openvpn woes

Andrew McNabb amcnabb at mcnabbs.org
Mon Nov 7 21:08:30 MST 2005


First, can you attach your config files (for both server and client)?
 
On Mon, Nov 07, 2005 at 07:45:13PM -0700, Michael Torrie wrote:
> I've tried to add a second machine to my vpn (from work) and I'm
> having difficulties.  If I connect, the work machine gets the expected
> IP address as set by the config file, but I can't ping anymore.

So the first machine can't ping the server anymore?

> Do all vpn connections (to the same server) share the same tun0 end-
> point ip address?  I was understanding that openvpn sets up p2p
> connections with an ip address at each end.  How does this work?  The
> docs are not clear.  Does each end-point have it's own tun device or
> do they all share on the server?

The server and client should each have exactly one tun device.  Each
client has its own address and its own peer address.  Here's how my
current connection is set up:

The server has IP 172.16.18.1 and its P-t-P is 172.16.18.2.  My client
has IP 172.16.18.6 and its P-t-P is 172.16.18.5.  Think of 172.16.18.2
as the server daemon address and 172.168.18.5 as the client daemon
address.

> Secondly I can't get dynamic address assignment to work. My linksys
> comes in and gets a static assignment (this is *not* using dhcp or
> bridged-mode; I'm using routing only).  When I try to get the work
> machine to merely get a dynamic address, the connection is made, but
> the tun0 on the client gets no address assigned to it (it's not even
> up).  The logs show a successful authentication.
> 

I think seeing the config would really help for this, if it wouldn't be
too much trouble.

-- 
Andrew McNabb
http://www.mcnabbs.org/andrew/
PGP Fingerprint: 8A17 B57C 6879 1863 DE55  8012 AB4D 6098 8826 6868
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 186 bytes
Desc: not available
Url : http://plug.org/pipermail/plug/attachments/20051107/28ed7a6b/attachment.bin 


More information about the PLUG mailing list