Last post I made on this topic: OpenVPN/TAP Bridge
My goal is to:
- Run an OSMC front-end with Kodi and Plex add-on on the front end
- Run DuckDNS Dynamic DNS script every 5 mins to monitor current external IP
- Run VPN Server from Pi to allow 1 remote VPN connection (this will be used for CCTV DVR monitoring and remote Pi maintenence)
I have previously achieved these goals (progress in above linked thread) however my Pi crashed a few days ago (thought to be due to a corrupted SD card). I’ve since upgraded to a Pi 3B+ and replaced the SD card but am at square 1 now.
I have managed to complete objectives 1 and 2, I have installed OpenVPN Server on the backend and have established remote connection from a client (testing set-up is a W10 Laptop tethered from my iPhone). The connection between the laptop and Pi is established and I get given a 10.8.0.x address, however:
-
I cannot ping any 192.x.x.x addresses
-
I cannot reach the internet
-
I cannot reach any internally run web services (Radarr, Sonarr, Plex, etc.)
-
I can ping 10.8.0.x addresses, as expected
I believe this points towards a server.conf misconfiguration, but I’m not sure. I’ve tried following a few different guides (along with my previous post instructions) but no joy. Server.conf is as below:
local 192.168.0.26
port 1194
proto udp
dev tun
ca ca.crt
cert server.crt
key server.key
dh dh.pem
#ca /etc/openvpn/ca.crt
#cert /etc/openvpn/openvpnserver.crt
#key /etc/openvpn/server/openvpnserver.key
#dh /etc/openvpn/dh.pem
auth SHA512
tls-crypt tc.key
topology subnet
server 10.8.0.0 255.255.255.0
#server 192.168.0.0 255.255.255.0
#push “redirect-gateway def1 bypass-dhcp”
push “redirect-gateway autolocal def1”
push “route 10.8.0.1 255.255.255.255”
push “route 10.8.0.0 255.255.255.0”
push “route 192.168.0.0. 255.255.255.0”
push “route 192.168.0.0 255.255.255.0 vpn_gateway”
route 192.168.0.0 255.255.255.0
route 172.20.10.0 255.255.255.0
ifconfig-pool-persist ipp.txt
push “dhcp-option DNS 8.8.8.8”
push “dhcp-option DNS 8.8.4.4”
keepalive 10 120
cipher AES-256-CBC
user nobody
group nogroup
persist-key
persist-tun
status openvpn-status.log
verb 3
crl-verify crl.pem
explicit-exit-notify
client-to-client
push “route 192.168.0.0 255.255.255.0”
@fzinken you helped last time, any ideas?
Thanks in advance