• Post Reply Bookmark Topic Watch Topic
  • New Topic

Vpn traffic not going through tun0  RSS feed

 
Richard Le
Greenhorn
Posts: 15
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Good afternoon!

I'm trying to configure a VPN server in Ubuntu using openVpn. I already configured the server.conf file and the client.conf file. These are my configurations:

Server.conf

port 1194
proto udp
dev tun
ca ca.crt
cert grupo04vpn.crt
key grupo04vpn.key # This file should be kept secret
dh dh2048.pem
server 10.0.0.0 255.255.255.0
ifconfig-pool-persist ipp.txt
push "route 172.17.20.0 255.255.255.0"
push "redirect-gateway def1 bypass-dhcp"
push "dhcp-option DNS 172.17.20.4"
client-to-client
keepalive 10 120
comp-lzo
max-clients 100
persist-key
persist-tun
status openvpn-status.log
verb 5


Client.conf

client
dev tun
proto udp
remote 172.17.20.6 1194
resolv-retry infinite
nobind
persist-key
persist-tun
ca ca.crt
cert client.crt
key client.key
ns-cert-type server
comp-lzo
verb 3


I'm able to ping 10.0.0.1 (which is the server's ip) from the vpn client, and i'm able to ping 10.0.0.10 (which is the client's ip) from the vpn server. However, when i check the tun0 interface from IPTRAF i see that no traffic is going through tun0, only through eth0. Here you can see a screenshot from iptraf when a ping 10.0.0.1

tun0



eth0



This is my network



As you can see all the traffic is going through the eth0 interface, and i guess it should go through tun0.
I would really appreciate any help to make traffic go through the tunnel as it should be.

Thanks.
 
Richard Tookey
Bartender
Posts: 1166
17
Java Linux Netbeans IDE
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Since you are far more likely to find OpenVPN experts lurking there, you would probably do better to use the OpenVPN forum https://forums.openvpn.net/ .

Note - I have used OpenVPN for the last 4 years but can in no way be considered an expert. I use 'tap' rather than 'tun' and I setup my server configuration files 4 years ago and have only touched them once since and that was when, after an OpenVPN update, the log file indicated that I was using a deprecated feature. The structure of my client configuration files has not changed at all in that time; I have a script which creates a a new set of client configuration files as needed. When I monitor my network using 'iptraf' I see exactly what I expect with traffic routed through 'tap0' when I expect it to go through 'tap' .
 
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
Boost this thread!