Hi,
Successfully installed open VPN server , it working fine all the network. One particular IP , connection has been established , but unable to access My VPN server Local LAN . server.conf file I set push 192.168.1.0 255.255.255.0 , connection has been lost frequently. What the issue?
OenVPN unable to access openVPN client.
Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech
Forum rules
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
-
evince12
- OpenVpn Newbie
- Posts: 3
- Joined: Thu Nov 29, 2012 10:44 am
-
evince12
- OpenVpn Newbie
- Posts: 3
- Joined: Thu Nov 29, 2012 10:44 am
Re: OenVPN unable to access openVPN client.
Hi,
I install openvpn successfully. But when connect open vpn client unable to access internet. Below openVPN configuration.
Server.conf file
# Which local IP address should OpenVPN
# listen on? (optional)
;local a.b.c.d
port 1194
# TCP or UDP server?
;proto tcp
proto udp
;dev tap
dev tun
;dev-node MyTap
ca ca.crt
cert etn.crt
key epn.key # This file should be kept secret
# 2048 bit keys.
dh dh1024.pem
server 10.8.0.0 255.255.255.0
ifconfig-pool-persist ipp.txt
;server-bridge 10.8.0.4 255.255.255.0 10.8.0.50 10.8.0.100
;server-bridge
push "route 192.168.20.0 255.255.255.0"
;push "route 192.168.20.0 255.255.255.0"
;client-config-dir ccd
;route 192.168.40.128 255.255.255.248
;client-config-dir ccd
;route 10.9.0.0 255.255.255.252
;route 192.20.1.0 255.255.255.0
;learn-address ./script
# push "redirect-gateway def1 bypass-dhcp"
# push "redirect-gateway 192.168.20.88"
push "redirect-gateway def1"
push "dhcp-option DNS 208.67.222.222"
push "dhcp-option DNS 208.67.220.220"
# push "dhcp-option DNS 8.8.8.8"
# push "dhcp-option DNS 8.8.4.4"
;client-to-client
;duplicate-cn
keepalive 10 120
;tls-auth ta.key 0 # This file is secret
;cipher BF-CBC # Blowfish (default)
;cipher AES-128-CBC # AES
;cipher DES-EDE3-CBC # Triple-DES
comp-lzo
;max-clients 100
;user nobody
;group nogroup
persist-key
persist-tun
status /var/log/openvpn/openvpn-status.log
;log openvpn.log
log-append /var/log/openvpn/openvpn.log
verb 3
;mute 20
client.conf file
client
;dev tap
dev tun
;dev-node MyTap
;proto tcp
proto udp
remote myvpnserverip 1194
;remote my-server-2 1194
;remote-random
resolv-retry infinite
nobind
;user nobody
;group nogroup
persist-key
persist-tun
;http-proxy-retry # retry on connection failures
;http-proxy [proxy server] [proxy port #]
;mute-replay-warnings
ca ca.crt
cert c1.crt
key c1.key
ns-cert-type server
;tls-auth ta.key 1
;cipher x
comp-lzo
verb 3
;mute 20
My IPtables
*mangle
REROUTING ACCEPT [3:156]
:INPUT ACCEPT [3:156]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [3:1452]
OSTROUTING ACCEPT [3:1452]
COMMIT
# Completed on Thu Jan 17 17:01:10 2013
# Generated by iptables-save v1.4.12 on Thu Jan 17 17:01:10 2013
*nat
REROUTING ACCEPT [11984:792527]
:INPUT ACCEPT [1327:146533]
:OUTPUT ACCEPT [387:44517]
OSTROUTING ACCEPT [358:37119]
-A POSTROUTING -o eth0 -j MASQUERADE
COMMIT
# Completed on Thu Jan 17 17:01:10 2013
# Generated by iptables-save v1.4.12 on Thu Jan 17 17:01:10 2013
*filter
:INPUT ACCEPT [11608:3301255]
:FORWARD ACCEPT [293121:184827970]
:OUTPUT ACCEPT [5477:486706]
-A INPUT -p udp -m udp --dport 1194 -j ACCEPT
-A OUTPUT -o eth0 -p udp -m udp --sport 1194 -m state --state ESTABLISHED -j ACCEPT
Can you please help resolve this issue.
