running client stops all non-client traffic

Business solution to host your own OpenVPN server with web management interface and bundled clients.
Post Reply
thedigitaldoctor
OpenVpn Newbie
Posts: 1
Joined: Mon Mar 28, 2016 3:30 am

running client stops all non-client traffic

Post by thedigitaldoctor » Mon Mar 28, 2016 4:18 am

Goal: user device(Windows OpenVPN client) --> (linux OpenVPN AS) debian VPS (linux OpenVPN client) --> commercial VPN service (OpenVPN AS)

Problem: user device --> VPS connection works with no errors. When the VPS --> VPN service connection is started all traffic stops. This includes SSH, HTTPS, and HTTP. However, the VPN service's control panel says it has a connection and registers traffic. The only way to connect to the VPS again is to restart it from the hosting provider's control panel. No errors in the VPS server or client logs.

VPS client config:

Code: Select all

# --------------------------------------------------------
#Monday 28th of March 2016 12:52:55 AM
# OpenVPN Client Configuration.
# --------------------------------------------------------

client
dev tun
proto tcp
remote *commercial VPN service external IP* 2018
resolv-retry infinite
nobind
persist-key
persist-tun
remote-cert-tls server
cipher AES-256-CBC
comp-lzo no
route-delay 5
verb 3
<ca>
-----BEGIN CERTIFICATE-----
*
-----END CERTIFICATE-----
</ca>
<cert>
-----BEGIN CERTIFICATE-----
*
-----END CERTIFICATE-----
</cert>
<key>
-----BEGIN PRIVATE KEY-----
*
-----END PRIVATE KEY-----
</key>
key-direction 1
<tls-auth>
#
# 2048 bit OpenVPN static key
#
-----BEGIN OpenVPN Static key V1-----
*
-----END OpenVPN Static key V1-----
</tls-auth>
user device client config:

Code: Select all

# Automatically generated OpenVPN client config file

# Define the profile name of this particular configuration file

# OVPN_ACCESS_SERVER_PROFILE=*VPS public IP*/Dynamic

# OVPN_ACCESS_SERVER_DYNAMIC=1

# OVPN_ACCESS_SERVER_CLI_PREF_ALLOW_WEB_IMPORT=True

# OVPN_ACCESS_SERVER_CLI_PREF_ENABLE_CONNECT=True

# OVPN_ACCESS_SERVER_CLI_PREF_ENABLE_XD_PROXY=True

# OVPN_ACCESS_SERVER_WSHOST=*VPS public IP*:443

# OVPN_ACCESS_SERVER_WEB_CA_BUNDLE_START

# -----BEGIN CERTIFICATE-----

*

# -----END CERTIFICATE-----

# OVPN_ACCESS_SERVER_WEB_CA_BUNDLE_STOP

# OVPN_ACCESS_SERVER_IS_OPENVPN_WEB_CA=1

# OVPN_ACCESS_SERVER_ORGANIZATION=OpenVPN Technologies, Inc.

setenv FORWARD_COMPATIBLE 1

# OVPN_ACCESS_SERVER_GENERIC=1



setenv GENERIC_CONFIG

<ca>

-----BEGIN CERTIFICATE-----

*

-----END CERTIFICATE-----

</ca>
Top
Post Reply

Return to “The OpenVPN Access Server”