{"id":514,"date":"2011-09-06T13:34:23","date_gmt":"2011-09-06T05:34:23","guid":{"rendered":"http:\/\/xujiwei.com\/blog\/?p=514"},"modified":"2016-12-27T17:18:06","modified_gmt":"2016-12-27T09:18:06","slug":"router-with-vpn","status":"publish","type":"post","link":"https:\/\/xujiwei.com\/blog\/2011\/09\/router-with-vpn\/","title":{"rendered":"\u4e00\u4e2a\u8def\u7531\u5668\uff0c\u4e24\u79cd\u7f51\u7edc\uff0cVPN\u548c\u4e0b\u8f7d\u4e24\u4e0d\u8bef"},"content":{"rendered":"<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_65 ez-toc-wrap-right counter-hierarchy ez-toc-counter ez-toc-light-blue ez-toc-container-direction\">\n<p class=\"ez-toc-title\">\u6587\u7ae0\u76ee\u5f55<\/p>\n<label for=\"ez-toc-cssicon-toggle-item-69de685e268ea\" class=\"ez-toc-cssicon-toggle-label\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #999;color:#999\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #999;color:#999\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/label><input type=\"checkbox\"  id=\"ez-toc-cssicon-toggle-item-69de685e268ea\"  aria-label=\"Toggle\" \/><nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/xujiwei.com\/blog\/2011\/09\/router-with-vpn\/#%E5%87%86%E5%A4%87%E5%B7%A5%E4%BD%9C\" title=\"\u51c6\u5907\u5de5\u4f5c\">\u51c6\u5907\u5de5\u4f5c<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/xujiwei.com\/blog\/2011\/09\/router-with-vpn\/#%E7%BD%91%E7%BB%9C%E5%88%86%E6%AE%B5\" title=\"\u7f51\u7edc\u5206\u6bb5\">\u7f51\u7edc\u5206\u6bb5<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/xujiwei.com\/blog\/2011\/09\/router-with-vpn\/#%E8%B7%AF%E7%94%B1%E7%AD%96%E7%95%A5%E8%A1%A8\" title=\"\u8def\u7531\u7b56\u7565\u8868\">\u8def\u7531\u7b56\u7565\u8868<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/xujiwei.com\/blog\/2011\/09\/router-with-vpn\/#OpenVPN_%E9%85%8D%E7%BD%AE\" title=\"OpenVPN \u914d\u7f6e\">OpenVPN \u914d\u7f6e<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-5\" href=\"https:\/\/xujiwei.com\/blog\/2011\/09\/router-with-vpn\/#%E8%A7%A3%E5%86%B3_max-routes\" title=\"\u89e3\u51b3 max-routes\">\u89e3\u51b3 max-routes<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-6\" href=\"https:\/\/xujiwei.com\/blog\/2011\/09\/router-with-vpn\/#%E9%85%8D%E7%BD%AE_DNSMasq\" title=\"\u914d\u7f6e DNSMasq\">\u914d\u7f6e