• Willkommen im Linux Club - dem deutschsprachigen Supportforum für GNU/Linux. Registriere dich kostenlos, um alle Inhalte zu sehen und Fragen zu stellen.

[geloest] OpenVPN funktioniert nicht - keine Verbindung

Hey

Ich versuche mich das erste mal mit OpenVPN und es funktioniert nicht. Ich lese mich schon seit Tagen durch Anleitungen etc.
Vielleicht kann mir jemand mal einen Tipp geben wo es hängt. Ich komme einfach nicht weiter.
Ich wollte erstmal nur eine einfache Cleint -Server Verbindung mit pre-shared.key.

Server (Suse 10.3) ------ [INTERNET] ------ [Firebox700] ------ Client (Windows XP)

Auf dem Server openVPN installiert (openvpn-2.0.9-44.2)
openvpn.conf
Code:
# OpenVPN soll ins Konfig-Verzeichnis wechseln
cd /etc/openvpn

# Device f. IP-Tunnel
dev tun

# Port und Protokoll
port 444
proto udp

# Paketgroessen
tun-mtu 1500
fragment 1300
mssfix

# Netzwerkkonfiguration (IP Zentrale - IP Zweigstelle)
ifconfig 11.0.0.1 11.0.0.2

# Authentisierung
secret certs/pre-shared.key
der key mit "openvpn --genkey --secret pre-shared.key" generiert und auch auf den Client kopiert
Dann gestartet mit rcopenvpn start
Code:
Sep  2 08:43:24 Zen openvpn[11649]: OpenVPN 2.0.9 i586-suse-linux [SSL] [LZO] [EPOLL] built on Nov 14 2008
Sep  2 08:43:24 Zen openvpn[11649]: TUN/TAP device tun0 opened
Sep  2 08:43:24 Zen openvpn[11649]: /sbin/ifconfig tun0 11.0.0.1 pointopoint 11.0.0.2 mtu 1500
Sep  2 08:43:24 Zen openvpn[11652]: UDPv4 link local (bound): [undef]:444
Sep  2 08:43:24 Zen openvpn[11652]: UDPv4 link remote: [undef]

Jetzt zum Client:
openvpn-2.0.9-install.exe installiert
client.ovpn
Code:
dev tun
remote zen.dynips.net
ifconfig 11.0.0.2 11.0.0.1
secret c:\\Programme\\OpenVPN\\config\\pre-shared.key
port 444
proto udp
log openvpn.log
verb 6
tun-mtu 1500
fragment 1300
mssfix

