Issue with OpenVPN server on Win10 with 2 network adapters

dmcgowan · Post by **dmcgowan** » Fri Sep 30, 2016 5:24 am

I have 2 network adapters. 1 is connected to my gateway with the port forwarded for VPN, it's on the 10.0.0.0 subnet. I have a separate network adapter connected on a private network with some camera's, it's on a 172.16.12.0 subnet.

I have the setting in the server.ovpn

local 10.0.0.105

This binds the server to the correct network adapter I was expecting.

No matter what I do in the logs I see this:

Fri Sep 30 01:01:34 2016 OpenVPN 2.3.12 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [PKCS11] [IPv6] built on Aug 23 2016
Fri Sep 30 01:01:34 2016 Windows version 6.2 (Windows 8 or greater) 64bit
Fri Sep 30 01:01:34 2016 library versions: OpenSSL 1.0.1t 3 May 2016, LZO 2.09
Fri Sep 30 01:01:35 2016 Diffie-Hellman initialized with 1024 bit key
Fri Sep 30 01:01:35 2016 Socket Buffers: R=[65536->65536] S=[65536->65536]
Fri Sep 30 01:01:35 2016 ROUTE_GATEWAY 172.16.12.1/255.255.255.0 I=5 HWADDR=

The server always binds to the route_gateway of 172.16.12.1. When it does this, I cannot connect to the VPN at all.

If I disable that network adapter and restart the OpenVPN service I will get the following:

Fri Sep 30 01:13:08 2016 OpenVPN 2.3.12 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [PKCS11] [IPv6] built on Aug 23 2016
Fri Sep 30 01:13:08 2016 Windows version 6.2 (Windows 8 or greater) 64bit
Fri Sep 30 01:13:08 2016 library versions: OpenSSL 1.0.1t 3 May 2016, LZO 2.09
Fri Sep 30 01:13:08 2016 Diffie-Hellman initialized with 1024 bit key
Fri Sep 30 01:13:08 2016 Socket Buffers: R=[65536->65536] S=[65536->65536]
Fri Sep 30 01:13:08 2016 ROUTE_GATEWAY 10.0.0.1/255.255.255.0 I=12 HWADDR=

It binds to the correct route_gateway and works great.

The current solution I have in place is to disable the second network adapter, restart the OpenVPN server, it binds correctly, then afterwards I enable the second network adapter again and it starts working and the VPN continues to work.

I want OpenVPN to ignore that second NIC all together, it's not needed for the purposes I'm trying to solve. The "local" setting is not working.

I also tried to add "route-gateway 10.0.0.1" as a command and it changed nothing.

I'm not sure how it's selecting this.

I also modified registry to switch adapters from public to private in the category seeing if it made a difference, nothing.

Any ideas?

TinCanTech · Post by **TinCanTech** » Fri Sep 30, 2016 11:31 am

Server config and ipconfig /all

dmcgowan · Post by **dmcgowan** » Fri Sep 30, 2016 6:51 pm

Here are my details...

Here is my ipconfig output

Code: Select all

Windows IP Configuration

   Host Name . . . . . . . . . . . . : DESKTOP-*******
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : Yes
   WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Ethernet:

   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : *
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2601:c6:8304:47b0:997f:c7cb:76e8:eeca(Preferred) 
   Temporary IPv6 Address. . . . . . : 2601:c6:8304:47b0:9897:2796:d992:cf71(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::997f:c7cb:76e8:eeca%12(Preferred) 
   IPv4 Address. . . . . . . . . . . : 10.62.78.101(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : fe80::200:caff:fe11:2233%12
                                       10.62.78.1[code]

