Hi,

i am new to openvpn. I have a Qnap NAS running a linux os. I have installed openvpn according to a tutorial. Openvpn is running and I can connect to my NAS using the client, this all goes well, I can acces my shared folders on my nas etc. That's working.

But when I try to ping my router or my pc at home (i connect from the office), its not possible...

Network settings: IP NAS (host): 192.168.3.100 IP home network: 192.168.3.x / 255.255.255.0

IP office: 192.168.0.x / 255.255.255.0

Can you help me? Thanks!!

without config files it is hard to be sure but this looks like a classical routing issue... -is routing enabled on the NAS box

  cat /proc/sys/net/ipv4/ipforward
  echo 1 > /proc/sys/net/ipv4/ipforward

and does the home network know that packets entering over the VPN tunnel needs to go back into the VPN tunnel ?

If your VPN network is 10.8.0.0/24 (the default) then add a route to your home router such that this network is routed back to the NAS box.

HTH,

JJK

This is my server config: # OpenVPN server configuration QNAP NAS

basic settings

port 1194 proto udp dev tun #

detect mtu if the connection is slow.

; mtu-test #

define mtu, if necessary

; tun-mtu xyz #

define the ip-addresses of the underlying tunnel

server 10.8.0.0 255.255.255.0 #

Route

push "route 192.168.4.0 255.255.255.0" # <--- Enter the ip-address of your home network here! #

certificates & keys

dh /opt/etc/openvpn/keys/dh1024.pem ca /opt/etc/openvpn/keys/ca.crt cert /opt/etc/openvpn/keys/server.crt key /opt/etc/openvpn/keys/server.key #

data compression

comp-lzo #

allow, that several clients with the same common name log on

; duplicate-cn #

different clients can "see" each other through the tunnel.

; client-to-client #

Keepalive

keepalive 15 120 #

verbosity of status messages in the console. Activate for debugging (1-9 possible)

; verb 5 #

Log files

; status /share/HDADATA/optware/opt/etc/openvpn/log/status.log ; log-append /share/HDADATA/optware/opt/etc/openvpn/log/openvpn.log

Run as daemon (activate, after everything is set up properly)

; daemon #

Management Interface. Access with "telnet localhost 7505"

management localhost 7505

How do i create a route to my home router? Sorry i'm new to openvpn.. Thanks!

My routing is on on the NAS box! cat /proc/sys/net/ipv4/ipforward

gives 1 (cant edit my messages??)

you don't need to create a route to your home router, but a route FROM your home router : this depends on your home router how you do this.

an alternative is to use iptables on the NAS box; try something like

  iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE

Ok i have a zyxel NBG460N router. I know about port forwarding, but should i create a static route in my router? in the static route menu i can set the following options: destination: (should this be the NAS ip adress?) subnetmask: (suppose this should be 255.255.255.0) Gateway adress: (should this be the ip adress of my router?)

Thanks for helping :)

destination: 10.8.0.0

netmask: 255.255.255.0

gw: 192.168.3.100

When enter those settings i cant connect my openvpn connection any more.. ? Fri Nov 06 16:06:16 2009 OpenVPN 2.0.9 Win32-MinGW [SSL] [LZO] built on Oct 1 2006 Fri Nov 06 16:06:16 2009 IMPORTANT: OpenVPN's default port number is now 1194, based on an official port number assignment by IANA. OpenVPN 2.0-beta16 and earlier used 5000 as the default port. Fri Nov 06 16:06:16 2009 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info. Fri Nov 06 16:06:16 2009 LZO compression initialized Fri Nov 06 16:06:16 2009 UDPv4 link local: [undef] Fri Nov 06 16:06:16 2009 UDPv4 link remote: 77.160.116.61:1194 Fri Nov 06 16:07:17 2009 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity) Fri Nov 06 16:07:17 2009 TLS Error: TLS handshake failed Fri Nov 06 16:07:17 2009 SIGUSR1[soft,tls-error] received, process restarting