Protokoll:
Code:
Wed Sep 02 08:49:32 2009 us=746010 Current Parameter Settings:
Wed Sep 02 08:49:32 2009 us=746663   config = 'C:\Programme\OpenVPN\config\client.ovpn'
Wed Sep 02 08:49:32 2009 us=746766   mode = 0
Wed Sep 02 08:49:32 2009 us=746837   show_ciphers = DISABLED
Wed Sep 02 08:49:32 2009 us=746908   show_digests = DISABLED
Wed Sep 02 08:49:32 2009 us=746979   show_engines = DISABLED
Wed Sep 02 08:49:32 2009 us=747048   genkey = DISABLED
Wed Sep 02 08:49:32 2009 us=747118   key_pass_file = '[UNDEF]'
Wed Sep 02 08:49:32 2009 us=747189   show_tls_ciphers = DISABLED
Wed Sep 02 08:49:32 2009 us=747258   proto = 0
Wed Sep 02 08:49:32 2009 us=747327   local = '[UNDEF]'
Wed Sep 02 08:49:32 2009 us=747402   remote_list[0] = {'zen.dynips.net', 444}
Wed Sep 02 08:49:32 2009 us=747473   remote_random = DISABLED
Wed Sep 02 08:49:32 2009 us=747543   local_port = 444
Wed Sep 02 08:49:32 2009 us=747613   remote_port = 444
Wed Sep 02 08:49:32 2009 us=747682   remote_float = DISABLED
Wed Sep 02 08:49:32 2009 us=747751   ipchange = '[UNDEF]'
Wed Sep 02 08:49:32 2009 us=747821   bind_local = ENABLED
Wed Sep 02 08:49:32 2009 us=747888   dev = 'tun'
Wed Sep 02 08:49:32 2009 us=747957   dev_type = '[UNDEF]'
Wed Sep 02 08:49:32 2009 us=748027   dev_node = '[UNDEF]'
Wed Sep 02 08:49:32 2009 us=748096   tun_ipv6 = DISABLED
Wed Sep 02 08:49:32 2009 us=748166   ifconfig_local = '11.0.0.2'
Wed Sep 02 08:49:32 2009 us=748238   ifconfig_remote_netmask = '11.0.0.1'
Wed Sep 02 08:49:32 2009 us=748308   ifconfig_noexec = DISABLED
Wed Sep 02 08:49:32 2009 us=748378   ifconfig_nowarn = DISABLED
Wed Sep 02 08:49:32 2009 us=748447   shaper = 0
Wed Sep 02 08:49:32 2009 us=748516   tun_mtu = 1500
Wed Sep 02 08:49:32 2009 us=748586   tun_mtu_defined = ENABLED
Wed Sep 02 08:49:32 2009 us=748656   link_mtu = 1500
Wed Sep 02 08:49:32 2009 us=748726   link_mtu_defined = DISABLED
Wed Sep 02 08:49:32 2009 us=748796   tun_mtu_extra = 0
Wed Sep 02 08:49:32 2009 us=748867   tun_mtu_extra_defined = DISABLED
Wed Sep 02 08:49:32 2009 us=748937   fragment = 1300
Wed Sep 02 08:49:32 2009 us=749008   mtu_discover_type = -1
Wed Sep 02 08:49:32 2009 us=749077   mtu_test = 0
Wed Sep 02 08:49:32 2009 us=749145   mlock = DISABLED
Wed Sep 02 08:49:32 2009 us=749214   keepalive_ping = 0
Wed Sep 02 08:49:32 2009 us=749284   keepalive_timeout = 0
Wed Sep 02 08:49:32 2009 us=749355   inactivity_timeout = 0
Wed Sep 02 08:49:32 2009 us=749425   ping_send_timeout = 0
Wed Sep 02 08:49:32 2009 us=749495   ping_rec_timeout = 0
Wed Sep 02 08:49:32 2009 us=749566   ping_rec_timeout_action = 0
Wed Sep 02 08:49:32 2009 us=749636   ping_timer_remote = DISABLED
Wed Sep 02 08:49:32 2009 us=749706   remap_sigusr1 = 0
Wed Sep 02 08:49:32 2009 us=749777   explicit_exit_notification = 0
Wed Sep 02 08:49:32 2009 us=749846   persist_tun = DISABLED
Wed Sep 02 08:49:32 2009 us=749917   persist_local_ip = DISABLED
