connected, but cannot ping client from server, nor server from client
Posted: Fri Jan 25, 2019 9:23 pm
Hello, everyone!
I installed an openVPN server on FreeBSD 11.2 machine to use windows 7 and 8.1 laptops as a roadwarrior clients. On both laptops have clients with different .ovpn config name (client7 and client8). First I created client8, and - after a while I was able to connect it to server from construction sites off my office. It establishes tunnel 10.8.0.1 --> 10.8.0.2 (server --> client8). After I created a second client (client7) and connected it to server, it works good, but my client8 failed to connect. The client7 leases the address 10.8.0.2 from server, and when ifconfig server, it showed 10.8.0.1 --> 10.8.0.2. The client8 leases the new address 10.8.0.3 from server upon tunnel establishes, but ifconfig server still shows tunnel 10.8.0.1 -->10.8.0.2.
Advanced IP scanner shows client8 laptop has both addresses 10.8.0.2 and 10.8.0.3! Of course, at connected client8 to the server, 10.8.0.2 is dead, and 10.8.0.3 is alive host. As the tunnel 10.8.0.1 --> 10.8.0.2 persists, I cannot make any traffic from the client8 (10.8.0.3) to the server anymore.
How to establish traffic from both client7 and client8 to the server, and, thus, to the internet?
server configuration:
clent8 configuration:
I installed an openVPN server on FreeBSD 11.2 machine to use windows 7 and 8.1 laptops as a roadwarrior clients. On both laptops have clients with different .ovpn config name (client7 and client8). First I created client8, and - after a while I was able to connect it to server from construction sites off my office. It establishes tunnel 10.8.0.1 --> 10.8.0.2 (server --> client8). After I created a second client (client7) and connected it to server, it works good, but my client8 failed to connect. The client7 leases the address 10.8.0.2 from server, and when ifconfig server, it showed 10.8.0.1 --> 10.8.0.2. The client8 leases the new address 10.8.0.3 from server upon tunnel establishes, but ifconfig server still shows tunnel 10.8.0.1 -->10.8.0.2.
Advanced IP scanner shows client8 laptop has both addresses 10.8.0.2 and 10.8.0.3! Of course, at connected client8 to the server, 10.8.0.2 is dead, and 10.8.0.3 is alive host. As the tunnel 10.8.0.1 --> 10.8.0.2 persists, I cannot make any traffic from the client8 (10.8.0.3) to the server anymore.
How to establish traffic from both client7 and client8 to the server, and, thus, to the internet?
server configuration:
Code: Select all
local 192.168.10.20
port 1194
proto udp
dev tun
ca ca.crt
cert server.crt
key server.key
dh dh.pem
topology subnet
server 10.8.0.0 255.255.255.0
ifconfig-pool-persist ipp.txt
push "route 192.168.10.0 255.255.255.0"
push "redirect-gateway def1 bypass-dhcp"
push "dhcp-option DNS 8.8.8.8"
keepalive 10 120
tls-auth ta.key 0
cipher AES-256-CBC
comp-lzo
max-clients 20
user nobody
group nobody
persist-key
persist-tun
status openvpn-status.log
log-append openvpn.log
verb 3
mute 20
explicit-exit-notify 1
remote-cert-tls client
management 192.168.10.20 1194Code: Select all
client
dev tun
proto udp
remote 44.201.116.10 1194
resolv-retry infinite
nobind
persist-key
persist-tun
ca "C:\\Program Files\\OpenVPN\\config\\keys\\ca.crt"
cert "C:\\Program Files\\OpenVPN\\config\\keys\\client8.crt"
key "C:\\Program Files\\OpenVPN\\config\\keys\\client8.key"
remote-cert-tls server
tls-auth "C:\\Program Files\\OpenVPN\\config\\keys\\ta.key" 1
cipher AES-256-CBC
comp-lzo
verb 3
auth-nocache