【求助】自架OPENVPN服务器能连接，客户端却连接失败，求高手指导

wongtowa

自架OPENVPN服务器能连接，客户端却连接失败，求高手指导，配置如下
客户端
client
proto tcp-client
dev tap
remote 58.255.236.42 443
resolv-retry infinite
nobind
http-proxy 58.255.236.42 80
mute-replay-warnings
ca D:\\KEY\\ca.crt
cert D:\\KEY\\client.crt
key D:\\KEY\\client.key
comp-lzo
verb 4
status openvpn-status.log

服务器端
port 443
proto tcp-server
dev tap
server 192.168.0.0 255.255.255.0
keepalive 20 180
ca D:\\KEY\\ca.crt
cert D:\\KEY\\server.crt
key D:\\KEY\\server.key
dh D:\\KEY\\dh1024.pem
push "redirect-gateway def1"
push "dhcp-option DNS 192.168.0.1"
mode server
tls-server
status D:\\Program Files\\OpenVPN\\log\\openvpn-status.log
comp-lzo
verb 4

log
Fri Oct 08 23:29:45 2010 us=406623 Current Parameter Settings:
Fri Oct 08 23:29:45 2010 us=406678 config = 'client.ovpn'
Fri Oct 08 23:29:45 2010 us=406692 mode = 0
Fri Oct 08 23:29:45 2010 us=406705 show_ciphers = DISABLED
Fri Oct 08 23:29:45 2010 us=406718 show_digests = DISABLED
Fri Oct 08 23:29:45 2010 us=406731 show_engines = DISABLED
Fri Oct 08 23:29:45 2010 us=406745 genkey = DISABLED
Fri Oct 08 23:29:45 2010 us=406758 key_pass_file = '[UNDEF]'
Fri Oct 08 23:29:45 2010 us=406772 show_tls_ciphers = DISABLED
Fri Oct 08 23:29:45 2010 us=406785 proto = 2
Fri Oct 08 23:29:45 2010 us=406798 local = '[UNDEF]'
Fri Oct 08 23:29:45 2010 us=406813 remote_list[0] = {'58.255.236.42', 443}
Fri Oct 08 23:29:45 2010 us=406826 remote_random = DISABLED
Fri Oct 08 23:29:45 2010 us=406841 local_port = 1194
Fri Oct 08 23:29:45 2010 us=406854 remote_port = 1194
Fri Oct 08 23:29:45 2010 us=406867 remote_float = DISABLED
Fri Oct 08 23:29:45 2010 us=406880 ipchange = '[UNDEF]'
Fri Oct 08 23:29:45 2010 us=406893 bind_local = DISABLED
Fri Oct 08 23:29:45 2010 us=406905 dev = 'tap'
Fri Oct 08 23:29:45 2010 us=406918 dev_type = '[UNDEF]'
Fri Oct 08 23:29:45 2010 us=406931 dev_node = '[UNDEF]'
Fri Oct 08 23:29:45 2010 us=406944 tun_ipv6 = DISABLED
Fri Oct 08 23:29:45 2010 us=406957 ifconfig_local = '[UNDEF]'
Fri Oct 08 23:29:45 2010 us=406970 ifconfig_remote_netmask = '[UNDEF]'
Fri Oct 08 23:29:45 2010 us=406983 ifconfig_noexec = DISABLED
Fri Oct 08 23:29:45 2010 us=406999 ifconfig_nowarn = DISABLED
Fri Oct 08 23:29:45 2010 us=407012 shaper = 0
Fri Oct 08 23:29:45 2010 us=407025 tun_mtu = 1500
Fri Oct 08 23:29:45 2010 us=407038 tun_mtu_defined = ENABLED
Fri Oct 08 23:29:45 2010 us=407052 link_mtu = 1500
Fri Oct 08 23:29:45 2010 us=407065 link_mtu_defined = DISABLED
Fri Oct 08 23:29:45 2010 us=407078 tun_mtu_extra = 32
Fri Oct 08 23:29:45 2010 us=407091 tun_mtu_extra_defined = ENABLED
Fri Oct 08 23:29:45 2010 us=407103 fragment = 0
Fri Oct 08 23:29:45 2010 us=407117 mtu_discover_type = -1
