[操作疑難] 請教 openvpn 大陸翻牆問題

本帖最後由 ivanctl 於 2015-1-31 21:30 編輯

以前一直在大陸用 PPTP 方式連返香港屋企 Router 翻牆, 一直都用到係速度慢D

最近 HK 換左 ASUS AC68U 見佢有 openvpn 就試下

咁返左大陸屋企我先試下手機經大陸屋企 wifi 連 openvpn, 無問題成功翻牆, 上網時係香港IP, 速度亦好唔錯 (比起之前用 PPTP 睇 youtube 順左好多 speedtest dl 都有 9Mbps)

之但係在若用同一個 ovpn config , 用電腦 係 desktop window 8.1 用 openvpn client 連線成功後, 出街既卻係大陸 IP, facebook youtube 被封既網一律去唔到

想請教下點解, 係咪有咩 set 錯



註:係大陸時係同一個 router network 連手機同腦, 手機得電腦唔得
附件: 您需要登錄才可以下載或查看附件。沒有帳號?註冊

本帖最後由 wall007 於 2015-1-31 21:36 編輯

Windows7 用户安装完OpenVPN后,第一次连接前,要进行这个操作——开始菜单里选,Add a new TAP virtual ethernet adapter,然后再连

Do you add it?? I don't know is it work or not for you, seen you thought the TUN, but not the TAP...

TOP

回覆 2# wall007


係唔係呢個,我裝 openvpn client 時佢已自動新增了
附件: 您需要登錄才可以下載或查看附件。沒有帳號?註冊

TOP

本帖最後由 wall007 於 2015-1-31 21:44 編輯

how about your config ??

I using like this, working, (using openVPN in ShenZhen now)

dev tun
tls-client

remote xxxxxxxxxxxxx 1194

# The "float" tells OpenVPN to accept authenticated packets from any address,
# not only the address which was specified in the --remote option.
# This is useful when you are connecting to a peer which holds a dynamic address
# such as a dial-in user or DHCP client.
# (Please refer to the manual of OpenVPN for more information.)

float

# If redirect-gateway is enabled, the client will redirect it's
# default network gateway through the VPN.
# It means the VPN connection will firstly connect to the VPN Server
# and then to the internet.
# (Please refer to the manual of OpenVPN for more information.)

redirect-gateway

dhcp-option DNS 8.8.8.8
# Repeat this option to set secondary DNS server addresses.

dhcp-option DNS 8.8.4.4

pull

# If you want to connect by Server's IPv6 address, you should use
# "proto udp6" in UDP mode or "proto tcp6-client" in TCP mode
proto udp

script-security 2

ca ca.crt

comp-lzo

reneg-sec 0

auth-user-pass

TOP

本帖最後由 ivanctl 於 2015-2-2 21:28 編輯

回覆 4# wall007

係咪個 ovpn 檔?

