Solved

Bridging using OpenVPN

Posted on 2006-06-14
3
1,501 Views
Last Modified: 2008-01-09
I need some help with creating a bridge using OpenVPN.
I am running the server side behind ISA on a windows XP box and the client on a wireless networked laptop, again with XP. I have created tunnels successfully and have been able to ping the server inside the ISA firewall.
Now I am trying to bridge the connection (need to bridge to allow broadcast traffic to reach the client). Looking at the status of OpenVPN on client and server, the client seems to connect to the server, but the connection is reset with the message:-

(On the client status monitor)
SIGUSR1[soft,connection reset] received, process restarting

(On the server status monitor)
SIGUSR1[soft,connection reset] received, clent instance restarting

I have included the .ovpn files below.

Server.ovpn

port 1194
proto tcp
dev tap0
dev-node tap0
ca "C:\\...\\ca.crt"
cert "C:\\...\\C0051XP.crt"
key "C:\\...\\C0051XP.key"  # This file should be kept secret
dh "C:\\...\\dh1024.pem"
server-bridge 10.0.0.9 255.255.255.0 10.0.0.55 10.0.0.57
ifconfig-pool-persist ipp.txt
keepalive 10 120
comp-lzo
persist-key
persist-tun
status openvpn-status.log
verb 3

Client.ovpn

client
dev tap0
dev-node tap0
proto tcp
resolv-retry infinite
nobind
persist-key
persist-tun
ca "C:\\...\\ca.crt"
cert "C:\\...\\C0077.crt"
key "C:\\...\\C0077.key"
comp-lzo
verb 4
0
Comment
Question by:Madrilleno
  • 2
3 Comments
 

Author Comment

by:Madrilleno
ID: 16901331
Forgot the following drom the Client.ovpn

remote x.y.z.199 1194
0
 

Author Comment

by:Madrilleno
ID: 16909685
Solved with some help from Janjust on sourceforge.net

The packets from the client were reaching the server just fine. However, the server did not have a route back to the client to reply (ping the client, destination unreachable). Adding a route (route add [ip of client] mask 255.255.255.240 [ip of ISA server] -p) solved the problem and the two machines connected right away.

Call this one closed.

Madrilleno
0
 

Accepted Solution

by:
RomMod earned 0 total points
ID: 16917488
Question closed - 500 points refunded.

Best regards,
RomMod
Experts Exchange
Community Support Moderator
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
Most of the applications these days are on Cloud. Cloud is ubiquitous with many service providers in the market. Since it has many benefits such as cost reduction, software updates, remote access, disaster recovery and much more.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

920 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now