저는 OpenVPN 2.1.1을 Windows XP x86 SP3 및 Windows 7 x64 클라이언트와 함께 OpenVPN 2.1-rc15가 포함된 Endian Community 2.4.0 상자에 사용하고 있습니다.
두 연결 모두 제대로 작동하지만 녹색 LAN의 리소스에 액세스하는 것은 Windows 7에서는 작동하지 않으며 XP에서는 작동합니다.
따라서 VPN을 통해 푸시된 네트워크의 호스트를 핑할 수 있지만 Windows7에서는 방화벽 녹색 IP 주소에만 핑을 보냅니다.
route-method exe편집: / 트릭 을 시도했지만 route-delay 2문제가 해결되지 않습니다.
Endian 구성에 대한 자세한 내용(2.2와 2.4를 모두 시도했지만 둘 다 실패함):
빨간색=192.168.100.25;192.168.71.25
녹색=176.16.41.1
주황색=176.16.141.1
기본적으로 OpenVPN 서버로 실행되어 빨간색으로 서비스를 제공하고 녹색에 대한 액세스를 제공합니다.
Windows XP에서는 기본값이 있습니다.OpenVPN 2.1.1 설치, OpenVPN GUI(설치에 포함됨)를 사용하면 모든 것이 멋집니다.
Windows 7 x64에서도 동일하게 실행하지만 이제는 OpenVPN GUI를 관리자로 사용합니다.
녹색 게이트웨이에만 ping을 수행할 수 있고 다른 시스템에는 ping을 수행할 수 없습니다.
윈도우 7 로그:
Tue Aug 10 18:50:15 2010 OpenVPN 2.1.1 i686-pc-mingw32 [SSL] [LZO2] [PKCS11] built on Dec 11 2009
Tue Aug 10 18:50:23 2010 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Tue Aug 10 18:50:23 2010 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Tue Aug 10 18:50:24 2010 LZO compression initialized
Tue Aug 10 18:50:24 2010 Control Channel MTU parms [ L:1576 D:140 EF:40 EB:0 ET:0 EL:0 ]
Tue Aug 10 18:50:24 2010 Data Channel MTU parms [ L:1576 D:1450 EF:44 EB:135 ET:32 EL:0 AF:3/1 ]
Tue Aug 10 18:50:24 2010 Local Options hash (VER=V4): '31fdf004'
Tue Aug 10 18:50:24 2010 Expected Remote Options hash (VER=V4): '3e6d1056'
Tue Aug 10 18:50:24 2010 Attempting to establish TCP connection with 192.168.71.25:1194
Tue Aug 10 18:50:24 2010 TCP connection established with 192.168.71.25:1194
Tue Aug 10 18:50:24 2010 Socket Buffers: R=[8192->8192] S=[8192->8192]
Tue Aug 10 18:50:24 2010 TCPv4_CLIENT link local: [undef]
Tue Aug 10 18:50:24 2010 TCPv4_CLIENT link remote: 192.168.71.25:1194
Tue Aug 10 18:50:24 2010 TLS: Initial packet from 192.168.71.25:1194, sid=165d50de 52c0ecba
Tue Aug 10 18:50:24 2010 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Tue Aug 10 18:50:24 2010 VERIFY OK: depth=1, /C=IT/O=efw/CN=efw_CA
Tue Aug 10 18:50:24 2010 VERIFY OK: depth=0, /C=IT/O=efw/CN=127.0.0.1
Tue Aug 10 18:50:24 2010 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
Tue Aug 10 18:50:24 2010 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Tue Aug 10 18:50:24 2010 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
Tue Aug 10 18:50:24 2010 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Tue Aug 10 18:50:24 2010 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
Tue Aug 10 18:50:24 2010 [127.0.0.1] Peer Connection Initiated with 192.168.71.25:1194
Tue Aug 10 18:50:26 2010 SENT CONTROL [127.0.0.1]: 'PUSH_REQUEST' (status=1)
Tue Aug 10 18:50:27 2010 PUSH: Received control message: 'PUSH_REPLY,ifconfig 172.16.41.209 255.255.255.0,dhcp-option DOMAIN pluimers.com,ping-restart 30,ping 8,route-gateway 172.16.41.1,route-gateway 172.16.41.1'
Tue Aug 10 18:50:27 2010 OPTIONS IMPORT: timers and/or timeouts modified
Tue Aug 10 18:50:27 2010 OPTIONS IMPORT: --ifconfig/up options modified
Tue Aug 10 18:50:27 2010 OPTIONS IMPORT: route-related options modified
Tue Aug 10 18:50:27 2010 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Tue Aug 10 18:50:27 2010 TAP-WIN32 device [Local Area Connection 2] opened: \\.\Global\{F3F5E8A1-1797-4FA8-902E-3895A2163148}.tap
Tue Aug 10 18:50:27 2010 TAP-Win32 Driver Version 9.6
Tue Aug 10 18:50:27 2010 TAP-Win32 MTU=1500
