Results 1 to 8 of 8
  1. #1
    Newbie
    Join Date
    Oct 2007
    Posts
    7

    Default OpenVPN Routing Problem

    Hi all, I'm new to untangle and I'm currently testing it to replace our smoothwall box. I'm trying to set up an OpenVPN connection, but running into trouble. I followed the steps on the Wiki, here's my current setup.

    Untangle Server 10.0.0.10 netmask 255.0.0.0, Remote network 192.168.69.0 netmaks 255.255.255.0

    Exported Hosts - IP address: 10.0.0.0, Netmask 255.0.0.0
    Address Pool - IP address 176.16.16.0 Netmask 255.255.255.0
    VPN Client - Address 176.16.16.5

    I'm able to connect to the VPN fine with a WinXP SP2 client, but I can't ping anything once I'm connected, Ipconfig for the TAP interface shows

    IP Address: 172.16.16.5
    Subnet Mask: 255.255.255.252
    Default Gateway:
    DHCP Server: 176.16.16.6
    DNS Servers: 10.0.0.10

    Any ideas why my exported network isn't visible?

  2. #2
    Untangle Ninja Silver Bullet's Avatar
    Join Date
    Sep 2007
    Posts
    2,008

    Default

    Are you pinging by name or IP Address?

    Can you ping 176.16.16.6?

    If you are pinging by IP Address and still not able to get a response from the 10.0.0.0/8 network then my first guess would be that you have the firewall on and you haven't set any rules to allow the 176.16.16.0/24 network to communicate with your 10.0.0.0/8 network.

    That's just my guess so far. If this isn't the case then post back with a little more info like what modules you have installed etc. I'm sure someone will be able to help you get it sorted.

  3. #3
    Newbie
    Join Date
    Oct 2007
    Posts
    7

    Default

    I'm pinging by IP, tried to ping every IP I can think of, and the only one that responds is my own.
    Can't ping 176.16.16.6, disabled all firewalls to no avail. I've got all the free modules installed, but the only ones activated are Router and OpenVPN

    Here's the routing table for the client
    Code:
    ===========================================================================
    Interface List
    0x1 ........................... MS TCP Loopback interface
    0x2 ...00 18 de 05 49 2c ...... Intel(R) PRO/Wireless 3945ABG Network Connection
     - Packet Scheduler Miniport
    0x20003 ...00 ff 00 5a 46 03 ...... TAP-Win32 Adapter V8 - Packet Scheduler Mini
    port
    ===========================================================================
    ===========================================================================
    Active Routes:
    Network Destination        Netmask          Gateway       Interface  Metric
              0.0.0.0          0.0.0.0     192.168.69.1   192.168.69.76       25
             10.0.0.0        255.0.0.0      172.16.16.6     172.16.16.5       1
            127.0.0.0        255.0.0.0        127.0.0.1       127.0.0.1       1
          172.16.16.1  255.255.255.255      172.16.16.6     172.16.16.5       1
          172.16.16.4  255.255.255.252      172.16.16.5     172.16.16.5       30
          172.16.16.5  255.255.255.255        127.0.0.1       127.0.0.1       30
       172.16.255.255  255.255.255.255      172.16.16.5     172.16.16.5       30
         192.168.69.0    255.255.255.0    192.168.69.76   192.168.69.76       25
        192.168.69.76  255.255.255.255        127.0.0.1       127.0.0.1       25
       192.168.69.255  255.255.255.255    192.168.69.76   192.168.69.76       25
            224.0.0.0        240.0.0.0      172.16.16.5     172.16.16.5       30
            224.0.0.0        240.0.0.0    192.168.69.76   192.168.69.76       25
      255.255.255.255  255.255.255.255      172.16.16.5     172.16.16.5       1
      255.255.255.255  255.255.255.255    192.168.69.76   192.168.69.76       1
    Default Gateway:      192.168.69.1
    ===========================================================================
    Persistent Routes:
      None
    And here's the routing table on the server

    Code:
    Kernel IP routing table
    Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
    172.16.16.2     *               255.255.255.255 UH    0      0        0 tun0
    [External IP]   *               255.255.255.248 U     0      0        0 br0
    172.16.16.0     172.16.16.2     255.255.255.0   UG    0      0        0 tun0
    10.0.0.0        *               255.0.0.0       U     0      0        0 eth1
    default         [ISP Gateway]   0.0.0.0         UG    0      0        0 br0
    Thanks for the help.

  4. #4
    Untangle Ninja Silver Bullet's Avatar
    Join Date
    Sep 2007
    Posts
    2,008

    Default

    See if the OpenVPN 2.1_rc4 client changes anything. That is the one I use.

    http://openvpn.net/download.html

  5. #5
    Newbie
    Join Date
    Oct 2007
    Posts
    7

    Default

    Nope, still no go.

  6. #6
    Untangle Ninja Silver Bullet's Avatar
    Join Date
    Sep 2007
    Posts
    2,008

    Default

    Turn the firewall module on and create a rule with the following settings.
    Action = Pass
    Traffic Type = Any
    Direction = Inbound
    Source Address = 176.16.16.5 (or to allow the entire VPN Subnet enter 176.16.16.0/24)
    Destination Address = Any
    Source Port = Any
    Destination Port = Any

    There was another post some time ago where someone was having a similar problem. You could probably find the post if you wanted. But he was able to resolve it by removing and reinstalling the OpenVPN module.

  7. #7
    Newbie
    Join Date
    Oct 2007
    Posts
    7

    Default

    Hmmm, tried both of those and still can't ping. Any benefit to rebooting the server after reinstalling OpenVPN?

  8. #8
    Newbie
    Join Date
    Oct 2007
    Posts
    7

    Default

    OK, I knew I had to be doing something stupid, just took me a while to figure it out. I have the Untangle server on our perimeter, but it and everything else is routing through my smoothwall box, no wonder my pings never made it home! Once I routed the VPN connection through smoothwall everything worked fine. Thanks for the help.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

SEO by vBSEO 3.6.0 PL2