> @Client, the "10.0.0.0/18 dev tun0" route seems an enexpectedly large
> address range, and in the logs, 'broadcast 191.0.0.182' seems an odd
> address.
This issue fixed by changing in the @Server's client ccd/ file
- ifconfig-push 10.0.0.2 S.S.S.S
+ ifconfig-push 10.0.0.2 255.255.255.0
That should have been done when I switched from point-to-point -> subnet
topology @ server
Originally, I'd had topology @server -> point-to-point. Using p2p with
--dev tun, the second argument to --ifconfig needed to be an IP address.
with -> subnet, it's a mask
Now, after restart, at client,
ip route
...
10.0.0.0/24 dev tun0 proto kernel scope link src
10.0.0.2
...
and logs
@Server
...
Mon Jul 7 07:24:58 2014
client.vpn.mydomain.com/C.C.C.C:13494 SENT CONTROL
[client.vpn.mydomain.com]: 'PUSH_REPLY,route 192.168.0.0
255.255.255.0,route-gateway 10.0.0.1,topology
subnet,ping 10,ping-restart 120,ifconfig 10.0.0.2
255.255.255.0' (status=1)
...
@Client
...
Mon Jul 7 07:24:58 2014 PUSH: Received control message:
'PUSH_REPLY,route 192.168.0.0
255.255.255.0,route-gateway 10.0.0.1,topology
subnet,ping 10,ping-restart 120,ifconfig 10.0.0.2
255.255.255.0'
...
Mon Jul 7 07:24:58 2014 /usr/local/sbin/unpriv-ip addr
add dev tun0 10.0.0.2/24 broadcast 10.0.0.255
Mon Jul 7 07:24:58 2014 /usr/local/sbin/unpriv-ip route
add 192.168.0.0/24 via 10.0.0.1
...
looks a more reasonable/excepted addr range for the VPN segment.
checking, this has no effect on the still failing ping from @Server ->
@Client, as above
------------------------------------------------------------------------------
Open source business process management suite built on Java and Eclipse
Turn processes into business applications with Bonita BPM Community Edition
Quickly connect people, data, and systems into organized workflows
Winner of BOSSIE, CODIE, OW2 and Gartner awards
http://p.sf.net/sfu/Bonitasoft
_______________________________________________
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users
