Re: [Openvpn-users] openvpn test install (almost)

[Ed Thomson <ethomson@xxxxxxxxxxxx>]

Disclaimer: I've had my openvpn bridge work for approximately one day 
now, and I don't really know what I'm talking about, but it sounds like 
your configuration is intended to be a lot like mine.  So, hopefully my 
advice isn't complete garbage:

I suspect you've followed the instructions at 
http://openvpn.net/bridge.html which worked well for me.

Your tap0 on your server won't get an IP -- bridging removes the IPs 
from the interfaces you're bridging, since you only have one IP address 
for the whole of the bridge.  br0 will show the IP address that the two 
interfaces on the bridge are using.

You mention that br0 is 192.168.1.101 -- I would think it would need to 
be 10.8.0.4 to work with your setup.  You want to bridge the VPN network 
(tap0) with the network you want the client to get to (and be assigned 
IPs from) -- if that's the 192.168.1 network, then you should 
server-bridge 192.168.1 addresses instead of 10.8.0. addresses.  If 
you've got a 10.8.0. network on the machine you're trying to VPN, you 
should bridge over that interface instead of the interface that's 
attached to 192.168.1.

My setup was that I have a single machine (not a network) that I want to 
VPN to, and I want to use bridging to get to that machine because I want 
broadcast/multicast.  If you're in a similar place, I suggest you do 
this:  setup dummy0 on the server with 10.8.0.1 and setup the bridge 
over tap0 and dummy0 instead of tap0 and eth0.  (Just change any 
occurances of eth0 to dummy0 in the bridge howto.)

Hope this helps...

-Ed

ashley maher wrote:
> I'm attempting to build a test vpn using openvpn2 and Ubuntu.
>
> I have installed bridge-utils and openvpn2 using apt.
>
> I modified /etc/network/interfaces as the example in bridge-utils.
>
> I generated certificates fine. For testing I am using the supplied test
> certificates.
>
> Both the server and client appear to start properly. (I modded the
> example config files minimally for bridging.) Using the bridging howto.
>
> In the server config file is the line:
> server-bridge 10.8.0.4 255.255.255.0 10.8.0.50 10.8.0.100
>
> According to the man page that sets the gateway and the ip range for the
> clients.
>
> The client does pick up 10.8.0.50 on the tap0. (Which br0 is
> 192.168.1.101 so the ip must come from the server as expected.)
>
> However on the server there is no ip on tap0. So I'm guessing that is
> why no tunnel.
>
> I've tried several things.
>
> Ideas, comments, url's to pages great fully received.
>
> Regards,
>
> Ashley
>
>
>
> -------------------------------------------------------
> SF.Net email is Sponsored by the Better Software Conference & EXPO
> September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices
> Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA
> Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf
> _______________________________________________
> Openvpn-users mailing list
> Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
> https://lists.sourceforge.net/lists/listinfo/openvpn-users

____________________________________________
Openvpn-users mailing list
Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/openvpn-users