|
还有一个问题,我弄了一个OPENvirtual**的服务器,配置如下- script-security 2
- up '/tmp/mnt/sda1/openvirtual**/virtual**up.sh openvirtual**'
- down '/tmp/mnt/sda1/openvirtual**/virtual**down.sh openvirtual**'
- client
- resolv-retry infinite
- nobind
- persist-key
- persist-tun
- ca /tmp/mnt/sda1/openvirtual**/ca.crt
- cert /tmp/mnt/sda1/openvirtual**/client.crt
- key /tmp/mnt/sda1/openvirtual**/client.key
- tls-auth /tmp/mnt/sda1/openvirtual**/ta.key
- auth-user-pass /tmp/mnt/sda1/openvirtual**/password.txt
- ns-cert-type server
- comp-lzo
- verb 3
- log-append /tmp/mnt/sda1/openvirtual**/openvirtual**.log
复制代码 无法实现国内国外分流,一打开国外的网站就访问不了
看日志好像挺正常的,帮忙分析一下吧- Tue Mar 1 12:55:06 2011 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
- Tue Mar 1 12:55:06 2011 Re-using SSL/TLS context
- Tue Mar 1 12:55:06 2011 LZO compression initialized
- Tue Mar 1 12:55:06 2011 Control Channel MTU parms [ L:1542 D:166 EF:66 EB:0 ET:0 EL:0 ]
- Tue Mar 1 12:55:06 2011 Data Channel MTU parms [ L:1542 D:1450 EF:42 EB:135 ET:0 EL:0 AF:3/1 ]
- Tue Mar 1 12:55:06 2011 Socket Buffers: R=[112640->131072] S=[112640->131072]
- Tue Mar 1 12:55:06 2011 UDPv4 link local: [undef]
- Tue Mar 1 12:55:06 2011 UDPv4 link remote: 64.71.159.226:9841
- Tue Mar 1 12:55:06 2011 TLS: Initial packet from 64.71.159.226:9841, sid=172b473e 67bb8dc3
- Tue Mar 1 12:55:06 2011 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
- Tue Mar 1 12:55:14 2011 VERIFY OK: depth=1, /C=US/ST=CA/L=SanFrancisco/O=https://yegle.net/openvirtual**//CN=yegle_openvirtual**/Email=me@yegle.net
- Tue Mar 1 12:55:14 2011 VERIFY OK: nsCertType=SERVER
- Tue Mar 1 12:55:14 2011 VERIFY OK: depth=0, /C=US/ST=CA/L=SanFrancisco/O=https://yegle.net/openvirtual**//CN=server/Email=me@yegle.net
- Tue Mar 1 12:56:05 2011 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
- Tue Mar 1 12:56:05 2011 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
- Tue Mar 1 12:56:05 2011 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
- Tue Mar 1 12:56:05 2011 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
- Tue Mar 1 12:56:05 2011 Control Channel: TLSv1, cipher TLSv1/SSLv3 EDH-RSA-DES-CBC3-SHA, 1024 bit RSA
- Tue Mar 1 12:56:05 2011 [server] Peer Connection Initiated with 64.71.159.226:9841
- Tue Mar 1 12:56:07 2011 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
- Tue Mar 1 12:56:07 2011 PUSH: Received control message: 'PUSH_REPLY,dhcp-option DNS 74.82.42.42,route-gateway 10.12.0.1,topology subnet,ping 10,ping-restart 120,ifconfig 10.12.0.13 255.255.255.0'
- Tue Mar 1 12:56:07 2011 OPTIONS IMPORT: timers and/or timeouts modified
- Tue Mar 1 12:56:07 2011 OPTIONS IMPORT: --ifconfig/up options modified
- Tue Mar 1 12:56:07 2011 OPTIONS IMPORT: route-related options modified
- Tue Mar 1 12:56:07 2011 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
