Connects but can't reach remote network

[mmulqueen]

Hello,

I'm using OpenVPN on an Untangle appliance and there is one PC that connects to my OpenVPN server but I cannot reach any machines on that network using DNS names or IP addresses. I can connect just fine with other PCs and have transferred the config files and certificates from a working PC to the one that doesn't work which did not fix the problem. Also, I've tried this PC on my work network (where other PCs can connect and reach machines on the remote network), my home network, and by sharing the 3g connection from my phone. All working PCs and the one that doesn't work are running the same 64-bit version of Windows 7 Enterprise. Each time, I get the same problem and the same errors in the status window.


Wed Oct 26 10:00:04 2011 OpenVPN 2.1.3 i686-pc-mingw32 [SSL] [LZO2] [PKCS11] built on Aug 20 2010
Wed Oct 26 10:00:04 2011 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Wed Oct 26 10:00:05 2011 LZO compression initialized
Wed Oct 26 10:00:05 2011 UDPv4 link local: [undef]
Wed Oct 26 10:00:05 2011 UDPv4 link remote: xxx.xxx.xxx.xxx:1194
Wed Oct 26 10:00:07 2011 [server.does.not.exists] Peer Connection Initiated with xxx.xxx.xxx.xxx:1194
Wed Oct 26 10:00:09 2011 TAP-WIN32 device [Local Area Connection* 15] opened: \\.\Global\{166043CB-5F7F-4BD9-8457-B8DD2145FEA7}.tap
Wed Oct 26 10:00:09 2011 Notified TAP-Win32 driver to set a DHCP IP/netmask of 172.16.100.13/255.255.255.252 on interface {166043CB-5F7F-4BD9-8457-B8DD2145FEA7} [DHCP-serv: 172.16.100.14, lease-time: 31536000]
Wed Oct 26 10:00:09 2011 Successful ARP Flush on interface [22] {166043CB-5F7F-4BD9-8457-B8DD2145FEA7}
Wed Oct 26 10:00:44 2011 Warning: route gateway is not reachable on any active network adapters: 172.16.100.14
OK!
Wed Oct 26 10:00:44 2011 Warning: route gateway is not reachable on any active network adapters: 172.16.100.14
OK!
Wed Oct 26 10:00:44 2011 Warning: route gateway is not reachable on any active network adapters: 172.16.100.14
OK!
SYSTEM ROUTING TABLE
0.0.0.0 0.0.0.0 192.168.1.1 p=0 i=11 t=4 pr=3 a=125 h=0 m=25/0/0/0/0
127.0.0.0 255.0.0.0 127.0.0.1 p=0 i=1 t=3 pr=3 a=330141 h=0 m=306/0/0/0/0
127.0.0.1 255.255.255.255 127.0.0.1 p=0 i=1 t=3 pr=3 a=330141 h=0 m=306/0/0/0/0
127.255.255.255 255.255.255.255 127.0.0.1 p=0 i=1 t=3 pr=3 a=330141 h=0 m=306/0/0/0/0
172.16.55.0 255.255.255.0 172.16.100.14 p=0 i=11 t=4 pr=3 a=0 h=0 m=26/0/0/0/0
192.168.0.0 255.255.255.0 172.16.100.14 p=0 i=11 t=4 pr=3 a=0 h=0 m=26/0/0/0/0
192.168.1.0 255.255.255.0 192.168.1.101 p=0 i=11 t=3 pr=3 a=125 h=0 m=281/0/0/0/0
192.168.1.101 255.255.255.255 192.168.1.101 p=0 i=11 t=3 pr=3 a=125 h=0 m=281/0/0/0/0
192.168.1.255 255.255.255.255 192.168.1.101 p=0 i=11 t=3 pr=3 a=125 h=0 m=281/0/0/0/0
192.168.3.1 255.255.255.255 172.16.100.14 p=0 i=11 t=4 pr=3 a=0 h=0 m=26/0/0/0/0
224.0.0.0 240.0.0.0 127.0.0.1 p=0 i=1 t=3 pr=3 a=330141 h=0 m=306/0/0/0/0
224.0.0.0 240.0.0.0 192.168.1.101 p=0 i=11 t=3 pr=3 a=5939 h=0 m=281/0/0/0/0
255.255.255.255 255.255.255.255 127.0.0.1 p=0 i=1 t=3 pr=3 a=330141 h=0 m=306/0/0/0/0
255.255.255.255 255.255.255.255 192.168.1.101 p=0 i=11 t=3 pr=3 a=5939 h=0 m=281/0/0/0/0
SYSTEM ADAPTER LIST
TAP-Win32 Adapter V9
Index = 22
GUID = {166043CB-5F7F-4BD9-8457-B8DD2145FEA7}
IP = 0.0.0.0/0.0.0.0
MAC = 00:ff:16:60:43:cb
GATEWAY = 0.0.0.0/255.255.255.255
DHCP SERV =
DHCP LEASE OBTAINED = Wed Oct 26 10:00:44 2011
DHCP LEASE EXPIRES = Wed Oct 26 10:00:44 2011
DNS SERV =
Dell Wireless 1397 WLAN Mini-Card
Index = 11
GUID = {24E19DC5-B3C8-44BB-905B-3D5413B47735}
IP = 192.168.1.101/255.255.255.0
MAC = 70:1a:04:02:89:38
GATEWAY = 192.168.1.1/255.255.255.255
DHCP SERV = 192.168.1.1/255.255.255.255
DHCP LEASE OBTAINED = Wed Oct 26 09:58:38 2011
DHCP LEASE EXPIRES = Thu Oct 27 09:58:38 2011
DNS SERV = 8.8.8.8/255.255.255.255 8.8.4.4/255.255.255.255
Broadcom NetLink (TM) Gigabit Ethernet
Index = 10
GUID = {60859BB2-410F-406C-AEBB-9EAF29F37262}
IP = 0.0.0.0/0.0.0.0
MAC = 00:26:b9:04:7a:51
GATEWAY = 0.0.0.0/255.255.255.255
DHCP SERV =
DHCP LEASE OBTAINED = Wed Oct 26 10:00:44 2011
DHCP LEASE EXPIRES = Wed Oct 26 10:00:44 2011
DNS SERV =
Wed Oct 26 10:00:44 2011 Initialization Sequence Completed With Errors ( see http://openvpn.net/faq.html#dhcpclientserv )

