[Problem solved]vpn client can't ping vpn server
-
- Posts: 5
- Joined: Mon Feb 22, 2021 6:54 am
[Problem solved]vpn client can't ping vpn server
Problem solved.
when I disabled virtual NAT , CPU usage became normal.
Thanks.
==============================================================================================================
Problem still exists, when I add eth0 and tap_soft to bridge, it will leads to excessive CPU consumption.
===============================================================================================================
//Problem solved.
Someone met this years ago, https://www.vpnusers.com/viewtopic.php?t=4542 , according to his way , i solved this problem.
Thanks to everyone.
===========================================================================================================
I have installed vpn server on a server(IP:192.168.1.10) in lan and configured ddns, and vpn cliet on PC .
vpn client can connect to vpn server and get ip,when vpn have connected,the client can access another server(192.168.1.11) in lan ,but can't access the vpn server(192.168.1.10), either i create bridge on vpn server or not.
Can anybody help me with this question?
Thanks!
when I disabled virtual NAT , CPU usage became normal.
Thanks.
==============================================================================================================
Problem still exists, when I add eth0 and tap_soft to bridge, it will leads to excessive CPU consumption.
===============================================================================================================
//Problem solved.
Someone met this years ago, https://www.vpnusers.com/viewtopic.php?t=4542 , according to his way , i solved this problem.
Thanks to everyone.
===========================================================================================================
I have installed vpn server on a server(IP:192.168.1.10) in lan and configured ddns, and vpn cliet on PC .
vpn client can connect to vpn server and get ip,when vpn have connected,the client can access another server(192.168.1.11) in lan ,but can't access the vpn server(192.168.1.10), either i create bridge on vpn server or not.
Can anybody help me with this question?
Thanks!
Last edited by zhychen on Thu Feb 25, 2021 1:53 am, edited 6 times in total.
-
- Posts: 1301
- Joined: Sun Feb 14, 2021 10:31 am
Re: vpn client can't ping vpn server
My observations:
Linux SE bridge server can not be pinged.
Windows SE bridge server can be pinged.
Delete the bridge and enable SecureNAT + Virtual NAT.
Now a vpn client can ping the vpn server for sure.
Linux SE bridge server can not be pinged.
Windows SE bridge server can be pinged.
Delete the bridge and enable SecureNAT + Virtual NAT.
Now a vpn client can ping the vpn server for sure.
-
- Posts: 5
- Joined: Mon Feb 22, 2021 6:54 am
Re: vpn client can't ping vpn server
Thanks.
I have tried with or without bridge, and have enabled SecureNAT + Virtual NAT, it didn't work,the same problem happened.
I also tried to install vpn server on another server(192.168.1.11) , then the client can't access 192.168.1.11,but can access 192.168.1.10. It's very strange.
I have tried with or without bridge, and have enabled SecureNAT + Virtual NAT, it didn't work,the same problem happened.
I also tried to install vpn server on another server(192.168.1.11) , then the client can't access 192.168.1.11,but can access 192.168.1.10. It's very strange.
-
- Posts: 1301
- Joined: Sun Feb 14, 2021 10:31 am
Re: vpn client can't ping vpn server
Ensure the following:
- Virtual DHCP has Default Gateway set to 192.168.30.1 (assuming SecureNAT is on the 192.168.30.0 subnet)
- client uses DHCP
- reboot the server
- reboot the client
Post the client's route table, if still the same problem.
-
- Posts: 15
- Joined: Fri Feb 19, 2021 6:04 pm
Re: vpn client can't ping vpn server
Are these servers virtual or physical?
If virtual what platform are you hosting it on?
If virtual what platform are you hosting it on?
-
- Posts: 5
- Joined: Mon Feb 22, 2021 6:54 am
Re: vpn client can't ping vpn server
I have done what you say ,the client still can't access the vpn server(192.168.1.189), but can access another server(192.168.1.20) .
please see the attachements.
please see the attachements.
You do not have the required permissions to view the files attached to this post.
-
- Posts: 5
- Joined: Mon Feb 22, 2021 6:54 am
-
- Posts: 1301
- Joined: Sun Feb 14, 2021 10:31 am
Re: vpn client can't ping vpn server
Is it a Linux server? No restrictions in iptables?
Code: Select all
-P INPUT ACCEPT
-P OUTPUT ACCEPT
-P FORWARD ACCEPT
-
- Posts: 5
- Joined: Mon Feb 22, 2021 6:54 am
Re: vpn client can't ping vpn server
Yes,it's a linux server,there is no restrictions in iptables.
If i install vpn server on another server (like 192.168.1.20), the client pc can access this server(192.168.1.189), but then the client pc can't access the new vpn server(192.168.1.20).
If i install vpn server on another server (like 192.168.1.20), the client pc can access this server(192.168.1.189), but then the client pc can't access the new vpn server(192.168.1.20).
solo wrote: ↑Tue Feb 23, 2021 10:05 amIs it a Linux server? No restrictions in iptables?Code: Select all
-P INPUT ACCEPT -P OUTPUT ACCEPT -P FORWARD ACCEPT
-
- Posts: 1301
- Joined: Sun Feb 14, 2021 10:31 am
Re: vpn client can't ping vpn server
Here is my server which can be pinged, providing SecureNAT is enabled:
If I run tcpdump -nn icmp on the server, I can only see pings to LAN destinations. A ping to the server replies to clients but is not recorded by Linux tools. Try a different Linux distro. Ensure this setup:System:
Host: a Kernel: 5.4.0-65-generic x86_64 bits: 64 Desktop: Xfce 4.14.1
Distro: Linux Mint 19.3 Tricia
Network:
Device-1: Broadcom and subsidiaries NetLink BCM57788 Gigabit Ethernet PCIe
You do not have the required permissions to view the files attached to this post.