centos – 如何在服务器上打开OpenVPN端口(1194)?
我已经在我的CentOs VPS上安装了OpenVPN服务器,并且它已成功启动并尝试通过以下命令为它配置iptables:
iptables -A FORWARD -m state -–state RELATED,ESTABLISHED -j ACCEPT iptables -A FORWARD -s 10.8.0.0/24 -j ACCEPT iptables -A FORWARD -j REJECT iptables -t nat -A POSTROUTING -s 10.8.0.0/24 -j SNAT --to 209.54.48.68
但我无法连接到它,所以我在我的电脑上运行nmap:
nmap -p 1194 209.54.48.68 Starting Nmap 5.21 ( http://nmap.org ) at 2011-12-27 22:28 IRST Nmap scan report for 209.54.48.68.nativehosting.com (209.54.48.68) Host is up (0.53s latency). PORT STATE SERVICE 1194/tcp closed unknown Nmap done: 1 IP address (1 host up) scanned in 3.22 seconds
现在问题在哪里,我该如何解决?
安装OpenVPN后为什么关闭1194?
我已按照http://tipupdate.com/how-to-install-openvpn-on-centos-vps/安装和配置它.
请注意,您的nmap扫描是针对TCP / 1194的.默认情况下,OpenVPN将使用UDP / 1194,因此您指定的扫描不会查找正确的位置.添加-sU选项以扫描UDP,如下所示:nmap -sU -p 1194 209.54.48.68.在任何情况下,请确保openvpn守护程序正在运行(ps auxw | grep openvpn)和Khaled发布的netstat命令.如果你在iptables上有默认的DENY,你还需要打开UDP / 1194.