MacOS: can't ping local network or any another actions

[EpicCompass]

Hi all. Could you, please, help me (I haven't many expirience with OS X, maybe I've lost some simple things)

I've use Tunnelblick client and .ovpn config file for connecting to my VPN-server(VPN Server based on Ubuntu)

Android/Windows/Linux devices works well (successful connection/ping/file sharing/rdp etc.)

But with all OS X based devices (mobile and laptops) I have an issue:
Connection successful (ifconfig-push works and gain pre-setted local IP) but I can't ping any vpn clients.
I'm able to ping only external IP of my vpn-server. Also I can't do anything from OS X based devices in VPN network after connection

View OriginalServer Config

:
port 1194
proto udp
dev tun
ca ca.crt
sert
server.crt
key server.key
dh dh2048.pem
topology subnet
server 10.90.90.0 255.255.255.0
keepalive 10 120
xls-auth ta.key 0
key-direction 0
cipher AES-128-DC
auth SHA256
max-clients 100
persist-key
persist-tun
status openvpn-status.log
verb 3
client-config-dir ccd
client-to-client

View OriginalClient Config

:
client
dev tun
proto udp
remote **.**.**.** 1194
resolv-retry infinite
nobind
persist-key
persist-tun
remote-cert-tls server
cipher AES-128-CBC
auth SHA256
key-direction 1
verb 3

In openvpn-status.log on server I able to see connected OS X devices

[ecrist]

In your server config, you need to push the VPN subnet route to the VPN clients. So, in addition to the server line you already have, add a line:

View OriginalAdditions

push "route 10.90.90.0 255.255.255.0"

[EpicCompass]

Thank you for reply

Done, but still not work

Logs from connection process in Tunnelblick can help?

[TinCanTech]

That route is set on the client by the ifconfig statement the client executes..

EG:

Code: Select all

ifconfig tunX 10.90.90.2 netmask 255.255.255.0 mtu 1500 broadcast 10.90.90.255

Which is also one of the many reasons we always ask for logs at --verb 4

[TinCanTech]

I also suggest you re-post your configs because the ones you have posted clearly do not work:

Server config:

Code: Select all

xls-auth ta.key 0

There are other mistakes also ..

[EpicCompass]

Sorry for tls-auth ta.key 0

It was typo in this post (on server all fine)

Here is all configs with ccd-file for client

View OriginalServer

port 1194
proto udp
dev tun
ca ca.crt
cert server.crt
key server.key
dh dh2048.pem
topology subnet
server 10.90.90.0 255.255.255.0
push "route 10.90.90.0 255.255.255.0"
keepalive 10 120
tls-auth ta.key 0
key-direction 0
cipher AES-128-CBC
auth SHA256
tun-mtu 1500
max-clients 100
persist-key
persist-tun
status openvpn-status.log
verb 4
client-config-dir ccd
client-to-client

View OriginalMacOS client

client
dev tun
proto udp
remote *.*.*.* 255.255.255.0
resolv-retry infinite
nobind
tun-mtu 1500
persist-key
persist-tun
remote-cert-tls server
key-direction 1
cipher AES-128-CBC
auth SHA256
verb 4

View Originalcd for client

ifconfig tun1 10.90.90.9 netmask 255.255.255.0 mtu 1500 broadcast 10.90.90.255
ifconfig-push 10.90.90.9 255.255.255.0

[EpicCompass]

Hi again

Issue was fixed

I`ve turned off internet traffic redirecting on server
And configure tunneling only for local links

Thank for your time and sorry for inconvenience

[Ulziiskii]

Same issue, How Can I fix it?

Please explain to me how can I do.

"I`ve turned off internet traffic redirecting on server
And configure tunneling only for local links"