Not connecting through Openvpn

moffl

hello guys:

After searching throught the forums and not finding the appropriate fix i was wondering if anyone can tell me why this is failing. I am trying to set up a site to site as per the site to site document.

i have also bolded 2 lines figuring this is the problem but could not find a fix for it

ips have been changed.

client setup of openvpn logs

Dec 23 05:38:27 openvpn[371]: WARNING: 'ifconfig' is used inconsistently, local='ifconfig 192.168.30.1 192.168.30.2', remote='ifconfig 10.190.115.1 10.190.115.2'
Dec 23 05:38:17 openvpn[371]: Initialization Sequence Completed
Dec 23 05:38:17 openvpn[371]: Peer Connection Initiated with 10.190.10.77:1194
Dec 23 05:38:16 openvpn[371]: UDPv4 link remote: [undef]
Dec 23 05:38:16 openvpn[371]: UDPv4 link local (bound): [undef]:1194
Dec 23 05:38:15 openvpn[289]: /etc/rc.filter_configure tun0 1500 1544 192.168.30.1 192.168.30.2 init
Dec 23 05:38:15 openvpn[289]: /sbin/ifconfig tun0 192.168.30.1 192.168.30.2 mtu 1500 netmask 255.255.255.255 up
Dec 23 05:38:15 openvpn[289]: TUN/TAP device /dev/tun0 opened
Dec 23 05:38:15 openvpn[289]: gw 10.190.10.30
Dec 23 05:38:15 openvpn[289]: WARNING: file '/var/etc/openvpn_server0.secret' is group or others accessible
Dec 23 05:38:15 openvpn[289]: OpenVPN 2.0.6 i386-portbld-freebsd6.1 [SSL] [LZO] built on Apr 6 2006

server openvpn logs

Dec 23 05:38:27 openvpn[371]: WARNING: 'ifconfig' is used inconsistently, local='ifconfig 192.168.30.1 192.168.30.2', remote='ifconfig 10.190.115.1 10.190.115.2'
Dec 23 05:38:17 openvpn[371]: Initialization Sequence Completed
Dec 23 05:38:17 openvpn[371]: Peer Connection Initiated with 10.190.10.77:1194
Dec 23 05:38:16 openvpn[371]: UDPv4 link remote: [undef]
Dec 23 05:38:16 openvpn[371]: UDPv4 link local (bound): [undef]:1194
Dec 23 05:38:15 openvpn[289]: /etc/rc.filter_configure tun0 1500 1544 192.168.30.1 192.168.30.2 init
Dec 23 05:38:15 openvpn[289]: /sbin/ifconfig tun0 192.168.30.1 192.168.30.2 mtu 1500 netmask 255.255.255.255 up
Dec 23 05:38:15 openvpn[289]: TUN/TAP device /dev/tun0 opened
Dec 23 05:38:15 openvpn[289]: gw 10.190.10.30
Dec 23 05:38:15 openvpn[289]: WARNING: file '/var/etc/openvpn_server0.secret' is group or others accessible
Dec 23 05:38:15 openvpn[289]: OpenVPN 2.0.6 i386-portbld-freebsd6.1 [SSL] [LZO] built on Apr 6 2006

thanks any advice will be appreciated

jette

Hi all,

I got the same problem, too.

The following is the log I copied from server log:

Jan 19 09:48:58 openvpn[277]: TUN/TAP device /dev/tun0 opened
Jan 19 09:48:58 openvpn[277]: /sbin/ifconfig tun0 10.0.10.1 10.0.10.2 mtu 1500 netmask 255.255.255.255 up
Jan 19 09:48:58 openvpn[277]: /etc/rc.filter_configure tun0 1500 1546 10.0.10.1 10.0.10.2 init
Jan 19 09:49:01 openvpn[377]: Listening for incoming TCP connection on [undef]:1194
Jan 19 09:49:30 openvpn[377]: TCP connection established with xxx.xxx.xxx.xxx:54900
Jan 19 09:49:30 openvpn[377]: TCPv4_SERVER link local (bound): [undef]:1194
Jan 19 09:49:30 openvpn[377]: TCPv4_SERVER link remote: xxx.xxx.xxx.xxx:54900
Jan 19 09:49:30 openvpn[377]: Peer Connection Initiated with xxx.xxx.xxx.xxx:54900
Jan 19 09:49:31 openvpn[377]: Initialization Sequence Completed
Jan 19 09:49:40 openvpn[377]: WARNING: 'ifconfig' is used inconsistently, local='ifconfig 10.0.10.1 10.0.10.2', remote='ifconfig 10.0.200.1 10.0.200.2'

I can ping the the remote lan  (10.0.200.253) from the firewall (10.0.100.254).

Ping output:

PING 10.0.200.253 (10.0.200.253) from xxx.xxx.xxx.xxx: 56 data bytes
64 bytes from 10.0.200.253: icmp_seq=0 ttl=55 time=16.500 ms
64 bytes from 10.0.200.253: icmp_seq=1 ttl=55 time=13.585 ms
64 bytes from 10.0.200.253: icmp_seq=2 ttl=55 time=13.761 ms

–- 10.0.200.253 ping statistics ---
3 packets transmitted, 3 packets received, 0% packet loss
round-trip min/avg/max/stddev = 13.585/14.615/16.500/1.335 ms

However, I can't ping it from my local lan.  I have tried to ping 10.0.200.253 from shell mode in the firewall but failed.  That is really strange.
How can I solve the problem?  Thanks a lot.

Regards,
Jette

fernandotcl

@moffl:

Dec 23 05:38:27 openvpn[371]: WARNING: 'ifconfig' is used inconsistently, local='ifconfig 192.168.30.1 192.168.30.2', remote='ifconfig 10.190.115.1 10.190.115.2'

@jette:

Jan 19 09:49:40    openvpn[377]: WARNING: 'ifconfig' is used inconsistently, local='ifconfig 10.0.10.1 10.0.10.2', remote='ifconfig 10.0.200.1 10.0.200.2'

Your address pool must be the same in both client and server.

jette

@fernandotcl:

@moffl:

Dec 23 05:38:27 openvpn[371]: WARNING: 'ifconfig' is used inconsistently, local='ifconfig 192.168.30.1 192.168.30.2', remote='ifconfig 10.190.115.1 10.190.115.2'

@jette:

Jan 19 09:49:40    openvpn[377]: WARNING: 'ifconfig' is used inconsistently, local='ifconfig 10.0.10.1 10.0.10.2', remote='ifconfig 10.0.200.1 10.0.200.2'

Your address pool must be the same in both client and server.

Thanks a lot for your reply.  The problem is fixed now. 
But I still have problem in accessing the remote network.  I can ping 10.0.200.253 in the firewall (10.0.100.254) but I can't ping 10.0.200.253 in my lan (10.0.100.0/24).  Is there anything I missed in the setting?  Thanks a lot.

Regards,
Jette