我正在运行 Nginx 作为代理服务器,转发到 10.12.96.4。
我希望 NGINX 服务器监听ens3:并通过 `tun0 转发请求
这是我的/etc/nginx/sites-available/default:
server {
listen 149.28.239.231:80;
server_name default_server;
location / {
proxy_pass http://45.77.185.160:80;
# proxy_pass http://10.12.96.4:80;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
}
}
server {
listen 443;
server_name example.com;
ssl_certificate /etc/letsencrypt/live/example.com/cert.pem;
ssl_certificate_key /etc/letsencrypt/live/example.com/privkey.pem;
ssl on;
ssl_session_cache builtin:1000 shared:SSL:10m;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_ciphers HIGH:!aNULL:!eNULL:!EXPORT:!CAMELLIA:!DES:!MD5:!PSK:!RC4;
ssl_prefer_server_ciphers on;
location /
{
proxy_pass https://45.77.185.160:443;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header …我试图将 openvpn 客户端的用户名和密码保存在.secret.txt中,但在尝试连接或请求密码时收到错误,而不是从.secret.txt读取。
这是我的配置文件:
resolv-retry infinite
nobind
persist-key
persist-tun
key-direction 1
remote-cert-tls server
tls-version-min 1.2
verify-x509-name server_4EBX2EpXPZasiTv1 name
cipher AES-256-CBC
auth SHA256
comp-lzo
verb 3
<ca>
auth-user-pass //root/.secret.txt
尝试连接时,系统仍然提示我输入密码:
Wed Aug 8 07:44:22 2018 OpenVPN 2.4.3 x86_64-pc-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [PKCS11] [MH/PKTINFO] [AEAD] built on Jul 3 2017
Wed Aug 8 07:44:22 2018 library versions: OpenSSL 1.0.2g 1 Mar 2016, LZO 2.08
Enter Private Key Password:
我有一个 OpenVPN 服务器 (pivpn.io) 和三个服务器客户端。
我正在尝试为 VPN 客户端设置静态 IP 地址。
我已经创建了ipp.txt /etc/openvpn/ccd/ipp.txt.
该文件ipp.txt使用以下语法:
[客户端名称],[IP 地址]
miami-test,10.8.0.5
连接服务器时不发出静态 IP 地址。