I have a Debian Lenny server with Bind9 (slave) Shorewall and OpenVPN on it. I also have a Win 7 client at my disposal to test the OpenVPN connection.I can make a connection with my Win 7 but when i'm connected i can only ping myself and the server's OpenVPN NIC (TUN0). The Debian server has 3 NICS. One for the servers, one for the internet and one for the clients.
View 1 Repliesi have downloaded some series into my download folder. apparently i did that as root (cant remember how but ok)now i want to delete some of the folders, but i dont have acces. i tried everything. deleting it while as root, using the command line : " sudo rm -R <folder> was the closest i got and i actually succesfully removed one folder. now the problem is that it was a folder named usr, one word. but when i try to delete a folder with more words, its trying to delete all those words seperatly, like ecery word is a different folder.
View 3 Replies View RelatedI have a Debian 5 system with two nics. eth0 is set up with dhcp-client which will receive a public ip address from my isp. The eth1 will be for my local network and I want to use dhcp-server daemon to serve addresses to my internal network. The area I am confused about is how transmissions are getting sent between nics. I've been told to enable tcp forwarding but I don't understand how that would work since the nics have different network addresses... unless tcp forwarding is basically nat or something..
View 2 Replies View RelatedI am trying to get preseed working on a bunch of machines with multiple NICs but it doesn't pick the right interface and/or gets "no link" on all interfaces. My PXE kernel line looks like so (I have auto=true priority=critical and interface=auto)
label squeeze
kernel debian-installer/squeeze/i386/linux
append vga=788 initrd=debian-installer/squeeze/i386/initrd.gz auto=true priority=critical ramdisk_size=10800 root=/dev/rd/0 rw url=example.com/d-i/squeeze/preseed.cfg interface=auto netcfg/dhcp_timeout=60
[Code]...
i have some problems with configuring openvpn tunnel connection to my openvpn server. I'm using static-key tcp connection. Network manager always said to me that connection could not be established. Also, when i try to run openvpn from terminal, i got some strange permissions problem:
Code:
openvpn --config config.ovpn
Mon Apr 5 15:48:37 2010 OpenVPN 2.1_rc19 i486-pc-linux-gnu [SSL] [LZO2] [EPOLL] [PKCS11] built on Oct 13 2009
Mon Apr 5 15:48:37 2010 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Mon Apr 5 15:48:37 2010 /usr/sbin/openvpn-vulnkey -q moj.key
[code]....
i have installed openvpn and config it for a tunnel. my server.conf and client,conf is as follow:
server.conf
port 1194
proto udp
[code]...
I want to configure a VPN over the Internet.I installed the 'openvpn' package, generated the key file, transfered it by a secure way to the client, and setted up the configuration file.
So, in that configuration file I input the IP addresses of the tunneled interfaces. Both IPs are static in the tunnel.
Then, I've heard somewhere that I can assign a dynamic configuration IP for the client. I do this registering a range.
Well, when I tried to change static IP to dynamic IP (changing '192.168.0.2' to '192.168.0.0/24') in the configuration file, the OpenVPN didn't work.
Obviously I don't know what I'm doing, and I really, don't believe that simply changing the IP will make it work, but I tried.
I hope I explained my problem as well.
My configuration file:
# OpenVPN Server Configuration File
dev tun 0
ifconfig 192.168.0.1 192.168.0.2
cd /etc/openvpn
secret key_file
In client I execute the 'openvpn' without the '--daemon' parameter.Then I want that my client uses a IP in a range (192.168.0.0/24, for example), instead of a static IP (192.168.0.2).I also thought to use a DHCP server, but I'm not sure that will work.
I try to establish basic connection between my 2 end systems using openvpn. The problem is when i move the client files to my laptop i cant even ping the server from there. I copy paste the server commands in section 4 [URL] ....
In the client i ran the first command and changing VPNSERVER IP with 10.9.8.1 and LOCALGATEWAY IP with 192.168.1.1
which i thought that whats the server use : ROUTE_GATEWAY 192.168.1.1/255.255.255.0 in the server initialization process
The second command produce error device tun0 not found and when i create one using openvpn --mktun --dev tun
I get RTNETLINK answers : network is unreachable
Note : I use wireless connection in the client system (laptop). The server works good and i could ping him ( from the same machine ) but cant ping him or access the vpn server in my laptop. I also use default openvpn settings...
