- PR -

DDNSでOpenVPN

投稿者	投稿内容
ヘリに洋会議室デビュー日: 2004/11/13 投稿数: 2	投稿日時: 2004-11-13 14:28 こんにちは。 OpenVPNの英語のページのSimple Exampleを見て、実家と自宅をDDNS(ieServer)とopenvpnでつなごうとしています。しかし、PINGが通りません。 SELECT TR\|tw\|SR\|sw 31536000/0 select returned 1 openvpnをverb 9 で行うと上記のようなメッセージがひたすら繰り返し出てきます。その状態でpingを打つのですが、遠隔地側に届きません。 C:\Documents and Settings\user>ping 10.4.0.1 Pinging 10.4.0.1 with 32 bytes of data: Request timed out. Request timed out. Request timed out. Request timed out. Ping statistics for 10.4.0.1: Packets: Sent = 4, Received = 0, Lost = 4 (100% loss), Approximate round trip times in milli-seconds: Minimum = 0ms, Maximum = 0ms, Average = 0ms 何か環境・やり方などに問題があるのでしょうか？調べてはみたのですが行き詰ってしまいました。ご意見をいただけないでしょうか。よろしくお願いします。【ネットワーク仕様】自宅 LAN 1 192.168.1.0/255.255.255.0 ルーター 1 (Red Hat Linux9) eth0 : 192.168.1.1 eth1 : DHCP (USEN FTTH) ppp0 : PPPoE tun0 : 10.4.0.1 DDNS : ieServer(xxx.dip.jp) 実家 LAN 2 192.168.0.0/255.255.255.0 ルーター 2 (Red Hat Linux9) eth0 : 192.168.0.1 eth1 : DHCP (OCN ADSL) ppp0 : PPPoE tun0 : 10.4.0.2 DDNS : ieServer(yyy.dip.jp) 自宅では引き込まれているLAN線に直接Linuxをつないでいます。実家ではADSLモデムをブリッジにして、その下にLinuxをつないでいます。両者ともファイアウォールはありません。両方のLinuxにperlスクリプトを置いて、IPアドレスが変わったらrouteとDDNSを更新するように設定しています。また、下記URLのExample 1: A simple tunnel without securityを使ってテストを行っています。 http://openvpn.sourceforge.net/man.html#lbAR iptablesの設定はまったくしていません。 -Fで初期化された状態です。 # iptables --list Chain INPUT (policy ACCEPT) target prot opt source destination Chain FORWARD (policy ACCEPT) target prot opt source destination Chain OUTPUT (policy ACCEPT) target prot opt source destination Chain RH-Lokkit-0-50-INPUT (0 references) target prot opt source destination ACCEPT udp -- strat anywhere udp spt:domain dpts:1025:65535 tcpwrapperの設定は、hosts.allowでそれぞれの相手方のDDNS名を受け付けるようにしています。 # less /etc/hosts.deny All:All # less /etc/hosts.allow All: 192.168.0. xxx.dip.jp 実家側で実際に行ったコマンドとその結果です。 [root@strat root]# openvpn --remote xxx.dip.jp --dev tun1 --ifconfig 10.4.0.2 10.4.0.1 --verb 9 Sat Nov 13 14:17:02 2004 us=151605 0: Current Parameter Settings: Sat Nov 13 14:17:02 2004 us=152391 1: config = '[UNDEF]' Sat Nov 13 14:17:02 2004 us=152678 2: persist_config = DISABLED Sat Nov 13 14:17:02 2004 us=153175 3: persist_mode = 1 Sat Nov 13 14:17:02 2004 us=153515 4: show_ciphers = DISABLED Sat Nov 13 14:17:02 2004 us=153790 5: show_digests = DISABLED Sat Nov 13 14:17:02 2004 us=154136 6: genkey = DISABLED Sat Nov 13 14:17:02 2004 us=154411 7: askpass = DISABLED Sat Nov 13 14:17:02 2004 us=154748 8: show_tls_ciphers = DISABLED Sat Nov 13 14:17:02 2004 us=155019 9: proto = 0 Sat Nov 13 14:17:02 2004 us=155353 10: local = '[UNDEF]' Sat Nov 13 14:17:02 2004 us=155652 11: remote = 'xxx.dip.jp' Sat Nov 13 14:17:02 2004 us=155994 12: local_port = 5000 Sat Nov 13 14:17:02 2004 us=156259 13: remote_port = 5000 Sat Nov 13 14:17:02 2004 us=157576 14: remote_float = DISABLED Sat Nov 13 14:17:02 2004 us=157825 15: ipchange = '[UNDEF]' Sat Nov 13 14:17:02 2004 us=158081 16: bind_local = ENABLED Sat Nov 13 14:17:02 2004 us=158426 17: dev = 'tun1' Sat Nov 13 14:17:02 2004 us=158689 18: dev_type = '[UNDEF]' Sat Nov 13 14:17:02 2004 us=159021 19: dev_node = '[UNDEF]' Sat Nov 13 14:17:02 2004 us=159282 20: tun_ipv6 = DISABLED Sat Nov 13 14:17:02 2004 us=159600 21: ifconfig_local = '10.4.0.2' Sat Nov 13 14:17:02 2004 us=159835 22: ifconfig_remote_netmask = '10.4.0.1' Sat Nov 13 14:17:02 2004 us=160152 23: ifconfig_noexec = DISABLED Sat Nov 13 14:17:02 2004 us=160403 24: ifconfig_nowarn = DISABLED Sat Nov 13 14:17:02 2004 us=160724 25: shaper = 0 Sat Nov 13 14:17:02 2004 us=162038 26: tun_mtu = 1300 Sat Nov 13 14:17:02 2004 us=162295 27: tun_mtu_defined = DISABLED Sat Nov 13 14:17:02 2004 us=162631 