Fri Oct 08 23:29:45 2010 us=407130 mtu_test = 0
Fri Oct 08 23:29:45 2010 us=407148 mlock = DISABLED
Fri Oct 08 23:29:45 2010 us=407161 keepalive_ping = 0
Fri Oct 08 23:29:45 2010 us=407174 keepalive_timeout = 0
Fri Oct 08 23:29:45 2010 us=407187 inactivity_timeout = 0
Fri Oct 08 23:29:45 2010 us=407200 ping_send_timeout = 0
Fri Oct 08 23:29:45 2010 us=407213 ping_rec_timeout = 0
Fri Oct 08 23:29:45 2010 us=407226 ping_rec_timeout_action = 0
Fri Oct 08 23:29:45 2010 us=407240 ping_timer_remote = DISABLED
Fri Oct 08 23:29:45 2010 us=407253 remap_sigusr1 = 0
Fri Oct 08 23:29:45 2010 us=407266 explicit_exit_notification = 0
Fri Oct 08 23:29:45 2010 us=407278 persist_tun = DISABLED
Fri Oct 08 23:29:45 2010 us=407291 persist_local_ip = DISABLED
Fri Oct 08 23:29:45 2010 us=407305 persist_remote_ip = DISABLED
Fri Oct 08 23:29:45 2010 us=407318 persist_key = DISABLED
Fri Oct 08 23:29:45 2010 us=407330 mssfix = 1450
Fri Oct 08 23:29:45 2010 us=407344 resolve_retry_seconds = 1000000000
Fri Oct 08 23:29:45 2010 us=407357 connect_retry_seconds = 5
Fri Oct 08 23:29:45 2010 us=407370 username = '[UNDEF]'
Fri Oct 08 23:29:45 2010 us=407383 groupname = '[UNDEF]'
Fri Oct 08 23:29:45 2010 us=407396 chroot_dir = '[UNDEF]'
Fri Oct 08 23:29:45 2010 us=407409 cd_dir = '[UNDEF]'
Fri Oct 08 23:29:45 2010 us=407421 writepid = '[UNDEF]'
Fri Oct 08 23:29:45 2010 us=407434 up_script = '[UNDEF]'
Fri Oct 08 23:29:45 2010 us=407447 down_script = '[UNDEF]'
Fri Oct 08 23:29:45 2010 us=407459 down_pre = DISABLED
Fri Oct 08 23:29:45 2010 us=407472 up_restart = DISABLED
Fri Oct 08 23:29:45 2010 us=407485 up_delay = DISABLED
Fri Oct 08 23:29:45 2010 us=407498 daemon = DISABLED
Fri Oct 08 23:29:45 2010 us=407511 inetd = 0
Fri Oct 08 23:29:45 2010 us=407523 log = DISABLED
Fri Oct 08 23:29:45 2010 us=407535 suppress_timestamps = DISABLED
Fri Oct 08 23:29:45 2010 us=407548 nice = 0
Fri Oct 08 23:29:45 2010 us=407561 verbosity = 4
Fri Oct 08 23:29:45 2010 us=531236 mute = 0
Fri Oct 08 23:29:45 2010 us=531268 gremlin = 0
Fri Oct 08 23:29:45 2010 us=531300 status_file = 'openvpn-status.log'
Fri Oct 08 23:29:45 2010 us=531317 status_file_version = 1
Fri Oct 08 23:29:45 2010 us=531378 status_file_update_freq = 60
Fri Oct 08 23:29:45 2010 us=531399 occ = ENABLED
Fri Oct 08 23:29:45 2010 us=531415 rcvbuf = 0
Fri Oct 08 23:29:45 2010 us=531431 sndbuf = 0
Fri Oct 08 23:29:45 2010 us=531448 socks_proxy_server = '[UNDEF]'
Fri Oct 08 23:29:45 2010 us=531476 socks_proxy_port = 0
Fri Oct 08 23:29:45 2010 us=531496 socks_proxy_retry = DISABLED
Fri Oct 08 23:29:45 2010 us=531525 fast_io = DISABLED
Fri Oct 08 23:29:45 2010 us=531562 comp_lzo = ENABLED
Fri Oct 08 23:29:45 2010 us=531581 comp_lzo_adaptive = ENABLED
