Hi, On 06/12/15 20:43, debbie...@gmail.com wrote: > You _can_ push the Server LAN Route 192.168.254.0/24 > from the Server to the Client. > > Next .. One step at a time: > You must enable IP_Forwarding on both the VPN CLient and VPN Server > You can then use tcpdump to follow packets across the network .. > See if you can figure out the next step ;-) > "push" does not apply to the setup that vnpenguin is using (unless you add an explicit "pull" to the client config).
what debbie10t is saying is this: You have to work your way out, starting from the VPN client and server and onto the LAN on both sides - first, check that you can reach the VPN client's LAN IP from a machine on the server-side LAN - if that works, check that routing/ip forwarding is enabled, and that your firewall rules allow forwarding - then, try to connect to another machine on the client-side LAN from the OpenVPN server itself - finally, try it from a machine on the server-side LAN HTH, JJK > > ----- Original Message ----- > From: "Vnpenguin" <vnpeng...@vnoss.org> > To: <openvpn-users@lists.sourceforge.net> > Sent: Sunday, December 06, 2015 7:39 AM > Subject: [Openvpn-users] Routing between two LAN > > >> Hi all, >> I got running OpenVPN P2P mode between 2 LAN. Here's my network: >> >> 192.168.254.0/24--192.168.254.4 (OpenVPN server) <=INTERNET=> 192.168.1.31 >> (OpenVPN client)--192.168.1.0/24 >> >> >From client 192.168.1.31 I can ping anyhost of server LAN >>> (192.168.254.0/24 >> ). >> >> >From another host of client LAN, for exemple 192.168.1.32, I tried : >> >> ip route add 192.168.254.0/24 via 192.168.1.31 >> # route -n >> Kernel IP routing table >> Destination Gateway Genmask Flags Metric Ref Use >> Iface >> 0.0.0.0 192.168.1.1 0.0.0.0 UG 100 0 0 >> eth0 >> 192.168.1.0 0.0.0.0 255.255.255.0 U 100 0 0 >> eth0 >> 192.168.254.0 192.168.1.31 255.255.255.0 UG 0 0 0 >> eth0 >> >> But I can't ping to server LAN. >> >> I used OpenVPN 2.3.8 x86_64 on CentOS 6. >> >> Here's my server config: >> ============================ >> local 192.168.254.4 >> port 1194 >> proto udp >> dev tun >> mode p2p >> secret server.key >> ifconfig 10.100.4.1 10.100.4.2 >> keepalive 10 60 >> comp-lzo >> ping-timer-rem >> persist-tun >> persist-key >> user openvpn >> group openvpn >> daemon >> status /var/run/openvpn-status.log >> log-append /var/log/openvpn.log >> verb 3 >> mute 20 >> ============================== >> >> >> Here's my client config: >> ====================== >> remote my.remoteserver.com >> port 1194 >> proto udp >> dev tun >> mode p2p >> secret server.key >> ifconfig 10.100.4.2 10.100.4.1 >> route 192.168.254.0 255.255.255.0 >> keepalive 10 60 >> comp-lzo >> ping-timer-rem >> persist-tun >> persist-key >> user openvpn >> group openvpn >> daemon >> status /var/run/openvpn-status.log >> log-append /var/log/openvpn.log >> verb 3 >> mute 20 >> ========================================= >> >> Howto make anyhost of client LAN can ping to anyhost of server LAN please >> ? >> Any help will be appreciated. >> Thank you in advance, >> >> -- >> Vnpenguin >> ------------------------------------------------------------------------------ Go from Idea to Many App Stores Faster with Intel(R) XDK Give your users amazing mobile app experiences with Intel(R) XDK. Use one codebase in this all-in-one HTML5 development environment. Design, debug & build mobile apps & 2D/3D high-impact games for multiple OSs. http://pubads.g.doubleclick.net/gampad/clk?id=254741911&iu=/4140 _______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
