[OpenVPN home]	[Date Prev]	[Date Index]	[Date Next]
[OpenVPN mailing lists]	[Thread Prev]	[Thread Index]	[Thread Next]

Re: [Openvpn-users] Can't ping, can't resolve DNS after openvpn connection established.

Subject: Re: [Openvpn-users] Can't ping, can't resolve DNS after openvpn connection established.
From: sam wun <sam.wun@xxxxxxxxxxx>
Date: Sat, 23 Oct 2004 09:28:03 +0800

Mathias Sundman wrote:

On Sat, 23 Oct 2004, sam wun wrote:
It seems this is the old problem. But since everyone have different network setup, mine is slightly different than others. After the openvpn connection established, I can't ping the orginal gateway address192.168.4.254, nslookup failed as well.
Here is my openvpn (2.0 Beta14) setup (in the pushing side)"
push "ping 10"
push "ping-restart 60"
push "persist-key"
push "redirect-gateway"
push "route-gateway 172.16.0.1"
#push "dhcp-option DNS 172.16.0.1"
#push "dhcp-option WINS 172.16.0.1"
push "dhcp-option DNS 192.168.4.254"
push "dhcp-option WINS 192.168.4.254"
push "route delete 192.168.4.0 255.255.255.0"
push "route 192.168.4.0 255.255.255.0"
push "ip-win32 dynamic"
push "dhcp-option NBT 8"
push "dhcp-option DOMAIN myserver.com"
Tap configuration in server: tap0: flags=8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1500 inet6 fe80::2bd:d7ff:fe32:0%tap0 prefixlen 64 scopeid 0xa inet 172.16.0.1 netmask 0xffffff00 broadcast 172.16.0.255 ether 00:bd:d7:32:00:00 Opened by PID 14471
Server IP: 192.168.4.254
Gateway config at Server: 192.168.4.254
Windows client network:
IP: 192.168.4.235
I think the follow two rows are what causing you problems:
push "route delete 192.168.4.0 255.255.255.0"
push "route 192.168.4.0 255.255.255.0"
If I understand your setup correctly, you are trying to tell the client to delete the route for the local network subnet he is connected to. You can't do this (as far as I know). It breaks the fundamental rules of IP networking.

The same subnet that the client is connected to must not exist behind your openvpn gateway.

Opps.. thanks. I forgot about this. I have changed the routing to another subnet: push "route delete 192.168.9.0 255.255.255.0" push "route 192.168.9.0 255.255.255.0"

and added firewall rule allows traffic in and out on port 53 with proto tcp/udp Now, it gets better, the client (192.168.4.235) use nslookup on the name server 192.168.4.254, but the client still unable to browse the Internet thru the Openvpn tunnel.

Thanks
Sam.

____________________________________________
Openvpn-users mailing list
Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/openvpn-users

References:
- [Openvpn-users] Can't ping, can't resolve DNS after openvpn connection established.
  - From: sam wun
- Re: [Openvpn-users] Can't ping, can't resolve DNS after openvpn connection established.
  - From: Mathias Sundman

Prev by Date: Re: [Openvpn-users] Connection reset, restarting [-1] without reason(?)
Next by Date: [Openvpn-users] mtu/mssfix issues, ssl, ...
Previous by thread: Re: [Openvpn-users] Can't ping, can't resolve DNS after openvpn connection established.
Next by thread: [Openvpn-users] Connection reset, restarting [-1] without reason(?)
Index(es):
- Date
- Thread