Something missing in configuration?

Need help configuring your VPN? Just post here and you'll get that help.

Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech

Forum rules
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
Post Reply
Iassan
OpenVpn Newbie
Posts: 2
Joined: Tue Nov 09, 2010 7:05 pm

Something missing in configuration?

Post by Iassan » Tue Nov 09, 2010 7:15 pm

Hi everyone,

I'm having trouble with configuring OpenVPN. I tought I did everything properly because I can establish VPN connection, but I cannot access anything on remote network. I need classic roadwarrior configuration.

My server configuration:
local 192.168.0.2
port 1194
proto udp
dev tun
ca /etc/ssl/certs/CA.pem
cert /etc/ssl/certs/server.pem
key /etc/ssl/private/server.key # This file should be kept secret
dh dh2048.pem
server 192.168.10.0 255.255.255.0
ifconfig-pool-persist ipp.txt
push "route 192.168.0.0 255.255.255.0"
client-to-client
keepalive 30 180
tls-auth ta.key 0 # This file is secret
comp-lzo
user nobody
group nogroup
persist-key
persist-tun
status /var/log/openvpn-status.log
log-append /var/log/openvpn.log
verb 3
mute 20

I cannot post my client conf, because it's made by Ubuntu and kept in it's gconfd configuration. But I don't think it's clients fault (correct me if I'm wrong).

My problem is: after connecting to VPN I have access only to VPN gateway (it's linux box and I can for example login to it via SSH), I cannot connect or ping even any other host on that network.

My suspicions are: Remote network is classic 192.168.0.0/24 network. I want all VPN clients to be seen there as 192.168.10.0/24 (something else than 192.168.0.0/24). Can I do that? Did I do it the right way? What am I missing? Do I have to add some static route for my network?

Best regards

Jacek Bilski

User avatar
krzee
Forum Team
Posts: 728
Joined: Fri Aug 29, 2008 5:42 pm

Re: Something missing in configuration?

Post by krzee » Tue Nov 16, 2010 9:47 am

pls try to understand this page
https://www.secure-computing.net/wiki/i ... PN/Routing
it is more advanced than your setup, but understanding it will help you greatly

also, make your own client config manually, THEN try some gui method once you know your vpn is configured right. (example, i have heard of network manager automatically screwing up routing tables because redirect-gateway was being called by default)

Iassan
OpenVpn Newbie
Posts: 2
Joined: Tue Nov 09, 2010 7:05 pm

Re: Something missing in configuration?

Post by Iassan » Wed Nov 17, 2010 4:10 pm

Hi,

Thanks krzee, now it's working. I missed one thing - routing on inner network for outside addresses. I just needed to look at https://www.secure-computing.net/wiki/index.php/Graph.

Już FYI, Ubuntu GUI for setting OpenVPN did work properly, I never had to configure client by hand.

Thanks again,

Jacek Bilski

Post Reply