- Tue Mar 1 12:56:07 2011 TUN/TAP device tun11 opened
- Tue Mar 1 12:56:07 2011 TUN/TAP TX queue length set to 100
- Tue Mar 1 12:56:07 2011 /sbin/ifconfig tun11 10.12.0.13 netmask 255.255.255.0 mtu 1500 broadcast 10.12.0.255
- Tue Mar 1 12:56:07 2011 /tmp/mnt/sda1/openvirtual**/virtual**up.sh openvirtual** tun11 1500 1542 10.12.0.13 255.255.255.0 init
- + export PATH=/bin:/sbin:/usr/sbin:/usr/bin
- + LOG=/tmp/autoddvirtual**.log
- + LOCK=/tmp/autoddvirtual**.lock
- + PID=14741
- + EXROUTEDIR=/jffs/exroute.d
- + INFO=[INFO#14741]
- + DEBUG=[DEBUG#14741]
- + ERROR=[ERROR#14741]
- + date +%d/%b/%Y:%H:%M:%S
- + echo [INFO#14741] 01/Mar/2011:12:56:07 virtual**up.sh started
- + [ -f /tmp/autoddvirtual**.lock ]
- + break
- + [ -f /tmp/autoddvirtual**.lock ]
- + date +%d/%b/%Y:%H:%M:%S
- + echo [INFO#14741] 01/Mar/2011:12:56:07 virtual**up
- + nvram get wan_gateway
- + OLDGW=192.168.1.1
- + nvram get openvirtual**cl_remoteip
- + virtual**SRV=
- + OPENvirtual**DEV=tun11
- + ifconfig tun11
- + grep -Eo P-t-P:([0-9.]+)
- + cut -d: -f2
- + virtual**GW=10.12.0.13
- + [ 192.168.1.1 == ]
- + echo [INFO#14741] OLDGW is 192.168.1.1
- [INFO#14741] OLDGW is 192.168.1.1
- + date +%d/%b/%Y:%H:%M:%S
- + echo [INFO#14741] 01/Mar/2011:12:56:07 make gw 192.168.1.1
- + route add -host gw 192.168.1.1
- route: resolving gw
- + date +%d/%b/%Y:%H:%M:%S
- + echo [INFO#14741] 01/Mar/2011:12:56:08 delete default gw 192.168.1.1
- + route del default gw 192.168.1.1
- + date +%d/%b/%Y:%H:%M:%S
- + echo [INFO#14741] 01/Mar/2011:12:56:08 add default gw 10.12.0.13
- + route add default gw 10.12.0.13
- + date +%d/%b/%Y:%H:%M:%S
- + echo [INFO#14741] 01/Mar/2011:12:56:08 adding the static routes, this may take a while.
- + route add -net 1.12.0.0/14 gw 192.168.1.1
- ...............................
- + date +%d/%b/%Y:%H:%M:%S
- + echo [INFO#14741] 01/Mar/2011:12:56:26 preparing the exceptional routes
- + nvram get exroute_enable
- + [ -eq 1 ]
- [: 1: unknown operand
- + date +%d/%b/%Y:%H:%M:%S
- + echo [INFO#14741] 01/Mar/2011:12:56:26 exceptional routes disabled.
- + date +%d/%b/%Y:%H:%M:%S
- + echo [INFO#14741] 01/Mar/2011:12:56:26 exceptional routes features detail: http://goo.gl/fYfJ
- + echo [INFO#14741] final check the default gw
- [INFO#14741] final check the default gw
- + true
- + route -n
- + grep ^0.0.0.0
- + awk {print $2}
- + GW=10.12.0.13
- + echo [DEBUG#14741] my current gw is 10.12.0.13
- [DEBUG#14741] my current gw is 10.12.0.13
- + [ 10.12.0.13 == 192.168.1.1 ]
- + break
- + echo [INFO#14741] static routes added
- [INFO#14741] static routes added
- + date +%d/%b/%Y:%H:%M:%S
- + echo [INFO#14741] 01/Mar/2011:12:56:27 virtual**up.sh ended
- + rm -f /tmp/autoddvirtual**.lock
- Tue Mar 1 12:56:27 2011 Initialization Sequence Completed
复制代码 |
|