Hi Michael Am 29.12.2014 um 13:46 schrieb mich...@haleyweb.com: > Thank you for your quick and eloquent reply. > > Yes, when I first connected through my client, my original thought when I > wasn't able to ping from my client was an error in the connection between > my client and server. But, then I happened to be on my server and tried > to ping an IP/domain and wasn't successful because OpenVPN was running. > > Here are my iptable entries which load when my server reboots. > > root@interconit:~# cat /etc/rc.local > iptables -A FORWARD -m state --state RELATED,ESTABLISHED -j ACCEPT > iptables -A FORWARD -s 10.8.0.0/24 -j ACCEPT > iptables -A FORWARD -j REJECT > iptables -t nat -A POSTROUTING -s 10.8.0.0/24 -o eth0 -j MASQUERADE > /etc/init.d/dnsmasq restart # forward DNS traffic through the VPN > exit 0 > > 74.207.241.5 is one of my VPS domain resolvers listed in my > /etc/network/interfaces config. What are you suggesting is the solution? >
As JJK pointed out, what is the reason to have 2 tun devices. Whatever, you need to verify first that routing to your DNS server, e.g. 74.207.241.5 is set up correctly. Then you need to make sure the DNS request can be answered by the server, e.g. the server either has a route to the requestor or the request is NATted. Please check your interface pointing to 74.207.241.5 and use tcpdump to see how the request looks like. If it still has an source address of 10.8.0.6 then the odds are high the server does not know how to reply to this request. Once you have this issue resolved you can use the same aproach to find out about your ICMP packets cheers Erich
smime.p7s
Description: S/MIME Cryptographic Signature
------------------------------------------------------------------------------ Dive into the World of Parallel Programming! The Go Parallel Website, sponsored by Intel and developed in partnership with Slashdot Media, is your hub for all things parallel software development, from weekly thought leadership blogs to news, videos, case studies, tutorials and more. Take a look and join the conversation now. http://goparallel.sourceforge.net
_______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