28: link_mtu = 1300 Sat Nov 13 14:17:02 2004 us=162888 29: link_mtu_defined = ENABLED Sat Nov 13 14:17:02 2004 us=163221 30: tun_mtu_extra = 0 Sat Nov 13 14:17:02 2004 us=163480 31: tun_mtu_extra_defined = DISABLED Sat Nov 13 14:17:02 2004 us=163809 32: fragment = 0 Sat Nov 13 14:17:02 2004 us=164068 33: mtu_discover_type = -1 Sat Nov 13 14:17:02 2004 us=164402 34: mtu_test = 0 Sat Nov 13 14:17:02 2004 us=164668 35: mlock = DISABLED Sat Nov 13 14:17:02 2004 us=166047 36: inactivity_timeout = 0 Sat Nov 13 14:17:02 2004 us=166305 37: ping_send_timeout = 0 Sat Nov 13 14:17:02 2004 us=166554 38: ping_rec_timeout = 0 Sat Nov 13 14:17:02 2004 us=166879 39: ping_rec_timeout_action = 0 Sat Nov 13 14:17:02 2004 us=167148 40: ping_timer_remote = DISABLED Sat Nov 13 14:17:02 2004 us=167483 41: persist_tun = DISABLED Sat Nov 13 14:17:02 2004 us=167751 42: persist_local_ip = DISABLED Sat Nov 13 14:17:02 2004 us=168090 43: persist_remote_ip = DISABLED Sat Nov 13 14:17:02 2004 us=168350 44: persist_key = DISABLED Sat Nov 13 14:17:02 2004 us=168673 45: mssfix_defined = DISABLED Sat Nov 13 14:17:02 2004 us=168932 46: mssfix = 0 Sat Nov 13 14:17:02 2004 us=169250 47: passtos = DISABLED Sat Nov 13 14:17:02 2004 us=170432 48: resolve_retry_seconds = 0 Sat Nov 13 14:17:02 2004 us=170683 49: connect_retry_seconds = 5 Sat Nov 13 14:17:02 2004 us=171020 50: username = '[UNDEF]' Sat Nov 13 14:17:02 2004 us=171293 51: groupname = '[UNDEF]' Sat Nov 13 14:17:02 2004 us=171625 52: chroot_dir = '[UNDEF]' Sat Nov 13 14:17:02 2004 us=171899 53: cd_dir = '[UNDEF]' Sat Nov 13 14:17:02 2004 us=172225 54: writepid = '[UNDEF]' Sat Nov 13 14:17:02 2004 us=172488 55: up_script = '[UNDEF]' Sat Nov 13 14:17:02 2004 us=172821 56: down_script = '[UNDEF]' Sat Nov 13 14:17:02 2004 us=173090 57: up_restart = DISABLED Sat Nov 13 14:17:02 2004 us=173414 58: daemon = DISABLED Sat Nov 13 14:17:02 2004 us=174795 59: inetd = 0 Sat Nov 13 14:17:02 2004 us=175053 60: log = DISABLED Sat Nov 13 14:17:02 2004 us=175393 61: nice = 0 Sat Nov 13 14:17:02 2004 us=175683 62: verbosity = 9 Sat Nov 13 14:17:02 2004 us=175997 63: mute = 0 Sat Nov 13 14:17:02 2004 us=176251 64: gremlin = DISABLED Sat Nov 13 14:17:02 2004 us=176538 65: occ = ENABLED Sat Nov 13 14:17:02 2004 us=176759 66: http_proxy_server = '[UNDEF]' Sat Nov 13 14:17:02 2004 us=177041 67: http_proxy_port = 0 Sat Nov 13 14:17:02 2004 us=177285 68: http_proxy_auth_method = '[UNDEF]' Sat Nov 13 14:17:02 2004 us=177603 69: http_proxy_auth_file = '[UNDEF]' Sat Nov 13 14:17:02 2004 us=178878 70: http_proxy_retry = DISABLED Sat Nov 13 14:17:02 2004 us=179122 71: socks_proxy_server = '[UNDEF]' Sat Nov 13 14:17:02 2004 us=179372 72: socks_proxy_port = 0 Sat Nov 13 14:17:02 2004 us=179697 73: socks_proxy_retry = DISABLED Sat Nov 13 14:17:02 2004 us=180003 74: route_script = '[UNDEF]' Sat Nov 13 14:17:02 2004 us=180379 75: route_default_gateway = '[UNDEF]' Sat Nov 13 14:17:02 2004 us=180654 76: route_noexec = DISABLED Sat Nov 13 14:17:02 2004 us=180986 77: route_delay = 0 Sat Nov 13 14:17:02 2004 us=181253 78: route_delay_defined = DISABLED Sat Nov 13 14:17:02 2004 us=181608 79: shared_secret_file = '[UNDEF]' Sat Nov 13 14:17:02 2004 us=181885 80: key_direction = 0 Sat Nov 13 14:17:02 2004 us=183123 81: ciphername_defined = ENABLED Sat Nov 13 14:17:02 2004 us=183367 82: ciphername = 'BF-CBC' Sat Nov 13 14:17:02 2004 us=183629 83: authname_defined = ENABLED Sat Nov 13 14:17:02 2004 us=183959 84: authname = 'SHA1' Sat Nov 13 14:17:02 2004 us=184221 85: keysize = 0 Sat Nov 13 14:17:02 2004 us=184558 86: replay = ENABLED Sat Nov 13 14:17:02 2004 us=184819 87: replay_window = 64 Sat Nov 13 14:17:02 2004 us=185134 