Fedora Networking :: OpenVPN Using Alias Rather Than IP
Nov 27, 2009
Is there anyway you can configure either OpenVPN client or the system to allow connections using OpenVPN to be made to computers on the OpenVPN network using their alias rather than their IP address. This may sound blasphemous but you can in Windows. That is if the VPN network is say 10.x.0.x I could connect to Comp4 or Comp2 using Comp4 or Comp2 not 10.x.0. 4 or 10.x.0.2 or whatever IP is allocated by the OpenVPN server. If the OpenVPN server has not been restarted then it will usually allocate the same IP every time the same client connects.
View 8 Replies
ADVERTISEMENT
Feb 15, 2009
I have to move our DNS server to our VMware environment. With that comes a new IP address (10.10.102.x). The current address is in the 192.168.10.x. range. Is there a way to bind an alias to my NIC that has a different IP range? I tried it and it didnt work but if i used two IPs in the same subnet range it works. What are my options?
I don't want to go around and modify all my clients to use the new IP. I have many other things running like Nagios and Puppet. Unfortunately this is going to suck and I probably dont have any other options.
View 7 Replies
View Related
Apr 5, 2010
i have some problems with configuring openvpn tunnel connection to my openvpn server. I'm using static-key tcp connection. Network manager always said to me that connection could not be established. Also, when i try to run openvpn from terminal, i got some strange permissions problem:
Code:
openvpn --config config.ovpn
Mon Apr 5 15:48:37 2010 OpenVPN 2.1_rc19 i486-pc-linux-gnu [SSL] [LZO2] [EPOLL] [PKCS11] built on Oct 13 2009
Mon Apr 5 15:48:37 2010 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Mon Apr 5 15:48:37 2010 /usr/sbin/openvpn-vulnkey -q moj.key
[code]....
View 1 Replies
View Related
Aug 9, 2010
i have installed openvpn and config it for a tunnel. my server.conf and client,conf is as follow:
server.conf
port 1194
proto udp
[code]...
View 1 Replies
View Related
May 14, 2009
i've set up an openvpn server (with dhcp running on it) and i have to create compatible clients.the problem is how to get an ip by dhcp.with ubuntu i made a script like this
/sbin/ifconfig tap0 up
/sbin/dhclient -e tap0
and everything works fine:tap0 goes up and then start a dhcp request to the server on tap0with fedora there is a nice problem i've noticed that is impossible to run dhclient later on a new interface because i receive this error "dhclient is already running".the tap0 goes up normally but i receive this error when i attempt to get an ip.is there a simple way to get an ip?if i try to kill or restart dhclient when the vpn tunnel is up,all'interfaces lost theirs ip and network goes down crashing my vpn...
View 9 Replies
View Related
Jun 12, 2011
I installed fedora15, My openvpn didn't connect to my working computer.I checked openvpn configure more time, but still don't connect,
View 11 Replies
View Related
Sep 15, 2009
This is the first one of probably many posts as I am new to Fedora having lots of questions. This one is about the openvpn client which is used by me to connect to my company network. Thanks to the Fedora FAQ it was easy for me to set up the client and establish a connection. There is just one problem every time I open a connection I am disconnected from my local Internet. I was using openvpn on my Windows XP PC before and there was no problem keeping two Network connections, the (W)LAN and the vpn tunnel. Does anyone know how to solve this? I am utilizing the latest Fedora 11 release and configured openvpn client via the Network Manager GUI.
View 2 Replies
View Related
Jun 16, 2011
I have (seemingly regretfully) finally upgraded my Fedora Core 7 linux machine that has served me so well for the past decade. One of the final pieces to put in place was my Openvpn config (which was running flawlessly on my FC7) which I cannot get to work.
Here are my steps.
1. Disabled SELinux
2. Added the following entry in my iptables: (although I've stopped iptables to help troubleshoot)
-A INPUT -i tap0 -j ACCEPT
-A INPUT -i br0 -j ACCEPT
-A FORWARD -i br0 -j ACCEPT
3. Yum installed openvpn and bridge-utils (btw I'm using bridging)
4. Configured my bridge-start script as such:
#!/bin/bash
# Set up Ethernet bridge on Linux
# Requires: bridge-utils
# Define Bridge Interface
br="br0" .....
5. Configured my openvpn server conf as such:
proto tcp-server
port 5990
dev tap0 .....
When I execute my bridge-start script it creates the br0 and tap0 then all connectivity vanishes (I can only ping my gateway 10.0.0.50) - internet and any other addresses time out.
