[OpenVPN home] [Date Prev] [Date Index] [Date Next]
[OpenVPN mailing lists] [Thread Prev] [Thread Index] [Thread Next]
Google
 
Web openvpn.net

[Openvpn-users] openvpn on OS X connectivity problems


  • Subject: [Openvpn-users] openvpn on OS X connectivity problems
  • From: David Zentgraf <deceze@xxxxxxxxx>
  • Date: Wed, 19 Sep 2007 12:09:05 +0900

Hi,

I'm trying to set up a VPN to a Mac OS X machine. I installed the tun/ 
tap driver from http://www-user.rhrk.uni-kl.de/~nissler/tuntap/  
(tuntap_tiger_20060513.tar.gz) and openvpn 2.0.9 via MacPorts. The  
router in front of the server if forwarding UDP port 1194 to the  
server, which is 10.0.1.198 on its subnet. On startup the log gives me:

[...]
gw 10.0.1.1
TUN/TAP device /dev/tun0 opened
[...]
/sbin/ifconfig tun0 10.8.0.1 10.8.0.2 mtu 1500 netmask  
255.255.255.255 up
/sbin/route add -net 10.8.0.0 10.8.0.2 255.255.255.0
    add net 10.8.0.0: gateway 10.8.0.2
[...]
IFCONFIG POOL: base=10.8.0.4 size=62
[...]
Initialization Sequence Completed


On the client (another Mac) I'm using the app from http:// 
www.tunnelblick.net.
The client is 198.168.1.13 on its net, and the log there gives me:

[...]
[server] Peer Connection Initiated with 125.xxx.xx.x:1194
SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
PUSH: Received control message: 'PUSH_REPLY
gw 192.168.1.1
TUN/TAP device /dev/tun1 opened
[...]
/sbin/ifconfig tun1 10.8.0.6 10.8.0.5 mtu 1500 netmask  
255.255.255.255 up
/Applications/Tunnelblick.app/Contents/Resources/client.up.osx.sh  
tun1 1500 1542 10.8.0.6 10.8.0.5 init
/sbin/route add -net 10.8.0.0 10.8.0.5 255.255.255.0
Initialization Sequence Completed


And some corresponding messages on the server:

[...authentication...]
219.xx.xxx.xx:56887 [kk.local] Peer Connection Initiated with  
219.xx.xxx.xx:56887
kk.local/219.xx.xxx.xx:56887 MULTI: Learn: 10.8.0.6 -> kk.local/ 
219.xx.xxx.xx:56887
kk.local/219.xx.xxx.xx:56887 MULTI: primary virtual IP for kk.local/ 
219.xx.xxx.xx:56887: 10.8.0.6
kk.local/219.xx.xxx.xx:56887 PUSH: Received control message:  
'PUSH_REQUEST'
kk.local/219.xx.xxx.xx:56887 SENT CONTROL [kk.local]:  
'PUSH_REPLY,route 10.8.0.0 255.255.255.0,ping 15,ping-restart  
120,ifconfig 10.8.0.6 10.8.0.5' (status=1)


The problem is that pings don't go through either way, nor is there  
any hostname resolution happening ('ping kk.local' gives me an  
'unknown hostname'). Oddly enough I can see the client popping up in  
the servers network discovery (via Bonjour I suppose), but trying to  
access it, again, results in an "unknown host". Neither machines are  
firewalled themselves, both have to go through a router that's  
firewalling though (with a port forward to the server in place). Do I  
have to do a port forward on the client side as well? Do I need to  
open for TCP traffic as well? I combed through the FAQ but couldn't  
find anything that seemed relevant to me.

Any help would be much appreciated.
______________________
OpenVPN mailing lists
https://lists.sourceforge.net/lists/listinfo/openvpn-users