[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

troubleshooting an openvpn tunnel

Folk,

I've solved some local problems and am trying to 
duplicate "Example  2: A tunnel with static-key 
security" in man openvpn.  

Machines joule and newton here correspond to may 
and june in the example.

nmap now reports the path to be open|filtered in 
both directions.  And the syslog doesn't say the 
the tunnel failed. 
    http://carnot.yi.org/syslogexcerpt
Yet tunnel-wise pings fail.  

Does all this suggest that udp 1194 is still 
blocked?  Any suggestions apart from my idea of 
rigging iptables so that the tunnel uses port 22?

Thanks,                 ... Peter E.

==================================

Home to UBC

joule:/home/peter# nmap -sU -p1194  142.103.107.139

Starting Nmap 4.11 ( http://www.insecure.org/nmap/ ) at 2007-10-13 13:04 PDT
Interesting ports on 142.103.107.139:
PORT     STATE         SERVICE
1194/udp open|filtered unknown

Nmap finished: 1 IP address (1 host up) scanned in 0.446 seconds

joule:/home/peter# ping 10.4.0.2
PING 10.4.0.2 (10.4.0.2) 56(84) bytes of data.
ping: sendmsg: Operation not permitted
ping: sendmsg: Operation not permitted
   ...

--- 10.4.0.2 ping statistics ---
5 packets transmitted, 0 received, 100% packet loss, time 4000ms
==================================

UBC to Home
newton:/home/peter# nmap -sU -p1194 peasthope.yi.org

Starting Nmap 4.11 ( http://www.insecure.org/nmap/ ) at 2007-10-13 13:17 PDT
Interesting ports on S01060050ba52791c.pi.shawcable.net (24.108.34.72):
PORT     STATE         SERVICE
1194/udp open|filtered unknown

Nmap finished: 1 IP address (1 host up) scanned in 8.005 seconds

newton:/home/peter# ping 10.4.0.1
PING 10.4.0.1 (10.4.0.1) 56(84) bytes of data.

--- 10.4.0.1 ping statistics ---
5 packets transmitted, 0 received, 100% packet loss, time 4000ms
==================================

 http://carnot.yi.org/
Reply to: