LinuxQuestions.org
Visit the LQ Articles and Editorials section
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Slackware
User Name
Password
Slackware This Forum is for the discussion of Slackware Linux.

Notices

Reply
 
Search this Thread
Old 07-05-2013, 01:49 PM   #1
dimm0k
Member
 
Registered: May 2008
Location: Brooklyn ZOO
Distribution: Slackware64 14.0
Posts: 389

Rep: Reputation: 23
OpenVPN routing within Slackware


I currently have OpenVPN set up such that clients are able to connect to the server, obtain specific tun0 addresses and communicate as follows:

the client is able to ping the server and vice versa via their respective tun0 IP address, however the server cannot ping the client using the client's LAN IP address. The client CAN ping the server using its LAN IP address and also can ping the computers on the server's LAN using their LAN IP address. So my issues currently are:

1. server can't ping client at client's LAN IP address
2. computers behind server can't see client

the client and server are both connected behind their respective router/gateway so I know they need some changes on the router to communicate properly. I would like to avoid changing anything on the router and to just issue static routes, but not sure what I need to do exactly. I've turned on ip_forward on the server and on the computers behind the server, as well as added
Code:
ip r a 10.8.1.0/24 via 192.168.1.3
but the computers behind the server still can't ping the connected clients. 10.8.1.0/24 is the tun0 network and 192.168.1.0/24 is the server network.
 
Old 07-05-2013, 03:37 PM   #2
gezley
Member
 
Registered: Sep 2009
Location: Ireland
Distribution: Slackware64, NetBSD
Posts: 532

Rep: Reputation: 244Reputation: 244Reputation: 244
Quote:
Originally Posted by dimm0k View Post
... but the computers behind the server still can't ping the connected clients. 10.8.1.0/24 is the tun0 network and 192.168.1.0/24 is the server network.
What is/are the client network address(es)? Needless to say clients should not have an address in the 192.168.1.0/24 range.
 
Old 07-06-2013, 04:57 PM   #3
btrsteve
LQ Newbie
 
Registered: Mar 2004
Location: Kansas
Distribution: Slack 13.37
Posts: 6

Rep: Reputation: 0
Do you have any physical segmentation or is it all logical? If so you im not really sure how that setup will work.
 
Old 07-07-2013, 12:15 PM   #4
dimm0k
Member
 
Registered: May 2008
Location: Brooklyn ZOO
Distribution: Slackware64 14.0
Posts: 389

Original Poster
Rep: Reputation: 23
After some troubleshooting I've determined that the client needed an iptable rule to allow incoming traffic on tun0. I actually had that in my script, but since I'm using this script both on the server and client I misplaced that statement so it was only running on the server side. Also needed to turn on IP forwarding on the client so now the server can ping the client at its LAN IP and its tun0 IP. The client can also ping the server at its own LAN IP and tun0 IP. The remaining issue now is how do I get it so that other computers on the server's LAN can communicate with the client?

Quote:
Originally Posted by gezley View Post
What is/are the client network address(es)? Needless to say clients should not have an address in the 192.168.1.0/24 range.
I've changed things a bit to avoid the 192.168.1 subnet...
The LAN IP of the client is 192.168.25.100 and its tun0 IP is 10.8.1.14 so the client LAN is 192.168.25.0/24.
The LAN IP of the server is 192.168.14.20 and its tun0 IP is 10.8.1.1 so the server LAN is 192.168.14.0/24.

How can I get computers on the server LAN to see the client? I'd rather not modify anything on the gateway/router and would prefer to create a static route since it's only one machine on the server LAN that requires specific access to the connecting client.


Quote:
Originally Posted by btrsteve View Post
Do you have any physical segmentation or is it all logical? If so you im not really sure how that setup will work.
Both sides are physical segments...
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
[SOLVED] OpenVPN (and I think Routing) tobylockyer Linux - Networking 10 06-01-2011 09:08 AM
OpenVPN routing. MheAd Linux - Networking 6 06-25-2010 01:35 PM
Error When converting Routing OpenVPN to bridge mode openvpn danmartinj Linux - Software 0 11-06-2009 10:23 AM
routing using openvpn williebens Linux - Newbie 1 07-11-2008 10:28 PM
OpenVPN and Routing. Eightpock Linux - Networking 2 07-10-2008 07:48 AM


All times are GMT -5. The time now is 05:52 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration