[OpenVPN home] [Date Prev] [Date Index] [Date Next]
[OpenVPN mailing lists] [Thread Prev] [Thread Index] [Thread Next]
Google
 
Web openvpn.net

Re: [Openvpn-users] multiple client routed server configuration help please

  • Subject: Re: [Openvpn-users] multiple client routed server configuration help please
  • From: Tyler Retzlaff <list@xxxxxxxxxxxxxxxxxxxx>
  • Date: Wed, 06 Apr 2005 19:29:56 +1000
Tyler Retzlaff wrote:
I'm currently trying to setup a multi-client server under openvpn 2.0. But the documentation in the 2.0 howto is a little bit confusing.

My server configuration is as follows:

# /etc/openvpn/server.conf
mode server
server 172.16.1.0 255.255.255.0
port 1194
proto udp
dev tun
client-config-dir /etc/openvpn/ccd
keepalive 10 120
comp-lzo
user nobody
group nobody

# /etc/openvpn/ccd/testclient
ifconfig-push 172.16.1.1 172.16.1.2
iroute 172.16.1.0 255.255.255.0


Yep, I managed to reverse the IP's here so that explains ~everything.


My client configuration is as follows:
/etc/openvpn/client.conf
client
dev tun0
proto udp
remote 10.0.0.5 1194 # 10.0.0.5 being the openvpn server
user nobody
group nobody
persist-key
persist-tun
ns-cert-type server
comp-lzo

The following interfaces appear on my server and client when I start openvpn on each of them respectively.
Server
tun0 Link encap:Point-to-Point Protocol
inet addr:172.16.1.1 P-t-P:172.16.1.2 Mask:255.255.255.255
UP POINTOPOINT RUNNING NOARP MULTICAST MTU:1500 Metric:1

Client
tun0 Link encap:UNSPEC HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00
inet addr:172.16.1.1 P-t-P:172.16.1.2 Mask:255.255.255.255
UP POINTOPOINT RUNNING NOARP MULTICAST MTU:1500 Metric:1

1. The first question I have here is why is the VPN inet address the same for both the client and server?
2. Also, why is there a PTP address specified? Should it be PTP even in multi-client mode?
3. I am suffering from the MULTI: bad source address from client [172.16.1.1] when I ping the server from the client. I have specified an iroute as described in the FAQ but this hasn't resolved the issue. I should also mention that the FAQ says the iroute should be "192.168.100.0/24" (class C) but I have also tried /30 since that appears to be what the ifconfig-push sets up for the client.

Could someone share their working server and clients configuration for multiple-clients server setup, that would be a great help.

For reference the following routes exist on the client and server after openvpn is started.
Server
Destination Gateway Genmask Flags MSS Window irtt Iface
172.16.1.2 0.0.0.0 255.255.255.255 UH 0 0 0 tun0
172.16.1.0 172.16.1.2 255.255.255.0 UG 0 0 0 tun0

Client
Destination Gateway Genmask Flags MSS Window irtt Iface
172.16.1.1 172.16.1.2 255.255.255.255 UGH 0 0 0 tun0
172.16.1.2 * 255.255.255.255 UH 0 0 0 tun0

Thanks


-------------------------------------------------------
SF email is sponsored by - The IT Product Guide
Read honest & candid reviews on hundreds of IT Products from real users.
Discover which products truly live up to the hype. Start reading now.
http://ads.osdn.com/?ad_id=6595&alloc_id=14396&op=click
_______________________________________________
Openvpn-users mailing list
Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/openvpn-users



____________________________________________
Openvpn-users mailing list
Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/openvpn-users


Warning: require_once(../../../archive_common.php) [function.require-once]: failed to open stream: No such file or directory in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2005-04/msg00069.html on line 260

Fatal error: require_once() [function.require]: Failed opening required '../../../archive_common.php' (include_path='/usr/local/lib/php') in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2005-04/msg00069.html on line 260