Bonjour,
De mon coté j'essaye d'utiliser le NAS comme client VPN pour me connecter au serveur VPN de Giganews dans le but d'utiliser le client newsgroup. J'ai donc suivi ce tuto en changeant deux trois trucs (Giganews n'utilise qu'un certificat et une authentification USER/MDP). J'ai fait ça :
client.conf :
------------
client
dev tun
proto udp
remote eu1.vpn.giganews.com 1194
resolv-retry infinite
nobind
user nobody
group nobody
persist-key
persist-tun
mute-replay-warnings
ca /opt/etc/openvpn/keys/ca.vyprvpn.com.crt
comp-lzo
verb 3
log-append /var/log/openvpn/openvpn.log
status /var/log/openvpn/status.log
auth-nocache
auth-user-pass /opt/etc/openvpn/keys/vyprvpn.user
le fichier vyprvpn.user est composé de 2 lignes :
USER
MDP
les logs me disent ça :
Wed Oct 27 20:36:40 2010 OpenVPN 2.1.3 arm-none-linux-gnueabi [sSL] [LZO2] [EPOLL] built on Aug 31 2010
Wed Oct 27 20:36:40 2010 WARNING: file '/opt/etc/openvpn/keys/vyprvpn.user' is group or others accessible
Wed Oct 27 20:36:40 2010 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Wed Oct 27 20:36:40 2010 LZO compression initialized
Wed Oct 27 20:36:40 2010 Control Channel MTU parms [ L:1542 D:138 EF:38 EB:0 ET:0 EL:0 ]
Wed Oct 27 20:36:40 2010 Socket Buffers: R=[108544->131072] S=[108544->131072]
Wed Oct 27 20:36:40 2010 Data Channel MTU parms [ L:1542 D:1450 EF:42 EB:135 ET:0 EL:0 AF:3/1 ]
Wed Oct 27 20:36:40 2010 Local Options hash (VER=V4): '41690919'
Wed Oct 27 20:36:40 2010 Expected Remote Options hash (VER=V4): '530fdded'
Wed Oct 27 20:36:40 2010 NOTE: UID/GID downgrade will be delayed because of --client, --pull, or --up-delay
Wed Oct 27 20:36:40 2010 UDPv4 link local: [undef]
Wed Oct 27 20:36:40 2010 UDPv4 link remote: 138.199.67.17:1194
Wed Oct 27 20:36:40 2010 TLS: Initial packet from 138.199.67.17:1194, sid=bec05be8 4a1fba4b
Wed Oct 27 20:36:40 2010 VERIFY OK: depth=1, /C=KY/ST=GrandCayman/L=GeorgeTown/O=GoldenFrog-Inc/CN=GoldenFrog-Inc_CA/emailAddress=admin@goldenfrog.com
Wed Oct 27 20:36:41 2010 VERIFY OK: nsCertType=SERVER
Wed Oct 27 20:36:41 2010 VERIFY OK: depth=0, /C=KY/ST=GrandCayman/L=GeorgeTown/O=GoldenFrog-Inc/CN=eu1.vpn.giganews.com/emailAddress=admin@goldenfrog.com
Wed Oct 27 20:36:44 2010 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
Wed Oct 27 20:36:44 2010 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Wed Oct 27 20:36:44 2010 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
Wed Oct 27 20:36:44 2010 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Wed Oct 27 20:36:44 2010 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA
Wed Oct 27 20:36:44 2010 [eu1.vpn.giganews.com] Peer Connection Initiated with 138.199.67.17:1194
Wed Oct 27 20:36:47 2010 SENT CONTROL [eu1.vpn.giganews.com]: 'PUSH_REQUEST' (status=1)
Wed Oct 27 20:36:47 2010 AUTH: Received AUTH_FAILED control message
Wed Oct 27 20:36:47 2010 TCP/UDP: Closing socket
Wed Oct 27 20:36:47 2010 SIGTERM[soft,auth-failure] received, process exiting
Je précise que j'ai un DS210J sous DSM 3 dernier firmware... et que mes identifiants sont corrects
Je bute, quelqu'un peut il m'aider ?