Solved

Bridging using OpenVPN

Posted on 2006-06-14
3
1,531 Views
Last Modified: 2008-01-09
I need some help with creating a bridge using OpenVPN.
I am running the server side behind ISA on a windows XP box and the client on a wireless networked laptop, again with XP. I have created tunnels successfully and have been able to ping the server inside the ISA firewall.
Now I am trying to bridge the connection (need to bridge to allow broadcast traffic to reach the client). Looking at the status of OpenVPN on client and server, the client seems to connect to the server, but the connection is reset with the message:-

(On the client status monitor)
SIGUSR1[soft,connection reset] received, process restarting

(On the server status monitor)
SIGUSR1[soft,connection reset] received, clent instance restarting

I have included the .ovpn files below.

Server.ovpn

port 1194
proto tcp
dev tap0
dev-node tap0
ca "C:\\...\\ca.crt"
cert "C:\\...\\C0051XP.crt"
key "C:\\...\\C0051XP.key"  # This file should be kept secret
dh "C:\\...\\dh1024.pem"
server-bridge 10.0.0.9 255.255.255.0 10.0.0.55 10.0.0.57
ifconfig-pool-persist ipp.txt
keepalive 10 120
comp-lzo
persist-key
persist-tun
status openvpn-status.log
verb 3

Client.ovpn

client
dev tap0
dev-node tap0
proto tcp
resolv-retry infinite
nobind
persist-key
persist-tun
ca "C:\\...\\ca.crt"
cert "C:\\...\\C0077.crt"
key "C:\\...\\C0077.key"
comp-lzo
verb 4
0
Comment
Question by:Madrilleno
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 

Author Comment

by:Madrilleno
ID: 16901331
Forgot the following drom the Client.ovpn

remote x.y.z.199 1194
0
 

Author Comment

by:Madrilleno
ID: 16909685
Solved with some help from Janjust on sourceforge.net

The packets from the client were reaching the server just fine. However, the server did not have a route back to the client to reply (ping the client, destination unreachable). Adding a route (route add [ip of client] mask 255.255.255.240 [ip of ISA server] -p) solved the problem and the two machines connected right away.

Call this one closed.

Madrilleno
0
 

Accepted Solution

by:
RomMod earned 0 total points
ID: 16917488
Question closed - 500 points refunded.

Best regards,
RomMod
Experts Exchange
Community Support Moderator
0

Featured Post

How our DevOps Teams Maximize Uptime

Our Dev teams are like yours. They’re continually cranking out code for new features/bugs fixes, testing, deploying, responding to production monitoring events and more. It’s complex. So, we thought you’d like to see what’s working for us. Read the use case whitepaper.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If your business is like most, chances are you still need to maintain a fax infrastructure for your staff. It’s hard to believe that a communication technology that was thriving in the mid-80s could still be an essential part of your team’s modern I…
ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

734 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question