|
|
I've spoken with a guy that works with the equipment that I'm trying to manage through the VPN tunnel. He looked at the configuration of that equipment and he says that it looks good. He says that it's the problem with the VPN not passing the data. He says that it might be a problem with configuring the VPN. Below is my server and client config files. Could anyone look at it and tell me if I'm missing something. I don't have a single firewall on any of the machines on the network, so I don't think it's a firewall issue. I tried googling the problem but it looks like I'm the only one that's trying to pass SNMP over VPN. Thank you... SERVER CONFIGURATION FILE ----------------------------------- port 1194 proto udp dev tun ca /usr/local/openvpn/keys/ca.crt cert /usr/local/openvpn/keys/serv.crt key /usr/local/openvpn/keys/server.key dh /usr/local/openvpn/keys/dh1024.pem server 10.13.38.0 255.255.255.0 ifconfig-pool-persist /usr/local/openvpn/ipp.txt push "route 10.11.38.0 255.255.255.0" keepalive 10 120 comp-lzo user nobody group nobody persist-key persist-tun status /usr/local/openvpn/openvpn-status.log verb 4 CLIENT CONFIGURATION FILE ----------------------------------- client dev tun proto udp remote 10.1.1.25 1194 resolv-retry infinite persist-key persist-tun ca "C:\\OpenVPN\\config\\ca.crt" cert "C:\\OpenVPN\\config\\client_john.crt" key "C:\\OpenVPN\\config\\client_john.key" comp-lzo verb 4 --- Edson <4lists@xxxxxxxxx> wrote: > Did You already check You firewall rules? If every > other traffic is running > thought just not SNMP, than I would beginning with > firewall checkings... > > Sure You have to be able to send traffic/packets, > throught the tunnel, to > ports 161/udp (see Your SNMP.conf on the target > machine) to be able to send > queries and to receive traffic/packets to port > 162/udp (again see Your SNMP > configs) to receive traps message. > > Edson. > > > -----Original Message----- > > From: openvpn-users-admin@xxxxxxxxxxxxxxxxxxxxx > [mailto:openvpn-users- > > admin@xxxxxxxxxxxxxxxxxxxxx] On Behalf Of ... ... > > Sent: terça-feira, 4 de abril de 2006 10:55 > > To: Bob Hannent; Open VPN Forum > > Subject: Re: [Openvpn-users] snmp over vpn > > > > All the firewalls are off. > > > > I'm working with somebody else on the issue. He > > suggested that I make sure that I have access to > port > > 61 to and from the VPN tunnel. How do I do that? > > > > rob > > > > --- Bob Hannent <bob@xxxxxxxxxxx> wrote: > > > > > Jon Bendtsen wrote: > > > > Den mandag 3.apr kl. 22:27 skrev ... ...: > > > > > > > >> This is my configuration. I added the line: > > > >> > > > >> push "10.20.38.0 255.255.255.0" > > > >> > > > >> I can ping the device and all other devices > > > across the > > > >> VPN tunnel. I can access an ssh server on the > LAN > > > side > > > >> of the VPN server. But the SNMP traffic is > not > > > passing > > > >> through my VPN tunnel. I configured all the > > > devices to > > > >> pass the traffic to my VPN server. But I > don't > > > think > > > >> that's the problem since I can ping across > VPN. > > > Any > > > >> other ideas? Thanks. > > > > > > > > use a network sniffer and see what happens to > the > > > SNMP traffic. > > > > Isnt SNMP normal regular IP traffic? Do you > use a > > > proxy? or some > > > > SOCKS for this? > > > > > > > SNMP should be UDP, I can only imagine this is a > > > firewall issue, you > > > need to do some TCPDumps to see where the data > isn't > > > arriving. > > > > > > Bob > > > > > > > > > > > > ------------------------------------------------------- > > > This SF.Net email is sponsored by xPML, a > > > groundbreaking scripting language > > > that extends applications into web and mobile > media. > > > Attend the live webcast > > > and join the prime developer group breaking into > > > this new coding territory! > > > > > > > > > _______________________________________________ > > > Openvpn-users mailing list > > > Openvpn-users@xxxxxxxxxxxxxxxxxxxxx > > > > > > https://lists.sourceforge.net/lists/listinfo/openvpn-users > > > > > > > > > __________________________________________________ > > Do You Yahoo!? > > Tired of spam? Yahoo! Mail has the best spam > protection around > > http://mail.yahoo.com > > > > > > > ------------------------------------------------------- > > This SF.Net email is sponsored by xPML, a > groundbreaking scripting > > language > > that extends applications into web and mobile > media. Attend the live > > webcast > > and join the prime developer group breaking into > this new coding > > territory! > > > > > _______________________________________________ > > Openvpn-users mailing list > > Openvpn-users@xxxxxxxxxxxxxxxxxxxxx > > > https://lists.sourceforge.net/lists/listinfo/openvpn-users > > > > ------------------------------------------------------- > This SF.Net email is sponsored by xPML, a > groundbreaking scripting language > that extends applications into web and mobile media. > Attend the live webcast > and join the prime developer group breaking into > this new coding territory! > > _______________________________________________ > Openvpn-users mailing list > Openvpn-users@xxxxxxxxxxxxxxxxxxxxx > https://lists.sourceforge.net/lists/listinfo/openvpn-users > __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com ____________________________________________ Openvpn-users mailing list Openvpn-users@xxxxxxxxxxxxxxxxxxxxx https://lists.sourceforge.net/lists/listinfo/openvpn-users Warning: require_once(../../../archive_common.php) [function.require-once]: failed to open stream: No such file or directory in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2006-04/msg00061.html on line 378 Fatal error: require_once() [function.require]: Failed opening required '../../../archive_common.php' (include_path='/usr/local/lib/php') in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2006-04/msg00061.html on line 378 |