I'm running OpenVPN service on both debian server and client. When start connection between client and server, I expect all the computer traffic (except ARP and DHCP requests) go through created tunnel. However, when I capture packets on wlan0 on client (the only connection going outside host) using Wireshark, I can see DNS requests visible and sometimes incoming TCP traffic as well, but most of the traffic is going through tunnel as expected. I provide both configurations of client and server and client routing table for inspection. I changed server address to avoid server exploitation in the case of some big configuration mistake.
Commands to run OpenVPN services are:
Code: Select allFor client: sudo openvpn --config /etc/openvpn/client.conf &
For server: sudo openvpn --config /etc/openvpn/server.conf &
**Client routing table when VPN is OFF**
Code: Select allKernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
default 192.168.1.1 0.0.0.0 UG 1024 0 0 wlan0
192.168.1.0 * 255.255.255.0 U 0 0 0 wlan0
[code]...
I searched through many forums and documentation and I found, that for all the traffic going via VPN is command: *push "redirect-gateway def1"* neccessary, however, I have leaks despite this command being in place. I already spent over 2 days with this and tried to configure it in many ways, now I have no clue what I'm missing.
I have recently rented a VPS server so I can run a VPN. Unfortunately, I did not get far in this [URL] ....., I have encountered this error:
Code: Select allxaver@xaver:/$ sudo modprobe tun
ERROR: could not insert 'tun': Unknown symbol in module, or unknown parameter (see dmesg)
So I googled this error and found this: [URL] ....., however response of mine VPS was:
Code: Select allxaver@xaver:/$ ls /lib/modules/uname -r /kernel/drivers/net/tun.*
ls: cannot access /lib/modules/uname: No such file or directory
ls: cannot access /kernel/drivers/net/tun.*: No such file or directory
Code: Select allxaver@xaver:/$ lsb_release -a
No LSB modules are available.
Distributor ID: Debian
Description: Debian GNU/Linux 7.9 (wheezy)
Release: 7.9
Codename: wheezy
xaver@xaver:/$ uname -a
Linux xaver 3.2.0-4-amd64 #1 SMP Debian 3.2.57-3+deb7u1 x86_64 GNU/Linux
I've just installed Ubuntu 9.1 amd64 and I have a problem with acces to some web pages (i.e amd.com, adobe.com). I looks like bowser load a page but then stopping it last infinitely. I have Ubuntu 9.1 x64Atheros wireless adapter connected to ZyXEL access point.Parallel Windows machine which connected to te same router has no prblem with access to those sites. I tried different browsers, different setting of DNSeven set up different versions of 9.1 (x64, x86)
View 2 Replies View RelatedI have met following problem: there is a website I cannot access.
When I am trying to connect to this site I get an error message. I tried all browsers installed on my system. Seamonkey, Firefox, Konqueror. All failed. I don't understand this completely as I have no problem with connecting to internet. Now I am thinking that I myself somehow unintentionally blocked an access to this particular site. Is it possible? Under W$ I have no problems at all.
I'm looking to allow sudo for openvpn for a user.
I cannot find the openvpn program path though, i try a 'which openvpn' command and it returns nothing! :S
What is the path? or how to allow a normal user account to run openvpn with sudo?
Solution found:
Working directories for openvpn on debian 8 are:
/etc/openvpn
/usr/sbin/openvpn
To add sudo capability to a guest account, run this with your admin account:
Code: Select allsudo visudo
then add the line, with your guest username substituted:
Code: Select allusername ALL=/etc/openvpn, /usr/sbin/openvpn
tada! guest account now runs only openvpn.
I will see ipcam in my local network from my tablets. I'm install server/client but I can't even ping my Ipcam from my tablet.I'm ping my ipcam from my server
Code: Select allping 10.42.0.22
PING 10.42.0.22 (10.42.0.22) 56(84) bytes of data.
64 bytes from 10.42.0.22: icmp_seq=1 ttl=64 time=0.639 ms
eth1:1 Link encap:Ethernet HWaddr 00:25:22:1c:6e:05
inet addr:10.42.0.1 Bcast:10.42.0.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
tun0 Link encap:UNSPEC HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00
inet addr:10.42.0.1 P-t-P:10.42.0.2 Mask:255.255.255.255
UP POINTOPOINT RUNNING NOARP MULTICAST MTU:1500 Metric:1
RX packets:1775 errors:0 dropped:0 overruns:0 frame:0
[code]...
my tablet can receive ip, can see ftp on server but can't see anything in my home network.
