Debian Configuration :: How To Configure OpenVPN To See Local Network
Feb 11, 2016
I will see ipcam in my local network from my tablets. I'm install server/client but I can't even ping my Ipcam from my tablet.I'm ping my ipcam from my server
Code: Select allping 10.42.0.22
PING 10.42.0.22 (10.42.0.22) 56(84) bytes of data.
64 bytes from 10.42.0.22: icmp_seq=1 ttl=64 time=0.639 ms
eth1:1 Link encap:Ethernet HWaddr 00:25:22:1c:6e:05
inet addr:10.42.0.1 Bcast:10.42.0.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
tun0 Link encap:UNSPEC HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00
inet addr:10.42.0.1 P-t-P:10.42.0.2 Mask:255.255.255.255
UP POINTOPOINT RUNNING NOARP MULTICAST MTU:1500 Metric:1
RX packets:1775 errors:0 dropped:0 overruns:0 frame:0
[code]...
my tablet can receive ip, can see ftp on server but can't see anything in my home network.
View 3 Replies
ADVERTISEMENT
Feb 7, 2016
I managed to set up an openvpn server, ip-forwarding and a nat iptable rule for that.
Almost everything works as expected, but my problem is:
Smartphone -> VPN -> Internet ==> works (by ip and hostname)
Smartphone -> VPN -> machine in my local network by IP ==> works
Smartphone -> VPN -> machine in my local network by its hostname => DOES NOT WORK
Machine w/ VPN server -> ping to machine in local network by ip or hostname => works
So, i wonder why i cant access a local machine through the vpn by its hostname. I guess I'm missing a forwarding rule??
iptables dump:
# Generated by iptables-save v1.4.21 on Sun Feb 7 20:56:52 2016
*nat
:PREROUTING ACCEPT [786:59064]
:INPUT ACCEPT [728:53047]
:OUTPUT ACCEPT [19:1487]
:POSTROUTING ACCEPT [20:1576]
-A POSTROUTING -s 10.8.0.0/24 -j MASQUERADE
COMMIT
# Completed on Sun Feb 7 20:56:52 2016
View 0 Replies
View Related
Dec 24, 2010
Two nights ago I decided to switch from testing to unstable. Since then I am able to connect to the internet, but not to anything on my local network. I am unable to ping this computer from another one on the network. This computer is connected through wireless. I thought that something might have changed with iptables that was blockinghe localnetwork. I tried to "flush the iptables settings with "iptables -F". Since that didn't work I uninstalled iptables (which didn't work and I reinstalled iptables). In my browser I tried to connect to my router and that doesn't work either.I connect to this computer daily through ssh and connect to a NAS. Without ssh and my NAS I feel kinda lost
View 6 Replies
View Related
Sep 3, 2015
I'm trying to set up a *simple* MTA in my local network. The only thing it should be able to do is send system / daemon mails to admin@mylocaldomain. but at the moment I'm pretty much overwhelmed by everything i *should* know in order to set up this MTA
my infrastructure:
- servers:
* test01.mylocaldomain --> should send mails (with exim) to admin@mylocaldomain
* dns01.mylocaldomain --> dns-server
* mail.mylocaldomain --> mail-server (postfix / iredmail package)
I configured exim to be in "internet"-mode. now i have a variety of errors I can choose from (and a variety of solutions that i don't like ).. my test is always an email from test01.mylocaldomain:
echo "Hello World" | mail -s Testmail admin@mylocaldomain
- after running the config, i get the error: admin@mylocaldomain: all relevant MX records point to non-existent hosts --> google says, edit and udpate update-exim4.conf.conf --> dc_relay_domains='mylocaldomain' --> but this exim installation should not be a relay at all. it should only be able to SEND (to this domain), not deliver it. or do i get something wrong?
- after i added dc_relay_domains='mylocaldomain', i get --> SMTP error from remote mail server after RCPT TO:<admin@mylocaldomain>: host mail.mylocaldomain [192.168.x.x]: 550 5.1.1 <root@mylocaldomain>: Sender address rejected: User unknown in virtual mailbox table --> but i don't want to create an account on the mailserver for the SENDER...
- ...so i thought, i'd config exim with the domain "test01.mylocaldomain" (including the server name), so that the sender is clearly from another domain than the mail server handles (e.g. user@test01.mylocaldomain).. but then i get this --> SMTP error from remote mail server after RCPT TO:<admin@mylocaldomain>: host mail.mylocaldomain [192.168.x.x]: 450 4.1.8 <root@test01.mylocaldomain>: Sender address rejected: Domain not found
I really just wanna send mails in my local network.
View 0 Replies
View Related
Apr 21, 2010
I have a new Debian 5.04/ppc install on a G5 tower and it's not able to browse the local network. The clean install could see the network, then I installed the Samba server, and it hasn't worked since. Samba server never really worked, and I'm guessing I messed something up. I've reinstalled network-manager, and removed / reinstalled samba.
I have a small home network (6 machines) running wired and/or wireless, pc/mac and linux.This machine can PING other machines by name and IP address.This machine can PING itself by name and IP address
Other machines can PING this machine by IP address only, not by name.Nautilus network browser only shows the "Windows Network" icon, which, when clicked, shows an empty window.I've got networking up fine on all my other machines but this one is stumping me.
View 1 Replies
View Related
Jul 25, 2010
I have three Debian systems running, along with several XP laptops, PS3 and two DirecTV systems. I use two of the three Debian systems as media servers, and the third is an older system mostly for playing around with. My home network is running fine with the following nuisance. The two newer Debian (Lenny) systems are <barney> and <mitzi>, the older is named <oscar>, running Debian Sarge 3.1. From either locally or remote login to <barney> and <mitzi> I can ssh into either of the other two systems, however when logged into <oscar> I cannot ssh by name to either of the other systems. e.g. ssh: mitzi: Temporary failure in name resolution..However, from <oscar> I can ping outside my network (e.g. ping www.google.com) with no problems.I can also ssh to the other systems via IP address, just not by name.
I've compared the /etc/ssh/ssh_config, /etc/resolv.conf, /etc/ssh/sshd_config and other files between the two systems and not seeing anything peculiar. arp, route, etc., don't show different behavior between the systems either.
View 6 Replies
View Related
Sep 15, 2010
At home I have two computers running linux connected to the same router. I would like to be able to connect them so that I can move files between them and execute simple commands. What is the most simple way to access a prompt on the other computer or to mount a partition currently used by the other computer?Using the www it is possible to connect two computers using ssh, but it should be easier to do this over the LAN, right? I have been googling a lot but not found anything.
View 10 Replies
View Related
Aug 21, 2010
I have installed apache php and mysql on my pc during debian installation... some of my friends complain they cannot access my webserver from their home and it's available only within my local network... Please help regarding this...
View 6 Replies
View Related
May 30, 2010
I'm trying to setup a NFS4 server (no security, local home network behind FW). It seems that I'm missing something because 'rpcinfo -p' does not list v4 for NFS: petit-pois:/home/eric# rpcinfo -p
[Code]...
View 3 Replies
View Related
Nov 17, 2010
I have a remote network that I manage consisting of a DLink DFL-210 firewall/router, and behind that a Dell server running openSUSE 11.2 and a collection of Windows XP/Vista/7 computers.
The Linux box is running OpenVPN as a server (that is how I connect to this network) and a client (it connects to a second server - running XP - at a different location).
The DLink router is the DHCP server and provides addresses on the 192.168.51.0/24 network. The OpenVPN server provides the 10.8.51.0/24 address range.
The remote network that the Linux box connects to is 192.168.54.0/24 via the OpenVPN network 10.8.54.0/24.
I have added routes to the DLink router to route all traffic to the 10.8.51.0/24 and 192.168.54.0/24 networks to the Linux box.
With SUSEFirewall turned off, after I have connected via OpenVPN from my remote computer I can ping all active 192.168.51.0/24 addresses. Other computers on the 192.168.51.0/24 network can ping computers on the 192.168.54.0/24 network. But if I turn on SUSEFirewall, neither of these work. However, I can ping 10.8.54.1 from any computer on the 192.168.51.0/24 network.
How can I set up SUSEFirewall to allow these networks to communicate with eachother?
View 5 Replies
View Related
Apr 8, 2011
I have got the following Problem: I installed the 64 bit lxde Debian version... I couldnt configure the network during the installation because I just have a dsl modem and not a router... so the configuration of the network failed.... after the installation I started debian... and was surprised about the lack of "basic system configuration"-software that had been installed... I couldnt find aptitude or whats the debian-Update-Programm called .... instead I found OpenOffice... HAE? then I tried to configure internet access..... so I started a terminal and tried to start pppoeconf... but the program wasnt found! ARRRGG! What am I doing wrong here.... Why are these system utilities like pppoeconf not always installed...
View 1 Replies
View Related
Sep 16, 2015
I'm running OpenVPN service on both debian server and client. When start connection between client and server, I expect all the computer traffic (except ARP and DHCP requests) go through created tunnel. However, when I capture packets on wlan0 on client (the only connection going outside host) using Wireshark, I can see DNS requests visible and sometimes incoming TCP traffic as well, but most of the traffic is going through tunnel as expected. I provide both configurations of client and server and client routing table for inspection. I changed server address to avoid server exploitation in the case of some big configuration mistake.
Commands to run OpenVPN services are:
Code: Select allFor client: sudo openvpn --config /etc/openvpn/client.conf &
For server: sudo openvpn --config /etc/openvpn/server.conf &
**Client routing table when VPN is OFF**
Code: Select allKernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
default 192.168.1.1 0.0.0.0 UG 1024 0 0 wlan0
192.168.1.0 * 255.255.255.0 U 0 0 0 wlan0
[code]...
I searched through many forums and documentation and I found, that for all the traffic going via VPN is command: *push "redirect-gateway def1"* neccessary, however, I have leaks despite this command being in place. I already spent over 2 days with this and tried to configure it in many ways, now I have no clue what I'm missing.
View 0 Replies
View Related
Dec 16, 2015
I have recently rented a VPS server so I can run a VPN. Unfortunately, I did not get far in this [URL] ....., I have encountered this error:
Code: Select allxaver@xaver:/$ sudo modprobe tun
ERROR: could not insert 'tun': Unknown symbol in module, or unknown parameter (see dmesg)
So I googled this error and found this: [URL] ....., however response of mine VPS was:
Code: Select allxaver@xaver:/$ ls /lib/modules/uname -r /kernel/drivers/net/tun.*
ls: cannot access /lib/modules/uname: No such file or directory
ls: cannot access /kernel/drivers/net/tun.*: No such file or directory
Code: Select allxaver@xaver:/$ lsb_release -a
No LSB modules are available.
Distributor ID: Debian
Description: Debian GNU/Linux 7.9 (wheezy)
Release: 7.9
Codename: wheezy
xaver@xaver:/$ uname -a
Linux xaver 3.2.0-4-amd64 #1 SMP Debian 3.2.57-3+deb7u1 x86_64 GNU/Linux
View 2 Replies
View Related
Jun 2, 2011
how to configure dhcp server in a local lan network
View 2 Replies
View Related
Oct 22, 2010
I use openvpn to connect otherwise isolated machines, and use samba to share filesystems across the vpn, which works just fine.But I recently discovered that copying files using rsync -e ssh is so much faster than copying from a mounted filesystem - like about 5 times faster.I've got comp-lzo enabled in both server and the client, at least I think I have, the directive is there in both the server.conf and the client.conf files, but how do I check that it's active?Does anyone know if I can make openvpn behave more like rsync, because copying is easier than rsyncing?
View 8 Replies
View Related
Oct 29, 2010
When I make a vpn connection to an openvpn server, I loose the internet connection.
The VPN works all right.
Server config (extract)
Client config
Client route without the VPN connection
client route with VPN connected (internet lost)
Is there anything I can do to the push rule of the servers's config file?
View 1 Replies
View Related
Feb 18, 2011
I currently run openVPN on my Debian box that provides secure ipv4 routing from my laptop to my VPS in a different country (and from there the internet via this box). This works fine. However, id like to sort out ipv6 through this VPN as well as IPV4 and not overly sure how to do it. The remote server itself has native ipv6 configured on device eth0 and it works (ping6, traceroutes all fine,incoming to web servers etc) nicely on dual stack.
How would i go about modifying the config (both client and server if needed) to enable openVPN to act as a tunnel broker to enable the laptop to use the ipv6 through the server as well as the old v4? (the internet connection laptop end will not/does not have native ipv6 from the ISP. Currently im using he-net tunnel broker but id like to run myself through my existing openVPN). VPN config details: Its using UDP, port 1194, creates a TUN interface, redirect-gateway etc and the rest is normal config. Edit:- if it matters the clients are all running windows so i cant use sh scripts to set up stuff client end.
View 1 Replies
View Related
Apr 5, 2010
i have some problems with configuring openvpn tunnel connection to my openvpn server. I'm using static-key tcp connection. Network manager always said to me that connection could not be established. Also, when i try to run openvpn from terminal, i got some strange permissions problem:
Code:
openvpn --config config.ovpn
Mon Apr 5 15:48:37 2010 OpenVPN 2.1_rc19 i486-pc-linux-gnu [SSL] [LZO2] [EPOLL] [PKCS11] built on Oct 13 2009
Mon Apr 5 15:48:37 2010 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Mon Apr 5 15:48:37 2010 /usr/sbin/openvpn-vulnkey -q moj.key
[code]....
View 1 Replies
View Related
Jun 17, 2010
I am working on a Debian 2.6.26-19 Distribution with exim4 as MTA. After a system restart a problem occurred with delivering emails to local addresses. These local addresses use a 1and1 mailserver for email. The MX records for the local domain are set correctly but exim does not use a DNS lookup for these addresses because it identifies them as local addresses. I figured this out by executing the exim4 -d -bt command. The dns lookup part of the result looks like this (I replaced the actual address with placeholders):
[Code]....
The eventual result of the exim4 -d -bt command is: [user]@[domain.ext] is undeliverable: Unrouteable address How can I make sure, that exim4 makes a DNS lookup for the local addresses instead of skipping it? I know that I have to edit a exim4 configuration file, but I could not figure out which and how.
View 1 Replies
View Related
Apr 28, 2011
I want configuration a DNS server for my area! What DNS server software is better than other software?
View 4 Replies
View Related
Mar 9, 2011
I have setup my laptop to connect to a VPN server running openvpn.
This works fine if I from the client, start OpenVPN from the terminal. /etc/init.d/openvpn start
It then asks for a password for the certificate, which is should.
I have then installed the OpenVPN option for the Gnome network manager (network-manager-openvpn), so I could use the nm-applet for this, instead.
But it seems to be that there is a little bug, so I does not prompt me for the certificate password, OR use the password this is actually set for the certificate. (kinda irritating)
I get the following error on on the client.
nm-openvpn[2936]: ERROR: could not read Private Key username/password/ok/string from management interface
It seems like an very old bug, I tried the following without any luck (Yes I noticed it was for Ubuntu). [url]
View 1 Replies
View Related
Jun 28, 2009
I have a lab of 10 computers with ips from 192.168.1.120 to 192.168.1.130 the server's Ip is 192.168.1.116When I am on client computer I type the server's Ip address on the browser and it works. All i want is that instead of entering my servers Ip I could just enter an address like: example.lan
View 3 Replies
View Related
Jan 28, 2009
We are in the process for Integration Network with our Government Network.
Let say that our network are 192.168.0.0/24
And the Government network are 10.0.0.0/8
I want to know if the local network can resolve the internet names in Government Network. I am using Bind for DNS.
View 1 Replies
View Related
Nov 2, 2010
What would be necessary to run an ftp server (or a web server) on my local PC so that other people I know could access it and download stuff from it? The idea is to share photos, videos etc with friends/family where the files are a bit too big for email. (All 100% legal, own-content, no copyright issues, needless to say). Security isn't that vital, I'd just put files in the ftp directory, email the link and let them download the files, then remove them again. No passwords are required, and no uploads.