Wed Sep 02 08:49:32 2009 us=749987   persist_remote_ip = DISABLED
Wed Sep 02 08:49:32 2009 us=750095   persist_key = DISABLED
Wed Sep 02 08:49:32 2009 us=750165   mssfix = 1300
Wed Sep 02 08:49:32 2009 us=750238   resolve_retry_seconds = 1000000000
Wed Sep 02 08:49:32 2009 us=750309   connect_retry_seconds = 5
Wed Sep 02 08:49:32 2009 us=750378   username = '[UNDEF]'
Wed Sep 02 08:49:32 2009 us=750448   groupname = '[UNDEF]'
Wed Sep 02 08:49:32 2009 us=750517   chroot_dir = '[UNDEF]'
Wed Sep 02 08:49:32 2009 us=750587   cd_dir = '[UNDEF]'
Wed Sep 02 08:49:32 2009 us=750655   writepid = '[UNDEF]'
Wed Sep 02 08:49:32 2009 us=750725   up_script = '[UNDEF]'
Wed Sep 02 08:49:32 2009 us=750794   down_script = '[UNDEF]'
Wed Sep 02 08:49:32 2009 us=750863   down_pre = DISABLED
Wed Sep 02 08:49:32 2009 us=750933   up_restart = DISABLED
Wed Sep 02 08:49:32 2009 us=751003   up_delay = DISABLED
Wed Sep 02 08:49:32 2009 us=751072   daemon = DISABLED
Wed Sep 02 08:49:32 2009 us=751140   inetd = 0
Wed Sep 02 08:49:32 2009 us=751207   log = ENABLED
Wed Sep 02 08:49:32 2009 us=751277   suppress_timestamps = DISABLED
Wed Sep 02 08:49:32 2009 us=751346   nice = 0
Wed Sep 02 08:49:32 2009 us=751420   verbosity = 6
Wed Sep 02 08:49:32 2009 us=751498   mute = 0
Wed Sep 02 08:49:32 2009 us=751566   gremlin = 0
Wed Sep 02 08:49:32 2009 us=751635   status_file = '[UNDEF]'
Wed Sep 02 08:49:32 2009 us=751705   status_file_version = 1
Wed Sep 02 08:49:32 2009 us=751776   status_file_update_freq = 60
Wed Sep 02 08:49:32 2009 us=751844   occ = ENABLED
Wed Sep 02 08:49:32 2009 us=751913   rcvbuf = 0
Wed Sep 02 08:49:32 2009 us=751982   sndbuf = 0
Wed Sep 02 08:49:32 2009 us=752052   socks_proxy_server = '[UNDEF]'
Wed Sep 02 08:49:32 2009 us=752139   socks_proxy_port = 0
Wed Sep 02 08:49:32 2009 us=752210   socks_proxy_retry = DISABLED
Wed Sep 02 08:49:32 2009 us=752279   fast_io = DISABLED
Wed Sep 02 08:49:32 2009 us=752374   comp_lzo = DISABLED
Wed Sep 02 08:49:32 2009 us=752446   comp_lzo_adaptive = ENABLED
Wed Sep 02 08:49:32 2009 us=752516   route_script = '[UNDEF]'
Wed Sep 02 08:49:32 2009 us=752586   route_default_gateway = '[UNDEF]'
Wed Sep 02 08:49:32 2009 us=752657   route_noexec = DISABLED
Wed Sep 02 08:49:32 2009 us=752726   route_delay = 0
Wed Sep 02 08:49:32 2009 us=752796   route_delay_window = 30
Wed Sep 02 08:49:32 2009 us=752867   route_delay_defined = ENABLED
Wed Sep 02 08:49:32 2009 us=752938   management_addr = '[UNDEF]'
Wed Sep 02 08:49:32 2009 us=753008   management_port = 0
Wed Sep 02 08:49:32 2009 us=753079   management_user_pass = '[UNDEF]'
Wed Sep 02 08:49:32 2009 us=753152   management_log_history_cache = 250
Wed Sep 02 08:49:32 2009 us=753224   management_echo_buffer_size = 100
Wed Sep 02 08:49:32 2009 us=753296   management_query_passwords = DISABLED
Wed Sep 02 08:49:32 2009 us=753367   management_hold = DISABLED