DHCPv6 IAID . . . . . . . . . . . : 58781299
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1E-A7-3E-3D-80-EE-73-B1-4D-58
DNS Servers . . . . . . . . . . . : 75.75.75.75
75.75.76.76
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Ethernet 2:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller #2
Physical Address. . . . . . . . . : *
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::b1cb:b529:1514:4143%5(Preferred)
IPv4 Address. . . . . . . . . . . : 172.16.12.101(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Friday, September 30, 2016 2:34:02 PM
Lease Expires . . . . . . . . . . : Saturday, October 1, 2016 2:34:01 PM
Default Gateway . . . . . . . . . : fe80::e246:9aff:fe3a:137e%5
172.16.12.1
DHCP Server . . . . . . . . . . . : 172.16.12.1
DHCPv6 IAID . . . . . . . . . . . : 125890163
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1E-A7-3E-3D-80-EE-73-B1-4D-58
DNS Servers . . . . . . . . . . . : 172.16.12.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Ethernet 3:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : TAP-Windows Adapter V9
Physical Address. . . . . . . . . : 00-FF-E9-76-40-80
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{2285724C-B32C-402D-93A2-0B6E86F92A42}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:9d38:90d7:2891:a67:f5c1:b19a(Preferred)
Link-local IPv6 Address . . . . . : fe80::2891:a67:f5c1:b19a%3(Preferred)
Default Gateway . . . . . . . . . :
DHCPv6 IAID . . . . . . . . . . . : 33554432
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1E-A7-3E-3D-80-EE-73-B1-4D-58
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{965522E4-73CB-4500-97F9-5ACE226AE6A1}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
[/code]

Here is my server configuration for OpenVPN:

Code: Select all

local 10.62.78.101
port 1194
proto udp
dev tun

ca "C:\\Program Files\\OpenVPN\\config\\ca.crt"
cert "C:\\Program Files\\OpenVPN\\config\\server.crt"
key "C:\\Program Files\\OpenVPN\\config\\server.key"
dh "C:\\Program Files\\OpenVPN\\config\\dh1024.pem"

topology subnet
server 10.8.0.0 255.255.255.0
ifconfig-pool-persist ipp.txt
push "route 10.62.78.0 255.255.255.0"
#push "route 172.16.12.0 255.255.255.0"

keepalive 10 120
comp-lzo
persist-key
persist-tun
status openvpn-status.log
verb 3

Here is my client configuration file:

Code: Select all

client
dev tun
proto udp
remote **********.ddns.net 1194
resolv-retry infinite
nobind
persist-key
persist-tun

<ca>
-----BEGIN CERTIFICATE-----
-----END CERTIFICATE-----
</ca>
<cert>
-----BEGIN CERTIFICATE-----
-----END CERTIFICATE-----
</cert>
<key>
-----BEGIN PRIVATE KEY-----
-----END PRIVATE KEY-----
</key>

remote-cert-tls server
comp-lzo
verb 3

I also updated the registry to enable IP forwarding. I changed the value for IPEnableRouting.

If I disable the Ethernet 2, everything works as expected. I can connect from my phone to the VPN, and I can browse on both the 10.8.0.0 network as well as the 10.62.78.0 network.

If I enable the second Ethernet 2 adapter I get lots of these in the logs:

Code: Select all

Fri Sep 30 14:44:35 2016 **.**.**.**:48601 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Fri Sep 30 14:44:35 2016 **.**.**.**:48601 TLS Error: TLS handshake failed
Fri Sep 30 14:44:35 2016 **.**.**.**:48601 SIGUSR1[soft,tls-error] received, client-instance restarting

If I disable the Ethernet 2 adapter, it connects right away.

Also, if I disable IP forwarding, it will work with both adapters enabled. So if I disable IPEnableRouting, both adapters can be enabled, and it works, but... I cannot browse anything on the 10.62.78.0 network, only the 10.8.0.0 network.

While I was posting this I did change topology from default to subnet. I didn't think it would make a difference because I thought the Android client was always using net30 anyway. So when I did this, I had both adapters enabled, and it stalled when connected and showed the normal errors in the log, then after about 5 seconds, it connected and worked.

Now it appears to be working, but I don't feel like it will keep working for some reason.

I feel it has to be a routing issue of some kind.

So maybe topology fixed it, maybe not, we will see.

dmcgowan · Post by **dmcgowan** » Fri Sep 30, 2016 6:56 pm

One correct... I was testing more right now and with it working, with both adapters enabled and IP forwarding. I can see and connect to things on 10.68.72.0, but I cannot load or connect to 10.8.0.0.

This doesn't really matter, the primary goal was to connect to my 10.68.72.0 network, that's my main purpose, but it's another clue as to whether that's supposed to happen and if I have things setup correctly.

dmcgowan · Post by **dmcgowan** » Fri Sep 30, 2016 8:01 pm

So I rebooted and now it's not connecting anymore like before. If disable the second Ethernet 2 adapter, it will start working again. This is the log from when it was failing.

