openvpn服务没法启动，跪求大家帮助！

502315278

日志如下：
Sun Dec 19 19:09:20 2010 us=595335 duplicate_cn = DISABLED
Sun Dec 19 19:09:20 2010 us=595373 cf_max = 0
Sun Dec 19 19:09:20 2010 us=595410 cf_per = 0
Sun Dec 19 19:09:20 2010 us=595447 max_clients = 30
Sun Dec 19 19:09:20 2010 us=595485 max_routes_per_client = 256
Sun Dec 19 19:09:20 2010 us=595540 client_cert_not_required = ENABLED
Sun Dec 19 19:09:20 2010 us=595577 username_as_common_name = ENABLED
Sun Dec 19 19:09:20 2010 us=595615 auth_user_pass_verify_script = '[UNDEF]'
Sun Dec 19 19:09:20 2010 us=595653 auth_user_pass_verify_script_via_file = DISABLED
Sun Dec 19 19:09:20 2010 us=595741 port_share_host = '[UNDEF]'
Sun Dec 19 19:09:20 2010 us=595822 port_share_port = 0
Sun Dec 19 19:09:20 2010 us=595864 client = DISABLED
Sun Dec 19 19:09:20 2010 us=595901 pull = DISABLED
Sun Dec 19 19:09:20 2010 us=595938 auth_user_pass_file = '[UNDEF]'
Sun Dec 19 19:09:20 2010 us=596066 OpenVPN 2.1_rc4 i386-redhat-linux-gnu [SSL] [LZO2] [EPOLL] built on Dec 16 2007
AUTH-PAM: BACKGROUND: INIT service='openvpn'
Sun Dec 19 19:09:20 2010 us=607051 PLUGIN_INIT: POST /usr/lib/openvpn/plugin/lib/openvpn-auth-pam.so '[/usr/lib/openvpn/plugin/lib/openvpn-auth-pam.so] [openvpn]' inter
cepted=PLUGIN_AUTH_USER_PASS_VERIFY
Sun Dec 19 19:09:20 2010 us=613148 Note: cannot open openvpn-status.log for WRITE
Sun Dec 19 19:09:20 2010 us=615907 Note: cannot open ipp.txt for READ/WRITE
Sun Dec 19 19:09:20 2010 us=627782 Diffie-Hellman initialized with 1024 bit key
Sun Dec 19 19:09:20 2010 us=631909 WARNING: This configuration may accept clients which do not present a certificate
Sun Dec 19 19:09:20 2010 us=632273 Control Channel Authentication: using 'ta.key' as a OpenVPN static key file
Sun Dec 19 19:09:20 2010 us=632362 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Sun Dec 19 19:09:20 2010 us=632471 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Sun Dec 19 19:09:20 2010 us=632752 TLS-Auth MTU parms [ L:1544 D:168 EF:68 EB:0 ET:0 EL:0 ]
Sun Dec 19 19:09:20 2010 us=637556 TCP/UDP: Socket bind failed on local address 192.168.0.22:443: Permission denied
Sun Dec 19 19:09:20 2010 us=637636 Exiting

server.conf

local 192.168.0.22
port 443
proto tcp
dev tun
ca ca.crt
cert server.crt
key server.key
dh dh1024.pem
server 10.8.0.0 255.255.0.0
ifconfig-pool-persist ipp.txt
client-to-client
;duplicate-cn
keepalive 10 120
tls-auth ta.key 0
plugin /usr/lib/openvpn/plugin/lib/openvpn-auth-pam.so openvpn
client-cert-not-required
username-as-common-name
comp-lzo
max-clients 30
user nobody
group nobody
persist-key
persist-tun
status openvpn-status.log
log /var/log/openvpn.log
log-append openvpn.log
verb 4
;mute 20

大家帮看看是怎么回事啊？好像提示没有权限？？

北人

上跪求的PP

czz2000

上跪求的PP

sphere

在Centos5上弄过,好长时间记不清了~很菜基本照着教程弄滴~

maple8282

QUOTE:

Posted by 502315278 on 2010-12-19 11:31

Sun Dec 19 19:09:20 2010 us=637556 TCP/UDP: Socket bind failed on local address 192.168.0.22:443: Permission denied

看一下你运行openvpn server上nobody用户和组是否存在

502315278

怎么看啊？能说具体点吗？

502315278

忘了说的，我的就是centos5.0，+我QQ：502315278吧，一起探讨一下可以吗？

maple8282

/etc/group文件包含所有组
/etc/shadow和/etc/passwd系统存在的所有用户名

你在这几个文件里找找看是否有nobody存在，没有的话需要手工添加。

maple8282

还有，最好把selinux关了，否则可能也会使得nobody用户没有权限。

		自动登录	找回密码
密码			注册

openvpn服务没法启动，跪求大家帮助！

银牌荣誉勋章(注册10年以上会员)

年全勤勋章2022

月全勤勋章