Wed Sep 02 08:49:32 2009 us=753441   shared_secret_file = 'c:\Programme\OpenVPN\config\pre-shared.key'
Wed Sep 02 08:49:32 2009 us=753513   key_direction = 0
Wed Sep 02 08:49:32 2009 us=753583   ciphername_defined = ENABLED
Wed Sep 02 08:49:32 2009 us=753654   ciphername = 'BF-CBC'
Wed Sep 02 08:49:32 2009 us=753724   authname_defined = ENABLED
Wed Sep 02 08:49:32 2009 us=753794   authname = 'SHA1'
Wed Sep 02 08:49:32 2009 us=753863   keysize = 0
Wed Sep 02 08:49:32 2009 us=753931   engine = DISABLED
Wed Sep 02 08:49:32 2009 us=753999   replay = ENABLED
Wed Sep 02 08:49:32 2009 us=754070   mute_replay_warnings = DISABLED
Wed Sep 02 08:49:32 2009 us=754140   replay_window = 64
Wed Sep 02 08:49:32 2009 us=754209   replay_time = 15
Wed Sep 02 08:49:32 2009 us=754278   packet_id_file = '[UNDEF]'
Wed Sep 02 08:49:32 2009 us=754347   use_iv = ENABLED
Wed Sep 02 08:49:32 2009 us=754417   test_crypto = DISABLED
Wed Sep 02 08:49:32 2009 us=754487   tls_server = DISABLED
Wed Sep 02 08:49:32 2009 us=754556   tls_client = DISABLED
Wed Sep 02 08:49:32 2009 us=754625   key_method = 2
Wed Sep 02 08:49:32 2009 us=754693   ca_file = '[UNDEF]'
Wed Sep 02 08:49:32 2009 us=754762   dh_file = '[UNDEF]'
Wed Sep 02 08:49:32 2009 us=754831   cert_file = '[UNDEF]'
Wed Sep 02 08:49:32 2009 us=754900   priv_key_file = '[UNDEF]'
Wed Sep 02 08:49:32 2009 us=754972   pkcs12_file = '[UNDEF]'
Wed Sep 02 08:49:32 2009 us=755042   cryptoapi_cert = '[UNDEF]'
Wed Sep 02 08:49:32 2009 us=755111   cipher_list = '[UNDEF]'
Wed Sep 02 08:49:32 2009 us=755181   tls_verify = '[UNDEF]'
Wed Sep 02 08:49:32 2009 us=755250   tls_remote = '[UNDEF]'
Wed Sep 02 08:49:32 2009 us=755320   crl_file = '[UNDEF]'
Wed Sep 02 08:49:32 2009 us=755389   ns_cert_type = 0
Wed Sep 02 08:49:32 2009 us=755458   tls_timeout = 2
Wed Sep 02 08:49:32 2009 us=755528   renegotiate_bytes = 0
Wed Sep 02 08:49:32 2009 us=755598   renegotiate_packets = 0
Wed Sep 02 08:49:32 2009 us=755669   renegotiate_seconds = 3600
Wed Sep 02 08:49:32 2009 us=755739   handshake_window = 60
Wed Sep 02 08:49:32 2009 us=755810   transition_window = 3600
Wed Sep 02 08:49:32 2009 us=755879   single_session = DISABLED
Wed Sep 02 08:49:32 2009 us=755949   tls_exit = DISABLED
Wed Sep 02 08:49:32 2009 us=756018   tls_auth_file = '[UNDEF]'
Wed Sep 02 08:49:32 2009 us=756095   server_network = 0.0.0.0
Wed Sep 02 08:49:32 2009 us=756172   server_netmask = 0.0.0.0
Wed Sep 02 08:49:32 2009 us=756255   server_bridge_ip = 0.0.0.0
Wed Sep 02 08:49:32 2009 us=756327   server_bridge_netmask = 0.0.0.0
Wed Sep 02 08:49:32 2009 us=756401   server_bridge_pool_start = 0.0.0.0
Wed Sep 02 08:49:32 2009 us=756474   server_bridge_pool_end = 0.0.0.0
Wed Sep 02 08:49:32 2009 us=756546   ifconfig_pool_defined = DISABLED
Wed Sep 02 08:49:32 2009 us=756619   ifconfig_pool_start = 0.0.0.0
