[OpenVPN home] [Date Prev] [Date Index] [Date Next]
[OpenVPN mailing lists] [Thread Prev] [Thread Index] [Thread Next]
Google
 
Web openvpn.net

[Openvpn-users] help for a newbie


  • Subject: [Openvpn-users] help for a newbie
  • From: "santiago campillos" <scampillos@xxxxxxxxxxxxxxx>
  • Date: Fri, 18 May 2007 22:56:18 +0200

First of all: sorry for my bad english
I would like to do:
office-road warrior
 
 
If i  only use secret key office-road warrior it works perfectly
but when i use certificates it doesn´t work
must i do anything more with certificates ?? I have read almost all the examples in the web, i try them, but never works.
Here is the example server
tls-server

port 1194

proto udp

dev tun

dh dh1024.pem

ca ca.crt

cert SERVER.crt

key SERVER.key

 

server 10.8.0.0 255.255.255.0

ifconfig-pool-persist ipp.txt

#keep tunnel open by ping

push "ping 10"

push "ping-restart 60"

push "route 192.168.126.0 255.255.255.0" #route to company network

client-to-client

#ping 10

#ping-restart 120

cipher DES-EDE3-CBC

comp-lzo

persist-key

persist-tun

status openvpn-status.log

verb 5

and client
 

client

#pull

#port 1194 #udp by default

proto udp

dev tun

##remote is the openvpn-server

remote x.x.x.x 1194

resolv-retry infinite

nobind

tls-client

persist-key

persist-tun

ca ca.crt

cert fani.crt

key fani.key

pull

comp-lzo

verb 4

it seems ok ??
i have a ftp inside my lan in 192.168.126.24. (road-warrior connect perfectly with a secret key)
i have add a route in my server like this:
route add 10.8.0.1 255.255.255.0 192.168.126.23(gateway for lan).
Road warrior seems to connect to ftp(ftp log show this), but gives a error, like it can found the route to road-warrior(i think)
If i try to make ping to 10.8.0.1 from roadwarrior or from the server to vpn ip road warrior doesnt reply
Firewalls are off in both sides.
I am using win2003(server) winxp(client).(it was installed)
 
 
Please help me.
Thanks
Santiago Campillos