Óñòàíîâêà è íàñòðîéêà VPN/OpenVPN ÷åðåç 3G/4G (Yota) ìîäåì

[KMP]

Ïîìîãèòå íàñòðîèòü DIR-320. ×åðåç âåá-ìîðäó íàñòðîèë 3g êàê wan ñîåäèíåíèå ïî-óìîë÷àíèþ, çàïóñêàåòñÿ, ðàáîòàåò. Ïîñëå âðó÷íóþ ñ ðîóòåðà çàïóñêàþ pptp ñîåäèíåíèå
pppd file /usr/local/root/russianproxy

íàñòðîéêè ñàìîãî ôàéëà pppd

noauth refuse-eap
user 'sdfdsfs'
password 'sdfsdf'
plugin pptp.so
pptp_server pptp-l2tp-vpn-russia-1.atomintersoft.com
nomppe-stateful -mppc mtu 1400
maxfail 0
persist
ipcp-accept-remote ipcp-accept-local noipdefault
defaultroute
usepeerdns
ktune
default-asyncmap nopcomp noaccomp
novj nobsdcomp nodeflate
lcp-echo-interval 10
lcp-echo-failure 6
unit 0

 ñèñòåìå ïîñëå óñòàíîâêè pptp ñîåäèíåíèÿ íå ìåíÿþòñÿ dns è øëþç ïî-óìîë÷àíèþ, õîòÿ â íàñòðîéêàõ ýòî çàäàíî. Êàê ñäåëàòü ÷òîáû pptp è âûäàííûå åìó dns ñòàëè ïî-óìîë÷àíèþ â ñèñòåìå è íåò øåë ÷åðåç íåãî?

Òàáëèöà ìàðøðóòèçàöèè

Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
10.64.64.64 * 255.255.255.255 UH 0 0 0 ppp0
212.24.51.1 * 255.255.255.255 UH 0 0 0 ppp1
192.168.1.0 * 255.255.255.0 U 0 0 0 br0
127.0.0.0 * 255.0.0.0 U 0 0 0 lo
default 10.64.64.64 0.0.0.0 UG 0 0 0 ppp0

