VPN配置连接失败,求解!
我用的是IKEv2的协议,用的共享密匙的方法,就是最后安装配置文件的之后会打印“error in __connection_block_invoke_2: Connection interrupted”,求大神搭救!
self.vpnManager = [NEVPNManager sharedManager];
[_vpnManager loadFromPreferencesWithCompletionHandler:^(NSError * _Nullable error) {
if (error) {
NSLog(@"Load config failed [%@]", error.localizedDescription);
return ;
}
// config IPSec protocol
NEVPNProtocolIKEv2 *p = _vpnManager.protocol;
if (p) {
}else{
p = [[NEVPNProtocolIKEv2 alloc]init];
}
p.username = @"qlvpn";
p.serverAddress = @"服务器地址";
// get password persistent reference from keychain
p.passwordReference = [self searchKeychainCopyMatching:@"kd2014@"];
// If password doesn't exist in keychain, should create it beforehand.
if (!p.passwordReference) {
[self createKeychainValue:@"kd2014@" forIdentifier:@"kd2014@"];
p.passwordReference = [self searchKeychainCopyMatching:@"kd2014@"];
}
p.authenticationMethod = NEVPNIKEAuthenticationMethodSharedSecret;
p.sharedSecretReference = [self searchKeychainCopyMatching:@"PSK"];
if (!p.sharedSecretReference) {
[self createKeychainValue:@"qlvpn_kd2014@" forIdentifier:@"PSK"];
p.sharedSecretReference = [self searchKeychainCopyMatching:@"PSK"];
}
// p.serverCertificateIssuerCommonName
//倒入p12证书
// p.identityData = [NSData dataWithContentsOfFile:[[NSBundle mainBundle] pathForResource:@"client.cert" ofType:@"p12"]];
//倒入p12密码
// p.identityDataPassword = @"kd2014@";
p.localIdentifier = @"qlvpn.client";
p.remoteIdentifier = @"qlvpn.server";
p.useExtendedAuthentication = YES;
p.disconnectOnSleep = NO;
// [_vpnManager setOnDemandEnabled:p];
//z和
_vpnManager.localizedDescription = @"IKEv2 Demo";
_vpnManager.protocol = p;
[_vpnManager saveToPreferencesWithCompletionHandler:^(NSError * _Nullable error) {
NSLog(@"Save config faild[%@]",error.localizedDescription);
}];
}];下面是存密匙的方法:
static NSString * const serviceName = @"qlvpn.vpn_config";
(NSMutableDictionary )newSearchDictionary:(NSString )identifier {
NSMutableDictionary *searchDictionary = [[NSMutableDictionary alloc] init]; [searchDictionary setObject:(__bridge id)kSecClassGenericPassword forKey:(__bridge id)kSecClass]; NSData *encodedIdentifier = [identifier dataUsingEncoding:NSUTF8StringEncoding]; [searchDictionary setObject:encodedIdentifier forKey:(__bridge id)kSecAttrGeneric]; [searchDictionary setObject:encodedIdentifier forKey:(__bridge id)kSecAttrAccount]; [searchDictionary setObject:serviceName forKey:(__bridge id)kSecAttrService]; return searchDictionary;}
(NSData )searchKeychainCopyMatching:(NSString )identifier {
NSMutableDictionary *searchDictionary = [self newSearchDictionary:identifier]; // Add search attributes [searchDictionary setObject:(__bridge id)kSecMatchLimitOne forKey:(__bridge id)kSecMatchLimit]; // Add search return types // Must be persistent ref !!!! [searchDictionary setObject:@YES forKey:(__bridge id)kSecReturnPersistentRef]; CFTypeRef result = NULL; SecItemCopyMatching((__bridge CFDictionaryRef)searchDictionary, &result); return (__bridge_transfer NSData *)result;}
(BOOL)createKeychainValue:(NSString )password forIdentifier:(NSString )identifier {
NSMutableDictionary *dictionary = [self newSearchDictionary:identifier]; OSStatus status = SecItemDelete((__bridge CFDictionaryRef)dictionary); NSData *passwordData = [password dataUsingEncoding:NSUTF8StringEncoding]; [dictionary setObject:passwordData forKey:(__bridge id)kSecValueData]; status = SecItemAdd((__bridge CFDictionaryRef)dictionary, NULL); if (status == errSecSuccess) { return YES; } return NO;}
最后总是返回error in __connection_block_invoke_2: Connection interrupted。。。感觉整个人都不对了。。。
如果你对这篇内容有疑问,欢迎到本站社区发帖提问 参与讨论,获取更多帮助,或者扫码二维码加入 Web 技术交流群。
绑定邮箱获取回复消息
由于您还没有绑定你的真实邮箱,如果其他用户或者作者回复了您的评论,将不能在第一时间通知您!
发布评论
评论(1)
解决了吗,我也遇到了,头疼。。。如果解决了麻烦指导一下,谢谢了