OpenVPN can't ping gateway

GeniuZ · September 11, 2010, 9:15pm

I configured bridged vpn as wiki says, but I can’t ping anywhere only myself. Primary, I can’t ping to bridge gateway (ip address on bridge interface), what can be wrong? Thank you for help.

Some my first configuration experience with OpenVPN may be useful for someone else:
Can’t established connection until upgrade from 4.10 to 4.11 version.
Ignore this line from wiki: /interface bridge port add interface=ovpn-username bridge=vpn-bridge
Interface ovpn-username is created dynamically, connection was reset when used the static interface.

GeniuZ · September 12, 2010, 7:51am

I found port on bridge status is inactive, can this be problem why can’t ping to bridge ip address?
This port is created dynamically and client is connected.

/interface bridge port print
Flags: X - disabled, I - inactive, D - dynamic 
 #    INTERFACE                 BRIDGE                 PRIORITY PATH-COST  HORIZON   
 0 ID <ovpn-jakub>              ovpn-bridge            0x80     10         none

When client is connected:

/ip address print
Flags: X - disabled, I - invalid, D - dynamic 
 #   ADDRESS            NETWORK         BROADCAST       INTERFACE                    
0   192.168.6.1/24     192.168.6.0     192.168.6.255   ether5                       
1   192.168.11.1/26    192.168.11.0    192.168.11.63   ovpn-bridge                  
2 D 192.168.11.1/32    192.168.11.62   0.0.0.0         <ovpn-jakub>                 

/interface print
Flags: D - dynamic, X - disabled, R - running, S - slave 
 #     NAME                       TYPE             MTU   L2MTU
 0     ether5                     ether            1500  1524 
 1  R  ovpn-bridge               bridge           1500  1524 
 2 D   <ovpn-jakub>              ovpn-in          1500 

/interface bridge print
Flags: X - disabled, R - running 
 0  R name="ovpn-bridge" mtu=1500 l2mtu=65535 arp=proxy-arp mac-address=00:0C:42:73:AD:B8 protocol-mode=none 
      priority=0x8000 auto-mac=yes admin-mac=00:00:00:00:00:00 max-message-age=20s forward-delay=15s 
      transmit-hold-count=6 ageing-time=5m 

/interface bridge port print
Flags: X - disabled, I - inactive, D - dynamic 
 #    INTERFACE                          BRIDGE                         PRIORITY PATH-COST  HORIZON   
 0    ether5                             ovpn-bridge                    0x80     10         none      
 1 ID <ovpn-jakub>                       ovpn-bridge                    0x80     10         none      

/ip route print
Flags: X - disabled, A - active, D - dynamic, C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme, 
B - blackhole, U - unreachable, P - prohibit 
 #      DST-ADDRESS        PREF-SRC        GATEWAY            DISTANCE
 0 ADC  192.168.6.0/24     192.168.6.1     ether5             0       
 1 ADC  192.168.11.0/26    192.168.11.1    ovpn-bridge        0       
 2  DC  192.168.11.62/32   192.168.11.1    <ovpn-jakub>       0

Windows client routes

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1     192.168.1.66      2
      192.168.1.0    255.255.255.0         On-link      192.168.1.66    257
     192.168.1.66  255.255.255.255         On-link      192.168.1.66    257
    192.168.1.255  255.255.255.255         On-link      192.168.1.66    257
     192.168.11.0  255.255.255.192         On-link     192.168.11.62    286
    192.168.11.62  255.255.255.255         On-link     192.168.11.62    286
    192.168.11.63  255.255.255.255         On-link     192.168.11.62    286

GeniuZ · September 14, 2010, 6:30pm

Not bridged VPN is functional, so I used it. Becouse version 4.10 is not functional completly, I think there can be any problem with bridged setting in version 4.11.