Pf Sence - Openvpn(Remote Access Points)
-
Доброго дня уважаемые коллеги! У меня стоит 2.4.4-RELEASE-p3 на нем поднята стандартнуя маршрутизация и поднят сервер Remote Access (user auth) для того что бы удаленные юзеры заходили через софтовый ovpn. Пользователей стало больше и тут я столкнулся с проблемой больше 8 ми не может подключиться я не знаю почему, есть какие то ограничения? Курил мануалы таковых не нашел.. При подключении клиента когда уже 8 пользователей авторизованы пишет лог
Может кто сталкивался в чем может быть причина. Заранее всех благодарю!
Скриншоты настроек прилагаюWed Feb 10 10:07:47 2021 UDP link remote: [AF_INET]95.174.102.21:2296
Wed Feb 10 10:08:47 2021 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Wed Feb 10 10:08:47 2021 TLS Error: TLS handshake failed
Wed Feb 10 10:08:47 2021 SIGUSR1[soft,tls-error] received, process restarting
Wed Feb 10 10:08:52 2021 TCP/UDP: Preserving recently used remote address: [AF_INET]95.174.102.21:2296
Wed Feb 10 10:08:52 2021 UDP link local (bound): [AF_INET][undef]:1194
Wed Feb 10 10:08:52 2021 UDP link remote: [AF_INET]95.174.102.21:2296
Wed Feb 10 10:09:52 2021 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Wed Feb 10 10:09:52 2021 TLS Error: TLS handshake failed
Wed Feb 10 10:09:52 2021 SIGUSR1[soft,tls-error] received, process restarting
Wed Feb 10 10:09:57 2021 TCP/UDP: Preserving recently used remote address: [AF_INET]95.174.102.21:2296
Wed Feb 10 10:09:57 2021 UDP link local (bound): [AF_INET][undef]:1194
Wed Feb 10 10:09:57 2021 UDP link remote: [AF_INET]95.174.102.21:2296
Wed Feb 10 10:09:57 2021 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Wed Feb 10 10:09:57 2021 [INTMA TGN RAP] Peer Connection Initiated with [AF_INET]95.174.102.21:2296 -
Это лог со стороны клиента. Он говорит о невозможности начать соединение . Что говорит лог на сервере в этот момент?
-
@pigbrother said in Pf Sence - Openvpn(Remote Access Points):
Это лог со стороны клиента. Он говорит о невозможности начать соединение . Что говорит лог на сервере в этот момент?
Feb 10 10:33:30 openvpn 50025 90.189.178.216:1038 [ovpndelta] Peer Connection Initiated with [AF_INET]90.189.178.216:1038
Feb 10 10:33:30 openvpn 50025 ovpndelta/90.189.178.216:1038 MULTI_sva: pool returned IPv4=172.16.10.4, IPv6=(Not enabled)
Feb 10 10:46:00 openvpn 50025 95.174.110.204:1194 MULTI: new incoming connection would exceed maximum number of clients (8)
Feb 10 10:46:01 openvpn 50025 95.174.110.204:1194 MULTI: new incoming connection would exceed maximum number of clients (8)
Feb 10 10:46:06 openvpn 50025 95.174.110.204:1194 MULTI: new incoming connection would exceed maximum number of clients (8)
Feb 10 10:46:14 openvpn 50025 95.174.110.204:1194 MULTI: new incoming connection would exceed maximum number of clients (8)
Feb 10 10:46:31 openvpn 50025 95.174.110.204:1194 MULTI: new incoming connection would exceed maximum number of clients (8)
Feb 10 10:46:49 openvpn 50025 ovpndzeta/90.189.178.216:1039 peer info: IV_VER=2.4.6
Feb 10 10:46:49 openvpn 50025 ovpndzeta/90.189.178.216:1039 peer info: IV_PLAT=win
Feb 10 10:46:49 openvpn 50025 ovpndzeta/90.189.178.216:1039 peer info: IV_PROTO=2
Feb 10 10:46:49 openvpn 50025 ovpndzeta/90.189.178.216:1039 peer info: IV_LZ4=1
Feb 10 10:46:49 openvpn 50025 ovpndzeta/90.189.178.216:1039 peer info: IV_LZ4v2=1
Feb 10 10:46:49 openvpn 50025 ovpndzeta/90.189.178.216:1039 peer info: IV_LZO=1
Feb 10 10:46:49 openvpn 50025 ovpndzeta/90.189.178.216:1039 peer info: IV_COMP_STUB=1
Feb 10 10:46:49 openvpn 50025 ovpndzeta/90.189.178.216:1039 peer info: IV_COMP_STUBv2=1
Feb 10 10:46:49 openvpn 50025 ovpndzeta/90.189.178.216:1039 peer info: IV_TCPNL=1
Feb 10 10:46:49 openvpn 50025 ovpndzeta/90.189.178.216:1039 peer info: IV_GUI_VER=OpenVPN_GUI_11
Feb 10 10:46:49 openvpn user 'ovpndzeta' authenticated
Feb 10 10:47:05 openvpn 50025 95.174.110.204:1194 MULTI: new incoming connection would exceed maximum number of clients (8)
Feb 10 10:47:08 openvpn 50025 95.174.110.204:1194 MULTI: new incoming connection would exceed maximum number of clients (8)
Feb 10 10:47:12 openvpn 50025 95.174.110.204:1194 MULTI: new incoming connection would exceed maximum number of clients (8)
Feb 10 10:47:21 openvpn 50025 95.174.110.204:1194 MULTI: new incoming connection would exceed maximum number of clients (8) -
@евгений said in Pf Sence - Openvpn(Remote Access Points):
@pigbrother said in Pf Sence - Openvpn(Remote Access Points):
Это лог со стороны клиента. Он говорит о невозможности начать соединение . Что говорит лог на сервере в этот момент?
