Routing Bug?

Samples of working configurations.
Last Chance
OpenVpn Newbie
Posts: 5
Joined: Fri Dec 09, 2016 11:02 pm

Routing Bug?

Postby Last Chance » Fri Dec 09, 2016 11:13 pm

I have two machines connecting via Open VPN. Works great. EXCEPT, the Server can not ping the Clients physical lan. Client can ping the server's physical lan address. I need this to work as I have an Active Directory running on this an all IP's must resolve via DNS. So I can ping from the client, the server's phyiscal address 192.168.3.4, but from the server, I can only ping the Client's TAP address 10.8.0.6, not 192.168.1.12.. Routing tables look good to me.



Server Lan 192.168.3.0 (I know not ideal , will work for my setup)
Client Lan 192.168.1.1 (I know, bad class "C". Will work for what I am doing).

Client Config (Minus host name)
client
dev tun
proto udp
remote *private* 1194
resolv-retry infinite
nobind
persist-key
persist-tun
ca "c:\\openvpn\\config\\ca.crt"
cert "c:\\openvpn\\config\\Private.crt"
key "c:\\openvpn\\config\\Private.key"
ns-cert-type server
comp-lzo
verb 3

Host name and cert names changed\ for privacy, but the network connects and pings each other, and all Windows services work over the Open VPN adapters, so not an issue.

Server config:

port 1194
proto udp
dev tun
ca "c:\\OpenVpn\\config\\ca.crt"
cert "c:\\OpenVpn\\config\\vicserver.crt"
key "c:\\OpenVpn\\config\\vicserver.key" # This file should be kept secret
dh "c:\\OpenVpn\\config\\dh1024.pem"
server 10.8.0.0 255.255.255.0
ifconfig-pool-persist ipp.txt
push "route 192.168.3.0 255.255.255.0"
route 192.168.1.0 255.255.255.0
push "route 192.168.1.0 255.255.255.0"
client-config-dir "c:\\openvpn\\config\\ccd"
push "dhcp-option DNS 192.168.3.4"
client-to-client
keepalive 5 20
comp-lzo
persist-key
persist-tun
status openvpn-status.log
verb 3
route method exe
route-delay

And the client config file

iroute 192.168.1.0 255.255.255.0


Routing table from server:

C:\Users\Administrator>route print
===========================================================================
Interface List
14...00 15 5d 03 54 03 ......Microsoft Hyper-V Network Adapter
4...00 ff 24 94 1b db ......TAP-Windows Adapter V9
1...........................Software Loopback Interface 1
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.3.254 192.168.3.4 281
10.8.0.0 255.255.255.0 10.8.0.2 10.8.0.1 35
10.8.0.0 255.255.255.252 On-link 10.8.0.1 291
10.8.0.1 255.255.255.255 On-link 10.8.0.1 291
10.8.0.3 255.255.255.255 On-link 10.8.0.1 291
127.0.0.0 255.0.0.0 On-link 127.0.0.1 331
127.0.0.1 255.255.255.255 On-link 127.0.0.1 331
127.255.255.255 255.255.255.255 On-link 127.0.0.1 331
192.168.1.0 255.255.255.0 10.8.0.2 10.8.0.1 35
192.168.3.0 255.255.255.0 On-link 192.168.3.4 281
192.168.3.4 255.255.255.255 On-link 192.168.3.4 281
192.168.3.255 255.255.255.255 On-link 192.168.3.4 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 331
224.0.0.0 240.0.0.0 On-link 10.8.0.1 291
224.0.0.0 240.0.0.0 On-link 192.168.3.4 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 331
255.255.255.255 255.255.255.255 On-link 10.8.0.1 291
255.255.255.255 255.255.255.255 On-link 192.168.3.4 281
===========================================================================
Persistent Routes:
Network Address Netmask Gateway Address Metric
0.0.0.0 0.0.0.0 192.168.3.254 Default
===========================================================================

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 331 ::1/128 On-link
1 331 ff00::/8 On-link
===========================================================================
Persistent Routes:
None

Routing table from client:

===========================================================================
Interface List
13...00 ff f8 6e 5e 01 ......TAP-Windows Adapter V9
12...00 15 5d 01 0a 01 ......Microsoft Hyper-V Network Adapter
1...........................Software Loopback Interface 1
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.12 301
10.8.0.0 255.255.255.0 10.8.0.5 10.8.0.6 35
10.8.0.4 255.255.255.252 On-link 10.8.0.6 291
10.8.0.6 255.255.255.255 On-link 10.8.0.6 291
10.8.0.7 255.255.255.255 On-link 10.8.0.6 291
127.0.0.0 255.0.0.0 On-link 127.0.0.1 331
127.0.0.1 255.255.255.255 On-link 127.0.0.1 331
127.255.255.255 255.255.255.255 On-link 127.0.0.1 331
192.168.1.0 255.255.255.0 On-link 192.168.1.12 301
192.168.1.12 255.255.255.255 On-link 192.168.1.12 301
192.168.1.255 255.255.255.255 On-link 192.168.1.12 301
192.168.3.0 255.255.255.0 10.8.0.5 10.8.0.6 35
224.0.0.0 240.0.0.0 On-link 127.0.0.1 331
224.0.0.0 240.0.0.0 On-link 10.8.0.6 291
224.0.0.0 240.0.0.0 On-link 192.168.1.12 301
255.255.255.255 255.255.255.255 On-link 127.0.0.1 331
255.255.255.255 255.255.255.255 On-link 10.8.0.6 291
255.255.255.255 255.255.255.255 On-link 192.168.1.12 301
===========================================================================
Persistent Routes:
Network Address Netmask Gateway Address Metric
0.0.0.0 0.0.0.0 192.168.1.1 Default
===========================================================================

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 331 ::1/128 On-link
1 331 ff00::/8 On-link
===========================================================================
Persistent Routes:
None

Last Chance
OpenVpn Newbie
Posts: 5
Joined: Fri Dec 09, 2016 11:02 pm

Re: Routing Bug?

Postby Last Chance » Sun Dec 11, 2016 1:15 am

Sorry wrong forum. Admins pls delete


Return to “Examples”

Who is online

Users browsing this forum: No registered users and 2 guests