EFW Support
Welcome,
Guest
. Please
login
or
register
.
Did you miss your
activation email?
Monday 25 November 2024, 12:33:28 am
1 Hour
1 Day
1 Week
1 Month
Forever
Login with username, password and session length
Visit the Official Endian Reference Manual
HERE
14261
Posts in
4377
Topics by
6517
Members
Latest Member:
Sandro
Search:
Advanced search
EFW Support
Support
VPN Support
[Endian 3.2.2] Machines on Green network not accessible.
0 Members and 2 Guests are viewing this topic.
« previous
next »
Pages:
[
1
]
Author
Topic: [Endian 3.2.2] Machines on Green network not accessible. (Read 42063 times)
dschak
Jr. Member
Offline
Posts: 1
[Endian 3.2.2] Machines on Green network not accessible.
«
on:
Tuesday 23 May 2017, 06:42:16 am »
Hi,
I have just upgraded a 2.5.1 installation that has been working well for 3 years to 3.2.2 on different equipment.
The only issue I have left is getting OpenVPN to work. Under 2.5.1 it was simple and it "Just Worked", with 3.2.2, frustration!!
I am able to connect, via the red interface to the firewall, log in and I get an IP address from the firewall in the range expected.
BUT I cannot ping any machine inside on the Green interface.
With one login I have set the "Direct all client traffic through the VPN server" override and using tracert I can see that a request to google.com goes via that interface rather than directly from the connecting ISP.
The server is set as:-
- Authentication type: PSK
- Port: 1194
- Device Type: TAP
- Protocol: UDP
- Bridged: Selected
- Bridged to: GREEN
- Dynamic IP pool start address: 10.100.10.111
- Dynamic IP pool end address: 10.100.10.119
- Push these nameservers: selected
- Nameservers: 10.100.10.241
- Push these networks: selected
- Networks: 10.100.0.0/16
Client Config settings:-
client
dev tap
proto udp
remote
my-external-ip
1194
resolv-retry infinite
nobind
persist-key
persist-tun
ca cacert.pem
auth-user-pass
comp-lzo
After connection in the Network Connection Details (Win7):-
- Description: TAP-Windows Adapater V9
- DHCP Enabled: Yes
- IPv4 Address: 10.100.10.111
- IPv4 Subnet Mask: 255.255.0.0
- IPv4 Default Gateway: (blank)
- IPv4 DHCP Server: 10.100.0.0
- IPv4 DNS Servers: 10.100.10.241
Reading other things on the net, I have not tried using the VPN firewall (should not be needed with bridged), but have tried the Source NAT rule suggested by kdouglas in the smalldragon post.
Thanks.
Logged
cocoalcazar
Full Member
Offline
Posts: 42
Re: [Endian 3.2.2] Machines on Green network not accessible.
«
Reply #1 on:
Wednesday 29 November 2017, 11:21:02 am »
Prueba con esto:
http://imageno.com/qof02d52y9pepic.html
Saludos.
Logged
nattelip
Jr. Member
Offline
Posts: 6
Re: [Endian 3.2.2] Machines on Green network not accessible.
«
Reply #2 on:
Thursday 20 February 2020, 06:58:16 am »
just the answer i needed
. only setting up a vopenvpn client gw2gw is not enough to communicate with a endian vpn server, the source nat rule is nessesary .
Logged
nattelip
Jr. Member
Offline
Posts: 6
Re: [Endian 3.2.2] Machines on Green network not accessible.
«
Reply #3 on:
Thursday 20 February 2020, 06:59:29 am »
Quote from: cocoalcazar on Wednesday 29 November 2017, 11:21:02 am
Prueba con esto:
Saludos.
thank you
Logged
DannyG
Full Member
Offline
Posts: 11
Re: [Endian 3.2.2] Machines on Green network not accessible.
«
Reply #4 on:
Monday 02 March 2020, 12:44:40 am »
Quote from: cocoalcazar on Wednesday 29 November 2017, 11:21:02 am
Prueba con esto:
Saludos.
Thanks a lot!
Logged
Pages:
[
1
]
« previous
next »
Jump to:
Please select a destination:
-----------------------------
Announcements
-----------------------------
=> Project News
=> Latest News and Updates
-----------------------------
Support
-----------------------------
=> General Support
=> Installation Support
=> EFW SMTP, HTTP, SIP, FTP Proxy Support
=> VPN Support
=> Hardware Support
-----------------------------
Development
-----------------------------
=> EFW Wishlist
=> Contribute Your Customisations & Modifications
Page created in 0.094 seconds with 18 queries.
Powered by SMF 1.1 RC2
|
SMF © 2001-2005, Lewis Media
Design by
7dana.com