Site to Site VPN - Can't access client network

Need help configuring your VPN? Just post here and you'll get that help.

Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech

Forum rules
Please use the [oconf] BB tag for openvpn Configurations. See viewtopic.php?f=30&t=21589 for an example.
Post Reply
abroad
OpenVpn Newbie
Posts: 1
Joined: Thu May 06, 2021 9:59 am

Site to Site VPN - Can't access client network

Post by abroad » Thu May 06, 2021 10:12 am

Hi,
I have two RPI's connected via community OpenVPN; server named home at 192.168.1.43; and client named boat at 192.168.2.110 (different subnets).
The VPN is great, lots of traffic, very stable.
Boat2 (which is using a mobile SIM router) can see all devices on home network.
Home cannot see any devices including boat2 itself on the 192.168.2.x network.
Home can logon to boat2 using it's tun0 address (10.8.0.9)
Really annoyingly this used to work, then my boat SD card died, I reinstalled and it stopped working (hence boat2!)
Home router is 192.168.1.254; boat router is 192.168.2.1
I have enabled IP forwarding by putting net.ipv4.ip_forward=1 in /etc/sysctl.conf on home and boat2.

home

pi@home:~ $ ip r
default via 192.168.1.254 dev eth0 src 192.168.1.43 metric 202
default via 192.168.1.254 dev wlan0 proto dhcp src 192.168.1.244 metric 303
10.8.0.0/24 dev tun0 proto kernel scope link src 10.8.0.1
192.168.1.0/24 dev eth0 proto dhcp scope link src 192.168.1.43 metric 202
192.168.1.0/24 dev wlan0 proto dhcp scope link src 192.168.1.244 metric 303
192.168.8.0/24 via 10.8.0.9 dev tun0
pi@home:~ $

boat2

pi@boat2:~ $ ip r
0.0.0.0/1 via 10.8.0.1 dev tun0
default via 192.168.8.1 dev wlan0 proto dhcp src 192.168.8.110 metric 302
10.8.0.0/24 dev tun0 proto kernel scope link src 10.8.0.9
81.x.x.x via 192.168.8.1 dev wlan0
128.0.0.0/1 via 10.8.0.1 dev tun0
192.168.1.0/24 via 10.8.0.1 dev tun0
192.168.8.0/24 dev wlan0 proto dhcp scope link src 192.168.8.110 metric 302
pi@boat2:~ $

Many thanks for any help, abroad.

Post Reply