I did setup my softether server on my Cantos machine.
problem is: is there any step by step CORRECT instruction for Linux based client connection?
mu Ubuntu desktop machine needs to execute dhclient command to get ip address on virtual interface related to softether. after that i have routing problem, because when i check i see i am still not connected to the VPN server.
i used this tutorial and i did exactly the same steps for client configs but still can not connect.
https://www.sumovpn.com/guides/ubuntu/sevpn.html
appreciate any help
Linux Client configuration failed
-
Petrol
- Posts: 44
- Joined: Wed May 06, 2015 11:23 pm
Re: Linux Client configuration failed
I don't know about this tutorial, but I'm using the following commands to connect to a vpn server with vpncmd
Here are the commands (using a linux mint distribution, you might eed to adapt them to your own) I use after connection
(as root)
dhclient [TAP_DEVICE]
ip route add [VPN_SERVER_PUBLIC_IP] via [LOCAL_DEFAULT_GATEWAY]
ip route add 0.0.0.0/1 via [HUB_GATEWAY_IP]
ip route add 128.0.0.0/1 via [HUB_GATEWAY_IP]
You can follow the tutorial until step 9.
To get the IP addresses you need, just do as the tutorial :
[VPN_SERVER_PUBLIC IP] -> host http://www.serveraddress.com
[LOCAL_DEFAULT_GATEWAY] -> ip neigh (look for the ip of the line eth0)
[HUB_GATEWAY] -> ip neigh (look for the ip of the line vpn_tun0)
[TAP_DEVICE_NAME] is vpn_tun0 in the tutorial.
And issue the command above.
All the traffic is then routed through the hub gateway (and so through the vpn server).
To revert the routing table after disconnection :
ip route del [VPN_SERVER_PUBLIC_IP] via [LOCAL_DEFAULT_GATEWAY]
ip route del 0.0.0.0/1 via [HUB_GATEWAY_IP]
ip route del 128.0.0.0/1 via [HUB_GATEWAY_IP]
dhclient -r [TAP_DEVICE_NAME]
The command were taken from OpenVPN client.
Hope it helps
Here are the commands (using a linux mint distribution, you might eed to adapt them to your own) I use after connection
(as root)
dhclient [TAP_DEVICE]
ip route add [VPN_SERVER_PUBLIC_IP] via [LOCAL_DEFAULT_GATEWAY]
ip route add 0.0.0.0/1 via [HUB_GATEWAY_IP]
ip route add 128.0.0.0/1 via [HUB_GATEWAY_IP]
You can follow the tutorial until step 9.
To get the IP addresses you need, just do as the tutorial :
[VPN_SERVER_PUBLIC IP] -> host http://www.serveraddress.com
[LOCAL_DEFAULT_GATEWAY] -> ip neigh (look for the ip of the line eth0)
[HUB_GATEWAY] -> ip neigh (look for the ip of the line vpn_tun0)
[TAP_DEVICE_NAME] is vpn_tun0 in the tutorial.
And issue the command above.
All the traffic is then routed through the hub gateway (and so through the vpn server).
To revert the routing table after disconnection :
ip route del [VPN_SERVER_PUBLIC_IP] via [LOCAL_DEFAULT_GATEWAY]
ip route del 0.0.0.0/1 via [HUB_GATEWAY_IP]
ip route del 128.0.0.0/1 via [HUB_GATEWAY_IP]
dhclient -r [TAP_DEVICE_NAME]
The command were taken from OpenVPN client.
Hope it helps
-
amir22651
- Posts: 4
- Joined: Fri Jan 01, 2016 12:07 pm
Re: Linux Client configuration failed
Dear Petrol,
Thank you for the reply.
i did the following as root as you suggested:
1- dhclient [TAP_DEVICE] <=== vpn_home_tun == TAP_DEVICE here!
2- ip neigh ==> it constantly shows the following:
[ipv6] dev vpn_home_tun lladdr [MAC] DELAY
10.10.10.10 dev wlan0 lladdr [Mikrotik Router MAC] REACHABLE
[ipv6] dev vpn_home_tun lladdr [MAC] PROBE
10.10.10.10 dev wlan0 lladdr [Mikrotik Router MAC] REACHABLE
[ipv6] dev vpn_home_tun FAILED
10.10.10.10 dev wlan0 lladdr [Mikrotik Router MAC] REACHABLE
and the ifconfig command shows that my virtual adapter has got ip address: 192.168.30.12
i can check the connection status with the command == AccountStatusGet homeVPN === which shows that i have successfully connected to my VPS VPN server.
