Demande de renseignement

Bonjour,
Je suis actuellement dans une résidence étudiante sur le réseau Renater et j'utilise votre service pour débloquer tous les ports. Avant vous; j'ai pris un abonnement chez nordvpn en essayant de me connecter à travers un proxy mais impossible d'où ma question. J'aimerai savoir comment fonctionne votre réseau car seul le port 22 et 80 est débloqué.
Je vous donne mes logs et Frozenway.
Merci de répondre à ma curiosité. J'ai essayé de lire les logs mais j'ai pas tout compris

FrozenWay version 1.6.7
----------------------------------
Server: premium-02-fr-03
Proxy: 172.17.31.1:8080
Protocol: OpenVPN
----------------------------------
C:/Program Files/FrozenWay/openvpn.exe --client --dev tun --dev-node {E3A54284-C557-4FA1-BA3B-EFEC354F458E} --proto tcp-client --remote 212.83.132.71 443 --management 127.0.0.1 62708 --management-client --management-query-passwords --http-proxy 172.17.31.1 8080 auto --ca C:/Program Files/FrozenWay/ca.crt --remote-cert-tls server --reneg-sec 0 --auth-user-pass --auth-nocache --compress --resolv-retry 0 --ping 10 --ping-exit 30 --persist-tun --persist-key --persist-local-ip --connect-retry 1 --ip-win32 dynamic --verb 3
Thu May 09 19:29:24 2019 WARNING: Using --management on a TCP port WITHOUT passwords is STRONGLY discouraged and considered insecure
Thu May 09 19:29:24 2019 OpenVPN 2.4.6 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZ4] [AEAD] built on Sep 24 2018

Thu May 09 19:29:24 2019 Windows version 6.2 (Windows 8 or greater) 64bit
Thu May 09 19:29:24 2019 library versions: OpenSSL 1.0.2o 27 Mar 2018

Thu May 09 19:29:24 2019 MANAGEMENT: Connected to management server at [AF_INET]127.0.0.1:62708

Thu May 09 19:29:24 2019 MANAGEMENT: CMD 'username "Auth" kareivis83'
Thu May 09 19:29:24 2019 MANAGEMENT: CMD 'password [...]'

Thu May 09 19:29:24 2019 TCP/UDP: Preserving recently used remote address: [AF_INET]172.17.31.1:8080
Thu May 09 19:29:24 2019 Socket Buffers: R=[65536->65536] S=[65536->65536]
Thu May 09 19:29:24 2019 Attempting to establish TCP connection with [AF_INET]172.17.31.1:8080 [nonblock]

Thu May 09 19:29:25 2019 TCP connection established with [AF_INET]172.17.31.1:8080
Thu May 09 19:29:25 2019 Send to HTTP proxy: 'CONNECT 212.83.132.71:443 HTTP/1.0'
Thu May 09 19:29:25 2019 Send to HTTP proxy: 'Host: 212.83.132.71'

Thu May 09 19:29:25 2019 HTTP proxy returned: 'HTTP/1.1 200 Connection established'

Thu May 09 19:29:27 2019 TCP_CLIENT link local: (not bound)
Thu May 09 19:29:27 2019 TCP_CLIENT link remote: [AF_INET]172.17.31.1:8080

Thu May 09 19:29:27 2019 TLS: Initial packet from [AF_INET]172.17.31.1:8080, sid=5df8c2ce a3f8271f

Thu May 09 19:29:28 2019 VERIFY OK: depth=1, C=FR, ST=PACA, L=Sorgues, O=Frozendo SARL, OU=FrozenWay, CN=FrozenWay OpenVPN CA, name=FrozenWay OpenVPN CA, emailAddress=contact@frozendo.com

Thu May 09 19:29:28 2019 VERIFY KU OK
Thu May 09 19:29:28 2019 Validating certificate extended key usage
Thu May 09 19:29:28 2019 ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
Thu May 09 19:29:28 2019 VERIFY EKU OK
Thu May 09 19:29:28 2019 VERIFY OK: depth=0, C=FR, ST=PACA, L=Sorgues, O=Frozendo SARL, OU=FrozenWay, CN=server, name=server, emailAddress=contact@frozendo.com

