Can't connect to HDA with VPN :(
Posted: Sat Apr 02, 2011 12:20 am
Hi folks
I've posted previously in the beginners section http://forums.amahi.org/viewtopic.php?f=16&t=2737, but i guess this is the right place.
Basically, I have installed Amahi 6 on Fedora 14.
My control panel shows "VPN Connection System-active Active!"
And when I log in to HDAConnect3 the letter "A" turns green.
I have have opened port 1194 as udp for the server 192.168.1.10 as well as a few other ones (22, 80, 443)
But I'm get frustrated at still not being able to access \\hda away from home.
I had tried disabling my router's firewall for a bit but that didn't make any difference
here's an extract of the HDAlog from my attempt this morning:
Sat Apr 02 07:18:39 2011 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Sat Apr 02 07:18:39 2011 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Sat Apr 02 07:18:39 2011 Re-using SSL/TLS context
Sat Apr 02 07:18:39 2011 LZO compression initialized
Sat Apr 02 07:18:39 2011 Control Channel MTU parms [ L:1542 D:138 EF:38 EB:0 ET:0 EL:0 ]
Sat Apr 02 07:18:47 2011 RESOLVE: Cannot resolve host address: danja.yourhda.com: [NO_DATA] The requested name is valid but does not have an IP address.
Sat Apr 02 07:18:47 2011 Data Channel MTU parms [ L:1542 D:1450 EF:42 EB:135 ET:0 EL:0 AF:3/1 ]
Sat Apr 02 07:18:47 2011 Local Options hash (VER=V4): '41690919'
Sat Apr 02 07:18:47 2011 Expected Remote Options hash (VER=V4): '530fdded'
Sat Apr 02 07:18:47 2011 RESOLVE: Cannot resolve host address: danja.yourhda.com: [NO_DATA] The requested name is valid but does not have an IP address.
Sat Apr 02 07:18:52 2011 RESOLVE: Cannot resolve host address: danja.yourhda.com: [NO_DATA] The requested name is valid but does not have an IP address.
Sat Apr 02 07:18:57 2011 RESOLVE: Cannot resolve host address: danja.yourhda.com: [NO_DATA] The requested name is valid but does not have an IP address.
Sat Apr 02 07:19:02 2011 Socket Buffers: R=[8192->8192] S=[64512->64512]
Sat Apr 02 07:19:02 2011 UDPv4 link local: [undef]
Sat Apr 02 07:19:02 2011 UDPv4 link remote: 81.145.104.217:1194
Sat Apr 02 07:19:02 2011 TLS: Initial packet from 81.145.104.217:1194, sid=4679f56f cfc5108e
Sat Apr 02 07:19:02 2011 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Sat Apr 02 07:19:02 2011 VERIFY OK: depth=1, /C=US/ST=CA/L=SanJose/O=HomeHDA/OU=VPN/CN=yourhda.com/emailAddress=info@homehda.com
Sat Apr 02 07:19:02 2011 VERIFY OK: depth=0, /C=US/ST=CA/L=SanJose/O=HomeHDA/OU=VPN/CN=server/emailAddress=info@homehda.com
Sat Apr 02 07:19:03 2011 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
Sat Apr 02 07:19:03 2011 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Sat Apr 02 07:19:03 2011 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
Sat Apr 02 07:19:03 2011 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Sat Apr 02 07:19:03 2011 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
Sat Apr 02 07:19:03 2011 [server] Peer Connection Initiated with 81.145.104.217:1194
Sat Apr 02 07:19:04 2011 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
Sat Apr 02 07:19:04 2011 PUSH: Received control message: 'PUSH_REPLY,route 192.168.1.0 255.255.255.0,dhcp-option DNS 192.168.1.10,dhcp-option DOMAIN danja.com,route 10.8.0.1,topology net30,ping 10,ping-restart 220,ifconfig 10.8.0.6 10.8.0.5'
