On Monday 23 Dec 2013 17:44:17 Timur Aydin wrote: > On 12/23/13 18:24, Burak Arslan wrote: > > Once the VPN connection is established, among the routes pushed by your > > OpenVPN provider is also a default gateway entry which routes every > > non-local packet through the vpn. > > Here is the routing setup after the tunnel is up: > > bonsai ~ # /etc/init.d/openvpn start > * Starting openvpn > * WARNING: openvpn has started, but is inactive > bonsai ~ # ip route show > 0.0.0.0/1 via 10.8.2.213 dev tun0 > default via 92.44.0.41 dev ppp0 metric 4007 > 10.2.1.0/24 dev eno1 proto kernel scope link src 10.2.1.254 > 10.2.2.0/24 dev enp1s0 proto kernel scope link src 10.2.2.254 > 10.2.3.0/24 dev enp8s0 proto kernel scope link src 10.2.3.254 > 10.8.2.209 via 10.8.2.213 dev tun0 metric 1 > 10.8.2.213 dev tun0 proto kernel scope link src 10.8.2.214 > 92.44.0.41 dev ppp0 proto kernel scope link src 176.41.233.165 > 127.0.0.0/8 dev lo scope host > 127.0.0.0/8 via 127.0.0.1 dev lo > 128.0.0.0/1 via 10.8.2.213 dev tun0 > 173.195.6.91 via 92.44.0.41 dev ppp0 > > > Your daemons at home receive a packet via your static Turkish address > > but, because you got your default gw configured to be your vpn provider, > > the response packet goes through NY. Due to reverse-path filtering or > > some other fact of nature, it's dropped somewhere along the way. > > > > If that's the case (big if :)), here's what you need to do: > > http://lartc.org/lartc.html#AEN267 > > Thanks for this link! I will need some time to digest this information > and will report back with my progress.
Also have a look here for OpenVPN specific split tunnelling (split routing): http://dltj.org/article/openvpn-split-routing/ https://forums.openvpn.net/topic7065.html HTH. -- Regards, Mick
signature.asc
Description: This is a digitally signed message part.