View 6 Replies
View Related
Feb 10, 2009
I've recently installed OpenVPN on my dedicated server (Fedora) in order to have full internet access for all of my WinXP clients. In case somebody is interested in the details of the OpenVPN installation, I followed this documentation: Rootserver-as-OpenVPN-Gateway. The installation runs quire nicely, I'm able to surf the net and even file-sharing programs work on the XP clients - at least to some extent. There is a slight problem though: the file-sharing programs complain that they have a "NAT problem" or that they are "Firewalled".
Most likely, this problem can be addressed by configuring remote port forwarding (RPF) on the server. The only routing rules which I've added on the server during the OpenVPN installation are these:
Code:
# initialize natting for openvpn
iptables -t nat -F POSTROUTING
echo 1 > /proc/sys/net/ipv4/ip_forward
iptables -t nat -A POSTROUTING -o eth0 -s 10.66.66.0/24 -j MASQUERADE
Let's assume a certain application on a client is listening on e.g. port 1234. How do I configure RPF for this port on the server side.
View 1 Replies
View Related
Nov 23, 2009
This was working and stable on f-10 and f-11. Fresh f-12 install including openvpn, Copied /etc/openvpn/* to new system as root from working f-11 syatem. /etc/init.d/openvpn start (and stop) works as advertised HOWEVER when set to start at boot using chkconfig or Services Configuration program, openvpn does not start. I must manually start it every time. When started, it does work without error messages in the log.
I tried removing the NetworkManager-vpn module with no effect. Thought it could somehow be overriding the auto startup of openvpn at boot.
View 6 Replies
View Related
Sep 26, 2009
I'm using Fedora Core 11 and the client OpenVPN on the network-manager into a segmented infrastructure. It works well.
My laptop is on a dmz wireless Zone 192.168.3.0/24 and access Internet through a firewall via a front-end zone 192.168.65.0/24 with wlan0 interface.
But my laptop can access on a back-end zone 192.168.2.0.24 to a server.
When I start the OpenVPN tunnel, I cannot access on my back-end zone because the kernel routing table is modified (all the traffic is routed through the tun vpn interface)
If I define a static route like route add -host 192.168.2.x gw 192.168.3.2 where x is my file serveur, I cannot connect to this server because the routing is make through the tun interface and not by the wlan0 who can access on is gateway
I want to know where changing the kernel routing table file to access on the Internet and on my back-end zone in a same time.
View 4 Replies
View Related
Mar 6, 2010
I have a problem with the Fedora 12 Network Manager - OpenVPN configuration. If I use the same configuration and manually start openvpn (as client) I get connected to the OpenVPN server and I can ping the network that I am accessing. With Network Manager - I get connected but when I try to ping is giving me "Destination host unreachable". The routing table looks similar except that when connecting with network manager is giving me on more route in table
Destination Gateway Genmask Flags Metric Ref Use Iface
xxx.xxx.xxx.xxx 192.168.0.1 255.255.255.255 UGH 0 0 0 wlan0
192.168.0.0 0.0.0.0 255.255.255.0 U 2 0 0 wlan0
192.168.171.0 0.0.0.0 255.255.255.0 U 0 0 0 tap0
0.0.0.0 192.168.0.1 0.0.0.0 UG 0 0 0 wlan0
Where xxx.xxx.xxx.xxx is the IP of the OpenVPN server. When connecting "manually" I this routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
192.168.0.0 0.0.0.0 255.255.255.0 U 2 0 0 wlan0
192.168.171.0 0.0.0.0 255.255.255.0 U 0 0 0 tap0
0.0.0.0 192.168.0.1 0.0.0.0 UG 0 0 0 wlan0
What I do wrong in Network Manager? If I try to delete the route with xxx.xxx.xxx.xxx is disconnecting the vpn connection.
View 8 Replies
View Related
Mar 13, 2011
I'm getting a timeout error from NetworkManager when attempting to connect to my router/firewall.
Excerpt from /var/log/messages attached.
View 1 Replies
View Related
Apr 8, 2010
I know I can rename my network interfaces (eg 'eth0' to 'lan', 'eth1' to 'net' etc) but does anyone know a way I can alias (symlink if you like) 'lan' -> 'eth0'
I want to be able to use more legible interface names in things like iptables rules (such as "-i lan" instead of "-i eth0") but I don't want to break any config that is expecting eth0 to exist....
