I nearly got it working, but some little thing seems still missing. I have the follwoing
setup on Windows. My aim is to make all traffic go through Windows OpenVPN server.
The problem is I can connect to the OpenVPN Server but I cannot browse anything.
I get this errors:
Code: Select all
Mon Sep 13 21:58:41 2021 Client1/176.2.32.1:53546 MULTI: bad source address from client [192.168.0.100], packet dropped
Here is my config as a picture
https://ibb.co/XyKYbct
OpenVPN-Server IP 192.168.2.110, 10.8.0.1 (sits behind a ISP-Router of ISP1)
OpenVPN-Client IP 192.168.0.100, gets 10.8.0.6 (sits behind a ISP-Router of ISP2). Cannot ping 8.8.8.8 or 10.8.0.1
client config:
Code: Select all
client
dev tun
proto tcp
remote 51.123.1.23 7777
resolv-retry infinite
nobind
persist-tun
ca ca.crt
cert client.crt
key client.key
remote-cert-tls server
tls-auth ta.key 1
cipher AES-256-CBC
verb 3
redirect-gateway def1
Code: Select all
port 7777
proto tcp4
dev tun
ca "C:\\Program Files\\OpenVPN\\config\\ca.crt"
cert "C:\\Program Files\\OpenVPN\\config\\server.crt"
key "C:\\Program Files\\OpenVPN\\config\\server.key"
dh "C:\\Program Files\\OpenVPN\\config\\dh2048.pem"
server 10.8.0.0 255.255.255.0
ifconfig-pool-persist ipp.txt
;server-bridge 10.8.0.4 255.255.255.0 10.8.0.50 10.8.0.100
;server-bridge
;push "route 192.168.10.0 255.255.255.0"
;push "route 192.168.20.0 255.255.255.0"
client-config-dir "C:\\Program Files\\OpenVPN\\config\\ccd"
;route 192.168.40.128 255.255.255.248
;client-config-dir ccd
;route 10.9.0.0 255.255.255.252
;learn-address ./script
;push "redirect-gateway def1 bypass-dhcp"
;push "dhcp-option DNS 208.67.222.222"
;push "dhcp-option DNS 208.67.220.220"
;client-to-client
;duplicate-cn
keepalive 10 120
tls-auth ta.key 0 # This file is secret
cipher AES-256-CBC
;compress lz4-v2
;push "compress lz4-v2"
;comp-lzo
;max-clients 100
;user nobody
;group nobody
persist-key
persist-tun
status openvpn-status.log
;log openvpn.log
;log-append openvpn.log
verb 4
;mu
explicit-exit-notify 0
push "redirect-gateway def1"
push "remote-gateway 10.8.0.1"
push "dhcp-option DNS 8.8.8.8"
keepalive 10 60
Code: Select all
--iroute 192.168.0.0 255.255.255.0