[home net] -> (eth0)[centos router](eth1) -> [isp] -> office

home-net: 192.168.0.0/24
isp network: 10.11.0.0/24

office net: 10.11.221.0/24

the centos router does nat for my home pcs and i wanted a nice gre tunnel to the office, so i ssh into both centos and office router, setup tun interfaces, assign ip addresses etc, ping test, both hosts(centos router and office router) can ping each other's gre tun interfaces.
my router's gre endpoint ip address is 10.0.0.1
office router's gre endpoint ip addr is 10.0.0.2

however, when i try to ping hosts at the office from within my [home net] i get timeouts, but if i try to ping the local gre endpoint it works.
example:
user@192.168.0.100 : ping 10.11.221.5 -> times out. >
user@192.168.0.100 : ping 10.0.0.1 -> works \m/
user@192.168.0.100 : ping 10.0.0.2 -> phails

i'm not sure i understand why my centos box doesn't forward packets from my home net through the gre and back again.

err... yes, isp does natting and i do natting too. so home boxes are behind 2 nats but i dont care.

PS: i can't add a 'gre' tag to this thread lol

try to load the 'nf_conntrack_pptp' and 'nf_conntrack_proto_gre' module. maybe 'nf_nat_proto_gre'
Inspect all available gre and pptp modules with 'modprobe -l | grep pptp' anf 'modprobe -l | grep gre'

1 members found this post helpful.

and


and on the remote office box:
still no luck :/

oh lord, i had routes to the office internal network set up on my home nat box, but i forgot to put routes to my internal home network on the remote office router box.
now that i've placed them it's all good.

thanks for the module tip tho, it helped.