Code: Select all

Fri Sep 30 15:42:10 2016 OpenVPN 2.3.12 x86_64-w64-mingw32 [SSL (OpenSSL)] [LZO] [PKCS11] [IPv6] built on Aug 23 2016
Fri Sep 30 15:42:10 2016 Windows version 6.2 (Windows 8 or greater) 64bit
Fri Sep 30 15:42:10 2016 library versions: OpenSSL 1.0.1t  3 May 2016, LZO 2.09
Fri Sep 30 15:42:10 2016 Diffie-Hellman initialized with 1024 bit key
Fri Sep 30 15:42:10 2016 Socket Buffers: R=[65536->65536] S=[65536->65536]
Fri Sep 30 15:42:10 2016 do_ifconfig, tt->ipv6=0, tt->did_ifconfig_ipv6_setup=0
Fri Sep 30 15:42:10 2016 open_tun, tt->ipv6=0
Fri Sep 30 15:42:10 2016 TAP-WIN32 device [Ethernet 3] opened: \\.\Global\{E9764080-E334-4012-A7FB-6E95D8D3DB01}.tap
Fri Sep 30 15:42:10 2016 TAP-Windows Driver Version 9.21 
Fri Sep 30 15:42:10 2016 Set TAP-Windows TUN subnet mode network/local/netmask = 10.8.0.0/10.8.0.1/255.255.255.0 [SUCCEEDED]
Fri Sep 30 15:42:10 2016 Notified TAP-Windows driver to set a DHCP IP/netmask of 10.8.0.1/255.255.255.0 on interface {E9764080-E334-4012-A7FB-6E95D8D3DB01} [DHCP-serv: 10.8.0.254, lease-time: 31536000]
Fri Sep 30 15:42:10 2016 Sleeping for 10 seconds...
Fri Sep 30 15:42:20 2016 Successful ARP Flush on interface [17] {E9764080-E334-4012-A7FB-6E95D8D3DB01}
Fri Sep 30 15:42:20 2016 UDPv4 link local (bound): [AF_INET]10.62.78.101:1194
Fri Sep 30 15:42:20 2016 UDPv4 link remote: [undef]
Fri Sep 30 15:42:20 2016 MULTI: multi_init called, r=256 v=256
Fri Sep 30 15:42:20 2016 IFCONFIG POOL: base=10.8.0.2 size=252, ipv6=0
Fri Sep 30 15:42:20 2016 ifconfig_pool_read(), in='david-phone,10.8.0.4', TODO: IPv6
Fri Sep 30 15:42:20 2016 succeeded -> ifconfig_pool_set()
Fri Sep 30 15:42:20 2016 IFCONFIG POOL LIST
Fri Sep 30 15:42:20 2016 david-phone,10.8.0.4
Fri Sep 30 15:42:20 2016 Initialization Sequence Completed
Fri Sep 30 15:42:31 2016 ***.**.*.*:36988 TLS: Initial packet from [AF_INET]***.**.*.*:36988, sid=75cdf292 b6cfd1ab
Fri Sep 30 15:42:41 2016 ***.**.*.*:57376 TLS: Initial packet from [AF_INET]***.**.*.*:57376, sid=d6a5065c 84f29416
Fri Sep 30 15:42:53 2016 ***.**.*.*:23781 TLS: Initial packet from [AF_INET]***.**.*.*:23781, sid=5c4a1e44 18dc89d0
Fri Sep 30 15:43:01 2016 ***.**.*.*:45952 TLS: Initial packet from [AF_INET]***.**.*.*:45952, sid=ee0b78f3 fea99ae7
Fri Sep 30 15:43:23 2016 ***.**.*.*:34968 TLS: Initial packet from [AF_INET]***.**.*.*:34968, sid=4f885fac 2756de33
Fri Sep 30 15:43:31 2016 ***.**.*.*:36988 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Fri Sep 30 15:43:31 2016 ***.**.*.*:36988 TLS Error: TLS handshake failed
Fri Sep 30 15:43:31 2016 ***.**.*.*:36988 SIGUSR1[soft,tls-error] received, client-instance restarting
Fri Sep 30 15:43:41 2016 ***.**.*.*:57376 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Fri Sep 30 15:43:41 2016 ***.**.*.*:57376 TLS Error: TLS handshake failed
Fri Sep 30 15:43:41 2016 ***.**.*.*:57376 SIGUSR1[soft,tls-error] received, client-instance restarting
Fri Sep 30 15:43:53 2016 ***.**.*.*:23781 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Fri Sep 30 15:43:53 2016 ***.**.*.*:23781 TLS Error: TLS handshake failed
Fri Sep 30 15:43:53 2016 ***.**.*.*:23781 SIGUSR1[soft,tls-error] received, client-instance restarting
Fri Sep 30 15:44:01 2016 ***.**.*.*:45952 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Fri Sep 30 15:44:01 2016 ***.**.*.*:45952 TLS Error: TLS handshake failed
Fri Sep 30 15:44:01 2016 ***.**.*.*:45952 SIGUSR1[soft,tls-error] received, client-instance restarting
Fri Sep 30 15:44:23 2016 ***.**.*.*:34968 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Fri Sep 30 15:44:23 2016 ***.**.*.*:34968 TLS Error: TLS handshake failed
Fri Sep 30 15:44:23 2016 ***.**.*.*:34968 SIGUSR1[soft,tls-error] received, client-instance restarting
Fri Sep 30 15:44:58 2016 ***.**.*.*:26224 TLS: Initial packet from [AF_INET]***.**.*.*:26224, sid=90a82a45 803af5b5
Fri Sep 30 15:45:08 2016 ***.**.*.*:53015 TLS: Initial packet from [AF_INET]***.**.*.*:53015, sid=fbad594e fba8c359
Fri Sep 30 15:45:18 2016 ***.**.*.*:41805 TLS: Initial packet from [AF_INET]***.**.*.*:41805, sid=d9398755 63aa7dd3
Fri Sep 30 15:45:28 2016 ***.**.*.*:51724 TLS: Initial packet from [AF_INET]***.**.*.*:51724, sid=3d5677fe 471bfdac
Fri Sep 30 15:45:38 2016 ***.**.*.*:42433 TLS: Initial packet from [AF_INET]***.**.*.*:42433, sid=c86d2c4a ca7403aa
