Hi, On 29/05/18 13:44, Yuri Kanivetsky wrote:
[cut] > > These two commands make it work: > > $ ip rule add from srv.eth0.ip table 1 > $ ip route add table 1 default via srv.eth0.gw > > More details can be found here: > https://lists.debian.org/debian-user/2018/05/msg00780.html > > Can you explain what's going on here? Thanks in advance. > Once you connect to the VPN and set a default route to the VPN server IP, packets flowing back over the SSH connection do not go over eth0 anymore, but they follow the new default route. This breaks the SSH connection because those packets are just lost (they won't be routed/natted by the VPN server in any useful way). With the commands above, you are basically saying: "all the packets having the eth0 IP as source address have to go out directly via eth0, without being forwarded to the VPN". I hope this clarifies the problem. Cheers, -- Antonio Quartulli
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
