Re: [pfSense] pfsense openvpn Road Warrior

2014-03-20 Thread rajan agarwal 
Hi Mohan,

You can see the routes for your internal network by typing command "route
print" in windows cmd, you can see if any routes configured by you for
openvpn are being pushed to the clients, and yes i maintain a pfsense based
openvpn setup.


On Thu, Mar 20, 2014 at 12:39 AM, A Mohan Rao  wrote:

> Hello RAJAN JI,
> No, can u pls guide me where i see or configure internal routes.
> Have u successfully configured Road Warrior open vpn or it is running any
> where.
> If u want any other info pls tell me i will provide u immidiately. Like
> gui or any viewer.
> Thanks
> Mohan
> On Mar 19, 2014 4:01 PM, "rajan agarwal"  wrote:
>
>> Hi Mohan,
>>
>> Can you see if the internal routes of your network are pushed to the
>> client using route print command in cmd?
>>
>>
>> On Wed, Mar 19, 2014 at 3:55 PM, A Mohan Rao wrote:
>>
>>> yes client is properly connected from windows computer system.
>>> also show that client name in tab open vpn status page .
>>> but not able to communication between.
>>>
>>> thanks
>>>
>>> Mohan
>>>
>>>
>>> On Wed, Mar 19, 2014 at 3:37 PM, rajan agarwal >> > wrote:
>>>
 Hi Mohan,

 Are you using windows for connections? Can you see if routes were added
 when client connected to VPN or not.




 On Wed, Mar 19, 2014 at 2:54 PM, A Mohan Rao wrote:

>  Hello Team,
>
> Hello,
>  i have configured openvpn road warrior also client is properly
> connected
>  from outside internet network.
>  but not able to access server end network and servers's.
>  can anybody give any help where is do any wrong steps.
>
> Thanks
>
> Mohan
>
> ___
> List mailing list
> List@lists.pfsense.org
> https://lists.pfsense.org/mailman/listinfo/list
>


 ___
 List mailing list
 List@lists.pfsense.org
 https://lists.pfsense.org/mailman/listinfo/list

>>>
>>>
>>> ___
>>> List mailing list
>>> List@lists.pfsense.org
>>> https://lists.pfsense.org/mailman/listinfo/list
>>>
>>
>>
>> ___
>> List mailing list
>> List@lists.pfsense.org
>> https://lists.pfsense.org/mailman/listinfo/list
>>
>
> ___
> List mailing list
> List@lists.pfsense.org
> https://lists.pfsense.org/mailman/listinfo/list
>
___
List mailing list
List@lists.pfsense.org
https://lists.pfsense.org/mailman/listinfo/list

Re: [pfSense] pfsense openvpn Road Warrior

2014-03-19 Thread A Mohan Rao 
Hello RAJAN JI,
No, can u pls guide me where i see or configure internal routes.
Have u successfully configured Road Warrior open vpn or it is running any
where.
If u want any other info pls tell me i will provide u immidiately. Like gui
or any viewer.
Thanks
Mohan
On Mar 19, 2014 4:01 PM, "rajan agarwal"  wrote:

> Hi Mohan,
>
> Can you see if the internal routes of your network are pushed to the
> client using route print command in cmd?
>
>
> On Wed, Mar 19, 2014 at 3:55 PM, A Mohan Rao  wrote:
>
>> yes client is properly connected from windows computer system.
>> also show that client name in tab open vpn status page .
>> but not able to communication between.
>>
>> thanks
>>
>> Mohan
>>
>>
>> On Wed, Mar 19, 2014 at 3:37 PM, rajan agarwal 
>> wrote:
>>
>>> Hi Mohan,
>>>
>>> Are you using windows for connections? Can you see if routes were added
>>> when client connected to VPN or not.
>>>
>>>
>>>
>>>
>>> On Wed, Mar 19, 2014 at 2:54 PM, A Mohan Rao wrote:
>>>
  Hello Team,

 Hello,
  i have configured openvpn road warrior also client is properly
 connected
  from outside internet network.
  but not able to access server end network and servers's.
  can anybody give any help where is do any wrong steps.

