Yet another Ping ok, but no internet access.
Posted: Thu Jun 02, 2011 8:02 pm
Hi. I'm sorry if this is a beginner problem, but I just can't figure it out.
I have set up a VPN server on my computer running windows 7 x64 (ip 192.168.11.111) with the following config:
---
local 192.168.11.111
port 46464
proto udp
mssfix 1400
push "dhcp-option DNS 8.8.8.8"
push "dhcp-option DNS 8.8.4.4"
dev tap
dev-node TAPopenVPN #because I have renamed the TAP adapter
ca ca.crt
cert server.crt
key server.key
dh dh1024.pem
server 10.0.8.0 255.255.255.128 # This assigns the virtual IP address and subnet to the server's OpenVPN connection. Make sure the Routing Table entry matches this.
ifconfig-pool-persist ipp.txt
push "redirect-gateway def1" # This will force the clients to use the home network's internet connection
keepalive 10 120
cipher BF-CBC
comp-lzo
max-clients 3
persist-key
persist-tun
status openvpn-status.log
verb 1
----
I have changed the registry key IPEnableRouter to 1 (HKLM/system/currcontrolset/services/tcpip/parameters).
The computer is connected to the router (ip 192.168.11.1). I have set up port forwarding (port 46464 to ip 192.168.11.111) and the advanced routing (destip 10.0.8.0 , netmask 255.255.255.128, gateway 192.168.11.111, interface LAN) on the router.
The client is another computer (192.168.0.102) running XP , connected to a different router (192.168.0.1) on a different internet connection with the following config:
----
client
dev tap
dev-node TAPopenVPN
proto udp
remote hereismyconnection.dyndns.org 46464
route 192.168.11.0 255.255.255.0 vpn_gateway 3
resolv-retry infinite
nobind
persist-key
persist-tun
ca ca.crt
cert client1.crt
key client1.key
ns-cert-type server
cipher BF-CBC
comp-lzo
verb 1
---
The client connects without errors.
Firewalls are turned off on both computers.
From the client I run ping 10.0.8.1 (server) and I get replies.
Also I run ping 192.168.11.111 (server) and I get replies.
Also I run ping 192.168.11.1 (router) and I get replies.
I can also ping other computers in that LAN and I get replies.
But, when I run ping http://www.google.com, I get:
Pinging http://www.l.google.com [209.85.148.147] with 32 bytes of data:
Request timed out.
Request timed out.
...
No websites load on the client.
What am I doing wrong? Why is the internet not working?
I have set up a VPN server on my computer running windows 7 x64 (ip 192.168.11.111) with the following config:
---
local 192.168.11.111
port 46464
proto udp
mssfix 1400
push "dhcp-option DNS 8.8.8.8"
push "dhcp-option DNS 8.8.4.4"
dev tap
dev-node TAPopenVPN #because I have renamed the TAP adapter
ca ca.crt
cert server.crt
key server.key
dh dh1024.pem
server 10.0.8.0 255.255.255.128 # This assigns the virtual IP address and subnet to the server's OpenVPN connection. Make sure the Routing Table entry matches this.
ifconfig-pool-persist ipp.txt
push "redirect-gateway def1" # This will force the clients to use the home network's internet connection
keepalive 10 120
cipher BF-CBC
comp-lzo
max-clients 3
persist-key
persist-tun
status openvpn-status.log
verb 1
----
I have changed the registry key IPEnableRouter to 1 (HKLM/system/currcontrolset/services/tcpip/parameters).
The computer is connected to the router (ip 192.168.11.1). I have set up port forwarding (port 46464 to ip 192.168.11.111) and the advanced routing (destip 10.0.8.0 , netmask 255.255.255.128, gateway 192.168.11.111, interface LAN) on the router.
The client is another computer (192.168.0.102) running XP , connected to a different router (192.168.0.1) on a different internet connection with the following config:
----
client
dev tap
dev-node TAPopenVPN
proto udp
remote hereismyconnection.dyndns.org 46464
route 192.168.11.0 255.255.255.0 vpn_gateway 3
resolv-retry infinite
nobind
persist-key
persist-tun
ca ca.crt
cert client1.crt
key client1.key
ns-cert-type server
cipher BF-CBC
comp-lzo
verb 1
---
The client connects without errors.
Firewalls are turned off on both computers.
From the client I run ping 10.0.8.1 (server) and I get replies.
Also I run ping 192.168.11.111 (server) and I get replies.
Also I run ping 192.168.11.1 (router) and I get replies.
I can also ping other computers in that LAN and I get replies.
But, when I run ping http://www.google.com, I get:
Pinging http://www.l.google.com [209.85.148.147] with 32 bytes of data:
Request timed out.
Request timed out.
...
No websites load on the client.
What am I doing wrong? Why is the internet not working?