OpenVPN Support Forum

Community Support Forum
https://forums.openvpn.net/

Openvpn config to allow IGMP traffic?

https://forums.openvpn.net/viewtopic.php?t=9545

Page 1 of 1

Openvpn config to allow IGMP traffic?

Posted: Mon Jan 09, 2012 1:47 am
by flipthetip
Im not pretty sure if i got the title correctly but here's my point.
I use my VPN to browse the internet. Lately, my ISP implemented IGMP and now I cant connect to the internet thru my VPN.

I checked google and some routing should be done though im not sure how to do it.
Any suggestions guys?
Any help will be warmly appreciated. thanks!

Re: Openvpn config to allow IGMP traffic?

Posted: Mon Jan 09, 2012 6:27 am
by Mimiko
Without any info on configuration - can't help. May be asking the ISP about changes they maid?

Re: Openvpn config to allow IGMP traffic?

Posted: Mon Jan 09, 2012 7:29 am
by jamesmorison2011
I am not sure this is the problem. New versions allow UDP multicast and IGMP packets.

Re: Openvpn config to allow IGMP traffic?

Posted: Mon Jan 09, 2012 3:23 pm
by flipthetip
here's current config.

SERVER SIDE:

local XX.XXX.XX.XXX
port 9200
proto udp
dev tun
tun-mtu 1500
tun-mtu-extra 32
mssfix 1450
ca /etc/openvpn/easy-rsa/2.0/keys/ca.crt
cert /etc/openvpn/easy-rsa/2.0/keys/server.crt
key /etc/openvpn/easy-rsa/2.0/keys/server.key
dh /etc/openvpn/easy-rsa/2.0/keys/dh1024.pem
plugin /usr/share/openvpn/plugin/lib/openvpn-auth-pam.so /etc/pam.d/login
client-cert-not-required
username-as-common-name
server 10.8.0.0 255.255.255.0
push "redirect-gateway def1"
push "dhcp-option DNS 208.67.222.222"
push "dhcp-option DNS 4.2.2.1"
keepalive 5 30
comp-lzo
persist-key
persist-tun
status server.log
verb 3


CLIENT SIDE:

client
dev tun
proto udp
remote XX.XXX.XX.XXX 9200
keepalive 10 60
resolv-retry infinite
redirect-gateway def1
tun-mtu 1500
tun-mtu-extra 32
comp-lzo
mute 1
mute-replay-warnings
ping-timer-rem
lport 9203
mssfix 1450
persist-key
persist-tun
ca ca.crt
route-method exe
auth-user-pass password.txt
float
reneg-sec 0
verb 1
script-security 2 system
route-delay 2

about the changes.well new rollouts are normal,now all vpn clients that we currently use,cannot push thru.
even browsing the internet thru the vpn cannot be done since the IGMP changes. any suggestions?

Re: Openvpn config to allow IGMP traffic?

Posted: Tue Jan 10, 2012 7:18 am
by Mimiko
Your OpenVPN server has a real IP?
Could you post some traceroute to 8.8.8.8?
Could you post the logs from client and server?
Are the pushed DNS accesible from cleint? ie a nslookup.

Re: Openvpn config to allow IGMP traffic?

Posted: Tue Jan 10, 2012 10:59 am
by flipthetip
im not sure,how i can answer your questions.
but the logs are pretty normal.
still the same when things were still working, i can even go to my webmin page when im connected to the vpn,and i can also ping my IP.

i think this can be fixed thru some routing.
what do you guys think?
All times are UTC
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/