System.log

Jan 1 03:00:18 pppd[153]: pppd 2.4.5 started by admin, uid 0
Jan 1 03:00:20 pppd[153]: Serial connection established.
Jan 1 03:00:20 pppd[153]: Using interface ppp0
Jan 1 03:00:20 pppd[153]: Connect: ppp0 <--> /dev/usb/tts/0
Jan 1 03:00:20 kernel: sda: Unit Not Ready, sense:
Jan 1 03:00:20 kernel: Info fld=0x0, Current 00:00: sns = f0 2
Jan 1 03:00:20 kernel: ASC=3a ASCQ= 0
Jan 1 03:00:20 kernel: Raw sense data:0xf0 0x00 0x02 0x00 0x00 0x00 0x00 0x0a 0x00 0x00 0x00 0x00 0x3a 0x00 0x00 0x00 0x00 0x00
Jan 1 03:00:21 kernel: sda : READ CAPACITY failed.
Jan 1 03:00:21 kernel: sda : status = 1, message = 00, host = 0, driver = 08
Jan 1 03:00:21 kernel: Info fld=0x0, Current sd00:00: sns = f0 2
Jan 1 03:00:21 kernel: ASC=3a ASCQ= 0
Jan 1 03:00:21 kernel: Raw sense data:0xf0 0x00 0x02 0x00 0x00 0x00 0x00 0x0a 0x00 0x00 0x00 0x00 0x3a 0x00 0x00 0x00 0x00 0x00
Jan 1 03:00:21 kernel: sda: Write Protect is off
Jan 1 03:00:21 kernel: /dev/scsi/host0/bus0/target0/lun0: I/O error: dev 08:00, sector 0
Jan 1 03:00:21 kernel: I/O error: dev 08:00, sector 0
Jan 1 03:00:21 kernel: unable to read partition table
Jan 1 03:00:21 kernel: I/O error: dev 08:00, sector 0
Jan 1 03:00:22 pppd[153]: Could not determine remote IP address: defaulting to 10.64.64.64
Jan 1 03:00:22 pppd[153]: local IP address 10.209.89.212
Jan 1 03:00:22 pppd[153]: remote IP address 10.64.64.64
Jan 1 03:00:22 pppd[153]: primary DNS address 83.149.19.123
Jan 1 03:00:22 pppd[153]: secondary DNS address 83.149.19.124
Jan 1 03:00:23 dnsmasq[74]: read /etc/hosts - 2 addresses
Jan 1 03:00:23 dnsmasq[74]: using nameserver 83.149.19.124#53
Jan 1 03:00:23 dnsmasq[74]: using nameserver 83.149.19.123#53
Jan 1 03:00:23 3G USB Modem: connected to ISP
Jan 1 03:00:23 INADYN[167]: Started 'INADYN version 1.96.3' - dynamic DNS updater.
Jan 1 03:00:23 INADYN[167]: IP read from cache file is '83.149.21.2'. No update required.
Jan 1 03:00:24 INADYN[167]: I:IP address for alias 'klyaksa34.dyndns.org' needs update to '85.26.234.87'
Jan 1 03:00:27 INADYN[167]: I:Alias 'klyaksa34.dyndns.org' to IP '85.26.234.87' updated successful.
Jan 1 03:00:27 ddns: ddns update ok
Mar 1 14:48:05 ntp client: Synchronizing time with pool.ntp.org...
Mar 1 14:48:07 pppd[153]: System time change detected.
Mar 1 14:48:26 dropbear[176]: Child connection from 192.168.1.173:1166
Mar 1 14:48:32 dropbear[176]: password auth succeeded for 'admin' from 192.168.1.173:1166
Mar 1 14:48:48 pptp[178]: Plugin pptp.so loaded.
Mar 1 14:48:48 pptp[178]: PPTP plugin version 0.8.5 compiled for pppd-2.4.5, linux-2.4.37.11
Mar 1 14:48:48 pptp[179]: pppd 2.4.5 started by admin, uid 0
Mar 1 14:48:51 pptp[179]: Couldn't allocate PPP unit 0 as it is already in use
Mar 1 14:48:51 pptp[179]: Using interface ppp1
Mar 1 14:48:51 pptp[179]: Connect: ppp1 <--> pptp (217.23.137.56)
Mar 1 14:48:52 pptp[181]: Non-zero Async Control Character Maps are not supported!
Mar 1 14:48:52 pptp[179]: CHAP authentication succeeded
Mar 1 14:48:52 kernel: mppe_decomp_alloc: options rejected: o[0]=12, o[1]=06, o[2]=01, o[3]=00, o[4]=00, o[5]=00
Mar 1 14:48:53 pptp[179]: not replacing existing default route via 10.64.64.64
Mar 1 14:48:53 pptp[179]: local IP address 212.24.51.40
Mar 1 14:48:53 pptp[179]: remote IP address 212.24.51.1
Mar 1 14:48:53 pptp[179]: primary DNS address 217.23.130.1
Mar 1 14:48:53 pptp[179]: secondary DNS address 217.23.142.1
Mar 1 14:48:53 pptp[179]: MPPE 128-bit stateless compression enabled

[2dfx]

212.24.51.1 * 255.255.255.255 UH 0 0 0 ppp1
Mar 1 14:48:53 pptp[179]: local IP address 212.24.51.40

Ó òåáÿ íåìíîãî ëîã ñ òàáëèöåé ìàðøðóòèçàöèè ðàñõîäèòñÿ...

Òàê æå îáðàòè âíèìàíèå íà:

Mar 1 14:48:53 pptp[179]: not replacing existing default route via 10.64.64.64

Ïîïðîáóé ðóêàìè ñäåëàòü òàê:
ip route replace default via ##IP íà PPP1 èíòåðôåéñå##

[Selih]

×åðåç âåá-ìîðäó íàñòðîèë 3g êàê wan ñîåäèíåíèå ïî-óìîë÷àíèþ, çàïóñêàåòñÿ, ðàáîòàåò. Ïîñëå âðó÷íóþ ñ ðîóòåðà çàïóñêàþ pptp ñîåäèíåíèå
pppd file /usr/local/root/russianproxy

íàñòðîéêè ñàìîãî ôàéëà pppd

noauth refuse-eap
user 'sdfdsfs'
password 'sdfsdf'
plugin pptp.so
pptp_server pptp-l2tp-vpn-russia-1.atomintersoft.com
nomppe-stateful -mppc mtu 1400
maxfail 0
persist
ipcp-accept-remote ipcp-accept-local noipdefault
defaultroute
usepeerdns
ktune
default-asyncmap nopcomp noaccomp
novj nobsdcomp nodeflate
lcp-echo-interval 10
lcp-echo-failure 6
unit 0

Ïðîáóþ ñäåëàòü òîæå ñàìîå, ïîëó÷àþ â ëîãå
pptp failed to create pptp socket (address family not supported by protocol)
Ïðîøèâêà WL500gp-1.9.2.7-rtn-r5066.trx
×òî ñäåëàòü, ÷òîá çàðàáîòàë êëèåíò ÷åðåç 3g?