88: replay_time = 15 Sat Nov 13 14:17:02 2004 us=185388 89: packet_id_file = '[UNDEF]' Sat Nov 13 14:17:02 2004 us=185758 90: use_iv = ENABLED Sat Nov 13 14:17:02 2004 us=186010 91: test_crypto = DISABLED Sat Nov 13 14:17:02 2004 us=186339 92: tls_server = DISABLED Sat Nov 13 14:17:02 2004 us=187642 93: tls_client = DISABLED Sat Nov 13 14:17:02 2004 us=187908 94: key_method = 1 Sat Nov 13 14:17:02 2004 us=188252 95: ca_file = '[UNDEF]' Sat Nov 13 14:17:02 2004 us=188519 96: dh_file = '[UNDEF]' Sat Nov 13 14:17:02 2004 us=188846 97: cert_file = '[UNDEF]' Sat Nov 13 14:17:02 2004 us=189120 98: priv_key_file = '[UNDEF]' Sat Nov 13 14:17:02 2004 us=189454 99: cipher_list = '[UNDEF]' Sat Nov 13 14:17:02 2004 us=189720 100: tls_verify = '[UNDEF]' Sat Nov 13 14:17:02 2004 us=190044 101: tls_remote = '[UNDEF]' Sat Nov 13 14:17:02 2004 us=190297 102: crl_file = '[UNDEF]' Sat Nov 13 14:17:02 2004 us=191600 103: tls_timeout = 2 Sat Nov 13 14:17:02 2004 us=191850 104: renegotiate_bytes = 0 Sat Nov 13 14:17:02 2004 us=192107 105: renegotiate_packets = 0 Sat Nov 13 14:17:02 2004 us=192445 106: renegotiate_seconds = 3600 Sat Nov 13 14:17:02 2004 us=192706 107: handshake_window = 60 Sat Nov 13 14:17:02 2004 us=193018 108: transition_window = 3600 Sat Nov 13 14:17:02 2004 us=193245 109: single_session = DISABLED Sat Nov 13 14:17:02 2004 us=193528 110: tls_auth_file = '[UNDEF]' Sat Nov 13 14:17:02 2004 us=193873 111: OpenVPN 1.6.0 i686-pc-linux-gnu [SSL] built on Nov 4 2004 Sat Nov 13 14:20:06 2004 us=707117 112: ***** WARNING *****: all encryption and authentication features disabled -- all data will be tunnelled as cleartext Sat Nov 13 14:20:06 2004 us=815518 113: TUN/TAP device tun1 opened Sat Nov 13 14:20:06 2004 us=815985 114: /sbin/ifconfig tun1 10.4.0.2 pointopoint 10.4.0.1 mtu 1300 Sat Nov 13 14:20:06 2004 us=826987 115: Data Channel MTU parms [ L:1300 D:1300 EF:0 EB:0 ET:0 EL:0 ] Sat Nov 13 14:20:06 2004 us=827649 116: Local Options String: 'V3,dev-type tun,link-mtu 1300,tun-mtu 1300,proto UDPv4,ifconfig 10.4.0.1 10.4.0.2' Sat Nov 13 14:20:06 2004 us=827955 117: Expected Remote Options String: 'V3,dev-type tun,link-mtu 1300,tun-mtu 1300,proto UDPv4,ifconfig 10.4.0.2 10.4.0.1' Sat Nov 13 14:20:06 2004 us=828649 118: Local Options hash (VER=V3): '635e7448' Sat Nov 13 14:20:06 2004 us=829081 119: Expected Remote Options hash (VER=V3): '1f9f6acb' Sat Nov 13 14:20:06 2004 us=829497 120: UDPv4 link local (bound): [undef]:5000 Sat Nov 13 14:20:06 2004 us=829880 121: UDPv4 link remote: xxx.xxx.xxx.xxx:5000 Sat Nov 13 14:20:06 2004 us=830279 122: SELECT TR\|tw\|SR\|sw 5/0 Sat Nov 13 14:20:11 2004 us=825472 123: select returned 0 Sat Nov 13 14:20:11 2004 us=825922 124: SELECT TR\|tw\|SR\|sw 5/0 Sat Nov 13 14:20:11 2004 us=938743 125: select returned 1 Sat Nov 13 14:20:11 2004 us=939147 126: read from TUN/TAP returned 60 Sat Nov 13 14:20:11 2004 us=939843 127: TUN READ [60]: 4500003c 6d130000 7f0103e5 c0a8001c 0a040001 08003a5c 02001100 6162636[more...] md5=dab473b6 399232d3 ffd5dfca f082a884 Sat Nov 13 14:20:11 2004 us=940153 128: SELECT tr\|tw\|SR\|SW 5/0 Sat Nov 13 14:20:11 2004 us=940558 129: select returned 1 Sat Nov 13 14:20:11 2004 us=941036 130: UDPv4 WRITE [60] to xxx.xxx.xxx.xxx:5000: DATA 4500003c 6d130000 7f0103e5 c0a8001c 0a040001 08003a5c 02001100 6162636[more...] Sat Nov 13 14:20:11 2004 us=941630 131: UDPv4 write returned 60 Sat Nov 13 14:20:11 2004 us=941963 132: SELECT TR\|tw\|SR\|sw 5/0 Sat Nov 13 14:20:12 2004 us=998696 133: select returned 1 Sat Nov 13 14:20:12 2004 us=998787 134: read from TUN/TAP returned 60 Sat Nov 13 14:20:12 2004 us=998934 135: TUN READ [60]: 4500003c 6d1f0000 7f0103d9 c0a8001c 