Wed Sep 02 08:49:32 2009 us=756692   ifconfig_pool_end = 0.0.0.0
Wed Sep 02 08:49:32 2009 us=756765   ifconfig_pool_netmask = 0.0.0.0
Wed Sep 02 08:49:32 2009 us=756838   ifconfig_pool_persist_filename = '[UNDEF]'
Wed Sep 02 08:49:32 2009 us=756911   ifconfig_pool_persist_refresh_freq = 600
Wed Sep 02 08:49:32 2009 us=756983   ifconfig_pool_linear = DISABLED
Wed Sep 02 08:49:32 2009 us=757054   n_bcast_buf = 256
Wed Sep 02 08:49:32 2009 us=757124   tcp_queue_limit = 64
Wed Sep 02 08:49:32 2009 us=757193   real_hash_size = 256
Wed Sep 02 08:49:32 2009 us=757264   virtual_hash_size = 256
Wed Sep 02 08:49:32 2009 us=757334   client_connect_script = '[UNDEF]'
Wed Sep 02 08:49:32 2009 us=757405   learn_address_script = '[UNDEF]'
Wed Sep 02 08:49:32 2009 us=757477   client_disconnect_script = '[UNDEF]'
Wed Sep 02 08:49:32 2009 us=757548   client_config_dir = '[UNDEF]'
Wed Sep 02 08:49:32 2009 us=757618   ccd_exclusive = DISABLED
Wed Sep 02 08:49:32 2009 us=757687   tmp_dir = '[UNDEF]'
Wed Sep 02 08:49:32 2009 us=757758   push_ifconfig_defined = DISABLED
Wed Sep 02 08:49:32 2009 us=757831   push_ifconfig_local = 0.0.0.0
Wed Sep 02 08:49:32 2009 us=757905   push_ifconfig_remote_netmask = 0.0.0.0
Wed Sep 02 08:49:32 2009 us=757975   enable_c2c = DISABLED
Wed Sep 02 08:49:32 2009 us=758045   duplicate_cn = DISABLED
Wed Sep 02 08:49:32 2009 us=758114   cf_max = 0
Wed Sep 02 08:49:32 2009 us=758182   cf_per = 0
Wed Sep 02 08:49:32 2009 us=758251   max_clients = 1024
Wed Sep 02 08:49:32 2009 us=758322   max_routes_per_client = 256
Wed Sep 02 08:49:32 2009 us=758393   client_cert_not_required = DISABLED
Wed Sep 02 08:49:32 2009 us=758465   username_as_common_name = DISABLED
Wed Sep 02 08:49:32 2009 us=758538   auth_user_pass_verify_script = '[UNDEF]'
Wed Sep 02 08:49:32 2009 us=758611   auth_user_pass_verify_script_via_file = DISABLED
Wed Sep 02 08:49:32 2009 us=758681   client = DISABLED
Wed Sep 02 08:49:32 2009 us=758750   pull = DISABLED
Wed Sep 02 08:49:32 2009 us=758820   auth_user_pass_file = '[UNDEF]'
Wed Sep 02 08:49:32 2009 us=758894   show_net_up = DISABLED
Wed Sep 02 08:49:32 2009 us=758964   route_method = 0
Wed Sep 02 08:49:32 2009 us=759033   ip_win32_defined = DISABLED
Wed Sep 02 08:49:32 2009 us=759104   ip_win32_type = 3
Wed Sep 02 08:49:32 2009 us=759175   dhcp_masq_offset = 0
Wed Sep 02 08:49:32 2009 us=759247   dhcp_lease_time = 31536000
Wed Sep 02 08:49:32 2009 us=759316   tap_sleep = 0
Wed Sep 02 08:49:32 2009 us=759385   dhcp_options = DISABLED
Wed Sep 02 08:49:32 2009 us=759454   dhcp_renew = DISABLED
Wed Sep 02 08:49:32 2009 us=759524   dhcp_pre_release = DISABLED
Wed Sep 02 08:49:32 2009 us=759593   dhcp_release = DISABLED
Wed Sep 02 08:49:32 2009 us=759662   domain = '[UNDEF]'
Wed Sep 02 08:49:32 2009 us=759732   netbios_scope = '[UNDEF]'
Wed Sep 02 08:49:32 2009 us=759802   netbios_node_type = 0
Wed Sep 02 08:49:32 2009 us=759871   disable_nbt = DISABLED
