Столкнулся с парадоксом
На компе (Open SuSE 12.1) openvpn работает.
На рутере (RT-N16, rtn-r4330) - нет
client.conf
Code:
client
remote 188.64.ххх.ххх 443
proto tcp
dhcp-option DNS 8.8.8.8
redirect-gateway def1
ca ca.crt
cert aaa.crt
key aaa.key
ns-cert-type server
dev tap
resolv-retry infinite
nobind
persist-key
persist-tun
comp-lzo
verb 4
mute 20
Log на рутере
Code:
Thu Jan 1 04:13:06 1970 us=529448 OpenVPN 2.2.2 mipsel-linux-gnu [SSL] [LZO2] [EPOLL] built on Jun 1 2012
Thu Jan 1 04:13:06 1970 us=530217 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Thu Jan 1 04:13:06 1970 us=536822 WARNING: file 'aaa.key' is group or others accessible
Thu Jan 1 04:13:06 1970 us=543222 LZO compression initialized
Thu Jan 1 04:13:06 1970 us=544264 Control Channel MTU parms [ L:1576 D:140 EF:40 EB:0 ET:0 EL:0 ]
Thu Jan 1 04:13:06 1970 us=544801 Socket Buffers: R=[87380->131072] S=[16384->131072]
Thu Jan 1 04:13:06 1970 us=545198 Data Channel MTU parms [ L:1576 D:1450 EF:44 EB:135 ET:32 EL:0 AF:3/1 ]
Thu Jan 1 04:13:06 1970 us=546770 Attempting to establish TCP connection with 188.64.xxx.xxx:443 [nonblock]
Thu Jan 1 04:13:07 1970 us=549443 TCP connection established with 188.64.xxx.xxx:443
Thu Jan 1 04:13:07 1970 us=549690 TCPv4_CLIENT link local: [undef]
Thu Jan 1 04:13:07 1970 us=549944 TCPv4_CLIENT link remote: 188.64.xxx.xxx:443
Thu Jan 1 04:13:07 1970 us=579245 TLS: Initial packet from 188.64.xxx.xxx:443, sid=939bd78b bbfd947d
Thu Jan 1 04:13:08 1970 us=302674 VERIFY ERROR: depth=1, error=certificate is not yet valid: /C=DE/ST=Bayern/L=Gunzenhausen/O=HideME/CN=HideME_CA/emailAddress=feedback@hideme.ru
Thu Jan 1 04:13:08 1970 us=303733 TLS_ERROR: BIO read tls_read_plaintext error: error:14090086:lib(20):func(144):reason(134)
Thu Jan 1 04:13:08 1970 us=303952 TLS Error: TLS object -> incoming plaintext read error
Thu Jan 1 04:13:08 1970 us=304126 TLS Error: TLS handshake failed
Thu Jan 1 04:13:08 1970 us=304967 Fatal TLS error (check_tls_errors_co), restarting
Thu Jan 1 04:13:08 1970 us=305517 TCP/UDP: Closing socket
Thu Jan 1 04:13:08 1970 us=305988 SIGUSR1[soft,tls-error] received, process restarting
Thu Jan 1 04:13:08 1970 us=306223 Restart pause, 5 second(s)
Thu Jan 1 04:13:13 1970 us=308376 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Thu Jan 1 04:13:13 1970 us=308675 Re-using SSL/TLS context
Thu Jan 1 04:13:13 1970 us=308908 LZO compression initialized
и так до бесконечности.
А на компе с теми же 4-мя файлами - VERIFY OK, соединение устанавливается с первой же попытки
opkg list-installed
...
liblzo - 2.05-1
libopenssl - 1.0.1c-1
openvpn - 2.2.2-2
...
Не подскажут ли уважаемые гуру что не так?