Fri Sep 30 15:45:48 2016 ***.**.*.*:32537 TLS: Initial packet from [AF_INET]***.**.*.*:32537, sid=a8a23266 b3609e53
Fri Sep 30 15:45:58 2016 ***.**.*.*:26224 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Fri Sep 30 15:45:58 2016 ***.**.*.*:26224 TLS Error: TLS handshake failed
Fri Sep 30 15:45:58 2016 ***.**.*.*:26224 SIGUSR1[soft,tls-error] received, client-instance restarting
Fri Sep 30 15:46:08 2016 ***.**.*.*:53015 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Fri Sep 30 15:46:08 2016 ***.**.*.*:53015 TLS Error: TLS handshake failed
Fri Sep 30 15:46:08 2016 ***.**.*.*:53015 SIGUSR1[soft,tls-error] received, client-instance restarting
Fri Sep 30 15:46:18 2016 ***.**.*.*:41805 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Fri Sep 30 15:46:18 2016 ***.**.*.*:41805 TLS Error: TLS handshake failed
Fri Sep 30 15:46:18 2016 ***.**.*.*:41805 SIGUSR1[soft,tls-error] received, client-instance restarting
Fri Sep 30 15:46:28 2016 ***.**.*.*:51724 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Fri Sep 30 15:46:28 2016 ***.**.*.*:51724 TLS Error: TLS handshake failed
Fri Sep 30 15:46:28 2016 ***.**.*.*:51724 SIGUSR1[soft,tls-error] received, client-instance restarting
Fri Sep 30 15:46:38 2016 ***.**.*.*:42433 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Fri Sep 30 15:46:38 2016 ***.**.*.*:42433 TLS Error: TLS handshake failed
Fri Sep 30 15:46:38 2016 ***.**.*.*:42433 SIGUSR1[soft,tls-error] received, client-instance restarting
Fri Sep 30 15:46:48 2016 ***.**.*.*:32537 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Fri Sep 30 15:46:48 2016 ***.**.*.*:32537 TLS Error: TLS handshake failed
Fri Sep 30 15:46:48 2016 ***.**.*.*:32537 SIGUSR1[soft,tls-error] received, client-instance restarting
Fri Sep 30 15:47:27 2016 ***.**.*.*:35351 TLS: Initial packet from [AF_INET]***.**.*.*:35351, sid=4ab04f2b 87f786cc
Fri Sep 30 15:47:37 2016 ***.**.*.*:21930 TLS: Initial packet from [AF_INET]***.**.*.*:21930, sid=6d536c1e 96836fc7
Fri Sep 30 15:47:47 2016 ***.**.*.*:29955 TLS: Initial packet from [AF_INET]***.**.*.*:29955, sid=07f45330 ec4b0067
Fri Sep 30 15:47:57 2016 ***.**.*.*:47474 TLS: Initial packet from [AF_INET]***.**.*.*:47474, sid=ed25a542 656f1080
Fri Sep 30 15:48:07 2016 ***.**.*.*:56201 TLS: Initial packet from [AF_INET]***.**.*.*:56201, sid=4464496c b524c0ff
Fri Sep 30 15:48:17 2016 ***.**.*.*:34891 TLS: Initial packet from [AF_INET]***.**.*.*:34891, sid=fe60a48e bf9fa4c2
Fri Sep 30 15:48:27 2016 ***.**.*.*:35351 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Fri Sep 30 15:48:27 2016 ***.**.*.*:35351 TLS Error: TLS handshake failed
Fri Sep 30 15:48:27 2016 ***.**.*.*:35351 SIGUSR1[soft,tls-error] received, client-instance restarting
Fri Sep 30 15:48:37 2016 ***.**.*.*:21930 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Fri Sep 30 15:48:37 2016 ***.**.*.*:21930 TLS Error: TLS handshake failed
Fri Sep 30 15:48:37 2016 ***.**.*.*:21930 SIGUSR1[soft,tls-error] received, client-instance restarting
Fri Sep 30 15:48:47 2016 ***.**.*.*:29955 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Fri Sep 30 15:48:47 2016 ***.**.*.*:29955 TLS Error: TLS handshake failed
Fri Sep 30 15:48:47 2016 ***.**.*.*:29955 SIGUSR1[soft,tls-error] received, client-instance restarting
Fri Sep 30 15:48:57 2016 ***.**.*.*:47474 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Fri Sep 30 15:48:57 2016 ***.**.*.*:47474 TLS Error: TLS handshake failed
Fri Sep 30 15:48:57 2016 ***.**.*.*:47474 SIGUSR1[soft,tls-error] received, client-instance restarting
Fri Sep 30 15:49:07 2016 ***.**.*.*:56201 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Fri Sep 30 15:49:07 2016 ***.**.*.*:56201 TLS Error: TLS handshake failed
Fri Sep 30 15:49:07 2016 ***.**.*.*:56201 SIGUSR1[soft,tls-error] received, client-instance restarting
Fri Sep 30 15:49:17 2016 ***.**.*.*:34891 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Fri Sep 30 15:49:17 2016 ***.**.*.*:34891 TLS Error: TLS handshake failed
Fri Sep 30 15:49:17 2016 ***.**.*.*:34891 SIGUSR1[soft,tls-error] received, client-instance restarting
Fri Sep 30 15:58:24 2016 ***.**.*.*:32671 TLS: Initial packet from [AF_INET]***.**.*.*:32671, sid=4f361d0f 789524ff

