From owner-freebsd-questions@FreeBSD.ORG Wed May 11 13:28:09 2011 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 251121065672 for ; Wed, 11 May 2011 13:28:09 +0000 (UTC) (envelope-from kevin.wilcox@gmail.com) Received: from mail-iy0-f182.google.com (mail-iy0-f182.google.com [209.85.210.182]) by mx1.freebsd.org (Postfix) with ESMTP id DFF0E8FC15 for ; Wed, 11 May 2011 13:28:08 +0000 (UTC) Received: by iyj12 with SMTP id 12so465026iyj.13 for ; Wed, 11 May 2011 06:28:08 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc:content-type; bh=A6SNlRIjtbl3VJCHfD1yI2/Gc3/vt2RPjBdTxF9Udm8=; b=x8fndfsvbCvPCbAKIF6WZ1Bag79Vof2vjBuTwxcS1W3o4RpGvGWJeDAEwuYCGDfo04 j+dYZtQIDP1oBjKcdySvGAA3Cxi+Ah/ntRraV+1IZIAY4RRZ//4O2gzPoKk7HIp5H2SY +1DD4X8CWVJq+/zJuBKrrZ7065Mrau96/sD34= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; b=YRe87zQQQ8AZfdsGvug23SBgrOquv0NN8zxEDr0NasmNTdMDFJv+qkGTb6bFUySXyi f5qmxQ3FY+DuYgHHsz7Ib/w/Ag1/QsHqFwGYIuEScvuaTt+2mXmonfndZrW4dzvACqFv Xdl/KPHFSOdChgV2FoilxiP9vSeHGtYu6peaw= MIME-Version: 1.0 Received: by 10.231.21.146 with SMTP id j18mr6599508ibb.24.1305120488181; Wed, 11 May 2011 06:28:08 -0700 (PDT) Received: by 10.231.36.2 with HTTP; Wed, 11 May 2011 06:28:08 -0700 (PDT) In-Reply-To: <307390.53296.qm@web36507.mail.mud.yahoo.com> References: <001b01cc0f75$770ddfd0$65299f70$@yahoo.com> <307390.53296.qm@web36507.mail.mud.yahoo.com> Date: Wed, 11 May 2011 09:28:08 -0400 Message-ID: From: Kevin Wilcox To: Bill Tillman Content-Type: text/plain; charset=UTF-8 Cc: freebsd-questions@freebsd.org Subject: Re: OpenVPN Setup X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 11 May 2011 13:28:09 -0000 On Wed, May 11, 2011 at 09:11, Bill Tillman wrote: > 2. I have my OpenVPN process running on my FreeBSD server and wish to test it > with the OpenVPN client for Windows on my laptop from an outside location. But > the only outside locations I have access to right now are the local McDonalds > and Starbucks which offer free WiFi via AT&T's network. The trouble with this is > they appear to be blocking almost everything at these locations with the > exception of HTTP traffic. I can't make the connection and I cannot acces my LAN > via SSH either. I don't think they are blocking any particular ports on these > systems as much as they are just blocking everything except those ports which > allow users to surf the web. The only thing which appears in the status window > is that's it trying to make the handshake but then fails. I can ping my home > server from these outside locations so I know my server is reachable. It's not uncommon for guest/visitor/unsponsored/portal wireless to only have ports 80 and 443 (sometimes only port 80) open. You can modify your server's config to use port 80 instead of 1194 (assuming you aren't running a webserver on that machine). Keep in mind that if you do that then before you can connect you'll have to: o change the config on the server o restart openvpn on the server o change the config on the client kmw