I use openvpn to connect otherwise isolated machines, and use samba to share filesystems across the vpn, which works just fine.But I recently discovered that copying files using rsync -e ssh is so much faster than copying from a mounted filesystem - like about 5 times faster.I've got comp-lzo enabled in both server and the client, at least I think I have, the directive is there in both the server.conf and the client.conf files, but how do I check that it's active?Does anyone know if I can make openvpn behave more like rsync, because copying is easier than rsyncing?
View 8 Replies View RelatedWhen I make a vpn connection to an openvpn server, I loose the internet connection.
The VPN works all right.
Server config (extract)
Client config
Client route without the VPN connection
client route with VPN connected (internet lost)
Is there anything I can do to the push rule of the servers's config file?
I have setup my laptop to connect to a VPN server running openvpn.
This works fine if I from the client, start OpenVPN from the terminal. /etc/init.d/openvpn start
It then asks for a password for the certificate, which is should.
I have then installed the OpenVPN option for the Gnome network manager (network-manager-openvpn), so I could use the nm-applet for this, instead.
But it seems to be that there is a little bug, so I does not prompt me for the certificate password, OR use the password this is actually set for the certificate. (kinda irritating)
I get the following error on on the client.
nm-openvpn[2936]: ERROR: could not read Private Key username/password/ok/string from management interface
It seems like an very old bug, I tried the following without any luck (Yes I noticed it was for Ubuntu). [url]
I'm trying to setup openVPN on debian, well this worked. But every client will get the same ip (172.17.0.6 - local it is). how to set my server in bridge mode. I've read about: server-bridge LOCALIP 255.255.0.0 172.17.1.20 172.17.1.100
BUT, my server has no ipv4 address, but only ipv6: 2001:41d0:2:b2d6::542a:74a so I am not sure how I can do this.
I recently loaded up my old powermac g3 with debian 6.0 PPC, and it seems to be running quite good. I control it using ssh from my windows 7 box. I installed default-jre, so I could run the minecraft server on there.
I've got two questions: I installed Openvpn, but I'm a bit confused on how to use it.. I want people to be able to connect to my vpn network over the internet, what configuration should I use, and could someone maybe link me a decent step by step tutorial?
secondly, when I tried to launch the server, it tried to generate a new map, but this is taking ages! on my desktop computer, it only took two seconds, but after over half an hour, it only got to 20% of "preparing spawn area" what could be wrong with this? Any reason why the java virtual machine would have performance issues? I have no clue.. I haven't tried copying over my smp map from my windows box yet, and launching that.. but I doubt performance will be any better. (my windows 7 machine is hosting at the moment for about 10 people)
I'm setting up a VPN with openVPN on a debian lenny server. I successfully installed it in the server, then created the certificates and both client (winXP) and server config files. For the client I use openVPN gui. I tested the tunnel and everything went just fine. I even can ping the openVPN server from the XP client.But thats all. I can't ping any machine behind the openvpn server.Some facts that you may find useful to help me with this issue are:
- The openVPN server is not the default gateway of the LAN. The dg is a pfsense server
- I dont have iptables enabled (policy of all chains are ACCEPT).
- I have configured ip forwarding (echo "1" >/proc/sys/net/ipv4/ip_forward)
[code]....
I have checked and all seems to be OK. I think that the problem is connected with routing the traffic from the vpn to my LAN but I don't know how to do that (besides the push route line in the server.conf).
I have succesflly installed OpenVPN server and clients(followed tuts). Everything is great, however when I have openvpn connection established on the clients I loose the basic internet connection in the browser, but my clients can see the vpn server(even I can ssh to the server via the openvpn client ip). I am guessing that all the traffic is routed through the server. I am just not knowledgable enough with routing , iptables and internet sharing. I am using tun based setup on OpenVPN. I am just not even sure if this is a server or a client issue, sorry for ignorance and illeteracy.
View 5 Replies View RelatedI managed to set up an openvpn server, ip-forwarding and a nat iptable rule for that.
