Hi Mathias On Mon, Aug 4, 2014, at 01:21 AM, Mathias Jeschke wrote: > > Internet > > | > > | > > | ext: A.B.C.D > > Router/Firewall + OpenVPN Server > > | tun: 10.99.99.1 > > | int: 10.0.0.1 > > | > > | > > | ext: X.Y.Z.W > > Router/Firewall + OpenVPN Client > > | tun: 10.99.99.2 > > | int: 192.168.0.1 > > | int: 10.10.10.1 > > | > > |-------------------------- > > | | > > MyDesktop OtherPCs > > 192.168.0.2 (192.168.0.3+/24) > > 10.10.10.2 ... > > That extras step of going 'out' the Server to the 'net is not getting a > > reply back. > > > > What (i)route in which OpenVPN config (server, server/ccd/client, client) > > would take care of that?
> I assume you have added this line to your OpenVPN client config, right? > > route 8.8.8.8 255.255.255.255 Hm. That one's confusing. Well, ALL of this which-goes-where is to me. Iiuc -- and maybe I dont -- that route would cause a route to be created on the Client OS that would send ALL traffiic from the Client, not just from MyDesktop's 10.10.10.2 source address. No? Would that route nee to be set ON the client's Openvpn config? Or as an iroute in the Server's ccd/client config? > The problem is likely a missing source NAT (MASQUERADING) config on the > OpenVPN server. A NAT trasnlation between what IPs? Between Server/10.99.99.1 & MyDesktop/10.10.10.2? Thought NAT addresses needed to be ON the same machine. I think I'm going to need more coffee. Dave ------------------------------------------------------------------------------ Infragistics Professional Build stunning WinForms apps today! Reboot your WinForms applications with our WinForms controls. Build a bridge from your legacy apps to the future. http://pubads.g.doubleclick.net/gampad/clk?id=153845071&iu=/4140/ostg.clktrk _______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
