Access OpenVPN client from backend LAN servers

This forum is for admins who are looking to build or expand their OpenVPN setup.

Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech

Forum rules
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
Post Reply
Milfzilla
OpenVpn Newbie
Posts: 2
Joined: Thu May 06, 2021 9:16 am

Access OpenVPN client from backend LAN servers

Post by Milfzilla » Thu May 06, 2021 9:20 am

Hi Everyone.

I've this kind of architecture.

Image

For the moment, the two OpenVPN client communicate well with backend servers on Azure (Black arrows).

With this configuration on OpenVPN server :

- In /etc/sysctl.conf : net.ipv4.ip_forward=1

- In /etc/openvpn/server.conf : push "route 10.0.0.0 255.255.255.0"

- This iptables rule : iptables -t nat -A POSTROUTING -s 10.8.0.0/24 -o eth0 -j MASQUERADE



Now I would like to communicate from the two backend servers (Azure VM 1 & 2) to OpenVPN client (Red arrows), for exemple ssh from Azure VM1 to OpenVPN Clients or http request from Azure VM1 to OpenVPN Client (server 2 contain a http server).

All servers are Linux.

For the moment I didn't find how to do that.

Thanks for your help

Milfzilla
OpenVpn Newbie
Posts: 2
Joined: Thu May 06, 2021 9:16 am

Re: Access OpenVPN client from backend LAN servers

Post by Milfzilla » Fri May 07, 2021 8:39 am

Can someone help me on this,
I think it's a kind of iroute to add to server config, but I don't know what exactly because there isn't LAN subnet behind OpenVPN clients because these are only public hosts.
Something that is strange is that OpenVPN server can already ping or ssh to OpenVPN client, but Azure VM 1 & Azure VM 2 can't...

Post Reply