I guess first I'll describe the hardware setup
Ubuntu LTS Server 10.8.0.1 , running open vpn via TUN
-> Juniper SSG5 with UDP port 1194 forwarded to the Ubuntu server
-> Internet
<- Apple Time Capsule
<- Mac OS X Client Running Viscosity 10.8.0.6 .
The main issue : I can ping the client from the server, but cannot ping the server from the client.
Steps I've taken to debug :
1 - Made sure OS X Firewall was off
2 - Checked iptables on the Ubuntu server, its in accept all mode
3 - checked the routing table on the mac, and all is fine, the route to my 10.8.0.5 gateway shows up fine
4 - My friend Jason is at his own location with the exact same setup [os x, timecapsule etc, his work also has a juniper and ubuntu LTS] - He disconnected from his work and connected to my test environment got the same issues. Then he reconnected back to his work. I think that rules out OS X and Time Capsule. - we DO have different ISP's tho, but i would say that is the only variable.
5 - For fun I tried TCP instead of UDP and got the exact same symptoms..
6 - I did a tcpdump on the client of tun0 and was able to see my ping attempts going thru tun0
7 - when I'm connected, I can't ping 10.8.0.5 [my gateway] - should I be able to?
Does anyone have any idea's ? I feel like I am "this close"....
Thanks.
So far - I have a one way vpn and I'm scratching my head.
Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech
Forum rules
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
-
- OpenVpn Newbie
- Posts: 6
- Joined: Mon Jan 11, 2010 5:45 pm
-
- OpenVpn Newbie
- Posts: 6
- Joined: Mon Jan 11, 2010 5:45 pm
Re: So far - I have a one way vpn and I'm scratching my head.
Disregard. I figured it out.
I was running a client on the server. I mis-read something and thought I needed client.conf on the server for some reason.
All is mostly well now. Rest can be worked out. Thanks.
I was running a client on the server. I mis-read something and thought I needed client.conf on the server for some reason.
All is mostly well now. Rest can be worked out. Thanks.