Almost everything works as expected, but my problem is:
Smartphone -> VPN -> Internet ==> works (by ip and hostname)
Smartphone -> VPN -> machine in my local network by IP ==> works
Smartphone -> VPN -> machine in my local network by its hostname => DOES NOT WORK
Machine w/ VPN server -> ping to machine in local network by ip or hostname => works
So, i wonder why i cant access a local machine through the vpn by its hostname. I guess I'm missing a forwarding rule??
iptables dump:
# Generated by iptables-save v1.4.21 on Sun Feb 7 20:56:52 2016
*nat
:PREROUTING ACCEPT [786:59064]
:INPUT ACCEPT [728:53047]
:OUTPUT ACCEPT [19:1487]
:POSTROUTING ACCEPT [20:1576]
-A POSTROUTING -s 10.8.0.0/24 -j MASQUERADE
COMMIT
# Completed on Sun Feb 7 20:56:52 2016
I'm using Debian Lenny and I want to tunnel rtorrent only through a OpenVPN tunnel. I have a tunnel running, the config file looks like this:
client
dev tun
proto udp
remote openvpn.xxx.com 1194
resolv-retry infinite
nobind
persist-key
persist-tun
[Code]...
My idea is that I could run a sockd proxy internally that redirects traffic to the openvpn tunnel. I could use the *nix "proxifier" application "tsocks" to make it possible for rtorrent to connect through that proxy (as rtorrent doesn't support proxies). I have trouble configuring sockd as my IP inside the VPN changes every time I connect. This is a config file someone said would help:[URl].. As my IP changes at each connect I don't know what to put in that config file. I have no control over the host side config file.
I currently run openVPN on my Debian box that provides secure ipv4 routing from my laptop to my VPS in a different country (and from there the internet via this box). This works fine. However, id like to sort out ipv6 through this VPN as well as IPV4 and not overly sure how to do it. The remote server itself has native ipv6 configured on device eth0 and it works (ping6, traceroutes all fine,incoming to web servers etc) nicely on dual stack.
How would i go about modifying the config (both client and server if needed) to enable openVPN to act as a tunnel broker to enable the laptop to use the ipv6 through the server as well as the old v4? (the internet connection laptop end will not/does not have native ipv6 from the ISP. Currently im using he-net tunnel broker but id like to run myself through my existing openVPN). VPN config details: Its using UDP, port 1194, creates a TUN interface, redirect-gateway etc and the rest is normal config. Edit:- if it matters the clients are all running windows so i cant use sh scripts to set up stuff client end.
I have been an Ubuntu user for years and am new top OpenSuse 11.3. In Ubuntu I was used to be able to mount and have read/write acces to my Windows partition. My question is: Is this possible in OpenSuse?
View 9 Replies View RelatedI just installed a game, TripleA, that is supposed to run great on Ubuntu using JAVA. I extracted the game to the recommended folder.I have JRE already installed via Install and Remove Applications utility. Is there something else I should do? Installing JRE manually seemed a bit troublesome.Is it "safe", i.e. will the other apps that use java still work properly?
View 1 Replies View RelatedI try to set up a Ubuntu server that links 4 PC/Mac machines. How can I modify a folder property so that my linked PC can access (Create and delete) while the Mac can't or the other way around? Now, I have created a folder from Ubuntu, It lets all or none linked computers to have the same right.
View 9 Replies View RelatedI made a "test" server recently, put a samba + apache + vsftp server on it. The first 2 work but the VSFTP server is troubling me. On my lan it works. but on a wan: My ISP blocks port 21 so I changed it to 2200, my friend tried to connect earlier (With "ftp://myip:2200") and he had to type in a name and password, he did that (I made him an account)he got 425 failed to establish connection. Now I Re-installed vsftpd again, did the exact same thing and now it just wouldn't connect. saying the webpage can't be found. Question 1: What should I do to let a user acces from outside of my LAN? I think it's because of passive mode: but I have no idea what ports I should open for passive mode? My ftp port is 2200.
FileZilla tells me.
Entering passive mode
Command: List
And than that it can't find directory's
only getting with Yahoo mail, gmail is fine, also I get the same problem with chrome and with firefoxI can log in to yahoo both classic and "all new mail", but sometimes emails just doesn't load up at all (I get a blue loading bar but nothing happens), sometimes the mail will load, but I can't get attachments or send email at all. When I try to get an attachment it scans for viruses and just hangs, if I try to compose a message I also get a timer but that hangs too.
View 1 Replies View Relatedi'm trying to run some code i had written a couple of weeks ago in windows :$, the program has to create and copy some files and when i try to run this code in monodevelop this error:Unhandled Exception: System.UnauthorizedAccessException:Access to the path '/tmp' is denied.i've tried to change the path where i know i have read/write permissions but it doesn't seem to work, the code was originally written to create a file in the Temp folder in windows.
View 1 Replies View Related