[OpenVPN home] [Date Prev] [Date Index] [Date Next]
[OpenVPN mailing lists] [Thread Prev] [Thread Index] [Thread Next]
Web openvpn.net

[Openvpn-users] openvpn on OS X connectivity problems

  • Subject: [Openvpn-users] openvpn on OS X connectivity problems
  • From: David Zentgraf <deceze@xxxxxxxxx>
  • Date: Wed, 19 Sep 2007 12:09:05 +0900


I'm trying to set up a VPN to a Mac OS X machine. I installed the tun/ 
tap driver from http://www-user.rhrk.uni-kl.de/~nissler/tuntap/  
(tuntap_tiger_20060513.tar.gz) and openvpn 2.0.9 via MacPorts. The  
router in front of the server if forwarding UDP port 1194 to the  
server, which is on its subnet. On startup the log gives me:

TUN/TAP device /dev/tun0 opened
/sbin/ifconfig tun0 mtu 1500 netmask up
/sbin/route add -net
    add net gateway
IFCONFIG POOL: base= size=62
Initialization Sequence Completed

On the client (another Mac) I'm using the app from http:// 
The client is on its net, and the log there gives me:

[server] Peer Connection Initiated with 125.xxx.xx.x:1194
SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
PUSH: Received control message: 'PUSH_REPLY
TUN/TAP device /dev/tun1 opened
/sbin/ifconfig tun1 mtu 1500 netmask up
tun1 1500 1542 init
/sbin/route add -net
Initialization Sequence Completed

And some corresponding messages on the server:

219.xx.xxx.xx:56887 [kk.local] Peer Connection Initiated with  
kk.local/219.xx.xxx.xx:56887 MULTI: Learn: -> kk.local/ 
kk.local/219.xx.xxx.xx:56887 MULTI: primary virtual IP for kk.local/ 
kk.local/219.xx.xxx.xx:56887 PUSH: Received control message:  
kk.local/219.xx.xxx.xx:56887 SENT CONTROL [kk.local]:  
'PUSH_REPLY,route,ping 15,ping-restart  
120,ifconfig' (status=1)

The problem is that pings don't go through either way, nor is there  
any hostname resolution happening ('ping kk.local' gives me an  
'unknown hostname'). Oddly enough I can see the client popping up in  
the servers network discovery (via Bonjour I suppose), but trying to  
access it, again, results in an "unknown host". Neither machines are  
firewalled themselves, both have to go through a router that's  
firewalling though (with a port forward to the server in place). Do I  
have to do a port forward on the client side as well? Do I need to  
open for TCP traffic as well? I combed through the FAQ but couldn't  
find anything that seemed relevant to me.

Any help would be much appreciated.
OpenVPN mailing lists