Hi, On Sun, Nov 27, 2016 at 07:54:42PM -0500, John Baker wrote: [..] > I did > make sure that the firewall was allowing fragmented packets on the access > rules and checked that the MTU was ok. Server side the tun ip at 10.8.0.1 > is pingable but nothing else in the tunnel. Client side nothing is pingable
This is a bit unclear "what works, when pinging from where".
What you should test:
- from the server, ping the client side tun interface
- from the client, ping the server side tun interface
- if routing networks toward client: from the server, ping the client net
- from the client, ping "something in the server's network" - and if
that does not work, check with traceroute and netstat -rn that routing
is right on the client side, and *forwarding* is enabled on the server
side.
> and the Mac gets hung trying to read it's routing table.
This might actually hint at DNS problems. Does "netstat -rn" succeed
quickly? Default for "netstat -r" or "route show" is to resolve names,
and if DNS is funky, that can hang forever.
gert
--
USENET is *not* the non-clickable part of WWW!
//www.muc.de/~gert/
Gert Doering - Munich, Germany [email protected]
fax: +49-89-35655025 [email protected]
signature.asc
Description: PGP signature
------------------------------------------------------------------------------
_______________________________________________ Openvpn-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openvpn-users
