LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices

Reply
 
Search this Thread
Old 10-27-2005, 05:56 AM   #1
xnomad
Member
 
Registered: Jun 2005
Posts: 53

Rep: Reputation: 15
Thumbs down openvpn is making me use windows!!!


I'm tearing my hair out on this one. I need to vpn to my work regularly and all works fine if I use windows however, I can't get the blasted thing to work in Mandriva LE 2005.

It seems that the /dev/tun0 just doesn't register any activity and I get a TLS handshake error. I monitor the tun0 interface and nothing is going in our out of it. When I use example conf files copied from the net they don't work. Even the one from the official openvpn website!!! The very first line in the conf file "client" doesn't work with linux and I have to omit it.

Below is the config file that works fine for Windows but not for linux:

client #this line doesn't work in Mandriva
dev tun
proto udp
remote xxx.xxx.xxx.xxx 1194 #real ip address replaced by x's
resolv-retry infinite
nobind
persist-key
persist-tun
tls-auth ta.key 1
mute-replay-warnings #this line doesn't work in Mandriva
ca ca.crt
cert xnomad.crt
key xnomad.key
ns-cert-type server #this line doesn't work in Mandriva
cipher BF-CBC
comp-lzo
verb 3
mute 20


Even if I use a very very simple linux conf like below I don't get any activity on dev tun0 sniffing it with tcpdump brings up nothing:

dev tun0
proto udp
remote xxx.xxx.xxx.xxx 1194 #real ip address replaced by x's
ifconfig 10.8.0.12 10.8.0.13

I've added the following to my /etc/modprobe.conf
I saw it mentioned in some guides that this was required in some there was no mention of it:

alias char-major-10-200 tun

And I added the following to my /etc/rc.local

modprove tun
echo 1 > /proc/sys/net/ipv4/ip_forward


I've also disabled shorewall from interfering but that hasn't helped matters either.

I'm really hoping that for once someone will have an answer for me as I've tried loads of settings and searched the net high and low for an answer.
 
Old 10-28-2005, 03:33 AM   #2
Thoreau
Senior Member
 
Registered: May 2003
Location: /var/log/cabin
Distribution: All
Posts: 1,167

Rep: Reputation: 45
What vpn server are you connecting to exactly? If it's cisco, they have a cisco vpn client. You seem to be lacking quite a few user/group setting as described above.
 
Old 10-28-2005, 06:34 AM   #3
xnomad
Member
 
Registered: Jun 2005
Posts: 53

Original Poster
Rep: Reputation: 15
It's an openvpn server on an FC 4 box. I don't actually think it's an authentication issue or something like that as there would have to be some activity on /dev/tun0 for that to happen. As it stands there is no traffic going through /dev/tun0 at all. Unfortunatley I'm on dual boot windows right now as I have to do some work so I can't post the openvpn output from linux.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
OpenVPN Bridged Connection. Linux Server to Windows XP Dewar Linux - Networking 0 01-21-2005 03:22 PM
Making Windows in SDL fatherg Programming 2 08-19-2004 01:43 AM
making openvpn secure with openssl ( ? ) antken Linux - Networking 1 03-31-2004 09:14 AM
Making a Slackware CD in Windows sadiqdm Slackware 0 11-12-2003 06:02 PM
making space for windows... zetsui Linux - Software 6 08-06-2003 10:30 AM


All times are GMT -5. The time now is 01:01 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration