Computer Hope

Internet & Networking => Networking => Topic started by: midsail on July 22, 2010, 06:29:19 AM

Title: OpenVPN Windows GUI
Post by: midsail on July 22, 2010, 06:29:19 AM
Hello All
I am new to Open VPN. I have been trying now for several days to get OpenVPN GUI to work on my PC. From what I have read it does not matter which version of Windows is installed (Pro or Home).

First my PC stats:
Wins XP Home edition SP3 (32bit)
AMD Athlon 64 Processor 3200+
2.21GHZ 1 GB RAM

Network:
I am connected to the Internet by a DSL line.
Using DynDNS service to obtain my Dynamic IP address from ISP.
Port forward 1194 to the  IP address (192.168.1.150) on the router (Linksys  BEFSR41).
The TAP-Win32 Adapter and Local Lan Adapter have been Bridge status states Network Bridge connected. (I have turn off Windows Fireball.)


Using OpenVPN Windows GUI http://openvpn.se/files/install_packages/openvpn-2.0.9-gui-1.0.3-install.exe
This is package the server.

I have tried to follows this How to link: http://www.itsatechworld.com/2006/01/29/how-to-configure-openvpn/
When I start OpenVPN the icon turns green with no IP address.
Here is my config files for the server.
BTW I have x out the DNS infor for this post.

local 192.168.1.150 # This is the IP address of the real network interface on the server connected to the router
port 1194 # This is the port OpenVPN is running on - make sure the router is port forwarding this port to the above IP
proto udp # UDP tends to perform better than TCP for VPN
mssfix 1400 # This setting fixed problems I was having with apps like Remote Desktop
push "dhcp-option DNS x.x.x.x"  # Replace the Xs with the IP address of the DNS for your home network (usually your ISP's DNS)
push "dhcp-option DNS x.x.x.x"  # A second DNS server if you have one
dev tap
#dev-node MyTAP  #If you renamed your TAP interface or have more than one TAP interface then remove the # at the beginning and change "MyTAP" to its name
ca "C:\\Program Files\\OpenVPN\\easy-rsa\\keys\\ca.crt" 
cert "C:\\Program Files\\OpenVPN\\easy-rsa\\keys\\server.crt"
key "C:\\Program Files\\OpenVPN\\easy-rsa\\keys\\server.key"  # This file should be kept secret
dh "C:\\Program Files\\OpenVPN\\easy-rsa\\keys\\dh1024.pem"
server 192.168.10.0 255.255.255.128  # This assigns the virtual IP address and subent to the server's OpenVPN connection.  Make sure the Routing Table entry matches this.
ifconfig-pool-persist ipp.txt
push "redirect-gateway def1"  # This will force the clients to use the home network's internet connection
keepalive 10 120
cipher BF-CBC        # Blowfish (default) enc


Here are the View logs of the server:
Fri Jul 20 23:52:26 2010 OpenVPN 2.0.9 Win32-MinGW [SSL] [LZO] built on Oct  1 2006
Fri Jul 20 23:52:26 2010 TCP/UDP: Socket bind failed on local address 192.168.1.150:1194: The requested address is not valid in its context. 
Fri Jul 20 23:52:26 2010 Exiting

If I comment out the first line. Here is the Results:
Wed Jul 21 23:25:37 2010 OpenVPN 2.0.9 Win32-MinGW [SSL] [LZO] built on Oct  1 2006
Wed Jul 21 23:25:37 2010 TAP-WIN32 device [Local Area Connection 19] opened: \\.\Global\{DE6694A7-850A-4326-A301-3447B5158483}.tap
Wed Jul 21 23:25:37 2010 Notified TAP-Win32 driver to set a DHCP IP/netmask of 192.168.10.1/255.255.255.128 on interface {DE6694A7-850A-4326-A301-3447B5158483} [DHCP-serv: 192.168.10.0, lease-time: 31536000]
Wed Jul 21 23:25:37 2010 Sleeping for 10 seconds...

I can see the failed IP connection. I have check and double check the instruction n config files, on this How to.

I have search several sites n they all give the same instruction. I haven't figure out what I am doing wrong? At this stage I have no clue as to what is wrong or were go too.
Hope all information here is helpful. Any ideas or help will be greatly appreciated.
Title: Re: OpenVPN Windows GUI
Post by: drivenbywhat on July 24, 2010, 07:31:12 AM
server 192.168.10.0 255.255.255.128  # This assigns the virtual IP address and subent to the server's OpenVPN connection. 

I would change that to an ip in the same subnet as your server. Since you have 192.168.0.150 with subnet mask 255.255.255.0 (I assume, but make sure) then you can type 192.168.0.151 as the replacement. Just make sure the ip isn't used by other computers at home.