Cannot access computers on network when on VPN

MarianH · July 17, 2016, 1:30pm

Hi there,

I was wondering if you’ve ever went through a similar experience. I have problem accessing computers on LAN, when I am connected via VPN (Road warrior setup).

NS is my gateway. I can ping as well as access the remote computer shared folder via IP.
I can ping NS from the remote computer. I can access a samba shared folder on NS. The remote computer external IP address is shown correctly - routed via NS and my VPN network is listed among ‘trusted networks’.

The problem is, when I am working on the remote computer through VPN, I do not see any computers in the network area, only mine - remote computer. As well I cannot access nor ping any of the computers in the LAN.
I have checked both ‘Route all client traffic through VPN’ and ‘Allow client-to-client network traffic’.

Do you have any idea what else could I try?

I desperately need access to a computer that serves as a data server and it is in the LAN.

NS green IP is 192.168.10.1, servers as well as DHCP
Data server IP is 192.168.10.2
VPN is on 10.10.0.0
forgotten to add - I am connected through a certificate only (no username and/or passwd)
there is no domain created, workgroup only

Thank you a lot!

jgjimenezs · July 17, 2016, 1:40pm

you have activated these options? In advanced

Regards

MarianH · July 17, 2016, 1:41pm

Yes, I did.

jgjimenezs · July 17, 2016, 1:48pm

It is strange, I can see all my customer network through the vpn

you can send us a screenshot

jgjimenezs · July 17, 2016, 1:57pm

NethServer and your station are in the same workgroup?

MarianH · July 17, 2016, 1:59pm

Yes, they are.
Here are the screenshots

I’ve checked that in 2 separate devices (mobile phone & computer) with 2 differente certificates, so for sure it is not an issue of e.g. computer firewall.

jgjimenezs · July 17, 2016, 3:30pm

I’ll do some tests

MarianH · July 17, 2016, 7:09pm

Starring at the settings … I was just wondering. What would be the expected settings for DNS and for the gateway.
I have 8.8.4.4 & 8.8.8.8 and the gateway is 192.168.10.1

jgjimenezs · July 17, 2016, 7:25pm

in my case, my modem is also router and I don’t delivery public IP address, then my ns is Gateway is the IP address of my router 192.168.1.1 and Gateway of my stations would be the IP my ns

MarianH · July 17, 2016, 7:28pm

Yes, that’s exactly my setup. So probably the issue is not in that.

jgjimenezs · July 17, 2016, 8:46pm

in client stations, you manually configure the vpn link? or you exported the template from nethserver

MarianH · July 18, 2016, 3:50am

If you mean that .ovpn thing, then I’ve exported it from the NS. The only thing I did afterwards was, that I edited the .ovpn file, but only the ‘port’ part (related to other topic where you replied to me as well)

jgjimenezs · July 18, 2016, 10:12am

I’ve replicated your configuration using only certified.

I downloaded all certificates

Pinging from my vpn to my client station

josegjimenez@HARD:~$ ping 192.168.3.245
PING 192.168.3.245 (192.168.3.245) 56(84) bytes of data.
64 bytes from 192.168.3.245: icmp_seq=1 ttl=63 time=78.7 ms
64 bytes from 192.168.3.245: icmp_seq=2 ttl=63 time=77.4 ms
^C
— 192.168.3.245 ping statistics —
2 packets transmitted, 2 received, 0% packet loss, time 1001ms
rtt min/avg/max/mdev = 77.482/78.109/78.737/0.686 ms
josegjimenez@HARD:~$ ping 192.168.3.246
PING 192.168.3.246 (192.168.3.246) 56(84) bytes of data.
64 bytes from 192.168.3.246: icmp_seq=1 ttl=63 time=86.0 ms
64 bytes from 192.168.3.246: icmp_seq=2 ttl=63 time=86.0 ms
^C
— 192.168.3.246 ping statistics —
2 packets transmitted, 2 received, 0% packet loss, time 1001ms
rtt min/avg/max/mdev = 86.054/86.055/86.057/0.293 ms
josegjimenez@HARD:~$ ping 192.168.3.14
PING 192.168.3.14 (192.168.3.14) 56(84) bytes of data.
64 bytes from 192.168.3.14: icmp_seq=1 ttl=64 time=82.3 ms
64 bytes from 192.168.3.14: icmp_seq=2 ttl=64 time=77.1 ms
^C
— 192.168.3.14 ping statistics —
2 packets transmitted, 2 received, 0% packet loss, time 1001ms
rtt min/avg/max/mdev = 77.165/79.765/82.366/2.615 ms
josegjimenez@HARD:~$ ping 192.168.3.13
PING 192.168.3.13 (192.168.3.13) 56(84) bytes of data.
64 bytes from 192.168.3.13: icmp_seq=1 ttl=127 time=78.0 ms
64 bytes from 192.168.3.13: icmp_seq=2 ttl=127 time=77.4 ms
^C
— 192.168.3.13 ping statistics —
2 packets transmitted, 2 received, 0% packet loss, time 1001ms
rtt min/avg/max/mdev = 77.426/77.739/78.053/0.419 ms

Pinging from the server to my client, to the ip vpn assigned to my station

Regards

MarianH · July 18, 2016, 4:47pm

Jose, … maybe stupid question … where is this screenshot from pls.?

I downloaded OpenVPN 2.3.11-I601, but it doesn’t seem to have those options. I can import there the .ovpn file only, but it is not asking me about any certificates or keys. That’s why I was downloading the .ovpn only.

Thank you.

jgjimenezs · July 18, 2016, 5:01pm

sorry is a example from ubuntu station.

MarianH · July 18, 2016, 5:38pm

Hmm … well, than it makes no difference. I still cannot select the .pem
So probably I’ll have to re-install the whole thing. Probably something happened when installed and set-up and now it is not working properly.

jgjimenezs · July 18, 2016, 5:40pm

what are you gonna to reinstall?

MarianH · July 18, 2016, 5:42pm

Reinstall the NS and set it up from the scratch. I unfortunately do not have any idea how could I fix it.

alefattorini · July 19, 2016, 9:37am

Ehi have you sorted it out?

jgjimenezs · July 19, 2016, 9:45am

I think not NethServer problem, checked the client