Code: Select all
VNET00=(external ip)
VPNNET="10.8.0.0/24"
$IPT -t nat --flush
$IPT -t nat -A POSTROUTING -s $VPNNET -o venet0 -j SNAT --to-source $VNET00
Please help
apf cannot ping other computers on openvpn
Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech
Forum rules
Please visit (and READ) the OpenVPN HowTo http://openvpn.net/howto prior to asking any questions in here!
Please visit (and READ) the OpenVPN HowTo http://openvpn.net/howto prior to asking any questions in here!
-
waeking
- OpenVpn Newbie
- Posts: 2
- Joined: Fri Nov 25, 2011 7:20 pm
apf cannot ping other computers on openvpn
I have created on openvpn. The only problem is that when apf is running I cannot ping any the 10.8.0.0/24 or the 192.168.0.0/24 network from either end. I can reach the outside world through the vpn from all computers on the network.
When apf is stopped I can access the computers on both 10.8.0.0/24 and 192.168.0.0/24. So I am assuming that the openvpn conf is correct. and that the iptables need to be corrected. I also read that the tun0 may be an untrusted device for apf. but I do not know how to check or add this device.
Please help
Please help
-
Mimiko
- Forum Team
- Posts: 1564
- Joined: Wed Sep 22, 2010 3:18 am
Re: apf cannot ping other computers on openvpn
Show all other rules.
Tun-device is like an ordinary eth0 device. The rules are made on personal needs.
Tun-device is like an ordinary eth0 device. The rules are made on personal needs.
-
waeking
- OpenVpn Newbie
- Posts: 2
- Joined: Fri Nov 25, 2011 7:20 pm
Re: apf cannot ping other computers on openvpn
I have figured out that if I add tun0 to the trusted IFACE in the configuration file that all is good. I would like to change this so that I can regulate the traffic on tun0 just like it could on venet0. Is there a way to do this? because of apf running the iptables there are so many to show.....