0a040001 0800395c 02001200 6162636[more...] md5=45cc7c1b 1c25d6e9 4d529584 7b5fcb6c Sat Nov 13 14:20:12 2004 us=998984 136: SELECT tr\|tw\|SR\|SW 4/0 Sat Nov 13 14:20:12 2004 us=999015 137: select returned 1 Sat Nov 13 14:20:12 2004 us=999134 138: UDPv4 WRITE [60] to xxx.xxx.xxx.xxx:5000: DATA 4500003c 6d1f0000 7f0103d9 c0a8001c 0a040001 0800395c 02001200 6162636[more...] Sat Nov 13 14:20:12 2004 us=999238 139: UDPv4 write returned 60 Sat Nov 13 14:20:12 2004 us=999278 140: SELECT TR\|tw\|SR\|sw 4/0 Sat Nov 13 14:20:14 2004 us=498877 141: select returned 1 Sat Nov 13 14:20:14 2004 us=498993 142: read from TUN/TAP returned 60 Sat Nov 13 14:20:14 2004 us=499147 143: TUN READ [60]: 4500003c 6d210000 7f0103d7 c0a8001c 0a040001 0800385c 02001300 6162636[more...] md5=5d82402b 3d5e7064 95fa5b5f 24e590d8 Sat Nov 13 14:20:14 2004 us=499200 144: SELECT tr\|tw\|SR\|SW 2/0 Sat Nov 13 14:20:14 2004 us=499234 145: select returned 1 Sat Nov 13 14:20:14 2004 us=499354 146: UDPv4 WRITE [60] to xxx.xxx.xxx.xxx:5000: DATA 4500003c 6d210000 7f0103d7 c0a8001c 0a040001 0800385c 02001300 6162636[more...] Sat Nov 13 14:20:14 2004 us=499476 147: UDPv4 write returned 60 Sat Nov 13 14:20:14 2004 us=499515 148: SELECT TR\|tw\|SR\|sw 2/0 Sat Nov 13 14:20:15 2004 us=998527 149: select returned 1 Sat Nov 13 14:20:15 2004 us=998657 150: read from TUN/TAP returned 60 Sat Nov 13 14:20:15 2004 us=998812 151: TUN READ [60]: 4500003c 6d230000 7f0103d5 c0a8001c 0a040001 0800375c 02001400 6162636[more...] md5=da01cdc1 47b27c13 e3621512 20980b0c Sat Nov 13 14:20:15 2004 us=998871 152: SELECT tr\|tw\|SR\|SW 1/0 Sat Nov 13 14:20:15 2004 us=998907 153: select returned 1 Sat Nov 13 14:20:15 2004 us=999028 154: UDPv4 WRITE [60] to xxx.xxx.xxx.xxx:5000: DATA 4500003c 6d230000 7f0103d5 c0a8001c 0a040001 0800375c 02001400 6162636[more...] Sat Nov 13 14:20:15 2004 us=999159 155: UDPv4 write returned 60 Sat Nov 13 14:20:15 2004 us=999201 156: SELECT TR\|tw\|SR\|sw 1/0 Sat Nov 13 14:20:16 2004 us=995456 157: select returned 0 Sat Nov 13 14:20:16 2004 us=995548 158: SENT OCC_REQUEST Sat Nov 13 14:20:16 2004 us=995584 159: SELECT tr\|tw\|SR\|SW 5/0 Sat Nov 13 14:20:16 2004 us=995614 160: select returned 1 Sat Nov 13 14:20:16 2004 us=995679 161: UDPv4 WRITE [17] to xxx.xxx.xxx.xxx:5000: DATA 287f346b d4ef7a81 2d56b8d3 afc5459c 00 Sat Nov 13 14:20:16 2004 us=995771 162: UDPv4 write returned 17 Sat Nov 13 14:20:16 2004 us=995807 163: SELECT TR\|tw\|SR\|sw 5/0 Sat Nov 13 14:20:17 2004 us=29104 164: select returned 1 Sat Nov 13 14:20:17 2004 us=29214 165: UDPv4 read returned 99 Sat Nov 13 14:20:17 2004 us=29386 166: UDPv4 READ [99] from xxx.xxx.xxx.xxx:5000: DATA 287f346b d4ef7a81 2d56b8d3 afc5459c 0156332c 6465762d 74797065 2074756[more...] Sat Nov 13 14:20:17 2004 us=29423 167: IP Address OK from xxx.xxx.xxx.xxx:5000 Sat Nov 13 14:20:17 2004 us=29518 168: Peer Connection Initiated with xxx.xxx.xxx.xxx:5000 Sat Nov 13 14:20:17 2004 us=29551 169: RECEIVED OCC_REPLY Sat Nov 13 14:20:17 2004 us=29596 170: SELECT TR\|tw\|SR\|sw 4/0 Sat Nov 13 14:20:21 2004 us=25462 171: select returned 0 Sat Nov 13 14:20:21 2004 us=25559 172: SELECT TR\|tw\|SR\|sw 5/0 Sat Nov 13 14:20:26 2004 us=25458 173: select returned 0 Sat Nov 13 14:20:26 2004 us=25547 174: SELECT TR\|tw\|SR\|sw 31536000/0 この状態で実家ルータ下のWindows2000クライアントからping　10.4.0.1を行っても、Request timed outになってしまいました。よろしくお願いします。
ヘリに洋会議室デビュー日: 2004/11/13 投稿数: 2	投稿日時: 2004-11-19 11:06 本人です。 linuxのシェル画面で openvpn --remote xxx.dip.jp --dev tun1 --ifconfig 10.4.0.2 10.4.0.1 --verb 9 と打った後に、もういちど別のセッションをシェルで立ち上げて、 ping 10.4.0.1 と打ったところ、応答が帰ってきました。解決しました。ルータ下のクライアントからpingを打っていたのがそもそもの間違いでした。大変くだらないことでした。お騒がせしました。皆様にお詫び申し上げます。

