[OpenVPN home] [Date Prev] [Date Index] [Date Next]
[OpenVPN mailing lists] [Thread Prev] [Thread Index] [Thread Next]
Google
 
Web openvpn.net

Re: [Openvpn-users] Re: Help tunneling internet connection over VPN TAP connection.


  • Subject: Re: [Openvpn-users] Re: Help tunneling internet connection over VPN TAP connection.
  • From: Christopher Omega <omegaworks@xxxxxxxxx>
  • Date: Tue, 18 Jan 2005 18:43:55 -0600

The server pushes the redirect-gateway directive to the client
already.  I believe the client successfully processes it too, the
problem is in the very wierd responce in my client log file:

Tue Jan 18 18:24:31 2005 us=280730 Current Parameter Settings:
<parameters omitted>
Tue Jan 18 18:24:31 2005 us=285698 OpenVPN 2.0_rc1 Win32-MinGW [SSL]
[LZO] built on Dec  6 2004
Tue Jan 18 18:24:31 2005 us=298157 LZO compression initialized
Tue Jan 18 18:24:31 2005 us=298368 Control Channel MTU parms [ L:1576
D:140 EF:40 EB:0 ET:0 EL:0 ]
Tue Jan 18 18:24:31 2005 us=348280 Data Channel MTU parms [ L:1576
D:1450 EF:44 EB:19 ET:32 EL:0 ]
Tue Jan 18 18:24:31 2005 us=348396 Local Options String: 'V4,dev-type
tap,link-mtu 1576,tun-mtu 1532,proto TCPv4_CLIENT,comp-lzo,cipher
BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Tue Jan 18 18:24:31 2005 us=348437 Expected Remote Options String:
'V4,dev-type tap,link-mtu 1576,tun-mtu 1532,proto
TCPv4_SERVER,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method
2,tls-server'
Tue Jan 18 18:24:31 2005 us=348482 Local Options hash (VER=V4): '31fdf004'
Tue Jan 18 18:24:31 2005 us=348516 Expected Remote Options hash
(VER=V4): '3e6d1056'
Tue Jan 18 18:24:31 2005 us=348566 Attempting to establish TCP
connection with 68.75.177.14:8080
Tue Jan 18 18:24:31 2005 us=386117 TCP connection established with
68.75.177.14:8080
Tue Jan 18 18:24:31 2005 us=386221 Socket Buffers: R=[8192->8192] S=[8192->8192]
Tue Jan 18 18:24:31 2005 us=386260 TCPv4_CLIENT link local: [undef]
Tue Jan 18 18:24:31 2005 us=386285 TCPv4_CLIENT link remote: 68.75.177.14:8080
Tue Jan 18 18:24:31 2005 us=923738 TLS: Initial packet from
68.75.177.14:8080, sid=c461866a a9d68723
Tue Jan 18 18:24:32 2005 us=457665 VERIFY OK: depth=1,
/C=us/ST=Illinois/L=Chicago/O=N/a/CN=omegaworks.no-ip.org/emailAddress=omegaworks@xxxxxxxxx
Tue Jan 18 18:24:32 2005 us=459112 VERIFY OK: nsCertType=SERVER
Tue Jan 18 18:24:32 2005 us=459141 VERIFY OK: depth=0,
/C=us/ST=Illinois/O=N/a/CN=Francisco_Vincent_Saldana/emailAddress=omegaworks@xxxxxxxxx
Tue Jan 18 18:24:33 2005 us=535313 Data Channel Encrypt: Cipher
'BF-CBC' initialized with 128 bit key
Tue Jan 18 18:24:33 2005 us=535397 Data Channel Encrypt: Using 160 bit
message hash 'SHA1' for HMAC authentication
Tue Jan 18 18:24:33 2005 us=535479 Data Channel Decrypt: Cipher
'BF-CBC' initialized with 128 bit key
Tue Jan 18 18:24:33 2005 us=535508 Data Channel Decrypt: Using 160 bit
message hash 'SHA1' for HMAC authentication
Tue Jan 18 18:24:33 2005 us=535720 Control Channel: TLSv1, cipher
TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
Tue Jan 18 18:24:33 2005 us=535778 [Francisco_Vincent_Saldana] Peer
Connection Initiated with 68.75.177.14:8080
Tue Jan 18 18:24:34 2005 us=692815 SENT CONTROL
[Francisco_Vincent_Saldana]: 'PUSH_REQUEST' (status=1)
Tue Jan 18 18:24:34 2005 us=935802 PUSH: Received control message:
'PUSH_REPLY,redirect-gateway def1,dhcp-option DNS
206.141.192.60,dhcp-option DNS 206.141.193.55,route-gateway
192.168.1.2,ping 10,ping-restart 120,ifconfig 192.168.1.51
255.255.255.0'
Tue Jan 18 18:24:34 2005 us=935949 OPTIONS IMPORT: timers and/or
timeouts modified
Tue Jan 18 18:24:34 2005 us=935973 OPTIONS IMPORT: --ifconfig/up
options modified
Tue Jan 18 18:24:34 2005 us=935995 OPTIONS IMPORT: route options modified
Tue Jan 18 18:24:34 2005 us=936016 OPTIONS IMPORT: --ip-win32 and/or
--dhcp-option options modified
Tue Jan 18 18:24:35 2005 us=39425 TAP-WIN32 device [OpenVPN] opened:
\\.\Global\{ADE5A39E-8B33-4E6A-B7A8-9A364B1185CC}.tap
Tue Jan 18 18:24:35 2005 us=39512 TAP-Win32 Driver Version 8.1 
Tue Jan 18 18:24:35 2005 us=39539 TAP-Win32 MTU=1500
Tue Jan 18 18:24:35 2005 us=39573 Notified TAP-Win32 driver to set a
DHCP IP/netmask of 192.168.1.51/255.255.255.0 on interface
{ADE5A39E-8B33-4E6A-B7A8-9A364B1185CC} [DHCP-serv: 192.168.1.0,
lease-time: 31536000]
Tue Jan 18 18:24:35 2005 us=39610 DHCP option string: 0608ce8d c03cce8d c137
Tue Jan 18 18:24:35 2005 us=114158 NOTE: could not get adapter index
for \DEVICE\TCPIP_{ADE5A39E-8B33-4E6A-B7A8-9A364B1185CC}, status=55 :
The specified network resource or device is no longer available.
Tue Jan 18 18:24:35 2005 us=128271 TEST ROUTES: 0/1 succeeded len=0
ret=0 a=0 u/d=up
Tue Jan 18 18:24:35 2005 us=128342 Route: Waiting for TUN/TAP
interface to come up...
<snip, above two messages repeated several times>
Tue Jan 18 18:25:04 2005 us=652046 route ADD 68.75.177.14 MASK
255.255.255.255 10.10.1.1
Tue Jan 18 18:25:04 2005 us=660487 Route addition via IPAPI succeeded
Tue Jan 18 18:25:04 2005 us=660571 route ADD 0.0.0.0 MASK 128.0.0.0 192.168.1.2
Tue Jan 18 18:25:04 2005 us=668946 Warning: route gateway is not
reachable on any active network adapters: 192.168.1.2
Tue Jan 18 18:25:04 2005 us=669017 Route addition via IPAPI failed
Tue Jan 18 18:25:04 2005 us=669047 route ADD 128.0.0.0 MASK 128.0.0.0
192.168.1.2
Tue Jan 18 18:25:04 2005 us=676116 Warning: route gateway is not
reachable on any active network adapters: 192.168.1.2
Tue Jan 18 18:25:04 2005 us=676203 Route addition via IPAPI failed
Tue Jan 18 18:25:04 2005 us=676232 Initialization Sequence Completed With Errors

