Re: [OpenWrt-Users] Site-to-site configuration

Tue, 23 Feb 2016 04:44:08 -0800 

Hi.
I've revisited this document:
https://community.openvpn.net/openvpn/wiki/RoutedLans
My situation:
server lan 192.168.1.0/24  tun is on 10.8.0.1  ("tovis-lab")
client lan 192.168.2.0/24  tun is on 10.8.0.6  ("tovis-lak")
In the servers configuration there is an appropriate file, named tovis-lak
which contain an iroute to clients lan.
>From client point of view everything is OK - client connect and could
access the lan behind the server.
The problem, is that server can not access client lan.
Servers rout table:
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use
Iface default         catv-80-98-106- 0.0.0.0         UG    0      0      
 0 eth0.2
10.8.0.0        10.8.0.2        255.255.255.0   UG    0      0        0
tun0 10.8.0.0        *               255.255.255.0   U     0      0       
0 tun0 80.98.106.0     *               255.255.255.0   U     0      0     
  0 eth0.2
192.168.1.0     *               255.255.255.0   U     0      0        0
br-lan
192.168.2.0     10.8.0.1        255.255.255.0   UG    0      0        0 tun0

The last row exactly gives a route to the client, but it does not work :(
The clients route show to the servers tun interface IP.
I do not know is it correct or not, I know that the clients tun is
10.8.0.6 but I thought the openvpn should know about it (in iroute
directive can give only the lan behind the client, not what interface it
should bound? on)
I'm not sure, that is it the openwrt problem, I was turn to this way
because of the underlying OS = OpenWrt.
Any ideas?

Best regards
  tovis

PS: the full configuration, resulting route tables and iptables, also logs
are on pastebin:
server side (tovis-lab): http://pastebin.com/3VRAadXz
client side (tovis-lak): http://pastebin.com/h8Ctfmx2

> Hi.
>
>> What if I do not have any of these? - I could only break the command using
>> Ctrl+C and I have a message that it was send x packages and receive 0
packages :(
>
> That qualifies as "no result at all".
>
> ~ Jow
> _______________________________________________
> openwrt-users mailing list
> [email protected]
> https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-users
>
>
_______________________________________________
openwrt-users mailing list
[email protected]
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-users

Reply via email to