{"id":200,"date":"2010-02-02T16:59:48","date_gmt":"2010-02-02T08:59:48","guid":{"rendered":"http:\/\/blog.infinity.idv.tw\/index.php\/2010\/02\/02\/%e4%bd%bf%e7%94%a8brazilfw-openvpn%e6%9e%b6%e8%a8%ad%e9%bb%9e%e5%b0%8d%e9%bb%9e%e9%80%a3%e7%b7%9a%e6%96%b9%e5%bc%8f\/"},"modified":"2010-02-02T16:59:48","modified_gmt":"2010-02-02T08:59:48","slug":"%e4%bd%bf%e7%94%a8brazilfw-openvpn%e6%9e%b6%e8%a8%ad%e9%bb%9e%e5%b0%8d%e9%bb%9e%e9%80%a3%e7%b7%9a%e6%96%b9%e5%bc%8f","status":"publish","type":"post","link":"http:\/\/blog.infinity.idv.tw\/?p=200","title":{"rendered":"\u4f7f\u7528BRAZILFW + OpenVPN\u67b6\u8a2d\u9ede\u5c0d\u9ede\u9023\u7dda\u65b9\u5f0f"},"content":{"rendered":"

BRAZILFW<\/a>\u662f\u4e00\u5957\u5c0f\u800c\u5de7\u7684\u8edf\u9ad4\u8def\u7531\u5668\u8207\u9632\u706b\u7246\uff0c\u5b83\u5c6c\u65bcGPL\uff0c\u6545\u6c92\u6709\u7248\u6b0a\u8cbb\u7528\u554f\u984c\u3002<\/p>\n

\u96d6\u7136\u5b83\u662flinux\u7cfb\u7d71\uff0c\u4f46\u662f\u5df2\u7d93\u6709\u6587\u5b57\u4ecb\u9762\u7684\u7ba1\u7406\u9078\u55ae\u4ee5\u53ca\u7db2\u9801\u7684\u7ba1\u7406\u9801\u9762\uff0c\u505a\u7684\u4e0d\u932f\uff0c2.3.10\u9084\u6709\u4e2d\u6587\u5594!!<\/p>\n

 <\/p>\n

\u8edf\u9ad4\u53d6\u5f97\u8207\u5b89\u88dd\uff1a<\/p>\n

\u8acb\u4f86\u9019\u6293\uff1ahttp:\/\/www.brazilfw.com.br\/forum\/viewtopic.php?f=5&t=64693<\/a><\/p>\n

\u4e0b\u9762\u9023\u7d50\u662f\u500b\u6559\u5b78\u7db2\u9801\uff0c\u88e1\u9762\u6709\u5f71\u97f3\u5b89\u88dd\u65b9\u5f0f\uff0c\u9084\u6709\u5176\u5b83\u4e00\u4e9b\u6559\u5b78\uff0c\u4e0d\u932f\u7684\u7db2\u7ad9\u3002<\/p>\n

http:\/\/b2d.phc.edu.tw\/modules\/tadbook2\/view.php?book_sn=5&bdsn=1036<\/a><\/p>\n

 <\/p>\n

\u8cc7\u6599\u4f86\u6e90 http:\/\/b2d.phc.edu.tw\/modules\/tadbook2\/view.php?book_sn=5&bdsn=384<\/a><\/p>\n

\u8cc7\u6599\u8b6f\u81ea\uff1a
http:\/\/www.cybernet25.com.ar\/bfw\/openvpnhowto\/openvpn.htm
1.\u5f9ebrazilfw\u7db2\u7ad9\u4e0b\u8f09\u4e26\u5b89\u88dd libpthread.tgz (http:\/\/www.brazilfw.com.br\/forum\/dload.php?action=file&file_id=76)
2.\u4e0b\u8f09\u8207\u5b89\u88dd openvpn.tgz (http:\/\/www.cybernet25.com.ar\/bfw\/openvpn.tgz)
3.\u8a2d\u5b9a OpenVPN <\/p>\n

BFW1(\u7b2c\u4e00\u53f0)
Server
Public IP: 200.100.050.025
LAN IP: 192.168.0.1
Mask: 255.255.255.0
LAN: 192.168.0.0
VPN IP: 10.8.0.1 (we need an IP range for VPN) <\/p>\n