I install openvpn successfully. But when connect open vpn client unable to access internet. Below openVPN configuration.
Server.conf file
# Which local IP address should OpenVPN
# listen on? (optional)
;local a.b.c.d
port 1194
# TCP or UDP server?
;proto tcp
proto udp
;dev tap
dev tun
;dev-node MyTap
ca ca.crt
cert etn.crt
key epn.key # This file should be kept secret
# 2048 bit keys.
dh dh1024.pem
server 10.8.0.0 255.255.255.0
ifconfig-pool-persist ipp.txt
;server-bridge 10.8.0.4 255.255.255.0 10.8.0.50 10.8.0.100
;server-bridge
push "route 192.168.20.0 255.255.255.0"
;push "route 192.168.20.0 255.255.255.0"
;client-config-dir ccd
;route 192.168.40.128 255.255.255.248
;client-config-dir ccd
;route 10.9.0.0 255.255.255.252
;route 192.20.1.0 255.255.255.0
;learn-address ./script
# push "redirect-gateway def1 bypass-dhcp"
# push "redirect-gateway 192.168.20.88"
push "redirect-gateway def1"
push "dhcp-option DNS 208.67.222.222"
push "dhcp-option DNS 208.67.220.220"
# push "dhcp-option DNS 8.8.8.8"
# push "dhcp-option DNS 8.8.4.4"
;client-to-client
;duplicate-cn
keepalive 10 120
;tls-auth ta.key 0 # This file is secret
;cipher BF-CBC # Blowfish (default)
;cipher AES-128-CBC # AES
;cipher DES-EDE3-CBC # Triple-DES
comp-lzo
;max-clients 100
;user nobody
;group nogroup
persist-key
persist-tun
status /var/log/openvpn/openvpn-status.log
;log openvpn.log
log-append /var/log/openvpn/openvpn.log
verb 3
;mute 20
client.conf file
client
;dev tap
dev tun
;dev-node MyTap
;proto tcp
proto udp
remote myvpnserverip 1194
;remote my-server-2 1194
;remote-random
resolv-retry infinite
nobind
;user nobody
;group nogroup
persist-key
persist-tun
;http-proxy-retry # retry on connection failures
;http-proxy [proxy server] [proxy port #]
;mute-replay-warnings
ca ca.crt
cert c1.crt
key c1.key
ns-cert-type server
;tls-auth ta.key 1
;cipher x
comp-lzo
verb 3
;mute 20
My IPtables
*mangle
REROUTING ACCEPT [3:156]:INPUT ACCEPT [3:156]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [3:1452]
OSTROUTING ACCEPT [3:1452]COMMIT
# Completed on Thu Jan 17 17:01:10 2013
# Generated by iptables-save v1.4.12 on Thu Jan 17 17:01:10 2013
*nat
REROUTING ACCEPT [11984:792527]:INPUT ACCEPT [1327:146533]
:OUTPUT ACCEPT [387:44517]
OSTROUTING ACCEPT [358:37119]-A POSTROUTING -o eth0 -j MASQUERADE
COMMIT
# Completed on Thu Jan 17 17:01:10 2013
# Generated by iptables-save v1.4.12 on Thu Jan 17 17:01:10 2013
*filter
:INPUT ACCEPT [11608:3301255]
:FORWARD ACCEPT [293121:184827970]
:OUTPUT ACCEPT [5477:486706]
-A INPUT -p udp -m udp --dport 1194 -j ACCEPT
-A OUTPUT -o eth0 -p udp -m udp --sport 1194 -m state --state ESTABLISHED -j ACCEPT
Can you please help resolve this issue.