Bizarre Problem with RoadWarrior setup

Post Reply
matthew99
OpenVpn Newbie
Posts: 2
Joined: Tue Mar 27, 2018 7:59 am

Bizarre Problem with RoadWarrior setup

Post by matthew99 » Tue Mar 27, 2018 6:05 pm

Hi all

I have run into a truly baffling issue, we run a nethserver openvpn basic roadwarrior setup, all was working swimmingly until just recently i am having trouble connecting to anything on the network like the vpn server for example or our crm system.

we use open vpn client with the standard vpn config file with only the remote ip adjusted.

now when i run the client on my laptop right click connect i log in icon goes green and all looks connected fine but i keep getting really intermittent issues continuous pings run but i can't connect to the device then pings drop then i can connect to the web interfaces.

i have at least 2 other users who are working fine without problems but have now started to get other people experience the same.

as a sanity check and here is where is gets really weird, i built a new server and put it on an isolated server, so that is new server, new router, new switch, new user new config file,

and guess what same issue, has something changed for road warrior set up?

my ip range is 192.168.30.x/23 subnet 255.255.254.0

client config:

######### NethServer OpenVPN client configuration #########

dev tap
client
remote xxx.xxx.xx.xx
port 1194
float
auth-user-pass
<ca>
-----BEGIN CERTIFICATE-----

* deleted *

-----END CERTIFICATE-----
</ca>
comp-lzo
explicit-exit-notify 1
verb 3
persist-key
persist-tun
nobind

server config:

# ================= DO NOT MODIFY THIS FILE =================
#
# Manual changes will be lost when this file is regenerated.
#
# Please read the developer's guide, which is available
# at https://dev.nethesis.it/projects/nethse ... NethServer
# original work from http://www.contribs.org/development/
#
# Copyright (C) 2013 Nethesis S.r.l.
# http://www.nethesis.it - support@nethesis.it
#
dev tap0
server-bridge 192.168.30.19 255.255.254.0 192.168.30.101 192.168.30.105
ifconfig-pool-persist host-to-net.pool 0

port 1194
script-security 3
float
multihome
dh /var/lib/nethserver/certs/dh1024.pem
ca /etc/pki/tls/certs/NSRV.crt
cert /etc/pki/tls/certs/NSRV.crt
key /etc/pki/tls/private/NSRV.key
crl-verify /var/lib/nethserver/certs/crl.pem
push "dhcp-option DOMAIN localdomain"
push "dhcp-option DNS 8.8.8.8"
push "dhcp-option WINS 8.8.8.8"
push "dhcp-option NBDD 8.8.8.8"
push "dhcp-option NBT 2"

i'm all out of ideas.....
Last edited by matthew99 on Tue Mar 27, 2018 6:14 pm, edited 1 time in total.

matthew99
OpenVpn Newbie
Posts: 2
Joined: Tue Mar 27, 2018 7:59 am

Re: Bizarre Problem

Post by matthew99 » Tue Mar 27, 2018 6:08 pm

missed a bit from server config

# Authentication: password
auth-user-pass-verify /usr/libexec/nethserver/openvpn-pam-auth via-env
client-cert-not-required
username-as-common-name

status /var/log/openvpn/host-to-net-status.log
log-append /var/log/openvpn/openvpn.log
comp-lzo
keepalive 20 120
client-config-dir ccd
persist-key
persist-tun
management /var/spool/openvpn/host-to-net unix
verb 3

Post Reply