Openvpn Problem

Hello,


i have followed this tutorial
http://www.howtoforge.com/openvpn-server-on-centos-5.2
.. and i have an problem when i connect through openvpn-gui

Wed Jul 07 12:44:15 2010 TEST ROUTES: 0/0 succeeded len=2 ret=0 a=0 u/d=down
Wed Jul 07 12:44:15 2010 route ADD 192.168.168.0 MASK 255.255.255.0 172.16.0.5
Wed Jul 07 12:44:15 2010 Warning: route gateway is not reachable on any active network adapters: 172.16.0.5
Wed Jul 07 12:44:15 2010 Route addition via IPAPI failed
Wed Jul 07 12:44:15 2010 route ADD 172.16.0.0 MASK 255.255.255.0 172.16.0.5
Wed Jul 07 12:44:15 2010 Warning: route gateway is not reachable on any active network adapters: 172.16.0.5
Wed Jul 07 12:44:15 2010 Route addition via IPAPI failed
Wed Jul 07 12:44:15 2010 Initialization Sequence Completed With Errors ( see http://openvpn.net/faq.html#dhcpclientserv )



It is appears to be connected normally and appears assigned ip 172.16.0.6

but i can't ping any ip on the vpn network and i can't ping the openvpn ip server

I have completely disabled firewalls in both Openvpn server and client

Could you please help me .?



Thanks

 

Vpn

Hi,

Can you check if your server is listening on the port (netstat -ntpl) and can you telnet to the port from another machine on the LAN?

It could be a firewalling issue.

Regards

Cameron

 

Hello,

I have disabled all the firewalls on both Openvpn Server and Client and the same problem

 

Telnet?

Hi,

Can you telnet to the server on the LAN eg. from a PC on the same network:

# telnet <server> 1723

Also check you are pushing the correct routes from your openvpn server to the client. On the client if it's windows:

route print

and from linux # route -n

Also check if your network has a wins server you may have to uncomment that in your server conf...

Regards

Cameron

 

Routing

I noticed this in your error:

Wed Jul 07 12:44:15 2010 route ADD 192.168.168.0

This was my route at the time of writing but doubt it's yours too?

Probably 192.168.0.0 or 192.168.1.0 depending on what address range you have at your office and what your default gateway is.

Cameron

 

Hello,

I can connect via telnet with our problems

this is my route print

Code:

IPv4 Route Table

===========================================================================

Active Routes:

Network Destination        Netmask          Gateway       Interface  Metric

          0.0.0.0          0.0.0.0       10.0.0.138         10.0.0.3     20

         10.0.0.0    255.255.255.0         On-link          10.0.0.3    276

         10.0.0.3  255.255.255.255         On-link          10.0.0.3    276

       10.0.0.255  255.255.255.255         On-link          10.0.0.3    276

        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306

        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306

  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306

       172.16.0.4  255.255.255.252         On-link        172.16.0.6    286

       172.16.0.6  255.255.255.255         On-link        172.16.0.6    286

       172.16.0.7  255.255.255.255         On-link        172.16.0.6    286

        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306

        224.0.0.0        240.0.0.0         On-link        172.16.0.6    286

        224.0.0.0        240.0.0.0         On-link          10.0.0.3    276

  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306

  255.255.255.255  255.255.255.255         On-link        172.16.0.6    286

  255.255.255.255  255.255.255.255         On-link          10.0.0.3    276

===========================================================================

My Network Range is : 10.0.0.1 - 10.0.0.254
and Gateway is : 10.0.0.138

Could you please tell me what should i change in the server.conf .?

Thanks

 

route

Hi,

Maybe change this line to match your own network in the server conf:

push "route 192.168.168.0 255.255.255.0"

Maybe to 10.0.0.0 255.255.255.0

Try this and see....

Cameron

 

i have changed it to 10.0.0.0 255.0.0.0 and also i changed dhcp to push "dhcp-option DNS 10.0.0.138"

and it worked fine ..

Consider another client has range 192.168.1.2 to 192.168.1.254
and his gateway 192.168.1.1

should i change the push "route 192.168.168.0 255.255.255.0" for every client has a different gateway .?? or there is any thing to add arouting for a different gateways ?

Thanks alot

 

Routes

Hi,

I have not tried it for multiple routes but you may be able to add multiple routes in the server conf....

Cameron

 

Hello,
Realy i'm very Grateful to you , Could you please tell me how to connect to openvpn via linux centos and ubuntu ?

 

Centos & Ubuntu

Hi,

You just need to install openvpn via the repos:

Centos - # yum install openvpn (you might need the rpmforge repo)

Ubuntu - # sudo aptitude install openvpn

There should be an /etc/openvpn directory where you need to configure your client conf which there will be a sample of in /usr/share/docs/openvpn or somewhere similar.

On centos it will be started via /etc/init.d/openvpn start (also Ubuntu).

To start on boot you can use 'chkconfig openvpn on' and ubuntu I thing rc-update or something like that.

Good luck!

Cameron

 

Hello,

Thanks alot you are helpful , could you tell me how could i assign fixed ip for each client .?
like i want client1 >> 172.16.0.10
client2 >> 172.16.0.12
client3 >> 172.16.0.70
i want to specify ip for each client .. could this be done ?

OPenvpn server on Centos 5
and i have windows - linux clients

Thank you