It is currently 22.07.2014 14:52


All times are UTC




Post new topic Reply to topic  [ 5 posts ] 
Author Message
 Post subject: Accessing openvpn client subnet
PostPosted: 16.10.2009 10:16 
DES
DES

Joined: 16.10.2009 09:47
Posts: 3
I have openvpn server installed on a Fedora machine and an openvpn client running on a DD-WRT router. The connection works fine, just that I cannot access the router's subnet from my server, while the server's subnet is completely accessible from the client's subnet.
The vpn client subnet is 192.168.10.0/24 and the vpn client tun address is : 10.8.0.42
The server subnet is 192.168.0.0/24 and the vpn server tun address is :10.8.0.1.
If I ping the computer with 192.168.0.5 address from the computer with the address 192.168.10.2 I get replies for all the packets. If I ping from 192.168.0.5 to 192.168.10.2 I get no reply.
I would like to know how I can solve this problem.


Top
Offline Profile  
 
 Post subject: Re: Accessing openvpn client subnet
PostPosted: 16.10.2009 11:56 
openvpn.eu Admin
openvpn.eu Admin
User avatar

Joined: 23.01.2006 08:05
Posts: 3321
Location: near Vienna
Please post your config files, client-config-dir files if existent and the output of "iptables -t nat -nvL" on both sides (you may mask your real IP addresses).

_________________
regards,
note
Please take a look at our rules. Besucht mal unsere Wiki !


Top
Offline Profile  
 
 Post subject: Re: Accessing openvpn client subnet
PostPosted: 19.10.2009 08:20 
DES
DES

Joined: 16.10.2009 09:47
Posts: 3
Here are the three files. I didn't manage to find any configuration file on the dd-wrt router for openvpn client. I should mention that my server's IP addresses are :
eth0: 83.*.*.*
eth1: 192.168.0.1
eth2: 192.168.200.1
tun0: 10.8.0.1
client's IP addresses:
vlan1: 82.*.*.*
br0: 192.168.10.2
tun0:10.8.0.* -assigned by dhcp from 10.8.0.1


Attachments:
File comment: iptables -t nat -nvL on dd-wrt router
iptables_dd-wrt.txt [1.16 KiB]
Downloaded 47 times
File comment: iptables -t nat -nvL on server
iptables_server.txt [1.7 KiB]
Downloaded 52 times
File comment: openvpn server config file
server.conf [9.27 KiB]
Downloaded 43 times
Top
Offline Profile  
 
 Post subject: Re: Accessing openvpn client subnet
PostPosted: 28.10.2009 20:45 
openvpn.eu Admin
openvpn.eu Admin
User avatar

Joined: 23.01.2006 08:05
Posts: 3321
Location: near Vienna
Have you read this ? http://openvpn.net/index.php/open-sourc ... html#scope

Should guide you through the process (using client-config-dir, adding routes). However, you shouldn't use duplicate-cn in that case.

_________________
regards,
note
Please take a look at our rules. Besucht mal unsere Wiki !


Top
Offline Profile  
 
 Post subject: Re: Accessing openvpn client subnet
PostPosted: 10.11.2009 08:55 
DES
DES

Joined: 16.10.2009 09:47
Posts: 3
Hello again!

I've done the config-client-dir , and I added a route to the client subnet.
It works fine from the server. I can ping the client subnet.
The problem is that I can't ping the client subnet from my server subnet. I get reply only when i ping towards the router's tun ip address.
I know it's a routing problem, but maybe someone can help me.
Here is my server routing table:
10.11.0.2 * 255.255.255.255 UH 0 0 0 tun2
10.10.0.2 * 255.255.255.255 UH 0 0 0 tun1
10.8.0.2 * 255.255.255.255 UH 0 0 0 tun0
192.168.2.0 gw-FO156-01.bis 255.255.255.0 UG 0 0 0 eth0
192.168.1.0 gw-FO156-01.bis 255.255.255.0 UG 0 0 0 eth0
192.168.0.0 * 255.255.255.0 U 0 0 0 eth1
192.168.200.0 * 255.255.255.0 U 0 0 0 eth2
192.168.10.0 10.11.0.2 255.255.255.0 UG 0 0 0 tun2
10.11.0.0 10.11.0.2 255.255.255.0 UG 0 0 0 tun2
192.168.8.0 gw-FO156-01.bis 255.255.255.0 UG 0 0 0 eth0
169.254.0.0 * 255.255.0.0 U 0 0 0 eth2
default gw-FO156-01.bis 0.0.0.0 UG 0 0 0 eth0

My server tun ip is 10.11.0.1 and client's tun ip is 10.11.0.6
My server subnet is 192.168.0.0/24 and my client subnet is 192.168.10.0/24
Any suggestions?


Top
Offline Profile  
 
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 5 posts ]  Moderator: Moderators

All times are UTC


Who is online

Users browsing this forum: No registered users and 2 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group
Theme created StylerBB.net