All working except RDP - Windows7
Posted: Mon Apr 11, 2011 7:51 pm
Hi All,
I do have OpenVPN working on a bunch of Linux setups & with PFSense.
Today I am tasked with something odd...
OpenVPN server running on a (virtualized) Windows 7 Pro that sits behind a pfSense FW.
The pfSense has 1 NAT rule added to its config
WAN UDP * * x.y.z.w 1194 (OpenVPN) 10.10.22.21 1194 (OpenVPN)
I am connecting to the "server" over the VPN from another Win 7 machine just fine.
A 'shared' file folder on the 'server' can be accessed and changed etc.
The only thing that isn't going for me is RDP...
On the client I get the login/challenge.
The screen goes black, the little blue bar appears up top and after 20-30 seconds an error comes up.
"Your Remote Desktop session has ended." blah blah...
On the 'server' I see in the log file this:
Authenticate/Decrypt packet error: bad packet ID (may be a replay) etc.
After which I have to reconnect from the client - things 'freeze'
I played with the MTU settings but no luck.
server.conf
port 1194
proto udp
dev tun
dev-node Free...
server 10.10.44.0 255.255.255.0
... (cert. stuff)
# Need to make mask smaller
push "route 10.10.22.0 255.255.255.0"
keepalive 10 120
persist-key
persist-tun
verb4
client.conf
client
dev tun
proto udp
remote w.x.y.z 1194
resolv-retry infinite
nobind
persist-tun
persist-key
cipher... (cert stuff)
verb 3
explicit-exit-notify 2
ping 10
ping-restart 60
route-method exe
route-delay 2
I added and removed
tun-mtu 1400
fragment 1400
mssfix
comp-lzo
on both sides but no luck... (in some cases the file-sharing even stopped working)
I don't see anything on the pfSense fw either and as said I can open a explore window on the client to a shared folder on the server successfully.
Rdesktop works fine without the VPN.
Suggestions?
Thanks
Peter
I do have OpenVPN working on a bunch of Linux setups & with PFSense.
Today I am tasked with something odd...
OpenVPN server running on a (virtualized) Windows 7 Pro that sits behind a pfSense FW.
The pfSense has 1 NAT rule added to its config
WAN UDP * * x.y.z.w 1194 (OpenVPN) 10.10.22.21 1194 (OpenVPN)
I am connecting to the "server" over the VPN from another Win 7 machine just fine.
A 'shared' file folder on the 'server' can be accessed and changed etc.
The only thing that isn't going for me is RDP...
On the client I get the login/challenge.
The screen goes black, the little blue bar appears up top and after 20-30 seconds an error comes up.
"Your Remote Desktop session has ended." blah blah...
On the 'server' I see in the log file this:
Authenticate/Decrypt packet error: bad packet ID (may be a replay) etc.
After which I have to reconnect from the client - things 'freeze'
I played with the MTU settings but no luck.
server.conf
port 1194
proto udp
dev tun
dev-node Free...
server 10.10.44.0 255.255.255.0
... (cert. stuff)
# Need to make mask smaller
push "route 10.10.22.0 255.255.255.0"
keepalive 10 120
persist-key
persist-tun
verb4
client.conf
client
dev tun
proto udp
remote w.x.y.z 1194
resolv-retry infinite
nobind
persist-tun
persist-key
cipher... (cert stuff)
verb 3
explicit-exit-notify 2
ping 10
ping-restart 60
route-method exe
route-delay 2
I added and removed
tun-mtu 1400
fragment 1400
mssfix
comp-lzo
on both sides but no luck... (in some cases the file-sharing even stopped working)
I don't see anything on the pfSense fw either and as said I can open a explore window on the client to a shared folder on the server successfully.
Rdesktop works fine without the VPN.
Suggestions?
Thanks
Peter
