Problems Open Vpn

jimmyc · July 1, 2016, 9:25pm

Hi everybody, please I have a few weeks ago
configurated a Open Vpn in my nethserver 6.8, it’s
worked very well, I connected from my laptop with open vpn
client and could to use my PC in a lan of my work, also from my android and I was to do ping successful with any pc on the lan. I use road warrior mode and user, password and cert.

By now, I log in successful from of my laptop with open vpn client, but I can’t connect to the remote computer, in the panel control (nethserver) is also displayed how connected, However I do not have ping with any computer.

Wath do you thing??

jgjimenezs · July 3, 2016, 11:35pm

Hi @jimmyc you have made any changes to the OpenVPN server?

you have these options selected?

Regards

jimmyc · July 27, 2016, 4:01pm

Hello, please excuse me see your message recently. I commented that I have checked the options you mean and not work. I can connect to the vpn but I can not access to my network lan, I can not even ping. what do you think?

Thanks,

Nas · July 29, 2016, 7:32pm

@jimmyc
Please share some log files, also please restart the Firewall.

signal-event firewall-adjust

jimmyc · July 29, 2016, 10:03pm

Hi,

/var/log/openvpn/host-to-net-status.log

OpenVPN CLIENT LIST
Updated,Fri Jul 29 16:46:07 2016
Common Name,Real Address,Bytes Received,Bytes Sent,Connected Since
jaimecastillo,xxx.xxx.xx.254:55785,31997,3803,Fri Jul 29 16:40:37 2016
ROUTING TABLE
Virtual Address,Common Name,Real Address,Last Ref
10.10.1.6,jaimecastillo,xxx.xxx.xx.254:55785,Fri Jul 29 16:45:07 2016
GLOBAL STATS
Max bcast/mcast queue length,0
END

///

Servidor OpenVPNModoEnrutadoAutenticaciónContraseña y certificadoRango de IP10.10.1.0 / 255.255.255.0Puerto UDP1194NombreDirección realDirección virtualTráfico Conectado desdeAccionesjaimecastilloxxx.xxx.xx.254:5578510.10.1.60.05 MBFri Jul 29 16:40:37 2016Matar

Thank you

alefattorini · August 2, 2016, 8:59am

@Nas do you have time to help @jimmyc ? @EddieA @harry and @Hunv will likely have some insights here too

Hunv · August 2, 2016, 9:57am

Can you ping the Nethserver?
What is the output of tracert <Your Destination IP> (i.e.tracert 192.168.111.25) ?

jimmyc · August 2, 2016, 3:12pm

Yes I have ping, I have too connect to Nethserver with IP Public since my laptop or my android. But not have ping with the ip of eth0 (private) and any IP of the Lan, but nevertheless in the panel control Nethserver (server open vpn) appear how connected with direction virtual 10.10.1.6

The tracert, It does not end even at 30 hops.

Also, in statics routes, I have: 10.10.1.0 / 255.255.255.0 and IP eth0

Thank you,

harry · August 3, 2016, 4:41am

One thing wasn’t clear to me. Are you pinging the computers on your LAN with their IP addresses, or with their names? If you haven’t tried the IP addresses, do so. If IP addresses work, but not names, then you probably have a DNS configuration problem.

Unfortunately, I am not in a position to be able to try to debug your configuration, however I am happy to supply the settings that work for me. I access my OpenVPN server using both Windows 10 PCs and an Android device. Both connect reliably pretty much every time.

My Nethserver and client device configurations are described below:

My Nethserver is configured with two interfaces:
Eth1: Ethernet connection to the Internet via cable modem that gets a DHCP address from my cable service provider. This
Eth0: IP addr=10.20.30.1 (this is the LAN side)

DNS servers are 10.20.30.1 (Primary) and the secondary is my ISP’s primary DNS server.

Every host on my LAN has an IP reservation on the IP Reservation tab of DHCP.

Every host I want to ping or access on my LAN has an entry on the Hosts tab of DNS.

My Open VPN configuration is as follows:

The accounts are listed on the Accounts tab of VPN. I chose to use separate accounts for VPN access from other accounts, but this should not matter.

On the Open VPN tab of VPN, I have Enable road warrior server selected. Mine is configured for certificate (no username/password required), but I have used userid/password and both before.

Mode is Routed mode

Network is 10.11.12.0
Netmask is 255.255.255.0

Under advanced I have:
Route all client traffic through VPN and
Allow client-to-client network traffic.

Enable LZO compression is checked
UDP port is 1194 (this is the default)

On my PC I downloaded the Windows installer from the community page at openvpn.net and installed it.

I exported the file for my userid on Nethserver and put it in the directory in accordance with the OpenVPN.net instructions.

On my Android device, I use a paid app named OpenVPN Client from colucci-web.it, and followed the instructions to install the files needed for my userid.

jimmyc · August 3, 2016, 9:29pm

Yes, my settings are also similar to yours, everything was fine until a few weeks ago, but for no apparent reason stopped working the vpn, I don’t know what is the problem.

Thank you

filippo_carletti · August 3, 2016, 10:16pm

On NethServer, run
tcpdump -nn -p -i tun0
while running ping from your laptop.

jimmyc · August 5, 2016, 2:14am

Hi, this is the result:

while running ping

And while I try to connect to a PC network (Lan)

Thank you,