gfwlist中的网址，不使用VPN通道是为何呢？

GoogleCodeExporter commented 9 years ago

請描述一下您進行怎樣的操作之後碰到了問題
我期望 traceroute www.facebook.com 是我的VPN private IP節點
然而，却是我的WAN gateway

請提供以下資訊：

1. 您的路由器型號：WHR-HP-G300N
2. DD-WRT版本：DD-WRT v24SP2-AP-TW (04/08/11) std - build 16753
3. 您的作業系統：Mac OS X
4. 您的瀏覽器版本：Chrome
5. autoddvpn的連線模式 pptp+jffs
6. autoddvpn的運行模式 graceMode
7. DD-WRT WAN口連線模式是 ADSL PPPoE DHCP
8. 運行autoddvpn之後DD-WRT 的命令輸出 # route -n  | tail -n 20 ：
64.237.47.0     172.31.183.1    255.255.255.0   UG    0      0        0 ppp1
75.101.159.0    172.31.183.1    255.255.255.0   UG    0      0        0 ppp1
78.129.203.0    172.31.183.1    255.255.255.0   UG    0      0        0 ppp1
209.133.27.0    172.31.183.1    255.255.255.0   UG    0      0        0 ppp1
122.147.51.0    172.31.183.1    255.255.255.0   UG    0      0        0 ppp1
67.129.144.0    172.31.183.1    255.255.255.0   UG    0      0        0 ppp1
4.28.16.0       172.31.183.1    255.255.255.0   UG    0      0        0 ppp1
66.102.0.0      172.31.183.1    255.255.240.0   UG    0      0        0 ppp1
64.233.160.0    172.31.183.1    255.255.224.0   UG    0      0        0 ppp1
208.117.224.0   172.31.183.1    255.255.224.0   UG    0      0        0 ppp1
72.14.192.0     172.31.183.1    255.255.192.0   UG    0      0        0 ppp1
184.72.0.0      172.31.183.1    255.255.0.0     UG    0      0        0 ppp1
173.194.0.0     172.31.183.1    255.255.0.0     UG    0      0        0 ppp1
69.63.0.0       172.31.183.1    255.255.0.0     UG    0      0        0 ppp1
66.220.0.0      172.31.183.1    255.255.0.0     UG    0      0        0 ppp1
169.254.0.0     0.0.0.0         255.255.0.0     U     0      0        0 br0
74.125.0.0      172.31.183.1    255.255.0.0     UG    0      0        0 ppp1
116.214.0.0     172.31.183.1    255.255.0.0     UG    0      0        0 ppp1
127.0.0.0       0.0.0.0         255.0.0.0       U     0      0        0 lo
0.0.0.0         183.0.8.1       0.0.0.0         UG    0      0        0 ppp0

如果方便的話，請參考這裡的說明，貼上autoddvpn.log內容
[INFO#838] 01/Jan/1970:00:00:11 log starts
[INFO#838] 01/Jan/1970:00:00:11 pptp+jffs mode
[INFO#838] 01/Jan/1970:00:00:11 modifying /tmp/pptpd_client/ip-up
[INFO#838] 01/Jan/1970:00:00:11 /tmp/pptpd_client/ip-up not exists, sleep 10sec.
[INFO#838] 15/Jul/2011:20:52:36 /tmp/pptpd_client/ip-up not exists, sleep 10sec.
[INFO#838] 15/Jul/2011:20:52:46 /tmp/pptpd_client/ip-up not exists, sleep 10sec.
[INFO#838] 15/Jul/2011:20:52:56 /tmp/pptpd_client/ip-up not exists, sleep 10sec.
[INFO#838] 15/Jul/2011:20:53:06 /tmp/pptpd_client/ip-up modified
[INFO#838] 15/Jul/2011:20:53:06 modifying /tmp/pptpd_client/ip-down
[INFO#838] 15/Jul/2011:20:53:06 /tmp/pptpd_client/ip-down modified
[INFO#838] 15/Jul/2011:20:53:06 ALL DONE. Let's wait for VPN being connected.
[INFO#1473] 15/Jul/2011:20:53:10 vpnup.sh started
[INFO#1473] 15/Jul/2011:20:53:10 router type: DD-WRT
[INFO#1473] 15/Jul/2011:20:53:10 adding the static routes, this may take a 
while.
[INFO#1473] 15/Jul/2011:20:53:16 loading vpnup_custom if available
[INFO#1473] 15/Jul/2011:20:53:16 preparing the exceptional routes
[INFO#1473] 15/Jul/2011:20:53:16 exceptional routes disabled.
[INFO#1473] 15/Jul/2011:20:53:16 exceptional routes features detail:  
http://goo.gl/fYfJ
[INFO#1473] 15/Jul/2011:20:53:17 vpnup.sh ended

(說明：http://code.google.com/p/autoddvpn/wiki/DEBUG)

