[Clug-tech] OpenVPN Issues

Jon me at jonwatson.ca
Wed Nov 29 21:43:35 PST 2006 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

I started this in Clug-Talk, but since it's taken a turn for the
technical I thought I'd move it in here.

I'm messing around with my OpenVPN server. To date I've just used it for
sharing and stuff, but now I want to use it to secure all my Internet
traffic while using public hotspots and the like. The desired
configuration is:

me -> My OpenVPN server -> The Internet

I've tried everything that I can find via Google, and I just can't get
the thing to work.

I am behind a router with a typical class C network 192.168.0.0/24. My
router is 192.168.0.1 to the inside and 68.145.41.64 to the outside.

In my server config I have the following lines uncommented:

push "redirect-gateway"
client-config-dir ccOpenVPN
route 192.168.0.0. 255.255.255.0

On the server I have a ccd directory in /etc/openvpn. In it is a file
named jonzlaptop (the name of my machine). The file contains:

iroute 192.168.0.0. 255.255.255.0OpenVPN

The problem is that when I connect, I lose all my Internet connectivity.
I think this is a good thing because it seems to be pushing all of my
Internet traffic to the OpenVPN server. However, the OpenVPN server
clearly has no idea what to do with it. There's generally a long pause
with no activity on the server (a minute or so) after I do something
like click on a web link and then a slew of:

Wed Nov 29 23:38:55 2006 jonzlaptop/68.145.41.64:34000 MULTI: bad source
address from client [192.168.0.103], packet dropped
Wed Nov 29 23:38:56 2006 jonzlaptop/68.145.41.64:34000 MULTI: bad source
address from client [192.168.0.103], packet dropped
Wed Nov 29 23:38:56 2006 jonzlaptop/68.145.41.64:34000 MULTI: bad source
address from client [192.168.0.103], packet dropped
Wed Nov 29 23:38:58 2006 jonzlaptop/68.145.41.64:34000 MULTI: bad source
address from client [192.168.0.103], packet dropped
Wed Nov 29 23:39:00 2006 jonzlaptop/68.145.41.64:34000 MULTI: bad source
address from client [192.168.0.103], packet dropped
Wed Nov 29 23:39:05 2006 jonzlaptop/68.145.41.64:34000 MULTI: bad source
address from client [192.168.0.103], packet dropped

And that's about as far as I've got. What the heck am I missing?

Thanks!

J

- --
Key fingerprint: BDE0 DE52 B8C0 0CDF 7653 E5A2 D861 7877 0D3B 813E
http://www.jonwatson.ca
+1.403.875.6048
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.3 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFFbm+H2GF4dw07gT4RAliPAJ9rpsGdZaRjX3sKo9tjEAlJu304FgCdF30S
+zjMtdN4D6bJFE/sCHwK6y8=
=Mp9e
-----END PGP SIGNATURE-----

More information about the clug-tech mailing list