Date: Mon, 22 Apr 2019 17:53:47 -0700 From: Doug Hardie <bc979@lafn.org> To: FreeBSD Questions <freebsd-questions@freebsd.org> Subject: openvpn Message-ID: <0A8436BD-EFB8-4A54-B920-329096B89C5B@mail.sermon-archive.info>
next in thread | raw e-mail | index | archive | help
I am trying to setup an openvpn server on my home network. Home = machines are all running FBSD 12.0 Release. openvpn was installed as a = package. The results are quite confusing. Ping from an external device = works correctly to all the home machines. I can use tcpdump to see the = request packets arriving at the openvpn server, being sent to the = recipient machine, the response packets being sent from the recipient = machine to the openvpn server, and then sent to the external device. = The external device shows that the response was received with a = reasonable response time given that it is a cell phone. =20 However, when I try to access a web page on any of the servers, I see = the same set of packets via tcpdump. In addition if I run ktrace on the = openvpn server, I see the encrypted packets from the client being = received. The decrypted packets sent to the home server. The = unencrypted response from the home server, and the encrypted response = sent to the phone. However, the phone says that the server dropped the = connection, or it shows a blank page. My first thought was that there was an encryption issue, but if that = were the case, ping would not work. Checking the ping packets shows = that they are encrypted between the phone and the openvpn server. = Likewise a routing issue in the home network does not seem to be the = problem for the same reason. All the info I have found on the web about = vpn indicates that a ping test should be sufficient. But, in this case = it is not. Any ideas on how to track down the problem, or fix it? Thanks, -- Doug
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?0A8436BD-EFB8-4A54-B920-329096B89C5B>