Fedora Networking :: OpenVPN Configuration - Destination Host Unreachable
Mar 6, 2010
I have a problem with the Fedora 12 Network Manager - OpenVPN configuration. If I use the same configuration and manually start openvpn (as client) I get connected to the OpenVPN server and I can ping the network that I am accessing. With Network Manager - I get connected but when I try to ping is giving me "Destination host unreachable". The routing table looks similar except that when connecting with network manager is giving me on more route in table
Destination Gateway Genmask Flags Metric Ref Use Iface
xxx.xxx.xxx.xxx 192.168.0.1 255.255.255.255 UGH 0 0 0 wlan0
192.168.0.0 0.0.0.0 255.255.255.0 U 2 0 0 wlan0
192.168.171.0 0.0.0.0 255.255.255.0 U 0 0 0 tap0
0.0.0.0 192.168.0.1 0.0.0.0 UG 0 0 0 wlan0
Where xxx.xxx.xxx.xxx is the IP of the OpenVPN server. When connecting "manually" I this routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
192.168.0.0 0.0.0.0 255.255.255.0 U 2 0 0 wlan0
192.168.171.0 0.0.0.0 255.255.255.0 U 0 0 0 tap0
0.0.0.0 192.168.0.1 0.0.0.0 UG 0 0 0 wlan0
What I do wrong in Network Manager? If I try to delete the route with xxx.xxx.xxx.xxx is disconnecting the vpn connection.
View 8 Replies
ADVERTISEMENT
Feb 17, 2009
I've got a problem with 'seeing' other machines on my Network. I have two laptops both with F10 on them however I can't ping either of them. They can connect fine to the internet and ping the router, they are both on the same subnet with Firewalls disabled on both machines. When I try to ping it says: "Destination Host Unreachable". I've tried firing up Wireshark to see if that will give me any clue but even that doesn't show any packets whatsoever from the other machine across the Network. It's like they are completely invisible to each other.
View 3 Replies
View Related
Jul 30, 2010
I have 5 1955 blades in an enclosure for an custom application cluster.All were running Centos 4.4 no problem.We wanted to start upgrading them cleanly to 5.5 so two of them got fresh installs of 5.5.The installs went well enough, no glaring errors.However they can only ping each other! The network settings are fine, no firewall or selinux. I'd run the info script but I can neither download it to them nor paste it in via kvm.Standard static entries, virtually identical to their 4.4 brethren. They ping each other so network drivers are fine, no built in switch configuration changes. It has to be some kind of network configuration issue that i'm just not seeing.
Edit* When i try and ping anything else, including the other blades, I get Destination Host Unreachable.
View 5 Replies
View Related
Jun 8, 2010
i have a problem with my internet connection in ubuntu 8.04 server edition. if i ping to: [URL]... i get: Destination Host Unreachable but when i ping to my gateway or other pc's in my network no problems occur.
View 9 Replies
View Related
Aug 26, 2009
I have 2 live IP based Linux systems .
[Code]...
Both systems connected in same LAN based network . Both WAN live ips are connected through different modems. Problem is that , no system is able to ping or connect with other system with Live ip , though they are able to connect through LAN ip and both systes are accessable and also able to browse internet (google etc..) Ping error :-- Destination Host Unreachable.
View 2 Replies
View Related
Nov 27, 2010
I cannot access/ping my Debian server. I know the IP is right (ifconfig, route and ip addr) all gave me 10.0.2.25 (route gave me 10.0.2.0).I cannot ping it from any computer in my netwerk, even when I try to ping it from my Debian itself, it gives me Destination Host Unreachable !(Wierdly, I can ping 10.0.2.2 tho).I am using virtualbox when the netwerk options 'NAT' turned on. When I look at my /etc/network/interfaces/ the last line looks like:iface eth0 inet dhcpShouldn't their be some other stuff listed?
View 6 Replies
View Related
Jan 13, 2010
I have an HP BL460c G5 with 5.3 installed fresh
it can ping its own IP address just fine
its a bit slow but constant pinging the switch its connected to
and i get alot of Destination host unreachables(a few do get through) when pinging the gateway
port on the switch is hardcoded to GB/full. and the server itself reads that its connecting at GB/full.
View 10 Replies
View Related
Oct 26, 2009
I'm using a single raw socket to read UDP packets from local test network with 1024 ports. Each UDP src and dest port is unique and I need access to IP and UDP header fields. I can stream and process data (in and out) at 100 mbps in linux-rt kernel with very low jitter < 250 usec, 10 usec nominal.
