From owner-freebsd-questions@FreeBSD.ORG Wed May 11 14:18:35 2011 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 314BD1065675 for ; Wed, 11 May 2011 14:18:35 +0000 (UTC) (envelope-from btillman99@yahoo.com) Received: from nm1.bullet.mail.bf1.yahoo.com (nm1.bullet.mail.bf1.yahoo.com [98.139.212.160]) by mx1.freebsd.org (Postfix) with SMTP id CEFE08FC20 for ; Wed, 11 May 2011 14:18:34 +0000 (UTC) Received: from [98.139.212.152] by nm1.bullet.mail.bf1.yahoo.com with NNFMP; 11 May 2011 14:18:33 -0000 Received: from [98.139.212.229] by tm9.bullet.mail.bf1.yahoo.com with NNFMP; 11 May 2011 14:18:33 -0000 Received: from [127.0.0.1] by omp1038.mail.bf1.yahoo.com with NNFMP; 11 May 2011 14:18:33 -0000 X-Yahoo-Newman-Property: ymail-3 X-Yahoo-Newman-Id: 938865.6161.bm@omp1038.mail.bf1.yahoo.com Received: (qmail 90624 invoked by uid 60001); 11 May 2011 14:18:33 -0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s1024; t=1305123513; bh=poLMkLq+XrIeKUnJZ4YyWQiqq8WJ7uK/oPA9haujnME=; h=Message-ID:X-YMail-OSG:Received:X-Mailer:References:Date:From:Subject:To:Cc:In-Reply-To:MIME-Version:Content-Type; b=nSFhkPlS0o0dGiVrk5Ta/HMXN6HOviTnUoQukkhrZnh/XDnO7r+58qn59Ppe9ozH0kkDAlDIhUV7cLDud9dOQjpofNRVDhgm4JAJjYSUdNpK/S3FZehDaKLE16xLS1MVJKCLn4O57/baYBIdciUhxfdzDXoFPRp9TV7RlKLjmrE= DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; h=Message-ID:X-YMail-OSG:Received:X-Mailer:References:Date:From:Subject:To:Cc:In-Reply-To:MIME-Version:Content-Type; b=OLGGXJMdDnAbvlJFcjf06c36bZMIRH56hUvM53yBN4FpQb77a2qvcSfu9z67bena7vIl1GqylpFatXokx2Fm/pu0Fyy3AFfXagSXmu4IIvlDAjF7LkCEZvqoIOSQc6cUg7y2sRSiYBMlyR8H4cYWDxUUoEdCR3FInDVv60v5J/c=; Message-ID: <250245.88369.qm@web36507.mail.mud.yahoo.com> X-YMail-OSG: _R.6ouIVM1kUZkmOrX4_E11qnCdMvgcFx.QCAMuCAIF9Zvr xwVhPkKD8SqX.xtpD2bojnoVHDkJEK5Ciin4arYiJu56OY6WrrcAioiOdf0H D3RNDTliyNw1wvuX_SxkRVp15PQgN3a5IreIo.i4BtDvGfgPYaUGCZ2bRk1c NZG3sEqk2chd.Em1VIf7JMbI7jN_se1YbqWiQsooWRAzLhmhsKU5Gz0dwjei 2Sq.G6O38vfxdGMnldT6LHCNQl0GpNTEBsJcKbzNgWIbnLFjUPOcH65Fy1.b _dyWxMBUwqo4Xscc4IbpzdSzdjDOTykcOBTe6xSoM.uHHQ3YEi7ioIyahbpg l9EP2YKMYeGaFU3iSTtUb1Q0Z_HMs3B2PEQMhzZI5ECFtLnGfbiwXDsghhvF DUlrhNZIcICYmYidl.ASI0YOXOuRbuFcY58jKMkgddiSUmuM- Received: from [98.99.202.70] by web36507.mail.mud.yahoo.com via HTTP; Wed, 11 May 2011 07:18:32 PDT X-Mailer: YahooMailRC/567 YahooMailWebService/0.8.111.303096 References: <001b01cc0f75$770ddfd0$65299f70$@yahoo.com> <307390.53296.qm@web36507.mail.mud.yahoo.com> Date: Wed, 11 May 2011 07:18:32 -0700 (PDT) From: Bill Tillman To: Kevin Wilcox In-Reply-To: MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: freebsd-questions@freebsd.org Subject: Re: OpenVPN Setup X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 11 May 2011 14:18:35 -0000 ________________________________ From: Kevin Wilcox To: Bill Tillman Cc: freebsd-questions@freebsd.org Sent: Wed, May 11, 2011 9:28:08 AM Subject: Re: OpenVPN Setup On Wed, May 11, 2011 at 09:11, Bill Tillman wrote: > 2. I have my OpenVPN process running on my FreeBSD server and wish to test it > with the OpenVPN client for Windows on my laptop from an outside location. But > the only outside locations I have access to right now are the local McDonalds > and Starbucks which offer free WiFi via AT&T's network. The trouble with this >is > they appear to be blocking almost everything at these locations with the > exception of HTTP traffic. I can't make the connection and I cannot acces my >LAN > via SSH either. I don't think they are blocking any particular ports on these > systems as much as they are just blocking everything except those ports which > allow users to surf the web. The only thing which appears in the status window > is that's it trying to make the handshake but then fails. I can ping my home > server from these outside locations so I know my server is reachable. It's not uncommon for guest/visitor/unsponsored/portal wireless to only have ports 80 and 443 (sometimes only port 80) open. You can modify your server's config to use port 80 instead of 1194 (assuming you aren't running a webserver on that machine). Keep in mind that if you do that then before you can connect you'll have to: o change the config on the server o restart openvpn on the server o change the config on the client kmw _______________________________________________ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" Thanks again. Setting the proto to tcp, port 443 is working at least. I'm sitting comfortably in a Starbucks with a cup of java and smooth jazz playing and with a powered connection so I won't have to worry about battery in this laptop which only lasts about 20 minutes these days. So I can run the VPN client here and it makes connection and grabs an IP address 10.8.0.6, and I can ping the tunnel device on the other end 10.8.0.1 but I cannot access the other side of the VPN server at home, 10.0.0.0/24. Nothing will reply to pings and my attempts to do remote desktop with one of my windows machines fails and I cannot access the Samba shares on the VPN server. I guess this must be a routing issue but I thought the OpenVPN server set this up when it started. Any additional advice will be appreciated. I'm going to stay here and hack at it until they run me off.