Tunnelblick and VPN bridge? <help still needed>

Post new topic   Reply to topic    DD-WRT Forum Index -> Broadcom SoC based Hardware
Goto page Previous  1, 2
View previous topic :: View next topic  
Author Message
JN
DD-WRT Guru


Joined: 29 Mar 2007
Posts: 771
PostPosted: Fri Dec 05, 2008 2:14    Post subject: Reply with quote
bump - any tunnelblick users out there?
Back to top View user's profile Send private message
Sponsor
felipeds
DD-WRT Novice


Joined: 29 Mar 2008
Posts: 23
PostPosted: Fri Dec 05, 2008 3:54    Post subject: Reply with quote
JN I don't think the issue will be resolved with Tunnelblick. Try ViscosityVPN. I'm getting the same problem that super_kev is getting. Hopefully he can figure this out Smile because I'm stumped.
Back to top View user's profile Send private message
super_kev
DD-WRT Novice


Joined: 07 Dec 2007
Posts: 33
PostPosted: Sun Dec 07, 2008 15:50    Post subject: Reply with quote
I missed a character ("b") in the startup command when I copied my configuration to the above post. Still no working solution yet.
Code:

brctl addif br0 tap0 
ifconfig tap0 0.0.0.0 promisc up
Back to top View user's profile Send private message
felipeds
DD-WRT Novice


Joined: 29 Mar 2008
Posts: 23
PostPosted: Sun Jan 18, 2009 17:13    Post subject: Reply with quote
Any updates?
Back to top View user's profile Send private message
JN
DD-WRT Guru


Joined: 29 Mar 2007
Posts: 771
PostPosted: Wed Jan 21, 2009 1:25    Post subject: Reply with quote
felipeds wrote:
Any updates?
Never got it to work. Since I posted this, I switched from bridged site-to-site VPN to routed site-to-site VPN per the tutorials on the wiki.
Back to top View user's profile Send private message
BBX
DD-WRT Novice


Joined: 06 Sep 2009
Posts: 12
PostPosted: Fri Jan 08, 2010 22:29    Post subject: Reply with quote
Mine works with tunnelblick as well but it took me quite a while.

----------------
DD-WRT Startup Script
----------------
Code:

openvpn --mktun --dev tap0
brctl addif br0 tap0
ifconfig tap0 0.0.0.0 promise up
echo "
-----BEGIN OpenVPN Static key V1-----

*OBVIOUSLY SECRET*

-----END OpenVPN Static key V1-----
" > /tmp/static.key
ln -s /usr/sbin/openvpn /tmp/myvpn
/tmp/myvpn --dev tap0 --secret /tmp/static.key --port 21 --proto udp --push "dhcp-option DNS 10.0.0.1" --verb 5 --daemon


----------------
TunnelBlick openvpn.conf
----------------
Code:

remote wayawesomehostname.meh 96
port 96
dev tap0
secret static.key
proto udp
route-gateway 10.0.0.1
redirect-gateway def1
verb 4



Hope it helps...

The only thing I have yet to figure out is how to get my DNS to forward properly.
I can connect but it seems that I then have to manually go in and mess with my DNS settings.
I'd prefer if this just went automatically with connect and disconnect.
Haven't put much time in that though :)

Cheers!
_________________
Linksys WRT610N-EU V1 @ 15453M NEWD-2 K2.6 Eko
Linksys WRT610N-EU V2 @ 15508M NEWD-2 K2.6 Eko
Back to top View user's profile Send private message
smp
DD-WRT Novice


Joined: 07 Jun 2006
Posts: 28
PostPosted: Sat Jan 09, 2010 1:21    Post subject: OpenVPN - Tunnelblick - Working Reply with quote
I do have it working here....

ROUTER: LAN on 192.168.4.X

OpenVPN Daemon Section under Services....
Code:

Start OpenVPN:  Enable
Start Type:   Wan Up
Public Server Cert:  my_server_cert_here
Public Client Cert: my_client_cert_here
Private Client Key: my_client_key_here
DH PEM: My_dh_PEM_here


OpenVPN Config:
Code:

 script-security 3 system
 management localhost 5001
 server-bridge 192.168.4.1 255.255.255.0 192.168.4.20 192.168.4.29
 dev tap0
 proto udp
 keepalive 15 60
 comp-lzo
 client-to-client
 duplicate-cn
 tmp-dir /tmp/openvpn
 ca /tmp/openvpn/ca.crt
 dh /tmp/openvpn/dh.pem
 cert /tmp/openvpn/cert.pem
 key /tmp/openvpn/key.pem


Startup Script:
Code:

 sleep 30
 sed -i -e 's/mppe .*/mppe required,stateless/' /tmp/pptpd/options.pptpd
 openvpn --mktun --dev tap0
 brctl addif br0 tap0
 ifconfig tap0 0.0.0.0 promisc up
 openvpn --mktun --dev tap0


(Hmmmm... Not sure why I have openvpn --mktun twice, but it's working :)

Firewall Script:
Code:

 iptables -I INPUT 1 -p tcp --dport 1194 -j ACCEPT
 iptables -I INPUT 1 -p udp --dport 1194 -j ACCEPT
 iptables -I FORWARD -i br0 -o tap0 -j ACCEPT
 iptables -I FORWARD -i tap0 -o br0 -j ACCEPT



Tunnelblick Config:
Code:

 client
 dev tap
 proto udp
 remote my.public.ip.addr 1194
 nobind
 mute-replay-warnings
 ca   ddwrt_CA.crt
 cert ddwrt.crt
 key  ddwrt.key
 cipher BF-CBC
 comp-lzo
 pull
 verb 0


It works as it should, I can see all hosts on my network when connected, even Apple's Bonjour advertised services work over this connection.
Back to top View user's profile Send private message
Goto page Previous  1, 2 Display posts from previous:    Page 2 of 2
Post new topic   Reply to topic    DD-WRT Forum Index -> Broadcom SoC based Hardware All times are GMT

Navigation

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum