Hi There.
I've already typed this twice, somehow it got lost in the ether.
I'll keep it as straightforward as possible but I really appreciate any help you can provide.
At the top we have a router with 5 LAN ports and DHCP enabled
Draytek 2925 - 192.168.1.1
Three ClearOS boxes -
192.168.1.20 OpenVPN port 1194
192.168.1.30 OpenVPN port 1195
192.168.1.40 OpenVPN port 1196
They have all been setup in the same way, However only one of them actually works properly.
192.168.1.20 - OpenVPN Connects, Can see the draytek network and can also see other machines on the internal network. Ironically this is the least important OpenVPN
192.168.1.30 - OpenVPN Connects, It can see items on the Draytek network but is unable to ping or connect to any device on its own LAN (That it provides 192.168.5.*)
192.168.1.40 - OpenVPN Will not connect, Using the Viscosity VPN client it simply shows the following (And never connects, or gives up)
Jun 22 09:32:12: Viscosity Mac 1.6.4 (1348)
Jun 22 09:32:12: Viscosity OpenVPN Engine Started
Jun 22 09:32:12: Running on Mac OS X 10.11.5
Jun 22 09:32:12: ---------
Jun 22 09:32:12: Checking reachability status of connection...
Jun 22 09:32:12: Connection is reachable. Starting connection attempt.
Jun 22 09:32:13: OpenVPN 2.3.11 x86_64-apple-darwin [SSL (OpenSSL)] [LZO] [PKCS11] [MH] [IPv6] built on May 10 2016
Jun 22 09:32:13: library versions: OpenSSL 1.0.2h 3 May 2016, LZO 2.09
The most important one is 192.168.1.30 I really need to get this running as soon as possible, I've googled quite a bit and I've checked these forums. Nothing really matches my issue or atleast I'm not confident enough that it does. Does anyone have any advice, It would be very much appreciated.
I've already typed this twice, somehow it got lost in the ether.
I'll keep it as straightforward as possible but I really appreciate any help you can provide.
At the top we have a router with 5 LAN ports and DHCP enabled
Draytek 2925 - 192.168.1.1
Three ClearOS boxes -
192.168.1.20 OpenVPN port 1194
192.168.1.30 OpenVPN port 1195
192.168.1.40 OpenVPN port 1196
They have all been setup in the same way, However only one of them actually works properly.
192.168.1.20 - OpenVPN Connects, Can see the draytek network and can also see other machines on the internal network. Ironically this is the least important OpenVPN
192.168.1.30 - OpenVPN Connects, It can see items on the Draytek network but is unable to ping or connect to any device on its own LAN (That it provides 192.168.5.*)
192.168.1.40 - OpenVPN Will not connect, Using the Viscosity VPN client it simply shows the following (And never connects, or gives up)
Jun 22 09:32:12: Viscosity Mac 1.6.4 (1348)
Jun 22 09:32:12: Viscosity OpenVPN Engine Started
Jun 22 09:32:12: Running on Mac OS X 10.11.5
Jun 22 09:32:12: ---------
Jun 22 09:32:12: Checking reachability status of connection...
Jun 22 09:32:12: Connection is reachable. Starting connection attempt.
Jun 22 09:32:13: OpenVPN 2.3.11 x86_64-apple-darwin [SSL (OpenSSL)] [LZO] [PKCS11] [MH] [IPv6] built on May 10 2016
Jun 22 09:32:13: library versions: OpenSSL 1.0.2h 3 May 2016, LZO 2.09
The most important one is 192.168.1.30 I really need to get this running as soon as possible, I've googled quite a bit and I've checked these forums. Nothing really matches my issue or atleast I'm not confident enough that it does. Does anyone have any advice, It would be very much appreciated.
In OpenVPN
Share this post:
Responses (2)
-
Accepted Answer
If you have Draytek --- ClearOS --- ClearOS_LAN, then you would port forward udp:1195 through the Draytek to ClearOS and you should be able to connect to ClearOS and see the LAN behind it. It you can see the Draytek LAN it suggests to me that ClearOS is not in Gateway mode with its WAN connected to the Draytek LAN.
[edit]
If set up like I say, I don't think you should be able to see the Draytek LAN from your remote connection.
[/edit] -
Accepted Answer
This is my guess. I think you need to add a static route on the draytek to point to the openvpn network of your connecting device so on my router I have a route for 10.8.0.0 pointing at the IP address of my clearos server (My vpn clients get a 10.8.0.x ip address) . You might also need another route for 192.168.5.* again pointing at 192.168.1.30.
Please login to post a reply
You will need to be logged in to be able to post a reply. Login using the form on the right or register an account if you are new here.
Register Here »