OpenVPN Support Forum

Community Support Forum
https://forums.openvpn.net/

openvpn server is connected but not responding to client

https://forums.openvpn.net/viewtopic.php?t=12277

Page 1 of 1

openvpn server is connected but not responding to client

Posted: Sun Feb 24, 2013 2:57 pm
by baderjasim
Hi.

i have openvpn installed in Debian 6 64bits and running openvpn gui client in windows 7 64bits everything is configured in both server and client and gui says connected with ip 10.8.0.4 but when trying to access websites i get no respond i have tried to disable windows firewall but doesnt solved

Please help me get it working ..


server.conf:
port 1194
proto tcp
dev tap
ca ca.crt
cert server.crt
key server.key # This file should be kept secret
dh dh2048.pem
server 10.8.0.0 255.255.255.0
ifconfig-pool-persist ipp.txt
push "redirect-gateway def1 bypass-dhcp"
push "dhcp-option DNS 8.8.4.4"
push "dhcp-option DNS 8.8.8.8"
keepalive 10 120
tls-auth ta.key 0 # This file is secret
comp-lzo
user nobody
group nogroup
persist-key
persist-tun
status openvpn-status.log

client.ovpn:
client
dev tap
proto tcp
remote 83.149.125.101 1194
resolv-retry infinite
nobind
persist-key
persist-tun
ca ca.crt
cert client.crt
key client.key
ns-cert-type server
tls-auth ta.key 1
comp-lzo
route-method exe
verb 3