View 5 Replies
View Related
Jan 12, 2010
I'm running ubuntu 9.04 and I have set up 2 ip aliases using the /etc/network/interfaces file http://pastie.org/775037 -- when I ping the main address 10.0.2.16, all works fine, same with the first alias 10.0.2.22 -- but I can't reach the 2nd alias 10.0.2.23 I get the following from ping:
PING 10.0.2.23 (10.0.2.23): 56 data bytes
Request timeout for icmp_seq 0
Request timeout for icmp_seq 1
Request timeout for icmp_seq 2
92 bytes from 10.5.0.1: Destination Host Unreachable
Vr HL TOS Len ID Flg off TTL Pro cks Src Dst
4 5 00 5400 06eb 0 0000 3f 01 5e81 10.5.0.34 10.0.2.23
My machine's IP address is 10.5.0.34 I can't figure out why I can ping 10.0.2.22 but not 10.0.2.23 -- seems like there is probably some kind of routing thing that I'm missing, but I'm confused how it would have gotten set up for 10.0.2.22 but not 10.0.2.23 -- hopefully someone out there has an idea -- or can point me to references where I might be able to learn how to debug routing issues on a network?
View 5 Replies
View Related
Aug 19, 2010
I having a problem with my network. I'm trying to assign an IP alias of eth0:1 to eth0. If I use ifup eth0:1 is fails and corrupts the network. Making the network useless. But if I just enter 'ifconfig eth0:1 10.1.1.51', it work fine? My scripts look like these:
Code:
:network-scripts; cat ifcfg-eth0
NAME="System eth0"
DEVICE=eth0
ONBOOT=yes
[Code].....
View 2 Replies
View Related
Feb 16, 2009
I'm trying to arrange my 4 NIC's on CentOS 5. Two of them are build-in motherboard nic's and the others are PCI-E Dual Intel card. I'm wondering if someone succeed with udev renaming rule based on BUS location like ID=="0000:03:00.0" ... etc
View 4 Replies
View Related
Sep 25, 2010
When setting up an alias for eth0, the interface works as expected for normal traffic, but does not receive broadcast traffic.
Host 1's setup:
Code:
Pinging host 1's normal interface from host 2 works as expected:
Code:
Pinging host 1's alias interface from host 2 works as expected:
Code:
Broadcast pinging from host 2 only gets a reply from host 1's real interface (as well as some other uninteresting devices on the network):
Code:
I have confirmed by listening on both interfaces using netcat, and broadcasting using netcat, and again only the real interface receives data.
Is this by design, or is it possible to get interface aliases to receive broadcast traffic?
View 1 Replies
View Related
Feb 13, 2010
I want to configure a VPN over the Internet.I installed the 'openvpn' package, generated the key file, transfered it by a secure way to the client, and setted up the configuration file.
So, in that configuration file I input the IP addresses of the tunneled interfaces. Both IPs are static in the tunnel.
Then, I've heard somewhere that I can assign a dynamic configuration IP for the client. I do this registering a range.
Well, when I tried to change static IP to dynamic IP (changing '192.168.0.2' to '192.168.0.0/24') in the configuration file, the OpenVPN didn't work.
Obviously I don't know what I'm doing, and I really, don't believe that simply changing the IP will make it work, but I tried.
I hope I explained my problem as well.
My configuration file:
# OpenVPN Server Configuration File
dev tun 0
ifconfig 192.168.0.1 192.168.0.2
cd /etc/openvpn
secret key_file
In client I execute the 'openvpn' without the '--daemon' parameter.Then I want that my client uses a IP in a range (192.168.0.0/24, for example), instead of a static IP (192.168.0.2).I also thought to use a DHCP server, but I'm not sure that will work.
View 6 Replies
View Related
Jul 28, 2011
Basically I am looking for a simple way to create a universal nickname/alias for a interface.We ship servers that have upto 6 NICs on them. The user can have those NIC configured as either ethN, bondN or vlanN interfaces. As we need to provide NIC status information we would like to be able to run commands such as
Code:
ifconfig INTERFACE1
that would map to whatever the user had already configured.
View 1 Replies
View Related
Jun 11, 2009
When I setup the server I added multiple ips. Now that I need to edit ip info I can't find any alias files in the network-scripts folder. But restarting server the ips work fine. Is there some where else that this would be stored.
View 2 Replies
View Related
Jun 4, 2011
As I reported in this bug:[URL].. root is not able to start an openvpn-connection via the "nmcli"-command to control NetworkManager, whereas my user does not run in any problems with this command. My error output when starting as root is as follows:
Code:
# nmcli con up id "my-openvpn"
Active connection state: unknown
Active connection path: /org/freedesktop/NetworkManager/ActiveConnection/5
state: VPN connecting (need authentication) (2)
Error: Connection activation failed: no valid VPN secrets.