Tue Aug 10 18:50:27 2010 Notified TAP-Win32 driver to set a DHCP IP/netmask of 172.16.41.209/255.255.255.0 on interface {F3F5E8A1-1797-4FA8-902E-3895A2163148} [DHCP-serv: 172.16.41.0, lease-time: 31536000]
Tue Aug 10 18:50:27 2010 Successful ARP Flush on interface [34] {F3F5E8A1-1797-4FA8-902E-3895A2163148}
Tue Aug 10 18:50:32 2010 TEST ROUTES: 0/0 succeeded len=-1 ret=1 a=0 u/d=up
Tue Aug 10 18:50:32 2010 Initialization Sequence Completed[/code]
Windows 7 라우팅 테이블:
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.71.1 192.168.71.160 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
169.254.0.0 255.255.0.0 On-link 169.254.100.145 276
169.254.100.145 255.255.255.255 On-link 169.254.100.145 276
169.254.255.255 255.255.255.255 On-link 169.254.100.145 276
172.16.41.0 255.255.255.0 On-link 172.16.41.209 286
172.16.41.209 255.255.255.255 On-link 172.16.41.209 286
172.16.41.255 255.255.255.255 On-link 172.16.41.209 286
192.168.71.0 255.255.255.0 On-link 192.168.71.160 276
192.168.71.160 255.255.255.255 On-link 192.168.71.160 276
192.168.71.255 255.255.255.255 On-link 192.168.71.160 276
192.168.237.0 255.255.255.0 On-link 192.168.237.1 276
192.168.237.1 255.255.255.255 On-link 192.168.237.1 276
192.168.237.255 255.255.255.255 On-link 192.168.237.1 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.71.160 276
224.0.0.0 240.0.0.0 On-link 169.254.100.145 276
224.0.0.0 240.0.0.0 On-link 192.168.237.1 276
224.0.0.0 240.0.0.0 On-link 172.16.41.209 286
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.71.160 276
255.255.255.255 255.255.255.255 On-link 169.254.100.145 276
255.255.255.255 255.255.255.255 On-link 192.168.237.1 276
255.255.255.255 255.255.255.255 On-link 172.16.41.209 286
===========================================================================
(동일한 시스템에서 실행되는 VMware 워크스테이션의 경로이므로 무시할 수 있습니다: - 192.168.237.0/24 - 169.254.0.0/16 )
Windows XP 로그:
Tue Aug 10 19:01:04 2010 OpenVPN 2.1.1 i686-pc-mingw32 [SSL] [LZO2] [PKCS11] built on Dec 11 2009
Tue Aug 10 19:01:06 2010 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Tue Aug 10 19:01:06 2010 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Tue Aug 10 19:01:07 2010 LZO compression initialized
Tue Aug 10 19:01:07 2010 Control Channel MTU parms [ L:1576 D:140 EF:40 EB:0 ET:0 EL:0 ]
Tue Aug 10 19:01:07 2010 Data Channel MTU parms [ L:1576 D:1450 EF:44 EB:135 ET:32 EL:0 AF:3/1 ]
Tue Aug 10 19:01:07 2010 Local Options hash (VER=V4): '31fdf004'
Tue Aug 10 19:01:07 2010 Expected Remote Options hash (VER=V4): '3e6d1056'
Tue Aug 10 19:01:07 2010 Attempting to establish TCP connection with 192.168.71.25:1194
Tue Aug 10 19:01:07 2010 TCP connection established with 192.168.71.25:1194
Tue Aug 10 19:01:07 2010 Socket Buffers: R=[8192->8192] S=[8192->8192]
Tue Aug 10 19:01:07 2010 TCPv4_CLIENT link local: [undef]
Tue Aug 10 19:01:07 2010 TCPv4_CLIENT link remote: 192.168.71.25:1194
Tue Aug 10 19:01:07 2010 TLS: Initial packet from 192.168.71.25:1194, sid=983b94eb 87732d38
Tue Aug 10 19:01:07 2010 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Tue Aug 10 19:01:07 2010 VERIFY OK: depth=1, /C=IT/O=efw/CN=efw_CA
Tue Aug 10 19:01:07 2010 VERIFY OK: depth=0, /C=IT/O=efw/CN=127.0.0.1
Tue Aug 10 19:01:07 2010 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
Tue Aug 10 19:01:07 2010 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Tue Aug 10 19:01:07 2010 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