DNSMasq<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-7\" href=\"https:\/\/xujiwei.com\/blog\/2011\/09\/router-with-vpn\/#%E6%89%93%E5%AE%8C%E6%94%B6%E5%B7%A5\" title=\"\u6253\u5b8c\u6536\u5de5\">\u6253\u5b8c\u6536\u5de5<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-8\" href=\"https:\/\/xujiwei.com\/blog\/2011\/09\/router-with-vpn\/#%E5%8F%82%E8%80%83%E8%B5%84%E6%96%99\" title=\"\u53c2\u8003\u8d44\u6599\">\u53c2\u8003\u8d44\u6599<\/a><\/li><\/ul><\/nav><\/div>\n<p>\u6700\u8fd1\u5728\u7528 <a href=\"http:\/\/www.appcelerator.com\">Titanium<\/a> \u5199\u4e00\u4e2a Twitter \u5ba2\u6237\u7aef\uff0c\u56e0\u4e3a\u8981\u7528\u5230 OAuth \u8ba4\u8bc1\uff0c\u6240\u4ee5\u5c31\u5728\u624b\u673a\u8fde\u63a5 VPN\uff0c\u4f46\u662f\u901f\u5ea6\u6bd4\u8f83\u6162\u3002\u521a\u597d\u60f3\u5728\u5bb6\u91cc\u7684\u8def\u7531\u5668\u4e0a\u52a0\u4e0a OpenVPN\uff0c\u6628\u5929\u5c31\u6298\u817e\u4e86\u4e00\u4e0b\u3002<\/p>\n<p>\u5728\u5bb6\u91cc\u8def\u7531\u5668\u4e0a\u52a0\u4e0a OpenVPN \u7684\u4e00\u4e2a\u4e3b\u8981\u95ee\u9898\u662f\uff0c\u5bb6\u91cc\u7684\u7f51\u7edc\u4e2d\u8fd8\u6709\u4e0b\u8f7d\u673a\uff0c\u800c\u4e0b\u8f7d\u7684\u6d41\u91cf\u662f\u4e0d\u60f3\u901a\u8fc7 VPN \u53bb\u4f20\u8f93\u7684\u3002\u867d\u7136 <a href=\"http:\/\/chnroutes.googlecode.com\">chnroutes<\/a> \u9879\u76ee\u7684\u8def\u7531\u8868\u53ef\u4ee5\u8ba9\u56fd\u5185\u7684 IP \u8d70\u76f4\u8fde\uff0c\u56fd\u5916\u7684 IP \u8d70 VPN\uff0c\u4f46\u662f eMule \u6216\u8005 BT \u4e0b\u8f7d\u65f6\uff0c\u96be\u514d\u4f1a\u8fde\u63a5\u5230\u56fd\u5916\u7684\u7528\u6237\u6216\u8005\u670d\u52a1\u5668\uff0c\u8fd9\u4e2a\u65f6\u5019\u4e5f\u4e0d\u60f3\u53bb\u6d6a\u8d39 VPN \u7684\u6d41\u91cf\u3002<\/p>\n<p>\u56e0\u4e3a\u8fd9\u4e9b\uff0c\u6211\u7684\u60f3\u6cd5\u662f\u5728\u8def\u7531\u5668\u4e0a\u505a\u5224\u65ad\uff0c\u5982\u679c\u662f\u4ece\u4e0b\u8f7d\u673a\u8fc7\u6765\u6d41\u91cf\uff0c\u5c31\u901a\u8fc7\u76f4\u63a5\u8fde\u63a5\uff0c\u5982\u679c\u5176\u4ed6\u673a\u5668\uff0c\u4f8b\u5982\u7b14\u8bb0\u672c\uff0c\u5c31\u6839\u636e\u76ee\u6807 IP \u6765\u5224\u65ad\u662f\u901a\u8fc7\u76f4\u63a5\u8fde\u63a5\u8fd8\u662f VPN \u6765\u4f20\u8f93\u3002<\/p>\n<p>\u4e0b\u8f7d\u673a\u662f\u901a\u8fc7 LAN \u8fde\u63a5\u5230\u8def\u7531\u5668\u7684\uff0c\u672c\u6765\u60f3\u6309\u8fdb\u5165\u6d41\u91cf\u7684\u8bbe\u5907\u6765\u5224\u65ad\u662f\u5426\u4e3a\u4e0b\u8f7d\u673a\uff0c\u540e\u6765\u53d1\u73b0\u5b9e\u73b0\u6bd4\u8f83\u9ebb\u70e6\uff0c\u5c31\u51b3\u5b9a\u6309\u6d41\u91cf\u6765\u6e90 IP \u6765\u5224\u65ad\u662f\u5426\u4e3a\u4e0b\u8f7d\u673a\u7684\u6570\u636e\u3002<\/p>\n<h2><span