|
|
Sorry if this is a dumb question... I am having a couple of windows routing issues, (windows xp client, Linux Server) 1) server is telling to redirect-gateway, windows isn't doing it 2) when I ask it to route to a 10.X subnet after connection it doesn't route properly server.conf (snip) mode server tls-server ifconfig 10.7.0.201 10.7.0.202 route 10.7.0.200 255.255.255.248 client-config-dir ccd ccd-exclusive push "redirect-gateway" push "dhcp-option DNS 10.0.0.16" push "dhcp-option DNS 10.0.0.61" push "dhcp-option WINS 10.0.0.16" ccd/client1 ifconfig-push 10.7.0.203 10.7.0.201 push "route 10.0.0.0 255.255.255.0" push "route 10.1.0.0 255.255.255.0" push "route 10.2.0.0 255.255.255.0" push "route 10.3.0.0 255.255.255.0" push "route 10.4.0.0 255.255.255.0" push "route 10.5.0.0 255.255.255.0" push "route 10.6.0.0 255.255.255.0" when I connect with the OpenVPN GUI client on windows I get the following messages in my log: Fri Nov 03 14:59:52 2006 OpenVPN 2.0.7 Win32-MinGW [SSL] [LZO] built on Apr 12 2006 Fri Nov 03 15:00:00 2006 IMPORTANT: OpenVPN's default port number is now 1194, based on an official port number assignment by IANA. OpenVPN 2.0-beta16 and earlier used 5000 as the default port. Fri Nov 03 15:00:00 2006 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info. Fri Nov 03 15:00:00 2006 LZO compression initialized Fri Nov 03 15:00:00 2006 Control Channel MTU parms [ L:1574 D:138 EF:38 EB:0 ET:0 EL:0 ] Fri Nov 03 15:00:00 2006 Data Channel MTU parms [ L:1574 D:1450 EF:42 EB:135 ET:32 EL:0 AF:3/1 ] Fri Nov 03 15:00:00 2006 Local Options hash (VER=V4): 'd79ca330' Fri Nov 03 15:00:00 2006 Expected Remote Options hash (VER=V4): 'f7df56b8' Fri Nov 03 15:00:00 2006 UDPv4 link local: [undef] Fri Nov 03 15:00:00 2006 UDPv4 link remote: SNIP:1194 Fri Nov 03 15:00:00 2006 TLS: Initial packet from SNIP:1194, sid=ba8d7dc7 11bd275f Fri Nov 03 15:00:00 2006 VERIFY OK: depth=1, /C=CA/ST=ON/L=Toronto/O=Datawire_Comunication_Networks_Inc./OU=VPN-Cert/CN=VPN-CA/emailAddress=netops@xxxxxxxxxxxx Fri Nov 03 15:00:00 2006 VERIFY OK: depth=0, /C=CA/ST=ON/L=Toronto/O=Datawire_Comunication_Networks_Inc./CN=vpn.datawire.net/emailAddress=netops@xxxxxxxxxxxx Fri Nov 03 15:00:05 2006 WARNING: 'dev-type' is used inconsistently, local='dev-type tap', remote='dev-type tun' Fri Nov 03 15:00:05 2006 WARNING: 'link-mtu' is used inconsistently, local='link-mtu 1574', remote='link-mtu 1542' Fri Nov 03 15:00:05 2006 WARNING: 'tun-mtu' is used inconsistently, local='tun-mtu 1532', remote='tun-mtu 1500' Fri Nov 03 15:00:05 2006 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key Fri Nov 03 15:00:05 2006 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication Fri Nov 03 15:00:05 2006 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key Fri Nov 03 15:00:05 2006 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication Fri Nov 03 15:00:05 2006 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA Fri Nov 03 15:00:05 2006 [vpn.datawire.net] Peer Connection Initiated with 66.241.131.107:1194 Fri Nov 03 15:00:06 2006 SENT CONTROL [vpn.datawire.net]: 'PUSH_REQUEST' (status=1) Fri Nov 03 15:00:06 2006 PUSH: Received control message: 'PUSH_REPLY,redirect-gateway,dhcp-option DNS 10.0.0.16,dhcp-option DNS 10.0.0.61,dhcp-option WINS 10.0.0.16,ping 10,ping-restart 120,route 10.0.0.0 255.255.255.0,route 10.1.0.0 255.255.255.0,route 10.2.0.0 255.255.255.0,route 10.3.0.0 255.255.255.0,route 10.4.0.0 255.255.255.0,route 10.5.0.0 255.255.255.0,route 10.6.0.0 255.255.255.0,ifconfig 10.7.0.203 10.7.0.201' Fri Nov 03 15:00:06 2006 OPTIONS IMPORT: timers and/or timeouts modified Fri Nov 03 15:00:06 2006 OPTIONS IMPORT: --ifconfig/up options modified Fri Nov 03 15:00:06 2006 OPTIONS IMPORT: route options modified Fri Nov 03 15:00:06 2006 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified Fri Nov 03 15:00:06 2006 WARNING: Since you are using --dev tap, the second argument to --ifconfig