salve siniori... prima volta che lavoro con le vpn...
sapete se è possibile connettersi senza essere root?
al momento il comando:
openvpn --config Andrea-TO-IPCop.ovpn
funziona benissimo, ma solo da root, da utente normale fallisce così:
anubis@suse-laptop:~/Desktop/Andrea-TO-IPCop> openvpn --config Andrea-TO-IPCop.ovpn<br />Fri Jul 3 14:58:56 2009 OpenVPN 2.0.9 i586-suse-linux [SSL] [LZO] [EPOLL] built on Dec 3 2008<br />Fri Jul 3 14:58:56 2009 IMPORTANT: OpenVPN's default port number is now 1194, based on an official port number assignment by IANA. OpenVPN 2.0-beta16 and earlier used 5000 as the default port. <br />Enter Private Key Password: <br />Fri Jul 3 14:58:59 2009 WARNING: normally if you use --mssfix and/or --fragment, you should also set --tun-mtu 1500 (currently it is 1400) <br />Fri Jul 3 14:58:59 2009 Control Channel MTU parms [ L:1441 D:138 EF:38 EB:0 ET:0 EL:0 ] <br />Fri Jul 3 14:58:59 2009 Data Channel MTU parms [ L:1441 D:1441 EF:41 EB:4 ET:0 EL:0 ] <br />Fri Jul 3 14:58:59 2009 Local Options hash (VER=V4): '57657c3f' <br />Fri Jul 3 14:58:59 2009 Expected Remote Options hash (VER=V4): '778eeec5' <br />Fri Jul 3 14:58:59 2009 UDPv4 link local (bound): [undef]:1194 <br />Fri Jul 3 14:58:59 2009 UDPv4 link remote: 151.95.196.217:1194 <br />Fri Jul 3 14:58:59 2009 TLS: Initial packet from SERVER-IP:1194, sid=b5f3d529 c7cb652b <br />Fri Jul 3 14:59:00 2009 VERIFY OK: depth=1, /C=IT/ST=Puglia/L=Brindisi/O=QSI-BRINDISI/CN=QSI-BRINDISI_CA/emailAddress=brindisi@qsi.org <br />Fri Jul 3 14:59:00 2009 VERIFY OK: nsCertType=SERVER <br />Fri Jul 3 14:59:00 2009 VERIFY OK: depth=0, /C=IT/ST=Puglia/O=QSI-BRINDISI/CN=192.168.0.100 <br />Fri Jul 3 14:59:00 2009 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key <br />Fri Jul 3 14:59:00 2009 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication <br />Fri Jul 3 14:59:00 2009 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key<br />Fri Jul 3 14:59:00 2009 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication<br />Fri Jul 3 14:59:00 2009 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA<br />Fri Jul 3 14:59:00 2009 [192.168.0.100] Peer Connection Initiated with SERVER-IP:1194<br />Fri Jul 3 14:59:01 2009 SENT CONTROL [192.168.0.100]: 'PUSH_REQUEST' (status=1)<br />Fri Jul 3 14:59:02 2009 PUSH: Received control message: 'PUSH_REPLY,route 192.168.1.0 255.255.255.0,route 10.254.245.1,ifconfig 10.254.245.6 10.254.245.5'<br />Fri Jul 3 14:59:02 2009 OPTIONS IMPORT: --ifconfig/up options modified<br />Fri Jul 3 14:59:02 2009 OPTIONS IMPORT: route options modified<br />Fri Jul 3 14:59:02 2009 Note: Cannot ioctl TUNSETIFF tun: Operation not permitted (errno=1)<br />Fri Jul 3 14:59:02 2009 Note: Attempting fallback to kernel 2.2 TUN/TAP interface<br />Fri Jul 3 14:59:02 2009 Cannot allocate TUN/TAP dev dynamically<br />Fri Jul 3 14:59:02 2009 Exiting<br />
idee?? se devo aggiungere il mio utente a qualche gruppo... qual'è?
nessuno?? orion? ferdy? qualche siniorino che lavora spesso con le vpn?
OpenSUSE Member,Packman Packager, Education Project Admin, LXDE Project Admin
Powered by http://en.opensuse.org/HP_Pavilion_dv6855el