Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Not connecting through Openvpn

    Scheduled Pinned Locked Moved OpenVPN
    4 Posts 3 Posters 6.9k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      moffl
      last edited by

      hello guys:

      After searching throught the forums and not finding the appropriate fix i was wondering if anyone can tell me why this is failing. I am trying to set up a site to site as per the site to site document.

      i have also bolded 2 lines figuring this is the problem but could not find a fix for it

      ips have been changed.

      client setup of openvpn logs

      Dec 23 05:38:27 openvpn[371]: WARNING: 'ifconfig' is used inconsistently, local='ifconfig 192.168.30.1 192.168.30.2', remote='ifconfig 10.190.115.1 10.190.115.2'
      Dec 23 05:38:17 openvpn[371]: Initialization Sequence Completed
      Dec 23 05:38:17 openvpn[371]: Peer Connection Initiated with 10.190.10.77:1194
      Dec 23 05:38:16 openvpn[371]: UDPv4 link remote: [undef]
      Dec 23 05:38:16 openvpn[371]: UDPv4 link local (bound): [undef]:1194

      Dec 23 05:38:15 openvpn[289]: /etc/rc.filter_configure tun0 1500 1544 192.168.30.1 192.168.30.2 init
      Dec 23 05:38:15 openvpn[289]: /sbin/ifconfig tun0 192.168.30.1 192.168.30.2 mtu 1500 netmask 255.255.255.255 up
      Dec 23 05:38:15 openvpn[289]: TUN/TAP device /dev/tun0 opened
      Dec 23 05:38:15 openvpn[289]: gw 10.190.10.30
      Dec 23 05:38:15 openvpn[289]: WARNING: file '/var/etc/openvpn_server0.secret' is group or others accessible
      Dec 23 05:38:15 openvpn[289]: OpenVPN 2.0.6 i386-portbld-freebsd6.1 [SSL] [LZO] built on Apr 6 2006

      server openvpn logs

      Dec 23 05:38:27 openvpn[371]: WARNING: 'ifconfig' is used inconsistently, local='ifconfig 192.168.30.1 192.168.30.2', remote='ifconfig 10.190.115.1 10.190.115.2'
      Dec 23 05:38:17 openvpn[371]: Initialization Sequence Completed
      Dec 23 05:38:17 openvpn[371]: Peer Connection Initiated with 10.190.10.77:1194
      Dec 23 05:38:16 openvpn[371]: UDPv4 link remote: [undef]
      Dec 23 05:38:16 openvpn[371]: UDPv4 link local (bound): [undef]:1194

      Dec 23 05:38:15 openvpn[289]: /etc/rc.filter_configure tun0 1500 1544 192.168.30.1 192.168.30.2 init
      Dec 23 05:38:15 openvpn[289]: /sbin/ifconfig tun0 192.168.30.1 192.168.30.2 mtu 1500 netmask 255.255.255.255 up
      Dec 23 05:38:15 openvpn[289]: TUN/TAP device /dev/tun0 opened
      Dec 23 05:38:15 openvpn[289]: gw 10.190.10.30
      Dec 23 05:38:15 openvpn[289]: WARNING: file '/var/etc/openvpn_server0.secret' is group or others accessible
      Dec 23 05:38:15 openvpn[289]: OpenVPN 2.0.6 i386-portbld-freebsd6.1 [SSL] [LZO] built on Apr 6 2006

      thanks any advice will be appreciated

      1 Reply Last reply Reply Quote 0
      • J
        jette
        last edited by

        Hi all,

        I got the same problem, too.

        The following is the log I copied from server log:

        Jan 19 09:48:58 openvpn[277]: TUN/TAP device /dev/tun0 opened
        Jan 19 09:48:58 openvpn[277]: /sbin/ifconfig tun0 10.0.10.1 10.0.10.2 mtu 1500 netmask 255.255.255.255 up
        Jan 19 09:48:58 openvpn[277]: /etc/rc.filter_configure tun0 1500 1546 10.0.10.1 10.0.10.2 init
        Jan 19 09:49:01 openvpn[377]: Listening for incoming TCP connection on [undef]:1194
        Jan 19 09:49:30 openvpn[377]: TCP connection established with xxx.xxx.xxx.xxx:54900
        Jan 19 09:49:30 openvpn[377]: TCPv4_SERVER link local (bound): [undef]:1194
        Jan 19 09:49:30 openvpn[377]: TCPv4_SERVER link remote: xxx.xxx.xxx.xxx:54900
        Jan 19 09:49:30 openvpn[377]: Peer Connection Initiated with xxx.xxx.xxx.xxx:54900
        Jan 19 09:49:31 openvpn[377]: Initialization Sequence Completed
        Jan 19 09:49:40 openvpn[377]: WARNING: 'ifconfig' is used inconsistently, local='ifconfig 10.0.10.1 10.0.10.2', remote='ifconfig 10.0.200.1 10.0.200.2'

        I can ping the the remote lan  (10.0.200.253) from the firewall (10.0.100.254).

        Ping output:

        PING 10.0.200.253 (10.0.200.253) from xxx.xxx.xxx.xxx: 56 data bytes
        64 bytes from 10.0.200.253: icmp_seq=0 ttl=55 time=16.500 ms
        64 bytes from 10.0.200.253: icmp_seq=1 ttl=55 time=13.585 ms
        64 bytes from 10.0.200.253: icmp_seq=2 ttl=55 time=13.761 ms

        –- 10.0.200.253 ping statistics ---
        3 packets transmitted, 3 packets received, 0% packet loss
        round-trip min/avg/max/stddev = 13.585/14.615/16.500/1.335 ms

        However, I can't ping it from my local lan.  I have tried to ping 10.0.200.253 from shell mode in the firewall but failed.  That is really strange.
        How can I solve the problem?  Thanks a lot.

        Regards,
        Jette

        1 Reply Last reply Reply Quote 0
        • F
          fernandotcl
          last edited by

          @moffl:

          Dec 23 05:38:27 openvpn[371]: WARNING: 'ifconfig' is used inconsistently, local='ifconfig 192.168.30.1 192.168.30.2', remote='ifconfig 10.190.115.1 10.190.115.2'

          @jette:

          Jan 19 09:49:40    openvpn[377]: WARNING: 'ifconfig' is used inconsistently, local='ifconfig 10.0.10.1 10.0.10.2', remote='ifconfig 10.0.200.1 10.0.200.2'

          Your address pool must be the same in both client and server.

          1 Reply Last reply Reply Quote 0
          • J
            jette
            last edited by

            @fernandotcl:

            @moffl:

            Dec 23 05:38:27 openvpn[371]: WARNING: 'ifconfig' is used inconsistently, local='ifconfig 192.168.30.1 192.168.30.2', remote='ifconfig 10.190.115.1 10.190.115.2'

            @jette:

            Jan 19 09:49:40    openvpn[377]: WARNING: 'ifconfig' is used inconsistently, local='ifconfig 10.0.10.1 10.0.10.2', remote='ifconfig 10.0.200.1 10.0.200.2'

            Your address pool must be the same in both client and server.

            Thanks a lot for your reply.  The problem is fixed now. 
            But I still have problem in accessing the remote network.  I can ping 10.0.200.253 in the firewall (10.0.100.254) but I can't ping 10.0.200.253 in my lan (10.0.100.0/24).  Is there anything I missed in the setting?  Thanks a lot.

            Regards,
            Jette

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.