* From: Bob Proulx <b...@proulx.co.> * Date: Wed, 5 Jan 2011 14:01:54 -0700 > But an openvpn configuration shouldn't be depending upon dynamic dns. > Have your dynamic IP client contact your server. ... might be able to use > almost > the same configuration you currently have but just with some tweaks. > There are two main configurations. One is a special case shared key.
Just what I have. This is the configuration on Dalton which has the static address. # dalton:/etc/openvpn/myvpn.conf # # Default protocol is udp. # Default port is 1194. mode server dev tun ifconfig 10.4.0.2 10.4.0.1 verb 5 secret /root/key1 1 # route parameters omitted. This is the configuration on Joule which has the dynamic address. # joule:/etc/openvpn/vpn.conf # # This is the static address of Dalton. remote 142.103.107.137 dev tun # These are the local and remote endpoints of the tunnel. ifconfig 10.4.0.1 10.4.0.2 verb 5 secret /root/key1 0 # route parameters omitted. Nevertheless, the tunnel fails. pe...@joule:~$ grep refused /var/log/syslog Jan 9 15:08:53 joule ovpn-myvpn[1903]: read UDPv4 [ECONNREFUSED]: Connection re fused (code=111) ... More specifically. joule:/etc/shorewall# traceroute -p 1194 -P udp 142.103.107.137 traceroute to 142.103.107.137 (142.103.107.137), 30 hops max, 60 byte packets 1 * * * 2 * * * ... ISP blocks tunnel datagrams? If that is the case it's a recent change. Thanks for any further ideas, Peter E. -- Telephone 1 360 450 2132. Shop pages http://carnot.yi.org/ accessible as long as the old drives survive. Personal pages http://members.shaw.ca/peasthope/ . -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/171056873.67819.63...@heaviside.invalid
