It is currently 23.08.2017 17:47


All times are UTC




Post new topic Reply to topic  [ 2 posts ] 
Author Message
 Post subject: Routing through vpn
PostPosted: 07.05.2011 16:17 
DES
DES

Joined: 06.05.2011 22:47
Posts: 1
Hi folks,

I couldn't find any solution, and tried pretty much evertyhing.

I have openvpn installed on Debian.
eht0 - internet provider
eth1 - local network (10.10.0.0)
tun0 - VPN (10.0.2.0)

Client - Windows XP
VPN - 10.0.2.10
LAN - 10.0.1.0 network

I can ping client from server and server from client.

After connection with VPN I can ping LAN on client side.

Problem is that I cannot ping client LAN from server.
Code:
 ping 10.0.1.20
PING 10.0.1.20 (10.0.1.20) 56(84) bytes of data.


I have sth like this in my firewall on Debian:
Code:
iptables -t nat -I POSTROUTING -s 10.0.2.0/24 -j MASQUERADE



server.conf:
Code:
port 1296
proto tcp-server
dev tun
.......
server 10.0.2.0 255.255.255.0
ifconfig-pool-persist ipp.txt

keepalive 10 120

comp-lzo

max-clients 50

route 10.0.1.0 255.255.255.0
push "route 10.0.1.0. 255.255.255.0"

client-config-dir ccd

persist-key
persist-tun

status openvpn-status-serv.log
log         openvpn-serv.log
log-append  openvpn-serv.log
verb 1


file ccd/client1:
Code:
ifconfig-push 10.0.2.10 255.255.255.0
push "route 10.0.1.0 255.255.255.0 10.0.2.1"
iroute 10.0.1.0 255.255.255.0


appreciate any help!

regards,
Seba


Top
Offline Profile  
Reply with quote  
 Post subject: Re: Routing through vpn
PostPosted: 08.05.2011 06:45 
Profi
Profi

Joined: 23.10.2007 12:10
Posts: 2185
sebasq wrote:
Hi folks,

I couldn't find any solution, and tried pretty much evertyhing.

I have openvpn installed on Debian.
eht0 - internet provider
eth1 - local network (10.10.0.0)
tun0 - VPN (10.0.2.0)

Client - Windows XP
VPN - 10.0.2.10
LAN - 10.0.1.0 network

I can ping client from server and server from client.

After connection with VPN I can ping LAN on client side.

Problem is that I cannot ping client LAN from server.
[...]
appreciate any help!

regards,
Seba


I does not depend to openVPN :).
openVPN Client is correct...and it seems that your problem is depending to the answers on your ping requests :)

Clients local network (10.0.1.) never will be used for traffic through tunnel [10.0.1. only keeps the tunnel running].

Your local network (10.10.0. ) only must be able to handle clients requests (10.0.2.) - all components , not only the openVPN-server.
I never needed NAT in any of my networks. Usually NAT only neede to translate form local to public addresses (local addresses never will be routed in internet).
my intension is to make a correct routing. you may use a dedicated router (with a correct designed network) or a lot of (local) routing tables.

F.


Top
Offline Profile  
Reply with quote  
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 2 posts ]  Moderator: Moderators

All times are UTC


Who is online

Users browsing this forum: Bing [Bot] and 2 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group
Theme created StylerBB.net