Yes it is my firewall. I have set the following in the firewall...
Pass EXT-LAN TCP/UDP10.8.0.0/24Destination:192.168.1.0/24
0–65535 + https://kerrfamily.org/admin/firewall.php?id=20 Pass
EXT-Local TCP/UDP0/01194Comment:OpenVPN
On Fri, Oct 7, 2011 at 9:53 AM, Darrick Hartman
On Oct 7, 2011, at 8:49 AM, David Kerr wrote:
Okay, have made progress with OpenVPN. Got the certificates all set up.
Configured Viscosity client and it failed to connect. Decided to open
EXT-Local for port 1194 in the Astlinux firewall and then it connected. I
can ping 192.168.1.1 (my
Also in the Firewall Tab:
_x_ Allow OpenVPN Server tunnel to the [ 1st LAN Interface ]
Check this (assuming 192.168.1.0/24 is the 1st LAN interface) This is what
Darrick was referring to.
Lonnie
On Oct 7, 2011, at 8:58 AM, David Kerr wrote:
Yes it is my firewall. I have set the following
On Fri, Oct 7, 2011 at 10:11 AM, Lonnie Abelbeck
li...@lonnie.abelbeck.comwrote:
Also in the Firewall Tab:
_x_ Allow OpenVPN Server tunnel to the [ 1st LAN Interface ]
Check this (assuming 192.168.1.0/24 is the 1st LAN interface) This is what
Darrick was referring to.
Lonnie
Thanks
Now that I have OpenVPN running, it occurs to me that I might run into a
problem. If I am at a friends house whose local network is also
192.168.1.xx and my network at home is 192.168.1.xx then the OpenVPN client
would get confused/would not know what to do. Right?
If this is the case, and as
David,
Yes, it would be a great idea to use something other than 192.168.0.0/24 or
192.168.1.0/24. I have a scheme where each of my clients gets a different
subnet (unless they had something previously configured). Figure when I run
out of subnets, I'll have bigger problems ;)
Darrick
I thought so. Its going to be a headache... I have 20+ devices with
hardcoded IP's in the 192.168.1.xx subnet... and yes, these are things that
I don't want to be on DHCP, like printers, cameras, wireless access points,
NAS server, VoIP to Analog, etc. Maybe there are a couple of things I could
David,
You can easily set DHCP reservations as long as you have the MAC address of the
devices. AstLinux supports that nicely.
Network Tab -- Configure DNS Hosts.
Enter your information and dnsmasq will handle it from there.
Darrick
From: David Kerr