Sat Apr 02 07:19:04 2011 OPTIONS IMPORT: timers and/or timeouts modified
Sat Apr 02 07:19:04 2011 OPTIONS IMPORT: --ifconfig/up options modified
Sat Apr 02 07:19:04 2011 OPTIONS IMPORT: route options modified
Sat Apr 02 07:19:04 2011 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Sat Apr 02 07:19:04 2011 ROUTE default_gateway=192.168.1.254
Sat Apr 02 07:19:04 2011 TAP-WIN32 device [Local Area Connection 4] opened: \\.\Global\{74FE8CD0-7779-48D1-96B0-E03D06071DFD}.tap
Sat Apr 02 07:19:04 2011 TAP-Win32 Driver Version 9.4
Sat Apr 02 07:19:04 2011 TAP-Win32 MTU=1500
Sat Apr 02 07:19:04 2011 Notified TAP-Win32 driver to set a DHCP IP/netmask of 10.8.0.6/255.255.255.252 on interface {74FE8CD0-7779-48D1-96B0-E03D06071DFD} [DHCP-serv: 10.8.0.5, lease-time: 31536000]
Sat Apr 02 07:19:04 2011 Successful ARP Flush on interface [15] {74FE8CD0-7779-48D1-96B0-E03D06071DFD}
Sat Apr 02 07:19:07 2011 TEST ROUTES: 2/2 succeeded len=2 ret=1 a=0 u/d=up
Sat Apr 02 07:19:07 2011 WARNING: potential route subnet conflict between local LAN [192.168.1.0/255.255.255.0] and remote VPN [192.168.1.0/255.255.255.0]
Sat Apr 02 07:19:07 2011 C:\WINDOWS\system32\route.exe ADD 192.168.1.0 MASK 255.255.255.0 10.8.0.5
Sat Apr 02 07:19:07 2011 C:\WINDOWS\system32\route.exe ADD 10.8.0.1 MASK 255.255.255.255 10.8.0.5
Sat Apr 02 07:19:07 2011 Initialization Sequence Completed
I have to admit I am a linux noob, but i think I've followed the guides and trouble shooting.
Any help is really appreciated.
thanks!
I've posted previously in the beginners section http://forums.amahi.org/viewtopic.php?f=16&t=2737, but i guess this is the right place.
Basically, I have installed Amahi 6 on Fedora 14.
My control panel shows "VPN Connection System-active Active!"
And when I log in to HDAConnect3 the letter "A" turns green.
I have have opened port 1194 as udp for the server 192.168.1.10 as well as a few other ones (22, 80, 443)
But I'm get frustrated at still not being able to access \\hda away from home.
I had tried disabling my router's firewall for a bit but that didn't make any difference
here's an extract of the HDAlog from my attempt this morning:
Sat Apr 02 07:18:39 2011 WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
Sat Apr 02 07:18:39 2011 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Sat Apr 02 07:18:39 2011 Re-using SSL/TLS context
Sat Apr 02 07:18:39 2011 LZO compression initialized
Sat Apr 02 07:18:39 2011 Control Channel MTU parms [ L:1542 D:138 EF:38 EB:0 ET:0 EL:0 ]
Sat Apr 02 07:18:47 2011 RESOLVE: Cannot resolve host address: danja.yourhda.com: [NO_DATA] The requested name is valid but does not have an IP address.
Sat Apr 02 07:18:47 2011 Data Channel MTU parms [ L:1542 D:1450 EF:42 EB:135 ET:0 EL:0 AF:3/1 ]
Sat Apr 02 07:18:47 2011 Local Options hash (VER=V4): '41690919'
Sat Apr 02 07:18:47 2011 Expected Remote Options hash (VER=V4): '530fdded'
Sat Apr 02 07:18:47 2011 RESOLVE: Cannot resolve host address: danja.yourhda.com: [NO_DATA] The requested name is valid but does not have an IP address.
Sat Apr 02 07:18:52 2011 RESOLVE: Cannot resolve host address: danja.yourhda.com: [NO_DATA] The requested name is valid but does not have an IP address.
Sat Apr 02 07:18:57 2011 RESOLVE: Cannot resolve host address: danja.yourhda.com: [NO_DATA] The requested name is valid but does not have an IP address.
