Hej all,
I'm trying to find out how to setup a special thing and need help at this point. Hope to find it here.... So, what do I want and what did I do? I want to make a Roadwarrior (in this case WinXP) connect to my Bering-uclibc device through openvpn and have access to the LAN (192.168.20.x) behind the Bering-Box AND access Internet through this connection, too. In other words: I (as a travelling man) want to secure connect to my remote LAN which is connected to the internet via BeringBox. I also want to use the Internet from inside the LAN, not directly, for it seems a lot safer behind the shorewall. Good idea? What did I do? I followed leaf.sourceforge.net/doc/bucu-openvpn.html until I have the vpn up. At last, I have difficulties with the final steps: making the IP-traffic pass through and push the right configuration to the client. Here is my server.conf (reduced) from the Bering-Box: port 1194 proto udp dev tun ca keys/ca.crt cert keys/rightcert.crt key keys/rightkey.key dh keys/dh1024.pem server 10.8.0.0 255.255.255.0 ifconfig-pool-persist /var/lib/openvpn-ipp.txt ;push "route 192.168.10.0 255.255.255.0" push "route 192.168.20.0 255.255.255.0" push "gateway 192.168.20.254" push "redirect-gateway" push "dhcp-option DNS 10.8.0.1" keepalive 10 120 comp-lzo user nobody group nogroup persist-key persist-tun status /var/log/openvpn-status.log verb 3 Concerning the "redirect-gateway" I was reading this: # If enabled, this directive will configure # all clients to redirect their default # network gateway through the VPN, causing # all IP traffic such as web browsing and # and DNS lookups to go through the VPN # (The OpenVPN server machine may need to NAT # the TUN/TAP interface to the internet in # order for this to work properly). How can I do that on the Bering-Box? On client-side I have this configuration: client dev tun proto udp remote rightname.dnsalias.net 1194 resolv-retry infinite nobind persist-key persist-tun ca c:\\Programme\\OpenVPN\\keys\\ca.crt cert c:\\Programme\\OpenVPN\\keys\\rightcert.crt key c:\\Programme\\OpenVPN\\keys\\rightkey.key comp-lzo verb 3 What happens? I can bring the vpn up and have no longer access to the internet from the client. I can ping IP adresses in the LAN, but have no name service for the LAN. I have name service from the internet. So what is missing? Thanks, Boris ------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/ ------------------------------------------------------------------------ leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
