Double tunnel Blocked encapsulation packets over Hotspot

Need help configuring your VPN? Just post here and you'll get that help.

Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech

Forum rules
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
Post Reply
marquiskissel
OpenVpn Newbie
Posts: 1
Joined: Sun Mar 19, 2023 1:29 am

Double tunnel Blocked encapsulation packets over Hotspot

Post by marquiskissel » Sun Mar 19, 2023 1:37 am

Hey guys, my wife has to use a VPN on her laptop to access her work network but her work VPN server blocks international traffic. I have a Synology hosted OpenVPN server on my home network in the USA. When I share my laptop internet in the USA with her work computer via the Mobile Hotspot function, she is able to tunnel in to her work VPN like normal over that hotspot. When I link my mobile hotspot to my OpenVPN connection, her computer will successfully connect to the internet and show her IP as my home VPN server's external IP. But when she tries to tunnel in to her work VPN her computer gives this error: "the vpn connection between your computer and the vpn server could not be completed the most common cause for this failure is that at least one computer between your computer and the vpn server is not configured to allow generic routing encapsulation protocol packets". Just for completeness, she is able to tunnel in no problem when she is connected via wifi to my home network.

Any ideas on how to achieve this double tunnel successfully? I would really appreciate the help and advice!

My client side config file is as follows:
Client Config

dev tun
tls-client

remote xxxxxxx.synology.me 1194

# The "float" tells OpenVPN to accept authenticated packets from any address,
# not only the address which was specified in the --remote option.
# This is useful when you are connecting to a peer which holds a dynamic address
# such as a dial-in user or DHCP client.
# (Please refer to the manual of OpenVPN for more information.)

#float

# If redirect-gateway is enabled, the client will redirect it's
# default network gateway through the VPN.
# It means the VPN connection will firstly connect to the VPN Server
# and then to the internet.
# (Please refer to the manual of OpenVPN for more information.)

redirect-gateway def1

# dhcp-option DNS: To set primary domain name server address.
# Repeat this option to set secondary DNS server addresses.

#dhcp-option DNS DNS_IP_ADDRESS

pull

# If you want to connect by Server's IPv6 address, you should use
# "proto udp6" in UDP mode or "proto tcp6-client" in TCP mode
proto udp

script-security 2


comp-lzo

reneg-sec 0

cipher AES-256-CBC

auth SHA512

auth-user-pass
client-cert-not-required
<ca>
-----BEGIN CERTIFICATE-----
Top
Post Reply

Return to “Configuration”