投稿者

投稿内容

ヘリに洋: 会議室デビュー日: 2004/11/13; 投稿数: 2

投稿日時: 2004-11-13 14:28

こんにちは。
OpenVPNの英語のページのSimple Exampleを見て、実家と自宅をDDNS(ieServer)とopenvpnでつなごうとしています。
しかし、PINGが通りません。

SELECT TR|tw|SR|sw 31536000/0
select returned 1

openvpnをverb 9 で行うと上記のようなメッセージがひたすら繰り返し出てきます。
その状態でpingを打つのですが、遠隔地側に届きません。

C:\Documents and Settings\user>ping 10.4.0.1

Pinging 10.4.0.1 with 32 bytes of data:

Request timed out.
Request timed out.
Request timed out.
Request timed out.

Ping statistics for 10.4.0.1:
Packets: Sent = 4, Received = 0, Lost = 4 (100% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms

何か環境・やり方などに問題があるのでしょうか？
調べてはみたのですが行き詰ってしまいました。
ご意見をいただけないでしょうか。
よろしくお願いします。

【ネットワーク仕様】

自宅
LAN 1
192.168.1.0/255.255.255.0
ルーター 1 (Red Hat Linux9)
eth0 : 192.168.1.1
eth1 : DHCP (USEN FTTH)
ppp0 : PPPoE
tun0 : 10.4.0.1
DDNS : ieServer(xxx.dip.jp)

実家
LAN 2
192.168.0.0/255.255.255.0
ルーター 2 (Red Hat Linux9)
eth0 : 192.168.0.1
eth1 : DHCP (OCN ADSL)
ppp0 : PPPoE
tun0 : 10.4.0.2
DDNS : ieServer(yyy.dip.jp)

自宅では引き込まれているLAN線に直接Linuxをつないでいます。
実家ではADSLモデムをブリッジにして、その下にLinuxをつないでいます。
両者ともファイアウォールはありません。
両方のLinuxにperlスクリプトを置いて、IPアドレスが変わったらrouteとDDNSを更新するように設定しています。
また、下記URLのExample 1: A simple tunnel without securityを使ってテストを行っています。
http://openvpn.sourceforge.net/man.html#lbAR

iptablesの設定はまったくしていません。
-Fで初期化された状態です。
# iptables --list
Chain INPUT (policy ACCEPT)
target prot opt source destination

Chain FORWARD (policy ACCEPT)
target prot opt source destination

Chain OUTPUT (policy ACCEPT)
target prot opt source destination

Chain RH-Lokkit-0-50-INPUT (0 references)
target prot opt source destination
ACCEPT udp -- strat anywhere udp spt:domain dpts:1025:65535

tcpwrapperの設定は、hosts.allowでそれぞれの相手方のDDNS名を受け付けるようにしています。
# less /etc/hosts.deny
All:All

