wolfskin DD-WRT Novice
Joined: 27 Aug 2008 Posts: 11
|
Posted: Thu Nov 03, 2011 5:58 Post subject: Data cannot pass through OpenVPN |
|
Hi all,
First of all, I am a novice when it comes to linux and routers/networking, I only understand some of the basics.
I am using the Linksys WRT300N v1 in v24-sp2 build 14896
I setup the OpenVPN recently and want all traffic from Client through the VPN tunnel to access internet. I follow the instrucion of
[url=http://www.dd-wrt.com/wiki/index.php/VPN_(the_easy_way)_v24+]VPN (The Easy Way) V24+[/url]
the VPN is built and the client connected successfully.
However, all the access still not through the VPN tunnel, I guest it is because no gateway IP in the client.
Could you help me how to redirect all package through VPN? Thanks!!
The OpenVPN Config in router (Services->VPN->OpenVPN Daemon)
Quote: | push "route 172.18.88.0 255.255.252.0"
server 192.168.88.0 255.255.255.0
dev tun0
proto udp
keepalive 10 120
dh /tmp/openvpn/dh.pem
ca /tmp/openvpn/ca.crt
cert /tmp/openvpn/cert.pem
key /tmp/openvpn/key.pem
# Only use crl-verify if you are using the revoke list - otherwise leave it commented out
# crl-verify /tmp/openvpn/ca.crl
# management parameter allows DD-WRT\s OpenVPN Status web page to access the server\s management port
# port must be 5001 for scripts embedded in firmware to work
management localhost 5001 |
Firewall command in router (Administration->Commands->firewall)
Quote: | iptables -I INPUT 1 -p udp --dport 1194 -j ACCEPT
iptables -I FORWARD 1 --source 192.168.88.0/24 -j ACCEPT
# These next two lines may or may not be necessary.
# I (dereks) did not need them, but bmatthewshea did.
# Thus, we include them so that this works for more people:
iptables -I FORWARD -i br0 -o tun0 -j ACCEPT
iptables -I FORWARD -i tun0 -o br0 -j ACCEPT |
The OpenVPN Client Configuration
Quote: | remote XXXXserver.dyndns.org 1194
client
remote-cert-tls server
dev tun0
proto udp
resolv-retry infinite
nobind
persist-key
persist-tun
float
#If the pushed routes appear not to be added on windows hosts, add the following:
route-delay 30
ca ca.crt
cert chris.crt
key chris.key |
IPConfig in Windows XP
Quote: | Windows IP Configuration
Host Name . . . . . . . . . . . . : VM-XP1
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : localdomain
Ethernet adapter Local Area Connetion:
Connection-specific DNS Suffix . : localdomain
Description . . . . . . . . . . . : VMware Accelerated AMD PCNet Adapter
Physical Address. . . . . . . . . : 00-0C-29-8D-5B-43
Dhcp Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IP Address. . . . . . . . . . . . : 192.168.217.128
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.217.2
DHCP Server . . . . . . . . . . . : 192.168.217.254
DNS Servers . . . . . . . . . . . : 192.168.0.2
133.200.72.105
Primary WINS Server . . . . . . . : 192.168.217.2
Lease Obtained. . . . . . . . . . : Thursday, November 03, 2011 1:26:12 PM
Lease Expires . . . . . . . . . . : Thursday, November 03, 2011 1:56:12 PM
Ethernet adapter OpenVPN:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : TAP-Win32 Adapter V9
Physical Address. . . . . . . . . : 00-FF-92-53-4E-9F
Dhcp Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IP Address. . . . . . . . . . . . : 192.168.88.6
Subnet Mask . . . . . . . . . . . : 255.255.255.252
Default Gateway . . . . . . . . . :
DHCP Server . . . . . . . . . . . : 192.168.88.5
Lease Obtained. . . . . . . . . . : Thursday, November 03, 2011 1:29:00 PM
Lease Expires . . . . . . . . . . : Friday, November 02, 2012 1:29:00 PM |
|
|