Menu
What's new
By:
Filters Better Search

Windows 10 issue with OpenVPN server

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

Fitz Mutch

Fitz Mutch

Senior Member
My Windows 10 laptop connects to the VPN, but it cannot access the remote network. When I change the LAN metric to 100 for the push route, it works! Router is RT-AC68U running Asuswrt-Merlin 380.68_4. Here's my fix:

/jffs/scripts/openvpnserver1.postconf
Code: 
#!/bin/sh

push_lan_metric=100
/bin/sed -r -i 's/(^push .* vpn_gateway ).*(")/\1'${push_lan_metric}'\2/' "$1"
 
Last edited:
Odd. Never had this issue and I have been using the VPN from two Win10 machines a lot lately.
 
unsynaps said:
Odd. Never had this issue and I have been using the VPN from two Win10 machines a lot lately.
Click to expand...
It's only an issue when the private LAN address range (i.e. 192.168.1.0/24) is the same for both local and remote networks.
 
Fitz Mutch said:
It's only an issue when the private LAN address range (i.e. 192.168.1.0/24) is the same for both local and remote networks.
Click to expand...

Out of interest, then, what would happen, say, when not only the address range matches but the IP address does, too, eg you attempt to contact a remote device at 192.168.1.5, and there is also a device on the local network with IP address 192.168.1.5?

(Like me, I expect most people choose their home address range such that it is unlikely ever to clash with that of any remote network they might log onto and from which they intend to connect to their remote, home VPN server.)
 
Last edited:
martinr said:
Out of interest, then, what would happen, say, when not only the address range matches but the IP address does, too, eg you attempt to contact a remote device at 192.168.1.5, and there is also a device on the local network with IP address 192.168.1.5?
Click to expand...
Have a look at your IPv4 Route Table in Windows. Type 'route print'.

When my Windows laptop is connected to the router VPN, I think Windows assumes there is two different routes to the same destination network 192.168.1.0/24. So it uses the LAN metric to decide which route to take having the least cost.

If my push route for OpenVPN server is:
Code: 
push "route 192.168.1.0 255.255.255.0 vpn_gateway 500"

Then my IPv4 Route Table in Windows has these lines:
Code: 
Network Destination        Netmask          Gateway       Interface  Metric  
192.168.1.0                255.255.255.0    On-link   192.168.1.185     266  
192.168.1.0                255.255.255.0    On-link        10.8.0.2     500
This confuse Windows and prevent me from accessing the remote network.

My tweak fix the problem:
Code: 
Network Destination        Netmask          Gateway       Interface  Metric  
192.168.1.0                255.255.255.0    On-link        10.8.0.2     100  
192.168.1.0                255.255.255.0    On-link   192.168.1.185     266


martinr said:
Like me, I expect most people choose their home address range such that it is unlikely ever to clash with that of any remote network they might log onto and from which they intend to connect to their remote, home VPN server.
Click to expand...
Yes, that's how to avoid this issue.
 
Last edited:
Fitz Mutch said:
Have a look at your IPv4 Route Table in Windows. Type 'route print'.

When my Windows laptop is connected to the router VPN, I think Windows assumes there is two different routes to the same destination network 192.168.1.0/24. So it uses the LAN metric to decide which route to take having the least cost.

If my push route for OpenVPN server is:
Code: 
push "route 192.168.1.0 255.255.255.0 vpn_gateway 500"

Then my IPv4 Route Table in Windows has these lines:
Code: 
Network Destination        Netmask          Gateway       Interface  Metric
192.168.1.0                255.255.255.0    On-link   192.168.1.185     266
192.168.1.0                255.255.255.0    On-link        10.8.0.2     500
This confuse Windows and prevent me from accessing the remote network.

My tweak fix the problem:
Code: 
Network Destination        Netmask          Gateway       Interface  Metric
192.168.1.0                255.255.255.0    On-link        10.8.0.2     100
192.168.1.0                255.255.255.0    On-link   192.168.1.185     266



Yes, that's how to avoid this issue.
Click to expand...

Many thanks for the explanation, Fitz.
 
You must log in or register to reply here.

Similar threads

M
IPv6 and Router Advertisement adding route to delegated /56 via WAN interface
Replies
0
Views
204
MrC99
M
I
arping script to fix WAN drops
Replies
10
Views
362
illogos
I
M
Solved USB mount shows for Mac/Linux but not Windows 10 (RT-AC68U_386.12_4)
Replies
1
Views
427
L&LD
L&LD
F
ASUS RT-AC86U (merlin Current Version : 386.12_6): jffs2: Argh. No free space left for GC. Can you help me troubleshoot this please?
Replies
6
Views
349
fun4stuff
F
Wishmaster1965
Solved OpenVPN Server Issue
Replies
5
Views
675
Wishmaster1965
Wishmaster1965
Similar threads
Thread starter Title Forum Replies Date
P dnsmasq custom domain doesn't work on windows 10 Asuswrt-Merlin 1
M speed limit on windows only Asuswrt-Merlin 4
D Solved Windows doesn't resolve Android device hostnames? Asuswrt-Merlin 11
alan6854321 Saved settings and jffs get blocked by Chrome & Windows security Asuswrt-Merlin 13
D Solved Windows 11 updates won't download attempted disabling router settings. Asuswrt-Merlin 18
M Solved USB mount shows for Mac/Linux but not Windows 10 (RT-AC68U_386.12_4) Asuswrt-Merlin 1
Y Unable to mount Windows 11 share Asuswrt-Merlin 1
P All of a sudden DHCP denied messages in Windows logs Asuswrt-Merlin 5
Dathuil dnsmasq hostname doesn't resolve on OSX/IPad but resolves on Windows/Android Asuswrt-Merlin 10
spacemanspiff Getting a lot of Abnormal Login HTTP locks - Chrome issue? Asuswrt-Merlin 0

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 898 (members: 19, guests: 879)
Top