Menu
▾
▴
Re: [Openvpn-users] Conceptual question with adapter-bridging on Windows XP
|
From: Mathias S. <ma...@ni...> - 2004-10-14 12:20:49
|
On Thu, 14 Oct 2004, Kay Wischkony wrote: > I fear, I don't understand this right. I've worked > along the howto, but can't start openvpn successfully. > > What I have: > ------------ > - A small LAN behind a NATting gateway > with static IPs from 192.168.0.0/24. > - A working Dyndns-Name for the outside of > this gateway. > - An XPSP2-machine On the LAN, which shall > work as VPN-Server. > - A working portforwarding for 5000/udp through the > gateway to the LAN-address of the above XP-machine. > - OpenVPN 2.0_beta11 and a tap-device installed. > - A port-exception for 5000/udp on the tap-device > in the Windows integrated firewall It's not the TAP device that need to accept incomming udp/5000 packets, it's the physical ethernet adapter. > - A set of seemingly OK keys and certs, generated > with my rough windows-port of the easy-rsa-scripts. > (The latter available for the asking.) > > What I want: > ------------ > - OpenVPN running as a service in Servermode > - Ethernet-bridge(s) from and to other similiar > LANs and roadwarrios. > > Where I fail: > ------------- > - When I bridge the NIC and the tap-device > on the server to become, this machine loses > connectivity to the LAN. > > My Questions: > ------------- > 1. Do I need a second NIC for this scenario? Having two NIC's certainly makes it cleaner, but I think it should work with one NIC. I've done this kind of setup on linux with only one NIC at least. > 3. Any special hints, caveats, examples for this > situation? (I have difficulties understanding > which of the config-directives are appropriate > for which role and version of OpenVPN.) Like I said, I've only done this on Linux but I think: You should create a bridge between the TAP device and your physical interface. Set your local net IP address on the bridge interface together with the default gw. Then you should be able to reach internet again over the bridge. -- _____________________________________________________________ Mathias Sundman (^) ASCII Ribbon Campaign OpenVPN GUI for Windows X NO HTML/RTF in e-mail http://www.nilings.se/openvpn / \ NO Word docs in e-mail |
