Hi guys,
I set up a OpenVPN AS on my Ubuntu Server with NAT and all traffic through the VPN. Tunnel builds up very fine and port 80 and 443 are working very well, but all other traffic on orts not 80 and 443 will get a timeout.
For example: I have another Linux Server with a Seafile on it. Seafile has two different ports, on is for WebGUI (80) and another one for DATA (8023 something like this). In this config I can only access the WebGui on 80 but I am not able to transfer data on 8023 nor accessing the Linuxserver via SSH.
Can anyone help putting my nose on the mistake I did during configuration?
Not all ports are working
-
- OpenVpn Newbie
- Posts: 6
- Joined: Fri Nov 10, 2017 10:30 am
- novaflash
- OpenVPN Inc.
- Posts: 1073
- Joined: Fri Apr 13, 2012 8:43 pm
Re: Not all ports are working
Sounds to me like a firewall or proxy server in the way to be honest, or some other strange configuration mistake.
In the network where your access server is, can you access those ports?
In the network where your access server is, can you access those ports?
I'm still alive, just posting under the openvpn_inc alias now as part of a larger group.
-
- OpenVpn Newbie
- Posts: 6
- Joined: Fri Nov 10, 2017 10:30 am
Re: Not all ports are working
Yes, within the network there is no problem accessing all servers on all ports. So there is no firewall between the VPN Gateway and the LAN yet.
- novaflash
- OpenVPN Inc.
- Posts: 1073
- Joined: Fri Apr 13, 2012 8:43 pm
Re: Not all ports are working
I would suggest running tcpdump and monitoring specific ports, see if the traffic even gets to the Access Server at all. If it doesn't, it's a local firewall on the VPN client itself or some weird proxy server setting redirecting only port 80 and port 443 somewhere, but blocking the rest.
Give this guide a read:
https://docs.openvpn.net/troubleshootin ... pn-tunnel/
Give this guide a read:
https://docs.openvpn.net/troubleshootin ... pn-tunnel/
I'm still alive, just posting under the openvpn_inc alias now as part of a larger group.
-
- OpenVpn Newbie
- Posts: 6
- Joined: Fri Nov 10, 2017 10:30 am
Re: Not all ports are working
OK so there is nothing like portforwarding or firewall on the AS itself? I was afraid I have missed that config menu. Now I have to find out a TCP dump of a connection not working when not beeing in the local network where it might work.
- novaflash
- OpenVPN Inc.
- Posts: 1073
- Joined: Fri Apr 13, 2012 8:43 pm
Re: Not all ports are working
Access Server does work like a firewall and it does have port forwarding functions, but you would have to do very specific things to activate those, like specify in a group access control something like 123.45.67.89:tcp/80 to only allow that port through, but then you would know you had done such a thing.
Default settings, if you allow an IP through, it allows all the ports through to that IP.
It's possible of course if you install UFW or some other firewall system that that is the problem. But I'd run tcpdump to see what happens anyways.
Default settings, if you allow an IP through, it allows all the ports through to that IP.
It's possible of course if you install UFW or some other firewall system that that is the problem. But I'd run tcpdump to see what happens anyways.
I'm still alive, just posting under the openvpn_inc alias now as part of a larger group.