Hi all
I have run into a truly baffling issue, we run a nethserver openvpn basic roadwarrior setup, all was working swimmingly until just recently i am having trouble connecting to anything on the network like the vpn server for example or our crm system.
we use open vpn client with the standard vpn config file with only the remote ip adjusted.
now when i run the client on my laptop right click connect i log in icon goes green and all looks connected fine but i keep getting really intermittent issues continuous pings run but i can't connect to the device then pings drop then i can connect to the web interfaces.
i have at least 2 other users who are working fine without problems but have now started to get other people experience the same.
as a sanity check and here is where is gets really weird, i built a new server and put it on an isolated server, so that is new server, new router, new switch, new user new config file,
and guess what same issue, has something changed for road warrior set up?
my ip range is 192.168.30.x/23 subnet 255.255.254.0
client config:
######### NethServer OpenVPN client configuration #########
dev tap
client
remote xxx.xxx.xx.xx
port 1194
float
auth-user-pass
<ca>
-----BEGIN CERTIFICATE-----
* deleted *
-----END CERTIFICATE-----
</ca>
comp-lzo
explicit-exit-notify 1
verb 3
persist-key
persist-tun
nobind
server config:
# ================= DO NOT MODIFY THIS FILE =================
#
# Manual changes will be lost when this file is regenerated.
#
# Please read the developer's guide, which is available
# at https://dev.nethesis.it/projects/nethse ... NethServer
# original work from http://www.contribs.org/development/
#
# Copyright (C) 2013 Nethesis S.r.l.
# http://www.nethesis.it - support@nethesis.it
#
dev tap0
server-bridge 192.168.30.19 255.255.254.0 192.168.30.101 192.168.30.105
ifconfig-pool-persist host-to-net.pool 0
port 1194
script-security 3
float
multihome
dh /var/lib/nethserver/certs/dh1024.pem
ca /etc/pki/tls/certs/NSRV.crt
cert /etc/pki/tls/certs/NSRV.crt
key /etc/pki/tls/private/NSRV.key
crl-verify /var/lib/nethserver/certs/crl.pem
push "dhcp-option DOMAIN localdomain"
push "dhcp-option DNS 8.8.8.8"
push "dhcp-option WINS 8.8.8.8"
push "dhcp-option NBDD 8.8.8.8"
push "dhcp-option NBT 2"
i'm all out of ideas.....
Bizarre Problem with RoadWarrior setup
-
- OpenVpn Newbie
- Posts: 2
- Joined: Tue Mar 27, 2018 7:59 am
Bizarre Problem with RoadWarrior setup
Last edited by matthew99 on Tue Mar 27, 2018 6:14 pm, edited 1 time in total.
-
- OpenVpn Newbie
- Posts: 2
- Joined: Tue Mar 27, 2018 7:59 am
Re: Bizarre Problem
missed a bit from server config
# Authentication: password
auth-user-pass-verify /usr/libexec/nethserver/openvpn-pam-auth via-env
client-cert-not-required
username-as-common-name
status /var/log/openvpn/host-to-net-status.log
log-append /var/log/openvpn/openvpn.log
comp-lzo
keepalive 20 120
client-config-dir ccd
persist-key
persist-tun
management /var/spool/openvpn/host-to-net unix
verb 3
# Authentication: password
auth-user-pass-verify /usr/libexec/nethserver/openvpn-pam-auth via-env
client-cert-not-required
username-as-common-name
status /var/log/openvpn/host-to-net-status.log
log-append /var/log/openvpn/openvpn.log
comp-lzo
keepalive 20 120
client-config-dir ccd
persist-key
persist-tun
management /var/spool/openvpn/host-to-net unix
verb 3