BFW2(\u7b2c\u4e8c\u53f0)
Client (example for LAN to LAN)
LAN IP: 192.168.1.1
Mask: 255.255.255.0
LAN: 192.168.1.0
VPN IP: 10.8.0.2 (we need an IP range for VPN) <\/p>\n

WXP
Client (example for RoadWarrior)
VPN IP: 10.8.0.3 (we need an IP range for VPN)
\u5728BFW1\u767b\u5165web\u7ba1\u7406\u4e26\u4e14\u9078\u53d6OpenVPN\u63a5\u8457 Add VPN<\/p>\n

\"\"<\/p>\n

\u4e0b\u4e00\u500b\u756b\u975e\u5e38\u7c21\u55ae<\/p>\n

\"\"<\/p>\n

\u9001\u51faVPN \u8a2d\u5b9a
\u73fe\u5728\u5728\u9019\u500b\u7bc4\u4f8b\u7576\u4e2d\u6211\u5011\u589e\u52a0\u53e6\u4e00\u500b VPN server (for RoadWarrior) \u50cf\u9019\u6a23 <\/p>\n

\u4e0b\u9762\u5716\u5beb Server VPN IP 10.8.0.1 \u8207 Client VPN IP 10.8.0.3 \u662f\u932f\u8aa4\u7684\uff0c\u9019\u908a\u6bcf\u65b0\u589e\u4e00\u500b VPN \u9023\u7dda\uff0c\u5c31\u6703\u5360\u6389 4\u500bIP\u4f4d\u7f6e\uff0c\u56e0\u70ba Subnet \u70ba 255.255.255.252\uff0c\u6240\u4ee5 1\u8ddf2 \u5df2\u7d93\u88ab LAN to LAN\u7528\u6389\u4e86\uff0c\u4e5f\u5c31\u662f\u4e0d\u80fd\u518d\u7528 10.8.0.0~3 \u90194\u500b\u4f4d\u7f6e(\u60f3\u4e86\u89e3\u8acb\u5b78\u7fd2TCPIP\u7db2\u6bb5\u90e8\u4efd)\uff0c\u4e0b\u9762\u5c31\u5217\u51fa\u53ef\u7528\u7684\u7db2\u6bb5IP\uff0c\u53ef\u65b0\u589e\u7121\u9650\u591a\u9023\u7dda\uff0c\u53ea\u8981\u7dad\u6301\u9019\u500b\u6cd5\u5247\u5373\u53ef\u3002<\/font><\/p>\n

\u6545\u4ee5\u9019\u500b\u4f8b\u5b50\u61c9\u8a72\u8981\u628a Server VPN IP 10.8.0.5 \u8207 Client VPN IP 10.8.0.6 \u7528\u7b2c\u4e8c\u7d44\u9023\u7dda\u7528\uff0c\u8b93XP\u53ef\u9023\u5165\u3002<\/font><\/p>\n

[  1,  2] [  5,  6] [  9, 10] [ 13, 14] [ 17, 18]
[ 21, 22] [ 25, 26] [ 29, 30] [ 33, 34] [ 37, 38]
[ 41, 42] [ 45, 46] [ 49, 50] [ 53, 54] [ 57, 58]
[ 61, 62] [ 65, 66] [ 69, 70] [ 73, 74] [ 77, 78]
[ 81, 82] [ 85, 86] [ 89, 90] [ 93, 94] [ 97, 98]
[101,102] [105,106] [109,110] [113,114] [117,118]
[121,122] [125,126] [129,130] [133,134] [137,138]
[141,142] [145,146] [149,150] [153,154] [157,158]
[161,162] [165,166] [169,170] [173,174] [177,178]
[181,182] [185,186] [189,190] [193,194] [197,198]
[201,202] [205,206] [209,210] [213,214] [217,218]
[221,222] [225,226] [229,230] [233,234] [237,238]
[241,242] [245,246] [249,250] [253,254]<\/font><\/p>\n

 <\/p>\n

\"\"<\/p>\n

\u6211\u5011\u7684server\u770b\u8d77\u5c31\u50cf\u9019\u6a23<\/p>\n

\"\"<\/p>\n

\u73fe\u5728\u4f60\u5fc5\u9808\u6253\u958b udp ports 1194 \u548c 1195, \u5207\u63db\u5230\u9032\u968e\u9632\u706b\u7246\u8a2d\u5b9a\u589e\u52a0\u4e0b\u4ee5\u4e8c\u884c\u5982\u4e0b<\/p>\n