I'd like to prevent kernel from issuing ICMP port unreachable errors back to the sending host, however, I don't want to create 1024 vanilla UDP sockets and bind to each one because of resource constraints. Currently, I'm using iptables to drop the outbound port unreachable messages. Does anyone know of a way (programmatic using C code) to prevent the ICMP unreachable traffic? Perhaps an IOCTL or socket option? I also tried changing /proc/sys/net/ipv4/icmp_ratelimit but that seemed to have no effect. By default the ratemask is set for dest unreachables and a variety of ratelimit values did not change any behavior that I could see.
View 5 Replies
View Related
Jan 13, 2010
I am an 'experienced perpetual newbie' using Ubuntu 9.04. I know a little about quite a few things but nothing past intermediate knowledge so:I am trying to set up a simple LAN between 'rhino' (192.168.1.102) and 'polly-laptop' (192.168.1.101). My router address is 192.168.1.1
From polly-laptop:
sudo mount rhino:/home /media/rhinohome
polly-laptop can access rhino:/home fine.
[code]....
View 8 Replies
View Related
Jun 16, 2011
I have (seemingly regretfully) finally upgraded my Fedora Core 7 linux machine that has served me so well for the past decade. One of the final pieces to put in place was my Openvpn config (which was running flawlessly on my FC7) which I cannot get to work.
Here are my steps.
1. Disabled SELinux
2. Added the following entry in my iptables: (although I've stopped iptables to help troubleshoot)
-A INPUT -i tap0 -j ACCEPT
-A INPUT -i br0 -j ACCEPT
-A FORWARD -i br0 -j ACCEPT
3. Yum installed openvpn and bridge-utils (btw I'm using bridging)
4. Configured my bridge-start script as such:
#!/bin/bash
# Set up Ethernet bridge on Linux
# Requires: bridge-utils
# Define Bridge Interface
br="br0" .....
5. Configured my openvpn server conf as such:
proto tcp-server
port 5990
dev tap0 .....
When I execute my bridge-start script it creates the br0 and tap0 then all connectivity vanishes (I can only ping my gateway 10.0.0.50) - internet and any other addresses time out.
View 6 Replies
View Related
Apr 4, 2010
My special networking configuration.
The case: I'm running two dedicated Linux servers (openSUSE). Both servers are connected through public IP addresses to the internet. Each server hosts a VMware with another Linux inside.
SRV1 and SRV2 are the entry points for OpenVPN from external clients. SRV1 and SRV2 are although connected through an OpenVPN connection for save data sharing.
My problems:
SRV3 can't connect to SRV2 and SRV4.
SRV4 can't connect to SRV1 and SRV3.
External OpenVPN clients connected to SRV1 can't reach SRV2 and SRV4.
External OpenVPN clients connected to SRV2 can't reach SRV1 and SRV3.
Here are my configurations:
Code:
Code:
Code:
Code:
View 1 Replies
View Related
Mar 28, 2010
After I applied below iptables rule.. I am unable to ping the host in 172.16.1.0/24 from OpenVPN client
View 1 Replies
View Related
Jul 13, 2011
I have been trying to set up openVPN on a Virtual Machine running Ubuntu 10.04 with the eventual intention of having a closed VPN in the workspace I'm at, and a bridged internet connection out through the server.My initial process/instinct was to go through Webmin. After a fair bit of tooling around making eys/certificates, I was able to get a response (and that's all it was, really) from my windows machine accessing the VPN server. However, in my attempt to bridge the network, I have lost all internet/networking capabilities from the server.Fortunately I am able to access the server directly from the hardware underneath (i.e. I don't need to SSH in or anything), and so I've been attempting to restore the server's networking back to default. I have returned the /etc/network/interfaces file to it's original state (just the loop, and an eth0 on dhcp) and restarted the networking. A check with ifconfig returns what seems to be a working eth0, and the loop (noting else) however I am unable to ping any outside server. When I do, I am given the message:From XXX.XXX.XXX.XXX icmp_seq=1 Destination Host Unreachable(where of course XXX is my IP address).nother VM on the server is able to access the internet just fine, so it's not the overall server hardware...I guess at this point I'm just trying to take steps back,
View 1 Replies
View Related
Jan 4, 2011
I have a strange problem with my debian lenny server. I am running ispconfig 3, squirrelmail, webmin, clamav, etc on my lenny server. I have a few domain names binded to my ip adress. Until yesterday, everything worked fine. Today, i couldn't seem to reach my mailbox, and my website appeared to be offline. But when someone checks it from outside, it works fine! Only i cant reach it. This problem only occurs with one of the six domainnames i have. The rest is reachable for me.
I checked the logs, the ipadresses, everything seems fine. I have no clue what it could be... anyone suggestions?
Figured out the problem, party... it's a problem with my XP. If i boot in Windows 7 the site is reachable. Doesn't make sense tho.
