Set Windows 10 TAP adaptor to private network

Need help configuring your VPN? Just post here and you'll get that help.
Forum rules
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
Locked
nickh
OpenVPN User
Posts: 14
Joined: Sun Mar 02, 2014 1:25 pm

Set Windows 10 TAP adaptor to private network

Post by nickh » Tue Dec 22, 2015 7:54 pm

Hi,

I've just deployed OpenVPN on a Win10 box to my aged mother who previously had an XP box. In Win10 the box does not want to respond to pings through the VPN or even on the LAN. I can fix the LAN by allowing the relevant firewall rule for private networks. Unfortunately the Windows TAP adaptor is defined as an Unknown network and I can't find out how to set it to a Private network. For the moment I've set a firewall rule to allow everything from the OpenVPN subnet, but I'd rather disable the rule and just classify the OpenVPN subnet as private.

Is this possible, and, if so, how?

TIA,

Nick

User avatar
Traffic
OpenVPN Protagonist
Posts: 4081
Joined: Sat Aug 09, 2014 11:24 am

Re: Set Windows 10 TAP adaptor to private network

Post by Traffic » Wed Jan 06, 2016 3:52 pm

nickh wrote:For the moment I've set a firewall rule to allow everything from the OpenVPN subnet
This is exactly what I do ..
nickh wrote:but I'd rather disable the rule and just classify the OpenVPN subnet as private
The problem is Windows .. It only allows you to classify a network as private if it has an associated default gateway (i think .. not 100% sure what windows is upto) and you cannot have two default gateways .. well you can but then things go very peculiar.

nickh
OpenVPN User
Posts: 14
Joined: Sun Mar 02, 2014 1:25 pm

Re: Set Windows 10 TAP adaptor to private network

Post by nickh » Wed Jan 06, 2016 7:21 pm

Pity. It would make configuration a lot more foolproof, and safer in the case that the roadwarrior happens to connect to a subnet which is the same as your server's LAN subnet. Then no traffic will go down the tunnel and the machine will be totally open to anyone on that subnet.

User avatar
Traffic
OpenVPN Protagonist
Posts: 4081
Joined: Sat Aug 09, 2014 11:24 am

Re: Set Windows 10 TAP adaptor to private network

Post by Traffic » Wed Jan 06, 2016 7:25 pm

Considering the range of RFC1918 available subnets, a properly configured system is extremely unlikely to have such a conflict.

nickh
OpenVPN User
Posts: 14
Joined: Sun Mar 02, 2014 1:25 pm

Re: Set Windows 10 TAP adaptor to private network

Post by nickh » Wed Jan 06, 2016 7:29 pm

Agreed. That is why I've picked on something in the 172.16/12 range ;) It is just that if Micro$oft allowed it, it could be made even safer.

DavidJacobs
OpenVpn Newbie
Posts: 4
Joined: Mon Jan 18, 2016 3:20 pm

Re: Set Windows 10 TAP adaptor to private network

Post by DavidJacobs » Mon Jan 18, 2016 3:35 pm

Hi,

Having the same issue I was able to make the TAP adapter private by pushing a default gateway to it.
Now being able to ping from client to server and vice verse.

push "route-metric 512"
push "route 0.0.0.0 0.0.0.0"

ubermudr
OpenVpn Newbie
Posts: 1
Joined: Thu Dec 21, 2017 11:12 pm

Re: Set Windows 10 TAP adaptor to private network

Post by ubermudr » Thu Dec 21, 2017 11:16 pm

into server config file or client config file?

nikolaiortiz
OpenVpn Newbie
Posts: 6
Joined: Tue Apr 17, 2018 2:52 pm

Re: Set Windows 10 TAP adaptor to private network

Post by nikolaiortiz » Tue Apr 17, 2018 3:29 pm

Hi,
I can made ping from server to client and vice versa but I can't see the shared Files ..
I disable the firewall for the TAP adapter in the client and the server.

Thanks ...

nickh
OpenVPN User
Posts: 14
Joined: Sun Mar 02, 2014 1:25 pm

Re: Set Windows 10 TAP adaptor to private network

Post by nickh » Tue Apr 17, 2018 3:53 pm

Please make your own thread and give more information about your set up like operating systems and so on. Also how you are trying to "see" the files?

User avatar
TinCanTech
OpenVPN Protagonist
Posts: 4901
Joined: Fri Jun 03, 2016 1:17 pm

Re: Set Windows 10 TAP adaptor to private network

Post by TinCanTech » Tue Apr 17, 2018 4:07 pm

@nickh .. thanks for your help 8-)
DavidJacobs wrote:
Mon Jan 18, 2016 3:35 pm
Having the same issue I was able to make the TAP adapter private by pushing a default gateway to it.
Now being able to ping from client to server and vice verse.

push "route-metric 512"
push "route 0.0.0.0 0.0.0.0"
ubermudr wrote:
Thu Dec 21, 2017 11:16 pm
into server config file or client config file?
You push from the server ..

This thread should be closed.

Locked