currently, I'm configuring OpenVPN the first time.
I'm running it on a small Intel NUC with CentOS in my home LAN.
The goal of this journey is to access my home LAN from outside and working on my clients like I'm inside my LAN.
Especially in case of security reasons, because I don't want to publish services on my public IP /dyndns with port forwardings nor a DMZ.
Maybe you can also give me some hints how I can make my OpenVPN safer.
I configured everything and I'm able to access my OpenVPN Server form my OpenVPN clients.
I also configured a static route from the VPN network range to my home LAN on my DDWRT router.
It's also possible to ping clients behind the VPN IP range.
Now to my issue:
It's not possible to access the internet when a client is connected to the OpenVPN server.
It's possible to ping e.g. 22.214.171.124 (DNS of google) or any client in my LAN, but I cannot access e.g. webservices or do SSH sessions on my LAN clients.
Here are a few configuraitons of my OpenVPN Server:
Code: Select all
[root@nuc iptables]# iptables -L Chain INPUT (policy ACCEPT) target prot opt source destination ACCEPT all -- anywhere anywhere Chain FORWARD (policy ACCEPT) target prot opt source destination ACCEPT all -- anywhere anywhere Chain OUTPUT (policy ACCEPT) target prot opt source destination
keepalive 10 120
server 10.8.0.0 255.255.255.0
push "dhcp-option DNS 10.0.0.254"
push "redirect-gateway def1 bypass-dhcp"
push "route 10.0.0.0 255.255.255.0"
tls-crypt tls-crypt.key 0
remote MYPUBLICIP 1194
verify-x509-name server_nfIPGN97r1w3gCEY name
I hope you can help me to fix my issue.
Sorry, you might hear this questions already a few times but I'm sitting now for 3 days in front of this issue and googled a lot for it.