View 2 Replies
View Related
Apr 5, 2010
i have some problems with configuring openvpn tunnel connection to my openvpn server. I'm using static-key tcp connection. Network manager always said to me that connection could not be established. Also, when i try to run openvpn from terminal, i got some strange permissions problem:
Code:
openvpn --config config.ovpn
Mon Apr 5 15:48:37 2010 OpenVPN 2.1_rc19 i486-pc-linux-gnu [SSL] [LZO2] [EPOLL] [PKCS11] built on Oct 13 2009
Mon Apr 5 15:48:37 2010 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Mon Apr 5 15:48:37 2010 /usr/sbin/openvpn-vulnkey -q moj.key
[code]....
View 1 Replies
View Related
Jul 6, 2010
I am trying to set up a DMZ host - that is, one multifunctional PC between the WAN and the LAN. I've started with a basic router, and expanding upon that as the need arises. I am currently trying to gain access (from the WAN) to a website hosted on one of the servers in the LAN, but I am having trouble accessing the host from the WAN; I think my iptables configuration may be too restrictive. On the DMZ host, I'm using Debian (Etch). I have setup dhcp3-server, a script to configure iptables and pound (reverse-proxy). The (virtual) machine has 4 network cards: eth0, eth1, eth2, eth3; eth0 is the WAN, eth1 through eth3 serve 3 different virtual LANs.
All machines in the LAN (except one windows 2008 server - I might want to address that problem later) get their IP adresses correctly via dhcp from the DMZ host. All machines on the LAN can access the internet (including the 2008 server if I configure it manually) as they should. If I access http://localhost on the DMZ host, pound reports "The service is not available. Please try again later." - as it should.
I can ping the DMZ host from the WAN on 10.0.0.79 However, if I try to access the DMZ host from the WAN (http://10.0.0.79) I get "Unable to connect" from firefox. I'm sure this is not a pound problem, so I think it's in the iptables, or maybe I should be installing some extra software that I'm unaware of.
[code]....
View 3 Replies
View Related
Aug 9, 2010
i have installed openvpn and config it for a tunnel. my server.conf and client,conf is as follow:
server.conf
port 1194
proto udp
[code]...
View 1 Replies
View Related
Jun 6, 2011
Debian Testing host, Winduhs XP guest. Winduhs is not allowed to directly access The Internets, and I am not setting up bridging as that makes it possible for the guest to mount layer 2 attacks on the LAN. I need for the guest to tunnel through the host without being able to see anything on the host, so it can then get access to The Internets, while being protected by iptables (Shorewall).
Used to be with VMware I had host-only set and the guest in a different class c (192.168.2.1) from the host (192.168.1.1) I turned on ipforwarding, set Shorewall rules, and it all worked. Now I have everything set with VirtualBox, and it does not work. Guest can ping its interface but not host. Host can ping vboxnet0. Host is supposed to masquerade guest's 192.168.2.1 through to the default out at 192.168.1.1, but it's not. I think a clue is in routing, but I don't know what's wrong.
[code]....
View 2 Replies
View Related
Nov 12, 2009
I recently installed Fedora 10 and I'm trying to install a driver for my HP Deskjet F4200 Series All in One printer. I downloaded the proper hplip file and when i go to install it in the terminal it gets to the very end where it is trying to install the missing required dependencies. When it checks for the network connection it comes back saying "error: The network appears to be unreachable. Installation cannot complete without access to error: distribution repositories. Please check the network and try again."I am connected to the internet through hardwire cable (also tried it through wifi) and have no trouble accessing internet through mozilla or downloading packages elsewhere. Any ideas on why my terminal won't recognize my internet connection??
View 3 Replies
View Related
Mar 12, 2009
I installed Fedora 10 and are using KDE. I struggled to get my network up and running - error for ping was "network is unreachable". I eventually got it right by modifying my ifcfg-eth0 file manually.
Now I'm trying to install with yum, but yum fails to connect, probably because of the proxy. I've set the proxy in <System Settings><Network Settings><Proxy> but it doesn't allow me to also add the authorization - greyed out. I've chosen the manual configuration of proxy.
1. How can I enable or allow the adding of authorization in the proxy dialogs or
2. Where is the proxy file which I can modify from command line (and how)?
View 4 Replies
View Related
May 14, 2009
i've set up an openvpn server (with dhcp running on it) and i have to create compatible clients.the problem is how to get an ip by dhcp.with ubuntu i made a script like this
/sbin/ifconfig tap0 up
/sbin/dhclient -e tap0
and everything works fine:tap0 goes up and then start a dhcp request to the server on tap0with fedora there is a nice problem i've noticed that is impossible to run dhclient later on a new interface because i receive this error "dhclient is already running".the tap0 goes up normally but i receive this error when i attempt to get an ip.is there a simple way to get an ip?if i try to kill or restart dhclient when the vpn tunnel is up,all'interfaces lost theirs ip and network goes down crashing my vpn...
