Im try to up my OVPN server to combine multiple remote networks into one over a secure connection (important) + im need it for some monitoring soft.
LAN 1: under router dlink. 192.168.0.0/24 (192.168.0.1-200) - with 1.2.3.4 static Internet IP. Server under this LAN on 192.168.0.39 (Ubuntu 10.1) and some PC with 192.168.0.x.
LAN 2: under router dlink. 192.168.0.0/24 (192.168.0.1-200) - only 1 pc
- port forwarding is enabled
- firewalls is disabled
- iptables done for server done
- clients under Windows 7 and XP
- Ubuntu server under VMware (bridge settings for network)
http://openvpn.net/index.php/open-sourc ... dging.html
use it
We decided to use tap interface and Ethernet bridging.
So im put in /etc/networking/interfaces
Code: Select all
auto lo
iface lo inet loopback
auto eth1
iface eth1 inet static
address 192.168.0.39
netmask 255.255.255.0
gateway 192.168.0.1
broadcast 192.168.0.255next step is run script bridge-start with my settings:
and run openvpn demon and got ifconfig -a like this:eth="eth1"
eth_ip="192.168.0.39"
eth_netmask="255.255.255.0"
eth_broadcast="192.168.0.255"
Code: Select all
br0 Link encap:Ethernet HWaddr 00:0c:29:98:64:38
inet addr:192.168.0.39 Bcast:192.168.0.255 Mask:255.255.255.0
inet6 addr: fe80::20c:29ff:fe98:6438/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:45 errors:0 dropped:0 overruns:0 frame:0
TX packets:9 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:3634 (3.6 KB) TX bytes:594 (594.0 B)
eth1 Link encap:Ethernet HWaddr 00:0c:29:98:64:38
inet6 addr: fe80::20c:29ff:fe98:6438/64 Scope:Link
UP BROADCAST RUNNING PROMISC MULTICAST MTU:1500 Metric:1
RX packets:39482 errors:0 dropped:0 overruns:0 frame:0
TX packets:6652 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:6602441 (6.6 MB) TX bytes:944089 (944.0 KB)
Interrupt:19 Base address:0x2000
lo Link encap:Локальная петля (Loopback)
inet addr:127.0.0.1 Mask:255.0.0.0
inet6 addr: ::1/128 Scope:Host
UP LOOPBACK RUNNING MTU:16436 Metric:1
RX packets:80 errors:0 dropped:0 overruns:0 frame:0
TX packets:80 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:6517 (6.5 KB) TX bytes:6517 (6.5 KB)
tap0 Link encap:Ethernet HWaddr e6:a3:16:01:dd:3d
inet6 addr: fe80::e4a3:16ff:fe01:dd3d/64 Scope:Link
UP BROADCAST RUNNING PROMISC MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:8 errors:0 dropped:43 overruns:0 carrier:0
collisions:0 txqueuelen:100
RX bytes:0 (0.0 B) TX bytes:628 (628.0 B)
This is my first problems. Im try to make bridge using
https://help.ubuntu.com/community/OpenVPN
clients can connect, but pings on their new IPs isnt work.
server.conf
Code: Select all
port 1194
proto udp
dev tap0
ca /etc/openvpn/keys/ca.crt
cert /etc/openvpn/keys/server.crt
key /etc/openvpn/keys/server.key # This file should be kept secret
dh /etc/openvpn/keys/dh1024.pem
ifconfig-pool-persist /etc/openvpn/ipp.txt
server-bridge 192.168.0.39 255.255.255.0 192.168.0.230 192.168.0.250
keepalive 10 120
comp-lzo
;user nobody
;group nobody
persist-key
persist-tun
status /etc/openvpn/openvpn-status.log
log /etc/openvpn/openvpn.log
log-append /etc/openvpn/openvpn.log
verb 6
mute 20Code: Select all
client
dev tap
;dev tun
;dev-node MyTap
proto udp
remote 1.2.3.4 1194
resolv-retry infinite
nobind
persist-key
persist-tun
ca c:\\OpenVPNPortable\\data\\config\\ca.crt
cert c:\\OpenVPNPortable\\data\\config\\client1.crt
key c:\\OpenVPNPortable\\data\\config\\client1.key
comp-lzo
verb 3
mute 20
remote-cert-tls server