class=\"ez-toc-section\" id=\"%E5%87%86%E5%A4%87%E5%B7%A5%E4%BD%9C\"><\/span>\u51c6\u5907\u5de5\u4f5c<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<ul>\n<li>\u8fd0\u884c dd-wrt \u7684\u8def\u7531\u5668\u4e00\u4e2a\uff0c\u8981\u5e26\u6709 OpenVPN<\/li>\n<li>OpenVPN \u670d\u52a1\u5668\u4e00\u4e2a\uff0c\u8ba4\u8bc1\u65b9\u5f0f\u9009\u62e9\u8bc1\u4e66\u8ba4\u8bc1<\/li>\n<li>Linux \u77e5\u8bc6\u82e5\u5e72<\/li>\n<\/ul>\n<p>\u5f53\u7136 dd-wrt \u5e76\u4e0d\u662f\u5fc5\u987b\u7684\uff0c\u4e5f\u53ef\u4ee5\u662f openwrt \u6216\u8005 tomato \u4e4b\u7c7b\uff0c\u53ea\u8981\u5e26\u6709 OpenVPN \u5c31\u884c\uff0c\u5982\u679c\u4e0d\u5e26 OpenVPN\uff0c\u5c31\u9700\u8981\u5728\u542f\u52a8\u8fc7\u7a0b\u4e2d\u53bb\u5916\u90e8\u4e0b\u8f7d\u76f8\u5173\u7684\u8f6f\u4ef6\uff0c\u90a3\u5c31\u662f\u53e6\u5916\u7684\u5185\u5bb9\u4e86\uff0c\u6682\u4e14\u4e0d\u63d0\u3002<\/p>\n<h2><span class=\"ez-toc-section\" id=\"%E7%BD%91%E7%BB%9C%E5%88%86%E6%AE%B5\"><\/span>\u7f51\u7edc\u5206\u6bb5<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>\u56e0\u4e3a\u8981\u6309 IP \u6765\u533a\u5206\u6d41\u91cf\u662f\u5426\u8981\u8d70 VPN\uff0c\u56e0\u6b64\u8981\u5148\u5212\u5206\u4e00\u4e0b\u5c40\u57df\u7f51\u91cc\u8981\u7528\u5230\u7684 IP \u6bb5\u3002<\/p>\n<p>\u8def\u7531\u5668\u7684 IP \u662f 192.168.2.1\uff0cDHCP \u5206\u914d\u8303\u56f4\u4e3a 192.168.2.100\uff5e149\uff0c\u6309\u7167\u9700\u6c42\u5c06\u4e00\u4e2a \/24 \u7684\u7f51\u6bb5\u5206\u4e3a\u4e09\u4e2a\u90e8\u5206\uff1a<\/p>\n<ul>\n<li>192.168.2.16~31\uff0c\u6b64 IP \u6bb5\u7684\u8bbe\u5907\u6d41\u91cf\u5747\u8d70\u76f4\u8fde<\/li>\n<li>192.168.2.32~63\uff0c\u6b64 IP \u6bb5\u7684\u8bbe\u5907\u6d41\u91cf\u6839\u636e\u76ee\u6807 IP \u5224\u65ad\u8d70\u76f4\u8fde\u8fd8\u662f\u8d70 VPN<\/li>\n<li>192.168.2.100~149\uff0c\u6b64 IP \u6bb5\u4e3a DHCP \u5206\u914d\u7684 IP \u6bb5\uff0c\u6d41\u91cf\u4e5f\u6839\u636e\u76ee\u6807 IP \u6765\u5224\u65ad\u662f\u5426\u8d70 VPN<\/li>\n<\/ul>\n<p>\u56e0\u4e3a DHCP \u5206\u914d\u7684 IP \u5e76\u4e0d\u53ef\u63a7\uff0c\u6240\u4ee5\u5c06\u6d41\u91cf\u8d70\u76f4\u63a5\u7684\u8bbe\u5907\uff0c\u4f8b\u5982\u4e0b\u8f7d\u673a\uff0c\u901a\u8fc7\u9759\u6001 IP \u7684\u65b9\u5f0f\uff0c\u76f4\u63a5\u5206\u914d\u4e00\u4e2a\u5728 192.168.2.16~32 \u4e2d\u56fa\u5b9a IP\uff0c\u53ef\u4ee5\u4fdd\u8bc1\u4e0d\u4f1a\u8fde\u63a5\u5230\u6709 VPN \u7684\u7f51\u7edc\u3002<\/p>\n<h2><span