Error driving me nuts

[TuxBrother]

Hello.

Simple question. The following error is driving me totally nuts:

Mon Nov 15 16:43:59 2010 name/X.X.X.X:1108 MULTI: no dynamic or static remote --ifconfig address is available for name/X.X.X.X:1108

Where X.X.X.X is my IP.

Server.conf:

Code: Select all

port 443
proto tcp-server
dev tap
ca keys/ca-name/ca.crt
cert keys/ca-name/cert-server-ovpn.crt
key keys/ca-name/cert-server-ovpn.key
dh keys/ca-name/dh2048.pem
;server 192.168.2.0 255.255.255.0
crl-verify keys/ca-name/crl.pem
mode server
cipher AES-256-CBC
user nobody
group nogroup
status servers/openvpn01/logs/openvpn-status.log
log-append servers/openvpn01/logs/openvpn.log
verb 2
mute 20
max-clients 100
keepalive 10 120
client-config-dir /etc/openvpn/servers/openvpn01/ccd
tls-server
comp-lzo
persist-key
ccd-exclusive
push "redirect-gateway"
client-to-client

Client.conf

Code: Select all

client
proto tcp-client
dev tap
ca ca.crt
dh dh2048.pem
cert cert-name.crt
key cert-name.key
remote 192.168.0.6 443
cipher AES-256-CBC
verb 2
mute 20
keepalive 10 120
comp-lzo
persist-key
float
resolv-retry infinite
nobind

Where "name" is a replaced version of my real name.
I am using XP (Client) and Linux (Server).
Ethernet bridging is what I want.

Googling around brings me more questions then solutions. Citate from a forum:

This refers to the to the TAP / TUN adapter of the client contracted address. OpenVPN sorgt normalerweise dafür, dass ein Client nur seine ihm zugewiesene IP Adresse verwenden kann. OpenVPN will normally ensure that a client can only use its IP address assigned to it. (jedenfalls bei TUN) Das kann es aber nur tun, wenn es die Adresse selbst vergibt (--server oder --server-bridge Direktive). (At least in TUN) That can only do this if the address automatically (- server or - server-bridge directive).
In deinem Fall bekommt es von der Adressvergabe aber nichts mit, daher die Meldung. In your case it gets from the address allocation but with nothing, hence the message.

(Excuse for the bad German translation)

I don't get the picture anymore.

Anyone can fix this?

[krzee]

the server directive is commented out
try adding this to the server config

Code: Select all

server 10.8.0.0 255.255.255.0

[TuxBrother]

the server directive is commented out
try adding this to the server config

Code: Select all

server 10.8.0.0 255.255.255.0

Thanks, that did it. But brings me to the next problem. I want that the default-gateway, and NOT the server assigns an IP. Access Server does this perfectly. And no, I am not going to use that because you need to pay for it.

For example.

My server has IP 192.168.1.6

When I connect with a client, I want that the gateway assigns me in the 192.168.1.0 subnet. If it is possible, some clients can use a static IP.

Is this possible?
Thanks again.

[krzee]

while that would be possible with a bridge, 99% of the time this is highly unnecessary, and just comes down to a lack of understanding of how to setup routing...
what is your real goal that requires you to need IPs in the same subnet as the lan?

[TuxBrother]

while that would be possible with a bridge, 99% of the time this is highly unnecessary, and just comes down to a lack of understanding of how to setup routing...
what is your real goal that requires you to need IPs in the same subnet as the lan?

The goal is: portforwarding within the router, for the clients. If they are in the same subnet, I just can select a client in my router and forward the port for it. That is why I want a static IP, also.

Is this possible?

[krzee]

so you want the clients to use the server as their internet address, and have some ports for the server IP forwarded to clients?
if so, you do not need IPs in the same subnet, you actually need to setup ip forwarding and NAT on your server... NAT 1 way for allowing clients to have INET access over the vpn (you also need redirect-gateway) and another NAT for the ports.
for static ip, viewtopic.php?f=4&t=7233&p=8366