Welcome, Guest. Please login or register.
Did you miss your activation email?
Saturday 09 November 2024, 01:18:20 pm

Login with username, password and session length

The Latest Endian Firewall is now available for download HERE
14250 Posts in 4377 Topics by 6515 Members
Latest Member: hulteends
Search:     Advanced search
+  EFW Support
|-+  Support
| |-+  VPN Support
| | |-+  VPN Issues Endian 2.5.2 Community. Need Help.
0 Members and 1 Guest are viewing this topic. « previous next »
Pages: [1] Go Down Print
Author Topic: VPN Issues Endian 2.5.2 Community. Need Help.  (Read 21063 times)
zura
Jr. Member
*
Offline Offline

Posts: 1


« on: Friday 30 August 2013, 08:15:45 pm »

Hi All,

So lets start from configuration:

ESXi 5.1 config.
Network Adapters x 2 Intel
NIC Teaming : Route Based on Originated Virtual port ID
Failover detection: Beacon Probing
Promiscuous Mode: Accepted on vSwitch
4 NIC-s for EFW, VLANs 1,2,3,4 for each NIC


EFW:
Promiscuous Mode: Accepted an all network cards.

GREEN  192.168.0.0/24
ORANGE 192.168.1.0/24
BLUE 192.168.2.0/24
RED: DHCP

VPN Config:

OpenVPN server enabled: Yes
Bridged: No
VPN subnet: 192.168.5.0/24
Protocol UDP
Port 1194
Block DHCP responses coming from tunnel: No
Don't block traffic between clients: Yes
Allow multiple connections from one account: Yes
Push This Nameservers: 192.168.1.10 (Domain Controller) (This bug was fixed in 2.5.2, in 2.5.1 this options didn't work. even via Account settings) 
Push Domain: localhomain.local
Authentication type: PSK (username/password)
Accounts: Username/password
Push route to blue zone: Yes
Push route to orange zone:Yes
VPN Firewall: Enabled, All VPN Users to Gree,Blue,Orange,IPSEC,VPNserver Service ANY ALLOW with IPS.


So what i get:

VPN not working.
1. My Android device is able to try connection with 'OpenVPN Connect', settings are pushed but i'm getting error :
"TUN_SETUP_FAILED info="tun_builder_error: ifconfig adresses are not in the same /30 subnet (topology net30)"

I tried to fix this by adding ' push "topology subnet" ' argument in /etc/openvpn/openvpn.conf.tmpl and after this i was able to establish VPN connection.

Exactly same is happening with Win7 x64 and OpenVPN client.

but cant access anything in my network, even cant ping 192.168.5.1, or openvpn server IP.

What is wrong? Please Help

PS. When I switch VPN Server to Bridged mode, Win7 is working perfectly, but Android device is not supporting TAP-MODE without rooting, etc. So I decided to stay on Nonbridge mode (TUN-MODE)
 


Logged
mmiat
Sr. Member
****
Offline Offline

Gender: Male
Posts: 236


WWW
« Reply #1 on: Saturday 21 September 2013, 09:04:15 pm »

so, please clearify to me Smiley

if BRIDGES is NO, Android not-rooted can connect?
Logged

---------------------
IT Consultant
www.fsw.it
Hardware & Software
juddyjacob
Full Member
***
Offline Offline

Posts: 64


« Reply #2 on: Friday 04 July 2014, 02:07:56 pm »

you need a app that supports tap - this one works wonderfully https://play.google.com/store/apps/details?id=it.colucciweb.openvpn&hl=en
Logged
Pages: [1] Go Up Print 
« previous next »
Jump to:  

Page created in 0.078 seconds with 18 queries.
Powered by SMF 1.1 RC2 | SMF © 2001-2005, Lewis Media Design by 7dana.com