[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: OpenVPN server mode usage.

*	From: Bob Proulx <bob@proulx.co.>
*	Date: Wed, 5 Jan 2011 14:01:54 -0700
> But an openvpn configuration shouldn't be depending upon dynamic dns.
> Have your dynamic IP client contact your server. ... might be able to use almost
> the same configuration you currently have but just with some tweaks.
> There are two main configurations.  One is a special case shared key.

Just what I have.  This is the configuration on Dalton which has 
the static address.
# dalton:/etc/openvpn/myvpn.conf
# Default protocol is udp.
# Default port is 1194.
mode server
dev tun
verb 5
secret /root/key1 1
# route parameters omitted.

This is the configuration on Joule which has the dynamic address.
# joule:/etc/openvpn/vpn.conf
# This is the static address of Dalton.
dev tun
# These are the local and remote endpoints of the tunnel.
verb 5
secret /root/key1 0
# route parameters omitted.

Nevertheless, the tunnel fails.
peter@joule:~$ grep refused  /var/log/syslog
Jan  9 15:08:53 joule ovpn-myvpn[1903]: read UDPv4 [ECONNREFUSED]: Connection re
fused (code=111)

More specifically.
joule:/etc/shorewall# traceroute -p 1194 -P udp
traceroute to (, 30 hops max, 60 byte packets
 1  * * *
 2  * * *

ISP blocks tunnel datagrams?  If that is the case it's a recent change.

Thanks for any further ideas,      Peter E.

Telephone 1 360 450 2132.
Shop pages http://carnot.yi.org/ accessible as long as the old drives survive.
Personal pages http://members.shaw.ca/peasthope/ .

Reply to: