#39 2012-06-18 22:14:22

David
Bof !!!
Inscription : 2012-01-30
Messages : 6 132

Re : vpn se lance mais navigation impossible

Hors ligne

#40 2012-06-18 22:30:18

spatzounette
Membre
Inscription : 2012-06-16
Messages : 30

Re : vpn se lance mais navigation impossible

Revoilà:

spatzounette@spatzounette-desktop:~$ cd /home/spatzounette/freedomip
spatzounette@spatzounette-desktop:~/freedomip$ sudo openvpn --config NL_freedomip.ovpn
Mon Jun 18 23:20:52 2012 OpenVPN 2.1.3 i486-pc-linux-gnu [SSL] [LZO2] [EPOLL] [PKCS11] [MH] [PF_INET6] [eurephia] built on Mar 29 2011
Enter Auth Username:fip_11895w410z
Enter Auth Password:
Mon Jun 18 23:21:37 2012 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Mon Jun 18 23:21:37 2012 WARNING: file 'ta.key' is group or others accessible
Mon Jun 18 23:21:37 2012 Control Channel Authentication: using 'ta.key' as a OpenVPN static key file
Mon Jun 18 23:21:37 2012 LZO compression initialized
Mon Jun 18 23:21:37 2012 Attempting to establish TCP connection with [AF_INET]94.23.148.176:443 [nonblock]
Mon Jun 18 23:21:38 2012 TCP connection established with [AF_INET]94.23.148.176:443
Mon Jun 18 23:21:38 2012 TCPv4_CLIENT link local: [undef]
Mon Jun 18 23:21:38 2012 TCPv4_CLIENT link remote: [AF_INET]94.23.148.176:443
Mon Jun 18 23:21:38 2012 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Mon Jun 18 23:21:40 2012 [server] Peer Connection Initiated with [AF_INET]94.23.148.176:443
Mon Jun 18 23:21:42 2012 TUN/TAP device tun0 opened
Mon Jun 18 23:21:42 2012 /sbin/ifconfig tun0 10.8.23.202 pointopoint 10.8.23.201 mtu 1500
Mon Jun 18 23:21:42 2012 Initialization Sequence Completed

Et les 3 autres commandes:

spatzounette@spatzounette-desktop:~$ ifconfig
eth0      Link encap:Ethernet  HWaddr 00:1e:8c:b4:4e:8e  
          inet adr:192.168.0.3  Bcast:192.168.0.255  Masque:255.255.255.0
          adr inet6: fe80::21e:8cff:feb4:4e8e/64 Scope:Lien
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          Packets reçus:10263 erreurs:0 :0 overruns:0 frame:0
          TX packets:8659 errors:0 dropped:0 overruns:0 carrier:2
          collisions:0 lg file transmission:1000 
          Octets reçus:7790263 (7.7 MB) Octets transmis:1387925 (1.3 MB)

lo        Link encap:Boucle locale  
          inet adr:127.0.0.1  Masque:255.0.0.0
          adr inet6: ::1/128 Scope:Hôte
          UP LOOPBACK RUNNING  MTU:16436  Metric:1
          Packets reçus:429 erreurs:0 :0 overruns:0 frame:0
          TX packets:429 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 lg file transmission:0 
          Octets reçus:34358 (34.3 KB) Octets transmis:34358 (34.3 KB)

tun0      Link encap:UNSPEC  HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00  
          inet adr:10.8.23.202  P-t-P:10.8.23.201  Masque:255.255.255.255
          UP POINTOPOINT RUNNING NOARP MULTICAST  MTU:1500  Metric:1
          Packets reçus:0 erreurs:0 :0 overruns:0 frame:0
          TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 lg file transmission:100 
          Octets reçus:0 (0.0 B) Octets transmis:0 (0.0 B)
spatzounette@spatzounette-desktop:~$ route
Table de routage IP du noyau
Destination     Passerelle      Genmask         Indic Metric Ref    Use Iface
vpn2.Freedom-IP 192.168.0.1     255.255.255.255 UGH   0      0        0 eth0
10.8.0.1        10.8.23.201     255.255.255.255 UGH   0      0        0 tun0
10.8.23.201     *               255.255.255.255 UH    0      0        0 tun0
192.168.0.0     *               255.255.255.0   U     1      0        0 eth0
link-local      *               255.255.0.0     U     1000   0        0 eth0
default         10.8.23.201     128.0.0.0       UG    0      0        0 tun0
128.0.0.0       10.8.23.201     128.0.0.0       UG    0      0        0 tun0
default         192.168.0.1     0.0.0.0         UG    0      0        0 eth0
spatzounette@spatzounette-desktop:~$ sudo iptables -L -v
Chain INPUT (policy ACCEPT 11820 packets, 9212K bytes)
 pkts bytes target     prot opt in     out     source               destination         

Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
 pkts bytes target     prot opt in     out     source               destination         

Chain OUTPUT (policy ACCEPT 10680 packets, 1430K bytes)
 pkts bytes target     prot opt in     out     source               destination 

Après quoi le test internet ne donne toujours rien.

Hors ligne

#41 2012-06-18 22:46:13

David
Bof !!!
Inscription : 2012-01-30
Messages : 6 132

Re : vpn se lance mais navigation impossible

Donc internet toujours HS ... avec url et adresse ip !?
nslookup, traceroute, vous n'avez pas testé !?

Bref ... j'arrête pour aujourd'hui.

Bonne Nuit.

Hors ligne

#42 2012-06-18 22:49:13

spatzounette
Membre
Inscription : 2012-06-16
Messages : 30

Re : vpn se lance mais navigation impossible

OK la nuit porte conseil.

Hors ligne

#43 2012-10-28 22:20:29

Geronimo
Contributeurs
Inscription : 2012-08-10
Messages : 85

Re : vpn se lance mais navigation impossible

salut,
réponse tardive, néanmoins j'ai eu un problème similaire sur ma Ubuntu, le problème venait de firestarter!

voici donc la marche à suivre:

Éditez le fichier de configuration /etc/firestarter/user-pre en mode administrateur:

Ecrire ou Ajouter les lignes suivantes :

# Allow traffic on the OpenVPN inteface
$IPT -A INPUT -i tun+ -j ACCEPT
$IPT -A OUTPUT -o tun+ -j ACCEPT

Et hop c'est bon... tongue

Hors ligne

#44 2012-10-29 00:04:05

spatzounette
Membre
Inscription : 2012-06-16
Messages : 30

Re : vpn se lance mais navigation impossible

Bonsoir Geronimo et merci de ta réponse  (même tardive)!
A vrai dire j' avais "lâché l'affaire"!
Malheureusement le fichier /etc/firestarter/user-pre ne semble pas exister sur ma configuration,
j'ai comme pare-feu: gufw, de plus il est désactivé (il ferait double emploi avec celui du routeur).
Merci quand même...

Hors ligne

#45 2012-10-29 11:02:51

Geronimo
Contributeurs
Inscription : 2012-08-10
Messages : 85

Re : vpn se lance mais navigation impossible

j'avais le problème même en désactivant firestarter! je pense que ton problème est similaire mais à paramétrer avec gufw

j'ai trouvé un paramétrage similaire sur un forum US:


Edit /etc/default/ufw and set DEFAULT_FORWARD_POLICY to ACCEPT:

DEFAULT_FORWARD_POLICY="ACCEPT"

Hors ligne

#46 2012-10-29 11:11:03

David
Bof !!!
Inscription : 2012-01-30
Messages : 6 132

Re : vpn se lance mais navigation impossible

spatzounette@spatzounette-desktop:~$ sudo iptables -L -v
Chain INPUT (policy ACCEPT 11820 packets, 9212K bytes)
 pkts bytes target     prot opt in     out     source               destination         

Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
 pkts bytes target     prot opt in     out     source               destination         

Chain OUTPUT (policy ACCEPT 10680 packets, 1430K bytes)
 pkts bytes target     prot opt in     out     source               destination 

Hors ligne

#47 2012-11-06 15:28:20

Geronimo
Contributeurs
Inscription : 2012-08-10
Messages : 85

Re : vpn se lance mais navigation impossible

David, certains logiciels comme chez moi firestarter ne modifie pas les règles iptables, donc la commande "iptables -L -v" n'apporte pas d'indication au problème.

Hors ligne

#48 2012-11-06 15:48:00

David
Bof !!!
Inscription : 2012-01-30
Messages : 6 132

Re : vpn se lance mais navigation impossible

Hors ligne

Pied de page des forums