Few questions from a newbie

[Jane]

I sucessfully installed OpenVPN and now client connects to a server but only if it is on the same subnet.( I installed them on a private LAN. Server runs on 192.168.1.4 and client on 192.168.1.6( or similar).
So far so good.

My questions:
1.
I would like to connect to a server in a different subnet but in private IP too.
So I forwarded port 1194 but
must I forward both server's and client's address ports or only a server's address port?

2. My server subnet has local( private )addresses 192.168.1.2 - 192.168.1.19, MASK 255.255.255.0)
My client subnet has local( private) addresses 192.168.1.20 - 192.168.1.240, MASK 255.255.255.0)
Is that OK?

3. Is there a way how to check/test( without OpenVPN) that my router forwards 1194 ports correctly?E.g. from a console?(I would like to eliminate router's problem)
Thanks

[janjust]

@1: only the server port needs to be accessible, although some routers have problems forwarding back and forth UDP traffic; YMMV. Try tcp mode if you think there's a problem with your router

@2: you're asking for trouble if the LAN IP ranges on both client and server side are the same; I'd highly recommend to change either side. People have gotten it to work without changing the IP ranges but this is for networking experts only.

@3: I'd use a tool like 'nmap' , although a UDP port scan is not very trustworthy. If you've configured OpenVPN in 'tcp' mode then a

Code: Select all

telnet <VPN-server-IP> 1194

should also report *something* other than 'connection refused'.