Fri Oct 08 23:29:45 2010 us=531601 route_script = '[UNDEF]'
Fri Oct 08 23:29:45 2010 us=531622 route_default_gateway = '[UNDEF]'
Fri Oct 08 23:29:45 2010 us=531640 route_noexec = DISABLED
Fri Oct 08 23:29:45 2010 us=560190 route_delay = 0
Fri Oct 08 23:29:45 2010 us=560235 route_delay_window = 30
Fri Oct 08 23:29:45 2010 us=560253 route_delay_defined = ENABLED
Fri Oct 08 23:29:45 2010 us=560272 management_addr = '[UNDEF]'
Fri Oct 08 23:29:45 2010 us=560292 management_port = 0
Fri Oct 08 23:29:45 2010 us=560312 management_user_pass = '[UNDEF]'
Fri Oct 08 23:29:45 2010 us=560332 management_log_history_cache = 250
Fri Oct 08 23:29:45 2010 us=560351 management_echo_buffer_size = 100
Fri Oct 08 23:29:45 2010 us=560372 management_query_passwords = DISABLED
Fri Oct 08 23:29:45 2010 us=560392 management_hold = DISABLED
Fri Oct 08 23:29:45 2010 us=560411 shared_secret_file = '[UNDEF]'
Fri Oct 08 23:29:45 2010 us=560434 key_direction = 0
Fri Oct 08 23:29:45 2010 us=560462 ciphername_defined = ENABLED
Fri Oct 08 23:29:45 2010 us=560493 ciphername = 'BF-CBC'
Fri Oct 08 23:29:45 2010 us=560516 authname_defined = ENABLED
Fri Oct 08 23:29:45 2010 us=560540 authname = 'SHA1'
Fri Oct 08 23:29:45 2010 us=582685 keysize = 0
Fri Oct 08 23:29:45 2010 us=582717 engine = DISABLED
Fri Oct 08 23:29:45 2010 us=582747 replay = ENABLED
Fri Oct 08 23:29:45 2010 us=582788 mute_replay_warnings = ENABLED
Fri Oct 08 23:29:45 2010 us=582970 replay_window = 0
Fri Oct 08 23:29:45 2010 us=582990 replay_time = 0
Fri Oct 08 23:29:45 2010 us=583009 packet_id_file = '[UNDEF]'
Fri Oct 08 23:29:45 2010 us=583027 use_iv = ENABLED
Fri Oct 08 23:29:45 2010 us=583045 test_crypto = DISABLED
Fri Oct 08 23:29:45 2010 us=583063 tls_server = DISABLED
Fri Oct 08 23:29:45 2010 us=583082 tls_client = ENABLED
Fri Oct 08 23:29:45 2010 us=583099 key_method = 2
Fri Oct 08 23:29:45 2010 us=583117 ca_file = 'D:\KEY\ca.crt'
Fri Oct 08 23:29:45 2010 us=583136 dh_file = '[UNDEF]'
Fri Oct 08 23:29:45 2010 us=583157 cert_file = 'D:\KEY\client.crt'
Fri Oct 08 23:29:45 2010 us=583369 priv_key_file = 'D:\KEY\client.key'
Fri Oct 08 23:29:45 2010 us=583394 pkcs12_file = '[UNDEF]'
Fri Oct 08 23:29:45 2010 us=627957 cryptoapi_cert = '[UNDEF]'
Fri Oct 08 23:29:45 2010 us=627990 cipher_list = '[UNDEF]'
Fri Oct 08 23:29:45 2010 us=628029 tls_verify = '[UNDEF]'
Fri Oct 08 23:29:45 2010 us=628050 tls_remote = '[UNDEF]'
Fri Oct 08 23:29:45 2010 us=628070 crl_file = '[UNDEF]'
Fri Oct 08 23:29:45 2010 us=628100 ns_cert_type = 0
Fri Oct 08 23:29:45 2010 us=628119 tls_timeout = 2
Fri Oct 08 23:29:45 2010 us=628138 renegotiate_bytes = 0
Fri Oct 08 23:29:45 2010 us=628157 renegotiate_packets = 0
