[OpenVPN home] [Date Prev] [Date Index] [Date Next]
[OpenVPN mailing lists] [Thread Prev] [Thread Index] [Thread Next]
Google
 
Web openvpn.net

Re: [Openvpn-users] Re: Mystery of Openvpn


  • Subject: Re: [Openvpn-users] Re: Mystery of Openvpn
  • From: Davis Goodman <davis.goodman@xxxxxxxxxxxx>
  • Date: Wed, 08 Dec 2004 10:32:05 -0500

Hi Rick,

I have basically the same setup here and looking at your routing table one thing seems strange. On my setup, when I connect to the openvpn server the address for my default gateway is the address assigned by the openvpn server and not the default gateway of my firewall. Try using the "redirect-gateway" option in your client instead of route . Here is my config file which I use for the wireless connection. Of course, my server is 2.0beta15 as well as my client. But I think this is one of the problem you are seeing. I've also included a "route print" of my laptop once connected with openvpn on my wireless. As you can see I only have one default route which is the IP assigned from the server.

Let me know if this make sense.

Davis

#########################################
# Sample client-side OpenVPN config file
# for connecting to multi-client server.
#
# The server can be pinged at 10.XX.21.1.
#
# This configuration can be used by multiple
# clients, however each client should have
# its own cert and key files.
#
# tun-style tunnel

port 1194
proto tcp-client
dev tun
tun-mtu 1500
mssfix 1400
remote my.vpn.server
comp-lzo

# TLS parms

tls-client
ca ca.crt
cert my.crt
key my.key

# This parm is required for connecting
# to a multi-client server. It tells
# the client to accept options which
# the server pushes to us.
pull
redirect-gateway
verb 4



$ route print
===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 0d 56 e9 4d 4a ...... Broadcom 440x 10/100 Integrated Controller - Packet Scheduler Miniport
0x3 ...00 ff e1 05 f7 1f ...... TAP-Win32 Adapter V8 - Packet Scheduler Miniport
0x4 ...00 04 23 a4 38 58 ...... Intel(R) PRO/Wireless LAN 2100 3A Mini PCI Adapter - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 10.51.21.17 10.51.21.18 1
10.16.0.0 255.255.0.0 10.51.21.17 10.51.21.18 1
10.16.0.1 255.255.255.255 10.20.0.1 10.20.0.21 1
10.20.0.0 255.255.255.0 10.20.0.21 10.20.0.21 30
10.20.0.21 255.255.255.255 127.0.0.1 127.0.0.1 30
10.51.21.1 255.255.255.255 10.51.21.17 10.51.21.18 1
10.51.21.16 255.255.255.252 10.51.21.18 10.51.21.18 30
10.51.21.18 255.255.255.255 127.0.0.1 127.0.0.1 30
10.255.255.255 255.255.255.255 10.20.0.21 10.20.0.21 30
10.255.255.255 255.255.255.255 10.51.21.18 10.51.21.18 30
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
172.16.0.0 255.255.0.0 10.51.21.17 10.51.21.18 1
224.0.0.0 240.0.0.0 10.20.0.21 10.20.0.21 30
224.0.0.0 240.0.0.0 10.51.21.18 10.51.21.18 30
255.255.255.255 255.255.255.255 10.20.0.21 10.20.0.21 1
255.255.255.255 255.255.255.255 10.20.0.21 2 1
255.255.255.255 255.255.255.255 10.51.21.18 10.51.21.18 1
Default Gateway: 10.51.21.17
===========================================================================
Persistent Routes:
None
Tibbs, Richard wrote:


Well, I have made sure by using the “port 5000” directive in the Winxp openvpn config, which it says is the default anyway.

I have 2.15beta running on winxp, (no XP firewall or any other security agent running,) I have openvpn 1.6 running on my bering 1.2 leaf firewall. I have progressed this stage, by adding some extra policies to shorewall and the shorewall.log is empty, so there are no packets being thrown away by shorewall.

My goal is simply to secure the wireless lan with openvpn. So, I am trying to establish a tunnel between the wireless nic in my laptop(192.168.1.3) and the internal ip address of the firewall, 192.168.1.254.

The situation is that I cannot load a web page or even ping the 192.168.1.254 firewall IP. (BTW, everything from the wireless network was working fine until I installed openvpn.)

I apologize for the volume, below, but I think I need to give you as much info as possible if you are to help me.

(Please!).

I cannot understand what I need to do to make openvpn work….
Thanks in advance for any help. >>>> Rick.


--

____________________________________
*Davis Goodman*
Manager, QA & Support
400 Isabey
Montréal (Québec)
Canada H4T 1V3

Tel. : 514.335.9867 #3279
Cell. : 514.994.7360
Fax : 514.333.9873
davis.goodman <mailto:davis.goodman@xxxxxxxxxxxx>@algolith.com <mailto:davis.goodman@xxxxxxxxxxxx>
www.algolith.com <http://www.algolith.com/>



____________________________________________ Openvpn-users mailing list Openvpn-users@xxxxxxxxxxxxxxxxxxxxx https://lists.sourceforge.net/lists/listinfo/openvpn-users