Tue Aug 10 19:01:07 2010 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Tue Aug 10 19:01:07 2010 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
Tue Aug 10 19:01:07 2010 [127.0.0.1] Peer Connection Initiated with 192.168.71.25:1194
Tue Aug 10 19:01:09 2010 SENT CONTROL [127.0.0.1]: 'PUSH_REQUEST' (status=1)
Tue Aug 10 19:01:10 2010 PUSH: Received control message: 'PUSH_REPLY,ifconfig 172.16.41.201 255.255.255.0,dhcp-option DOMAIN pluimers.com,ping-restart 30,ping 8,route-gateway 172.16.41.1,route-gateway 172.16.41.1'
Tue Aug 10 19:01:10 2010 OPTIONS IMPORT: timers and/or timeouts modified
Tue Aug 10 19:01:10 2010 OPTIONS IMPORT: --ifconfig/up options modified
Tue Aug 10 19:01:10 2010 OPTIONS IMPORT: route-related options modified
Tue Aug 10 19:01:10 2010 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Tue Aug 10 19:01:10 2010 TAP-WIN32 device [Local Area Connection 3] opened: \\.\Global\{C4752F65-93BA-4DED-A1FE-2633F1481ABF}.tap
Tue Aug 10 19:01:10 2010 TAP-Win32 Driver Version 9.6
Tue Aug 10 19:01:10 2010 TAP-Win32 MTU=1500
Tue Aug 10 19:01:10 2010 Notified TAP-Win32 driver to set a DHCP IP/netmask of 172.16.41.201/255.255.255.0 on interface {C4752F65-93BA-4DED-A1FE-2633F1481ABF} [DHCP-serv: 172.16.41.0, lease-time: 31536000]
Tue Aug 10 19:01:10 2010 Successful ARP Flush on interface [2] {C4752F65-93BA-4DED-A1FE-2633F1481ABF}
Tue Aug 10 19:01:15 2010 TEST ROUTES: 0/0 succeeded len=-1 ret=0 a=0 u/d=down
Tue Aug 10 19:01:15 2010 Route: Waiting for TUN/TAP interface to come up...
Tue Aug 10 19:01:18 2010 TEST ROUTES: 0/0 succeeded len=-1 ret=1 a=0 u/d=up
Tue Aug 10 19:01:18 2010 Initialization Sequence Completed
XP 라우팅 테이블:
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.237.2 192.168.237.128 10
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
172.16.41.0 255.255.255.0 172.16.41.201 172.16.41.201 30
172.16.41.201 255.255.255.255 127.0.0.1 127.0.0.1 30
172.16.255.255 255.255.255.255 172.16.41.201 172.16.41.201 30
192.168.237.0 255.255.255.0 192.168.237.128 192.168.237.128 10
192.168.237.128 255.255.255.255 127.0.0.1 127.0.0.1 10
192.168.237.255 255.255.255.255 192.168.237.128 192.168.237.128 10
224.0.0.0 240.0.0.0 172.16.41.201 172.16.41.201 30
224.0.0.0 240.0.0.0 192.168.237.128 192.168.237.128 10
255.255.255.255 255.255.255.255 172.16.41.201 172.16.41.201 1
255.255.255.255 255.255.255.255 192.168.237.128 192.168.237.128 1
Default Gateway: 192.168.237.2
===========================================================================
무엇이 잘못되었는지 아는 사람이 있나요?
--제로엔
답변1
글쎄, 나도 같은 문제에 직면했다. 파일 공유 활성화, 동일한 작업 그룹 설정 등과 같은 모든 작업을 시도했습니다. 다음 외에는 도움이 되지 않았습니다.
장치 관리자에 여러 개의 네트워크 어댑터가 있는 것으로 나타났습니다. 모두 숨겨져 있으므로 보기를 클릭하고 숨겨진 장치를 활성화해야 합니다.
모두 ...4to6 어댑터와 같은 이름이 지정되었습니다. 이러한 어댑터를 모두 제거하면 재부팅 후 XP 클라이언트와의 파일/프린터 공유 및 네트워킹이 작동하기 시작합니다. 이러한 어댑터가 너무 많으면 모두 제거해야 합니다. 적절한(32비트 또는 64비트 버전) 도구 DEVCON.EXE(Windows 드라이버 키트 - 다운로드 세부 정보: Windows 드라이버 키트 버전 7.1.0의 일부)를 사용하여 수행할 수 있습니다. 자세한 내용은 여기에서 확인할 수 있습니다. DevCon 명령줄 유틸리티는 장치 관리자 대신 작동합니다.
여기에서 이 솔루션을 찾았습니다.http://ryanvictory.com/posts/automating-6to4-adapter-removal-in-windows/
답변2
문제를 해결했습니다. 테스트 케이스 오류였습니다.
Windows XP는 물리적 엔디안 상자에 연결되었습니다.
Windows 7 x64가 가상 엔디안 상자에 연결되었습니다.
가상 상자는 가상 네트워크 스위치를 사용하여 VMware ESX/ESXi에서 실행됩니다.
활성화하는 것을 잊었습니다.무차별 모드그 스위치를 위해.
이를 활성화하면 문제가 해결되었습니다.
--제로엔