LinuxQuestions.org
Support LQ: Use code LQ3 and save $3 on Domain Registration
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices



Reply
 
Search this Thread
Old 11-26-2007, 02:09 PM   #1
chabam
LQ Newbie
 
Registered: Mar 2007
Posts: 7

Rep: Reputation: 0
OpenVPN - Can't ping private network


Hello, I have a debian server setup with Openvpn. I can connect and ping the vpn server but I can't connect to the workstations in the private network.

Code:
Private Network - 10.82.81.0/24
OpenVPN Server and Clients - 10.82.82.0/24
OpenVPN server.conf
Code:
dev tun
mode server
port 1194
proto udp
ca ca.crt
cert server.crt
key server.key
dh dh1024.pem
persist-key
persist-tun
comp-lzo
keepalive 10 120
verb 6
management localhost 7505
ifconfig 10.82.82.1 10.82.82.2
ifconfig-pool 10.82.82.5 10.82.82.100
route-up "route delete -net 10.82.82.0/24"
route-up "route add -net 10.82.82.0/24 tun0"
push "route 10.82.81.0 255.255.255.0"
push "dhcp-option DNS 10.82.81.2"
push "route 10.82.82.1"
tls-server
OpenVPN client.conf
Code:
client
dev tun
proto udp
remove myserver.dyndns.org 1194
resolv-retry infinite
nobind
persist-key
persist-tun
comp-lzo
##########################
# key stuff goes in here #
##########################
Using tcpdump I can see that the packages are reaching the VPN server but it seems as they are not being forwarded.

Iptables -vL
Code:
Chain FORWARD (policy ACCEPT 42 packets, 2485 bytes)
 pkts bytes target     prot opt in     out     source               destination
  241 15697 LOG        all  --  tun0   any     anywhere             anywhere            state NEW LOG level warning prefix `Tunnel_into_intranet'
  237 15457 ACCEPT     all  --  tun0   any     10.82.82.0/24        anywhere
    0     0 ACCEPT     all  --  any    tun0    10.82.81.0/24        anywhere
Pls help me
 
Old 11-26-2007, 02:49 PM   #2
chabam
LQ Newbie
 
Registered: Mar 2007
Posts: 7

Original Poster
Rep: Reputation: 0
It seems the ping packages are reaching the destination host but the answer is not being delivered, so I should create a route from my private lan to the vpn server? How can I do that?

Output of route command
Code:
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
10.82.82.2      *               255.255.255.255 UH    0      0        0 tun0
10.82.82.0      *               255.255.255.0   U     0      0        0 tun0
10.82.81.0      *               255.255.255.0   U     0      0        0 eth0
default         10.82.81.1      0.0.0.0         UG    0      0        0 eth0
 
Old 11-27-2007, 08:35 AM   #3
chabam
LQ Newbie
 
Registered: Mar 2007
Posts: 7

Original Poster
Rep: Reputation: 0
Solved, I didn't create a route from my default lan gateway to the VPN tunnel, duhhh

Thanks anyways for your moral support (??) just kidding
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
unable to PING outside private network digimafia *BSD 4 11-05-2006 10:56 AM
OpenVPN Client can't ping host by name mrpc_cambodia Linux - General 4 04-18-2006 10:30 PM
OpenVPN setup - can ping only one way across VPN tunnel rob_xx17 Linux - Networking 3 04-14-2006 07:36 AM
LRP. Cant ping out from private network. Anyone use LRP that can help? Fatboy Linux - Newbie 0 05-12-2001 10:47 AM


All times are GMT -5. The time now is 03:07 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration