[OpenVPN home] [Date Prev] [Date Index] [Date Next]
[OpenVPN mailing lists] [Thread Prev] [Thread Index] [Thread Next]
Google
 
Web openvpn.net

[Openvpn-users] Odd Tunnel Problems

  • Subject: [Openvpn-users] Odd Tunnel Problems
  • From: AthlonRob <AthlonRob@xxxxxxxx>
  • Date: Mon, 06 Oct 2003 19:33:05 -0700
Hello-

I'm trying to VPN to my box at home from campus.

I get in, but have some strange problems once I'm connected.  A little
background:  OpenVPN is running on a box behind my iptables-based
firwall, all systems involved are linux.  The OpenVPN box is bridging
the connection to two pre-existing Ethernet connections, so everything
is utilizing Tap rather than TUN.  The bridging box is running OpenVPN
1.4.3 and kernel 2.4.20.  The laptop is running OpenVPN 1.4.2 and kernel
2.6.0-test6.

I set up the VPN connection on both ends, it connected, and I added tap0
to the br0 bridge.  After perhaps 15-20 seconds of running pings through
the bridge to let it figure everything out, packets were going through
without any problems... ICMP packets, anyway.

I was then able to ssh about, to the bridge box and then to the firewall
through the bridge box, as if my laptop were plugged in to the LAN
itself.  Perfect, I thought.

I then opened up my mail client and tried to connect to my IMAP server
(running on the 'firewall') - it would make an initial connection, but
would hang before any data went accross.  I then fired up slrn (leafnode
is also running on the 'firewall') ... it connected, downloaded new
groups, got a new message count, but then wouldn't go any further, it
just hung until the connection timed out.

None of the interfaces involved, eth0, br0, or tap0 on the bridged
box... and tap0 on the laptop... showed any dropped packets or errors. 
The protocols just wouldn't work.  I tried, then, running /sbin/ifconfig
from the firewall/server and the SSH connection froze halfway through
printing the MAC address.

Any idea what might be up with this?  MTU problem, maybe?  I don't know
what the symptoms of that would be... or how it might relate to the tap0
interface being bridged....

I'm going to be back trying to get it working again tomorrow if anybody
has any hints!  :-)

-- 
Rob                                |  If not safe,
   Jabber: athlonrob at axpr.net   |    one can never be free.



____________________________________________
Openvpn-users mailing list
Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/openvpn-users