2017-03-14 09:13:08 +08:00
回复了 spiritree 创建的主题 宽带症候群 上海新装宽带的抉择-电信 or 联通?
@snsd 4m
2017-03-13 17:58:30 +08:00
回复了 spiritree 创建的主题 宽带症候群 上海新装宽带的抉择-电信 or 联通?
去年办了电信 50m 两年 2400 的含泪路过,自己破解了光猫,没啥不适,就是价格高,如果有联通的话用联通好,可惜不是所有小区都支持
2017-03-13 12:12:31 +08:00
回复了 churchmice 创建的主题 问与答 有在 GCP(Google Cloud Platform)搭建 strongswan 的嘛?
@blues9 那只能 server 端 tcpdump 抓包了
2017-03-12 23:54:22 +08:00
回复了 churchmice 创建的主题 问与答 有在 GCP(Google Cloud Platform)搭建 strongswan 的嘛?
@blues9 搞定,在客户端把 MTU 设成 1360 就好了
2017-03-12 23:25:47 +08:00
回复了 churchmice 创建的主题 问与答 有在 GCP(Google Cloud Platform)搭建 strongswan 的嘛?
@blues9 tcpdump 看了下是 MTU 有问题

need to frag (mtu 1398), length 556

所以 ping 没有问题,但是 wget 有问题
2017-03-12 21:07:06 +08:00
回复了 churchmice 创建的主题 问与答 有在 GCP(Google Cloud Platform)搭建 strongswan 的嘛?
@blues9 英吹思婷,我的是 ping 没问题,wget 就卡
2017-03-12 19:56:09 +08:00
回复了 churchmice 创建的主题 问与答 有在 GCP(Google Cloud Platform)搭建 strongswan 的嘛?
ping www.google.com 都是没有问题的
wget 就卡了

churchmice@ancients:~ $-> ping www.google.com
PING www.google.com ( 56 data bytes
64 bytes from icmp_seq=0 ttl=52 time=48.167 ms
--- www.google.com ping statistics ---
1 packets transmitted, 1 packets received, 0.0% packet loss
round-trip min/avg/max/stddev = 48.167/48.167/48.167/0.000 ms
churchmice@ancients:~ $-> wget www.google.com
--2017-03-12 19:55:58-- http://www.google.com/
Resolving www.google.com...,,, ...
Connecting to www.google.com||:80... connected.
HTTP request sent, awaiting response... ^C
2017-03-12 19:55:02 +08:00
回复了 churchmice 创建的主题 问与答 有在 GCP(Google Cloud Platform)搭建 strongswan 的嘛?
用 tcp 模式测试的话,gcp 开 server,mac 当 client,测试命令 iperf3 -c 104.x.x.x -t 60 -i 10, 连上 vpn 和未连 vpn 速度都是差不多

[ 5] 0.00-60.15 sec 25.9 MBytes 3.62 Mbits/sec sender
[ 5] 0.00-60.15 sec 25.8 MBytes 3.60 Mbits/sec receiver

连上后 mac 当 server,gcp 当 client,测试的话速度倒是挺快 iperf3 -c -t 60 -i 10
[ ID] Interval Transfer Bandwidth Retr
[ 4] 0.00-60.00 sec 348 MBytes 48.6 Mbits/sec 257 sender
[ 4] 0.00-60.00 sec 346 MBytes 48.4 Mbits/sec receiver
2017-03-12 18:39:56 +08:00
回复了 churchmice 创建的主题 问与答 有在 GCP(Google Cloud Platform)搭建 strongswan 的嘛?
现在拿本机(mac)当 client,gcp 当 server,数据如下

churchmice@rmbp:~ $-> iperf3 -u -c 104.x.x.x -b 50M -t 60 -i 10
Connecting to host 104.x.x.x, port 5201
[ 5] local port 49369 connected to 104.x.x.x port 5201
[ ID] Interval Transfer Bandwidth Total Datagrams
[ 5] 0.00-10.01 sec 59.0 MBytes 49.5 Mbits/sec 43975
[ 5] 10.01-20.00 sec 59.6 MBytes 50.0 Mbits/sec 44404
[ 5] 20.00-30.00 sec 59.6 MBytes 50.0 Mbits/sec 44386
[ 5] 30.00-40.00 sec 59.6 MBytes 50.0 Mbits/sec 44390
[ 5] 40.00-50.01 sec 59.6 MBytes 50.0 Mbits/sec 44391
[ 5] 50.01-60.01 sec 59.6 MBytes 50.0 Mbits/sec 44393
- - - - - - - - - - - - - - - - - - - - - - - - -
[ ID] Interval Transfer Bandwidth Jitter Lost/Total Datagrams
[ 5] 0.00-60.01 sec 357 MBytes 49.9 Mbits/sec 1.645 ms 241581/265936 (91%)
[ 5] Sent 265936 datagrams

iperf Done.

