Unsolved OpenVPN issues
-
[root@openvpn ~]# iptables -S -P INPUT ACCEPT -P FORWARD ACCEPT -P OUTPUT ACCEPT -A INPUT -p udp -m state --state NEW -m udp --dport 1194 -j ACCEPT -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT -A INPUT -p icmp -j ACCEPT -A INPUT -i lo -j ACCEPT -A INPUT -p tcp -m state --state NEW -m tcp --dport 22 -j ACCEPT -A INPUT -j REJECT --reject-with icmp-host-prohibited -A FORWARD -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT -A FORWARD -s 10.8.0.0/24 -i tun0 -o eth0 -m conntrack --ctstate NEW -j ACCEPT -A FORWARD -j REJECT --reject-with icmp-host-prohibited -
you can't ping 10.8.0.1 or 10.0.1.165?
There are few things to check:
On server, check if ip forwarding is on: cat /proc/sys/net/ipv4/ip_forward
On Windows 10, try to disable firewall and check if OpenVPN GUI is run as administrator. -
@triple9 said in OpenVPN issues:
you can't ping 10.8.0.1 or 10.0.1.165?
There are few things to check:
On server, check if ip forwarding is on: cat /proc/sys/net/ipv4/ip_forward
On Windows 10, try to disable firewall and check if OpenVPN GUI is run as administrator.Nope can't ping 10.8.0.1 or 10.0.1.165
Will check firewall and ip_forward in the morning
-
Should also say tried connecting with my android phone.
Again seems to connect but no ping either way -
[root@openvpn ~]# cat /proc/sys/net/ipv4/ip_forward
1
[root@openvpn ~]# -
Update the Visio Diagram as I should of mentioned the OpenVPN server is not the main gateway/router it's just a VM on the network.
-
@hobbit666 said in OpenVPN issues:
;comp-lzo
you have different settings for compression in server (disabled) and client (enabled) conf. I believe this could be your problem.
-
Sure I've now disabled on both
still the same. -
you did restart openvpn server?
Last thing that comes to my mind is to disable firewall on server (for test only) or to add
iptables -A INPUT -i tun+ -j ACCEPTto allow all traffic coming to tun interface.
For further troubleshooting I would need log files.
-
My plan is to leave this for now, and pick it up again in a week when I get a Micro PC set-up that I can install at home and remote onto it and play.
At the moment I have to wait to get home with a laptop to try other things lol
Thanks for the help so far @triple9
-
hmmmmm hate it when this happens. Followed a different guide that looks the same (will post the link Monday), and its all working well what I've tested. I can get on the network and ping everything and RDP onto the DC via IP but not name but that's down to DNS servers I know that lol.
-
@hobbit666 glad to hear it works
-
in the server.conf try add the below parameter:
client-to-clientthen restart the OpenVPN service , now all OpenVPN clients will ping each others.