最後如果可能的話，請附上截屏或任何可能有幫助的夾檔

Original issue reported on code.google.com by yefe...@gmail.com on 15 Jul 2011 at 12:58

GoogleCodeExporter commented 9 years ago

dnsmasq_options 有無設置好facebook.com? 否則會被劫持。

nslookup www.facebook.com 獲得IP多少？

Original comment by pahud...@gmail.com on 15 Jul 2011 at 1:47

GoogleCodeExporter commented 9 years ago

traceroute to 8.8.8.8 (8.8.8.8), 30 hops max, 38 byte packets
 1  172.31.183.1 (172.31.183.1)  1874.948 ms  258.935 ms  199.881 ms
 2  *  *^C

root@buffalo:~# ping 172.31.183.1    <-- VPN Gateway
PING 172.31.183.1 (172.31.183.1): 56 data bytes
64 bytes from 172.31.183.1: seq=0 ttl=64 time=1664.798 ms
64 bytes from 172.31.183.1: seq=2 ttl=64 time=200.391 ms
64 bytes from 172.31.183.1: seq=3 ttl=64 time=210.186 ms
^C
--- 172.31.183.1 ping statistics ---
5 packets transmitted, 3 packets received, 40% packet loss
round-trip min/avg/max = 200.391/691.791/1664.798 ms

root@buffalo:~# traceroute www.facebook.com
traceroute to www.facebook.com (69.171.224.13), 30 hops max, 38 byte packets
 1  116.23.184.1 (116.23.184.1)  16.747 ms  5.556 ms  5.908 ms
 2  121.8.109.205 (121.8.109.205)  5.799 ms  5.020 ms  6.083 ms
 3  61.144.0.193 (61.144.0.193)  5.430 ms  7.739 ms  3673.675 ms
 4  61.144.3.30 (61.144.3.30)  5.292 ms  6.089 ms  6.331 ms

Original comment by yefe...@gmail.com on 15 Jul 2011 at 1:51

GoogleCodeExporter commented 9 years ago

dnsmasq_options 按其中一份文档的设置

Original comment by yefe...@gmail.com on 15 Jul 2011 at 1:54

Attachments:

[屏幕快照 2011-07-15 下午09.53.34.png](https://storage.googleapis.com/google-code-attachments/autoddvpn/issue-85/comment-3/屏幕快照 2011-07-15 下午09.53.34.png)

GoogleCodeExporter commented 9 years ago

注意一下你的dnsmasq_options  address=/www.facebook.com/66.220.149.25 
表示讓dnsmasq強迫解析www.facebook.com 為A記錄 66.220.149.25

但你traceroute www.facebook.com 得到並不是這個IP， 表示

1. 你的DDWRT dnsmasq服務沒有跑起來
2. dnsmasq_options 內容寫錯了，不該折行的地方折行了
3. 你的電腦沒有設置DDWRT這台為DNS server

Original comment by pahud...@gmail.com on 15 Jul 2011 at 2:12

GoogleCodeExporter commented 9 years ago

[deleted comment]

GoogleCodeExporter commented 9 years ago

我刚才是对facebook的IP改了一下试试，现在的情况是：
traceroute to www.facebook.com (66.220.149.25), 30 hops max, 38 byte packets
 1  172.31.183.1 (172.31.183.1)  73.497 ms  77.497 ms  79.782 ms
 2  * * * *
 3  * * * *

可能是PPTP设置问题。
我现在把服务器IP或DNS名称，由网址改成IP

然后用Mac连上PPTP得到 
ppp0: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1438
    inet 172.31.183.85 --> 172.31.183.1 netmask 0xffff0000 

在dd里面把mask改成255.255.0.0

Original comment by yefe...@gmail.com on 15 Jul 2011 at 2:17

GoogleCodeExporter commented 9 years ago

在dd里面把mask改成255.255.0.0

为什么mask变成  255.255.255.255 ？？

ppp1      Link encap:Point-to-Point Protocol  
          inet addr:172.31.183.81  P-t-P:172.31.183.1  Mask:255.255.255.255
          UP POINTOPOINT RUNNING NOARP MULTICAST  MTU:1438  Metric:1
          RX packets:170 errors:0 dropped:0 overruns:0 frame:0
          TX packets:1396 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:3 
          RX bytes:29724 (29.0 KiB)  TX bytes:97662 (95.3 KiB)

Original comment by yefe...@gmail.com on 15 Jul 2011 at 2:25

GoogleCodeExporter commented 9 years ago

还是上不了，郁闷。。。。。

我发现在mac上，直接连接VPN是能上facebook的。
traceroute to www.facebook.com (69.171.224.40), 64 hops max, 52 byte packets
 1  172.31.183.1 (172.31.183.1)  28.485 ms  30.364 ms  29.813 ms
 2  * *