Fri Oct 08 23:29:45 2010 us=628177 renegotiate_seconds = 3600
Fri Oct 08 23:29:45 2010 us=628198 handshake_window = 60
Fri Oct 08 23:29:45 2010 us=628217 transition_window = 3600
Fri Oct 08 23:29:45 2010 us=628238 single_session = DISABLED
Fri Oct 08 23:29:45 2010 us=628257 tls_exit = DISABLED
Fri Oct 08 23:29:45 2010 us=628277 tls_auth_file = '[UNDEF]'
Fri Oct 08 23:29:45 2010 us=628316 server_network = 0.0.0.0
Fri Oct 08 23:29:45 2010 us=671965 server_netmask = 0.0.0.0
Fri Oct 08 23:29:45 2010 us=672001 server_bridge_ip = 0.0.0.0
Fri Oct 08 23:29:45 2010 us=672042 server_bridge_netmask = 0.0.0.0
Fri Oct 08 23:29:45 2010 us=672066 server_bridge_pool_start = 0.0.0.0
Fri Oct 08 23:29:45 2010 us=672095 server_bridge_pool_end = 0.0.0.0
Fri Oct 08 23:29:45 2010 us=672122 ifconfig_pool_defined = DISABLED
Fri Oct 08 23:29:45 2010 us=672146 ifconfig_pool_start = 0.0.0.0
Fri Oct 08 23:29:45 2010 us=672168 ifconfig_pool_end = 0.0.0.0
Fri Oct 08 23:29:45 2010 us=672190 ifconfig_pool_netmask = 0.0.0.0
Fri Oct 08 23:29:45 2010 us=672211 ifconfig_pool_persist_filename = '[UNDEF]'
Fri Oct 08 23:29:45 2010 us=672233 ifconfig_pool_persist_refresh_freq = 600
Fri Oct 08 23:29:45 2010 us=672254 ifconfig_pool_linear = DISABLED
Fri Oct 08 23:29:45 2010 us=672273 n_bcast_buf = 256
Fri Oct 08 23:29:45 2010 us=672293 tcp_queue_limit = 64
Fri Oct 08 23:29:45 2010 us=672312 real_hash_size = 256
Fri Oct 08 23:29:45 2010 us=704521 virtual_hash_size = 256
Fri Oct 08 23:29:45 2010 us=704554 client_connect_script = '[UNDEF]'
Fri Oct 08 23:29:45 2010 us=704593 learn_address_script = '[UNDEF]'
Fri Oct 08 23:29:45 2010 us=704615 client_disconnect_script = '[UNDEF]'
Fri Oct 08 23:29:45 2010 us=704635 client_config_dir = '[UNDEF]'
Fri Oct 08 23:29:45 2010 us=704665 ccd_exclusive = DISABLED
Fri Oct 08 23:29:45 2010 us=704684 tmp_dir = '[UNDEF]'
Fri Oct 08 23:29:45 2010 us=704705 push_ifconfig_defined = DISABLED
Fri Oct 08 23:29:45 2010 us=704730 push_ifconfig_local = 0.0.0.0
Fri Oct 08 23:29:45 2010 us=704751 push_ifconfig_remote_netmask = 0.0.0.0
Fri Oct 08 23:29:45 2010 us=704772 enable_c2c = DISABLED
Fri Oct 08 23:29:45 2010 us=704791 duplicate_cn = DISABLED
Fri Oct 08 23:29:45 2010 us=704809 cf_max = 0
Fri Oct 08 23:29:45 2010 us=704828 cf_per = 0
Fri Oct 08 23:29:45 2010 us=704847 max_clients = 1024
Fri Oct 08 23:29:45 2010 us=736140 max_routes_per_client = 256
Fri Oct 08 23:29:45 2010 us=736171 client_cert_not_required = DISABLED
Fri Oct 08 23:29:45 2010 us=736192 username_as_common_name = DISABLED
Fri Oct 08 23:29:45 2010 us=736237 auth_user_pass_verify_script = '[UNDEF]'
Fri Oct 08 23:29:45 2010 us=736260 auth_user_pass_verify_script_via_file = DISABLED
