Openvpn subnet behind client

[drotschopf]

Hi,

i have 2x TP-Link 1043nd with Gargoyle 1.5.11 and wanted to connect 2 loacations with each other.

i have 2 severs 1 behind the openvpn server and 1 behind the openvpn client.


my problem is that i have no connection from openvpn server side lan to openvpn client side lan so i cant connect to the server behind the client.


here is my config:

server


mode server
port 1194
proto tcp-server
tls-server
ifconfig 10.8.0.1 255.255.255.0
topology subnet
client-config-dir /etc/openvpn/ccd
client-to-client




cipher AES-128-CBC


dev tun
keepalive 25 180
status /var/openvpn/current_status
verb 3


dh /etc/openvpn/dh1024.pem
ca /etc/openvpn/ca.crt




and client config:

client
remote xxx.xxx.xxx.xxx 1194
dev tun
proto tcp-client
status /var/openvpn/current_status
resolv-retry infinite
ns-cert-type server
topology subnet
verb 3

cipher AES-128-CBC


ca /etc/openvpn/grouter_client_qyxhhzrsjmyv_ca.crt
cert /etc/openvpn/grouter_client_qyxhhzrsjmyv.crt
key /etc/openvpn/grouter_client_qyxhhzrsjmyv.key
tls-auth /etc/openvpn/grouter_client_qyxhhzrsjmyv_ta.key 1

nobind
persist-key
persist-tun
comp-lzo


it would be nice if someone could explain me how i can set up this connection.

thx greets DaRo

[ispyisail]

I have the same problem

I have also reported it a long time ago

In the first Gargoyle OpenVPN builds it worked then they made some changes and it never worked after that.

[drotschopf]

i just reseted the vpn connection and now its working

[ispyisail]

i just reseted the vpn connection and now its working

really? I must do some more tests

[Eric]

I didn't realize this was still an issue. I (and a few contributors) have found and fixed a couple of OpenVPN bugs since this was reported and I assumed that solved this problem too. I've tested this several times and it seems to work fine, but that doesn't mean there isn't still a configuration that can cause issues.

ispyisail -- if you're still having problems with this, please let me know.

[ispyisail]

I've done a quick check and it still appears not to work?

drotschopf can you post a screen shot of your working config

Will do more extensive tests

[ispyisail]

Hi Eric

More detailed description

This is my configuration
https://docs.google.com/drawings/d/1p7Q ... sp=sharing

Server



Client



In summary traffic is one direction only

[ispyisail]

Also tried this config but with the same results

[ispyisail]

While we are on this topic is this possible?

https://docs.google.com/drawings/d/1Jms ... sp=sharing

[Oleg]

Hi All
Just get the same result, working in one direction only, with OpenVPN server and client installed on two different routers. From client subnet can ping anyone on server subnet , from server subnet behind router can ping only 10.8.0.2 on client router. VPN running, connected, client connected but not reached subnet behind client. Please inform is it solved and advise me how...
Current ver1.6.X (Built 20140614-1947 git@b9673d2)