I can connect but can't access

Got a problem with Viscosity or need help? Ask here!

miki24p

Posts: 3
Joined: Mon Aug 15, 2016 8:52 pm

Post by miki24p » Mon Aug 15, 2016 9:01 pm
Dear all,

I recently arranged a FREENAS computer. It was my first, so it took me a few weeks to setup everything. My next step was to create a VPN: it wasn't so easy but in the end I could do that. I can access that VPN from everywhere using my iPhone with OpenVPN app (copying inside the app all my files, keys...).
So what I need now is to access my VPN with my mac too. I installed Viscosity and after a few adjustments I could access (typing my VPN password too) but I can't "see" anything of my VPN!! In the "details panel" I have "connected" message, I can see my VPN IP address (even if I access through a Dynamic DNS service) but I have no "client IP address" shown. And there's no any traffic.

In these days I don't have access to another wifi network (I'm at home) I could do my test using the iPhone HotSpot, my mac connected via wifi to my iPhone and then I tested Viscosity. I did like that to really try to connect "from outside".

When I put my files in the iPhone app it started connecting immediately.

Are there some settings I'm missing?

Thank you

Michele

James

User avatar
Posts: 2313
Joined: Thu Sep 04, 2008 9:27 pm

Post by James » Thu Aug 18, 2016 1:55 pm
Hi Michele,

I'd recommend checking the OpenVPN log for any warning or error messages:
http://www.sparklabs.com/support/kb/art ... envpn-log/

Cheers,
James
Web: https://www.sparklabs.com
Support: https://www.sparklabs.com/support
Twitter: https://twitter.com/sparklabs

miki24p

Posts: 3
Joined: Mon Aug 15, 2016 8:52 pm

Post by miki24p » Sat Aug 20, 2016 6:34 pm
HI James,
here's my log:

Aug 20 10:31:30: Viscosity Mac 1.6.4 (1348)
Aug 20 10:31:30: Viscosity OpenVPN Engine Started
Aug 20 10:31:30: Running on Mac OS X 10.11.6
Aug 20 10:31:30: ---------
Aug 20 10:31:30: Controllo la raggiungibilità della connessione…
Aug 20 10:31:30: Connessione raggiungibile, inizio connessione.
Aug 20 10:31:30: OpenVPN 2.3.11 x86_64-apple-darwin [SSL (OpenSSL)] [LZO] [PKCS11] [MH] [IPv6] built on May 10 2016
Aug 20 10:31:30: library versions: OpenSSL 1.0.2h 3 May 2016, LZO 2.09
Aug 20 10:31:41: WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Aug 20 10:31:41: Control Channel Authentication: using '/var/folders/zz/zyxvpxvq6csfxvn_n0000000000000/T/connection.iuWRhD/ta.key' as a OpenVPN static key file
Aug 20 10:31:41: Opened utun device utun0
Aug 20 10:31:41: NOTE: unable to redirect default gateway -- VPN gateway parameter (--route-gateway or --ifconfig) is missing
Aug 20 10:31:41: UDPv4 link local: [undef]
Aug 20 10:31:41: UDPv4 link remote: [AF_INET]xx.xx.xxx.xxx:xxxx
Aug 20 10:31:41: [OpenVPN-ACC] Peer Connection Initiated with [AF_INET]xx.xx.xxx.xxx:xxxx
Aug 20 10:31:42: Initialization Sequence Completed
Aug 20 10:31:42: DNS mode set to: Full

Any idea?

thank you

James

User avatar
Posts: 2313
Joined: Thu Sep 04, 2008 9:27 pm

Post by James » Wed Aug 24, 2016 3:13 pm
Hi Michele,

The following log line indicates the problem:
Code: Select all
Aug 20 10:31:41: NOTE: unable to redirect default gateway -- VPN gateway parameter (--route-gateway or --ifconfig) is missing
Basically it means that the OpenVPN server is not pushing out the gateway address to use for routes. You'll need to configure the server to push this out (using the "route-gateway" command), and you'll probably want this to be the internal IP address of your OpenVPN server.

Cheers,
James
Web: https://www.sparklabs.com
Support: https://www.sparklabs.com/support
Twitter: https://twitter.com/sparklabs

miki24p

Posts: 3
Joined: Mon Aug 15, 2016 8:52 pm

Post by miki24p » Wed Aug 24, 2016 6:04 pm
Hi James,
thanks for you kind reply. So, I took a look at my OpenVPN settings (on my FREENAS machine). It seems here's the point:

# redirect local traffic to the remote OpenVPN server Also set
# DNS server if redirect-gateway option is set.
# redirect-gateway def1
# dhcp-option DNS 8.8.8.8


As you can see those lines are disabled. Do I have to enable them?
Thank you

Michele
5 posts Page 1 of 1