OpenVPN TCP - No traffic

Reply to OpenVPN TCP - No traffic on Tue, 24 Sep 2019 00:17:53 GMT

Crlaozwyn — Tue, 24 Sep 2019 00:17:53 GMT

So uh... I totally disabled the VPN in order to be able to actually upload anything. Screenshot fail! Should be a little more enlightening here...

Reply to OpenVPN TCP - No traffic on Tue, 24 Sep 2019 00:12:30 GMT

johnpoz — Tue, 24 Sep 2019 00:12:30 GMT

Well that doesn't look like you have any routes. But I specific route vs default route.. Let me change mine and reconnect

Even when I set to default, I still see routes for the tunnel network..

Are you even connected?

Reply to OpenVPN TCP - No traffic on Tue, 24 Sep 2019 00:18:30 GMT

Crlaozwyn — Tue, 24 Sep 2019 00:18:30 GMT

Total fail screenshot attempt - deleted

Reply to OpenVPN TCP - No traffic on Mon, 23 Sep 2019 23:50:33 GMT

johnpoz — Mon, 23 Sep 2019 23:50:33 GMT

You just need to find your vpn interface, once you connect.

You can use it to do a traceroute as well.. Can you ping your lan side interface of pfsense?

Here pinging my lan IP of pfsense using tcp from ios

Reply to OpenVPN TCP - No traffic on Mon, 23 Sep 2019 23:45:15 GMT

Crlaozwyn — Mon, 23 Sep 2019 23:45:15 GMT

Bahahah, yeah that's me. I didn't get a response here after a few days so I figured I'd put another line in the water. Thanks again for your help.

HE.NET app definitely has a lot of data. Do you need all interfaces? There's around a hundred rows

Reply to OpenVPN TCP - No traffic on Mon, 23 Sep 2019 23:46:34 GMT

johnpoz — Mon, 23 Sep 2019 23:46:34 GMT

Dude is that you on reddit ;) heheeh - that is me over on reddit

You should be able to see your route table via Hurricane electric app.

Let me double check that.

Yup the HE tools shows that

You can get it here
https://networktools.he.net/

Reply to OpenVPN TCP - No traffic on Mon, 23 Sep 2019 23:02:41 GMT

Crlaozwyn — Mon, 23 Sep 2019 23:02:41 GMT

Gotcha, thank you both for the clarification. Unfortunately the client is an iPhone and, based on a bit of Googling, there isn't really a way to access the IP routing table. With some help, I did discover a setup issue on my part though:

Both UDP and TCP OpenVPN servers were using the same subnet. I've changed the subnet for UDP to be unique and non-overlapping. It hasn't fixed it yet, but that should hopefully prevent TCP from breaking at least...

Reply to OpenVPN TCP - No traffic on Mon, 23 Sep 2019 14:47:20 GMT

johnpoz — Mon, 23 Sep 2019 14:47:20 GMT

route print will also work on windows.

Reply to OpenVPN TCP - No traffic on Mon, 23 Sep 2019 14:16:15 GMT

viragomann — Mon, 23 Sep 2019 14:16:15 GMT

No, the routing table is a list containing all route of an operating system. It depends on the OS how to show it.

In Windows and some Linux "netstat -r" may work.
In other Linux "route" or "ip route".
In MacOS "netstat -nr".

Reply to OpenVPN TCP - No traffic on Mon, 23 Sep 2019 13:45:56 GMT

Crlaozwyn — Mon, 23 Sep 2019 13:45:56 GMT

Argh! It started working again without me making a single change from yesterday.

Is the routing table part of the logs? If so, I think the only relevant entry would be this:
2019-37-22 15:37:02 NIP: adding (included) IPv4 route 192.168.13.0/24

Reply to OpenVPN TCP - No traffic on Mon, 23 Sep 2019 13:41:58 GMT

viragomann — Mon, 23 Sep 2019 13:41:58 GMT

Are you able to access your local device from the VPN client?

Please post the routing table of the client device.

Reply to OpenVPN TCP - No traffic on Mon, 23 Sep 2019 13:22:17 GMT

Crlaozwyn — Mon, 23 Sep 2019 13:22:17 GMT

Thanks @viragomann. I did get the NAT rules figured out (later in the thread, I think). They've been on WAN with the VPN subnet (yes, the .13. is the VPN).

There are currently no custom options set. I do have "Force all client-generated IPv4 traffic through the tunnel" checked.

Reply to OpenVPN TCP - No traffic on Mon, 23 Sep 2019 12:06:19 GMT

viragomann — Mon, 23 Sep 2019 12:06:19 GMT

The outbound NAT rules you posted in the other thread won't work for upstream traffic. You have to change the interface to "WAN" and the sources have to be your VPN tunnel network. Don't know if 192.168.13.0/24 is you tunnel network.

Additionally, have you already removed 'push "redirect-gateway def1"' from custom options?

Reply to OpenVPN TCP - No traffic on Sat, 21 Sep 2019 23:03:07 GMT

Crlaozwyn — Sat, 21 Sep 2019 23:03:07 GMT

Bump - would still appreciate help with this!