Configure Test OpenVPN on 4 Debian Boxes in a 3 Network Setup

danmartinj · 11-03-2009, 01:04 PM

Hello All,
First thanks for viewing my thread. Anyhow, I just recently setup an OpenVPN server and OpenVPN client. At least I think I did. I have been fallowing these tutorails mainly:
http://cihan.me/how-to-setup-openvpn...-debian-lenny/
http://www.openvpn.net/index.php/ope...ion/howto.html

Anyhow, I have tried to confirm that it works but I am not getting any clean indication either way.

By typing: openvpn [server config file]
You are suppose to get feedback initilization information back I get no information back.

My experiment network setup is like this:
_____________B-------C
A------B_____10.0.63.X_______C-------D
10.0.62.X____________________10.0.64.X

4 Debian machines connected to eachother accross a basic switch forming 3 separate networks simulating 2 LAN's and a WAN in between them. I have virtual interfaces on B and C and use static routing to make this setup work.

I am confident I published all my keys/certificates correctly:

my client.conf file is:
##NEW CLIENT.CONF FILE EDITED NOV32009, BACKUP IS ON DESKTOP, AUTHOR DAN
client
proto udp
dev tun
remote 10.0.63.1 1194
ca /usr/share/doc/openvpn/examples/easy-rsa/2.0/keys/ca.crt
cert /usr/share/doc/openvpn/examples/easy-rsa/2.0/keys/client.crt
key /usr/share/doc/openvpn/examples/easy-rsa/2.0/keys/client.key

#MIGHT NEED DH AS WELL
#dh /usr/share/doc/openvpn/examples/easy-rsa/2.0/keys/dh1024.pem
#server 10.8.0.0 255.255.255.0
#server 10.0.63.0 255.255.255.0
ifconfig-pool-persist ipp.txt

#ADD ROUTE TO 64 SUBNET
push "route 10.0.63.0 255.255.255.0"

#push "route 192.168.1.0 255.255.255.0"
#push "redirect-gateway def1"
#push "dhcp-option DNS 192.168.1.1"

client-to-client
keepalive 10 120
comp-lzo
persist-key
persist-tun
status openvpn-status.log
log /var/log/openvpn.log
log-append /var/log/openvpn.log
verb 3

My server.conf file is:
##NEW SERVER.CONF FILE EDITED NOV32009, BACKUP IS ON DESKTOP, AUTHOR DAN
port 1194
proto udp
dev tun
ca /usr/share/doc/openvpn/examples/easy-rsa/2.0/keys/ca.crt
cert /usr/share/doc/openvpn/examples/easy-rsa/2.0/keys/server.crt
key /usr/share/doc/openvpn/examples/easy-rsa/2.0/keys/server.key
dh /usr/share/doc/openvpn/examples/easy-rsa/2.0/keys/dh1024.pem
#server 10.8.0.0 255.255.255.0
server 10.0.63.0 255.255.255.0
ifconfig-pool-persist ipp.txt

#ADD ROUTE TO 64 SUBNET
push "route 10.0.64.0 255.255.255.0"

#push "route 192.168.1.0 255.255.255.0"
#push "redirect-gateway def1"
#push "dhcp-option DNS 192.168.1.1"

client-to-client
keepalive 10 120
comp-lzo
persist-key
persist-tun
status openvpn-status.log
log /var/log/openvpn.log
log-append /var/log/openvpn.log
verb 3