OpenVPN Support Forum

Community Support Forum
https://forums.openvpn.net/

Can't connect client through tunnel to VM

https://forums.openvpn.net/viewtopic.php?t=12739

Page 1 of 1

Can't connect client through tunnel to VM

Posted: Wed Apr 24, 2013 8:00 pm
by adminbhc
I have my OpenVPN server running on network 10.10.24.0 and all my clients connect in great. I have a persistent tunnel enabled on my firewall that all the PC's in the office can access machines in a cloud network this network is 10.11.24.0.
The problem is that my client configurations (outside the office) do not connect to the 10.11.24.0 network. Everything is routed out through there local networks and of course it cannot locate 10.11.
Can I specify a route in the individual config files to allow this? Do you need to see config files?

client
dev tap
proto tcp
remote xx.xx.xx.xxx 1194
resolv-retry infinite
nobind
ca ca.crt
cert worm.crt
key worm.key
tls-auth ta.key 1
cipher AES-256-CBC
ns-cert-type server
comp-lzo
verb 1

Re: Can't connect client through tunnel to VM

Posted: Thu Apr 25, 2013 12:34 pm
by adminbhc
port 1194

proto tcp

dev tap
dev-node TAP

ca ca.crt
cert server.crt
key server.key
dh dh1024.pem
tls-auth ta.key 0
cipher AES-256-CBC
crl-verify crl.pem

server-bridge 10.10.24.18 255.255.255.0 10.10.24.231 10.10.24.250

push “route 10.11.24.0 255.255.255.0”

client-to-client
keepalive 10 120
comp-lzo
persist-key
persist-tun

push "dhcp-option DOMAIN www.xxxxxxxxxxxx.com"
push "dhcp-option DNS 10.10.24.5"

status openvpn-status.log

verb 3


Here is my server config. I added the "Push route" for 10.11.24.0 but still having problems connecting.

Re: Can't connect client through tunnel to VM

Posted: Fri Apr 26, 2013 10:26 am
by janjust
first of all, you're not trying to do something that's impossible.
Two remarks:
1) do you really need bridging? it gives you a nice performance hit and a lot of users don't really need it. The advantage is that the VPN clients will get an IP address from the same range as the LAN

2) are all forwarding rules set up correctly on the VPN server, both for LAN and cloud access? think of routes, iptables, etc etc *on the VPN server*

Re: Can't connect client through tunnel to VM

Posted: Fri Apr 26, 2013 12:49 pm
by adminbhc
I probably don't require bridging. It was setup that way when I got here. All the client keys are created that way and I am not sure I want to edit them all at this point.

I have enable IP forwarding on the VPN server. I am unsure of how to do the other recommended changes to the server.
tap/tun forwarding, iptables, etc?
All times are UTC
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/