[SOLVED] Connection Problems with Ethernet-Bridged VPN Serve

Need help configuring your VPN? Just post here and you'll get that help.

Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech

Forum rules
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
Post Reply
Sky
OpenVpn Newbie
Posts: 10
Joined: Tue Dec 07, 2010 9:54 pm

[SOLVED] Connection Problems with Ethernet-Bridged VPN Serve

Post by Sky » Thu Dec 09, 2010 1:16 am

I have VPN installed on a Windows XP machine that has two ethernet adapters and I have the tap-adapter bridged to the spare ethernet adapter. I must have one small error in how it's all set up because when I try telling this OpenVPN to run the server config, it cannot connect. Here is the report:

Code: Select all

Wed Dec 08 18:59:13 2010 OpenVPN 2.1.4 i686-pc-mingw32 [SSL] [LZO2] [PKCS11] built on Nov  8 2010
Wed Dec 08 18:59:13 2010 NOTE: when bridging your LAN adapter with the TAP adapter, note that the new bridge adapter will often take on its own IP address that is different from what the LAN adapter was previously set to
Wed Dec 08 18:59:13 2010 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Wed Dec 08 18:59:13 2010 Cannot open dh1024.pem for DH parameters: error:02001002:system library:fopen:No such file or directory: error:2006D080:BIO routines:BIO_new_file:no such file
Wed Dec 08 18:59:13 2010 Exiting
I've tried forwarding port 1194 to both the ethernet adapter's IP and also to the manually set IP of the bridged adapter. I have no idea what the second NOTE is talking about regarding script security 2 or higher. There was nothing about that in the HOW-TO. I also don't know why it can't open dh1024.pem as it is directly in easy-rsa\keys where it was created by the build-dh.bat.

Here is my server config:

Code: Select all

port 1194
proto udp
dev tap
dev-node tap-bridge
ca ca.crt
cert server.crt
key server.key  # This file should be kept secret
dh dh1024.pem
ifconfig-pool-persist ipp.txt
server-bridge 192.168.133.200 255.255.255.0 192.168.133.201 192.168.133.250
client-to-client
keepalive 10 120
tls-auth ta.key 0 # This file is secret
cipher AES-128-CBC   # AES
comp-lzo
max-clients 3
persist-key
persist-tun
status openvpn-status.log
verb 3
Edit: I've got all the keys and certificates, including the ta.key file. I've got windows firewall turned off for the bridge adapter.

Sky
OpenVpn Newbie
Posts: 10
Joined: Tue Dec 07, 2010 9:54 pm

Re: Connection Problems with Ethernet-Bridged VPN Server

Post by Sky » Thu Dec 09, 2010 2:15 am

Never mind, I solved it. I just needed to use fully qualified names for each of the key files in the server config. How lame is that. You'd think the app would look in the default directory that all keys get created in (OpenVPN\easy-rsa\keys\).

Post Reply