OpenVPN Support Forum

My VPS server centos 5.6

server conf

local -------
port 9200
proto udp
dev tun
tun-mtu 2000
ca /etc/openvpn/easy-rsa/2.0/keys/ca.crt
cert /etc/openvpn/easy-rsa/2.0/keys/server.crt
key /etc/openvpn/easy-rsa/2.0/keys/server.key
dh /etc/openvpn/easy-rsa/2.0/keys/dh1024.pem
plugin /usr/share/openvpn/plugin/lib/openvpn-auth-pam.so /etc/pam.d/login
client-cert-not-required
username-as-common-name
server 10.10.0.0 255.255.0.0
push "redirect-gateway def1"
push "dhcp-option DNS 208.67.222.222"
push "dhcp-option DNS 208.67.220.220"
comp-lzo
persist-key
persist-tun
verb 3
float
duplicate-cn
keepalive 10 120

Client config

client
dev tun
proto udp
remote ------
lport 80
resolv-retry infinite
bind
tun-mtu 2000
persist-key
persist-tun
comp-lzo
mute 3
reneg-sec 0
route-method exe
keepalive 10 120
ca ca.crt
auth-user-pass password.txt

My VPS server centos 5.6

setting

tun-mtu 2000

is not going to do you a lot of good - try it without this setting.

also, if you can ping the VPN IP of the VPS server then your VPN is functional - everything after that is routing; make sure IP forwarding is enabled on the VPS server and make sure that masquerading is allowed: You might have to talk to your VPS container provider to allow masquerading.

wow thank you for your reply.... i will try

they say eth0 interface is not available inside VPS server.

what is the outgoing interface on your VPS box? do '/sbin/ifconfig -a' and find the interface with your (public?) IP address. Change the masquerading rule to use this interface.

its usually venet0

any guide? help please thank you very much...im a noob

Please try adding the iptables rule with venet0 interface rather than eth0.

iptables -t nat -I POSTROUTING -o venet0 -j MASQUERADE

This will help routing the traffic out of the server. Let me know how that goes.