I have a Raspberry PI (192.168.178.230). There I have an Apache2 Reverse Proxy for accessing some SmartHome stuff.
Apache is listening on Port 80 & 443, port forwarding from outside is enabled in my router.
This standalone is working.
As soon as I start a VPN client connection (Site-2-Site via VPS in the middle), I can no longer access my Apache-Server from public side.
VPS OpenVPN-Server in the middle
server.conf
port 1194
proto udp
dev tun
ca /etc/openvpn/ca.crt
cert /etc/openvpn/server.crt
key /etc/openvpn/server.key # This file should be kept secret
dh /etc/openvpn/dh1024.pem
server 10.8.0.0 255.255.255.0
ifconfig-pool-persist ipp.txt
push "redirect-gateway def1 bypass-dhcp"
push "dhcp-option DNS 8.8.8.8"
push "dhcp-option DNS 8.8.4.4"
keepalive 10 120
comp-lzo
persist-key
persist-tun
status openvpn-status.log
verb 3
crl-verify ./easy-rsa/2.0/keys/crl.pem
client-to-client
client-config-dir ccd
push "route 192.168.178.0 255.255.255.0"
push "route 192.168.179.0 255.255.255.0"
/ccd/client1
Code: Select all
iroute 192.168.178.0 255.255.255.0
client1.conf
client
dev tun
proto udp
remote xy.xy.xy.xy 1194
log-append /var/log/openvpn.log
resolv-retry infinite
nobind
persist-key
persist-tun
ca ca.crt
cert fhem.crt
key fhem.key
comp-lzo
I tried thisviewtopic.php?f=6&t=7175#p8056:
Then I can access my Apache again, however, I can no longer access my Samba Share on client1 from client2 (192.168.179.*).
Code: Select all
ip rule add from 192.168.178.230 table 10
ip route add default via 192.168.178.1 table 10
Heiko