我家裡有一個在 Windows 10 機器上運行的 OpenVPN 伺服器。伺服器位於設定了靜態路由的 CISCO 路由器後方。它工作完美,可以重定向互聯網流量,處理多個客戶端,並且可以從 Windows 用戶端進行種子下載。
然而,我剛剛嘗試從 Linux 用戶端(Elementary OS)下載 torrent,當 torrent 用戶端嘗試連線時,VPN 就停止運作了。我嘗試了 qBitTorrent 和 Transmission,它們在 Windows 用戶端上完美運作。發生這種情況後,任何新客戶端都無法連接,並且所有現有客戶端都會失去連接。解決此問題的唯一方法是重新啟動 OpenVPN 伺服器。
我認為這是防火牆/SPI 問題,所以我在路由器中禁用了這兩個問題,但這沒有任何改變。我還嘗試更改客戶端上的 MTU 設定。這是我的完整伺服器配置:
dev tun
proto udp
port 1155
ca ca.crt
cert server.crt
key server.key
dh dh4096.pem
duplicate-cn
topology subnet
server 10.8.0.0 255.255.255.0
push "dhcp-option DNS 8.8.8.8"
push "dhcp-option DNS 8.8.4.4"
push "redirect-gateway def1"
client-to-client
keepalive 10 120
remote-cert-tls client
tls-version-min 1.2
tls-auth ta.key 0
cipher AES-256-CBC
auth SHA256
auth-nocache
comp-lzo
persist-key
persist-tun
status openvpn-status.log
status-version 3
verb 3
任何想法將不勝感激!
編輯1:斷開 OpenVPN 伺服器的連線(從 GUI)會導致其掛起,直到強制停止。
編輯2:連線停止時,伺服器日誌的詳細程度為 6:
Fri Feb 23 18:16:14 2018 {profile-name}/{client-ip} UDPv6 WRITE [38] to [AF_INET6]::ffff:{client-ip}:57317: P_DATA_V1 kid=0 DATA len=37
Fri Feb 23 18:16:24 2018 {profile-name}/{client-ip} UDPv6 WRITE [38] to [AF_INET6]::ffff:{client-ip}:57317: P_DATA_V1 kid=0 DATA len=37
Fri Feb 23 18:16:35 2018 {profile-name}/{client-ip} UDPv6 WRITE [38] to [AF_INET6]::ffff:{client-ip}:57317: P_DATA_V1 kid=0 DATA len=37
Fri Feb 23 18:16:45 2018 {profile-name}/{client-ip} UDPv6 WRITE [38] to [AF_INET6]::ffff:{client-ip}:57317: P_DATA_V1 kid=0 DATA len=37
Fri Feb 23 18:16:55 2018 {profile-name}/{client-ip} UDPv6 WRITE [38] to [AF_INET6]::ffff:{client-ip}:57317: P_DATA_V1 kid=0 DATA len=37
Fri Feb 23 18:17:05 2018 {profile-name}/{client-ip} UDPv6 WRITE [38] to [AF_INET6]::ffff:{client-ip}:57317: P_DATA_V1 kid=0 DATA len=37
客戶端日誌:
Fri Feb 23 18:20:01 2018 us=463024 TUN READ [76]
Fri Feb 23 18:20:01 2018 us=463061 UDP WRITE [101] to [AF_INET]{server-ip}:{port}: P_DATA_V2 kid=0 DATA len=100
Fri Feb 23 18:20:01 2018 us=535515 TUN READ [132]
Fri Feb 23 18:20:01 2018 us=535573 UDP WRITE [157] to [AF_INET]{server-ip}:{port}: P_DATA_V2 kid=0 DATA len=156
Fri Feb 23 18:20:06 2018 us=535976 TUN READ [93]
Fri Feb 23 18:20:06 2018 us=536044 UDP WRITE [118] to [AF_INET]{server-ip}:{port}: P_DATA_V2 kid=0 DATA len=117
Fri Feb 23 18:20:09 2018 us=925150 UDP READ [38] from [AF_INET]{server-ip}:{port}: P_DATA_V1 kid=0 DATA len=37
Fri Feb 23 18:20:11 2018 us=536196 TUN READ [132]
Fri Feb 23 18:20:11 2018 us=536258 UDP WRITE [157] to [AF_INET]{server-ip}:{port}: P_DATA_V2 kid=0 DATA len=156
Fri Feb 23 18:20:11 2018 us=712774 TUN READ [76]
Fri Feb 23 18:20:11 2018 us=712829 UDP WRITE [101] to [AF_INET]{server-ip}:{port}: P_DATA_V2 kid=0 DATA len=100