Does anybody know what to do about this strange behaviour? The vpn-secret seems to be stored in the gnome-keyring and in the /etc/NetworkManager/system-connections/my-openvpn simultaneously. But root cannot access any of these. Why this is important? I'm trying to set up a dispatcher-script to automatically start openvpn on eth-connection. but this does throw the exact error from above (no valid vpn secrets..).
[Code]...
View 1 Replies
View Related
Aug 31, 2010
Can anybody explain how I can set a hostname alias in RHEL5. We are testing RHEL to replace our Solaris LDAP servers, one of the things we need is to be able to set a hostname alias on the public interface.In solaris we can just update the /etc/hosts file to something like
ipaddress hostname alias1 alias2
Things looks alittle different in RHEL, the host file only contains
127.0.0.1 hostname.fqdn localhost.localdomain localhost
I read about the sysconfig/network files but can only see about changing the hostname there and nothing about setting a different alias.
View 2 Replies
View Related
Feb 9, 2011
I have a script that I run using ./dom example.com.
I want to add an alias to .bashrc so that I can run it using "d example.com".
I have tried adding each of the lines below in turn but I still receive the error:
-bash: d: command not found
alias d="/bin/bash /home/user/dom"
alias d="./home/user/dom"
alias d="sh /home/user/dom"
View 3 Replies
View Related
Nov 20, 2009
I have searched the forum high and low for the solution with no success, so I will now post this problem, with all known facts. Linux (and Fedora) is brand new to me so I'm somewhat illiterate with the language and recommendations from reading other threads. Please bare with me. I'm reading the book Beginning PHP and MySQL from Novice to Professional by Cristian Darie.The book has you create an Alias directory for creating the tshirtshop web-based application.
The book uses the directory /home/username/tshirtshop. However, I did not want this in the /home directory, so I created a new directory from the root directory /workspace/tshirtshop. Below are the areas of interest in the file httpd.conf (I restarted the httpd service each time I edited this file):
Code:
DocumentRoot "/var/www/html"
<Directory />
Options FollowSymLinks
AllowOverride None
</Directory>
[Code]....
View 1 Replies
View Related
May 25, 2011
In my laptop, if I type below
$ which vi
alias vi='vim'
/usr/bin/vim
Now I want to change the vi alias to another bin, e.g. vim_wrapper a script created in /usr/bin/, I type this line:
alias vi="vim_wrapper"
in ~/.bashrc or /etc/bashrc, but take no effects. So How to change the default vi alias vi='vim' to vi='vim_wrapper'?
View 1 Replies
View Related
May 23, 2011
Anyone know if it is possible to create an alias that calls a script that will SU to a different ID and log me in.
Currently I have to log in using my ID and the SU to an administrator ID. Just kind of a pain to do all the time.
View 3 Replies
View Related
Jun 12, 2010
I have been trying to set up phpmyadmin for a while now, but I just cant seem to access it with the browser.
I yum installed phpmyadmin. In my /etc/httpd/conf.d/phpMyAdmin.conf I have:
When I visit [ip]/phpmyadmin I just get a 404
I've reloaded apache, checked the phpmyadmin config file, and everything seems fine, I just get constant 404.
View 2 Replies
View Related
Aug 25, 2011
I've set up an alias in .bashrc (let's call it alias1), and am trying to set up a sudo NOPASSWD rule for that particular command. So far, I've attempted:
user ALL = NOPASSWD: alias1
user ALL=(ALL) NOPASSWD: alias1
But keep getting told I have a syntax error - presumably this is because visudo doesn't recognise alias1? I've already checked that alias1 works correctly, so I assume I'm just referring to it incorrectly.
View 6 Replies
View Related
Jul 13, 2011
I have been trying to set up openVPN on a Virtual Machine running Ubuntu 10.04 with the eventual intention of having a closed VPN in the workspace I'm at, and a bridged internet connection out through the server.My initial process/instinct was to go through Webmin. After a fair bit of tooling around making eys/certificates, I was able to get a response (and that's all it was, really) from my windows machine accessing the VPN server. However, in my attempt to bridge the network, I have lost all internet/networking capabilities from the server.Fortunately I am able to access the server directly from the hardware underneath (i.e. I don't need to SSH in or anything), and so I've been attempting to restore the server's networking back to default. I have returned the /etc/network/interfaces file to it's original state (just the loop, and an eth0 on dhcp) and restarted the networking. A check with ifconfig returns what seems to be a working eth0, and the loop (noting else) however I am unable to ping any outside server. When I do, I am given the message:From XXX.XXX.XXX.XXX icmp_seq=1 Destination Host Unreachable(where of course XXX is my IP address).nother VM on the server is able to access the internet just fine, so it's not the overall server hardware...I guess at this point I'm just trying to take steps back,
View 1 Replies
View Related