Win7 & Srever 2k8 - VPN Connets but cannot access each other

[timmyw]

Hey all,

I have the above set up. All connects fine, but I then can not access the server, for example SMB shares.

I see that are a lot of comments about Win7 causing issues as it identifies the connection as "unknown public network" - but I cannot change this. Firewall is disabled.

Here are my config files and logs, any suggestions would be appreciated.

Server config

Code: Select all

port 1194
proto udp
dev tun
ca "D:\\Program Files\\OpenVPN\\easy-rsa\\keys\\ca.crt"
cert "D:\\Program Files\\OpenVPN\\easy-rsa\\keys\\server.crt"
key "D:\\Program Files\\OpenVPN\\easy-rsa\\keys\\server.key" 
dh "D:\\Program Files\\OpenVPN\\easy-rsa\\keys\\dh1024.pem"
server 10.7.0.0 255.255.255.0
ifconfig-pool-persist ipp.txt
keepalive 10 120
comp-lzo
persist-key
persist-tun
status openvpn-status.log
verb 3

Client config...

Code: Select all

client
dev tun
proto udp
remote *.*.*.* 1194
resolv-retry infinite
nobind
persist-key
persist-tun
ca "C:\\Program Files (x86)\\OpenVPN\\config\\ca.crt"
cert "C:\\Program Files (x86)\\OpenVPN\\config\\chi-laptop.crt"
key "C:\\Program Files (x86)\\OpenVPN\\config\\chi-laptop.key"
ns-cert-type server
comp-lzo
verb 3

Client log

Code: Select all

Fri Nov 18 19:06:53 2011 OpenVPN 2.2.1 Win32-MSVC++ [SSL] [LZO2] built on Jul  1 2011
Fri Nov 18 19:06:53 2011 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Fri Nov 18 19:06:53 2011 LZO compression initialized
Fri Nov 18 19:06:53 2011 Control Channel MTU parms [ L:1542 D:138 EF:38 EB:0 ET:0 EL:0 ]
Fri Nov 18 19:06:53 2011 Socket Buffers: R=[8192->8192] S=[8192->8192]
Fri Nov 18 19:06:53 2011 Data Channel MTU parms [ L:1542 D:1450 EF:42 EB:135 ET:0 EL:0 AF:3/1 ]
Fri Nov 18 19:06:53 2011 Local Options hash (VER=V4): '41690919'
Fri Nov 18 19:06:53 2011 Expected Remote Options hash (VER=V4): '530fdded'
Fri Nov 18 19:06:53 2011 UDPv4 link local: [undef]
Fri Nov 18 19:06:53 2011 UDPv4 link remote: *.*.*.*:1194
Fri Nov 18 19:06:53 2011 TLS: Initial packet from *.*.*.*:1194, sid=f6f74c63 9d2ef144
Fri Nov 18 19:06:53 2011 VERIFY OK: depth=1, /C=UK/ST=London/L=London/O=luoliphant/OU=changeme/CN=OpenVPN/name=changeme/emailAddress=tim_twoit.co.uk
Fri Nov 18 19:06:53 2011 VERIFY OK: nsCertType=SERVER
Fri Nov 18 19:06:53 2011 VERIFY OK: depth=0, /C=UK/ST=London/L=London/O=luoliphant/OU=changeme/CN=server/name=changeme/emailAddress=tim_twoit.co.uk
Fri Nov 18 19:06:54 2011 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
Fri Nov 18 19:06:54 2011 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Fri Nov 18 19:06:54 2011 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
Fri Nov 18 19:06:54 2011 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Fri Nov 18 19:06:54 2011 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
Fri Nov 18 19:06:54 2011 [server] Peer Connection Initiated with *.*.*.*:1194
Fri Nov 18 19:06:56 2011 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
Fri Nov 18 19:06:56 2011 PUSH: Received control message: 'PUSH_REPLY,route 10.7.0.1,topology net30,ping 10,ping-restart 120,ifconfig 10.7.0.6 10.7.0.5'
Fri Nov 18 19:06:56 2011 OPTIONS IMPORT: timers and/or timeouts modified
Fri Nov 18 19:06:56 2011 OPTIONS IMPORT: --ifconfig/up options modified
Fri Nov 18 19:06:56 2011 OPTIONS IMPORT: route options modified
Fri Nov 18 19:06:56 2011 ROUTE default_gateway=192.168.1.201
Fri Nov 18 19:06:56 2011 TAP-WIN32 device [Local Area Connection 2] opened: \\.\Global\{62B63A5B-F9E8-4446-9D2C-23B6CA5CD713}.tap
Fri Nov 18 19:06:56 2011 TAP-Win32 Driver Version 9.8 
Fri Nov 18 19:06:56 2011 TAP-Win32 MTU=1500
Fri Nov 18 19:06:56 2011 Notified TAP-Win32 driver to set a DHCP IP/netmask of 10.7.0.6/255.255.255.252 on interface {62B63A5B-F9E8-4446-9D2C-23B6CA5CD713} [DHCP-serv: 10.7.0.5, lease-time: 31536000]
Fri Nov 18 19:06:56 2011 Successful ARP Flush on interface [23] {62B63A5B-F9E8-4446-9D2C-23B6CA5CD713}
Fri Nov 18 19:07:01 2011 TEST ROUTES: 1/1 succeeded len=1 ret=1 a=0 u/d=up
Fri Nov 18 19:07:01 2011 C:\WINDOWS\system32\route.exe ADD 10.7.0.1 MASK 255.255.255.255 10.7.0.5
Fri Nov 18 19:07:01 2011 ROUTE: CreateIpForwardEntry succeeded with dwForwardMetric1=30 and dwForwardType=4
Fri Nov 18 19:07:01 2011 Route addition via IPAPI succeeded [adaptive]
Fri Nov 18 19:07:01 2011 Initialization Sequence Completed

[Mimiko]

Did you disabled firewall on Server 2k8? And did you set the connection as Private Network? The Win7 does not receive any response from the server so it identifies the connectio as Uknown.