class=\"ez-toc-section\" id=\"%E8%B7%AF%E7%94%B1%E7%AD%96%E7%95%A5%E8%A1%A8\"><\/span>\u8def\u7531\u7b56\u7565\u8868<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>\u5148\u521b\u5efa\u4e00\u4e2a\u7528\u6765\u76f4\u8fde\u7684\u8def\u7531\u7b56\u7565\u8868\uff0c\u7528\u6765\u5c06\u6240\u6709\u6307\u5b9a IP \u6bb5\u7684\u6d41\u91cf\u8d70\u76f4\u8fde\u3002<\/p>\n<pre><code># \u6dfb\u52a0\u4e00\u4e2a\u8def\u7531\u7b56\u7565\u8868\uff0c\u6b64\u8868\u9488\u5bf9 192.168.2.16\/28 IP \u6bb5\u6709\u6548\nip rule show | grep \"lookup 10\" || ip rule add from 192.168.2.16\/28 ta 10\n\n# \u8bbe\u7f6e\u7b56\u7565\u8868\u7684\u9ed8\u8ba4\u8def\u7531\nWAN_IP=`ifconfig ppp0 | grep \"inet addr\" | cut -d \":\" -f 2 | cut -d \" \" -f1`\nip route replace 192.168.2.0\/24 dev br0 proto kernel scope link src 192.168.2.1 ta 10\nip route replace 127.0.0.0\/8 dev lo  scope link\nip route replace 169.254.0.0\/16 dev br0  proto kernel  scope link  src 169.254.255.1\nip route replace default via $WAN_IP dev ppp0 ta 10\n<\/code><\/pre>\n<p>\u5c06\u4ee5\u4e0a\u4ee3\u7801\u4fdd\u5b58\u5728 dd-wrt \u7684 Filewall Script \u4e2d\uff0c\u8fd9\u6837\u5728\u6bcf\u6b21 WAN IP \u6539\u53d8\u7684\u65f6\u5019\uff0c\u90fd\u53ef\u4ee5\u66f4\u65b0\u8fd9\u4e2a\u8def\u7531\u7b56\u7565\u8868\u4e86\u3002<\/p>\n<h2><span class=\"ez-toc-section\" id=\"OpenVPN_%E9%85%8D%E7%BD%AE\"><\/span>OpenVPN \u914d\u7f6e<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>OpenVPN \u6309\u9ed8\u8ba4\u914d\u7f6e\u5373\u53ef\uff0c\u9700\u8981\u6ce8\u610f\u7684\u662f\uff0c\u8def\u7531\u5668\u4e0a\u7684 tun mtu\u3001tun mtu extra \u4ee5\u53ca mssfix \u9700\u8981\u4e0e\u670d\u52a1\u5668\u4e00\u81f4\uff0c\u6216\u8005\u670d\u52a1\u5668\u4e0e\u8def\u7531\u5668\u4e0a\u7684\u914d\u7f6e\u4e00\u81f4\u3002<\/p>\n<p>\u56e0\u4e3a\u8981\u7528\u5230 chnroutes\uff0c\u4f46\u662f dd-wrt \u4e2d\u7684 OpenVPN \u914d\u7f6e\u5e76\u4e0d\u652f\u6301\u81ea\u5b9a\u4e49\u914d\u7f6e\uff0c\u6ca1\u529e\u6cd5\u6dfb\u52a0 route \u9009\u9879\uff0c\u56e0\u6b64\u8981\u628a\u8fd9\u4e9b\u9009\u9879\u653e\u5230 OpenVPN  \u670d\u52a1\u7aef\u7684\u914d\u7f6e\u6587\u4ef6\u4e2d\uff0c\u4f7f\u7528 push \u6307\u4ee4\u5728\u8fde\u63a5\u65f6\u63a8\u9001\u5230\u5ba2\u6237\u7aef\u6765\u3002<\/p>\n<p>\u4f8b\u5982\uff1a<\/p>\n<pre><code>push \"route 1.0.0.0 255.255.0.0 net_gateway 5\"\n<\/code><\/pre>\n<p>\u53e6\u5916\u4e00\u6709\u70b9\u9700\u8981\u6ce8\u610f\uff0c\u5982\u679c\u5728 dd-wrt \u4e2d\u540c\u65f6\u542f\u7528\u4e86 OpenVPN Daemon\uff0c\u5efa\u8bae\u5c06 OpenVPN Daemon \u7684\u542f\u52a8\u65b9\u5f0f\u8bbe\u7f6e\u4e3a\u201cSystem Startup\u201d\u800c\u4e0d\u662f\u201cWAN Up\u201d\uff0c\u5728\u6211\u7684\u8def\u7531\u5668\u4e0a\uff0c\u4f7f\u7528\u201cWAN Up\u201d\u65f6 OpenVPN Daemon \u548c OpenVPN Client \u4f1a\u51b2\u7a81\uff0c\u5bfc\u81f4 OpenVPN Client \u542f\u52a8\u5931\u8d25\u3002<\/p>\n<h2><span class=\"ez-toc-section\" id=\"%E8%A7%A3%E5%86%B3_max-routes\"><\/span>\u89e3\u51b3 max-routes<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>OpenVPN \u5ba2\u6237\u7aef\uff0c\u9ed8\u8ba4\u6700\u591a\u53ea\u80fd\u6dfb\u52a0 100 \u6761\u8def\u7531\u8bb0\u5f55\uff0c\u4f46\u662f chnroutes \u6b63\u5e38\u751f\u6210\u7684\u8def\u7531\u8868\uff0c\u53ef\u80fd\u4f1a\u5728 1000 \u6761\u4ee5\u4e0a\uff0c\u56e0\u6b64 100 \u6761\u662f\u8fdc\u8fdc\u4e0d\u591f\u7684\u3002<\/p>\n<p>\u8fd9\u4e2a\u53ef\u4ee5\u901a\u8fc7 max-routes \u914d\u7f6e\u9879\u6765\u89e3\u51b3\uff0c\u672c\u6765\u6253\u7b97\u8fd9\u4e2a\u914d\u7f6e\u540c\u6837\u4ece\u670d\u52a1\u7aef\u63a8\u9001\u8fc7\u6765\uff0c\u4f46\u662f OpenVPN \u73b0\u5728\u5e76\u4e0d\u652f\u6301 push \"max-routes 1500\" \u8fd9\u6837\u7684\u6307\u4ee4\u3002<\/p>\n<p>\u5728 dd-wrt \u7684 OpenVPN \u914d\u7f6e\u4e2d\uff0c\u4e5f\u6ca1\u6709\u76f8\u5e94\u7684\u9009\u9879\uff0c\u4e3a\u4e86\u89e3\u51b3\u8fd9\u4e2a\u95ee\u9898\uff0c\u53ea\u80fd\u91c7\u53d6\u4e00\u4e2a\u6bd4\u8f83\u53d6\u5de7\u7684\u529e\u6cd5\u6765\u89e3\u51b3\u3002dd-wrt \u4e2d\u7684 OpenVPN \u914d\u7f6e\u90fd\u662f\u5b58\u5728 nvram \u4e2d\u7684\uff0c\u5728 dd-wrt \u542f\u52a8\u540e\uff0c\u4f1a\u81ea\u52a8\u4ece nvram \u4e2d\u53d6 OpenVPN \u7684\u76f8\u5173\u914d\u7f6e\uff0c\u7ec4\u5408\u6210\u4e00\u4e2a openvpn.conf\uff0c\u800c\u8fd9\u4e2a\u914d\u7f6e\u9664\u4e86\u53ef\u4ee5\u5728 dd-wrt \u7684 Web \u754c\u9762\u4e2d\u4fee\u6539\uff0c\u8fd8\u53ef\u4ee5\u76f4\u63a5 SSH \u5230 dd-wrt \u4e0a\uff0c\u76f4\u63a5\u4f7f\u7528 nvram \u547d\u4ee4\u4fee\u6539\u3002<\/p>\n<p>\u5728\u8fd9\u91cc\u8981 hack \u7684\u914d\u7f6e\u662f mssfix\uff0c\u5f53\u7136\u5176\u4ed6\u7684\u5c5e\u6027\u4e5f\u53ef\u4ee5\uff0c\u9009\u62e9 mssfix \u662f\u56e0\u8fd9\u4e2a\u5c5e\u6027\u6bd4\u8f83\u7b80\u5355\uff0c\u6539\u8d77\u6765\u65b9\u4fbf\u3002<\/p>\n<p>\u6211\u8fd9\u91cc\u8bbe\u7f6e\u4e86 mssfix \u4e3a 1400\uff0c\u53e6\u5916\u670d\u52a1\u5668\u8981\u63a8\u9001\u7684\u8def\u7531\u8868\u4e3a 1300 \u6761\u5de6\u53f3\uff0c\u76f4\u63a5\u5c06 max-routes \u8bbe\u7f6e\u4e3a 1500\uff0c\u5728\u8def\u7531\u5668\u4e0a\u8fd0\u884c\u4e0b\u9762\u8fd9\u4e2a\u6307\u4ee4\uff1a<\/p>\n<pre><code>nvram set openvpncl_mssfix=\"1400\nmax-routes\"\n<\/code><\/pre>\n<p>\u9700\u8981\u6ce8\u610f\u7684\u662f\uff0c\u4e00\u5b9a\u8981\u5206\u4e24\u884c\u6765\u8f93\u5165\uff0c\u5426\u5219\u751f\u6210\u7684 openvpn.conf \u4e2d\uff0cmssfix 1400 \u548c max-routes 1500 \u4f1a\u5728\u540c\u4e00\u884c\u800c\u5bfc\u81f4\u914d\u7f6e\u5931\u6548\u3002<\/p>\n<p>\u8fd9\u6837\u5728\u751f\u6210\u7684 OpenVPN \u914d\u7f6e\u6587\u4ef6\u4e2d\uff0c\u5c31\u6709\u4e86 max-routes \u9009\u9879\uff0c\u670d\u52a1\u7aef\u4e5f\u53ef\u4ee5\u6b63\u5e38\u63a8\u9001\u8def\u7531\u8868\u4e86\u3002<\/p>\n<p>\u4e0d\u8fc7\u8fd9\u6837\u4e5f\u6709\u4e00\u70b9\u574f\u5904\uff0c\u90a3\u5c31\u662f\u5982\u679c\u518d\u4fee\u6539\u4e86 OpenVPN \u914d\u7f6e\u5e76\u4fdd\u5b58\uff0c\u4f1a\u628a mssfix \u4e2d\u7684\u90a3\u4e2a\u56de\u8f66\u7ed9\u53bb\u6389\uff0c\u518d\u6b21\u5bfc\u81f4\u8fde\u63a5\u5931\u8d25\u3002\u4e0d\u8fc7 OpenVPN \u4e00\u65e6\u914d\u7f6e\u5b8c\u6210\uff0c\u4e5f\u4e0d\u4f1a\u7ecf\u5e38\u6539\u52a8\uff0c\u5012\u4e5f\u4e0d\u662f\u5f88\u5927\u7684\u95ee\u9898\u3002<\/p>\n<h2><span class=\"ez-toc-section\" id=\"%E9%85%8D%E7%BD%AE_DNSMasq\"><\/span>\u914d\u7f6e DNSMasq<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>\u4e00\u822c\u624b\u673a\u4e0a\u8fde\u63a5\u4e0a WiFi \u7684\u65f6\u5019\uff0c\u8bbe\u7f6e DNS \u7b49\u5185\u5bb9\u4f1a\u6bd4\u8f83\u9ebb\u70e6\uff0c\u800c\u5982\u679c\u4e0d\u8bbe\u7f6e DNS\uff0c\u4f1a\u5bfc\u81f4\u5728\u624b\u673a\u4e0a\u89e3\u6790\u57df\u540d\u65f6\uff0c\u4f7f\u7528\u4e86\u56fd\u5185\u7684 DNS \u670d\u52a1\u5668\uff0c\u800c\u8fd9\u4e5f\u4f1a\u5bfc\u81f4\u4e00\u4e9b\u95ee\u9898\uff0c\u53ef\u4ee5\u6309\u7167 autoddvpn \u4e2d\u7684\u8bf4\u660e\uff0c\u5c06 DNS \u8bbe\u7f6e\u4e3a Google Public DNS \u548c OpenDNS\uff1a<\/p>\n<pre><code>8.8.8.8\n8.8.4.4\n208.67.222.222\n<\/code><\/pre>\n<h2><span class=\"ez-toc-section\" id=\"%E6%89%93%E5%AE%8C%E6%94%B6%E5%B7%A5\"><\/span>\u6253\u5b8c\u6536\u5de5<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>\u914d\u7f6e\u5b8c\u6210\u4e4b\u540e\uff0c\u5c31\u53ef\u4ee5\u65b9\u4fbf\u7684\u5206\u914d\u5bb6\u5ead\u5c40\u57df\u7f51\u91cc\u8bbe\u5907\u7684\u6d41\u91cf\u8d70\u5411\u4e86\uff0c\u60f3\u8981\u8bbe\u5907\u7684\u6d41\u91cf\u8d70\u76f4\u8fde\uff0c\u53ea\u8981\u5206\u914d\u5230 192.168.2.16~31 \u8fd9\u4e2a IP \u6bb5\u5c31\u53ef\u4ee5\u4e86\uff0c\u81f3\u4e8e\u5176\u4ed6\u7684\u8bbe\u5907\uff0c\u53ef\u4ee5\u4f7f\u7528\u9759\u6001 