|
|
El Lunes, 27 de Febrero de 2006 18:46, Iker Amescua escribió: Finally I have discovered and solved the problem. This traffic problem was originated by bad file (device) permissions. Although ifconfig showed eth0 was in promisc mode it wasn't, so no packets were received by the bridge. Now with this issue solved it works flawlessly. > Hello > > I am using openvpn in bridged configuration between my local lan (eth0 and > tap0) running o a dedicated Suse linux 9.3. The insecure side of this box > (from clients connect to) is another ethernet lan eth1 (i comes from a wifi > AP). > > The conecction establishes without any error and I can ping from client to > the vpn gateway and viceversa, but I cant ping any lan computer from the > client. If I ping from the client to lan I get arp who-has requests but in > the bridge and in the lan, but no response from any computer. So I have > concluded client is unable to resolve lan macs, but lan is able to resolve > client macs. > > In the other way if I ping from the lan to the client the mac is resolved, > in the lan machine and in the client, but no response at all. Client > receives the echo request but the response does not arrive to the lan. > > Another strange thing is that I am using a dhcp server to configure client > IP address and the server is in another machine in the lan, so I can guess > that the comunication between lan <-> client works until ip address is > asigned to client. Just after the ip lease, if I look arp tables in the > client it shows dhcp server's mac and ip, but again no traffic. > > I think there is something blocking traffic in the gateway. I cant figure > what. I have disabled firewall, unloaded iptables kernel modules and > activated ip forwarding. Also tried iptables command from the bridge-howto > without luck. > > I have tested with latest openvpn 2.0 and beta 2.1. The client is running > windows xp pro. The stangest thing is that there is a moment where > communication between lan and client works on dhcp negotiation, but after > that nothing. The dhcp server used is ISC dhcpd. "brctl showmacs br0" shows > all mac addresses without problems. For configuring the bridge I am using > the bridge-start script from documentation. The kernel I have tried are > built by Suse, exactly versions linux-2.6.11.4-21.9 and > linux-2.6.11.4-21.7. > > Any ideas? Bad bridge configuration? Should I enable something > in /proc/sys/net? > > Any advice would be wellcomed. Thanks in advance. > > > ------------------------------------------------------- > This SF.Net email is sponsored by xPML, a groundbreaking scripting language > that extends applications into web and mobile media. Attend the live > webcast and join the prime developer group breaking into this new coding > territory! > _______________________________________________ > Openvpn-users mailing list > Openvpn-users@xxxxxxxxxxxxxxxxxxxxx > https://lists.sourceforge.net/lists/listinfo/openvpn-users ------------------------------------------------------- This SF.Net email is sponsored by xPML, a groundbreaking scripting language that extends applications into web and mobile media. Attend the live webcast and join the prime developer group breaking into this new coding territory! Openvpn-users mailing list Openvpn-users@xxxxxxxxxxxxxxxxxxxxx https://lists.sourceforge.net/lists/listinfo/openvpn-users Warning: require_once(../../../archive_common.php) [function.require-once]: failed to open stream: No such file or directory in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2006-03/msg00006.html on line 240 Fatal error: require_once() [function.require]: Failed opening required '../../../archive_common.php' (include_path='/usr/local/lib/php') in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2006-03/msg00006.html on line 240 |