* [gentoo-user] router vpn passthrough @ 2019-08-24 19:47 thelma 2019-08-24 20:03 ` J. Roeleveld 0 siblings, 1 reply; 4+ messages in thread From: thelma @ 2019-08-24 19:47 UTC (permalink / raw To: Gentoo mailing list My old router Asus RT-N16 was running DD-WRT and OpenVPN passthrough was running perfectly. But the router went down. I just got a new one D-Link DIR-878 but it seem to me it does not support OpenVPN passthrough. I can not establish connection with a remote OpenVPN server. Can anybody recommend a router that will work with OpenVPN. -- Joseph ^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: [gentoo-user] router vpn passthrough 2019-08-24 19:47 [gentoo-user] router vpn passthrough thelma @ 2019-08-24 20:03 ` J. Roeleveld 2019-08-24 21:58 ` thelma 0 siblings, 1 reply; 4+ messages in thread From: J. Roeleveld @ 2019-08-24 20:03 UTC (permalink / raw To: gentoo-user On 24 August 2019 21:47:16 CEST, thelma@sys-concept.com wrote: >My old router Asus RT-N16 was running DD-WRT and OpenVPN passthrough >was >running perfectly. But the router went down. > >I just got a new one D-Link DIR-878 but it seem to me it does not >support OpenVPN passthrough. >I can not establish connection with a remote OpenVPN server. > >Can anybody recommend a router that will work with OpenVPN. OpenVPN works using similar connectivity as other applications. As long as the router doesn't do anything strange it should just work. I would only expect issues with ipsec and similar protocols. Has anything happened at the remote server? -- Joost -- Sent from my Android device with K-9 Mail. Please excuse my brevity. ^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: [gentoo-user] router vpn passthrough 2019-08-24 20:03 ` J. Roeleveld @ 2019-08-24 21:58 ` thelma 2019-08-24 22:53 ` Mick 0 siblings, 1 reply; 4+ messages in thread From: thelma @ 2019-08-24 21:58 UTC (permalink / raw To: gentoo-user On 08/24/2019 02:03 PM, J. Roeleveld wrote: > On 24 August 2019 21:47:16 CEST, thelma@sys-concept.com wrote: >> My old router Asus RT-N16 was running DD-WRT and OpenVPN passthrough >> was >> running perfectly. But the router went down. >> >> I just got a new one D-Link DIR-878 but it seem to me it does not >> support OpenVPN passthrough. >> I can not establish connection with a remote OpenVPN server. >> >> Can anybody recommend a router that will work with OpenVPN. > > OpenVPN works using similar connectivity as other applications. As long as the router doesn't do anything strange it should just work. > > I would only expect issues with ipsec and similar protocols. > > Has anything happened at the remote server? > > -- > Joost > IPSec (VPN) is enable on this router. Remote host was working OK so I don't know what can be at issue. -- Joseph ^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: [gentoo-user] router vpn passthrough 2019-08-24 21:58 ` thelma @ 2019-08-24 22:53 ` Mick 0 siblings, 0 replies; 4+ messages in thread From: Mick @ 2019-08-24 22:53 UTC (permalink / raw To: gentoo-user [-- Attachment #1: Type: text/plain, Size: 2082 bytes --] On Saturday, 24 August 2019 22:58:23 BST thelma@sys-concept.com wrote: > On 08/24/2019 02:03 PM, J. Roeleveld wrote: > > On 24 August 2019 21:47:16 CEST, thelma@sys-concept.com wrote: > >> My old router Asus RT-N16 was running DD-WRT and OpenVPN passthrough > >> was > >> running perfectly. But the router went down. > >> > >> I just got a new one D-Link DIR-878 but it seem to me it does not > >> support OpenVPN passthrough. > >> I can not establish connection with a remote OpenVPN server. > >> > >> Can anybody recommend a router that will work with OpenVPN. > > > > OpenVPN works using similar connectivity as other applications. As long as > > the router doesn't do anything strange it should just work. > > > > I would only expect issues with ipsec and similar protocols. > > > > Has anything happened at the remote server? > > > > -- > > Joost > > IPSec (VPN) is enable on this router. Remote host was working OK so I > don't know what can be at issue. > > -- > Joseph IPSec (whether IKE/IPSec, or L2TP/IPSec) uses different ports and protocols than OpenVPN, so there should be no clash between the two. In any case, is there a reason you have IPSec enabled on the router? Many implementations leave much to be desired. Most routers allow outgoing connections to any port, thus passing-through any OpenVPN connections to the remote peer. Returning packets from the remote peer should be allowed in through your router's firewall, because they are replies to the initiating OpenVPN client from within your LAN. In iptables terms the firewall should allow NEW,ESTABLISHED packets through the INPUT chain, for any connections your clients have initiated. The default OpenVPN server port (UDP or TCP) is 1194, so outgoing packets from your client would be on 1194, unless you are using some bespoke OpenVPN configuration. Can you enable temporarily your router's logs and keep an eye on dropped/ rejected packets as you are trying to initiate an OpenVPN connection? This should hopefully give some indication what might be wrong. -- Regards, Mick [-- Attachment #2: This is a digitally signed message part. --] [-- Type: application/pgp-signature, Size: 833 bytes --] ^ permalink raw reply [flat|nested] 4+ messages in thread
end of thread, other threads:[~2019-08-24 22:54 UTC | newest] Thread overview: 4+ messages (download: mbox.gz follow: Atom feed -- links below jump to the message on this page -- 2019-08-24 19:47 [gentoo-user] router vpn passthrough thelma 2019-08-24 20:03 ` J. Roeleveld 2019-08-24 21:58 ` thelma 2019-08-24 22:53 ` Mick
This is a public inbox, see mirroring instructions for how to clone and mirror all data and code used for this inbox