Am 08.10.2011 um 12:51 schrieb Michael Keuter: > Am 07.10.2011 um 15:49 schrieb David Kerr: >> >> >> >> On Thu, Oct 6, 2011 at 3:01 PM, Michael Keuter <li...@mksolutions.info> >> wrote: >> >> You need to enable the pptp-vpn Firewall-Plugin, and if its not the router, >> you need to forward GRE and TCP 1723 to it. >> >> >> That firewall plugin states that it is automatically enabled when PPTP is >> enabled, and indeed it seams to be. The firewall problem is at the client >> side where I am behind a firewall I have no control on. > > OK, that can be an issue. I have the same here behind 2 routers. > >> In OpenVPN server, you can leave the default settings, I added in the "push" >> box "route 192.168.xx.0 255.255.255.0" for my internal network. >> >> You need to use certificates. Create one for your user, then you can >> download it. Create a new configuration in Viscosity and in Authentication >> set it to SSL/TLS Client and import the CA, crt and key from your download. >> >> You need to be on another network range to be able test it! >> >> >> Okay, have made progress with OpenVPN. Got the certificates all set up. >> Configured Viscosity client and it failed to connect. Decided to open >> EXT->Local for port 1194 in the Astlinux firewall and then it connected. > > Sorry, I forgot that. > >> I can ping 192.168.1.1 (my Astlinux box). However I cannot get to anything >> else inside my network, no 192.168.1.xx. No ping, no http. Is there >> anything else I have to do at my firewall or at the viscosity client side? >> I do have "route 192.168.1.0 255.255.255.0" in the push field on the server. > > Yes, you need to, you also can add the route in Viscosity in the Network > section. You also have to change in Astlinux Firewall settings: > Allow OpenVPN Server tunnel to the xx LAN interface. > >> Thanks, >> David > > Michael > > http://www.mksolutions.info
I forgot to send this mail :-(, that why its now too late. Michael http://www.mksolutions.info ------------------------------------------------------------------------------ All of the data generated in your IT infrastructure is seriously valuable. Why? It contains a definitive record of application performance, security threats, fraudulent activity, and more. Splunk takes this data and makes sense of it. IT sense. And common sense. http://p.sf.net/sfu/splunk-d2dcopy2 _______________________________________________ Astlinux-users mailing list Astlinux-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/astlinux-users Donations to support AstLinux are graciously accepted via PayPal to pay...@krisk.org.
