这是一个创建于 3631 天前的主题,其中的信息可能已经有所发展或是发生改变。
题主有一台内网连接用的openvpn服务器 ubuntu系统 14.04LTS,安装了最新的openvpn服务端,之前好好的,最近连接上之后只有可怜的20kb的传输速度,难道墙对大中国局域网内的特征流量也起作用了?
 |
1
Showfom 2014-12-06 20:17:53 +08:00 via iPhone
不科学啊 墙对局域网和国内的网络没有任何屏蔽的 是不是你配置有问题
|
 |
2
Neveroldmilk 2014-12-06 20:44:37 +08:00
OpenVPN早废了吧。老老实实用SS或者Goagent吧。
|
 |
3
ksupertu OP @Showfom 通过ssh在服务器端测试wget文件可以跑到2mb/s的速度,通过客户端连接上OPENVPN服务器后,测速为29.7kb/s,客户端所在网络环境本地测试网络连接也是2MB/S,连接上后再测就跪了,ping局域网内其他地址延迟可以到300ms:
数据包: 已发送 = 240,已接收 = 198,丢失 = 42 (17% 丢失), 往返行程的估计时间(以毫秒为单位): 最短 = 40ms,最长 = 334ms,平均 = 101ms 由于服务器外网防火墙禁ping,无法给出客户端不联网的ping状况 以下是客户端关键配置 “ proto udp dev tun resolv-retry infinite nobind persist-key persist-tun ca ca.crt auth-user-pass auth-nocache ns-cert-type server log openvpn.log log-append openvpn.log comp-lzo # Set log file verbosity. verb 3 log-append openvpnlog.log # Silence repeating messages ;mute 20 ” iptables设置如下: Chain INPUT (policy DROP) target prot opt source destination ACCEPT all -- anywhere anywhere ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED ACCEPT all -- anywhere anywhere ACCEPT tcp -- anywhere anywhere tcp dpt:urd ACCEPT tcp -- anywhere anywhere tcp dpt:pop3 ACCEPT tcp -- anywhere anywhere tcp dpt:smtp ACCEPT tcp -- anywhere anywhere tcp dpt:5555 ;openvpn管理端口 ACCEPT tcp -- anywhere anywhere tcp dpt:ssh ACCEPT udp -- anywhere anywhere udp dpt:openvpn ;openvpn端口 ACCEPT all -- bogon/24 anywhere ACCEPT tcp -- anywhere anywhere tcp dpt:ssh ACCEPT all -- anywhere anywhere ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED ACCEPT all -- anywhere anywhere ACCEPT tcp -- anywhere anywhere tcp dpt:ssh ACCEPT tcp -- anywhere anywhere tcp dpt:http ACCEPT tcp -- anywhere anywhere tcp dpt:5555 ACCEPT tcp -- anywhere anywhere tcp dpt:http-alt ACCEPT udp -- anywhere anywhere udp dpt:kerberos ACCEPT all -- bogon/24 anywhere Chain FORWARD (policy ACCEPT) target prot opt source destination TCPMSS tcp -- anywhere anywhere tcp flags:FIN,SYN,RST,ACK/SYN TCPMSS set 1356 TCPMSS tcp -- anywhere anywhere tcp flags:FIN,SYN,RST,ACK/SYN TCPMSS set 1356 ACCEPT all -- anywhere anywhere ACCEPT all -- anywhere bogon/24 ufw-before-logging-forward all -- anywhere anywhere ufw-before-forward all -- anywhere anywhere ufw-after-forward all -- anywhere anywhere ufw-after-logging-forward all -- anywhere anywhere ufw-reject-forward all -- anywhere anywhere ufw-track-forward all -- anywhere anywhere ACCEPT all -- anywhere anywhere ACCEPT all -- anywhere bogon/24 Chain OUTPUT (policy ACCEPT) target prot opt source destination ACCEPT tcp -- anywhere anywhere tcp dpt:5555 ufw-before-logging-output all -- anywhere anywhere ufw-before-output all -- anywhere anywhere ufw-after-output all -- anywhere anywhere ufw-after-logging-output all -- anywhere anywhere ufw-reject-output all -- anywhere anywhere ufw-track-output all -- anywhere anywhere 服务器开始是可以在vpn状态下看高清直播的,最近不知道什么原因彻底变牛车了。。。。 |
|
4
ksupertu OP @Neveroldmilk 我这是在国内连接国内的内网环境……为了支持大量客户端的单点登录接入才使用的,不是翻墙用途
|
|
5
Showfom 2014-12-06 21:25:38 +08:00 via iPhone
|
 |
6
fewspider 2014-12-07 10:27:04 +08:00 via Android
digitalocean的vps搭建的OpenVPN,感觉速度不及shadowsocks,iPad没越狱,勉强OpenVPN玩玩
|
 |
7
dnsstudio 2018-11-13 22:25:02 +08:00 via Android
果断 ssr
|
|
8
dnsstudio 2018-11-13 22:25:22 +08:00 via Android
openVPN 我都自定义加密,防火墙无法识别。
|
Select Language