Openvpn - configuring

[Adrian-J]

Hoesit All,

I am having such a problem getting openvpn to work properly using dyndns...
ports/firewall open i.e 1194. 500 n 1723

Whats working : local
ping, ssh , http

Whats not working: remote
ping, http


Linux Version:
Linux ninja.kungfu 2.6.35.11-83.fc14.i686 #1 SMP Mon Feb 7 07:04:18 UTC 2011 i686 i686 i386 GNU/Linux

Service starts up fine
Here is my server.conf ...
#mode server
local 192.168.0.4
port 1194
proto udp
#dev tun
dev tap

ca /etc/openvpn/ca.crt
cert /etc/openvpn/server.crt
key /etc/openvpn/server.key
dh /etc/openvpn/dh1024.pem

server-bridge 192.168.0.4 255.255.255.0 192.168.0.200 192.168.0.254

push "redirect-gateway"
push "dhcp-option DNS 192.168.0.1"
#push "dhcp-option DNS 192.168.1.5"
#client-to-client
#push "route 192.168.0.1 255.255.255.0"

keepalive 10 120
comp-lzo
persist-key
persist-tun
status server-udp_status.log
verb 3

TIA,
A

 

[koffiejunkie]

What happens/doesn't happen? What do the logs say? What does netstat say? Have you added a NAT rule to your firewall?

 

[Adrian-J]

What happens/doesn't happen? What do the logs say? What does netstat say? Have you added a NAT rule to your firewall?

Hoesit Koffiejunkie, wtf, i typed out a long lekker reply and hit Post, computer says no

firewall rules are in place, dyndns settings to all everything...
i netstat | grep the life out out prost and names and it resturns nothing.

SSH from remote site works, but if you ping it it does not respond
http does not work...

this is a log status from the openvpn client, there are some clues,,, forgive me, i am not a network OPs techie...
Thu Mar 24 13:34:00 2011 TEST ROUTES: 2/2 succeeded len=1 ret=1 a=0 u/d=up
Thu Mar 24 13:34:00 2011 route ADD 196.210.*?*.*?* MASK 255.255.255.255 192.168.1.230
Thu Mar 24 13:34:00 2011 Route addition via IPAPI succeeded
Thu Mar 24 13:34:00 2011 route DELETE 0.0.0.0 MASK 0.0.0.0 192.168.1.230
Thu Mar 24 13:34:00 2011 Route deletion via IPAPI succeeded
Thu Mar 24 13:34:00 2011 route ADD 0.0.0.0 MASK 0.0.0.0 192.168.0.4
Thu Mar 24 13:34:00 2011 Route addition via IPAPI succeeded
Thu Mar 24 13:34:00 2011 route ADD 192.168.0.4 MASK 255.255.255.0 192.168.0.4
Thu Mar 24 13:34:00 2011 Warning: address 192.168.0.4 is not a network address in relation to netmask 255.255.255.0
Thu Mar 24 13:34:00 2011 ROUTE: route addition failed using CreateIpForwardEntry: The parameter is incorrect. [if_index=4]
Thu Mar 24 13:34:00 2011 Route addition via IPAPI failed
Thu Mar 24 13:34:00 2011 Initialization Sequence Completed

TIA,
A

 

[Rocket-Boy]

Can I ask why you are running it in bridge mode?
I prefer running it as a separate IP range personally.
I dont have much experience with it in bridge mode but it looks like a routing issue. If you connect a local client to it using an internal IP does that work?
If it does then the only thing can be the external forwarding or routing issues.

If you are connecting with a linux client on the remote side then try to run it with: openvpn client.conf and see what the output of that is.

 

[koffiejunkie]

Hoesit Koffiejunkie, wtf, i typed out a long lekker reply and hit Post, computer says no

LOL

Thu Mar 24 13:34:00 2011 route ADD 192.168.0.4 MASK 255.255.255.0 192.168.0.4

I don't understand this. Why are your route destination and gateway cannot be the same. What are you trying to do here?