solving openvpn problem

IT & Networking Network & System Administration Posted 2 years ago

Fixed Price

Delivery by June 30, 2013

$20.00

Budget

Details

Hi,

I have an openvpn-problem I would need solved.

I have an openvpn server which works.
I have openwrt wrt54gl routers connecting to this server and also the dhcp-clients behind the wrt54gl can be accessed from the openvpn server.

Now I have taken into use a TP-Link:
Model TP-Link TL-WDR3600 v1
Firmware Version OpenWrt Barrier Breaker r36817 / LuCI Trunk (svn-r9834)


This router can connect to the openvpn server.
The problem is that the PC's and devices connected behind the TP-Link are not accessible from the openvpn server, it says:
root@video:/var/log# ping 192.168.98.149
PING 192.168.98.149 (192.168.98.149) 56(84) bytes of data.
From 10.11.0.22 icmp_seq=1 Destination Port Unreachable
From 10.11.0.22 icmp_seq=2 Destination Port Unreachable

The TP-Link itself is pingable trough the vpn:
root@video:/var/log# ping 192.168.98.1
PING 192.168.98.1 (192.168.98.1) 56(84) bytes of data.
64 bytes from 192.168.98.1: icmp_req=1 ttl=64 time=16.0 ms
64 bytes from 192.168.98.1: icmp_req=2 ttl=64 time=3.19 ms



Here is the VPN-configs on the client side:

sleep 5
insmod tun.o
cd /tmp
ln -s /usr/sbin/openvpn /tmp/myvpn
./myvpn --mktun --dev tun0
brctl addif br0 tun0
ifconfig tun0 0.0.0.0 promisc upds
sleep 5



iptables -I INPUT 1 -p udp  --dport 1194 -j ACCEPT
iptables -I INPUT 1 -p tcp  --dport 1194 -j ACCEPT
iptables -I INPUT 1 -p tcp  --dport 2048 -j ACCEPT
iptables -A INPUT -i tun0 -j ACCEPT
iptables -A FORWARD -i tun0 -j ACCEPT




cd /tmp

echo "
client
dev tun0
proto udp
remote video.fennoturvapalvelut.com 1194
resolv-retry infinite
persist-key
persist-tun
ca ca.crt
cert client.crt
key client.key
ns-cert-type server
comp-lzo
verb 3
" > /tmp/client.conf

echo "
-----BEGIN CERTIFICATE-----

-----END CERTIFICATE-----
" > /tmp/ca.crt

echo "
-----BEGIN RSA PRIVATE KEY-----

-----END RSA PRIVATE KEY-----
" > /tmp/client.key
chmod 600 /tmp/client.key

echo "
-----BEGIN CERTIFICATE-----

-----END CERTIFICATE-----
" > /tmp/client.crt

./myvpn --config client.conf



This could be bridging problem or then it could be an iptables problem.

Skills Required:

Client Activity on this Job

Last Viewed: 2 years ago

Applicants: 8

Hired: 1


About the Client

(4.26) 51 reviews

Estonia
Tallinn 11:12 PM

122 Jobs Posted
67% Hire Rate, 1 Open Job

Over $10,000 Total Spent
97 Hires, 3 Active

$15.35/hr Avg Hourly Rate Paid
295 Hours

Member Since Nov 15, 2011