[OpenVPN home] [Date Prev] [Date Index] [Date Next]
[OpenVPN mailing lists] [Thread Prev] [Thread Index] [Thread Next]
Google
 
Web openvpn.net

[Openvpn-users] openvpn netmask query

  • Subject: [Openvpn-users] openvpn netmask query
  • From: Jason Keltz <jas@xxxxxxxxxxx>
  • Date: Fri, 03 Jun 2005 15:23:23 -0400
I'm having a problem with the netmask on my OpenVPN setup and was hoping someone could help..

My netmask of 255.255.240.0 seems to get ignored?

The server/client start okay.

The client gets its address.

if I use ifconfig to look at "tun0" on the client I see:

tun0 Link encap:UNSPEC HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00
inet addr:172.16.16.107 P-t-P:172.16.16.1 Mask:255.255.255.255
UP POINTOPOINT RUNNING NOARP MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:100
RX bytes:0 (0.0 b) TX bytes:0 (0.0 b)

on the server I see:

tun0      Link encap:Point-to-Point Protocol
          inet addr:172.16.16.1  P-t-P:172.16.16.2  Mask:255.255.255.255
          UP POINTOPOINT RUNNING NOARP MULTICAST  MTU:1500  Metric:1
          RX packets:0 errors:0 dropped:0 overruns:0 frame:0
          TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:100
          RX bytes:0 (0.0 b)  TX bytes:0 (0.0 b)

I can ping between the hosts, but if I try to telnet between them, my firewall blocks me because it only allows in 172.16.0.0/20.

It looks like the netmask is not being set correctly..

As you can see, it is set in the server configuration file on the "route" line below.

It is set in the client by the connect script which returns to the client the following in this case:

"ifconfig-push 172.16.16.107 172.16.16.1 255.255.240.0"

server config:

tmp-dir /tmp
port 1194
proto udp
dev tun
writepid /var/run/openvpn-server.pid
ca /etc/openvpn/ca.crt
cert /etc/openvpn/server.crt
key /etc/openvpn/server.key
dh /etc/openvpn/dh1024.pem
mode server
tls-server
ifconfig 172.16.16.1 172.16.16.2
route 172.16.16.0 255.255.240.0
client-connect /etc/openvpn/connect
ser nobody
group nobody
persist-key
persist-tun

client config:

client
dev tun
proto udp
remote vpn1 1194
writepid /var/run/openvpn.pid
nobind
user nobody
group nobody
persist-key
persist-tun
ca /etc/openvpn/ca.crt
cert /etc/openvpn/client.crt
key /etc/openvpn/client.key
dh /etc/openvpn/dh1024.pem
ns-cert-type server
comp-lzo

any ideas?

thanks,
jas.

____________________________________________
Openvpn-users mailing list
Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/openvpn-users


Warning: require_once(../../../archive_common.php) [function.require-once]: failed to open stream: No such file or directory in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2005-06/msg00063.html on line 245

Fatal error: require_once() [function.require]: Failed opening required '../../../archive_common.php' (include_path='/usr/local/lib/php') in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2005-06/msg00063.html on line 245