Author Topic: openvpn probleme de connection avec mac OSX leopard et tunnelblick ( RESOLU )  (Read 4489 times)

mvdkfj1200

  • Zen Apprentice
  • *
  • Posts: 20
  • Karma: +0/-0
    • View Profile
bonsoir

voici mon souci avec zential

avec windows xp pas de souci de connection
je peux me connecter acceder a mon reseau local

tout vas bien

sauf que

nous avons des mac et hors de questions de passez par vmware ou parallel pour se connecter en vpn

je recupere bien le package client

je lance tunnelblick et la pas de connection

quelqun a deja eu le probleme

« Last Edit: September 29, 2011, 09:06:01 pm by mvdkfj1200 »

mvdkfj1200

  • Zen Apprentice
  • *
  • Posts: 20
  • Karma: +0/-0
    • View Profile
Re: openvpn probleme de connection avec mac OSX leopard et tunnelblick
« Reply #1 on: September 29, 2011, 08:23:16 pm »
voici le log de tunnelblick depuis le mac

Quote
2011-09-29 20:11:54 *Tunnelblick: /Applications/Tunnelblick.app/Contents/Resources/openvpnstart start dbim-MAC-218-client-vpn-dbim-218/dbim-218-client.conf 1337 1 0 0 0 50
2011-09-29 20:11:54 *Tunnelblick: openvpnstart: /Applications/Tunnelblick.app/Contents/Resources/openvpn --cd /Users/michel/Library/Application Support/Tunnelblick/Configurations --daemon --management 127.0.0.1 1337 --config /Users/michel/Library/Application Support/Tunnelblick/Configurations/dbim-MAC-218-client-vpn-dbim-218/dbim-218-client.conf --log /Library/Application Support/Tunnelblick/Logs/-SUsers-Smichel-SLibrary-SApplication Support-STunnelblick-SConfigurations-Sdbim--MAC--218--client--vpn--dbim--218-Sdbim--218--client.conf.1_0_0_0_50.1337.openvpn.log --management-query-passwords --management-hold --script-security 2 --up /Applications/Tunnelblick.app/Contents/Resources/client.up.tunnelblick.sh -m -w -d -a --down /Applications/Tunnelblick.app/Contents/Resources/client.down.tunnelblick.sh -m -w -d -a --up-restart
2011-09-29 20:11:55 OpenVPN 2.1.4 i386-apple-darwin10.7.1 [SSL] [LZO2] [PKCS11] built on Mar  1 2011
2011-09-29 20:11:55 MANAGEMENT: TCP Socket listening on 127.0.0.1:1337
2011-09-29 20:11:55 Need hold release from management interface, waiting...
2011-09-29 20:11:55 MANAGEMENT: Client connected from 127.0.0.1:1337
2011-09-29 20:11:55 MANAGEMENT: CMD 'pid'
2011-09-29 20:11:55 MANAGEMENT: CMD 'state on'
2011-09-29 20:11:55 MANAGEMENT: CMD 'state'
2011-09-29 20:11:55 MANAGEMENT: CMD 'hold release'
2011-09-29 20:11:55 WARNING: Make sure you understand the semantics of --tls-remote before using it (see the man page).
2011-09-29 20:11:55 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
2011-09-29 20:11:55 MANAGEMENT: Client disconnected
2011-09-29 20:11:55 Cannot load certificate file 903172B541742F55.pem: error:02001002:system library:fopen:No such file or directory: error:20074002:BIO routines:FILE_CTRL:system lib: error:140AD002:SSL routines:SSL_CTX_use_certificate_file:system lib
2011-09-29 20:11:55 Exiting
2011-09-29 20:11:56 *Tunnelblick: Flushed the DNS cache

apparement un probleme de certificat alors que j'utilise le meme sur xp et pas de souci

