| View previous topic :: View next topic |
| Author |
Message |
BrianW
n00b
Joined: 19 Nov 2003
Posts: 35
Location: Deset Cities, SoCal USA
|
 Posted: Sat Jan 03, 2004 1:25 am Post subject: OpenVPN help - browse internal hosts (Solved!!) |
 |
|
Ok well we emerged poptop first with many config problems( because our server is behind a NAT router), we decided to give openvpn a try. We have had much success with openvpn. We are only stuck on one thing. We cannot connect to other hosts on the same netowrk as the openvpn server.
Topology:
Network A: 10.0.2.0/24 Contains Openvpn server and various other hosts behind a Netgear router.
Network B: 10.0.1.0/24 Contains a WXP box behind a ClarkConnect Firewall-Router
Goals:
1) To connect from WXP box to openvpn server and access the resouces on said server, ie: Samba, DNS, etc...
2) To connect from WXP box to other hosts on network A
So far we have successfully achieved Goal 1. We are stuck on goal 2. We know it has to do with routes. We are suspecting that we will have to add a route to our Netgear router in network A. Any help or suggestions?
Here are our config files:
openvpn Server in network A:
| Code: | /openvpn.srv
dev tun0
ifconfig 10.2.2.1 10.2.2.2
up ./vpn.up
secret static.key
comp-lzo
ping 10
verb 5 |
| Code: | /vpn.up
#!/bin/bash
#route add -host 10.2.2.13 dev $1
#route add -net 10.0.2.0 netmask 255.255.255.0 gw 10.2.2.13 dev $1
#route add -net 10.2.2.0 netmask 255.255.255.0 gw 10.0.2.12 dev eth0 |
We have the above routes commented out, because they did not help us. Among others we tried as well....
Client config:
| Code: | ..\OpenVPN\config\samba1-test.ovpn
remote *.*.*.* #(it is the correct remote ip, removed by user for posting)
dev tun
ifconfig 10.2.2.2 10.2.2.1
route 10.0.2.0 255.255.255.0 10.2.2.1
secret static.key
ping 10
comp-lzo
verb 5 |
Thanks for any help you can offer!!
Brian
_________________
Gentoo Game.Web.File Server(s) Admin |
|
| Back to top |
|
 |
BrianW
n00b
Joined: 19 Nov 2003
Posts: 35
Location: Deset Cities, SoCal USA
|
| Posted: Sat Jan 03, 2004 4:24 am Post subject: Problem Solved |
|
|
Our theory of adding a route to the gateway on network A to the tun0 network proved successful.
Here is the static route we added to the netgear router on network A
| Code: |
Menu 12.1 - Edit IP Static Route
Route #: 1
Route Name= ovpn
Active= Yes
Destination IP Address= 10.2.2.0
IP Subnet Mask= 255.255.255.252
Gateway IP Address= 10.0.2.12
Metric= 2
Private= Yes
Press ENTER to Confirm or ESC to Cancel:
|
Daniel
_________________
Gentoo Game.Web.File Server(s) Admin |
|
| Back to top |
|
|
BrianW
n00b
Joined: 19 Nov 2003
Posts: 35
Location: Deset Cities, SoCal USA
|
| Posted: Sat Jan 03, 2004 11:15 am Post subject: |
|
|
After being able to access the other hosts on network a, we decided to do some tests. Some things worked, and some things did not. We decided to upgrade our server version to the same as the current client version we were running on the WXP box. After upgrading the server to the latest version, and changing the proto to tcp, we got positive results from all tests we threw at it. The tunnel is working great. We highly recomend this app for securely connecting remote networks across untrusted networks.
Brian
_________________
Gentoo Game.Web.File Server(s) Admin |
|
| Back to top |
|
|
|
Networking & Security