Wed Sep 02 08:49:32 2009 us=760279 OpenVPN 2.0.9 Win32-MinGW [SSL] [LZO] built on Oct  1 2006
Wed Sep 02 08:49:32 2009 us=781385 Static Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
Wed Sep 02 08:49:32 2009 us=781549 Static Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Wed Sep 02 08:49:32 2009 us=781787 Static Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
Wed Sep 02 08:49:32 2009 us=781878 Static Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Wed Sep 02 08:49:32 2009 us=958863 TAP-WIN32 device [LAN-Verbindung 4] opened: \\.\Global\{E109F51B-C795-4474-8A45-9F9905F97E47}.tap
Wed Sep 02 08:49:32 2009 us=959073 TAP-Win32 Driver Version 8.4 
Wed Sep 02 08:49:32 2009 us=959173 TAP-Win32 MTU=1500
Wed Sep 02 08:49:32 2009 us=959299 Notified TAP-Win32 driver to set a DHCP IP/netmask of 11.0.0.2/255.255.255.252 on interface {E109F51B-C795-4474-8A45-9F9905F97E47} [DHCP-serv: 11.0.0.1, lease-time: 31536000]
Wed Sep 02 08:49:32 2009 us=962311 Successful ARP Flush on interface [2] {E109F51B-C795-4474-8A45-9F9905F97E47}
Wed Sep 02 08:49:32 2009 us=964480 Data Channel MTU parms [ L:1548 D:1300 EF:48 EB:4 ET:0 EL:0 ]
Wed Sep 02 08:49:32 2009 us=964601 Fragmentation MTU parms [ L:1548 D:1300 EF:48 EB:4 ET:0 EL:0 ]
Wed Sep 02 08:49:32 2009 us=964757 Local Options String: 'V4,dev-type tun,link-mtu 1548,tun-mtu 1500,proto UDPv4,ifconfig 11.0.0.1 11.0.0.2,mtu-dynamic,cipher BF-CBC,auth SHA1,keysize 128,secret'
Wed Sep 02 08:49:32 2009 us=964839 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1548,tun-mtu 1500,proto UDPv4,ifconfig 11.0.0.2 11.0.0.1,mtu-dynamic,cipher BF-CBC,auth SHA1,keysize 128,secret'
Wed Sep 02 08:49:32 2009 us=964958 Local Options hash (VER=V4): '62a6b2c3'
Wed Sep 02 08:49:32 2009 us=965057 Expected Remote Options hash (VER=V4): 'c5e9d1e2'
Wed Sep 02 08:49:32 2009 us=965202 Socket Buffers: R=[8192->8192] S=[8192->8192]
Wed Sep 02 08:49:32 2009 us=965291 UDPv4 link local (bound): [undef]:444
Wed Sep 02 08:49:32 2009 us=965363 UDPv4 link remote: 217.93.202.142:444
Wed Sep 02 08:49:44 2009 us=184509 UDPv4 WRITE [60] to 217.93.202.142:444:  DATA len=60
Wed Sep 02 08:49:44 2009 us=186302 read UDPv4: Connection reset by peer (WSAECONNRESET) (code=10054)
Wed Sep 02 08:49:44 2009 us=186431 UDPv4 READ [-1] from [undef]: DATA UNDEF len=-1
Wed Sep 02 08:49:54 2009 us=902142 UDPv4 WRITE [60] to 217.93.202.142:444:  DATA len=60
Wed Sep 02 08:49:54 2009 us=907392 read UDPv4: Connection reset by peer (WSAECONNRESET) (code=10054)
Wed Sep 02 08:49:54 2009 us=907552 UDPv4 READ [-1] from [undef]: DATA UNDEF len=-1
Wed Sep 02 08:50:04 2009 us=726283 UDPv4 WRITE [60] to 217.93.202.142:444:  DATA len=60
Wed Sep 02 08:50:04 2009 us=728046 read UDPv4: Connection reset by peer (WSAECONNRESET) (code=10054)
Wed Sep 02 08:50:04 2009 us=728158 UDPv4 READ [-1] from [undef]: DATA UNDEF len=-1

