Port forwarding not working for OpenVPN clients

Use this forum to post questions relating to WinGate, feature requests, technical or configuration problems

Moderator: Qbik Staff

Port forwarding not working for OpenVPN clients

Postby DmFil » Dec 01 20 12:49 am

Hello
I have.
Windows 10 (windows firewall is disabled)
WinGate 9
OpenVPN 2.4.9 x86_64
Two incoming external Internet connections with static IP addresses and their own gateways. let's call them adapter1 and adapter2
Port 1194 forwarding is enabled with extended networking for UDP and TCP protocols.
OpenVPN clients successfully connect to the internal network through adapter1 and receive a "TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)" error if they try to connect through adapter2.
What could be the problem with WinGate settings?
DmFil
 
Posts: 3
Joined: Oct 02 20 8:39 pm

Re: Port forwarding not working for OpenVPN clients

Postby adrien » Dec 08 20 2:33 pm

the normal reason for incoming connections to fail over an incoming connection with multiple interfaces is routing. The connection would work on the interface with the default gateway that has priority (lower metric).

So the incoming SYN packet comes in, and the SYN ACK goes out the other interface. When these gateways are doing NAT, this means the response packet to the initiating host has the wrong source address, so is rejected and the connection times out from the client end.

The windows router does not consider source IP address when making outbound routing decisions, so for example if you bind a connection to interface B, which has lower priority than interface A, the packet will still go out interface A with interface B's source address.

Routing and Remote Access service may allow you to have more control over this, I haven't researched it sorry.
adrien
Qbik Staff
 
Posts: 5441
Joined: Sep 03 03 2:54 pm
Location: Auckland


Return to WinGate

Who is online

Users browsing this forum: No registered users and 27 guests

cron