Help me troubleshoot my openvpn
Hello
I have a really simple openvpn setup (the server is in a vps i rent), i will use this from my laptop when im at unsecure wireless and stuff like that. (due to my semi paranoia my public ipaddress is changed to *. Server: Code:
tun0 Link encap:UNSPEC HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00 dev tun0 ifconfig 10.9.8.1 10.9.8.2 secret /etc/openvpn/static.key log-append /var/log/openvpn.log route -n looks like this: 10.9.8.2 0.0.0.0 255.255.255.255 UH 0 0 0 tun0 0.0.0.0 0.0.0.0 0.0.0.0 U 0 0 0 venet0 Client: Code:
eth0: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500 remote 46.*.*.* dev tun0 ifconfig 10.9.8.2 10.9.8.1 secret /etc/openvpn/static.key redirect-gateway def1 route -n looks like this: 0.0.0.0 10.9.8.1 128.0.0.0 UG 0 0 0 tun0 10.9.8.1 0.0.0.0 255.255.255.255 UH 0 0 0 tun0 10.137.1.1 0.0.0.0 255.255.255.255 UH 0 0 0 eth0 46.*.*.* 10.137.1.1 255.255.255.255 UGH 0 0 0 eth0 128.0.0.0 10.9.8.1 128.0.0.0 UG 0 0 0 tun0 And the iptables looks like this: Code:
Chain INPUT (policy ACCEPT) I can ping the tun0 interface from the client/server. But when i try for example telnet 12.12.12.12 80 from the client, a tcpdump on the server (on the "internet interface) looks like this: Code:
19:51:07.868127 IP 10.9.8.2.34251 > 12.12.12.12.www: Flags [S], seq 3575009803, win 14600, options [mss 1366,sackOK,TS val 627596 ecr 0,nop,wscale 6], length 0 Any ideas? :) |
If your kernel support iptable policy trace, you can use it to find out which iptable policy cause the issue. It look like iptable policy drop telnet reuqest.
|
The problem was that i used venet0:0 in the iptables rules (the ifconfig -a confused me), i should have used just venet0.
|
All times are GMT -5. The time now is 04:47 AM. |