On 1/21/2015 1:33 PM, Tom Roche wrote:
Tom Roche Wed, 21 Jan 2015 12:50:04 -0500 [1]
I need to tunnel one SSL VPN (F5, running on one debian host) through
another (OpenVPN, running on another debian host), but lose networking
(e.g., `ping`) after the F5 VPN connects. I'm not sure whether this
is due to my firewall/iptables or VPN configuration, but suspect the
former. Unfortunately I am not knowledgeable regarding networking, so
I'd appreciate any assistance you could provide.
...
slightly revised ASCII art
<-MY CONTROL AGENCY CONTROL->
firewall
+----------+ +-----------+ +---------------+ | +---------+
| laptop + | | linode + | | remote-access | | | cluster |
| F5NAP + |<--> | OpenVPN |<--> | website + |<-|-> | node(s) |
| OpenVPN | | server + | | F5VPN server | | | |
| client | | security | | | | | |
+----------+ +-----------+ +---------------+ | +---------+
Matt Ventura Wed, 21 Jan 2015 09:58:38 -0800 [2]
First thing to check would be the routing table while the VPN is active.
The `route -n` for while the OpenVPN connection is active is here[3], which is part of a
longer section[4] with "all the gory details" ...
and thanks! your prompt assistance is appreciated, Tom
Roche<tom_ro...@pobox.com>
[1]: https://lists.debian.org/debian-user/2015/01/msg00732.html
[2]: https://lists.debian.org/debian-user/2015/01/msg00733.html
[3]:
https://bitbucket.org/tlroche/linode_jumpbox_config/downloads/client_networking_investigation.txt
[4]:
https://bitbucket.org/tlroche/linode_jumpbox_config/wiki/OpenVPN_install#rst-header-dns-problem
Sorry, I meant the routing table when the F5 VPN is active, when the
connectivity breaks.
Matt Ventura
--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/54c09651.3070...@mattventura.net