Fri Oct 08 23:29:45 2010 us=736286 client = ENABLED
Fri Oct 08 23:29:45 2010 us=736314 pull = ENABLED
Fri Oct 08 23:29:45 2010 us=736331 auth_user_pass_file = '[UNDEF]'
Fri Oct 08 23:29:45 2010 us=736356 show_net_up = DISABLED
Fri Oct 08 23:29:45 2010 us=736376 route_method = 0
Fri Oct 08 23:29:45 2010 us=736395 ip_win32_defined = DISABLED
Fri Oct 08 23:29:45 2010 us=736415 ip_win32_type = 3
Fri Oct 08 23:29:45 2010 us=736434 dhcp_masq_offset = 0
Fri Oct 08 23:29:45 2010 us=736454 dhcp_lease_time = 31536000
Fri Oct 08 23:29:45 2010 us=736474 tap_sleep = 0
Fri Oct 08 23:29:45 2010 us=801625 dhcp_options = DISABLED
Fri Oct 08 23:29:45 2010 us=801669 dhcp_renew = DISABLED
Fri Oct 08 23:29:45 2010 us=801719 dhcp_pre_release = DISABLED
Fri Oct 08 23:29:45 2010 us=801741 dhcp_release = DISABLED
Fri Oct 08 23:29:45 2010 us=801784 domain = '[UNDEF]'
Fri Oct 08 23:29:45 2010 us=801805 netbios_scope = '[UNDEF]'
Fri Oct 08 23:29:45 2010 us=801962 netbios_node_type = 0
Fri Oct 08 23:29:45 2010 us=801982 disable_nbt = DISABLED
Fri Oct 08 23:29:45 2010 us=802021 OpenVPN 2.0.9 Win32-MinGW [SSL] [LZO] built on Oct  1 2006
Fri Oct 08 23:29:45 2010 us=802646 IMPORTANT: OpenVPN's default port number is now 1194, based on an official port number assignment by IANA.  OpenVPN 2.0-beta16 and earlier used 5000 as the default port.
Fri Oct 08 23:29:45 2010 us=802676 WARNING: No server certificate verification method has been enabled.  See http://openvpn.net/howto.html#mitm for more info.
Fri Oct 08 23:29:45 2010 us=808026 LZO compression initialized
Fri Oct 08 23:29:45 2010 us=841170 Control Channel MTU parms [ L:1576 D:140 EF:40 EB:0 ET:0 EL:0 ]
Fri Oct 08 23:29:45 2010 us=844043 Data Channel MTU parms [ L:1576 D:1450 EF:44 EB:135 ET:32 EL:0 AF:3/1 ]
Fri Oct 08 23:29:45 2010 us=844123 Local Options String: 'V4,dev-type tap,link-mtu 1576,tun-mtu 1532,proto TCPv4_CLIENT,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Fri Oct 08 23:29:45 2010 us=844147 Expected Remote Options String: 'V4,dev-type tap,link-mtu 1576,tun-mtu 1532,proto TCPv4_SERVER,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Fri Oct 08 23:29:45 2010 us=844195 Local Options hash (VER=V4): '31fdf004'
Fri Oct 08 23:29:45 2010 us=844224 Expected Remote Options hash (VER=V4): '3e6d1056'
Fri Oct 08 23:29:45 2010 us=844286 Attempting to establish TCP connection with 58.255.236.42:443
Fri Oct 08 23:29:46 2010 us=806984 TCP: connect to 58.255.236.42:443 failed, will try again in 5 seconds

gprsgo

客户端配置确实有问题。代理设置错了。

wongtowa

谢楼上，只是http-proxy 58.255.236.42 80 这行不用，我现在是用宽带连，不用加代理，那行我删了还是不行的

srq970205020

加qq758018635，有可能解决，纯学雷锋。

		自动登录	找回密码
密码			注册

【求助】自架OPENVPN服务器能连接，客户端却连接失败，求高手指导

回复 #3 wongtowa 的帖子