[theMIROn]

Ïðîáóþ ñäåëàòü òîæå ñàìîå, ïîëó÷àþ â ëîãå
pptp failed to create pptp socket (address family not supported by protocol)
Ïðîøèâêà WL500gp-1.9.2.7-rtn-r5066.trx
×òî ñäåëàòü, ÷òîá çàðàáîòàë êëèåíò ÷åðåç 3g?

insmod pppox
insmod pptp

[Selih]

insmod pppox
insmod pptp

Ñïàñèáî ïîìîãëî.
Ïðèøëîñü óáðàòü èç êîíôèãà

nomppe-stateful -mppc mtu 1400

èíà÷å íå ñîåäèíÿë.
Ïîñëå ïðîâåðêè ñîçäàë post-boot, òåïåðü âñå ïîäíèìàåòñÿ ñàìî.
Ïîäêëþ÷àåòñÿ è ïîëó÷àåò ïî DHCP àäðåñ

Jan 1 00:00:27 USB Modem: connected to ISP
Jan 1 00:00:40 pptp[363]: Couldn't allocate PPP unit 0 as it is already in use
Jan 1 00:00:40 pptp[363]: Using interface ppp1
Jan 1 00:00:40 pptp[363]: Connect: ppp1 <--> pptp (xx.xxx.xxx.xxx)
Jan 1 00:00:43 pptp[363]: CHAP authentication succeeded
Jan 1 00:00:44 pptp[363]: MPPC/MPPE 128-bit stateful compression enabled
Jan 1 00:00:47 pptp[363]: not replacing existing default route via 10.64.64.64
Jan 1 00:00:47 pptp[363]: local IP address 192.168.11.201
Jan 1 00:00:47 pptp[363]: remote IP address 192.168.11.200
Jan 1 00:00:47 pptp[363]: primary DNS address 192.168.11.1
Jan 1 00:00:47 pptp[363]: secondary DNS address 192.168.11.1

Íî åãî âñå åùå íå âèäíî èç âíóòðåííåé ñåòè, à ñ íåãî è èç-çà íåãî âíóòðåííþþ ñåòü.
Ïîäñêàæèòå, ÷òî íóæíî íàïèñàòü íà íåì â post-firewall?

PS Èçâèíÿþñü çà ãëóïûå âîïðîñû, ÿ åùå ñîâñåì "çåëåíûé"

[theMIROn]

Ïîñëå ïðîâåðêè ñîçäàë post-boot, òåïåðü âñå ïîäíèìàåòñÿ ñàìî.

ñîâåòóþ ïðîïèñàòü êàêîé-íèòü ôèêñèðîâàííûé "unit N", ÷òîáû èíòåðôåéñ ñîçäàâàëñÿ âèäà pppN

Íî åãî âñå åùå íå âèäíî èç âíóòðåííåé ñåòè, à ñ íåãî è èç-çà íåãî âíóòðåííþþ ñåòü.
Ïîäñêàæèòå, ÷òî íóæíî íàïèñàòü íà íåì â post-firewall?

iptables-save ïîêàæåò ñóùåñòâóþùèå ïðàâèëà, íà èõ áàçå äëÿ pppN èíòåðôåéñà íóæíî áóäåò ïðîïèñàòü ðàçðåøàþùèå

[icCE]

Ïîäñêàæèòå, ìîæíî ëè êàê òî óêàçàòü äëÿ VPN ñîåäèíåíèÿ, ÷òî áû îí íå ñòàâèë default route ñâîé ? íóæíî èìåííî âõîäèòü â ñåòü óäàëåííóþ, à íå ïîëó÷àòü èíòåðíåò

[VicSer]

Ïîäñêàæèòå, ìîæíî ëè êàê òî óêàçàòü äëÿ VPN ñîåäèíåíèÿ, ÷òî áû îí íå ñòàâèë default route ñâîé ? íóæíî èìåííî âõîäèòü â ñåòü óäàëåííóþ, à íå ïîëó÷àòü èíòåðíåò

À åñëè äîáàâèòü â Additional pppd options - nodefaultroute ?

