Access LAN behind OpenVPN server

[AndyV]

Hey Guys. I have for hours now been trying connect to the lan behind a openvpn server. i Have been searching though this forum but not found a solution and therefore i hope you might assist me if i share my configs.

The openvpn server i an windows server, and i have both enabled forwarding in registration database and also disabled the firewall for the tap device.

My vpn network is 10.0.99.0/24 (i write "server 10.0.99.0 255.255.255.0" in server conf but the server gets 10.0.99.5 and the client gets 10.0.99.6 - which i find odd? )
the lan i would like to connect to from clients are 10.0.88.0/24


Any help is very much appriciated! Thanks.

Server Conf:

Code: Select all

port 1194
proto udp
dev tun
ca "C:\\Program Files (x86)\\OpenVPN\\config\\keys\\ca.crt"
cert "C:\\Program Files (x86)\\OpenVPN\\config\\keys\\server.crt"
key "C:\\Program Files (x86)\\OpenVPN\\config\\keys\\server.key"  
dh "C:\\Program Files (x86)\\OpenVPN\\config\\keys\\dh1024.pem"
server 10.0.99.0 255.255.255.0
ifconfig-pool-persist "C:\\Program Files (x86)\\OpenVPN\\config\\ipp.txt"
push "route 10.0.88.0 255.255.255.0"
push "route 89.221.163.208 255.255.255.240"
route 10.0.88.0 255.255.255.0
keepalive 10 120
comp-lzo
persist-key
persist-tun
verb 3
mute 20
mute-replay-warnings

Client conf:

Code: Select all

client
dev tun
proto udp
remote vpn.domain.xx 1194
resolv-retry infinite
nobind
persist-key
persist-tun
ca C:\\openvpn\\config\\keys1\\ca.crt
cert C:\\openvpn\\config\\keys1\\andy2.crt
key C:\\openvpn\\config\\keys1\\andy2.key
ns-cert-type server
comp-lzo
verb 3
route add 10.0.88.0 mask 255.255.255.0 gw 10.0.88.199
route add 10.0.99.0 mask 255.255.255.0 gw 10.0.88.199

[AndyV]

Any thought on this, anyone? should i add any routes in my firewall? im running an mikrotik RouterOS as firewall.

i have removes

Code: Select all

 route 10.0.88.0 255.255.255.0 

from the server conf (cannot edit my post)