Quote
Thu Sep 29 20:19:04 2011 OpenVPN 2.1.1 i686-pc-mingw32 [SSL] [LZO2] [PKCS11] built on Dec 11 2009
Thu Sep 29 20:19:04 2011 WARNING: Make sure you understand the semantics of --tls-remote before using it (see the man page).
Thu Sep 29 20:19:04 2011 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Thu Sep 29 20:19:06 2011 LZO compression initialized
Thu Sep 29 20:19:06 2011 Control Channel MTU parms [ L:1574 D:138 EF:38 EB:0 ET:0 EL:0 ]
Thu Sep 29 20:19:06 2011 Data Channel MTU parms [ L:1574 D:1450 EF:42 EB:135 ET:32 EL:0 AF:3/1 ]
Thu Sep 29 20:19:06 2011 Local Options hash (VER=V4): 'd79ca330'
Thu Sep 29 20:19:06 2011 Expected Remote Options hash (VER=V4): 'f7df56b8'
Thu Sep 29 20:19:06 2011 Socket Buffers: R=[8192->8192] S=[8192->8192]
Thu Sep 29 20:19:06 2011 UDPv4 link local: [undef]
Thu Sep 29 20:19:06 2011 UDPv4 link remote: XXX.XXX.XXX.XXX:1194
Thu Sep 29 20:19:06 2011 TLS: Initial packet from XXX.XXX.XXX.XXX:1194, sid=68024474 a67cf485
Thu Sep 29 20:19:07 2011 VERIFY OK: depth=1, /C=fr/ST=france/L=paris/O=dxxxx-paris.fr/CN=Certification_Authority_Certificate
Thu Sep 29 20:19:07 2011 VERIFY X509NAME OK: /C=fr/ST=france/L=paris/O=dxxxx-paris.fr/CN=Zentyal
Thu Sep 29 20:19:07 2011 VERIFY OK: depth=0, /C=fr/ST=france/L=paris/O=dxxxx-paris.fr/CN=Zentyal
Thu Sep 29 20:19:07 2011 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
Thu Sep 29 20:19:07 2011 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Thu Sep 29 20:19:07 2011 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
Thu Sep 29 20:19:07 2011 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Thu Sep 29 20:19:07 2011 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
Thu Sep 29 20:19:07 2011 [Zentyal] Peer Connection Initiated with 193.48.40.218:1194
Thu Sep 29 20:19:09 2011 SENT CONTROL [Zentyal]: 'PUSH_REQUEST' (status=1)
Thu Sep 29 20:19:09 2011 PUSH: Received control message: 'PUSH_REPLY,route 10.40.40.0 255.255.255.0,route-gateway 192.168.160.1,ping 10,ping-restart 120,ifconfig 192.168.160.2 255.255.255.0'
Thu Sep 29 20:19:09 2011 OPTIONS IMPORT: timers and/or timeouts modified
Thu Sep 29 20:19:09 2011 OPTIONS IMPORT: --ifconfig/up options modified
Thu Sep 29 20:19:09 2011 OPTIONS IMPORT: route options modified
Thu Sep 29 20:19:09 2011 OPTIONS IMPORT: route-related options modified
Thu Sep 29 20:19:10 2011 ROUTE default_gateway=192.168.10.3
Thu Sep 29 20:19:10 2011 TAP-WIN32 device [Connexion au réseau local] opened: \\.\Global\{ADA9E92C-BB9C-4F70-A0E5-0B26A56DBDED}.tap
Thu Sep 29 20:19:10 2011 TAP-Win32 Driver Version 9.6
Thu Sep 29 20:19:10 2011 TAP-Win32 MTU=1500
Thu Sep 29 20:19:10 2011 Notified TAP-Win32 driver to set a DHCP IP/netmask of 192.168.160.2/255.255.255.0 on interface {ADA9E92C-BB9C-4F70-A0E5-0B26A56DBDED} [DHCP-serv: 192.168.160.0, lease-time: 31536000]
Thu Sep 29 20:19:10 2011 Successful ARP Flush on interface [65540] {ADA9E92C-BB9C-4F70-A0E5-0B26A56DBDED}
Thu Sep 29 20:19:15 2011 TEST ROUTES: 1/1 succeeded len=1 ret=1 a=0 u/d=up
Thu Sep 29 20:19:15 2011 C:\WINDOWS\system32\route.exe ADD 10.40.40.0 MASK 255.255.255.0 192.168.160.1
Thu Sep 29 20:19:15 2011 Route addition via IPAPI succeeded [adaptive]
Thu Sep 29 20:19:15 2011 Initialization Sequence Completed


voila meme serveur seul le fichier conf a recupere est different entre xp et mac osx

mvdkfj1200

  • Zen Apprentice
  • *
  • Posts: 20
  • Karma: +0/-0
    • View Profile
donc ne pas faire un dossier dans config ce qui permet de bien ranger

donc jai tout mis a la racine dans dossier conf

et la sans souci

c'est fonctionnel