OpenVPN with Multiple IPs [message #15006] |
Mon, 16 July 2007 14:45 |
Kevin2008
Messages: 3 Registered: May 2007
|
Junior Member |
|
|
Hello,
I ran my openvpn with my main ip(64.74.124.151)smoothly on OpenVZ. However, it failed when I ran openvpn with multiple IPs(171 and 206) - Different clients passing through VPN with different IPs to access internet. it should be unrelated with client.ovpn and server.conf since it works with my main ip. Any idea or help is appreciated.
Some configuration of mine below:
Iptables: ( The first works and the other two IPs doesn't work)
-A POSTROUTING -s 192.168.2.1/28 -j SNAT --to 64.74.124.151
-A POSTROUTING -s 192.168.2.48/28 -j SNAT --to 64.74.124.171
-A POSTROUTING -s 192.168.2.96/28 -j SNAT --to 64.74.124.206
----------------------------cut here -----------------------
Server.log:
Mon Jul 16 14:00:11 2007 us=375077 221.222.230.113:63215 Re-using SSL/TLS context
Mon Jul 16 14:00:11 2007 us=375136 221.222.230.113:63215 LZO compression initialized
Mon Jul 16 14:00:11 2007 us=375241 221.222.230.113:63215 Control Channel MTU parms [ L:1542 D:138 EF:38 EB:0 ET:0 EL:0 ]
Mon Jul 16 14:00:11 2007 us=375264 221.222.230.113:63215 Data Channel MTU parms [ L:1542 D:1450 EF:42 EB:135 ET:0 EL:0 AF:3/1]
Mon Jul 16 14:00:11 2007 us=375318 221.222.230.113:63215 Local Options String: 'V4,dev-type tun,link-mtu 1542,tun-mtu
1500,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-server'
Mon Jul 16 14:00:11 2007 us=375336 221.222.230.113:63215 Expected Remote Options String: 'V4,dev-type tun,link-mtu 1542,tun-mtu 1500,proto UDPv4,comp-lzo,cipher BF-CBC,auth SHA1,keysize 128,key-method 2,tls-client'
Mon Jul 16 14:00:11 2007 us=375368 221.222.230.113:63215 Local Options hash (VER=V4): '530fdded'
Mon Jul 16 14:00:11 2007 us=375398 221.222.230.113:63215 Expected Remote Options hash (VER=V4): '41690919'
Mon Jul 16 14:00:11 2007 us=375444 221.222.230.113:63215 TLS: Initial packet from 221.222.230.113:63215, sid=9ec6bc59
e5a5a236
Mon Jul 16 14:01:12 2007 us=37571 221.222.230.113:63215 TLS Error: TLS key negotiation failed to occur within 60 seconds
(check your network connectivity)
Mon Jul 16 14:01:12 2007 us=37678 221.222.230.113:63215 TLS Error: TLS handshake failed
Mon Jul 16 14:01:12 2007 us=37803 221.222.230.113:63215 SIGUSR1[soft,tls-error] received, client-instance restarting
----------------------cut here ----------------------------
Client.log:
Mon Jul 16 21:30:51 2007 OpenVPN 2.0.9 Win32-MinGW [SSL] [LZO] built on Oct 1 2006
Mon Jul 16 21:31:21 2007 LZO compression initialized
Mon Jul 16 21:31:21 2007 Control Channel MTU parms [ L:1542 D:138 EF:38 EB:0 ET:0 EL:0 ]
Mon Jul 16 21:31:21 2007 Data Channel MTU parms [ L:1542 D:1450 EF:42 EB:135 ET:0 EL:0 AF:3/1 ]
Mon Jul 16 21:31:21 2007 Local Options hash (VER=V4): '41690919'
Mon Jul 16 21:31:21 2007 Expected Remote Options hash (VER=V4): '530fdded'
Mon Jul 16 21:31:21 2007 UDPv4 link local: [undef]
Mon Jul 16 21:31:21 2007 UDPv4 link remote: 64.74.124.171:1194
Mon Jul 16 21:31:21 2007 TCP/UDP: Incoming packet rejected from 64.74.124.151:1194[2], expected peer address:
64.74.124.171:1194 (allow this incoming source address/port by removing --remote or adding --float)
Mon Jul 16 21:31:23 2007 TCP/UDP: Incoming packet rejected from 64.74.124.151:1194[2], expected peer address:
64.74.124.171:1194 (allow this incoming source address/port by removing --remote or adding --float)
Mon Jul 16 21:31:24 2007 TCP/UDP: Incoming packet rejected from 64.74.124.151:1194[2], expected peer address:
64.74.124.171:1194 (allow this incoming source address/port by removing --remote or adding --float)
Mon Jul 16 21:48:23 2007 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
Mon Jul 16 21:48:23 2007 TLS Error: TLS handshake failed
Mon Jul 16 21:48:23 2007 TCP/UDP: Closing socket
|
|
|
|
|
|