# less /etc/hosts.allow
All: 192.168.0. xxx.dip.jp

実家側で実際に行ったコマンドとその結果です。
[root@strat root]# openvpn --remote xxx.dip.jp --dev tun1 --ifconfig 10.4.0.2 10.4.0.1 --verb 9
Sat Nov 13 14:17:02 2004 us=151605 0: Current Parameter Settings:
Sat Nov 13 14:17:02 2004 us=152391 1: config = '[UNDEF]'
Sat Nov 13 14:17:02 2004 us=152678 2: persist_config = DISABLED
Sat Nov 13 14:17:02 2004 us=153175 3: persist_mode = 1
Sat Nov 13 14:17:02 2004 us=153515 4: show_ciphers = DISABLED
Sat Nov 13 14:17:02 2004 us=153790 5: show_digests = DISABLED
Sat Nov 13 14:17:02 2004 us=154136 6: genkey = DISABLED
Sat Nov 13 14:17:02 2004 us=154411 7: askpass = DISABLED
Sat Nov 13 14:17:02 2004 us=154748 8: show_tls_ciphers = DISABLED
Sat Nov 13 14:17:02 2004 us=155019 9: proto = 0
Sat Nov 13 14:17:02 2004 us=155353 10: local = '[UNDEF]'
Sat Nov 13 14:17:02 2004 us=155652 11: remote = 'xxx.dip.jp'
Sat Nov 13 14:17:02 2004 us=155994 12: local_port = 5000
Sat Nov 13 14:17:02 2004 us=156259 13: remote_port = 5000
Sat Nov 13 14:17:02 2004 us=157576 14: remote_float = DISABLED
Sat Nov 13 14:17:02 2004 us=157825 15: ipchange = '[UNDEF]'
Sat Nov 13 14:17:02 2004 us=158081 16: bind_local = ENABLED
Sat Nov 13 14:17:02 2004 us=158426 17: dev = 'tun1'
Sat Nov 13 14:17:02 2004 us=158689 18: dev_type = '[UNDEF]'
Sat Nov 13 14:17:02 2004 us=159021 19: dev_node = '[UNDEF]'
Sat Nov 13 14:17:02 2004 us=159282 20: tun_ipv6 = DISABLED
Sat Nov 13 14:17:02 2004 us=159600 21: ifconfig_local = '10.4.0.2'
Sat Nov 13 14:17:02 2004 us=159835 22: ifconfig_remote_netmask = '10.4.0.1'
Sat Nov 13 14:17:02 2004 us=160152 23: ifconfig_noexec = DISABLED
Sat Nov 13 14:17:02 2004 us=160403 24: ifconfig_nowarn = DISABLED
Sat Nov 13 14:17:02 2004 us=160724 25: shaper = 0
Sat Nov 13 14:17:02 2004 us=162038 26: tun_mtu = 1300
Sat Nov 13 14:17:02 2004 us=162295 27: tun_mtu_defined = DISABLED
Sat Nov 13 14:17:02 2004 us=162631 28: link_mtu = 1300
Sat Nov 13 14:17:02 2004 us=162888 29: link_mtu_defined = ENABLED
Sat Nov 13 14:17:02 2004 us=163221 30: tun_mtu_extra = 0
Sat Nov 13 14:17:02 2004 us=163480 31: tun_mtu_extra_defined = DISABLED
Sat Nov 13 14:17:02 2004 us=163809 32: fragment = 0
Sat Nov 13 14:17:02 2004 us=164068 33: mtu_discover_type = -1
Sat Nov 13 14:17:02 2004 us=164402 34: mtu_test = 0
Sat Nov 13 14:17:02 2004 us=164668 35: mlock = DISABLED
Sat Nov 13 14:17:02 2004 us=166047 36: inactivity_timeout = 0
Sat Nov 13 14:17:02 2004 us=166305 37: ping_send_timeout = 0
Sat Nov 13 14:17:02 2004 us=166554 38: ping_rec_timeout = 0
Sat Nov 13 14:17:02 2004 us=166879 39: ping_rec_timeout_action = 0
Sat Nov 13 14:17:02 2004 us=167148 40: ping_timer_remote = DISABLED
Sat Nov 13 14:17:02 2004 us=167483 41: persist_tun = DISABLED
Sat Nov 13 14:17:02 2004 us=167751 42: persist_local_ip = DISABLED
Sat Nov 13 14:17:02 2004 us=168090 43: persist_remote_ip = DISABLED
Sat Nov 13 14:17:02 2004 us=168350 44: persist_key = DISABLED
Sat Nov 13 14:17:02 2004 us=168673 45: mssfix_defined = DISABLED
Sat Nov 13 14:17:02 2004 us=168932 46: mssfix = 0
Sat Nov 13 14:17:02 2004 us=169250 47: passtos = DISABLED
Sat Nov 13 14:17:02 2004 us=170432 48: resolve_retry_seconds = 0
Sat Nov 13 14:17:02 2004 us=170683 49: connect_retry_seconds = 5
Sat Nov 13 14:17:02 2004 us=171020 50: username = '[UNDEF]'
Sat Nov 13 14:17:02 2004 us=171293 51: groupname = '[UNDEF]'
Sat Nov 13 14:17:02 2004 us=171625 52: chroot_dir = '[UNDEF]'
Sat Nov 13 14:17:02 2004 us=171899 53: cd_dir = '[UNDEF]'
Sat Nov 13 14:17:02 2004 us=172225 54: writepid = '[UNDEF]'
Sat Nov 13 14:17:02 2004 us=172488 55: up_script = '[UNDEF]'
Sat Nov 13 14:17:02 2004 us=172821 56: down_script = '[UNDEF]'
Sat Nov 13 14:17:02 2004 us=173090 57: up_restart = DISABLED
Sat Nov 13 14:17:02 2004 us=173414 58: daemon = DISABLED
Sat Nov 13 14:17:02 2004 us=174795 59: inetd = 0
Sat Nov 13 14:17:02 2004 us=175053 60: log = DISABLED
Sat Nov 13 14:17:02 2004 us=175393 61: nice = 0
Sat Nov 13 14:17:02 2004 us=175683 62: verbosity = 9
Sat Nov 13 14:17:02 2004 us=175997 63: mute = 0
Sat Nov 13 14:17:02 2004 us=176251 64: gremlin = DISABLED
Sat Nov 13 14:17:02 2004 us=176538 65: occ = ENABLED
Sat Nov 13 14:17:02 2004 us=176759 66: http_proxy_server = '[UNDEF]'
Sat Nov 13 14:17:02 2004 us=177041 67: http_proxy_port = 0
Sat Nov 13 14:17:02 2004 us=177285 68: http_proxy_auth_method = '[UNDEF]'