must be a netmask, for example something like 255.255.255.0. (silence this warning with --ifconfig-nowarn) Fri Nov 03 15:00:06 2006 OpenVPN ROUTE: OpenVPN needs a gateway parameter for a --route option and no default was specified by either --route-gateway or --ifconfig options Fri Nov 03 15:00:06 2006 OpenVPN ROUTE: failed to parse/resolve route for host/network: 10.0.0.0 Fri Nov 03 15:00:06 2006 OpenVPN ROUTE: OpenVPN needs a gateway parameter for a --route option and no default was specified by either --route-gateway or --ifconfig options Fri Nov 03 15:00:06 2006 OpenVPN ROUTE: failed to parse/resolve route for host/network: 10.1.0.0 Fri Nov 03 15:00:06 2006 OpenVPN ROUTE: OpenVPN needs a gateway parameter for a --route option and no default was specified by either --route-gateway or --ifconfig options Fri Nov 03 15:00:06 2006 OpenVPN ROUTE: failed to parse/resolve route for host/network: 10.2.0.0 Fri Nov 03 15:00:06 2006 OpenVPN ROUTE: OpenVPN needs a gateway parameter for a --route option and no default was specified by either --route-gateway or --ifconfig options Fri Nov 03 15:00:06 2006 OpenVPN ROUTE: failed to parse/resolve route for host/network: 10.3.0.0 Fri Nov 03 15:00:06 2006 OpenVPN ROUTE: OpenVPN needs a gateway parameter for a --route option and no default was specified by either --route-gateway or --ifconfig options Fri Nov 03 15:00:06 2006 OpenVPN ROUTE: failed to parse/resolve route for host/network: 10.4.0.0 Fri Nov 03 15:00:06 2006 OpenVPN ROUTE: OpenVPN needs a gateway parameter for a --route option and no default was specified by either --route-gateway or --ifconfig options Fri Nov 03 15:00:06 2006 OpenVPN ROUTE: failed to parse/resolve route for host/network: 10.5.0.0 Fri Nov 03 15:00:06 2006 OpenVPN ROUTE: OpenVPN needs a gateway parameter for a --route option and no default was specified by either --route-gateway or --ifconfig options Fri Nov 03 15:00:06 2006 OpenVPN ROUTE: failed to parse/resolve route for host/network: 10.6.0.0 Fri Nov 03 15:00:06 2006 TAP-WIN32 device [vpn] opened: \\.\Global\{D974D172-0015-4A93-B9DF-1B834E0F08FF}.tap Fri Nov 03 15:00:06 2006 TAP-Win32 Driver Version 8.1 Fri Nov 03 15:00:06 2006 TAP-Win32 MTU=1500 Fri Nov 03 15:00:06 2006 Notified TAP-Win32 driver to set a DHCP IP/netmask of 10.7.0.203/10.7.0.201 on interface {D974D172-0015-4A93-B9DF-1B834E0F08FF} [DHCP-serv: 10.7.0.201, lease-time: 31536000] Fri Nov 03 15:00:06 2006 Successful ARP Flush on interface [3] {D974D172-0015-4A93-B9DF-1B834E0F08FF} Fri Nov 03 15:00:06 2006 TEST ROUTES: 0/0 succeeded len=0 ret=0 a=0 u/d=down Fri Nov 03 15:00:06 2006 Route: Waiting for TUN/TAP interface to come up... Fri Nov 03 15:00:07 2006 TEST ROUTES: 0/0 succeeded len=0 ret=0 a=0 u/d=down Fri Nov 03 15:00:07 2006 Route: Waiting for TUN/TAP interface to come up... Fri Nov 03 15:00:08 2006 TEST ROUTES: 0/0 succeeded len=0 ret=0 a=0 u/d=down Fri Nov 03 15:00:08 2006 Route: Waiting for TUN/TAP interface to come up... Fri Nov 03 15:00:09 2006 TEST ROUTES: 0/0 succeeded len=0 ret=0 a=0 u/d=down Fri Nov 03 15:00:09 2006 Route: Waiting for TUN/TAP interface to come up... Fri Nov 03 15:00:10 2006 TEST ROUTES: 0/0 succeeded len=0 ret=1 a=0 u/d=up Fri Nov 03 15:00:10 2006 NOTE: unable to redirect default gateway -- VPN gateway parameter (--route-gateway or --ifconfig) is missing Fri Nov 03 15:00:10 2006 Initialization Sequence Completed ______________________ OpenVPN mailing lists https://lists.sourceforge.net/lists/listinfo/openvpn-users Warning: require_once(../../../archive_common.php) [function.require-once]: failed to open stream: No such file or directory in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2006-11/msg00032.html on line 328 Fatal error: require_once() [function.require]: Failed opening required '../../../archive_common.php' (include_path='/usr/local/lib/php') in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2006-11/msg00032.html on line 328 |