On Tue, 18 Jan 2005 09:00:41 -0600, Charles Duffy <cduffy@xxxxxxxxxxx> wrote:
> On Tue, 18 Jan 2005 00:44:30 -0600, Christopher Omega wrote:
> > I want to be able to send all network communication from my client
> > through the VPN, even internet requests.
> 
> This is what the redirect-gateway directive is for. It's documented in the
> man page.
> 
> Also, for future reference: When posting an OpenVPN config file that you
> based on the sample to the list, please remove any and all comments that
> you didn't add yourself. For those of us who are already familiar w/ the
> information in the sample config file's inline documentation, they just
> make it much longer and harder to read.
> 
> (Actually, you may find it useful to strip out the sample documentation
> for your own use anyhow -- it makes for a much terser and easier-to-skim
> file -- and rely on the man page, which is the canonical reference source,
> when looking up directives).
> _______________________________________________
> Openvpn-users mailing list
> Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
> https://lists.sourceforge.net/lists/listinfo/openvpn-users
>


-------------------------------------------------------
The SF.Net email is sponsored by: Beat the post-holiday blues
Get a FREE limited edition SourceForge.net t-shirt from ThinkGeek.
It's fun and FREE -- well, almost....http://www.thinkgeek.com/sfshirt
_______________________________________________
Openvpn-users mailing list
Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/openvpn-users