Here is my config file

#AUTOGENERATED BY UNTANGLE DO NOT MODIFY


# OpenVPN(v2.0) configuration script

client
proto udp
resolv-retry 20
keepalive 10 120
cipher AES-128-CBC
nobind
mute-replay-warnings
ns-cert-type server
comp-lzo
verb 2
persist-key
persist-tun
verb 1
tls-exit
dev tun0
cert untangle-vpn/company-name-username.crt
key untangle-vpn/company-name-username.key
ca untangle-vpn/company-name-ca.crt
remote xxx.xxx.xxx.xxx 1194


I'm close to formatting and reinstalling Windows as it may be a problem with the install but I wanted to check here and see if anyone had any suggestions that might keep me from having to do that. Please let me know if there is anything I can do. Thanks!

[janjust]

most likely you're using 'client-config-dir' on the server, in combination with 'ifconfig-push'. Make sure you use

Code: Select all

ifconfig-push 172.16.100.14 172.16.100.13

and NOT the other way round.

If you are not using 'client-config-dir' (or 'client-connect' scripts) then please post your server configuration.

Also, add

Code: Select all

verb 5

to the client config and reconnect, then post the sanitized relevant part of the client log file.

[maikcat]

untangle is great appliance but (like others)
it has one bad habbit.

if you change manually configs it re-creates them automatically
in next reboot...

they also have a very good forum..

btw which version of untangle you use?

Michael.

[melanie22]

I just want to say thank you for the information. It is very valuable for me.
Thanks and keep up the good work..