New install - OpenVPN unable to ping remote side
 

Hello!

I have installed OpenVPN (my first installation) on a pair of Fedora Core 17 boxes. I used the GUI Network Manager to set up the VPN on both ends.

While everything seems to be set up correctly, I am unable to ping the remote side of the net from either machine.

I have confirmed that the tcp packets are going out the VPN (tun0) through the public internet and arriving at the remote machine (tcpdump on the remote public IP). However, the packets are not coming out of the remote public IP (em0) and getting to the remote tun0.

I have ipforwarding on
I am using system-config-firewall (which uses iptables) and I believe that I have the appropriate rules to allow packets to move from em0 to tun0, etc.

I am looking for ideas of where to go from here in my debugging.

Thanks in advance for any help you can give.

Mark

Hello.
If you just need to connect only two machines, the easiest way is this: http://openvpn.net/index.php/open-so...ini-howto.html


I'm not sure you need to have ip forwarding turned on, until you decide to route, for example, traffic from your LAN through OpenVPN link.

You just need to allow UDP/1194 incoming traffic on the box which is the server. (I hope that any outgoing traffic is allowed on the client, or at least traffic to UDP port 1194 :)
And allow any incoming (and outgoing) traffic on tun0 interfaces on both boxes, to be able to do anything inside your VPN link.

Hi!

Thanks for your response. I am actually trying to connect two networks together. The two boxes are just the "routers" to get the two nets talking (as well as being the internet gateway/firewall for each local net). Each site is working fine as a gateway/firewall for their respective nets. I am just trying to route any internal communications between the nets over the VPN.

I think I have all traffic allowed in and out of tun+ on both machines, but I will check in the morning when I get into work.

Mark