VPN Connection Setting Name |homeVPN
Session Status |Connection Completed (Session Established)
VLAN ID |-
Server Name |[my vpn server public ip]
Port Number |TCP Port 443
Server Product Name |SoftEther VPN Server (64 bit)
Server Version |2.00
Server Build |Build 9387
Connection Started at |2016-01-03 (Sun) 17:46:32
First Session was Established at |2016-01-03 (Sun) 17:46:34
Current Session was Established at|2016-01-03 (Sun) 17:46:34
Number of Established Sessions |1 Times
Half Duplex TCP Connection Mode |No (Full Duplex Mode)
VoIP / QoS Function |Enabled
Number of TCP Connections |2
Maximum Number of TCP Connections |2
Encryption |Enabled (Algorithm: RC4-MD5)
Use of Compression |No (No Compression)
Physical Underlay Protocol |Standard TCP/IP (IPv4)
UDP Acceleration is Supported |Yes
UDP Acceleration is Active |Yes
Session Name |SID-[my user name]-11
Connection Name |CID-52
Session Key (160 bit) |[some session key]
Bridge / Router Mode |No
Monitoring Mode |No
Outgoing Data Size |8,773 bytes
Incoming Data Size |6,460 bytes
Outgoing Unicast Packets |19 packets
Outgoing Unicast Total Size |1,578 bytes
Outgoing Broadcast Packets |27 packets
Outgoing Broadcast Total Size |4,441 bytes
Incoming Unicast Packets |7 packets
Incoming Unicast Total Size |602 bytes
Incoming Broadcast Packets |18 packets
Incoming Broadcast Total Size |1,098 bytes
finally i can not figure out what goes wrong :(
Thank you for the reply.
i did the following as root as you suggested:
1- dhclient [TAP_DEVICE] <=== vpn_home_tun == TAP_DEVICE here!
2- ip neigh ==> it constantly shows the following:
[ipv6] dev vpn_home_tun lladdr [MAC] DELAY
10.10.10.10 dev wlan0 lladdr [Mikrotik Router MAC] REACHABLE
[ipv6] dev vpn_home_tun lladdr [MAC] PROBE
10.10.10.10 dev wlan0 lladdr [Mikrotik Router MAC] REACHABLE
[ipv6] dev vpn_home_tun FAILED
10.10.10.10 dev wlan0 lladdr [Mikrotik Router MAC] REACHABLE
and the ifconfig command shows that my virtual adapter has got ip address: 192.168.30.12
i can check the connection status with the command == AccountStatusGet homeVPN === which shows that i have successfully connected to my VPS VPN server.
VPN Connection Setting Name |homeVPN
Session Status |Connection Completed (Session Established)
VLAN ID |-
Server Name |[my vpn server public ip]
Port Number |TCP Port 443
Server Product Name |SoftEther VPN Server (64 bit)
Server Version |2.00
Server Build |Build 9387
Connection Started at |2016-01-03 (Sun) 17:46:32
First Session was Established at |2016-01-03 (Sun) 17:46:34
Current Session was Established at|2016-01-03 (Sun) 17:46:34
Number of Established Sessions |1 Times
Half Duplex TCP Connection Mode |No (Full Duplex Mode)
VoIP / QoS Function |Enabled
Number of TCP Connections |2
Maximum Number of TCP Connections |2
Encryption |Enabled (Algorithm: RC4-MD5)
Use of Compression |No (No Compression)
Physical Underlay Protocol |Standard TCP/IP (IPv4)
UDP Acceleration is Supported |Yes
UDP Acceleration is Active |Yes
Session Name |SID-[my user name]-11
Connection Name |CID-52
Session Key (160 bit) |[some session key]
Bridge / Router Mode |No
Monitoring Mode |No
Outgoing Data Size |8,773 bytes
Incoming Data Size |6,460 bytes
Outgoing Unicast Packets |19 packets
Outgoing Unicast Total Size |1,578 bytes
Outgoing Broadcast Packets |27 packets
Outgoing Broadcast Total Size |4,441 bytes
Incoming Unicast Packets |7 packets
Incoming Unicast Total Size |602 bytes
Incoming Broadcast Packets |18 packets
Incoming Broadcast Total Size |1,098 bytes
finally i can not figure out what goes wrong :(
-
thisjun
- Posts: 2458
- Joined: Mon Feb 24, 2014 11:03 am
Re: Linux Client configuration failed
What's your problem?
-
thisjun
- Posts: 2458
- Joined: Mon Feb 24, 2014 11:03 am
Re: Linux Client configuration failed
What's your problem?
-
amir22651
- Posts: 4
- Joined: Fri Jan 01, 2016 12:07 pm
Re: Linux Client configuration failed
problem is VPN connection is connected by no data is being transferred. i can not access any web page or anything
-
thisjun
- Posts: 2458
- Joined: Mon Feb 24, 2014 11:03 am
Re: Linux Client configuration failed
Why did you think that problem is in client side?
-
amir22651
- Posts: 4
- Joined: Fri Jan 01, 2016 12:07 pm
Re: Linux Client configuration failed
because i can get connect to the server with my windows machine without any problem!
-
cedar
- Site Admin
- Posts: 2274
- Joined: Sat Mar 09, 2013 5:37 am
Re: Linux Client configuration failed
I guess your client host lost the route to VPN Server by acquiring default gateway on the tap device.
Please try to add static route to VPN Server. (or avoid to assign a default gateway on the tap device)
Please try to add static route to VPN Server. (or avoid to assign a default gateway on the tap device)