Obviously there's the problem that both computers have to be on at the same time, and I assume I'd have to change my computer's firewall settings and my router's settings to allow the traffic through, but my question is more basic than that - is it even possible? My internet connection is through a router, and as I understand it, my router has the IP address, not my computer. So I can connect through my router using my computer's IP address, but only my router knows my computer's IP address, and all the rest of the internet just sees my router and its IP address. Which means (I think) that I can't just send my IP address for my family to connect to, because that only gets them as far as my router, and the router would have no idea what to do with such requests. Am I right so far?
So is there any way for my family's computers to contact an FTP server or a web server running on my computer? Or does it require some kind of intermediary server to act as a traffic-forwarder? Is there such a thing? I'm assuming that setting up little private torrents would be fiddly and inefficient. Or would it be better/simpler to use one of the free filesharing services and put up with the (sometimes not too family-friendly) adverts associated with them?
View 12 Replies
View Related
Jan 5, 2011
I'd like configuring NTP service on my Lenny Debian client to retrieve time from my local NTP server, so I thought to configure /etc/ntp.conf and to insert into crontab this command 'ntpd -qg', which is indicated in man. Can I run ntpd service to synchronize time for my client, avoiding to listen on port 123, beacuse my scope is to alignment time on client and to not give service to others, for this scope there is ntp server !
View 1 Replies
View Related
Jan 15, 2011
I can't get past the "scp -p id_rsa.pub" step; ssh fails with "Could not resolve hostname" errors. Both machines are connected with a hub. I've also tried using the IP address in the place of hostnames with no avail. Both machines can ping eachother successfully.The server has the "openssh-server" package installed.
View 1 Replies
View Related
Mar 10, 2011
Backround:
I'll have 2 routers:
- ADSL-router (D-link DSL-2640U)
+ NAT on (needed as one static IP from ISP)
+ Server's IP as 192.168.X.xxx
+ router firewall port-forwards set for needed ports (21,22, 80 etc) to 192.168.0.xxx - 2nd LAN-router
[Code]....
Is there any setting/file on Debian-user-machine, where I could fix that abc.mydomainXYZ.com/defg is always in something to do with 192.168.X.xxx
View 4 Replies
View Related
Sep 19, 2015
I try to create some rules to detect an outgoing traffic from my debian jessie that is not from my IP or loop.
#!/bin/bash
/sbin/iptables -N C_OUT_N_LOCAL
/sbin/iptables -N C_OUT_N_LOCAL_LO
/sbin/iptables -A C_OUT_N_LOCAL -m limit --limit 2/min -j LOG --log-prefix "PK: output not local : " --log-level 4
LO_IP="127.0.0.1"
MY_IP="192.168.0.4"
/sbin/iptables -I OUTPUT -p ALL ! -s $LO_IP -j C_OUT_N_LOCAL_LO
/sbin/iptables -A C_OUT_N_LOCAL_LO -p ALL ! -s $MY_IP -j C_OUT_N_LOCAL
View 0 Replies
View Related
Jan 28, 2010
i rarely need my wireless, and i want it off by default, i am going to disable it during bootup with
echo 0 > /sys/devices/platform/acer-wmi/wireless
what would be the proper place for this? if i put it in rc.local it will be executed very late, i'd rather have it sooner. if add a new script to init.d, then run update-rc.d, i would have to adhere to the start|stop|reload structure of these scripts, right? or do i go a totally different way about this?
View 2 Replies
View Related
Aug 8, 2011
I am trying to create a local debian repo for 3rd party apps and my own deb's. I have done the following: dpkg-scanpackages debian | gzip -9c> debian/Packages.gz Which did create a file called Packages.gz in the directory However, when I do apt-get update on a client machine I get the following error: W: Failed to fetch [URL] Could not connect to 10.1.1.10:8080 (10.1.1.10). - connect (111: Connection refused) W: Failed to fetch [URL] Unable to connect to 10.1.1.10:8080: W: Some index files failed to download, they have been ignored, or old ones used instead.
View 1 Replies
View Related