Sat Apr 02 07:19:02 2011 Socket Buffers: R=[8192->8192] S=[64512->64512]
Sat Apr 02 07:19:02 2011 UDPv4 link local: [undef]
Sat Apr 02 07:19:02 2011 UDPv4 link remote: 81.145.104.217:1194
Sat Apr 02 07:19:02 2011 TLS: Initial packet from 81.145.104.217:1194, sid=4679f56f cfc5108e
Sat Apr 02 07:19:02 2011 WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Sat Apr 02 07:19:02 2011 VERIFY OK: depth=1, /C=US/ST=CA/L=SanJose/O=HomeHDA/OU=VPN/CN=yourhda.com/emailAddress=info@homehda.com
Sat Apr 02 07:19:02 2011 VERIFY OK: depth=0, /C=US/ST=CA/L=SanJose/O=HomeHDA/OU=VPN/CN=server/emailAddress=info@homehda.com
Sat Apr 02 07:19:03 2011 Data Channel Encrypt: Cipher 'BF-CBC' initialized with 128 bit key
Sat Apr 02 07:19:03 2011 Data Channel Encrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Sat Apr 02 07:19:03 2011 Data Channel Decrypt: Cipher 'BF-CBC' initialized with 128 bit key
Sat Apr 02 07:19:03 2011 Data Channel Decrypt: Using 160 bit message hash 'SHA1' for HMAC authentication
Sat Apr 02 07:19:03 2011 Control Channel: TLSv1, cipher TLSv1/SSLv3 DHE-RSA-AES256-SHA, 1024 bit RSA
Sat Apr 02 07:19:03 2011 [server] Peer Connection Initiated with 81.145.104.217:1194
Sat Apr 02 07:19:04 2011 SENT CONTROL [server]: 'PUSH_REQUEST' (status=1)
Sat Apr 02 07:19:04 2011 PUSH: Received control message: 'PUSH_REPLY,route 192.168.1.0 255.255.255.0,dhcp-option DNS 192.168.1.10,dhcp-option DOMAIN danja.com,route 10.8.0.1,topology net30,ping 10,ping-restart 220,ifconfig 10.8.0.6 10.8.0.5'
Sat Apr 02 07:19:04 2011 OPTIONS IMPORT: timers and/or timeouts modified
Sat Apr 02 07:19:04 2011 OPTIONS IMPORT: --ifconfig/up options modified
Sat Apr 02 07:19:04 2011 OPTIONS IMPORT: route options modified
Sat Apr 02 07:19:04 2011 OPTIONS IMPORT: --ip-win32 and/or --dhcp-option options modified
Sat Apr 02 07:19:04 2011 ROUTE default_gateway=192.168.1.254
Sat Apr 02 07:19:04 2011 TAP-WIN32 device [Local Area Connection 4] opened: \\.\Global\{74FE8CD0-7779-48D1-96B0-E03D06071DFD}.tap
Sat Apr 02 07:19:04 2011 TAP-Win32 Driver Version 9.4
Sat Apr 02 07:19:04 2011 TAP-Win32 MTU=1500
Sat Apr 02 07:19:04 2011 Notified TAP-Win32 driver to set a DHCP IP/netmask of 10.8.0.6/255.255.255.252 on interface {74FE8CD0-7779-48D1-96B0-E03D06071DFD} [DHCP-serv: 10.8.0.5, lease-time: 31536000]
Sat Apr 02 07:19:04 2011 Successful ARP Flush on interface [15] {74FE8CD0-7779-48D1-96B0-E03D06071DFD}
Sat Apr 02 07:19:07 2011 TEST ROUTES: 2/2 succeeded len=2 ret=1 a=0 u/d=up
Sat Apr 02 07:19:07 2011 WARNING: potential route subnet conflict between local LAN [192.168.1.0/255.255.255.0] and remote VPN [192.168.1.0/255.255.255.0]
Sat Apr 02 07:19:07 2011 C:\WINDOWS\system32\route.exe ADD 192.168.1.0 MASK 255.255.255.0 10.8.0.5
Sat Apr 02 07:19:07 2011 C:\WINDOWS\system32\route.exe ADD 10.8.0.1 MASK 255.255.255.255 10.8.0.5
Sat Apr 02 07:19:07 2011 Initialization Sequence Completed
I have to admit I am a linux noob, but i think I've followed the guides and trouble shooting.
Any help is really appreciated.
thanks!