Thu May 09 19:29:28 2019 WARNING: 'link-mtu' is used inconsistently, local='link-mtu 1544', remote='link-mtu 1543'
Thu May 09 19:29:28 2019 WARNING: 'comp-lzo' is present in local config but missing in remote config, local='comp-lzo'

Thu May 09 19:29:28 2019 Control Channel: TLSv1.2, cipher TLSv1/SSLv3 ECDHE-RSA-AES256-GCM-SHA384, 2048 bit RSA

Thu May 09 19:29:28 2019 [server] Peer Connection Initiated with [AF_INET]172.17.31.1:8080

Thu May 09 19:29:29 2019 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)

Thu May 09 19:29:29 2019 PUSH: Received control message: 'PUSH_REPLY,dhcp-option DNS 10.51.2.1,dhcp-option WINS 10.51.2.1,route-gateway 10.51.2.1,topology subnet,socket-flags TCP_NODELAY,compress lz4-v2,ifconfig 10.51.2.86 255.255.255.0,peer-id 0,cipher AES-256-GCM'
Thu May 09 19:29:29 2019 OPTIONS IMPORT: compression parms modified
Thu May 09 19:29:29 2019 OPTIONS IMPORT: --socket-flags option modified
Thu May 09 19:29:29 2019 Socket flags: TCP_NODELAY=1 succeeded
Thu May 09 19:29:29 2019 OPTIONS IMPORT: --ifconfig/up options modified
Thu May 09 19:29:29 2019 OPTIONS IMPORT: route-related options modified
Thu May 09 19:29:29 2019 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Thu May 09 19:29:29 2019 OPTIONS IMPORT: peer-id set
Thu May 09 19:29:29 2019 OPTIONS IMPORT: adjusting link_mtu to 1627
Thu May 09 19:29:29 2019 OPTIONS IMPORT: data channel crypto options modified
Thu May 09 19:29:29 2019 Data Channel: using negotiated cipher 'AES-256-GCM'
Thu May 09 19:29:29 2019 Outgoing Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
Thu May 09 19:29:29 2019 Incoming Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
Thu May 09 19:29:29 2019 interactive service msg_channel=0
Thu May 09 19:29:29 2019 open_tun

Thu May 09 19:29:29 2019 TAP-WIN32 device [FrozenWay] opened: \\.\Global\{E3A54284-C557-4FA1-BA3B-EFEC354F458E}.tap

Thu May 09 19:29:29 2019 TAP-Windows Driver Version 9.22

Thu May 09 19:29:29 2019 Set TAP-Windows TUN subnet mode network/local/netmask = 10.51.2.0/10.51.2.86/255.255.255.0 [SUCCEEDED]
Thu May 09 19:29:29 2019 Notified TAP-Windows driver to set a DHCP IP/netmask of 10.51.2.86/255.255.255.0 on interface {E3A54284-C557-4FA1-BA3B-EFEC354F458E} [DHCP-serv: 10.51.2.254, lease-time: 31536000]

Thu May 09 19:29:29 2019 Successful ARP Flush on interface [23] {E3A54284-C557-4FA1-BA3B-EFEC354F458E}

Thu May 09 19:29:29 2019 do_ifconfig, tt->did_ifconfig_ipv6_setup=0

Thu May 09 19:29:34 2019 TEST ROUTES: 0/0 succeeded len=0 ret=1 a=0 u/d=up
Thu May 09 19:29:34 2019 Initialization Sequence Completed

Réponses

  • Bonjour,
    J'aimerai savoir comment fonctionne votre réseau car seul le port 22 et 80 est débloqué.
    Vous voulez dire que sans VPN, votre réseau permet uniquement les ports 22 et 80 ? Apparemment il permet aussi le port 443 avec protocole OpenVPN. Pas de soucis particulier avec FrozenWay ici.

    Un proxy ne bloque pas que les ports / IP, mais à la différence d'un pare-feu, il peut bloquer les flux de données en inspectant si le protocole utilisé correspond au port, ou si le certificat ssl/tls est conforme et non blacklisté etc. FrozenWay est dédié au contournement de proxy/pare-feu donc, normal que ça fonctionne :)

    PS : NordVPN c'est le mal ;)
Connectez-vous ou Inscrivez-vous pour répondre.