GUI Log:
Sun Feb 24 17:12:50 2013 OpenVPN 2.3.0 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [PKCS11] [eurephia] [IPv6] built on Feb 14 2013
Sun Feb 24 17:12:50 2013 MANAGEMENT: TCP Socket listening on [AF_INET]127.0.0.1:25340
Sun Feb 24 17:12:50 2013 Need hold release from management interface, waiting...
Sun Feb 24 17:12:51 2013 MANAGEMENT: Client connected from [AF_INET]127.0.0.1:25340
Sun Feb 24 17:12:51 2013 MANAGEMENT: CMD 'state on'
Sun Feb 24 17:12:51 2013 MANAGEMENT: CMD 'log all on'
Sun Feb 24 17:12:51 2013 MANAGEMENT: CMD 'hold off'
Sun Feb 24 17:12:51 2013 MANAGEMENT: CMD 'hold release'
Sun Feb 24 17:12:51 2013 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Sun Feb 24 17:12:51 2013 Control Channel Authentication: using 'ta.key' as a OpenVPN static key file
Sun Feb 24 17:12:51 2013 Outgoing Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Sun Feb 24 17:12:51 2013 Incoming Control Channel Authentication: Using 160 bit message hash 'SHA1' for HMAC authentication
Sun Feb 24 17:12:51 2013 Socket Buffers: R=[8192->8192] S=[8192->8192]
Sun Feb 24 17:12:51 2013 Attempting to establish TCP connection with [AF_INET]83.149.125.101:1194
Sun Feb 24 17:12:51 2013 MANAGEMENT: >STATE:1361715171,TCP_CONNECT,,,
Sun Feb 24 17:12:51 2013 TCP connection established with [AF_INET]83.149.125.101:1194
Sun Feb 24 17:12:51 2013 TCPv4_CLIENT link local: [undef]
Sun Feb 24 17:12:51 2013 TCPv4_CLIENT link remote: [AF_INET]83.149.125.101:1194
Sun Feb 24 17:12:51 2013 MANAGEMENT: >STATE:1361715171,WAIT,,,
Sun Feb 24 17:12:51 2013 MANAGEMENT: >STATE:1361715171,AUTH,,,
Sun Feb 24 17:12:51 2013 TLS: Initial packet from [AF_INET]83.149.125.101:1194, sid=7d87b310 8395b02d
Sun Feb 24 17:12:54 2013 VERIFY OK: depth=1, C=NL, ST=127.0.0.1, L=VPSTown, O=seedmybox, CN=seedmybox CA, emailAddress=root@127.0.0.1
Sun Feb 24 17:12:54 2013 VERIFY OK: nsCertType=SERVER
Sun Feb 24 17:12:54 2013 VERIFY OK: depth=0, C=NL, ST=127.0.0.1, L=VPSTown, O=seedmybox, CN=server, emailAddress=root@127.0.0.1
Sun Feb 24 17:13:01 2013 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
Sun Feb 24 17:13:01 2013 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Sun Feb 24 17:13:01 2013 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
Sun Feb 24 17:13:01 2013 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Sun Feb 24 17:13:01 2013 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 2048 bit RSA
Sun Feb 24 17:13:01 2013 [server] Peer Connection Initiated with [AF_INET]83.149.125.101:1194
Sun Feb 24 17:13:02 2013 MANAGEMENT: >STATE:1361715182,GET_CONFIG,,,
Sun Feb 24 17:13:03 2013 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
Sun Feb 24 17:13:04 2013 PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1 bypass-dhcp,dhcp-option DNS 8.8.4.4,dhcp-option DNS 8.8.8.8,route-gateway 10.8.0.1,ping 10,ping-restart 120,ifconfig 10.8.0.4 255.255.255.0'
Sun Feb 24 17:13:04 2013 OPTIONS IMPORT: timers and/or timeouts modified
Sun Feb 24 17:13:04 2013 OPTIONS IMPORT: --ifconfig/up options modified
Sun Feb 24 17:13:04 2013 OPTIONS IMPORT: route options modified
Sun Feb 24 17:13:04 2013 OPTIONS IMPORT: route-related options modified
Sun Feb 24 17:13:04 2013 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Sun Feb 24 17:13:04 2013 do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
Sun Feb 24 17:13:04 2013 MANAGEMENT: >STATE:1361715184,ASSIGN_IP,,10.8.0.4,
Sun Feb 24 17:13:04 2013 open_tun, tt->ipv6=0
Sun Feb 24 17:13:04 2013 TAP-WIN32 device [Local Area Connection 3] opened: \\.\Global\{95D11CB3-AC22-4EB7-9B22-796BC7D4D5E1}.tap
Sun Feb 24 17:13:04 2013 TAP-Windows Driver Version 9.9
Sun Feb 24 17:13:04 2013 Notified TAP-Windows driver to set a DHCP IP/net
Sun Feb 24 15:44:32 2013 env_block: add PATH=C:\Windows\System32;C:\WINDOWS;C:\WINDOWS\System32\Wbem
Sun Feb 24 15:44:32 2013 C:\Windows\system32\route.exe DELETE 0.0.0.0 MASK 128.0.0.0 10.8.0.1
Sun Feb 24 15:44:32 2013 env_block: add PATH=C:\Windows\System32;C:\WINDOWS;C:\WINDOWS\System32\Wbem
Sun Feb 24 15:32:10 2013 C:\Windows\system32\route.exe ADmask of 10.8.0.4/255.255.255.0 on interface {95D11CB3-AC22-4EB7-9B22-796BC7D4D5E1} [DHCP-serv: 10.8.0.0, lease-time: 31536000]
Sun Feb 24 17:13:04 2013 Successful ARP Flush on interface [21] {95D11CB3-AC22-4EB7-9B22-796BC7D4D5E1}
Sun Feb 24 17:13:09 2013 TEST ROUTES: 1/1 succeeded len=0 ret=1 a=0 u/d=up
Sun Feb 24 17:13:09 2013 C:\Windows\system32\route.exe ADD 83.149.125.101 MASK 255.255.255.255 192.168.1.1
Sun Feb 24 17:13:09 2013 env_block: add PATH=C:\Windows\System32;C:\WINDOWS;C:\WINDOWS\System32\Wbem
Sun Feb 24 17:13:09 2013 C:\Windows\system32\route.exe ADD 192.168.1.1 MASK 255.255.255.255 192.168.1.1 IF 17
Sun Feb 24 17:13:09 2013 env_block: add PATH=C:\Windows\System32;C:\WINDOWS;C:\WINDOWS\System32\Wbem
Sun Feb 24 17:13:09 2013 C:\Windows\system32\route.exe ADD 0.0.0.0 MASK 128.0.0.0 10.8.0.1
Sun Feb 24 17:13:09 2013 env_block: add PATH=C:\Windows\System32;C:\WINDOWS;C:\WINDOWS\System32\Wbem
Sun Feb 24 17:13:09 2013 C:\Windows\system32\route.exe ADD 128.0.0.0 MASK 128.0.0.0 10.8.0.1
Sun Feb 24 17:13:09 2013 env_block: add PATH=C:\Windows\System32;C:\WINDOWS;C:\WINDOWS\System32\Wbem
Sun Feb 24 17:13:09 2013 Initialization Sequence Completed
Sun Feb 24 17:13:09 2013 MANAGEMENT: >STATE:1361715189,CONNECTED,SUCCESS,10.8.0.4,83.149.125.101
Sun Feb 24 15:44:32 2013 env_block: add PATH=C:\Windows\System32;C:\WINDOWS;C:\WINDOWS\System32\Wbem
Sun Feb 24 15:32:10 2013 C:\Windows\system32\route.exe ADs\SystemO
Sun Feb 24 15:44:32 2013 env_block:

Re: openvpn server is connected but not responding to client

Posted: Sun Feb 24, 2013 3:37 pm
by Douglas
Did you create your necessary NAT rules?

Re: openvpn server is connected but not responding to client

Posted: Sun Feb 24, 2013 7:19 pm
by baderjasim
do you mean windows firewall rules? no i didnt ..i tried to disabled private/public firewalls but that doesnt help on the issue.

note: i dont have any norton or internet security softwares installed.

Re: openvpn server is connected but not responding to client

Posted: Tue Feb 26, 2013 5:04 am
by Douglas
No.. NAT rules on server. Google it, its in the howto. Iptables masquerade

Re: openvpn server is connected but not responding to client

Posted: Tue Feb 26, 2013 7:48 am
by baderjasim
Yes, already figured that out and Fixed now working perfectly:) Thanks for help me out!
All times are UTC
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/