Over the local network it connects fine. When I try to connect to an external IP address, depending on the protocol set in the config, I get the following errors: udp: read UDPv4: Connection reset by peer (WSAECONNRESET) (code=10054) tcp: TCP: connect to 92.113.13.48:5000 failed, will try again in 5 seconds Both machines access the internet through an ADSL modem configured as a router. The necessary ports are forwarded (both TCP and UDP) from the modem to the server. The connection attempt is made to the address that is the real (public) IP on the modem (router). NAT on the modem was verified by forwarding port 80 to the same server — that works fine. Here are the configs: (commented-out lines are the result of trial and error — i.e. the options that were tried and left commented out)

Server config (server: FreeBSD 7.0, OpenVPN 2.0.6 i386-portbld-freebsd7.0 [SSL] [LZO] built on Jun 6 2008)

dev tun daemon server 10.5.0.0 255.255.255.0 push “route 192.168.1.0 255.255.255.0” tls-server ca ca.crt cert onyx.crt key onyx.key dh dh1024.pem #proto udp proto tcp-server #port 1194 port 5000 #link-mtu 1000 comp-lzo keepalive 10 120 verb 4 tun-mtu 1300 #fragment 1300 #; 1400 , [ 50 1200. #;ping -f -l 1472 OpenVPN_server #mssfix

Client config (client: WinXP SP2 OpenVPN 2.0.9 Win32-MinGW [SSL] [LZO] built on Oct 1 2006)

dev tun client remote XX.XX.XX.XX 5000 tls-client ca ca.crt cert gefest3.crt key gefest3.key proto tcp-client #proto udp comp-lzo

link-mtu 1000#

verb 4 tun-mtu 1300 #fragment 1400 #;tune the 1400 value on-site, decreasing in steps of 50 down to 1200. #;To verify: ping -f -l 1472 OpenVPN_server #mssfix