bad source address from client

[Garrdo]

Hi everybody.
I'm trying to make a VPN with OpenVPN using my VPS (3.16.0-4-amd64 #1 SMP Debian 3.16.36-1+deb8u2 (2016-10-19) x86_64 GNU/Linux).
The problem is that i'm not that good in iptables and routing, so i can't make VPN work properly. Actually it's my first experience to make a such thing
Here are logs and configs, that i use.
Server.conf:

Code: Select all

port 1194
proto tcp
dev tun
ca /etc/openvpn/ca.crt
cert /etc/openvpn/server.crt
key /etc/openvpn/server.key  # This file should be kept secret
dh /etc/openvpn/dh2048.pem
tls-auth /etc/openvpn/ta.key 0 # This file is secret
server 10.8.0.0 255.255.255.0

push "route 10.10.10.0 255.255.255.0"
push "redirect-gateway def1"
push "dhcp-option DNS 10.8.0.1"

ifconfig-pool-persist ipp.txt
keepalive 10 120
comp-lzo
max-clients 5
user nobody
group nogroup
persist-key
persist-tun
status openvpn-status.log
verb 6

Client.conf:

Code: Select all

client 
dev tun 
proto tcp 
remote SERVER_IP 1194 
resolv-retry infinite 
nobind 
persist-key 
persist-tun 
ca /etc/openvpn/ca.crt 
cert /etc/openvpn/client.crt
key /etc/openvpn/client.key
tls-auth /etc/openvpn/ta.key 1
comp-lzo 
verb 6

So, every time i try to connect to the server i see this in server log:

Code: Select all

client/CLIENT_IP:49904 MULTI: bad source address from client [CLIENT_IP], packet dropped

As i recall from some sources if my provider uses NAT i should let my server see the network over the NAT. But as i said before i'm very new to such things. A bit of help, please.

[Garrdo]

Btw, i saw this https://openvpn.net/index.php/open-sour ... iledq.html article, but i still have no idea how to do it.
Should it be like:

iroute 192.168.0.1/24

or something else?