Linux - NetworkingThis forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Hi all,
first of the ips here are not real so please dont flame me for using a broadcast address or something its just for examples
hope you gurus can help
i have a vpn to my work network (work lan 10.0.0.1)
when i connect using my vpnc-connect work.conf i can ping everything on my work lan.
@ work we have vpns from our router to other peoples networks.
i e if i want to ping another network @ work 192.168.1.0/24 it works
so the static routes at work are fine.
the problem is that i tunnell in and i get a 10.0.0.1 address i can not for instance ping 192.168.1.2 range that i can at work so i tried a few route adds
so this one i tried to add a route. destination network 192.168.1.0/24 gw 10.0.0.1 (this is the gateway at work say) dev tun0
my machine took the route but im still unable to ping the 192 address.
tried the above route again but with my tun0 address as the gw still no joy.....
Do you have linux firewall (iptables) enabled on your machine at home? If so try turning it off temporarily and see if you can ping the work network. I recently solved a brain-numbing issue in my VPN that sounds like it could be similar to what you are experiencing. I kept debugging routing when in reality it was a firewall issue.
no i have no firewall running.... not that i know of this machine is hanging off a router/firewall
i can ping my work address's fine (10.1.1.0/24)but i cant seem to get out of my works network.
i mean we have customers on another range (192.168.1.0/24) which i can reach fine at work just not from home.
to ping those networks i have to ssh to a machine/router at work through my vpn and then i can ping them from the machine @work.
i wonder if i need to add a route to our router at work to redirect the traffic back to my ip
This is what I gathered from your posts. If it is correct, then there needs to be some kind of route between the 192.168.1.0/24 and your 10.0.0.1 machine. Depending on what the customer sites are doing (are they under your control?) you might need to have some kind of NAT enabled so that packets returning to 10.0.0.1 get sent through their appropriate tunnels to your work. Their VPNs will know about the 10.1.1.0/24 network, but not your 10.0.0.0/24 (assumed) network you have connected to at work.
Do the customers connect through a VPN mechanism as well? If so, you could set your work router to connect them to a 10.1.0.0/22 network so that their routes to both the work lan and the VPN zone are established automatically. However, that may not be exactly what you want either.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
