Can't ping VM host!

This forum is for all inquiries relating to the installation of OpenVPN from source and with binaries.

Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech

Forum rules
Please visit (and READ) the OpenVPN HowTo http://openvpn.net/howto prior to asking any questions in here!
Post Reply
SedoSan
OpenVpn Newbie
Posts: 9
Joined: Tue May 07, 2013 10:21 am

Can't ping VM host!

Post by SedoSan » Sun May 12, 2013 10:20 am

Hello all,
I have 4 problems/questions which I will sort out:
1) I managed to set up openVPN on ubuntu 13.04 server and was able to connect to it with no problems, the only thing is that I can't ping the PC that is hosting the server VM.

this is my layout:
router/gateway: 192.168.1.1
My main PC which is hosting ubuntu's VM: 192.168.1.11
Ubuntu's VM on bridged network: 192.168.1.21
My laptop which I use to connect to my VPN server: public IP outside the network
My laptop after connecting to VPN: 192.168.1.80

So now, after connecting to my VPN server I can ping ALL devices in the home network except for the PC that is hosting the VM which is 192.168.1.11, I need to be able to access this device since most stuff that I need is on its shared files.

Here are my server and client conf files:
server.conf

Code: Select all

#bridging directive
dev tap0
up "/etc/openvpn/up.sh br0 tap0 1500"
down "/etc/openvpn/down.sh br0 tap0"

persist-key
persist-tun

#certificates and encryption
ca ca.crt
cert server.crt
key server.key
dh dh1024.pem
tls-auth ta.key 0

cipher BF-CBC
comp-lzo

#DHCP Information
ifconfig-pool-persist ipp.txt
server-bridge 192.168.1.21 255.255.255.0 192.168.1.80 192.168.1.99
push "dhcp-option DNS 192.168.1.1"
push "dhcp-option DOMAIN XXX.XXX.XXX.XXX"
push "redirect-gateway def1 bypass-dhcp"
max-clients 10
client-to-client

#log and security
user nobody
group nogroup
keepalive 10 120
status openvpn-status.log
verb 3
client.conf:
client.conf

Code: Select all

client

dev tap

remote XXX.XXX.XXX.XXX 443
proto tcp

nobind

resolv-retry infinite

persist-key
persist-tun

ca ca.crt
cert client.crt
key client.key

tls-auth ta.key 1

cipher BF-CBC

comp-lzo

verb 3
this is my up.sh and down.sh:
up.sh:

Code: Select all

#!/bin/sh

BR=$1
DEV=$2
MTU=$3
/sbin/ip link set "$DEV" up promisc on mtu "$MTU"
/sbin/brctl addif $BR $DEV
down.sh:

Code: Select all

#!/bin/sh

BR=$1
DEV=$2

/sbin/brctl delif $BR $DEV
/sbin/ip link set "$DEV" down
2) I have a weird problem, in my ubuntu server I can't ping any website by name but I can by number which means there is a problem in DNS server, so when I assign a DNS server for it, then I can't seem to get openVPN to route all traffic through my client anymore, this is my /etc/network/interfaces file:

Code: Select all

# This file describes the network interfaces available on your system
# and how to activate them. For more information, see interfaces(5).

# The loopback network interface
auto lo br0
iface lo inet loopback

# The primary network interface
iface br0 inet static
address 192.168.1.21
netmask 255.255.255.0
gateway 192.168.1.1
#dns-search 192.168.1.1
#dns-nameservers 192.168.1.1
bridge_ports eth0

iface eth0 inet manual
up ip link set $IFACE up promisc on
down ip link set $IFACE down promisc off

bridge_fd 9
bridge_hello 2
bridge_maxage 12
bridge_stp off
as you can see, the dns parts are hashed so openVPN can work properly, however if I remove the hashes then I can ping google.com for example and I can install programs to my ubuntu server, but I can't get openVPN to work properly anymore, so what should I do?

3)I noticed that VMware's performance is very bad, is this normal? I have 100Mb/s connection in both my home network and my work network but when I connected to my home network via VPN i was able to only get ~10Mb/s

4) what's the downside of having all traffic traveling through a single port? (tcp 443)? I'm using this one since work is blocking almost all other ports and udp ports.
Top
Post Reply

Return to “Installation Help”