Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
M
M
MaxxDamage2019-09-10 20:13:50
openvpn
MaxxDamage, 2019-09-10 20:13:50

I can not understand why the tunnel does not work?

Good day.
Please help with setting up a tunnel between two networks.
Available: Two networks, each with its own Debian gateway. Each gateway has 2 Internet interfaces and 1 local one. The server network is 192.168.0.0, the client network is 192.168.1.0. It is not possible to set up a tunnel between them. Ping from the client goes only to the server gateway (192.168.0.1), ping from the server does not even go to the client gateway (192.168.1.0). Forwards in iptables are allowed. Routes seem to be set up, but it's possible that it's wrong. I will attach the OpenVPN server and client settings in the comments

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
R
res2001, 2019-09-11
@res2001

MaxxDamage ,
Server config: Usually, the third parameter is not set in the route - it is substituted automatically - the address of the VPN server. push "route ..." sets the route on the client to the network behind the server. At you this command registers a route for the client on the client. This route is already present on the client. It is necessary to bring it into the following variant: After connecting the client, the corresponding route should appear in its routing table. This directive is not correct. route adds a route on its side (i.e. on the server side in this case). You need to specify the client address in the third parameter (10.8.0.1 is probably the server address).
But it is better to transfer this directive to the client config on the server (this is the one that lies in the path specified in the client-config-dir directive) in the following form:
Then when the client connects, the route to its network will be added on the server, the client address will automatically be added to the does not need to be specified explicitly.
Client config:
Directive
is not needed here. Its functions are performed by the push "route ..." directive in the server config.
In general, usually the client config is made as simple as possible. All routing is perfectly configured on the server side.
In general, you can completely debug the VPN configuration on virtual machines in your virtual network and transfer it to real hardware, replacing only the listening address of the server in the local directive.

Similar questions
S
shumovandrew09112017-02-22 21:19:45
How to make it possible to connect multiple clients to an openvpn tap server? 2Reply
F
f00kat2021-02-24 13:21:39
How to ensure that clients can access each other within the OpenVpn Tun network (ASUS RT-AC66U B1)? 1Reply
V
Vasily Kokhansky2015-02-23 00:21:02
OpenVPN: Mikrotik - server, OpenWRT - client, how to connect? 2Reply
C
cccp8122017-02-28 05:46:04
There is a Mikrotik 951, there is a VPS with OpenVPN, how can I send Mikrotik users to the Internet through a VPS with OpenVPN? 2Reply
P
Peter Krupnev2021-03-02 19:36:52
How to wrap all connections to the server through OpenVPN? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question