Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Pf Sence - Openvpn(Remote Access Points)

    Scheduled Pinned Locked Moved Russian
    5 Posts 2 Posters 698 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • Е
      Евгений
      last edited by

      Доброго дня уважаемые коллеги! У меня стоит 2.4.4-RELEASE-p3 на нем поднята стандартнуя маршрутизация и поднят сервер Remote Access (user auth) для того что бы удаленные юзеры заходили через софтовый ovpn. Пользователей стало больше и тут я столкнулся с проблемой больше 8 ми не может подключиться я не знаю почему, есть какие то ограничения? Курил мануалы таковых не нашел.. При подключении клиента когда уже 8 пользователей авторизованы пишет лог
      Может кто сталкивался в чем может быть причина. Заранее всех благодарю!
      Скриншоты настроек прилагаюScreenshot_1.jpg Screenshot_2.jpg Screenshot_3.jpg

      Wed Feb 10 10:07:47 2021 UDP link remote: [AF_INET]95.174.102.21:2296
      Wed Feb 10 10:08:47 2021 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
      Wed Feb 10 10:08:47 2021 TLS Error: TLS handshake failed
      Wed Feb 10 10:08:47 2021 SIGUSR1[soft,tls-error] received, process restarting
      Wed Feb 10 10:08:52 2021 TCP/UDP: Preserving recently used remote address: [AF_INET]95.174.102.21:2296
      Wed Feb 10 10:08:52 2021 UDP link local (bound): [AF_INET][undef]:1194
      Wed Feb 10 10:08:52 2021 UDP link remote: [AF_INET]95.174.102.21:2296
      Wed Feb 10 10:09:52 2021 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
      Wed Feb 10 10:09:52 2021 TLS Error: TLS handshake failed
      Wed Feb 10 10:09:52 2021 SIGUSR1[soft,tls-error] received, process restarting
      Wed Feb 10 10:09:57 2021 TCP/UDP: Preserving recently used remote address: [AF_INET]95.174.102.21:2296
      Wed Feb 10 10:09:57 2021 UDP link local (bound): [AF_INET][undef]:1194
      Wed Feb 10 10:09:57 2021 UDP link remote: [AF_INET]95.174.102.21:2296
      Wed Feb 10 10:09:57 2021 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
      Wed Feb 10 10:09:57 2021 [INTMA TGN RAP] Peer Connection Initiated with [AF_INET]95.174.102.21:2296

      P 1 Reply Last reply Reply Quote 0
      • P
        pigbrother @Евгений
        last edited by pigbrother

        Это лог со стороны клиента. Он говорит о невозможности начать соединение . Что говорит лог на сервере в этот момент?

        Е 1 Reply Last reply Reply Quote 0
        • Е
          Евгений @pigbrother
          last edited by

          @pigbrother said in Pf Sence - Openvpn(Remote Access Points):

          Это лог со стороны клиента. Он говорит о невозможности начать соединение . Что говорит лог на сервере в этот момент?

          Feb 10 10:33:30 openvpn 50025 90.189.178.216:1038 [ovpndelta] Peer Connection Initiated with [AF_INET]90.189.178.216:1038
          Feb 10 10:33:30 openvpn 50025 ovpndelta/90.189.178.216:1038 MULTI_sva: pool returned IPv4=172.16.10.4, IPv6=(Not enabled)
          Feb 10 10:46:00 openvpn 50025 95.174.110.204:1194 MULTI: new incoming connection would exceed maximum number of clients (8)
          Feb 10 10:46:01 openvpn 50025 95.174.110.204:1194 MULTI: new incoming connection would exceed maximum number of clients (8)
          Feb 10 10:46:06 openvpn 50025 95.174.110.204:1194 MULTI: new incoming connection would exceed maximum number of clients (8)
          Feb 10 10:46:14 openvpn 50025 95.174.110.204:1194 MULTI: new incoming connection would exceed maximum number of clients (8)
          Feb 10 10:46:31 openvpn 50025 95.174.110.204:1194 MULTI: new incoming connection would exceed maximum number of clients (8)
          Feb 10 10:46:49 openvpn 50025 ovpndzeta/90.189.178.216:1039 peer info: IV_VER=2.4.6
          Feb 10 10:46:49 openvpn 50025 ovpndzeta/90.189.178.216:1039 peer info: IV_PLAT=win
          Feb 10 10:46:49 openvpn 50025 ovpndzeta/90.189.178.216:1039 peer info: IV_PROTO=2
          Feb 10 10:46:49 openvpn 50025 ovpndzeta/90.189.178.216:1039 peer info: IV_LZ4=1
          Feb 10 10:46:49 openvpn 50025 ovpndzeta/90.189.178.216:1039 peer info: IV_LZ4v2=1
          Feb 10 10:46:49 openvpn 50025 ovpndzeta/90.189.178.216:1039 peer info: IV_LZO=1
          Feb 10 10:46:49 openvpn 50025 ovpndzeta/90.189.178.216:1039 peer info: IV_COMP_STUB=1
          Feb 10 10:46:49 openvpn 50025 ovpndzeta/90.189.178.216:1039 peer info: IV_COMP_STUBv2=1
          Feb 10 10:46:49 openvpn 50025 ovpndzeta/90.189.178.216:1039 peer info: IV_TCPNL=1
          Feb 10 10:46:49 openvpn 50025 ovpndzeta/90.189.178.216:1039 peer info: IV_GUI_VER=OpenVPN_GUI_11
          Feb 10 10:46:49 openvpn user 'ovpndzeta' authenticated
          Feb 10 10:47:05 openvpn 50025 95.174.110.204:1194 MULTI: new incoming connection would exceed maximum number of clients (8)
          Feb 10 10:47:08 openvpn 50025 95.174.110.204:1194 MULTI: new incoming connection would exceed maximum number of clients (8)
          Feb 10 10:47:12 openvpn 50025 95.174.110.204:1194 MULTI: new incoming connection would exceed maximum number of clients (8)
          Feb 10 10:47:21 openvpn 50025 95.174.110.204:1194 MULTI: new incoming connection would exceed maximum number of clients (8)