\"\"<\/p>\n

\u52a0\u5165\u4ee5\u4e0b\u9019\u884c\u5230 rc.local \u8b93 VPN \u81ea\u52d5\u555f\u52d5\uff0c\u6240\u4ee5\u5207\u63db\u5230\u8a2d\u5b9a\u6a94\u6848\u4e26\u9078\u53d6\u7b2c\u4e8c\u9805<\/p>\n

\"\"<\/p>\n

\u5728openvpn\u548cstart\u4e2d\u9593\u4e0d\u8981\u6709\u7a7a\u767d
\u5b58\u6a94\u4e26\u91cd\u65b0\u555f\u52d5BrazilFW.
BFW2 (client side LAN to LAN VPN)
\u589e\u52a0\u4e00\u500bVPN (you allready know how) \u5982\u4e0b\u7684\u8a2d\u5b9a<\/p>\n

\"\"<\/p>\n

\u73fe\u5728\u6211\u5011\u5fc5\u9808copy the key file \u5f9eserver\u9019\u908a (\/etc\/openvpn\/openvpn.1194.key)\u4f7f\u7528 WinSCP, \u6216\u5176\u4ed6\u8edf\u9ad4\u4ee5BFW2\u7684 \/etc\/openvpn \u76ee\u9304\u4e0b
\u589e\u52a0 \/etc\/openvpn\/openvpnstart\u5c31\u50cf\u60a8\u5728 BFW1\u505a\u7684\u4e00\u6a23
\u5b58\u6a94\u4e26\u91cd\u65b0\u555f\u52d5BrazilFW.
\u5982\u679c\u842c\u4e8b\u7686ok\uff0c\u90a3\u4f60\u5c31\u53ef\u4ee5 ping 10.8.0.1 \u5f9e BFW2 \u4e26\u85a9 ping 10.8.0.2 \u5f9e BFW1.
\u4e5f\u8a31\u60a8\u53ef\u4ee5\u589e\u52a0\u4ee5\u4e0b\u7684\u8def\u7531\u5982\u4e0b:
route add -net 192.168.0.0 netmask 255.255.255.0 gw 10.8.0.1 (on client side)
route add -net 192.168.1.0 netmask 255.255.255.0 gw 10.8.0.2 (on server side)
WXP (Road Warrior client)
\u4e0b\u8f09 OpenVPN windows\u7aef\u7684\u8edf\u9ad4.\u2500http:\/\/openvpn.se\/files\/install_packages\/openvpn-2.0.9-gui-1.0.3-install.exe (see http:\/\/openvpn.se)
\u5b89\u88dd for windows\u7248\u7684OpenVPN .
\u63a5\u8457\u767b\u5165\u81f3\u7b2c\u4e00\u53f0brazilfw( BFW1) , \u9078\u53d6OpenVPN \u9078\u55ae\u4e26\u4e14\u6253\u5165\u4ee5\u4e0b\u8a2d\u5b9a [Client conf file] \u5728 VPN server \u8a2d\u5b9a\u5217<\/p>\n

\"\"<\/p>\n

\"\"<\/p>\n

copy\u6587\u5b57\u5efa\u7acb\u4e00\u500b\u65b0\u7684\u6587\u4ef6\u6a94\u4e26\u8cbc\u4e0a (\u79fb\u9664 \/etc\/openvpn\/\u9019\u4e00\u884c\u5f9esecret line <=\u65b0\u7248\u672c\u5df2\u7d93\u4fee\u6b63\u9019\u500b\u554f\u984c\u3002<\/font> ), \u628a\u6a94\u540d\u6539\u6210ranything.ovpn \u4e26\u5b58\u5230 C:\\Program Files\\OpenVPN\\config \u76ee\u9304.
\u73fe\u5728\u4f60\u5fc5\u9808 copy the key file \u5f9e BFW1 (\/etc\/openvpn\/openvpn.1195.key) \u5230 C:\\Program Files\\OpenVPN\\config \u76ee\u9304. \u4f60\u53ef\u4f7f\u7528 WinSCP \u6216\u5176\u4ed6\u4f60\u559c\u6b61\u7684\u5de5\u5177.<\/p>\n

