Advanced Routing in AWS

XenoPhage
OpenVpn Newbie
Posts: 1
Joined: Thu Mar 16, 2017 7:59 pm

Advanced Routing in AWS

Postby XenoPhage » Thu Mar 16, 2017 9:40 pm

Greetings,

I'm trying to set up an OpenVPN AS server in AWS that uses advanced routing versus NAT. NAT works well enough, but I'd like to be able to use IP ranges in security groups as well as have the IPs show up in various logs on other servers for easier tracking.

I'm able to set up the server to assign an IP easily enough, but it would appear that routing outside of the openVPN server is an issue. I've tried using IPs assigned within the VPC, but when adding routes to the AWS routing tables, I get an error that I can't add more specfic routes. If I use an IP range not within the VPC, AWS doesn't seem to transit the traffic.

Does this work in AWS? Or am I stuck with NAT?

Thanks,

Jason

novaflash
OpenVPN Expert
Posts: 384
Joined: Fri Apr 13, 2012 8:43 pm

Re: Advanced Routing in AWS

Postby novaflash » Fri Mar 17, 2017 7:50 am

Routing is possible, and the problem is entirely within the configuration of the AWS security settings and routing tables. Kindly make sure reciprocating routes are present and that source checking is disabled, or else AWS will just filter the traffic from the VPN clients away.


Return to “Access Server”

Who is online

Users browsing this forum: No registered users and 1 guest