[OpenVPN home] [Date Prev] [Date Index] [Date Next]
[OpenVPN mailing lists] [Thread Prev] [Thread Index] [Thread Next]
Google
 
Web openvpn.net

Re: [Openvpn-users] None hosts ping (possible routing problem?)

  • Subject: Re: [Openvpn-users] None hosts ping (possible routing problem?)
  • From: "David Balazic" <David.Balazic@xxxxxxxxxxxxxxxxxx>
  • Date: Tue, 11 Dec 2007 11:01:12 +0100
Title: [Openvpn-users] None hosts ping (possible routing problem?)
This seems completelly broken.
Does it even connect ?
 
remote 10.10.10.1 1742
this can not work, unless your client is on the same LAN or there is laready a VPN running.
 
David

From: openvpn-users-bounces@xxxxxxxxxxxxxxxxxxxxx on behalf of Pol Hallen
Sent: Mon 10-Dec-07 15:38
To: openvpn-users@xxxxxxxxxxxxxxxxxxxxx
Subject: [Openvpn-users] None hosts ping (possible routing problem?)

HI all :-)

My problem is that all clients doesn't ping other clients but server only
(vice-versa if I do a nmap -sP 10.10.10.* clients replies).

Is it a routing problem?

vpn config server:
port 1742
proto udp
dev tap
;dev-node tap0
ca ca.crt
cert server.crt
key server.key
dh dh1024.pem
server 10.10.10.0 255.255.255.0
ifconfig-pool-persist ipp.txt
push "route 10.10.10.0 255.255.255.0"
;duplicate-cn
keepalive 10 120
;cipher BF-CBC      
;cipher AES-128-CBC
;cipher DES-EDE3-CBC
comp-lzo
user nobody
group nobody
persist-key
persist-tun
;status openvpn-status.log
;log-append  openvpn.log
verb 10
mute 20
client-to-client
client-config-dir ccd "route 10.10.10.1 255.255.255.0"
ping-restart 0

ifconfig:
eth0      Link encap:Ethernet  HWaddr 00:15:F2:2A:AC:74
          inet addr:192.168.0.2  Bcast:192.168.0.255  Mask:255.255.255.0
          inet6 addr: fe80::215:f2ff:fe2a:ac74/64 Scope:Link
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:376324 errors:0 dropped:0 overruns:0 frame:0
          TX packets:357194 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:141256642 (134.7 MiB)  TX bytes:74325323 (70.8 MiB)

eth2      Link encap:Ethernet  HWaddr 00:60:08:6D:59:50
          inet addr:192.168.1.100  Bcast:192.168.1.255  Mask:255.255.255.0
          inet6 addr: fe80::260:8ff:fe6d:5950/64 Scope:Link
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:108734 errors:0 dropped:0 overruns:0 frame:0
          TX packets:136835 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:13942176 (13.2 MiB)  TX bytes:104518436 (99.6 MiB)
          Interrupt:217 Base address:0xde80

lo        Link encap:Local Loopback
          inet addr:127.0.0.1  Mask:255.0.0.0
          inet6 addr: ::1/128 Scope:Host
          UP LOOPBACK RUNNING  MTU:16436  Metric:1
          RX packets:28162 errors:0 dropped:0 overruns:0 frame:0
          TX packets:28162 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0
          RX bytes:5360422 (5.1 MiB)  TX bytes:5360422 (5.1 MiB)

tap0      Link encap:Ethernet  HWaddr B6:7A:90:16:13:79
          inet addr:10.10.10.1  Bcast:10.10.10.255  Mask:255.255.255.0
          inet6 addr: fe80::b47a:90ff:fe16:1379/64 Scope:Link
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:7808 errors:0 dropped:0 overruns:0 frame:0
          TX packets:5889 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:100
          RX bytes:513040 (501.0 KiB)  TX bytes:591577 (577.7 KiB)

route -n

Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
192.168.1.0     0.0.0.0         255.255.255.0   U     0      0        0 eth2
192.168.0.0     0.0.0.0         255.255.255.0   U     0      0        0 eth0
10.10.10.0      0.0.0.0         255.255.255.0   U     0      0        0 tap0
0.0.0.0         192.168.0.1     0.0.0.0         UG    0      0        0 eth0


And now, side client:

vpn config file:
remote 10.10.10.1 1742
client
dev tap
proto udp
#resolv-retry infinite # this is necessary for DynDNS
nobind
user nobody
group nobody
persist-key
persist-tun
ca ca.crt
cert client3.crt
key client3.key
comp-lzo
verb 4
mute 20

ifconfig
eth1      Link encap:Ethernet  HWaddr 00:0E:A6:C7:97:16
          inet addr:192.168.1.1  Bcast:192.168.1.255  Mask:255.255.255.0
          inet6 addr: fe80::20e:a6ff:fec7:9716/64 Scope:Link
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:19440 errors:0 dropped:0 overruns:0 frame:0
          TX packets:21519 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:13720891 (13.0 MiB)  TX bytes:4106955 (3.9 MiB)
          Interrupt:16 Base address:0xe400

lo        Link encap:Local Loopback
          inet addr:127.0.0.1  Mask:255.0.0.0
          inet6 addr: ::1/128 Scope:Host
          UP LOOPBACK RUNNING  MTU:16436  Metric:1
          RX packets:110 errors:0 dropped:0 overruns:0 frame:0
          TX packets:110 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0
          RX bytes:6121 (5.9 KiB)  TX bytes:6121 (5.9 KiB)

Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
192.168.1.0     0.0.0.0         255.255.255.0   U     0      0        0 eth1
0.0.0.0         192.168.1.100   0.0.0.0         UG    0      0        0 eth1

Pol

-------------------------------------------------------------------------
SF.Net email is sponsored by:
Check out the new SourceForge.net Marketplace.
It's the best place to buy or sell services for
just about anything Open Source.
http://sourceforge.net/services/buy/index.php
_______________________________________________
Openvpn-users mailing list
Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/openvpn-users