I am trying to configure a VPN between a Netgear router, and my OpenBSD 3.2 (going 3.4 when that rolls out). I actually have the VPN tunnel to a point where I can ping from my end (BSD) into the LAN on the other end, (not vice versa).. I am not clear if it's PF, or maybe I should be using routed or something..I posted to [EMAIL PROTECTED] a few days ago, and am wanting to post here as well.. I am wondering if someone can go over things offline with me, and I will post back the results, and working config for the archives.. Thank you.
My post to misc@: Location A Openbsd 3.2 firewall $if_ext a.a.a.a $if_int 192.168.150.x Location B Netgear router $if_ext2 b.b.b.b $if_int2 192.168.0.1 I have got a VPN working, I assume as I can from the bsd firewall I can ping internall address's of Location B. My problem is that I can't see out to the VPN to the other side, if I try to ping from internal network A it fails: (monolith - 192.168.150.x) monolith 1# ping 192.168.0.2 PING 192.168.0.2 (192.168.0.2): 56 data bytes 36 bytes from mfwvgate.mercuryfilmworks.com (192.168.150.254): Destination Host Unreachable for icmp_seq=0 36 bytes from mfwvgate.mercuryfilmworks.com (192.168.150.254): Destination Host Unreachable for icmp_seq=1 Routed is not running, and I am not sure if it needs to be, or if I should be adding a static route via 'route add net'. I also am unsure if I need to set something in PF to allow through. When I do netstat -rn: Encap: Source Port Destination Port Proto SA(Address/Proto/Type/Direction) 192.168.0/24 0 a.a.a.a/32 0 0 b.b.b.b/50/use/in A.a.a.a/32 0 192.168.0/24 0 0 b.b.b.b/50/require/out Does that look OK? Any suggestions? Derrick MacPherson [EMAIL PROTECTED]
