Successful connection but no LAN access

[phesse80]

Hi I need help on my new openvpn server that I've setup for home use.

In a nut shell I can successfully connect but cannot see anything i.e. I cannot ping the VPN LAN on 10.8.0.x range nor can I ping my internal LAN range of 192.168.24.x
I have openvpn installed and configured on a rapsberrypi running FreeBSD 10.0-RELEASE #0 r260789

I have not enabled the firewall yet as I wanted to get this working first
I have opened the UDP port 1194 and redirected it on my DSL router to the internal IP address of the openvpn server 192.168.24.250 and I have setup dynamic DNS as I don't have a fixed external IP.

As the Subject describes; I can successfully connect from my iphone and I can see the client receive the 10.8.0.6 address but I cannot ping anything not even the openvpn server itself on 10.8.0.1, 10.8.0.5 or 192.168.24.250

I have installed the tun interface on FreeBSD as it is not natively installed, my network is a flat 192.168.24.0/24 network no VLANs or any separate subnets.

My router has a static route 10.8.0.0 255.255.255.0 192.168.24.250 setup so that any clients on my LAN can talk back to the remotely connected device.

Please see below my configurations, any suggestions welcome, thanks

#openvpn.conf

proto udp
dev tun
ca /usr/local/etc/openvpn/keys/hesse/ca.crt
cert /usr/local/etc/openvpn/keys/hesse/remote.crt
key /usr/local/etc/openvpn/keys/hesse/remote.key # This file should be kept secret
dh /usr/local/etc/openvpn/keys/hesse/dh2048.pem
server 10.8.0.0 255.255.255.0
ifconfig-pool-persist ipp.txt
push "route 192.168.24.0 255.255.255.0"
push "route 10.8.0.0 255.255.255.0"
keepalive 10 120
comp-lzo
user nobody
group nobody
persist-key
persist-tun
status openvpn-status.log
log-append /var/log/openvpn.log
verb 4


#iphone4.conf

client
proto udp
dev tun
ca ca.crt
dh dh2048.pem
cert iphone4.crt
key iphone4.key
remote *dynamic.ip.org 1194
cipher AES-256-CBC
user nobody
group nogroup
verb 2
mute 20
keepalive 10 120
comp-lzo
persist-key
persist-tun
float
resolv-retry infinite
nobind



#rc.conf

ifconfig_ue0="192.168.24.250 netmask 255.255.255.0"
defaultrouter="192.168.24.1"
ntpdate_enable="YES"
ntpdate_config="/etc/ntp.conf"
cron_enable="NO"
syslogd_enable="NO"
sendmail_submit_enable="NO"
sendmail_outbound_enable="NO"
sendmail_msp_queue_enable="NO"

openvpn_enable="YES"
openvpn_if="tun"
gateway_enable="YES"


#ifconfig

lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> metric 0 mtu 16384
options=600003<RXCSUM,TXCSUM,RXCSUM_IPV6,TXCSUM_IPV6>
inet6 ::1 prefixlen 128
inet6 fe80::1%lo0 prefixlen 64 scopeid 0x1
inet 127.0.0.1 netmask 0xff000000
nd6 options=21<PERFORMNUD,AUTO_LINKLOCAL>
ue0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
options=80001<RXCSUM,LINKSTATE>
ether b8:27:eb:0a:60:e4
inet 192.168.24.250 netmask 0xffffff00 broadcast 192.168.24.255
inet6 fe80::ba27:ebff:fe0a:60e4%ue0 prefixlen 64 scopeid 0x2
media: Ethernet autoselect (100baseTX <full-duplex>)
status: active
nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
tun0: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> metric 0 mtu 1500
options=80000<LINKSTATE>
inet6 fe80::ba27:ebff:fe0a:60e4%tun0 prefixlen 64 tentative scopeid 0x3
inet 10.8.0.1 --> 10.8.0.2 netmask 0xffffffff
nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
Opened by PID 678

[phesse80]

Hi I still need help on this please if anyone could assist I would be most grateful

[Traffic]

As the Subject describes; I can successfully connect from my iphone and I can see the client receive the 10.8.0.6 address but I cannot ping anything not even the openvpn server itself on 10.8.0.1

As this thread is almost a year old .. Please post updated configs and logs at verb 4