[OpenVPN home] [Date Prev] [Date Index] [Date Next]
[OpenVPN mailing lists] [Thread Prev] [Thread Index] [Thread Next]
Google
 
Web openvpn.net

[Openvpn-users] windows xp client with private address problem


  • Subject: [Openvpn-users] windows xp client with private address problem
  • From: "Bill Fung" <bill@xxxxxxxxx>
  • Date: Sat, 20 Oct 2007 18:11:29 +0800 (HKT)
  • Importance: Normal

Hi,

I have some problem with Windows openvpn client. The scenario follows:
0) background info:
xp's private ip : 192.168.0.2
xp's adsl public ip : 1.2.3.4

1) I have setup a openvpn server at office. At home, I connect my windows
xp  to a broadband router which connect to the adsl modem. I could browse
the Internet without problem. However, when I start the openvpn client,
after some negotiation, it stay at the yellow light forever.
Client's log follow:


Server's log follow:
Tue Oct 16 18:11:00 2007 1.2.3.4:4827 Re-using SSL/TLS context
Tue Oct 16 18:11:00 2007 1.2.3.4:4827 LZO compression initialized
Tue Oct 16 18:11:00 2007 1.2.3.4:4827 Control Channel MTU parms [ L:1574
D:138 EF:38 EB:0 ET:0 EL:0 ]
Tue Oct 16 18:11:00 2007 1.2.3.4:4827 Data Channel MTU parms [ L:1574
D:1450 EF:42 EB:135 ET:32 EL:0 AF:3/1 ]
Tue Oct 16 18:11:00 2007 1.2.3.4:4827 Local Options hash (VER=V4): 'f7df56b8'
Tue Oct 16 18:11:00 2007 1.2.3.4:4827 Expected Remote Options hash
(VER=V4): 'd79ca330'
Tue Oct 16 18:11:00 2007 1.2.3.4:4827 TLS: Initial packet from
152.101.48.35:4827, sid=19d7b445 6f4a584f

2) I suspect it is a problem of broadband router. So I connect my windows
xp DIRECTLY to the adsl modem without going thru a broadband router.
Everything work fine this time. I could connect to office's network (using
bridge mode).

3) Then I connect back the broadband router and set port mapping of port
4827 to 192.168.0.2 (xp's private ip). I start the openvpn client again
and there is no problem this time. I could connect to office's network
(bridge mode).

The openvpn server at office can connect openvpn client 's port 4827 at
scenario 2) means it is not a firewall problem. From scenario 3), it show
a port mapping of openvpn client's port work. Do it mean that the openvpn
will initiate a connection to the openvpn client's port (>1024)?

If it is the case, then it is a big problem. If I use notebook and travel
abroad and I want to connect to my office thru openvpn client, then how I
can ensure that there is port mapping at the hotel's broadband router?
Please kindly advise. Thanks.


Open VPN tester
JJ


______________________
OpenVPN mailing lists
https://lists.sourceforge.net/lists/listinfo/openvpn-users