I'm setting up a gateway using Kamikaze 8.09 on an ASUS WL500gP.
Generally, it's all gone together well, including several port forwards to
internal machines.
I've run into a seeming brick wall, however, in trying to get and
openvpn link configured so I can access the entire LAN from my laptop on
the road. When I attempt to start the VPN from my laptop, I get this:
rtg@studio:~$ openvpn home.ovpn
Mon May 23 11:29:22 2011 OpenVPN 2.1_rc7 x86_64-pc-linux-gnu [SSL] [LZO2]
[EPOLL] built on Dec 15 2010
Mon May 23 11:29:22 2011 IMPORTANT: OpenVPN's default port number is now
1194, based on an official port number assignment by IANA. OpenVPN
2.0-beta16 and earlier used 5000 as the default port.
Mon May 23 11:29:22 2011 /usr/sbin/openvpn-vulnkey -q aapsc.key
Mon May 23 11:29:23 2011 TUN/TAP device tun0 opened
Mon May 23 11:29:23 2011 ifconfig tun0 172.16.1.2 pointopoint 172.16.1.1
mtu 1500
Mon May 23 11:29:23 2011 UDPv4 link local (bound): [undef]:1194
Mon May 23 11:29:23 2011 UDPv4 link remote: aaa.bbb.ccc.ddd:1194
Mon May 23 11:29:23 2011 read UDPv4 [ECONNREFUSED]: Connection refused
(code=111)
Mon May 23 11:29:33 2011 read UDPv4 [ECONNREFUSED]: Connection refused
(code=111)
Mon May 23 11:29:33 2011 read UDPv4 [ECONNREFUSED]: Connection refused
(code=111)
The last message repeats endlessly, at a rate of about 1/sec, or more
with any attempts to contact hosts across the link.
I did several searches on that message, and the pages I found all seem
to refer to that message in the server's logs when a client disconnects
unexpectedly. I'm getting it in the client's terminal as I attempt to
start the connection.
I'm wondering if the openvpn daemon is even running. It's listed in
/etc/rc.d to be started, but I don't see it running, and netstat -l
doesn't show UDP 1194 as open, either. iptables -l shows no specific
mention of UDP 1194 either, no specific rule to ALLOW or DROP. When I
issue a `/etc/init.d/openvpn restart` from a console (as root), I get no
messages clueing me to a failure, but I still don't see it showing up in
`ps aux` either.
Can someone give me a clue where to look next?
--
Rick Green
"Those who would give up essential Liberty, to purchase a little
temporary Safety, deserve neither Liberty nor Safety."
-Benjamin Franklin
"As for our common defense, we reject as false the choice between our
safety and our ideals."
-President Barack Obama 20 Jan 2009
_______________________________________________
openwrt-users mailing list
[email protected]
https://lists.openwrt.org/mailman/listinfo/openwrt-users