IP\uff0c\u4e5f\u53ef\u4ee5\u76f4\u63a5\u4f7f\u7528 DHCP \u5206\u914d\u3002<\/p>\n<p>\u55ef\uff0c\u8fd9\u6837\u518d\u5728\u771f\u673a\u4e0a\u8c03\u8bd5 Twitter \u5ba2\u6237\u7aef\u4e4b\u7c7b\u7684\u7a0b\u5e8f\u5c31\u65b9\u4fbf\u4e86\u3002<\/p>\n<p>PS. \u975e\u5e38\u611f\u8c22 <a href=\"http:\/\/twitter.com\/tjmao\">@tjmao<\/a> \u5728\u6298\u817e\u8fc7\u7a0b\u4e2d\u5e2e\u52a9\u3002<\/p>\n<h2><span class=\"ez-toc-section\" id=\"%E5%8F%82%E8%80%83%E8%B5%84%E6%96%99\"><\/span>\u53c2\u8003\u8d44\u6599<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<ol>\n<li><a href=\"http:\/\/code.google.com\/p\/autoddvpn\/wiki\/DNSMasq\">autoddvpn: DNSMasq<\/a><\/li>\n<li><a href=\"http:\/\/openvpn.net\/index.php\/open-source\/documentation\/manuals\/69-openvpn-21.html\">OpenVPN 2.1 Manual<\/a><\/li>\n<li><a href=\"http:\/\/rhcss.blog.51cto.com\/672018\/133812\">linux \u9ad8\u7ea7\u8def\u7531\u53ca\u6d41\u91cf\u63a7\u5236\u603b\u7ed3<\/a><\/li>\n<li><a href=\"http:\/\/linux.die.net\/man\/8\/ip\">ip(8)<\/a><\/li>\n<li><a href=\"http:\/\/linux.die.net\/man\/8\/route\">route(8)<\/a><\/li>\n<li><a href=\"http:\/\/www.dd-wrt.com\/wiki\/index.php\/Hardware#NVRAM\">ddwrt: Hardware<\/a><\/li>\n<\/ol>\n<p>--- EOF ---<\/p>\n","protected":false},"excerpt":{"rendered":"<p>\u6700\u8fd1\u5728\u7528 Titanium \u5199\u4e00\u4e2a Twitter \u5ba2\u6237\u7aef\uff0c\u56e0\u4e3a\u8981\u7528\u5230 OAut &hellip;<\/p>\n<p class=\"read-more\"><a href=\"https:\/\/xujiwei.com\/blog\/2011\/09\/router-with-vpn\/\">\u7ee7\u7eed\u9605\u8bfb &raquo;<\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[13],"tags":[189,190,191,188,192,175],"_links":{"self":[{"href":"https:\/\/xujiwei.com\/blog\/wp-json\/wp\/v2\/posts\/514"}],"collection":[{"href":"https:\/\/xujiwei.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/xujiwei.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/xujiwei.com\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/xujiwei.com\/blog\/wp-json\/wp\/v2\/comments?post=514"}],"version-history":[{"count":0,"href":"https:\/\/xujiwei.com\/blog\/wp-json\/wp\/v2\/posts\/514\/revisions"}],"wp:attachment":[{"href":"https:\/\/xujiwei.com\/blog\/wp-json\/wp\/v2\/media?parent=514"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/xujiwei.com\/blog\/wp-json\/wp\/v2\/categories?post=514"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/xujiwei.com\/blog\/wp-json\/wp\/v2\/tags?post=514"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}