 Thanks

 Mohan

 ___
 List mailing list
 List@lists.pfsense.org
 https://lists.pfsense.org/mailman/listinfo/list

>>>
>>>
>>> ___
>>> List mailing list
>>> List@lists.pfsense.org
>>> https://lists.pfsense.org/mailman/listinfo/list
>>>
>>
>>
>> ___
>> List mailing list
>> List@lists.pfsense.org
>> https://lists.pfsense.org/mailman/listinfo/list
>>
>
>
> ___
> List mailing list
> List@lists.pfsense.org
> https://lists.pfsense.org/mailman/listinfo/list
>
___
List mailing list
List@lists.pfsense.org
https://lists.pfsense.org/mailman/listinfo/list

Re: [pfSense] pfsense openvpn Road Warrior

2014-03-19 Thread PiBa 
Manually pushing routes from the advanced section is in general not 
needed if the 'local network(s)' is filled in in the WebGui.


Holger Bauer schreef op 19-3-2014 10:44:

Hi Mohan,

make sure you have appropriate rules under firewall>rules, openvpn tab 
to allow access. Also make sure your routing is working correctly. You 
might need to push some routes to the clients, depending on how your 
network is setup. You can do that on the openvpn-server settings at 
the very bottom (advanced configuration), for example add the 
following there:


push "route 192.168.1.0 255.255.255.0";push "route 192.168.2.0 
255.255.255.0"


Regards
Holger


2014-03-19 10:24 GMT+01:00 A Mohan Rao >:


Hello Team,

Hello,
 i have configured openvpn road warrior also client is properly
connected
 from outside internet network.
 but not able to access server end network and servers's.
 can anybody give any help where is do any wrong steps.

Thanks

Mohan

___
List mailing list
List@lists.pfsense.org 
https://lists.pfsense.org/mailman/listinfo/list




___
List mailing list
List@lists.pfsense.org
https://lists.pfsense.org/mailman/listinfo/list


___
List mailing list
List@lists.pfsense.org
https://lists.pfsense.org/mailman/listinfo/list

Re: [pfSense] pfsense openvpn Road Warrior

2014-03-19 Thread PiBa 

On Windows Vista/7/8 Administrator permissions are required to add routes.
This either means running OpenVPNgui 'As Administrator'. Or using the 
'OpenVPNManager' program installed as a service that runs the actual 
openvpn process in the background. (there is a checkbox in the 
OpenVPNclientExporter for including the OpenVPNManager when downloading 
the complete 'setup.exe')
Adding the routes is still something the openvpn process itself needs to 
do though. If that 'sometimes' fails i dont know what could cause that..


rajan agarwal schreef op 19-3-2014 11:26:

Hi Bryan,

I also maintain a setup of a couple of hundred roadwarriors. One of 
the problems i constantly face is that the management interface which 
allows normal users to run openvpn in windows doesn't work 
sometimes.(Failed to add routes error) Causing the same problem as 
mohan. Is it because of some bug or something? I end up providing 
network configuraton operators group membership then which sort of we 
dont want to.



On Wed, Mar 19, 2014 at 3:49 PM, Bryan D. > wrote:


On 2014-Mar-19, at 2:24 AM, A Mohan Rao mailto:mohanra...@gmail.com>> wrote:

> Hello Team,
>
> Hello,
> i have configured openvpn road warrior also client is properly
connected
> from outside internet network.
> but not able to access server end network and servers's.
> can anybody give any help where is do any wrong steps.
>
> Thanks
>
> Mohan

I've been working on trying to document a fairly complete
pfSense/iOS IPSec/OpenVPN with iOS 7 VPN on-demand.  Though I
still have the on-demand stuff to write up, the rest of it's there
so some of it may be of use:

http://www.derman.com/blogs/Setting-Up-iOS-OnDemand-VPN

It's quite new, so feel free to let me know of any issues,
suggestions, etc.


