OpenVPN server(version 2.2.1) is on a linux box(IP:10.0.100.1), clients are on Windows (XP & 7)(IP:10.0.102.0/24), SQL Server(IP:10.0.100.15) is in the same network with OpenVPN server.
An client to connect to an instance of sql server using instance name, is sending UDP packets on port 1434 to server (there is an SqlServer Browser service which is listening on this port). The problem is that these packets do not reach the server.
When I try to connect I listen on windows with windump and on linux with tcpdump:
windump -qn -i 2 host sqlsrv (2 is TAP interface)
Code: Select all
windump: listening on \Device\NPF_{3323E04C-470B-48A2-9ABA-C8875E107B49}
02:42:12.658175 IP 10.0.102.22.56032 > 10.0.100.15.1434: UDP, length 5
02:42:14.657714 IP 10.0.102.22.56033 > 10.0.100.15.1434: UDP, length 5
02:42:16.657657 IP 10.0.102.22.56034 > 10.0.100.15.1434: UDP, length 5
But.. if I connect to that instance directly with port number (sqlserver, 20000) everything is ok, and also I can acces anything on work network (10.0.100.0/24) (windows shares, cvs, remote desktop, etc..)
Any firewall on windows is off.
server.conf
Code: Select all
local XX.XXX.XXX.XX
port 51194
proto udp
dev tun
ca keys/ca.crt
cert keys/server.crt
key keys/server.key
dh dh1024.pem
server 10.0.102.0 255.255.255.0
ifconfig-pool-persist ipp.txt
push "route 10.0.100.0 255.255.255.0"
push "dhcp-option DNS 10.0.100.10"
push "dhcp-option DOMAIN abc.group"
client-to-client
client-config-dir ccd
keepalive 10 20
user nobody
group nobody
persist-key
persist-tun
status openvpn-status.log
log openvpn.log
verb 3
mute 20
crl-verify crl.pem
Code: Select all
client
dev tun
proto udp
remote XX.XXX.XXX.XX 51194
ns-cert-type server
ca ca.crt
cert ClientHome.crt
key ClientHome.key
resolv-retry infinite
persist-key
persist-tun
verb 3
Code: Select all
Chain INPUT (policy ACCEPT 17M packets, 6407M bytes)
pkts bytes target prot opt in out source destination
4 200 DROP tcp -- eth0 * 0.0.0.0/0 0.0.0.0/0 tcp dpt:25
0 0 DROP tcp -- eth0 * 0.0.0.0/0 0.0.0.0/0 tcp dpt:10000
Chain FORWARD (policy ACCEPT 15M packets, 11G bytes)
pkts bytes target prot opt in out source destination
Chain OUTPUT (policy ACCEPT 26M packets, 34G bytes)
pkts bytes target prot opt in out source destination
Code: Select all
eth0 Link encap:Ethernet HWaddr 00:04:E2:33:9E:5D
inet addr:XX.XXX.XXX.XX Bcast:XX.XXX.XXX.XX Mask:255.255.255.224
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:288514724 errors:2214 dropped:0 overruns:1914 frame:2217
TX packets:262712101 errors:255 dropped:0 overruns:0 carrier:255
collisions:0 txqueuelen:1000
RX bytes:2117528692 (1.9 GiB) TX bytes:2552925366 (2.3 GiB)
Interrupt:16
eth1 Link encap:Ethernet HWaddr 00:11:D8:8D:CD:8D
inet addr:10.0.100.1 Bcast:10.0.100.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:194952709 errors:0 dropped:0 overruns:0 frame:0
TX packets:228694195 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:4251645790 (3.9 GiB) TX bytes:1978389015 (1.8 GiB)
Interrupt:17
lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
inet6 addr: ::1/128 Scope:Host
UP LOOPBACK RUNNING MTU:16436 Metric:1
RX packets:647 errors:0 dropped:0 overruns:0 frame:0
TX packets:647 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:46209 (45.1 KiB) TX bytes:46209 (45.1 KiB)
tun0 Link encap:UNSPEC HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00
inet addr:10.0.102.1 P-t-P:10.0.102.2 Mask:255.255.255.255
UP POINTOPOINT RUNNING NOARP MULTICAST MTU:1500 Metric:1
RX packets:3 errors:0 dropped:0 overruns:0 frame:0
TX packets:3 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:100
RX bytes:187 (187.0 b) TX bytes:362 (362.0 b)
I tried for two weeks to solve this problem without success. Please help.