I'm a complete novice at this so apologies for any complete ignorance.
Have configured OpenVPN Client to use with IPVanish. All traffic out going via IPVanish servers. Very happy with working that out as the guidance on IPVanish website is pants.
Have been trying to configure OpenVPN Server so when out-and-about I can access devices on my network remotely. Have managed to get it working to a point. I can connect to the router and can log into the router home page no issues. However, I cannot access any of the devices on the network. I've trawled this website and seemingly the whole of the internet, and have been unable to resolve. I can't believe that there isn't a solution out there.
Before I flashed my router, I got the Netgear stockware VPN server working, using the certificates generated by the router installed on OpenVPN client app on iPhone. I then flashed the router to DD-WRT.
The fact that I can get connected to my router with DD-WRT installed means its working, but can't get past the router and onto the LAN. Have played around with the 'Additional config' server settings - no luck. Have played around with the Firewall Settings in Commands - more no luck. Have also set up Port Forwarding - again, no luck. I am using the same port that Netgear uses for TUN (6969). Just did that for consistency - no other real reason and could use 443 or default 1194.
Can't believe it is not impossible to get it working - Netgear have. Unfortunately, I can't get behind their GUI to see how they've configured OpenVPN Server on their router to get it to work for DD-WRT OpenVPN server. And I'm not that clever to work it out, obviously.
All my settings are pasted below. Is there anyone who can offer any suggestions?
Router LAN is set on 192.168.1.*
DHCP set for 50 clients between 192.168.1.100 to 192.168.1.149
I've set up three static leases for devices on the network that don't need to go via VPN (Sky TV box and two TVs). They have IP addresses 192.168.1.147 to 192.168.1.149
VPN network for clients is 10.1.1.*
VPN Port is 6969
VPN Server Settings are:
OpenVPN - [Enable]
Start Type [WAN Up]
Config as [Server]
Server Mode [Router (TUN)
Encryption Cypher [AES-256-CBC]
Hash Algorithm [SHA256]
Advanced Options [Enable]
TLS Cipher [None]
LZO Compression [Yes]
Redirect default Gateway [Disable]
Allow Client to Client [Enable]
Allow duplicate cn [Disable]
Tunnel MTU Setting [1500]
Tunnel UDP Fragment [BLANK]
Tunnel UDP MSS-Fix [Disable]
This is the Additional Config...
Code: Select all
push "dhcp-option DNS 10.1.1.1"
push "dhcp-option DOMAIN HOME"
push "route 10.1.1.0 255.255.255.0"
push "route 192.168.1.0 255.255.255.0"
client-to-client
Code: Select all
iptables -I INPUT 1 -p udp --dport 6969 -j ACCEPT
iptables -I FORWARD 1 --source 10.1.1.0/24 -j ACCEPT
iptables -t nat -A POSTROUTING -s 10.1.1.0/24 -o eth0 -j MASQUERADE
Code: Select all
client
dev tun
prior udp
remote blahblahblah.com 6969
resolv-retry infinite
nobind
persist-key
persist-tun
<ca>
-----BEGIN CERTIFICATE-----
-----END CERTIFICATE-----
</ca>
<cert>
-----BEGIN CERTIFICATE-----
-----END CERTIFICATE-----
</cert>
<key>
-----BEGIN PRIVATE KEY-----
-----END PRIVATE KEY-----
</key>
cipher AES-256-CBC
comp-lzo
verb 5