Wiso geht das nicht. Laut den Installationsanleitungen sollte es funktionieren.
Ich habe auch schon den Standartport versucht.
Von Client zum Server geht z.B. ping, telnet, pop, http, https, ssh etc.
Ein nmap auf den Server zeigt mir aber kein Listen des Port 444 an.
Habe die selbe Serverkonf auf einen suse 11.1 ---> Dort gehts genausowenig !!!

hier noch ein netstat vom Server:
Code:
Zen:/etc/openvpn # netstat -lnp --ip
Aktive Internetverbindungen (Nur Server)
Proto Recv-Q Send-Q Local Address           Foreign Address         State       PID/Program name
tcp        0      0 0.0.0.0:901             0.0.0.0:*               LISTEN      4022/xinetd
tcp        0      0 0.0.0.0:4582            0.0.0.0:*               LISTEN      11114/java
tcp        0      0 0.0.0.0:3306            0.0.0.0:*               LISTEN      3447/mysqld
tcp        0      0 192.168.20.200:139      0.0.0.0:*               LISTEN      3849/smbd
tcp        0      0 0.0.0.0:111             0.0.0.0:*               LISTEN      3724/portmap
tcp        0      0 0.0.0.0:80              0.0.0.0:*               LISTEN      4036/httpd2-prefork
tcp        0      0 0.0.0.0:10000           0.0.0.0:*               LISTEN      3981/perl
tcp        0      0 0.0.0.0:21              0.0.0.0:*               LISTEN      3882/vsftpd
tcp        0      0 192.168.20.200:53       0.0.0.0:*               LISTEN      3420/named
tcp        0      0 127.0.0.1:53            0.0.0.0:*               LISTEN      3420/named
tcp        0      0 0.0.0.0:22              0.0.0.0:*               LISTEN      3933/sshd
tcp        0      0 0.0.0.0:23              0.0.0.0:*               LISTEN      4022/xinetd
tcp        0      0 0.0.0.0:631             0.0.0.0:*               LISTEN      3788/cupsd
tcp        0      0 127.0.0.1:25            0.0.0.0:*               LISTEN      3899/master
tcp        0      0 127.0.0.1:953           0.0.0.0:*               LISTEN      3420/named
tcp        0      0 0.0.0.0:9851            0.0.0.0:*               LISTEN      11114/java
tcp        0      0 192.168.20.200:445      0.0.0.0:*               LISTEN      3849/smbd
udp        0      0 0.0.0.0:32768           0.0.0.0:*                           3159/avahi-daemon:
udp        0      0 0.0.0.0:32769           0.0.0.0:*                           3420/named
udp        0      0 192.168.20.200:137      0.0.0.0:*                           2981/nmbd
udp        0      0 0.0.0.0:137             0.0.0.0:*                           2981/nmbd
udp        0      0 192.168.20.200:138      0.0.0.0:*                           2981/nmbd
udp        0      0 0.0.0.0:138             0.0.0.0:*                           2981/nmbd
udp        0      0 0.0.0.0:10000           0.0.0.0:*                           3981/perl
udp        0      0 192.168.20.200:53       0.0.0.0:*                           3420/named
udp        0      0 127.0.0.1:53            0.0.0.0:*                           3420/named
udp        0      0 0.0.0.0:444             0.0.0.0:*                           11652/openvpn
udp        0      0 0.0.0.0:67              0.0.0.0:*                           3685/dhcpd
udp        0      0 0.0.0.0:5353            0.0.0.0:*                           3159/avahi-daemon:
udp        0      0 0.0.0.0:111             0.0.0.0:*                           3724/portmap
udp        0      0 0.0.0.0:631             0.0.0.0:*                           3788/cupsd
udp        0      0 11.0.0.1:123            0.0.0.0:*                           3967/ntpd
udp        0      0 217.93.202.142:123      0.0.0.0:*                           3967/ntpd
udp        0      0 192.168.30.1:123        0.0.0.0:*                           3967/ntpd
udp        0      0 192.168.20.200:123      0.0.0.0:*                           3967/ntpd
udp        0      0 127.0.0.1:123           0.0.0.0:*                           3967/ntpd
udp        0      0 0.0.0.0:123             0.0.0.0:*                           3967/ntpd
raw        0      0 0.0.0.0:1               0.0.0.0:*               7           3685/dhcpd


cu
Huflatisch
 

tisu

Hacker
Ich grab den Thread mal wieder aus :)

Hier ist eine schöne Anleitung finde ich. Vielleicht hilft Sie ja.

http://www.linuxforen.de/forums/showthread.php?t=169354

Viele Grüße
 
OP
H

Huflatisch

Hacker
Hey

Danke
Die Anleitung hab ich auch schon hoch und runter durchgecheck ....

Aber nach Tagen rumprobieren und tausende Seiten goggle lesen hab ich mittlerweile ne "ganz einfache" Lösung
Ich habe einfach auf
Code:
proto tcp-server #server conf
proto tcp-client #client conf
umgestellt.

Dabei bin ich noch drübergestolpert das "proto tcp" nicht funktioniert (wie aber in fast allen howtos beschrieben) und das "fragment 1300" dabei auch noch rausmusste.

Aber wiso udp nicht funktioniert hab ich bis dato noch nicht rausgefunden. Entweder sperrt das die firebox 700 oder das w2k hat damit Probleme.

cu
Huflatisch
 
Oben