I hope u can help me to figure out why my openvpn is not working. Currently i have virtualized nethserver 7.5 with vnics (red,green). I’ve installed openvpn and configured this way:
Not sure if it’s normal. I’ve set port forwarding on my router but I don’t see 1194 port listening from outside of my network.
This is what I get from logs:
Fri Dec 14 11:04:29 2018 NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Fri Dec 14 11:04:29 2018 Diffie-Hellman initialized with 1024 bit key
Fri Dec 14 11:04:29 2018 ROUTE_GATEWAY 192.168.0.1/255.255.255.0 IFACE=ens192 HWADDR=00:0c:29:aa:47:f2
Fri Dec 14 11:04:29 2018 TUN/TAP device tunrw opened
Fri Dec 14 11:04:29 2018 TUN/TAP TX queue length set to 100
Fri Dec 14 11:04:29 2018 do_ifconfig, tt->did_ifconfig_ipv6_setup=0
Fri Dec 14 11:04:29 2018 /sbin/ip link set dev tunrw up mtu 1500
Fri Dec 14 11:04:29 2018 /sbin/ip addr add dev tunrw local 192.168.1.1 peer 192.168.1.2
Fri Dec 14 11:04:29 2018 /sbin/ip route add 192.168.1.0/24 via 192.168.1.2 RTNETLINK answers: File exists
Fri Dec 14 11:04:29 2018 ERROR: Linux route add command failed: external program exited with error status: 2
Fri Dec 14 11:04:29 2018 Could not determine IPv4/IPv6 protocol. Using AF_INET
Fri Dec 14 11:04:29 2018 Socket Buffers: R=[212992->212992] S=[212992->212992]
Fri Dec 14 11:04:29 2018 UDPv4 link local (bound): [AF_INET][undef]:1194
Fri Dec 14 11:04:29 2018 UDPv4 link remote: [AF_UNSPEC]
Fri Dec 14 11:04:29 2018 MULTI: multi_init called, r=256 v=256
Fri Dec 14 11:04:29 2018 IFCONFIG POOL: base=192.168.1.4 size=62, ipv6=0
Fri Dec 14 11:04:29 2018 ifconfig_pool_read(), in='', TODO: IPv6
Fri Dec 14 11:04:29 2018 IFCONFIG POOL LIST
Fri Dec 14 11:04:29 2018 Initialization Sequence Completed
Something that I don’t understand very well is the following the range of my network is 192.168.0.X so to configure the VPN it needs 2 vnics in my understanding and also request a different IP range. Needs an extra config? Any Ip route is created for that? because i don’t see it on the nethserver
Starting Nmap 6.40 ( http://nmap.org ) at 2018-12-18 10:07 -03
Nmap scan report for localhost (127.0.0.1)
Host is up.
PORT STATE SERVICE
1194/udp open|filtered openvpn
Let’s try leaving empty the “Reserved IP”, “Network Address” and “Network mask” in “Roadwarrior account”
Whch is the Operating System of the client? If it’s Windows, remember to launch the OpenVPN Client in administrative mode (click with the right button of the mouse on the OpenVPN Client icon, then select “Start as administrator”) otherwise OpenVPN Client isn’t able to create the correct route to the server.