Results 1 to 3 of 3
  1. #1
    Master Untangler johndball's Avatar
    Join Date
    Apr 2008
    Location
    Virginia
    Posts
    174

    Default UT10 on UT9 VPN traffic not passing

    I started a thread here thinking I had a VPN problem:
    http://forums.untangle.com/openvpn/3...tml#post190524

    I connected a UT10 client to UT9.4 server.
    The UT10 connects to UT9.4 I can ping the boxes from the boxes. I can't ping the boxes from clients on the same subnet or on different subnets.
    The networks are exported.
    I rebooted the UT9.4 server and reconnected the 10 client and still no traffic is passing.
    Internal interface on 10 is NOT NAT traffic on this interface.
    Firewall module shows traffic trying to pass through as allowed.

    Update after last thread:
    I un-nat'd the internal interface. Internal clients on 192.168.12.0/24 subset can see each other internally.
    The UT10 box, a VPN client, IP 192.168.12.1 on internal interface, is trying to route traffic destined for its internal clients over the VPN.

    Wed Aug 20 2014 11:08:54 GMT-0500 (Central Standard Time) - Test Started
    traceroute to 192.168.12.10 (192.168.12.10), 30 hops max, 60 byte packets
    1 192.168.11.1 (192.168.11.1) 34.064 ms 39.958 ms 39.965 ms
    2 * * *
    3 * * *
    4 * * *
    5 * * *

    Besides no NAT rules, is there something I need to configure?
    What am I missing in UT10?
    Last edited by johndball; 08-20-2014 at 09:31 AM.
    --
    "I have often regretted my speech, never my silence." - Xenocrates
    https://www.johndball.com

  2. #2
    Untangle Junkie dmorris's Avatar
    Join Date
    Nov 2006
    Location
    San Carlos, CA
    Posts
    17,747

    Default

    I would narrow down the problem a bit. Something like:
    "192.168.11.111, behind the UT9.4 running as server can not ping 192.168.12.111 running behind UT10 running as client, but I want it to."
    Then you can troubleshoot why 192.168.11.111 can't ping 192.168.12.111 and where those packets are going instead of troubleshooting "no traffic is passing."

    Then I would use ping and the packet test tool in config > network > advanced > troubleshooting to see where the packets are going.
    Attention: Support and help on the Untangle Forums is provided by volunteers and community members like yourself.
    If you need Untangle support please call or email support@untangle.com

  3. #3
    Master Untangler johndball's Avatar
    Join Date
    Apr 2008
    Location
    Virginia
    Posts
    174

    Default

    Alright. I'll clear it up a bit.
    Client 192.168.12.10, behind UT10 at 192.168.12.1 cannot ping 192.168.8.5, behind UT9 at 192.168.8.1.
    Packet test tool shows that packets leaving 192.168.12.10 are dropping at 192.168.11.50, the UT10 OpenVPN IP address. It routes to 50 then drops from there.

    UT server 192.168.12.1 CAN ping UT server at 192.168.8.1.
    8.0 and 12.0 networks are exported.
    --
    "I have often regretted my speech, never my silence." - Xenocrates
    https://www.johndball.com

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

SEO by vBSEO 3.6.0 PL2