OpenVPN: allow this incoming source address/port

Linux howto's, compile information, information on whatever we learned on working with linux, MACOs and - of course - Products of the big evil....

OpenVPN: allow this incoming source address/port

Postby peter_b » Wed Mar 01, 2017 1:54 am

[PROBLEM]
Installing OpenVPN server to listen to a different port than the default UDP 1194.
When connecting with a client, I get the following error message:
Code: Select all
TCP/UDP: Incoming packet rejected from [AF_INET]10.0.0.x:1194[2], expected peer address: [AF_INET]83.15.xxx.xxx:20000 (allow this incoming source address/port by removing --remote or adding --float)


[SOLUTION]
The rejected packet contains the internal LAN IP of the OpenVPN server

This seems to be a known issue when connecting over the external IP, but to OpenVPN server which is inside the same LAN as the client.
In my case, I connected from a VirtualBox virtual machine client, so I just switched the VirtualBox network type to "NAT". So the VM client wasn't in the same subnet as the OpenVPN server anymore.

Then I had to add "float" the the ovpn config file (or "--float" to the commandline) and it worked :)
  • 0

User avatar
peter_b
Chatterbox
 
Posts: 307
Joined: Tue Nov 12, 2013 2:05 am
Reputation: 3

Return to Knowledge Base

Who is online

Users browsing this forum: No registered users and 6 guests

Who is online over last 24 hours

Users browsed this forum in the last 24 hours: Bing [Bot] and 33 guests

cron
Reputation System ©'