Re: OpenVPN server mode usage.
* From: Bob Proulx <bob@proulx.co.>
* Date: Wed, 5 Jan 2011 14:01:54 -0700
> But an openvpn configuration shouldn't be depending upon dynamic dns.
> Have your dynamic IP client contact your server. ... might be able to use almost
> the same configuration you currently have but just with some tweaks.
> There are two main configurations. One is a special case shared key.
Just what I have. This is the configuration on Dalton which has
the static address.
# dalton:/etc/openvpn/myvpn.conf
#
# Default protocol is udp.
# Default port is 1194.
mode server
dev tun
ifconfig 10.4.0.2 10.4.0.1
verb 5
secret /root/key1 1
# route parameters omitted.
This is the configuration on Joule which has the dynamic address.
# joule:/etc/openvpn/vpn.conf
#
# This is the static address of Dalton.
remote 142.103.107.137
dev tun
# These are the local and remote endpoints of the tunnel.
ifconfig 10.4.0.1 10.4.0.2
verb 5
secret /root/key1 0
# route parameters omitted.
Nevertheless, the tunnel fails.
peter@joule:~$ grep refused /var/log/syslog
Jan 9 15:08:53 joule ovpn-myvpn[1903]: read UDPv4 [ECONNREFUSED]: Connection re
fused (code=111)
...
More specifically.
joule:/etc/shorewall# traceroute -p 1194 -P udp 142.103.107.137
traceroute to 142.103.107.137 (142.103.107.137), 30 hops max, 60 byte packets
1 * * *
2 * * *
...
ISP blocks tunnel datagrams? If that is the case it's a recent change.
Thanks for any further ideas, Peter E.
--
Telephone 1 360 450 2132.
Shop pages http://carnot.yi.org/ accessible as long as the old drives survive.
Personal pages http://members.shaw.ca/peasthope/ .
Reply to: