[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Need help with openvpn



Svante Signell, le Wed 22 Oct 2014 12:47:30 +0200, a écrit :
> On Wed, 2014-10-22 at 12:29 +0200, Samuel Thibault wrote:
> > Svante Signell, le Wed 22 Oct 2014 12:27:26 +0200, a écrit :
> > > On Wed, 2014-10-22 at 12:16 +0200, Samuel Thibault wrote:
> > > > Svante Signell, le Wed 22 Oct 2014 12:12:48 +0200, a écrit :
> > > > > On Tue, 2014-10-21 at 19:44 +0200, Justus Winter wrote:
> > > > > > Quoting Svante Signell (2014-10-21 17:33:42)
> > > > > > > > > I use port forwarding to get access to the kvm images, and 10.0.2.2 is
> > > > > > > > > the gateway address. Each kvm instance has the same address 10.0.2.15,
> > > > > > > > > with different port numbers.
> > > > > > > > > 
> > > > > > > > > So if I want to copy from one image to another I do e.g.
> > > > > > > > > scp -P 5556 10.0.2.2:file .
> > > > > > > > 
> > > > > > > > Ok, that should work indeed.  Do you actually see openvpn instances
> > > > > > > > connecting to each other in their logs?
> > > > > > > 
> > > > > > > No they don't :(
> > > > > > 
> > > > > > Afaics you are using openvpn over udp, did you configure udp forwards?
> 
> Talking about clarity: If Justus had added in kvm to the line above
> things would have been clear to me too. It's not always me who don't
> give all details.

With what justus said, "you are using openvpn over udp", it was very
clear that he was talking about the packets that openvpn produces, not
the packets it transports. And thus it was very clear that "forwarding"
here was about qemu forwarding, and confirmed by his mentioning of
libvirt right after that.

I'm sorry, but Justus was really completely clear.

> > Justus was talking about forwarding the UDP trafic produced by openvpn,
> > (which is UDP, not TCP), not trafic to be injected into openvpn.
> > 
> > Put another way, in your qemu command line, you need a hostfwd with udp:
> > not tcp:
> 
> I tried with --proto tcp-server and tcp-client but that did not work
> out. Do you want to see the details?

Without details, I can't divine what you have done wrong.

But did you actually try what we have suggested, i.e. enabling UDP
forwarding instead of TCP forwarding in qemu?

samuel


Reply to: