openvpn/dns issues on ubuntu 14.04

Henk te Sligte htesligte at gmail.com
Tue Apr 7 11:20:10 UTC 2015 

Just yesterday I configured a debian openvpn server and ubuntu clients. On
the server, you need to have IP forwarding enabled, and iptables should
forward all traffic.

First, enable IP forwarding:
sudo sysctl -w net.ipv4.ip_forward=1
sudo /etc/init.d/procps restart

Then, let iptables forward all traffic:
iptables -t nat -I POSTROUTING -o eth0 -j MASQUERADE
iptables -A FORWARD -i tun0 -o tun0 -j ACCEPT # vpn to vpn
iptables -A FORWARD -i tun0 -o eth0 -j ACCEPT # vpn to ethernet
iptables -A FORWARD -i eth0 -o tun0 -j ACCEPT # ethernet to vpn

Note that this doesn't filter any traffic, it just makes sure that you can
communicate with the ethernet. If you want to block certain traffic and
allow other traffic, I suggest to read some more about iptables.



On Tue, Apr 7, 2015 at 11:14 AM, Paolo De Michele <paolo at paolodemichele.it>
wrote:

> anyone can help me?
> thanks in advance
>
> regards
>
> On 3 April 2015 at 12:25, Paolo De Michele <paolo at paolodemichele.it>
> wrote:
>
>> hi there,
>>
>> this is my scenario:
>>
>> - 1 server (I installed openvpn and bind via docker in 2 different
>> instances)
>> - 3 clients (first one with lubuntu 14.04 x64 and the last two clients
>> with ubuntu 14.04 x64)
>>
>> the vpn server works correctly
>> if I connect to the server with vpn client installed lubuntu I have no
>> problem.
>> if I try ubuntu by clients, same problems.
>>
>> let me explain:
>>
>> the connection to the vpn server works correctly
>> I have an additional interface called tun0 with a regular ip address
>> I have also the new dns servers: the first one private (my dns server)
>> and the other two (publics)
>>
>> if I try to solve an hostname by dig command, works perfectly
>> if I try to view the same hostname via browser I cannot be able to
>> visualize the webpage
>> If I try the ip address, works perfectly
>>
>> can I do other tests?
>> anyone can help me please?
>>
>> thanks in advance
>> regards
>>
>
>
> --
> ubuntu-users mailing list
> ubuntu-users at lists.ubuntu.com
> Modify settings or unsubscribe at:
> https://lists.ubuntu.com/mailman/listinfo/ubuntu-users
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.ubuntu.com/archives/ubuntu-users/attachments/20150407/046fc02e/attachment.html>

More information about the ubuntu-users mailing list