但斯通过路由之后，就变成
traceroute to www.facebook.com (66.220.149.25), 64 hops max, 52 byte packets
 1  buffalo (192.168.11.1)  0.688 ms  0.427 ms  0.386 ms
 2  * * *
 3  * *

上不了。。。。。。

Original comment by yefe...@gmail.com on 15 Jul 2011 at 2:39

GoogleCodeExporter commented 9 years ago

如果你是PPTP模式的話注意幾個重點

1. PPTP SERVER要用IP
2. netmask一般都是255.255.255.0也就是class C

然後autoddvpn跑起來之後，你可以在DDWRT裡面做traceroute 例如

root@DD-WRT:~# traceroute www.facebook.com
traceroute to www.facebook.com (66.220.149.25), 30 hops max, 38 byte packets
 1  10.9.10.1 (10.9.10.1)  55.566 ms  55.725 ms  55.674 ms

先確定DDWRT本身路由正常吧

Original comment by pahud...@gmail.com on 15 Jul 2011 at 2:48

GoogleCodeExporter commented 9 years ago

1 PPTP 已经用IP了
2 netmask 已经改成 255.255.255.0

下面是在dd里面的结果

traceroute to www.facebook.com (66.220.149.25), 30 hops max, 38 byte packets
 1  172.31.183.1 (172.31.183.1)  33.714 ms  29.590 ms  29.885 ms
 2  *  *  *
 3  *  *  *

Original comment by yefe...@gmail.com on 15 Jul 2011 at 3:00

GoogleCodeExporter commented 9 years ago

PPTP 设置

Original comment by yefe...@gmail.com on 15 Jul 2011 at 3:01

Attachments:

[屏幕快照 2011-07-15 下午11.00.59.png](https://storage.googleapis.com/google-code-attachments/autoddvpn/issue-85/comment-11/屏幕快照 2011-07-15 下午11.00.59.png)

GoogleCodeExporter commented 9 years ago

OK所以你在DD裡面traceroute www.facebook.com已經會走PPTP VPN了
但Mac透過DD出去 traceroute卻不會嗎？

Original comment by pahud...@gmail.com on 15 Jul 2011 at 3:05

GoogleCodeExporter commented 9 years ago

Mac 连接的装态

Original comment by yefe...@gmail.com on 15 Jul 2011 at 3:06

Attachments:

[屏幕快照 2011-07-15 下午11.05.29.png](https://storage.googleapis.com/google-code-attachments/autoddvpn/issue-85/comment-13/屏幕快照 2011-07-15 下午11.05.29.png)

GoogleCodeExporter commented 9 years ago

[deleted comment]

GoogleCodeExporter commented 9 years ago

你的DDWRT看起來工作正常了，你的Mac只要正常透過DDWRT出去應�
��就OK了，Mac本身不需要再撥號PPTP了。DDWRT打開DHCP, 
讓Mac取得DHCP IP，並且Mac自動設置DDWRT為gateway and DNS 
server即可。

Original comment by pahud...@gmail.com on 15 Jul 2011 at 3:08

GoogleCodeExporter commented 9 years ago

嗯，Mac自動設置DDWRT為gateway and DNS server

但是指定的域名走不了VPN通道

traceroute to www.facebook.com (66.220.149.25), 64 hops max, 52 byte packets
 1  buffalo (192.168.11.1)  0.688 ms  0.427 ms  0.386 ms
 2  * * *
 3  * *

在MAC上，DNS解析没错，但连 *.google.com 
都开不了，估计是想走VPN，又不通造成的。。。。

Original comment by yefe...@gmail.com on 15 Jul 2011 at 3:15

GoogleCodeExporter commented 9 years ago

Mac上traceroute到國內域名就沒問題是嗎？

Original comment by pahud...@gmail.com on 15 Jul 2011 at 3:32

GoogleCodeExporter commented 9 years ago

今早起床，reboot路由，成功翻墙！！！

刚才还在想，是不是由于jffs没有写入权限，我把文件放在了/
tmp/fuckgfw 所造成的。证实与此无关。

我已经把dd升到DD-WRT v24SP2-AP-TW (05/25/11) std (SVN revision 17135)
但只有dev和tmp有写入权限，而且GUI没有开启jffs的地方，只能�
��SSH开。

而且由于每次重启，都会删除我添加的文件，所以我在启动��
�地方保存了以下指令。

Original comment by yefe...@gmail.com on 16 Jul 2011 at 2:46

Attachments:

[屏幕快照 2011-07-16 上午10.45.17.png](https://storage.googleapis.com/google-code-attachments/autoddvpn/issue-85/comment-18/屏幕快照 2011-07-16 上午10.45.17.png)

GoogleCodeExporter commented 9 years ago

哈哈很不錯哦，恭喜你！！

Original comment by pahud...@gmail.com on 16 Jul 2011 at 5:53

liuxuan30 / autoddvpn

gfwlist中的网址，不使用VPN通道是为何呢？ #85