Hei guys,
I have a Turris Omnia with the latest firmware and I tried to activate the OpenVPN server as a package in FORIS.
My router is behind a Vodafone Compal 3.0 modem in bridge mode.
My motivation was mainly to get OpenVPN up and running, which I have already tested successfully in the meantime.
The VPN is set up correctly, I guarantee it, the modem has a fixed IP address. The firewall was set up automatically. Connecting from an external network to OpenVPN does not work and ends up with a timeout message.
Device Turris Omnia
reForis version 1.4.1
Turris OS version 6.2.3
Turris OS branch HBS
Kernel version 5.15.90
FW Rules:
Chain zone_wan_input (1 References)
56
2.35 KB
ACCEPT udp * * 0.0.0.0/0 0.0.0.0/0 udp dpt:1194 vpn_turris_rule
Chain zone_lan_postrouting (1 References)
0
0 B
SNAT tcp * * 192.168.1.0/24 192.168.1.1 tcp dpt:1194 to:192.168.1.1 OpenVPN (reflection)
0
0 B
SNAT udp * * 192.168.1.0/24 192.168.1.1 udp dpt:1194 to:192.168.1.1 OpenVPN (reflection)
Chain zone_lan_prerouting (1 References)
0
0 B
DNAT tcp * * 192.168.1.0/24 84.242.120.230 tcp dpt:1194 to:192.168.1.1:1194 OpenVPN (reflection)
0
0 B
DNAT udp * * 192.168.1.0/24 84.242.120.230 udp dpt:1194 to:192.168.1.1:1194 OpenVPN (reflection)
Chain zone_wan_prerouting (1 References)
0
0 B
DNAT tcp * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:1194 to:192.168.1.1:1194 OpenVPN
6
252 B
DNAT udp * * 0.0.0.0/0 0.0.0.0/0 udp dpt:1194 to:192.168.1.1:1194 OpenVPN
The VPN topics I’ve gone through here are at least 3 years old. Here at Server poll timeout error in OpenVPN - How to resolve they say that a server poll timeout error means that they can’t establish a connection at a given address and port, which confirms my thesis that the problem is in the rules. So probably the WAN>LAN service routing on 1194 UDP is not working properly.
Is there any way to track which rule stops the request? I don’t see a log anywhere… There is nothing in the Kernel log about port 1194.
Thank you,
Jiri