Sat Nov 13 14:17:02 2004 us=177603 69: http_proxy_auth_file = '[UNDEF]'
Sat Nov 13 14:17:02 2004 us=178878 70: http_proxy_retry = DISABLED
Sat Nov 13 14:17:02 2004 us=179122 71: socks_proxy_server = '[UNDEF]'
Sat Nov 13 14:17:02 2004 us=179372 72: socks_proxy_port = 0
Sat Nov 13 14:17:02 2004 us=179697 73: socks_proxy_retry = DISABLED
Sat Nov 13 14:17:02 2004 us=180003 74: route_script = '[UNDEF]'
Sat Nov 13 14:17:02 2004 us=180379 75: route_default_gateway = '[UNDEF]'
Sat Nov 13 14:17:02 2004 us=180654 76: route_noexec = DISABLED
Sat Nov 13 14:17:02 2004 us=180986 77: route_delay = 0
Sat Nov 13 14:17:02 2004 us=181253 78: route_delay_defined = DISABLED
Sat Nov 13 14:17:02 2004 us=181608 79: shared_secret_file = '[UNDEF]'
Sat Nov 13 14:17:02 2004 us=181885 80: key_direction = 0
Sat Nov 13 14:17:02 2004 us=183123 81: ciphername_defined = ENABLED
Sat Nov 13 14:17:02 2004 us=183367 82: ciphername = 'BF-CBC'
Sat Nov 13 14:17:02 2004 us=183629 83: authname_defined = ENABLED
Sat Nov 13 14:17:02 2004 us=183959 84: authname = 'SHA1'
Sat Nov 13 14:17:02 2004 us=184221 85: keysize = 0
Sat Nov 13 14:17:02 2004 us=184558 86: replay = ENABLED
Sat Nov 13 14:17:02 2004 us=184819 87: replay_window = 64
Sat Nov 13 14:17:02 2004 us=185134 88: replay_time = 15
Sat Nov 13 14:17:02 2004 us=185388 89: packet_id_file = '[UNDEF]'
Sat Nov 13 14:17:02 2004 us=185758 90: use_iv = ENABLED
Sat Nov 13 14:17:02 2004 us=186010 91: test_crypto = DISABLED
Sat Nov 13 14:17:02 2004 us=186339 92: tls_server = DISABLED
Sat Nov 13 14:17:02 2004 us=187642 93: tls_client = DISABLED
Sat Nov 13 14:17:02 2004 us=187908 94: key_method = 1
Sat Nov 13 14:17:02 2004 us=188252 95: ca_file = '[UNDEF]'
Sat Nov 13 14:17:02 2004 us=188519 96: dh_file = '[UNDEF]'
Sat Nov 13 14:17:02 2004 us=188846 97: cert_file = '[UNDEF]'
Sat Nov 13 14:17:02 2004 us=189120 98: priv_key_file = '[UNDEF]'
Sat Nov 13 14:17:02 2004 us=189454 99: cipher_list = '[UNDEF]'
Sat Nov 13 14:17:02 2004 us=189720 100: tls_verify = '[UNDEF]'
Sat Nov 13 14:17:02 2004 us=190044 101: tls_remote = '[UNDEF]'
Sat Nov 13 14:17:02 2004 us=190297 102: crl_file = '[UNDEF]'
Sat Nov 13 14:17:02 2004 us=191600 103: tls_timeout = 2
Sat Nov 13 14:17:02 2004 us=191850 104: renegotiate_bytes = 0
Sat Nov 13 14:17:02 2004 us=192107 105: renegotiate_packets = 0
Sat Nov 13 14:17:02 2004 us=192445 106: renegotiate_seconds = 3600
Sat Nov 13 14:17:02 2004 us=192706 107: handshake_window = 60
Sat Nov 13 14:17:02 2004 us=193018 108: transition_window = 3600
Sat Nov 13 14:17:02 2004 us=193245 109: single_session = DISABLED
Sat Nov 13 14:17:02 2004 us=193528 110: tls_auth_file = '[UNDEF]'
Sat Nov 13 14:17:02 2004 us=193873 111: OpenVPN 1.6.0 i686-pc-linux-gnu [SSL] built on Nov 4 2004
Sat Nov 13 14:20:06 2004 us=707117 112: ******* WARNING *******: all encryption and authentication features disabled -- all data will be tunnelled as cleartext
Sat Nov 13 14:20:06 2004 us=815518 113: TUN/TAP device tun1 opened
Sat Nov 13 14:20:06 2004 us=815985 114: /sbin/ifconfig tun1 10.4.0.2 pointopoint 10.4.0.1 mtu 1300
Sat Nov 13 14:20:06 2004 us=826987 115: Data Channel MTU parms [ L:1300 D:1300 EF:0 EB:0 ET:0 EL:0 ]
Sat Nov 13 14:20:06 2004 us=827649 116: Local Options String: 'V3,dev-type tun,link-mtu 1300,tun-mtu 1300,proto UDPv4,ifconfig 10.4.0.1 10.4.0.2'
Sat Nov 13 14:20:06 2004 us=827955 117: Expected Remote Options String: 'V3,dev-type tun,link-mtu 1300,tun-mtu 1300,proto UDPv4,ifconfig 10.4.0.2 10.4.0.1'
Sat Nov 13 14:20:06 2004 us=828649 118: Local Options hash (VER=V3): '635e7448'
Sat Nov 13 14:20:06 2004 us=829081 119: Expected Remote Options hash (VER=V3): '1f9f6acb'
Sat Nov 13 14:20:06 2004 us=829497 120: UDPv4 link local (bound): [undef]:5000
Sat Nov 13 14:20:06 2004 us=829880 121: UDPv4 link remote: xxx.xxx.xxx.xxx:5000
Sat Nov 13 14:20:06 2004 us=830279 122: SELECT TR|tw|SR|sw 5/0
Sat Nov 13 14:20:11 2004 us=825472 123: select returned 0
Sat Nov 13 14:20:11 2004 us=825922 124: SELECT TR|tw|SR|sw 5/0
Sat Nov 13 14:20:11 2004 us=938743 125: select returned 1
Sat Nov 13 14:20:11 2004 us=939147 126: read from TUN/TAP returned 60
Sat Nov 13 14:20:11 2004 us=939843 127: TUN READ [60]: 4500003c 6d130000 7f0103e5 c0a8001c 0a040001 08003a5c 02001100 6162636[more...] md5=dab473b6 399232d3 ffd5dfca f082a884