          Е 1 Reply Last reply Reply Quote 0
          • Е
            Евгений @Евгений
            last edited by

            @евгений said in Pf Sence - Openvpn(Remote Access Points):

            @pigbrother said in Pf Sence - Openvpn(Remote Access Points):

            Это лог со стороны клиента. Он говорит о невозможности начать соединение . Что говорит лог на сервере в этот момент?

            Feb 10 10:33:30 openvpn 50025 90.189.178.216:1038 [ovpndelta] Peer Connection Initiated with [AF_INET]90.189.178.216:1038
            Feb 10 10:33:30 openvpn 50025 ovpndelta/90.189.178.216:1038 MULTI_sva: pool returned IPv4=172.16.10.4, IPv6=(Not enabled)
            Feb 10 10:46:00 openvpn 50025 95.174.110.204:1194 MULTI: new incoming connection would exceed maximum number of clients (8)
            Feb 10 10:46:01 openvpn 50025 95.174.110.204:1194 MULTI: new incoming connection would exceed maximum number of clients (8)
            Feb 10 10:46:06 openvpn 50025 95.174.110.204:1194 MULTI: new incoming connection would exceed maximum number of clients (8)
            Feb 10 10:46:14 openvpn 50025 95.174.110.204:1194 MULTI: new incoming connection would exceed maximum number of clients (8)
            Feb 10 10:46:31 openvpn 50025 95.174.110.204:1194 MULTI: new incoming connection would exceed maximum number of clients (8)
            Feb 10 10:46:49 openvpn 50025 ovpndzeta/90.189.178.216:1039 peer info: IV_VER=2.4.6
            Feb 10 10:46:49 openvpn 50025 ovpndzeta/90.189.178.216:1039 peer info: IV_PLAT=win
            Feb 10 10:46:49 openvpn 50025 ovpndzeta/90.189.178.216:1039 peer info: IV_PROTO=2
            Feb 10 10:46:49 openvpn 50025 ovpndzeta/90.189.178.216:1039 peer info: IV_LZ4=1
            Feb 10 10:46:49 openvpn 50025 ovpndzeta/90.189.178.216:1039 peer info: IV_LZ4v2=1
            Feb 10 10:46:49 openvpn 50025 ovpndzeta/90.189.178.216:1039 peer info: IV_LZO=1
            Feb 10 10:46:49 openvpn 50025 ovpndzeta/90.189.178.216:1039 peer info: IV_COMP_STUB=1
            Feb 10 10:46:49 openvpn 50025 ovpndzeta/90.189.178.216:1039 peer info: IV_COMP_STUBv2=1
            Feb 10 10:46:49 openvpn 50025 ovpndzeta/90.189.178.216:1039 peer info: IV_TCPNL=1
            Feb 10 10:46:49 openvpn 50025 ovpndzeta/90.189.178.216:1039 peer info: IV_GUI_VER=OpenVPN_GUI_11
            Feb 10 10:46:49 openvpn user 'ovpndzeta' authenticated
            Feb 10 10:47:05 openvpn 50025 95.174.110.204:1194 MULTI: new incoming connection would exceed maximum number of clients (8)
            Feb 10 10:47:08 openvpn 50025 95.174.110.204:1194 MULTI: new incoming connection would exceed maximum number of clients (8)
            Feb 10 10:47:12 openvpn 50025 95.174.110.204:1194 MULTI: new incoming connection would exceed maximum number of clients (8)
            Feb 10 10:47:21 openvpn 50025 95.174.110.204:1194 MULTI: new incoming connection would exceed maximum number of clients (8)

            Всем спасибо разобрался в конфиге было ограничение на 8 клиентов)

            P 1 Reply Last reply Reply Quote 0
            • P
              pigbrother @Евгений
              last edited by

              @евгений
              Поздравляю.
              Удалите\отредактируйте посты с IP адресами.

              1 Reply Last reply Reply Quote 0
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.