install openvpn support for milestone

杯具开始了:

milestone不支持mppe128位加密,pptpvpn无法连接,只能选择不加密,接着升级android2.1后选择不加密也无法连接,杯具啊

没办法,只能选择openvpn,接着,真正的杯具开始了

1.必须先获取root权限,详细信息参考http://www.androider.hk/?p=77

2.在market下载openvpn Installer,自动在/system/xbin/下安装openvpn

3.安装TunnelDroid,发现不支持tun,于是用adb把下好的tun.ko拷贝进/system/lib/modules/(先要remount /system,使可写),但是先下的一个tun.ko无法load,应该继续找,好不容易才找到tun.ko

4.继续运行,继续错误,/system/xbin/bb/ifconfig不存在,果然,需要安装busybox,参考http://www.droidcn.com/viewthread.php?tid=1434

5.大功告成!

Tags: , , , ,

categories Linux, Network, VPN, android | admin 2010/03/26

5 Comments to “install openvpn support for milestone”

  1. By yushiro, 2010/03/28 @ 08:33

    我也买了moto的milestone,现在卡在OPENVPN上, 能启动TunnelDroid了, 但是没法上网. 你那第四步ifconfig不存在, 直接装busybox就解决了吗?

  2. By admin, 2010/03/28 @ 20:15

    TunnelDroid需要调用ifconfig来执行一些路由命令
    你安装busybox后需要把文件copy到/system/xbin/bb下

  3. By yushiro, 2010/03/29 @ 16:32

    用cp把busybox复制到/system/xbin/bb下了, 不过还是不行.
    VPN的链接日志如下:
    Mon Mar 29 21:18:07 2010 OpenVPN 2.1.1 i686-pc-linux-gnu [SSL] [LZO2] [EPOLL] built on Feb 2 2010
    Mon Mar 29 21:18:07 2010 MANAGEMENT: TCP Socket listening on 127.0.0.1:7171
    Mon Mar 29 21:18:07 2010 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
    Mon Mar 29 21:18:07 2010 NOTE: OpenVPN 2.1 requires ‘–script-security 2′ or higher to call user-defined scripts or executables
    Mon Mar 29 21:18:07 2010 WARNING: file ‘client1.key’ is group or others accessible
    Mon Mar 29 21:18:07 2010 LZO compression initialized
    Mon Mar 29 21:18:07 2010 Control Channel MTU parms [ L:1544 D:140 EF:40 EB:0 ET:0 EL:0 ]
    Mon Mar 29 21:18:07 2010 Data Channel MTU parms [ L:1544 D:1450 EF:44 EB:135 ET:0 EL:0 AF:3/1 ]
    Mon Mar 29 21:18:07 2010 Local Options hash (VER=V4): ‘69109d17′
    Mon Mar 29 21:18:07 2010 Expected Remote Options hash (VER=V4): ‘c0103fa8′
    Mon Mar 29 21:18:07 2010 Attempting to establish TCP connection with 11.11.11.11:1111 [nonblock]
    Mon Mar 29 21:18:08 2010 MANAGEMENT: Client connected from 127.0.0.1:7171
    Mon Mar 29 21:18:08 2010 MANAGEMENT: CMD ’state on’
    Mon Mar 29 21:18:09 2010 TCP connection established with 11.11.11.11:1111
    Mon Mar 29 21:18:09 2010 Socket Buffers: R=[87380->131072] S=[16384->131072]
    Mon Mar 29 21:18:09 2010 TCPv4_CLIENT link local: [undef]
    Mon Mar 29 21:18:09 2010 TCPv4_CLIENT link remote: 11.11.11.11:1111
    Mon Mar 29 21:18:09 2010 MANAGEMENT: >STATE:1269868689,WAIT,,,
    Mon Mar 29 21:18:09 2010 MANAGEMENT: >STATE:1269868689,AUTH,,,
    Mon Mar 29 21:18:09 2010 TLS: Initial packet from 11.11.11.11:1111, sid=739370c1 13daa54e
    Mon Mar 29 21:18:16 2010 VERIFY OK: depth=1, /C=US/ST=CA/L=SanFrancisco/O=Fort-Funston/CN=Fort-Funston_CA/emailAddress=me@myhost.mydomain
    Mon Mar 29 21:18:16 2010 VERIFY OK: depth=0, /C=US/ST=CA/L=SanFrancisco/O=Fort-Funston/CN=server/emailAddress=me@myhost.mydomain
    Mon Mar 29 21:18:25 2010 Data Channel Encrypt: Cipher ‘BF-CBC’ initialized with 128 bit key
    Mon Mar 29 21:18:25 2010 Data Channel Encrypt: Using 160 bit message hash ‘SHA1′ for HMAC authentication
    Mon Mar 29 21:18:25 2010 Data Channel Decrypt: Cipher ‘BF-CBC’ initialized with 128 bit key
    Mon Mar 29 21:18:25 2010 Data Channel Decrypt: Using 160 bit message hash ‘SHA1′ for HMAC authentication
    Mon Mar 29 21:18:25 2010 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
    Mon Mar 29 21:18:25 2010 [server] Peer Connection Initiated with 11.11.11.11:1111
    Mon Mar 29 21:18:26 2010 MANAGEMENT: >STATE:1269868706,GET_CONFIG,,,
    Mon Mar 29 21:18:27 2010 SENT CONTROL [server]: ‘PUSH_REQUEST’ (status=1)
    Mon Mar 29 21:18:28 2010 PUSH: Received control message: ‘PUSH_REPLY,redirect-gateway def1,dhcp-option DNS 8.8.8.8,dhcp-option DNS 8.8.8.8,route 10.8.0.0 255.255.255.0,topology net30,ifconfig 10.8.0.6 10.8.0.5′
    Mon Mar 29 21:18:28 2010 Options error: Unrecognized option or missing parameter(s) in [PUSH-OPTIONS]:4: route (2.1.1)
    Mon Mar 29 21:18:28 2010 Options error: Unrecognized option or missing parameter(s) in [PUSH-OPTIONS]:6: ifconfig (2.1.1)
    Mon Mar 29 21:18:28 2010 OPTIONS IMPORT: –ifconfig/up options modified
    Mon Mar 29 21:18:28 2010 OPTIONS IMPORT: route options modified
    Mon Mar 29 21:18:28 2010 OPTIONS IMPORT: –ip-win32 and/or –dhcp-option options modified
    Mon Mar 29 21:18:28 2010 ROUTE default_gateway=192.168.1.1
    Mon Mar 29 21:18:28 2010 TUN/TAP device tun0 opened
    Mon Mar 29 21:18:28 2010 TUN/TAP TX queue length set to 100
    Mon Mar 29 21:18:28 2010 NOTE: unable to redirect default gateway — VPN gateway parameter (–route-gateway or –ifconfig) is missing
    Mon Mar 29 21:18:28 2010 Initialization Sequence Completed
    Mon Mar 29 21:18:28 2010 MANAGEMENT: >STATE:1269868708,CONNECTED,SUCCESS,,11.11.11.11

  4. By admin, 2010/03/29 @ 16:49

    貌似还是没找到你的ifconfig
    把/system/xbin/bb加入path里面

    export PATH=/system/xbin/bb:$PATH

  5. By yushiro, 2010/03/29 @ 18:02

    还是不行……算了, 我抽空重新刷一次2.1的官方ROM,重头开始试一次~

RSS feed for comments on this post. TrackBack URI

Leave a Reply