From: Martin Hejl <[EMAIL PROTECTED]> To: [EMAIL PROTECTED] Subject: Re: [leaf-user] openvpn help Date: Fri, 14 May 2004 19:41:12 +0200
chiew yock sang wrote:
this is either a typo, or a problem - the error message you quoted later suggests openvpn runs on >port 5000 - but in /etc/shorewall/tunnels you define that it uses port 7777 - this is most likely not >going to work.../etc/shorewall/tunnels (routerA) #type zone gateway gateway zone openvpn:7777 net 192.168.99.2
Yes, a typo, i have changed it to openvpn, but the problem still exist.
In routerA, when i try to ping 192.168.99.2, the following commands pop up:Hm, I've never seen that error - but I must say, I'm not quite sure how commands actually "pop >up" - do you mean that the message you quoted appears on the console? Or in the logs (and if >so, which log)?
Virtual device tun0 asks to queue packet!
ping: sendto: Network is down
Sorry, not pop up, but it appear in the command window (the place where i type ping 192.168.99.2). I don't know how to call it..
and when i do,Do a "ps aux" on the router in question to find out if openvpn is already running, most likely, this is >the source of your error. You can also use netstat to find out if something is indeed already >listening on port 5000. Openvpn should not really be started "by hand" (by entering "openvpn" at >the prompt) buit rather by the init-script). So, if you want to start openvpn, do a
openvpn --ping 5 --dev tun0
it says all encryption and authentication features disabled-- all data will be tunnelled as cleartext
socket bind failed on local address [undef]:5000:Address already in use
Exiting
svi openvpn start
the --ping 5 option can also be specified in the config file (and tun0 as dev is already specified in >your config file, so that would be redundant).
when i do ps aux, in the command line shows, /usr/sbin/openvpn --daemon --writepid /var/run/openvpn.... (the rest can't be seen).
when i do netstat, it shows, netstat: no support for 'AF INET6 (tcp)' on this system netstat: no support for 'AF INET6 (udp)' on this system netstat: no support for 'AF INET6 (raw)' on this system
where is the init-script? Is it in /etc/shorewall/init?
------------------------------------------------------- This SF.Net email is sponsored by: SourceForge.net Broadband Sign-up now for SourceForge Broadband and get the fastest 6.0/768 connection for only $19.95/mo for the first 3 months! http://ads.osdn.com/?ad_id=2562&alloc_id=6184&op=click ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
_________________________________________________________________ Download the latest MSN Messenger http://messenger.msn.com.my
------------------------------------------------------- This SF.Net email is sponsored by: SourceForge.net Broadband Sign-up now for SourceForge Broadband and get the fastest 6.0/768 connection for only $19.95/mo for the first 3 months! http://ads.osdn.com/?ad_id=2562&alloc_id=6184&op=click ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