[alting]

Çäðàâñòâóéòå!
Ïðèîáðåë ñèå ÷óäî, òåïåðü ïûòàþñü ñäåëàòü ïîäêëþ÷åíèå ê öåíòðàëüíîìó îôèñó.
OpenVPN áàíàëüíî íå âëåçàåò â îñíîâíóþ ïàìÿòü
Êàþñü, íå ïîäóìàë, âçÿë áû Wl500gp ñ äâóìÿ USB ïîðòàìè, íå áûëî áû ïå÷àëè.
Åäèíñòâåííûé USB ïîðò, ïîíÿòíîå äåëî, çàíèìàåò ñâèñòîê
×òî áû ïðèäóìàòü â òàêîé ñèòóàöèè?
Ìîæåò, pptp êëèåíòà òóäà çàïèõíóòü êàê-òî ìîæíî íîãàìè? Èëè áåç âàðèàíòîâ?
Ìîæåò, ïîñòàâèòü usb õàá? Íî, äóìàþ, íóæåí áóäåò àêòèâíûé, ïîñêîëüêó è ôëåøêà è ñâèñòîê òðåáóþò ïèòàíèÿ...
À ó ìåíÿ, ê ïðèìåðó, íà Wl500gp àêòèâíûé õàá íîðìàëüíî ðàáîòàë, à íà RT-N16 êàìåðà îòêàçûâàåòñÿ âèäåòñÿ ÷åðåç õàá...
Êîëëåãè, ïîñîâåòóéòå, ïîæàëóéñòà.

[al37919]

ïåðåïàÿéòå ôëàø íà 8Ìá, ëèáî ïîïðîáóéòå ïîñòàâèòü ïàññèâíûé õàá --- ìîæåò âçëåòèò?

[alting]

ïåðåïàÿéòå ôëàø íà 8Ìá, ëèáî ïîïðîáóéòå ïîñòàâèòü ïàññèâíûé õàá --- ìîæåò âçëåòèò?

Ïåðåïàÿòü íà 8 ? À êòî-òî ïðîáîâàë èìåííî íà DIR320 òàêóþ îïåðàöèþ ïðîâîäèòü? È, äóìàþ, 8 íå õâàòèò, íàäî 16. Èëè ÿ îøèáàþñü?

[al37919]

16 íå âûéäåò, äà è íå íóæíî, ò.ê. âî âñòðîåííîì ôëåøå squashfs ñî ñæàòèåì. Íàñ÷åò ïåðåïàéêè åñòü ñîîòâåòñòâóþùàÿ òåìà è ñîîòâåòñòâóþùèå ñïåöèàëèñòû http://wl500g.info/showthread.php?t=7523

[alting]

16 íå âûéäåò, äà è íå íóæíî, ò.ê. âî âñòðîåííîì ôëåøå squashfs ñî ñæàòèåì. Íàñ÷åò ïåðåïàéêè åñòü ñîîòâåòñòâóþùàÿ òåìà è ñîîòâåòñòâóþùèå ñïåöèàëèñòû http://wl500g.info/showthread.php?t=7523

Ñïàñèáî áîëüøîå, ïîïðîáóþ!

[Graf-dubna]

Ïîäñêàæèòå ïëèç,
Êàê ïîñòàâèòü OpenVPN íà DIR320. ß òàê ïîíèìàþ, ÷òî îí â îñíîâíóþ ïàìÿòü íå âëàçèåò.
Êàê åãî óñòàíîâèòü íà ôëåøêó?
Íà ôëåøêå 2à ðàçäåëà.
SWAP - 256Ì è
ext3 - 7.5 Ãèãîâ --- /opt

 ëèíóõå íå àëë¸... ñêàæèòå ÷àéíèêó ÷òî íà ÷òî èçìåíèòü ÷òîá íà ôëåøêó ïîñòàâèòü?

[FilimoniC]

Ïîäñêàæèòå ïëèç,
Êàê ïîñòàâèòü OpenVPN íà DIR320. ß òàê ïîíèìàþ, ÷òî îí â îñíîâíóþ ïàìÿòü íå âëàçèåò.
Êàê åãî óñòàíîâèòü íà ôëåøêó?
Íà ôëåøêå 2à ðàçäåëà.
SWAP - 256Ì è
ext3 - 7.5 Ãèãîâ --- /opt

 ëèíóõå íå àëë¸... ñêàæèòå ÷àéíèêó ÷òî íà ÷òî èçìåíèòü ÷òîá íà ôëåøêó ïîñòàâèòü?

òî÷íî òàê æå, îò òîãî, ÷òî /opt ó âàñ íà äðóãîì äèñêå, íè÷åãî ïðèíöèïèàëüíî íå ìåíÿåòñÿ