OpenVPN Support Forum

Community Support Forum
https://forums.openvpn.net/

New setup with existing LAN

https://forums.openvpn.net/viewtopic.php?t=7828

Page 1 of 1

New setup with existing LAN

Posted: Wed Mar 23, 2011 2:29 pm
by lazysmerf
I spent 3 hours yesterday trying to set this up and ended up breaking there network connection, and had to run to site to correct the issue.

O.K. here is what i need to get done:
Windows 2003 (Windows Home Server) 192.168.1.xxx
Windows 7 and Xp clients various external IP's
Would prefer 1 client config file for all clients
low to medium security or High if it can be done with above client file
need to be able to access at least 2 IP's on the 192.168.1.xxx Lan network
Need to be able to RDP to WHS above

I follwed no less than 6 different tutorials all ranging from setting up a 172.17.8.4 OpenVPN ip to one stating i needed to create a Bridge on the windows server. i created the bridge and had to run to site to correct my mistake. i currently have the windows bridge set to a static IP that the server would normally receive reserved. I have attached the server and client configuration files below.

Code: Select all

Server.ovpn
;local a.b.c.d
port 1194
proto udp
dev tap
;dev-tap tap-bridge
ca "C:\\Program Files\\OpenVPN\\config\\ca.crt"
cert "C:\\Program Files\\OpenVPN\\config\\server.crt"
key "C:\\Program Files\\OpenVPN\\config\\server.key"  # This file should be kept secret
dh "C:\\Program Files\\OpenVPN\\config\\dh1024.pem"
ifconfig-pool-persist ipp.txt
server-bridge 10.8.0.4 255.255.255.0 10.8.0.50 10.8.0.100
push "route 192.168.1.0 255.255.255.0"
keepalive 10 120
persist-key
persist-tun
status openvpn-status.log
verb 3

Code: Select all

Client.ovpn
client
dev tap
;dev tun
proto udp
remote myserver.dyndns.org 1194
resolv-retry infinite
nobind
persist-key
persist-tun
ca "C:\\Program Files\\OpenVPN\\config\\ca.crt"
cert "C:\\Program Files\\OpenVPN\\config\\user-laptop.crt"
key "C:\\Program Files\\OpenVPN\\config\\user-laptop.key"
ns-cert-type server
comp-lzo
verb 3

Re: New setup with existing LAN

Posted: Wed Mar 23, 2011 3:19 pm
by Douglas
Please edit your config pastings to strip comments.

You can use: `grep -vE '^#|^;|^$' server.conf`

Also, please see: http://www.secure-computing.net/wiki/in ... PN/Routing

Re: New setup with existing LAN

Posted: Wed Mar 23, 2011 3:40 pm
by lazysmerf
You can use: `grep -vE '^#|^;|^$' server.conf`
Thats a great idea for a linux user, windows users do not have the same capability. I will edit it manually.


O.k. so reading through the link i have come up with the below server cfg, am i even getting warm?

Code: Select all

Server.ovpn
;local a.b.c.d
port 1194
proto udp
dev tap
;dev-tap tap-bridge
ca "C:\\Program Files\\OpenVPN\\config\\ca.crt"
cert "C:\\Program Files\\OpenVPN\\config\\server.crt"
key "C:\\Program Files\\OpenVPN\\config\\server.key"  # This file should be kept secret
dh "C:\\Program Files\\OpenVPN\\config\\dh1024.pem"
ifconfig-pool-persist ipp.txt
server-bridge 192.168.4.1 255.255.255.0 192.168.4.50 192.168.4.100
route 192.168.4.0 255.255.255.0
route 192.168.1.0 255.255.255.0
push "route 192.168.1.0 255.255.255.0"
push "route 192.168.4.0 255.255.255.0"
client-to-client
keepalive 10 120
persist-key
persist-tun
status openvpn-status.log
verb 3
All times are UTC
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/