连上 strongswan
churchmice@rmbp:~ $-> iperf3 -u -c 104.x.x.x -b 50M -t 60 -i 10
Connecting to host 104.x.x.x, port 5201
[ 5] local port 61546 connected to 104.x.x.x port 5201
[ ID] Interval Transfer Bandwidth Total Datagrams
[ 5] 0.00-10.00 sec 59.1 MBytes 49.5 Mbits/sec 43990
[ 5] 10.00-20.00 sec 59.6 MBytes 50.0 Mbits/sec 44382
[ 5] 20.00-30.00 sec 59.6 MBytes 50.0 Mbits/sec 44407
[ 5] 30.00-40.00 sec 59.6 MBytes 50.0 Mbits/sec 44364
[ 5] 40.00-50.00 sec 59.6 MBytes 50.0 Mbits/sec 44391
[ 5] 50.00-60.00 sec 59.6 MBytes 50.0 Mbits/sec 44402
- - - - - - - - - - - - - - - - - - - - - - - - -
[ ID] Interval Transfer Bandwidth Jitter Lost/Total Datagrams
[ 5] 0.00-60.00 sec 357 MBytes 49.9 Mbits/sec 1.704 ms 241100/265927 (91%)
[ 5] Sent 265927 datagrams

iperf Done.
2017-03-12 18:27:44 +08:00
回复了 churchmice 创建的主题 问与答 有在 GCP(Google Cloud Platform)搭建 strongswan 的嘛?
@redsonic 连上 strongswan 之后本机(mac)当 server,gcp 当 client 的数据

root@nox-gcp:~# iperf3 -u -c -b 50M -t 60 -i 10
Connecting to host, port 5201
[ 4] local ********** port 47358 connected to port 5201
[ ID] Interval Transfer Bandwidth Total Datagrams
[ 4] 0.00-10.00 sec 59.2 MBytes 49.6 Mbits/sec 7575
[ 4] 10.00-20.00 sec 59.6 MBytes 50.0 Mbits/sec 7629
[ 4] 20.00-30.00 sec 59.6 MBytes 50.0 Mbits/sec 7629
[ 4] 30.00-40.00 sec 59.6 MBytes 50.0 Mbits/sec 7630
[ 4] 40.00-50.00 sec 59.6 MBytes 50.0 Mbits/sec 7629
[ 4] 50.00-60.00 sec 59.6 MBytes 50.0 Mbits/sec 7630
- - - - - - - - - - - - - - - - - - - - - - - - -
[ ID] Interval Transfer Bandwidth Jitter Lost/Total Datagrams
[ 4] 0.00-60.00 sec 357 MBytes 49.9 Mbits/sec 0.522 ms 26/45722 (0.057%)
[ 4] Sent 45722 datagrams

iperf Done.
2017-03-12 17:14:06 +08:00
回复了 churchmice 创建的主题 问与答 有在 GCP(Google Cloud Platform)搭建 strongswan 的嘛?
[ ID] Interval Transfer Bandwidth
[ 5] 0.00-60.00 sec 15.5 MBytes 2.17 Mbits/sec sender
[ 5] 0.00-60.00 sec 15.4 MBytes 2.16 Mbits/sec receiver

2017-03-12 16:57:51 +08:00
回复了 churchmice 创建的主题 问与答 有在 GCP(Google Cloud Platform)搭建 strongswan 的嘛?
@blues9 DNS 改成 ? 还有你的防火墙这么配置的?


port 2048

proto udp

dev tun

ca /etc/openvpn/ca.crt
cert /etc/openvpn/server.crt
key /etc/openvpn/server.key # This file should be kept secret

dh /etc/openvpn/dh2048.pem


ifconfig-pool-persist ipp.txt

push "redirect-gateway def1 bypass-dhcp"

push "dhcp-option DNS"
push "dhcp-option DNS"

keepalive 10 120


user nobody
group nogroup


status openvpn-status.log

verb 3

cipher AES-256-CBC
2017-03-12 13:41:42 +08:00
回复了 churchmice 创建的主题 问与答 有在 GCP(Google Cloud Platform)搭建 strongswan 的嘛?
@blues9 改成 也是不行,方便把你的 /etc/ipsec.conf 贴一下吗?

openvpn 的话我参考的这个 https://www.digitalocean.com/community/tutorials/how-to-set-up-an-openvpn-server-on-debian-8

DNS 解析不了的话你看看 push 的 DNS 是多少?
2017-03-12 13:32:48 +08:00
回复了 churchmice 创建的主题 问与答 有在 GCP(Google Cloud Platform)搭建 strongswan 的嘛?
@blues9 嗯,我试试,因为 GCP 里面 eth0 的地址并不是真正的外网地址
2017-03-12 13:32:12 +08:00
回复了 churchmice 创建的主题 问与答 有在 GCP(Google Cloud Platform)搭建 strongswan 的嘛?
@redsonic 这玩意怎么测?没弄过啊
2017-03-12 09:51:05 +08:00
回复了 churchmice 创建的主题 问与答 有在 GCP(Google Cloud Platform)搭建 strongswan 的嘛?
@Showfom 也是同样的结果, gcp 内网 IP 断是
2017-03-11 18:40:39 +08:00
回复了 churchmice 创建的主题 问与答 有在 GCP(Google Cloud Platform)搭建 strongswan 的嘛?
我访问其他网站都没问题,就是 google 全家桶不行
2017-02-20 10:34:41 +08:00
回复了 freestyle 创建的主题 问与答 有哪些神级性价比路由器?
wndr4300 用着还可以啊,买的二手也就 100 多块钱
2017-02-20 10:30:09 +08:00
回复了 markfang 创建的主题 MacBook Pro XPS 和 macbook pro 对比怎样啊
@sidkang 可以把保修转国内来的啊,难道这个也被封了?