client
dev tun
proto udp
remote 119.247.xxx.xxx 1194
float
cipher AES-128-CBC
comp-lzo adaptive
keepalive 15 60
auth-user-pass
ns-cert-type server
<ca>
-----BEGIN CERTIFICATE-----
MIIDNDCCAp2gAwIBAgIJAPouuT1LacSYMA0GCSqGSIb3DQEBBQUAMHAxCzAJBgNV
BAYTAlRXMQswCQYDVQQIEwJUVzEPMA0GA1UEBxMGVGFpcGVpMQ0wCwYDVQQKEwRB
U1VTMREwDwYDVQQDEwhSVC1BQzY4VTEhMB8GCSqGSIb3DQEJARYSbWVAbXlob3N0
Lm15ZG9tYWluMB4XDTE1MDEyNzE3NDQzNFoXDTI1MDEyNDE3NDQzNFowcDELMAkG
A1UEBhMCVFcxCzAJMQ8wDQYDVQQHEwZUYWlwZWkxDTALBgNVBAoT
BEFTVVMxETAPBgNVBAMTCFJUUFDNjhVMSEwHwYJKoZIhvcNAQkBFhJtZUBteWhv
c3QubXlkb21haW4wgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBAKIGD/8/gMSi
a6bX+Tyq+erEeoXNfvrnYj/lsU72FECt1N/jKzOM0BB2JeSf81Dl9Ma6wfxu9XXR
3TPB9Hh2dHzSHQN+WxcGmbQZktakwYt3WTnE4LzlTu6Mdqsvz/PxyN+bA213UisQ
HViyjG7YwVQBgMTkYEgZowgZeAFEFCz9hxIU93Jx+IuhuT
Q0z9xngtoXSkcjBwMQswCQYDVQQGEwJUVzELMAkGA1UECBMCVFcxDzANBgNVBAcT
BlRhaXBlaTENMAsGA1UEChMEQVNVUzERMA8GA1UEAxMIUlQtQUM2OFUxITAfBgkq
hkiG9w0BCQEWEm1lQG15aG9zdC5teWRvbWFpboIJAPouuT1LacSYMAwGA1UdEwQF
MAMBAf8wDQYJKoZIhvcNAQEFBQADgYEAgU+gMEmDJgPCK7hTv0wDwFabTICw0YpB
n7jBOB9eU3IdoW2GLDt3MdfLpgoINL2tCczlSyR2nFqIZuKkjffc+agfiitE8jvO
A3y3qraUaFLt87x7no99ATTXmCbZ/NkzI+debKuqaYSLJsH1UZF69maRByEyEBdX
Mq3zzY4CMlc=
-----END CERTIFICATE-----
</ca>
<cert>
-----BEGIN CERTIFICATE-----
MIIDejCCAuOgAwIBAgIBAjANBgkqhkiG9w0BAQUFADBwMQswCQYDVQQGEwJUVzEL
MAkGA1UECBMCVFcxDzANBgNVBAcTBlRhaXBlaTENMAsGA1UEChMEQVNVUzERMA8G
A1UEAxMIUlQtQUM2OFUxITAfBgkqhkiG9w0BCQEWEm1lQG15aG9zdC5teWRvbWFp
bjAeFw0xNTAQG15aG9zdC5teWRvbWFp
bjCBnzANBgkqhkiG9w0BAQEFAAOBjQAwgYkCgYEAviMA1hKzI1ssV6b+JBj7ptNz
uKvXxBjxxQJ09QuZOVg9zWOFSzG3LbdfVAnPq9z9C49jQ99F+3XvdxOxL0NYmH2P
OuHqPfkaD9Ca4vqaFB0k93Px+THNd2W8u0fuGYJLR0AhZ9FE6b1BOwiDz3PApmpE
7WdW2bsKiKLG4P1DRx8CAwEAAaOCASQwggEgMAkGA1UdEwQCMAAwLQYJYIZIAYb4
QgENBCAWHkVhc3ktUlNBIEdlbmVyYXRlZCBDZXJ0aWZpY2F0ZTAdBgNVHQ4EFgQU
ltkLC7j0eEyN2T/rjouDl1CjVmUwgaIGA1UdIwSBmjCBl4AUQULP2HEhT3cnH4i6
G5NDTDwYDVQQDEwhSVC1BQzY4VTEhMB8G
CSqGSIb3DQEJARYSbWVAbXlob3N0Lm15ZG9tYWluggkA+i65PUtpxJgwEwYDVR0l
BAwwCgYIKwYBBQUHAwIwCwYDVR0PBAQDAgeAMA0GCSqGSIb3DQEBBQUAA4GBAGS/
/e5exM279WS1wNjubQNuDpIeeencT20y13pYxo24NhBaNBwd4kd1pyOm0paTBv9K
CLedOlN6nO/cUOL8OcqtFKwALg1kBWcdE1vviZY2IYnmnmAUHXRaj5O834SagP0t
K8Tt7rYfDt9S5rJgZgG1K3SxckIWMhyr4bCvFn6l
-----END CERTIFICATE-----
</cert>
<key>
-----BEGIN PRIVATE KEY-----
MIICeAIBADANBgkqhkiG9w0BAQEFAASCAmIwggJeAgEAAoGBAL4jANYSsyNbLFem
/iQY+6bTc7ir18QY8cUCdPULmTlYPc1jhUsxty23X1QJz6vc/QuPY0PfRft173cT
sS9DWJh9jzrh6j35Gg/QmuL6mhQdJPdz8fkxzXdlvLtH7hmCS0dAIWfRROm9QTsI
g89zwKZqRO1nVtm7CoiixuD9Q0cfAgMBAAECgYARNcHhnpewX5RH6smeItTEaOdU
k9lX2ponarLOahqoHO2X73zY8ecJnATB/Em6f2o3DgZihIw1
FHbbAkEAmfvwcDptdjyLqFDSIR91GhMjPe3FLQrYwK0iLCQCx91WCfnsHMDlLp+L
/p8x0iybRdCN1lYsb4zVhqdaLprG1QJBAMo4id3MhPPysxKPunCHmIwhiXhjKsdA
UcwAJoIMf3lPEV9JyO4mNpmrN+C4AYh3hlTnadFIS3Aj/HT61M0z5T0CQQDJ3otP
5z3URcD6+W0+7ATspOIxCxJT4FVdUQwZLRA3NXQGLM3Vqt7MMG9PACDR729P45rl
tt3VyMOqWqbGzF70
-----END PRIVATE KEY-----
</key>
resolv-retry infinite
nobind

TOP

係float下加。。。。試下

redirect-gateway
dhcp-option DNS 8.8.8.8
dhcp-option DNS 8.8.4.4

TOP

回覆 6# wall007


   都係一樣

TOP

我都係初哥, 深圳block左PPTP所以改用OpenVPN....

你Router改返用TAP試下。。。不過應該TUN係快d~

TOP

我都凖備换新Router行SSL VPN

TOP

我試過remote 連返去 HK router 改用 TAP 但拎完個 config 係connect 時見佢connecting  status 連返去時果唔係我香港 router 個 IP 黎, 根本連唔到, 可能要等過幾時返香港先再搞

我更係初哥中既初哥, 好多設定根本唔知咩黎
BTW, PPTP 我係深圳仲用到

TOP