Configuring OpenVPN (Bridged) on Windows XP with Public IPs
Posted: Tue Apr 19, 2011 3:12 pm
Hello,
I have 5 public IP addresses provided to me through my ISP, my Windows XP SP2 box bridge adapter is configured as follows:
99.100.100.1 (Example, not my real IPs)
255.255.255.248
99.100.100.6 (Gateway)
99.100.100.6 (DNS)
This machine connects and works fine with regards to browsing.
Below is my OpenVPN server configuration file:
mode server
proto udp
port 1194
dev tap
dev-node tap-bridge
server-bridge 99.100.100.1 255.255.255.248 99.100.100.2 99.100.100.3
keepalive 10 120
#daemon
#verb 6
tls-server
tls-auth ta.key 0
comp-lzo
client-to-client
dh dh.pem
ca ca.crt
cert cert.pem
key key.pem
Remotely, I can connect to the OpenVPN server (and get assigned 99.100.100.2) just fine and I can see other machines on the LAN but cannot get out to the public internet. Upon connecting, I do get this error:
Apr 19 08:52:29: WARNING: --remote address [99.100.100.1] conflicts with --ifconfig subnet [99.100.100.2, 255.255.255.248] -- local and remote addresses cannot be inside of the --ifconfig subnet. (silence this warning with --ifconfig-nowarn)
What am I doing wrong and how can I fix it?
This previously was not an issue when this OpenVPN Server had a private IP address connected to a router with a public IP that was simply port forwarding....
I have 5 public IP addresses provided to me through my ISP, my Windows XP SP2 box bridge adapter is configured as follows:
99.100.100.1 (Example, not my real IPs)
255.255.255.248
99.100.100.6 (Gateway)
99.100.100.6 (DNS)
This machine connects and works fine with regards to browsing.
Below is my OpenVPN server configuration file:
mode server
proto udp
port 1194
dev tap
dev-node tap-bridge
server-bridge 99.100.100.1 255.255.255.248 99.100.100.2 99.100.100.3
keepalive 10 120
#daemon
#verb 6
tls-server
tls-auth ta.key 0
comp-lzo
client-to-client
dh dh.pem
ca ca.crt
cert cert.pem
key key.pem
Remotely, I can connect to the OpenVPN server (and get assigned 99.100.100.2) just fine and I can see other machines on the LAN but cannot get out to the public internet. Upon connecting, I do get this error:
Apr 19 08:52:29: WARNING: --remote address [99.100.100.1] conflicts with --ifconfig subnet [99.100.100.2, 255.255.255.248] -- local and remote addresses cannot be inside of the --ifconfig subnet. (silence this warning with --ifconfig-nowarn)
What am I doing wrong and how can I fix it?
This previously was not an issue when this OpenVPN Server had a private IP address connected to a router with a public IP that was simply port forwarding....