Feb 10 10:33:30 openvpn 50025 90.189.178.216:1038 [ovpndelta] Peer Connection Initiated with [AF_INET]90.189.178.216:1038
Feb 10 10:33:30 openvpn 50025 ovpndelta/90.189.178.216:1038 MULTI_sva: pool returned IPv4=172.16.10.4, IPv6=(Not enabled)
Feb 10 10:46:00 openvpn 50025 95.174.110.204:1194 MULTI: new incoming connection would exceed maximum number of clients (8)
Feb 10 10:46:01 openvpn 50025 95.174.110.204:1194 MULTI: new incoming connection would exceed maximum number of clients (8)
Feb 10 10:46:06 openvpn 50025 95.174.110.204:1194 MULTI: new incoming connection would exceed maximum number of clients (8)
Feb 10 10:46:14 openvpn 50025 95.174.110.204:1194 MULTI: new incoming connection would exceed maximum number of clients (8)
Feb 10 10:46:31 openvpn 50025 95.174.110.204:1194 MULTI: new incoming connection would exceed maximum number of clients (8)
Feb 10 10:46:49 openvpn 50025 ovpndzeta/90.189.178.216:1039 peer info: IV_VER=2.4.6
Feb 10 10:46:49 openvpn 50025 ovpndzeta/90.189.178.216:1039 peer info: IV_PLAT=win
Feb 10 10:46:49 openvpn 50025 ovpndzeta/90.189.178.216:1039 peer info: IV_PROTO=2
Feb 10 10:46:49 openvpn 50025 ovpndzeta/90.189.178.216:1039 peer info: IV_LZ4=1
Feb 10 10:46:49 openvpn 50025 ovpndzeta/90.189.178.216:1039 peer info: IV_LZ4v2=1
Feb 10 10:46:49 openvpn 50025 ovpndzeta/90.189.178.216:1039 peer info: IV_LZO=1
Feb 10 10:46:49 openvpn 50025 ovpndzeta/90.189.178.216:1039 peer info: IV_COMP_STUB=1
Feb 10 10:46:49 openvpn 50025 ovpndzeta/90.189.178.216:1039 peer info: IV_COMP_STUBv2=1
Feb 10 10:46:49 openvpn 50025 ovpndzeta/90.189.178.216:1039 peer info: IV_TCPNL=1
Feb 10 10:46:49 openvpn 50025 ovpndzeta/90.189.178.216:1039 peer info: IV_GUI_VER=OpenVPN_GUI_11
Feb 10 10:46:49 openvpn user 'ovpndzeta' authenticated
Feb 10 10:47:05 openvpn 50025 95.174.110.204:1194 MULTI: new incoming connection would exceed maximum number of clients (8)
Feb 10 10:47:08 openvpn 50025 95.174.110.204:1194 MULTI: new incoming connection would exceed maximum number of clients (8)
Feb 10 10:47:12 openvpn 50025 95.174.110.204:1194 MULTI: new incoming connection would exceed maximum number of clients (8)
Feb 10 10:47:21 openvpn 50025 95.174.110.204:1194 MULTI: new incoming connection would exceed maximum number of clients (8)Всем спасибо разобрался в конфиге было ограничение на 8 клиентов)
-
@евгений
Поздравляю.
Удалите\отредактируйте посты с IP адресами.