<div dir="ltr">Hi, I configured once again and now it works! The problem was that I had not copied the keys from server to the client. If there is any other problem, I shall inform you. Thanks, Nazeem <div class="gmail_quote">2010/2/10 Ian Coetzee <<a href="mailto:ubuntu@iancoetzee.za.net">ubuntu@iancoetzee.za.net</a>> <blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;"> <div class="im">On Wed, Feb 10, 2010 at 8:48 AM, Nazeem نجم لدين <<a href="mailto:nazeemnss@gmail.com">nazeemnss@gmail.com</a>> wrote: > hi, > </div><div class="im">> I tried the openvpn idea. I was able to setp openvpn on both server and > client side. But I was neither able to ping to the other subnet nor send > ip-multicast. > > I followed <a href="https://help.ubuntu.com/community/OpenVPN" target="_blank">https://help.ubuntu.com/community/OpenVPN</a> for the setup > > > The output of route -n on server: > > ernel IP routing table > Destination Gateway Genmask Flags Metric Ref Use > Iface > 10.129.0.0 0.0.0.0 255.255.0.0 U 0 0 0 br0 > 169.254.0.0 0.0.0.0 255.255.0.0 U 1000 0 0 br0 > 0.0.0.0 10.129.1.250 0.0.0.0 UG 100 0 0 br0 > > So I think the route for the packets is the bridge. > > Can you please tell me what I am missing. I did not use 2 NIC's on either > client or server. Do I have to use them? </div>Hi Nazeem Can you pastebin your server and client configs, with all the comments removed? Did you forward the relevant ports on your routers? Can you see that their is an established openvpn connection? Can you ping the OpenVPN server from the client and vise-versa? Regards Ian <div><div></div><div class="h5"> > > > Nazeem > > > On Thu, Feb 4, 2010 at 6:57 AM, NoOp <<a href="mailto:glgxg@sbcglobal.net">glgxg@sbcglobal.net</a>> wrote: >> >> On 02/03/2010 02:21 PM, Smoot Carl-Mitchell wrote: >> > On Wed, 2010-02-03 at 22:40 +0100, Werner Schram wrote: >> >> >> >> On Wed, Feb 3, 2010 at 7:02 AM, Nazeem نجم لدين <<a href="mailto:nazeemnss@gmail.com">nazeemnss@gmail.com</a>> >> >> wrote: >> >> > >> >> > hi, >> >> > Can you suggest way of getting a multicast tunnel work. The >> >> > assumption is >> >> > that there is a unicast cloud in between two mbone networks. So we >> >> > need to >> >> > forward the multicast traffic over the unicast tunnel. Application is >> >> > for >> >> > video transmission. >> >> > -Nazeem >> >> > >> >> >> >> I think you should be able to do it with openvpn. Using the tap setup, >> >> you can create a OSI layer 2 tunnel, which should be able to handle >> >> ip-multicast. You then need to update the routing tables in both >> >> networks to send multicast traffic to the tunnel in stead of the >> >> router. >> >> If you fully thrust the connection between the two networks, you could >> >> disable openvpn's encryption for better performance. >> > >> > You can also do this with SSH which I find simpler than openvpn to >> > configure (although I have done both). Check out the -w argument to SSH >> > and the 'Tunnel' configuration parameter. Tunnel lets you do either >> > layer 3 (point-to-point) or layer 2 (ethernet). You do incur the >> > encryption overhead, but I would not run a VPN connection over the >> > Internet unencrypted. >> > >> > >> >> Or, buy and use routers on each end that do the vpn encryption in >> hardware. I typically avoid software vpn solutions (except for roaming >> clients) for commercial/semi-commercial/private vpn networks. In the >> past I've used (and still do) Linksys/Cisco BEFVP41 routers on each end. >> >> I'm sure that there are now more modern models that can do this as well, >> but the BEFVP41's (model 2/2.1) have been quite trustworthy. Setup is >> simple, the encryption takes place in the hardware so it's fast and >> doesn't require client software on each side of a direct connect, and >> both sides can be set up to autoconnect & use keepalive to stay up even >> with non-static ip addresses (I use <a href="http://dyndns.org" target="_blank">dyndns.org</a> for my non-commercial dsl >> connections). >> >> >> >> >> -- >> ubuntu-users mailing list >> <a href="mailto:ubuntu-users@lists.ubuntu.com">ubuntu-users@lists.ubuntu.com</a> >> Modify settings or unsubscribe at: >> <a href="https://lists.ubuntu.com/mailman/listinfo/ubuntu-users" target="_blank">https://lists.ubuntu.com/mailman/listinfo/ubuntu-users</a> > > > > -- > ubuntu-users mailing list > <a href="mailto:ubuntu-users@lists.ubuntu.com">ubuntu-users@lists.ubuntu.com</a> > Modify settings or unsubscribe at: > <a href="https://lists.ubuntu.com/mailman/listinfo/ubuntu-users" target="_blank">https://lists.ubuntu.com/mailman/listinfo/ubuntu-users</a> > > </div></div>-- <div><div></div><div class="h5">ubuntu-users mailing list <a href="mailto:ubuntu-users@lists.ubuntu.com">ubuntu-users@lists.ubuntu.com</a> Modify settings or unsubscribe at: <a href="https://lists.ubuntu.com/mailman/listinfo/ubuntu-users" target="_blank">https://lists.ubuntu.com/mailman/listinfo/ubuntu-users</a> </div></div></blockquote></div> -- لا اله الا الله محمد رسول الله </div>