___
List mailing list
List@lists.pfsense.org 
https://lists.pfsense.org/mailman/listinfo/list




___
List mailing list
List@lists.pfsense.org
https://lists.pfsense.org/mailman/listinfo/list


___
List mailing list
List@lists.pfsense.org
https://lists.pfsense.org/mailman/listinfo/list

Re: [pfSense] pfsense openvpn Road Warrior

2014-03-19 Thread Holger Bauer 
Hi Mohan,

make sure you have appropriate rules under firewall>rules, openvpn tab to
allow access. Also make sure your routing is working correctly. You might
need to push some routes to the clients, depending on how your network is
setup. You can do that on the openvpn-server settings at the very bottom
(advanced configuration), for example add the following there:

push "route 192.168.1.0 255.255.255.0";push "route 192.168.2.0
255.255.255.0"

Regards
Holger


2014-03-19 10:24 GMT+01:00 A Mohan Rao :

> Hello Team,
>
> Hello,
>  i have configured openvpn road warrior also client is properly connected
>  from outside internet network.
>  but not able to access server end network and servers's.
>  can anybody give any help where is do any wrong steps.
>
> Thanks
>
> Mohan
>
> ___
> List mailing list
> List@lists.pfsense.org
> https://lists.pfsense.org/mailman/listinfo/list
>
___
List mailing list
List@lists.pfsense.org
https://lists.pfsense.org/mailman/listinfo/list

Re: [pfSense] pfsense openvpn Road Warrior

2014-03-19 Thread rajan agarwal 
Hi Mohan,

Can you see if the internal routes of your network are pushed to the client
using route print command in cmd?


On Wed, Mar 19, 2014 at 3:55 PM, A Mohan Rao  wrote:

> yes client is properly connected from windows computer system.
> also show that client name in tab open vpn status page .
> but not able to communication between.
>
> thanks
>
> Mohan
>
>
> On Wed, Mar 19, 2014 at 3:37 PM, rajan agarwal 
> wrote:
>
>> Hi Mohan,
>>
>> Are you using windows for connections? Can you see if routes were added
>> when client connected to VPN or not.
>>
>>
>>
>>
>> On Wed, Mar 19, 2014 at 2:54 PM, A Mohan Rao wrote:
>>
>>>  Hello Team,
>>>
>>> Hello,
>>>  i have configured openvpn road warrior also client is properly connected
>>>  from outside internet network.
>>>  but not able to access server end network and servers's.
>>>  can anybody give any help where is do any wrong steps.
>>>
>>> Thanks
>>>
>>> Mohan
>>>
>>> ___
>>> List mailing list
>>> List@lists.pfsense.org
>>> https://lists.pfsense.org/mailman/listinfo/list
>>>
>>
>>
>> ___
>> List mailing list
>> List@lists.pfsense.org
>> https://lists.pfsense.org/mailman/listinfo/list
>>
>
>
> ___
> List mailing list
> List@lists.pfsense.org
> https://lists.pfsense.org/mailman/listinfo/list
>
___
List mailing list
List@lists.pfsense.org
https://lists.pfsense.org/mailman/listinfo/list

Re: [pfSense] pfsense openvpn Road Warrior

2014-03-19 Thread rajan agarwal 
Hi Bryan,

I also maintain a setup of a couple of hundred roadwarriors. One of the
problems i constantly face is that the management interface which allows
normal users to run openvpn in windows doesn't work sometimes.(Failed to
add routes error) Causing the same problem as mohan. Is it because of some
bug or something? I end up providing network configuraton operators group
membership then which sort of we dont want to.


