OpenVPN not seeing network behind windows server?

A

Alexey Denisov2018-09-28 12:27:36

openvpn

Alexey Denisov, 2018-09-28 12:27:36

Good afternoon, colleagues!
Office LAN 1
192.168.8.0/24
Office LAN 2
192.168.9.0/24
Between them, OpenVPN Server, installed on Windows 10 at 192.168.8.0/24
, the connection between the tunnels is established. The problem is that clients do not see computers from the 192.168.8.0/24 network in order to connect to them via rdp.
Server configuration
dev-node "ServerVPN"
mode server
port 1194
proto tcp
dev tun
tls-server
tls-auth "C:\\Program Files\\OpenVPN\\easy-rsa\\keys\\ta.key" 0
tun-mtu 1500
tun-mtu-extra 32
mssfix 1450
ca "C:\\Program Files\\OpenVPN\\easy-rsa\\keys\\ca.crt"
cert "C:\\Program Files\\OpenVPN\\easy-rsa\\keys\\ServerVPN.crt"
key "C:\\Program Files\\OpenVPN\\easy-rsa\\keys\\ServerVPN.key"
dh "C:\\Program Files\\OpenVPN\\easy-rsa\\keys\\dh2048.pem"
server 10.10.10.0 255.255.255.0
push "route 192.168.8.0 255.255.255.0"
route 10.10.10.0 255.255.255.0
client -to-client
keepalive 10 120
cipher AES-128-CBC
comp-lzo
persist-key
persist-tun
client-config-dir "C:\\Program Files\\OpenVPN\\config"
verb 3
route-delay 5
route-method exe
CCD client:
ifconfig-push 10.10.10.5 10.10.10.15
iroute 192.168.8.0 255.255.255.0
# disable

Reply

Answer the question

In order to leave comments, you need to log in

1 answer(s)

R

Radjah, 2018-09-28
@Radjah

If I understand correctly, then in 8.0/24 there is a server, and in 9.0/24 there is a client
Add to the config route 192.168.9.0 255.255.255.0so that the gateway is aware of the new network.
Take it away route 10.10.10.0 255.255.255.0.
Meaning: the server must know about all the networks behind the clients.
iroute specifies where to route traffic inside openvpn. In your case, there is no instruction to route 192.168.9.0/24 via openvon in the config.