As a quick fix I had to change the protocol from UDP to TCP and that solved it. But the communication became unidirectional that is from the client net I can access the nodes on the server net. But not the other way around. Right now I cannot change anything on the client side since that node is on a different location (think of it on the moon). So the only way to play around is to change config on the server side. I want to be able to reach client net from the server net. Or particular nodes on the client net.
I have tried to add the following on the server side config without any success
client-to-client
mode server
My configs look like this. Any chance to get this working on TCP and without changing anything on the client side?
Client side net is 192.168.1.0 and has this config
client
dev tun
remote myhost.com
port 12345
proto tcp-client
ifconfig 10.1.0.2 10.1.0.1
tls-client
cipher AES-256-CBC
auth SHA512
persist-tun
persist-key
verb 3
<ca>
-----BEGIN CERTIFICATE-----
-----END CERTIFICATE-----
</ca>
<cert>
-----BEGIN CERTIFICATE-----
-----END RSA PRIVATE KEY-----
</key>
Server side has 192.168.0.0 net and this config
server
dev tun
ifconfig 10.1.0.1 10.1.0.2
route 192.168.1.0 255.255.255.0
push "route 192.168.0.0 255.255.255.0"
push "route 10.1.0.0 255.255.255.0"
tls-server
ca /var/ipfire/ovpn/ca/cacert.pem
cert /var/ipfire/ovpn/certs/servercert.pem
key /var/ipfire/ovpn/certs/serverkey.pem
dh /var/ipfire/ovpn/ca/dh1024.pem
cipher AES-256-CBC
auth SHA512
port 12345
#client-to-client
#mode server
#duplicate-cn
proto tcp-server
user nobody
group nobody
persist-tun
persist-key
verb 3
daemon somenamehere
keepalive 10 300