View 9 Replies
View Related
Nov 27, 2009
Is there anyway you can configure either OpenVPN client or the system to allow connections using OpenVPN to be made to computers on the OpenVPN network using their alias rather than their IP address. This may sound blasphemous but you can in Windows. That is if the VPN network is say 10.x.0.x I could connect to Comp4 or Comp2 using Comp4 or Comp2 not 10.x.0. 4 or 10.x.0.2 or whatever IP is allocated by the OpenVPN server. If the OpenVPN server has not been restarted then it will usually allocate the same IP every time the same client connects.
View 8 Replies
View Related
Jun 12, 2011
I installed fedora15, My openvpn didn't connect to my working computer.I checked openvpn configure more time, but still don't connect,
View 11 Replies
View Related
Sep 15, 2009
This is the first one of probably many posts as I am new to Fedora having lots of questions. This one is about the openvpn client which is used by me to connect to my company network. Thanks to the Fedora FAQ it was easy for me to set up the client and establish a connection. There is just one problem every time I open a connection I am disconnected from my local Internet. I was using openvpn on my Windows XP PC before and there was no problem keeping two Network connections, the (W)LAN and the vpn tunnel. Does anyone know how to solve this? I am utilizing the latest Fedora 11 release and configured openvpn client via the Network Manager GUI.
View 2 Replies
View Related
Feb 10, 2009
I've recently installed OpenVPN on my dedicated server (Fedora) in order to have full internet access for all of my WinXP clients. In case somebody is interested in the details of the OpenVPN installation, I followed this documentation: Rootserver-as-OpenVPN-Gateway. The installation runs quire nicely, I'm able to surf the net and even file-sharing programs work on the XP clients - at least to some extent. There is a slight problem though: the file-sharing programs complain that they have a "NAT problem" or that they are "Firewalled".
Most likely, this problem can be addressed by configuring remote port forwarding (RPF) on the server. The only routing rules which I've added on the server during the OpenVPN installation are these:
Code:
# initialize natting for openvpn
iptables -t nat -F POSTROUTING
echo 1 > /proc/sys/net/ipv4/ip_forward
iptables -t nat -A POSTROUTING -o eth0 -s 10.66.66.0/24 -j MASQUERADE
Let's assume a certain application on a client is listening on e.g. port 1234. How do I configure RPF for this port on the server side.
View 1 Replies
View Related
Nov 23, 2009
This was working and stable on f-10 and f-11. Fresh f-12 install including openvpn, Copied /etc/openvpn/* to new system as root from working f-11 syatem. /etc/init.d/openvpn start (and stop) works as advertised HOWEVER when set to start at boot using chkconfig or Services Configuration program, openvpn does not start. I must manually start it every time. When started, it does work without error messages in the log.
I tried removing the NetworkManager-vpn module with no effect. Thought it could somehow be overriding the auto startup of openvpn at boot.
View 6 Replies
View Related
Jun 15, 2010
i want to setup openvpn with preshared key. i want to make my linux system as openvpn server and windows machine as client. both the systems are same LAN. i am using centos 5.3 and windows xp. can u tell me the steps to create a vpn between these two using psk.
View 4 Replies
View Related
Nov 18, 2010
I am having no luck configuring ProFTPd on a Debian Lenny production server we use to host our MySQL databases and a few websites. I had originally set it up so I could login and manage our internal sites, but I have the need to allow a few clients in to access their sites that we host. I am trying to root the users in their site directory, which would be "/sites/www.whatever.com/".
It just hit me while typing this. Is it possible to create a user without a shell to prevent login via SSH and set the home folder to /sites/whatever instead of /home/username? That would allow me to continue operating with my current configuration and root them in their site while preventing SSH logins.
View 6 Replies
View Related
Sep 26, 2009
I'm using Fedora Core 11 and the client OpenVPN on the network-manager into a segmented infrastructure. It works well.
My laptop is on a dmz wireless Zone 192.168.3.0/24 and access Internet through a firewall via a front-end zone 192.168.65.0/24 with wlan0 interface.
But my laptop can access on a back-end zone 192.168.2.0.24 to a server.
When I start the OpenVPN tunnel, I cannot access on my back-end zone because the kernel routing table is modified (all the traffic is routed through the tun vpn interface)
If I define a static route like route add -host 192.168.2.x gw 192.168.3.2 where x is my file serveur, I cannot connect to this server because the routing is make through the tun interface and not by the wlan0 who can access on is gateway
I want to know where changing the kernel routing table file to access on the Internet and on my back-end zone in a same time.
View 4 Replies
View Related
Aug 19, 2010
This is on Ubuntu 10.04 Server Edition. The ethernet cord was disconnected one day. I plugged it back in to find I can ssh to and from that machine, but I cannot update or browse the web (elinks) on it. I tried "ifconfig eth0 up" which did nothing. Why is it that only local connections work?
View 1 Replies
View Related