 <\/p>\n

\"\"<\/p>\n

\u73fe\u5728\u9078\u6309OpenVPN \u5716\u793a\u4e26\u9078\u53d6\u9023\u63a5\u3002<\/p>\n

\"\"<\/p>\n

OpenVPN – BrazilFW – LAN to LAN:
http:\/\/www.brazilfw.com.br\/users\/juanillo\/openvpn\/howto\/lantolan\/openvpn_l2l.html
OpenVPN – BrazilFW – Road Warrior How To:
http:\/\/www.brazilfw.com.br\/users\/juanillo\/openvpn\/howto\/roadwarrior\/openvpn_rw.html <\/p>\n","protected":false},"excerpt":{"rendered":"

BRAZILFW\u662f\u4e00\u5957\u5c0f\u800c\u5de7\u7684\u8edf\u9ad4\u8def\u7531\u5668\u8207\u9632\u706b\u7246\uff0c\u5b83\u5c6c\u65bcGPL\uff0c\u6545\u6c92\u6709\u7248\u6b0a\u8cbb\u7528\u554f\u984c\u3002<\/p>\n

\u96d6\u7136\u5b83\u662flinux\u7cfb\u7d71\uff0c\u4f46\u662f\u5df2\u7d93\u6709\u6587\u5b57\u4ecb\u9762\u7684\u7ba1\u7406\u9078\u55ae\u4ee5\u53ca\u7db2\u9801\u7684\u7ba1\u7406\u9801\u9762\uff0c\u505a\u7684\u4e0d\u932f\uff0c2.3.10\u9084\u6709\u4e2d\u6587\u5594!!<\/p>\n

 <\/p>\n

\u8edf\u9ad4\u53d6\u5f97\u8207\u5b89\u88dd\uff1a<\/p>\n

\u8acb\u4f86\u9019\u6293\uff1ahttp:\/\/www.brazilfw.com.br\/forum\/viewtopic.php?f=5&t=64693<\/p>\n

\u4e0b\u9762\u9023\u7d50\u662f\u500b\u6559\u5b78\u7db2\u9801\uff0c\u88e1\u9762\u6709\u5f71\u97f3\u5b89\u88dd\u65b9\u5f0f\uff0c\u9084\u6709\u5176\u5b83\u4e00\u4e9b\u6559\u5b78\uff0c\u4e0d\u932f\u7684\u7db2\u7ad9\u3002<\/p>\n

http:\/\/b2d.phc.edu.tw\/modules\/tadbook2\/view.php?book_sn=5&bdsn=1036<\/p>\n

 <\/p>\n

\u8cc7\u6599\u4f86\u6e90 http:\/\/b2d.phc.edu.tw\/modules\/tadbook2\/view.php?book_sn=5&bdsn=384<\/p>\n

\u8cc7\u6599\u8b6f\u81ea\uff1a http:\/\/www.cybernet25.com.ar\/bfw\/openvpnhowto\/openvpn.htm 1.\u5f9ebrazilfw\u7db2\u7ad9\u4e0b\u8f09\u4e26\u5b89\u88dd libpthread.tgz (http:\/\/www.brazilfw.com.br\/forum\/dload.php?action=file&file_id=76) 2.\u4e0b\u8f09\u8207\u5b89\u88dd openvpn.tgz (http:\/\/www.cybernet25.com.ar\/bfw\/openvpn.tgz) 3.\u8a2d\u5b9a OpenVPN <\/p>\n

BFW1(\u7b2c\u4e00\u53f0) Server Public IP: 200.100.050.025 LAN IP: 192.168.0.1 Mask: 255.255.255.0 LAN: 192.168.0.0 […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[208],"tags":[210],"_links":{"self":[{"href":"http:\/\/blog.infinity.idv.tw\/index.php?rest_route=\/wp\/v2\/posts\/200"}],"collection":[{"href":"http:\/\/blog.infinity.idv.tw\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/blog.infinity.idv.tw\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/blog.infinity.idv.tw\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/blog.infinity.idv.tw\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=200"}],"version-history":[{"count":0,"href":"http:\/\/blog.infinity.idv.tw\/index.php?rest_route=\/wp\/v2\/posts\/200\/revisions"}],"wp:attachment":[{"href":"http:\/\/blog.infinity.idv.tw\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=200"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/blog.infinity.idv.tw\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=200"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/blog.infinity.idv.tw\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=200"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}