iroute 0.0.0.0 0.0.0.0 or alternatives

[lzecca]

Hi guys,
i am wondering if there is a solution or trick for the following situation :

|vpn_client|---------- |internet| -----------|vpn-server|------|lan_1|

All i want is that all traffic from |lan_1| pass throught |vpn_client|.
All seems to work fine till when i specify in the ccd file single subnet as follow for example :

iroute 8.0.0.0 255.0.0.0

but when i try to put "all" in the ccd file descriptor :

iroute 0.0.0.0 0.0.0.0

openvpn seems to be unable to handle this entry.
Does anyone know how to reach this goal?
Every info is appreciated! Thanks !
Luca

[lzecca]

Actually i did something like this :

Code: Select all

for (( i=1 ; i<=255 ; ++i )) ; do echo iroute $i.0.0.0 255.0.0.0 >> ccd-file;done;

Paying attention to add into the server.conf the following directive :

Code: Select all

max-routes-per-client 50000

Right now is catching every ip i try to reach, althought is not a "clean solution"

[janjust]

Interesting setup... if it's single server / single client I would use a different confiig: instead of client/server I'd use P2P and then route all traffic; in a P2P setup there's no need to use 'iroute'.