Rohde & Schwarz Topex Bytton LTE, Руководство пользователя

Страница: 166 / 290

TOPEX Bytton (HSPA+ / LTE)
ByttonLTE(full)_genericUsermanual_sw306FAS_revN.1.docx Page: 166 / 290
*mangle
:PREROUTING ACCEPT [1021:95186]
:INPUT ACCEPT [917:80339]
:FORWARD ACCEPT [87:14031]
:OUTPUT ACCEPT [664:105325]
:POSTROUTING ACCEPT [751:119356]
COMMIT
# Completed on Wed Jul 4 10:43:48 2012.
*filter
:INPUT ACCEPT [58:3040]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [1165:98890]
-A INPUT -i lo -j ACCEPT
-A INPUT -i br0 -j ACCEPT
-A INPUT -p gre -j ACCEPT
-A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
-A INPUT -p tcp -m tcp --dport 2601 -j ACCEPT
-A INPUT -p tcp -m tcp --dport 2604 -j ACCEPT
-A INPUT -p udp -m udp --dport 161 -j ACCEPT
-A INPUT -p udp -m udp --dport 162 -j ACCEPT
-A INPUT -i tap0 -j ACCEPT
-A INPUT -p udp -m udp --dport 4500 -j ACCEPT
-A INPUT -p ipv6-auth -j ACCEPT
-A INPUT -p udp -m udp --sport 500 --dport 500 -j ACCEPT
-A INPUT -p ipv6-crypt -j ACCEPT
-A INPUT -p tcp -m tcp --dport 0 -j ACCEPT
-A INPUT -p tcp -m tcp --dport 0 -j ACCEPT
-A FORWARD -p gre -j ACCEPT
-A FORWARD -m state --state RELATED,ESTABLISHED -j ACCEPT
-A FORWARD -p tcp -m tcp --tcp-flags SYN,RST SYN -j TCPMSS --clamp-mss-to-pmtu
-A FORWARD -d 193.76.244.115/32 -p tcp -m tcp --dport 47 -j ACCEPT
-A FORWARD -i tap0 -j ACCEPT
-A OUTPUT -p tcp -m tcp --tcp-flags SYN,RST SYN -j TCPMSS --clamp-mss-to-pmtu
COMMIT
# Completed on Mon Jul 16 13:57:06 2012
An example of System>Logs where, because of incorrect open VPN settings, the OVPN tunnel could non
be achieved:
Jul 23 07:26:46 bytton daemon.warn openvpn[1852]: NOTE: OpenVPN 2.1 requires '--script-security 2' or
higher to call user-defined scripts or executables
Jul 23 07:26:46 bytton daemon.notice openvpn[1852]: Re-using SSL/TLS context
Jul 23 07:26:46 bytton daemon.notice openvpn[1852]: LZO compression initialized
Jul 23 07:26:46 bytton daemon.notice openvpn[1852]: Control Channel MTU parms [ L:1542 D:138 EF:38 EB:0
ET:0 EL:0 ]
Jul 23 07:26:46 bytton daemon.notice openvpn[1852]: Socket Buffers: R=[112640->131072] S=[112640-
>131072]
Jul 23 07:26:46 bytton daemon.notice openvpn[1852]: Data Channel MTU parms [ L:1542 D:1450 EF:42 EB:135
ET:0 EL:0 AF:3/1 ]
Jul 23 07:26:46 bytton daemon.notice openvpn[1852]: Local Options hash (VER=V4): '41690919'
Jul 23 07:26:46 bytton daemon.notice openvpn[1852]: Expected Remote Options hash (VER=V4): '530fdded'
Jul 23 07:26:46 bytton daemon.notice openvpn[1852]: UDPv4 link local: [undef]
Jul 23 07:26:46 bytton daemon.notice openvpn[1852]: UDPv4 link remote: 192.168.143.142:1194
Jul 23 07:26:49 bytton daemon.err openvpn[1852]: read UDPv4 [EHOSTUNREACH|EHOSTUNREACH]: No
route to host (code=113)
Jul 23 07:27:46 bytton daemon.err openvpn[1852]: TLS Error: TLS key negotiation failed to occur
within 60
seconds (check your network connectivity)
Jul 23 07:27:46 bytton daemon.err openvpn[1852]: TLS Error: TLS handshake failed
Jul 23 07:27:46 bytton daemon.notice openvpn[1852]: TCP/UDP: Closing socket
Jul 23 07:27:46 bytton daemon.notice openvpn[1852]: SIGUSR1[soft,tls-error] received, process
restarting
Jul 23 07:27:46 bytton daemon.notice openvpn[1852]: Restart pause, 2 second(s).
------------------------------------