[Shorewall-users] connecting two LANs via VPN

[roman]

dear list!

I'm currently trying to connect two LANs via an openvpn-tunnel from router to 
router (with their LAN-IPs). So far each router is able to ping all computers 
on the other end of the tunnel.

What I still can't get to work is the connection from one computer to the 
router or any other on the other end. And I currently can't think of any 
reason why it shouldn't.

Both routers are the default gateways for their LAN. I don't think I need to 
setup any kind of masquerading for this to work.

All tunnels on either side are in the "loc" zone and loc2loc is accepted per 
policy.

Here are the interfaces and routes:

Site1:
eth0: inet 192.168.0.127/24 brd 192.168.0.255 scope global eth0
eth1: internet
ppp0: internet
tun0: inet 192.168.203.1 peer 192.168.203.2/32 scope global tun0 (incoming 
tunnel)
tun2: inet 192.168.202.10 peer 192.168.202.9/32 scope global tun2 (outgoing 
tunnel)

Ziel            Router          Genmask         Flags Metric Ref    Use Iface
192.168.203.2   *               255.255.255.255 UH    0      0        0 tun0
192.168.202.9   *               255.255.255.255 UH    0      0        0 tun2
172.25.46.23    *               255.255.255.255 UH    0      0        0 ppp0
192.168.100.0   192.168.202.9   255.255.255.0   UG    0      0        0 tun2
192.168.0.0     *               255.255.255.0   U     0      0        0 eth0
192.168.203.0   192.168.203.2   255.255.255.0   UG    0      0        0 tun0
192.168.202.0   192.168.202.9   255.255.255.0   UG    0      0        0 tun2
default         172.25.46.23    0.0.0.0         UG    0      0        0 ppp0


Site2:
eth0: internet 
eth1: 192.168.100.254/24 brd 192.168.0.255 scope global eth1
ppp0: internet
tun0: inet 192.168.202.1 peer 192.168.202.2/32 scope global tun0 (incoming 
tunnel)
tun2: inet 192.168.203.6 peer 192.168.203.5/32 scope global tun2 (outgoing 
tunnel)

Ziel            Router          Genmask         Flags Metric Ref    Use Iface
192.168.203.5   *               255.255.255.255 UH    0      0        0 tun2
192.168.202.2   *               255.255.255.255 UH    0      0        0 tun0
172.25.46.23    *               255.255.255.255 UH    0      0        0 ppp0
192.168.100.0   *               255.255.255.0   U     0      0        0 eth1
192.168.0.0     192.168.203.5   255.255.255.0   UG    0      0        0 tun2
192.168.203.0   192.168.203.5   255.255.255.0   UG    0      0        0 tun2
192.168.202.0   192.168.202.2   255.255.255.0   UG    0      0        0 tun0
loopback        *               255.0.0.0       U     0      0        0 lo
default         172.25.46.23    0.0.0.0         UG    0      0        0 ppp0


thanks in advance for any help provided

greets
roman

-------------------------------------------------------------------------
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the chance to share your
opinions on IT & business topics through brief surveys - and earn cash
http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
_______________________________________________
Shorewall-users mailing list
Shorewall-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/shorewall-users