On Wed, Mar 19, 2014 at 3:49 PM, Bryan D.  wrote:

> On 2014-Mar-19, at 2:24 AM, A Mohan Rao  wrote:
>
> > Hello Team,
> >
> > Hello,
> > i have configured openvpn road warrior also client is properly connected
> > from outside internet network.
> > but not able to access server end network and servers's.
> > can anybody give any help where is do any wrong steps.
> >
> > Thanks
> >
> > Mohan
>
> I've been working on trying to document a fairly complete pfSense/iOS
> IPSec/OpenVPN with iOS 7 VPN on-demand.  Though I still have the on-demand
> stuff to write up, the rest of it's there so some of it may be of use:
>
> http://www.derman.com/blogs/Setting-Up-iOS-OnDemand-VPN
>
> It's quite new, so feel free to let me know of any issues, suggestions,
> etc.
>
>
> ___
> List mailing list
> List@lists.pfsense.org
> https://lists.pfsense.org/mailman/listinfo/list
>
___
List mailing list
List@lists.pfsense.org
https://lists.pfsense.org/mailman/listinfo/list

Re: [pfSense] pfsense openvpn Road Warrior

2014-03-19 Thread A Mohan Rao 
yes client is properly connected from windows computer system.
also show that client name in tab open vpn status page .
but not able to communication between.

thanks

Mohan


On Wed, Mar 19, 2014 at 3:37 PM, rajan agarwal wrote:

> Hi Mohan,
>
> Are you using windows for connections? Can you see if routes were added
> when client connected to VPN or not.
>
>
>
>
> On Wed, Mar 19, 2014 at 2:54 PM, A Mohan Rao  wrote:
>
>> Hello Team,
>>
>> Hello,
>>  i have configured openvpn road warrior also client is properly connected
>>  from outside internet network.
>>  but not able to access server end network and servers's.
>>  can anybody give any help where is do any wrong steps.
>>
>> Thanks
>>
>> Mohan
>>
>> ___
>> List mailing list
>> List@lists.pfsense.org
>> https://lists.pfsense.org/mailman/listinfo/list
>>
>
>
> ___
> List mailing list
> List@lists.pfsense.org
> https://lists.pfsense.org/mailman/listinfo/list
>
___
List mailing list
List@lists.pfsense.org
https://lists.pfsense.org/mailman/listinfo/list

Re: [pfSense] pfsense openvpn Road Warrior

2014-03-19 Thread Bryan D. 
On 2014-Mar-19, at 2:24 AM, A Mohan Rao  wrote:

> Hello Team,
> 
> Hello,
> i have configured openvpn road warrior also client is properly connected
> from outside internet network.
> but not able to access server end network and servers's.
> can anybody give any help where is do any wrong steps.
> 
> Thanks
> 
> Mohan

I've been working on trying to document a fairly complete pfSense/iOS 
IPSec/OpenVPN with iOS 7 VPN on-demand.  Though I still have the on-demand 
stuff to write up, the rest of it's there so some of it may be of use:

http://www.derman.com/blogs/Setting-Up-iOS-OnDemand-VPN

It's quite new, so feel free to let me know of any issues, suggestions, etc.


___
List mailing list
List@lists.pfsense.org
https://lists.pfsense.org/mailman/listinfo/list

Re: [pfSense] pfsense openvpn Road Warrior

2014-03-19 Thread rajan agarwal 
Hi Mohan,

Are you using windows for connections? Can you see if routes were added
when client connected to VPN or not.




On Wed, Mar 19, 2014 at 2:54 PM, A Mohan Rao  wrote:

> Hello Team,
>
> Hello,
>  i have configured openvpn road warrior also client is properly connected
>  from outside internet network.
>  but not able to access server end network and servers's.
>  can anybody give any help where is do any wrong steps.
>
> Thanks
>
> Mohan
>
> ___
> List mailing list
> List@lists.pfsense.org
> https://lists.pfsense.org/mailman/listinfo/list
>
___
List mailing list
List@lists.pfsense.org
https://lists.pfsense.org/mailman/listinfo/list