czarnydb napisał(a):
Jan 23 22:16:12 netgearr6400 daemon.warn openvpn-client1[7467]: --cipher is not set. Previous OpenVPN version defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--data-ciphers-fallback BF-CBC' to your configuration and/or add BF-CBC to --data-ciphers.
Jan 23 22:16:12 netgearr6400 daemon.notice openvpn-client1[7467]: OpenVPN 2.5.0 arm-unknown-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD]
Jan 23 22:16:12 netgearr6400 daemon.notice openvpn-client1[7467]: library versions: OpenSSL 1.1.1i 8 Dec 2020, LZO 2.10
Jan 23 22:16:12 netgearr6400 daemon.warn openvpn-client1[7468]: WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Jan 23 22:16:12 netgearr6400 daemon.warn openvpn-client1[7468]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Jan 23 22:16:12 netgearr6400 daemon.notice openvpn-client1[7468]: Outgoing Control Channel Authentication: Using 256 bit message hash 'SHA256' for HMAC authentication
Jan 23 22:16:12 netgearr6400 daemon.notice openvpn-client1[7468]: Incoming Control Channel Authentication: Using 256 bit message hash 'SHA256' for HMAC authentication
Jan 23 22:16:13 netgearr6400 daemon.notice openvpn-client1[7468]: TCP/UDP: Preserving recently used remote address: [AF_INET]192.40.57.230:80
Jan 23 22:16:13 netgearr6400 daemon.notice openvpn-client1[7468]: Socket Buffers: R=[122880->122880] S=[122880->122880]
Jan 23 22:16:13 netgearr6400 daemon.notice openvpn-client1[7468]: UDP link local: (not bound)
Jan 23 22:16:13 netgearr6400 daemon.notice openvpn-client1[7468]: UDP link remote: [AF_INET]192.40.57.230:80
Połączony z 23 stycznia 2021 22:23:01:
Cytat
Radi napisał(a):
Wyślij mi plik konfiguracyjny oryginalny od tego VPNa.
Spróbujemy sposobem, z jakiego ja korzystam.
Oryginalna konfiguracja VPNa
# ==============================================================================
# Copyright (c) 2016-2020 Proton Technologies AG (Switzerland)
# Email: contact@protonvpn.com
#
# The MIT License (MIT)
#
# Permission is hereby granted, free of charge, to any person obtaining a copy
# of this software and associated documentation files (the "Software"), to deal
# in the Software without restriction, including without limitation the rights
# to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
# copies of the Software, and to permit persons to whom the Software is
# furnished to do so, subject to the following conditions:
#
# The above copyright notice and this permission notice shall be included in all
# copies or substantial portions of the Software.
#
# THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
# IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
# FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
# AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
# LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR # OTHERWISE, ARISING
# FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS
# IN THE SOFTWARE.
# ==============================================================================
client
dev tun
proto udp
remote nl-free-03.protonvpn.com 1194
remote nl-free-03.protonvpn.com 80
remote nl-free-03.protonvpn.com 5060
remote nl-free-03.protonvpn.com 443
remote nl-free-03.protonvpn.com 4569
remote-random
resolv-retry infinite
nobind
cipher AES-256-CBC
auth SHA512
comp-lzo no
verb 3
setenv CLIENT_CERT 0
tun-mtu 1500
tun-mtu-extra 32
mssfix 1450
persist-key
persist-tun
reneg-sec 0
remote-cert-tls server
auth-user-pass
pull
fast-io
-----BEGIN CERTIFICATE-----
xxx
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----
xxx
-----END CERTIFICATE-----
key-direction 1
# 2048 bit OpenVPN static key
-----BEGIN OpenVPN Static key V1-----
xxx
-----END OpenVPN Static key V1-----
' target='_blank'>Link
