Please help with routing

eject Wed, 07 Feb 2007 16:54:18 -0800

Hi all I have troubles with routing between my VPN servers (using
openvpn and tun pseudo-devices) in 3
offices. Problem desc: I can't ping hosts in 192.168.1.0/24 network in
office3 (pings don't go to 10.1.0.1 and 192.168.2.0/24 -> 192.168.1.0/24).


Ping probes work fine between another internal networks to
192.168.2.0/24.

When run on router in office2 "tcpdump -i tun2" (interface to office1)
and "ping 192.168.1.1" I see ping requests to  ping 192.168.1.1 on
tcpdump output, but no ping reply.

===============================================================================

office1  <-------------> office2 <------------>  office3

##################################################################
10.1.0.1 <------> 10.1.0.2 -+- 10.8.0.1 <-----> 10.8.0.2
       |                    |                       |
192.168.1.0/24       192.168.197.0/24        192.168.2.0/24
###################################################################


################ Office1
rl1:  inet 192.168.1.254 netmask 0xffffff00 broadcast 192.168.1.255
      description: Internal interface
tun0: inet 10.1.0.1 --> 10.1.0.2 netmask 0xffffffff
      description: office2 interface

# netstat -rn -f inet
Routing tables

Internet:
Destination        Gateway            Flags    Refs      Use  Netif Expire
10.1.0.2           10.1.0.1           UH          2      237   tun0
192.168.1          link#2             UC          0        0    rl1
192.168.2          10.1.0.2           UGS         0        9   tun0
192.168.197        10.1.0.2           UGS         0        1   tun0

################ Office2 
rl1:  inet 192.168.197.1 netmask 0xffffff00 broadcast 192.168.197.255
      description: Internal interface
tun1: inet 10.8.0.1 --> 10.8.0.2 netmask 0xffffffff 
      description: office1 interface
tun2: inet 10.1.0.2 --> 10.1.0.1 netmask 0xffffffff
      description: office2 interface

# netstat -rn -f inet
Routing tables

Internet:
Destination        Gateway            Flags    Refs      Use    Mtu  Interface
10.1.0.1           10.1.0.2           UH          1        0      -   tun2
10.8.0.2           10.8.0.1           UH          2     1796      -   tun1
192.168.1/24       10.1.0.1           UGS         1      165      -   tun2
192.168.2/24       10.8.0.2           UGS         0       10      -   tun1

################ Office3 

rl1:  inet 192.168.2.254 netmask 0xffffff00 broadcast 192.168.2.255
      description: Internal interface
tun1: inet 10.8.0.2 --> 10.8.0.1 netmask 0xffffffff
      description: office2 interface

netstat -rn -f inet
Routing tables

Internet:
Destination        Gateway            Flags     Refs     Use    Mtu  Interface
default            10.8.0.1           UGS         2     9489      -   tun1
10.8.0.1           10.8.0.2           UH          3     2059      -   tun1
192.168.2/24       link#2             UC          1        0      -   rl1
192.168.2.1        0:13:d4:d1:3f:f1   UHLc        0        9      -   rl1

===============================================================================

Lot of thanks. I waiting for your answers!

Please help with routing

Reply via email to