Sat Nov 13 14:20:11 2004 us=940153 128: SELECT tr|tw|SR|SW 5/0
Sat Nov 13 14:20:11 2004 us=940558 129: select returned 1
Sat Nov 13 14:20:11 2004 us=941036 130: UDPv4 WRITE [60] to xxx.xxx.xxx.xxx:5000: DATA 4500003c 6d130000 7f0103e5 c0a8001c 0a040001 08003a5c 02001100 6162636[more...]
Sat Nov 13 14:20:11 2004 us=941630 131: UDPv4 write returned 60
Sat Nov 13 14:20:11 2004 us=941963 132: SELECT TR|tw|SR|sw 5/0
Sat Nov 13 14:20:12 2004 us=998696 133: select returned 1
Sat Nov 13 14:20:12 2004 us=998787 134: read from TUN/TAP returned 60
Sat Nov 13 14:20:12 2004 us=998934 135: TUN READ [60]: 4500003c 6d1f0000 7f0103d9 c0a8001c 0a040001 0800395c 02001200 6162636[more...] md5=45cc7c1b 1c25d6e9 4d529584 7b5fcb6c
Sat Nov 13 14:20:12 2004 us=998984 136: SELECT tr|tw|SR|SW 4/0
Sat Nov 13 14:20:12 2004 us=999015 137: select returned 1
Sat Nov 13 14:20:12 2004 us=999134 138: UDPv4 WRITE [60] to xxx.xxx.xxx.xxx:5000: DATA 4500003c 6d1f0000 7f0103d9 c0a8001c 0a040001 0800395c 02001200 6162636[more...]
Sat Nov 13 14:20:12 2004 us=999238 139: UDPv4 write returned 60
Sat Nov 13 14:20:12 2004 us=999278 140: SELECT TR|tw|SR|sw 4/0
Sat Nov 13 14:20:14 2004 us=498877 141: select returned 1
Sat Nov 13 14:20:14 2004 us=498993 142: read from TUN/TAP returned 60
Sat Nov 13 14:20:14 2004 us=499147 143: TUN READ [60]: 4500003c 6d210000 7f0103d7 c0a8001c 0a040001 0800385c 02001300 6162636[more...] md5=5d82402b 3d5e7064 95fa5b5f 24e590d8
Sat Nov 13 14:20:14 2004 us=499200 144: SELECT tr|tw|SR|SW 2/0
Sat Nov 13 14:20:14 2004 us=499234 145: select returned 1
Sat Nov 13 14:20:14 2004 us=499354 146: UDPv4 WRITE [60] to xxx.xxx.xxx.xxx:5000: DATA 4500003c 6d210000 7f0103d7 c0a8001c 0a040001 0800385c 02001300 6162636[more...]
Sat Nov 13 14:20:14 2004 us=499476 147: UDPv4 write returned 60
Sat Nov 13 14:20:14 2004 us=499515 148: SELECT TR|tw|SR|sw 2/0
Sat Nov 13 14:20:15 2004 us=998527 149: select returned 1
Sat Nov 13 14:20:15 2004 us=998657 150: read from TUN/TAP returned 60
Sat Nov 13 14:20:15 2004 us=998812 151: TUN READ [60]: 4500003c 6d230000 7f0103d5 c0a8001c 0a040001 0800375c 02001400 6162636[more...] md5=da01cdc1 47b27c13 e3621512 20980b0c
Sat Nov 13 14:20:15 2004 us=998871 152: SELECT tr|tw|SR|SW 1/0
Sat Nov 13 14:20:15 2004 us=998907 153: select returned 1
Sat Nov 13 14:20:15 2004 us=999028 154: UDPv4 WRITE [60] to xxx.xxx.xxx.xxx:5000: DATA 4500003c 6d230000 7f0103d5 c0a8001c 0a040001 0800375c 02001400 6162636[more...]
Sat Nov 13 14:20:15 2004 us=999159 155: UDPv4 write returned 60
Sat Nov 13 14:20:15 2004 us=999201 156: SELECT TR|tw|SR|sw 1/0
Sat Nov 13 14:20:16 2004 us=995456 157: select returned 0
Sat Nov 13 14:20:16 2004 us=995548 158: SENT OCC_REQUEST
Sat Nov 13 14:20:16 2004 us=995584 159: SELECT tr|tw|SR|SW 5/0
Sat Nov 13 14:20:16 2004 us=995614 160: select returned 1
Sat Nov 13 14:20:16 2004 us=995679 161: UDPv4 WRITE [17] to xxx.xxx.xxx.xxx:5000: DATA 287f346b d4ef7a81 2d56b8d3 afc5459c 00
Sat Nov 13 14:20:16 2004 us=995771 162: UDPv4 write returned 17
Sat Nov 13 14:20:16 2004 us=995807 163: SELECT TR|tw|SR|sw 5/0
Sat Nov 13 14:20:17 2004 us=29104 164: select returned 1
Sat Nov 13 14:20:17 2004 us=29214 165: UDPv4 read returned 99
Sat Nov 13 14:20:17 2004 us=29386 166: UDPv4 READ [99] from xxx.xxx.xxx.xxx:5000: DATA 287f346b d4ef7a81 2d56b8d3 afc5459c 0156332c 6465762d 74797065 2074756[more...]
Sat Nov 13 14:20:17 2004 us=29423 167: IP Address OK from xxx.xxx.xxx.xxx:5000
Sat Nov 13 14:20:17 2004 us=29518 168: Peer Connection Initiated with xxx.xxx.xxx.xxx:5000
Sat Nov 13 14:20:17 2004 us=29551 169: RECEIVED OCC_REPLY
Sat Nov 13 14:20:17 2004 us=29596 170: SELECT TR|tw|SR|sw 4/0
Sat Nov 13 14:20:21 2004 us=25462 171: select returned 0
Sat Nov 13 14:20:21 2004 us=25559 172: SELECT TR|tw|SR|sw 5/0
Sat Nov 13 14:20:26 2004 us=25458 173: select returned 0
Sat Nov 13 14:20:26 2004 us=25547 174: SELECT TR|tw|SR|sw 31536000/0

この状態で実家ルータ下のWindows2000クライアントからping　10.4.0.1を行っても、Request timed outになってしまいました。

よろしくお願いします。

ヘリに洋: 会議室デビュー日: 2004/11/13; 投稿数: 2

投稿日時: 2004-11-19 11:06

本人です。

linuxのシェル画面で
openvpn --remote xxx.dip.jp --dev tun1 --ifconfig 10.4.0.2 10.4.0.1 --verb 9
と打った後に、
もういちど別のセッションをシェルで立ち上げて、
ping 10.4.0.1
と打ったところ、応答が帰ってきました。
解決しました。

ルータ下のクライアントからpingを打っていたのがそもそもの間違いでした。
大変くだらないことでした。
お騒がせしました。

皆様にお詫び申し上げます。

＠IT SpecialPR

DDNSでOpenVPN

スキルアップ／キャリアアップ（JOB@IT）