Simple put, I have been using an openvpn server for some time now to connect two subnets. I was using the default topology for the tunnel IP addresses but after reading about the capabilites of 'subnet' I decided that I'd give it a whirl the next time I had to spin up a new setup.
That day was today.
On setting up the new server, I kept all the variable the same the same as my previous setup (auth types, OS (Ubuntu 18), subnets (mostly)), but included the line
Code: Select all
Several hours of troubleshooting later:
I decided to remove iptable peristence (one slight difference to the previous setup) and reboot, ergo flushing my iptables. Upon trying to pinging across the tunnel, without adding any iptables rules... it worked.
I see nothing fancy in my iptables that OpenVPN may have added so my question is, how does this work without iptables forwarding and postrouting explicitly set?