dmcgowan · Post by **dmcgowan** » Fri Sep 30, 2016 8:13 pm

So the only way I can get things to work consistently are to disable IPEnableRouter, that is now off and I rebooted.

I then modified the server OpenVPN config file to the following:

Code: Select all

#topology subnet
server 10.8.0.0 255.255.255.0
ifconfig-pool-persist ipp.txt
#push "route 10.62.78.0 255.255.255.0"
#push "route 172.16.12.0 255.255.255.0"

Which means I went back to net30 on topology as well as removed the route to 10.62.78.0.

So now I can connect consistently, but I can only access the 10.8.0.0 network. This means I can only do things on the VPN server itself. I can RDP to it and then connect to other machines, but not optimal.

Before these changes, I just disabled IPEnableRouter and rebooted, left both adapters enabled, and it was still failing.

The only 2 ways to connect consistently are the way I now have it setup, or like the previous setup but with Ethernet 2, the 172.16.12.0 network card, disabled.

I wish I could tell OpenVPN to just ignore that Ethernet 2 adapter. I don't need to connect to that network while on VPN, I primarily want this to access the 10.62.78.0 network.

OpenVPN Support Forum

Issue with OpenVPN server on Win10 with 2 network adapters

Issue with OpenVPN server on Win10 with 2 network adapters

Re: Issue with OpenVPN server on Win10 with 2 network adapters

Re: Issue with OpenVPN server on Win10 with 2 network adapters

Re: Issue with OpenVPN server on Win10 with 2 network adapters

Re: Issue with OpenVPN server on Win10 with 2 network adapters

Re: Issue with OpenVPN server on Win10 with 2 network adapters