Differences

This shows you the differences between two versions of the page.

--- vpn-server [2024/11/06 03:41] – [Routing Notes] -Condense hogwild
+++ vpn-server [2025/11/19 20:32] (current) – [Problem: Traffic Flowing in only one Direction] hogwild
@@ Line 13: / Line 13: @@
  \\
-However, there are still differences between versions. For example, clients and servers may be configured on different versions. Encryption algorithms may be negotiated differently among versions. FreshTomato 2024.3 includes OpenVPN 2.6.12. For details, see the OpenVPN documentation/support forums: [[https://build.openvpn.net/man/openvpn-2.5/openvpn.8.html]]
+However, there are still differences between versions. For example, clients and servers may be configured on different versions. Encryption algorithms may be negotiated differently among versions. FreshTomato 2025.3 includes OpenVPN 2.6.14. For details, see the OpenVPN support forums: [[https://build.openvpn.net/man/openvpn-2.6/openvpn.8.html]]
  \\
@@ Line 351: / Line 351: @@
   * AES-128-GCM
   * AES-256-GCM
-  * AES-128-CB
+  * AES-128-CBC
   * AES-256-CBC
@@ Line 448: / Line 448: @@
 Here, you can specify a custom configuration for the OpenVPN server to use.
-For details about valid custom parameters, please see: \\  [[https://build.openvpn.net/man/openvpn-2.5/openvpn.8.html]] \\ .
+For details about valid custom parameters, please see: \\  [[https://build.openvpn.net/man/openvpn-2.6/openvpn.8.html]] \\ .
@@ Line 534: / Line 534: @@
 A code commit was entered for Elliptical elliptic curve cryptography on 2024-10-19, and should be included in the next release. If your release doesn't support elliptical curve cryptography, you **must **configure Diffie-Hellman parameters.
-Elliptic curve cryptography is also implemented in releases of OpenVPN since v2.4.
+Elliptic curve cryptography is also implemented in OpenVPN releases v2.4 and later.
  \\
@@ Line 633: / Line 633: @@
-==== Routing all Traffic over the VPN ====
+==== Routing all Traffic through the VPN ====
 You can route all network traffic over the VPN. The configuration for this is fairly simple. However, you'll need to learn how to configure NAT on your VPN server for the virtual TUN adapter.
@@ Line 666: / Line 666: @@
 ==== About IPv6 ====
-OpenVPN v2.3 and later support IPv6. Setting up IPv6 in a VPN is similar to the IPv4 examples above. To configure IPv6, please use the //–server-ipv6// and //–route-ipv6//  options.
+OpenVPN v2.3 and later support IPv6. Configuring IPv6 for a VPN is similar to the above IPv4 examples. To configure IPv6, you must use the \\ //–server-ipv6// and //–route-ipv6//  options.
  \\
@@ Line 682: / Line 682: @@
  \\
-You can use the //–route-ipv6// option in two ways. You can push it from the server, or use it directly in the client configuration. The same is true for the //–route// option. The syntax is similar:
+You can use the //–route-ipv6// option two ways. You can push it from the server, or use it directly in client settings. The same is true for the //–route// option.
+ \\
+The syntax is similar:
  \\
@@ Line 692: / Line 696: @@
  \\
- \\
+===== OpenVPN Server - Notes and Troubleshooting =====
- \\
+==== Problem: Traffic Flowing in only one Direction ====
- \\
+\\
+Sometimes, it may occur that from one end of your setup (“A)”, you can ping devices and both VPN virtual interfaces at the other end (“B”), however, from end B, you cannot ping the remote router or devices or the client VPN virtual interface at end A.
+It this occurs, please check that there are default routes setup from B to A. Also, please check that on the client side, (in this case, end B), the “Inbound firewall” option is disabled. On the server side, make sure to add the client's subnet, so it knows how to route traffic from the server back to the client.
+\\
+ \\
+ \\
+ \\

FreshTomato Wiki

User Tools

Site Tools

Differences

Page Tools