Re: wierd problems with openvpn [update]
From: Z.C.B. (vvelox_at_vvelox.net)
Date: 09/23/05
- Previous message: Lourik Malan: "Fwd: ipnat"
- In reply to: Dave+Seddon: "Re: wierd problems with openvpn [update]"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: Fri, 23 Sep 2005 12:17:15 -0500 To: Dave+Seddon <dave-dated-1127880493.c729cf@seddon.ca>
It works perfectly fine with out pf. Not gotten around to debugging
it yet. Threw it behind the router on a server and forwarded the port.
On Fri, 23 Sep 2005 14:08:11 +1000
Dave+Seddon <dave-dated-1127880493.c729cf@seddon.ca> wrote:
> So ditch pf and let us know. Or swap to ipf
>
> Z.C.B. writes:
>
> > I am positive it is something to do with pf. I copied the exact
> > same config file from the vpn server over to another box and
> > pointed the client at it and it worked perfectly fine. Any one
> > see any thing odd in that pf setup or have any suggestions or the
> > like?
> >
> > On Thu, 22 Sep 2005 20:55:05 -0500
> > Vulpes Velox <v.velox@vvelox.net> wrote:
> >
> >> Just been messing around with openvpn and trying to get it up and
> >> running using http://openvpn.net/static.html as a guide. It
> >> works, but I run into a weird problem with data moving across
> >> the vpn. I can send a ping across from the client to the server,
> >> but the server never sends any thing back. I used tcpdump to
> >> make sure the server is seeing it and it is. I see it going
> >> there on both machines, but I never see a reply.
> >>
> >> I am running pf on the server... but it should not be doing any
> >> thing...
> >>
> >>
> >> server pf.conf...
> >> ext_if="fxp1"
> >> int_if="fxp0"
> >> internal_net="192.168.0.0/8"
> >> dcc = "{ 6115:6130 }"
> >> bittorrent = "{ 6881:6889 }"
> >> nat on $ext_if from $internal_net to any -> ($ext_if)
> >> rdr on $ext_if proto tcp from any to any port $dcc -> 192.168.0.2
> >> rdr on $ext_if proto tcp from any to any port $bittorrent ->
> >> 192.168.0.2 rdr on $ext_if proto udp from any to any port 27960
> >> -> 192.168.0.2 pass in all
> >> pass out all
> >>
> >>
> >>
> >> server config...
> >> dev tun
> >> secret vulpes-static.key
> >> ifconfig 10.8.0.1 10.8.0.2
> >> comp-lzo
> >>
> >>
> >>
> >> host config...
> >> dev tun
> >> secret vulpes-static.key
> >> ifconfig 10.8.0.2 10.8.0.1
> >> remote inari
> >> comp-lzo
> >> _______________________________________________
> >> freebsd-net@freebsd.org mailing list
> >> http://lists.freebsd.org/mailman/listinfo/freebsd-net
> >> To unsubscribe, send any mail to
> >> "freebsd-net-unsubscribe@freebsd.org"
> > _______________________________________________
> > freebsd-net@freebsd.org mailing list
> > http://lists.freebsd.org/mailman/listinfo/freebsd-net
> > To unsubscribe, send any mail to
> > "freebsd-net-unsubscribe@freebsd.org"
>
>
_______________________________________________
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org"
- Previous message: Lourik Malan: "Fwd: ipnat"
- In reply to: Dave+Seddon: "Re: wierd problems with openvpn [update]"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Relevant Pages
|
|
