I have my OpenVPN server running on network 10.10.24.0 and all my clients connect in great. I have a persistent tunnel enabled on my firewall that all the PC's in the office can access machines in a cloud network this network is 10.11.24.0.
The problem is that my client configurations (outside the office) do not connect to the 10.11.24.0 network. Everything is routed out through there local networks and of course it cannot locate 10.11.
Can I specify a route in the individual config files to allow this? Do you need to see config files?
client
dev tap
proto tcp
remote xx.xx.xx.xxx 1194
resolv-retry infinite
nobind
ca ca.crt
cert worm.crt
key worm.key
tls-auth ta.key 1
cipher AES-256-CBC
ns-cert-type server
comp-lzo
verb 1
Can't connect client through tunnel to VM
Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech
-
adminbhc
- OpenVpn Newbie
- Posts: 3
- Joined: Fri Jan 25, 2013 1:56 pm
-
adminbhc
- OpenVpn Newbie
- Posts: 3
- Joined: Fri Jan 25, 2013 1:56 pm
Re: Can't connect client through tunnel to VM
port 1194
proto tcp
dev tap
dev-node TAP
ca ca.crt
cert server.crt
key server.key
dh dh1024.pem
tls-auth ta.key 0
cipher AES-256-CBC
crl-verify crl.pem
server-bridge 10.10.24.18 255.255.255.0 10.10.24.231 10.10.24.250
push “route 10.11.24.0 255.255.255.0”
client-to-client
keepalive 10 120
comp-lzo
persist-key
persist-tun
push "dhcp-option DOMAIN www.xxxxxxxxxxxx.com"
push "dhcp-option DNS 10.10.24.5"
status openvpn-status.log
verb 3
Here is my server config. I added the "Push route" for 10.11.24.0 but still having problems connecting.
proto tcp
dev tap
dev-node TAP
ca ca.crt
cert server.crt
key server.key
dh dh1024.pem
tls-auth ta.key 0
cipher AES-256-CBC
crl-verify crl.pem
server-bridge 10.10.24.18 255.255.255.0 10.10.24.231 10.10.24.250
push “route 10.11.24.0 255.255.255.0”
client-to-client
keepalive 10 120
comp-lzo
persist-key
persist-tun
push "dhcp-option DOMAIN www.xxxxxxxxxxxx.com"
push "dhcp-option DNS 10.10.24.5"
status openvpn-status.log
verb 3
Here is my server config. I added the "Push route" for 10.11.24.0 but still having problems connecting.
-
janjust
- Forum Team
- Posts: 2703
- Joined: Fri Aug 20, 2010 2:57 pm
- Location: Amsterdam
- Contact:
Re: Can't connect client through tunnel to VM
first of all, you're not trying to do something that's impossible.
Two remarks:
1) do you really need bridging? it gives you a nice performance hit and a lot of users don't really need it. The advantage is that the VPN clients will get an IP address from the same range as the LAN
2) are all forwarding rules set up correctly on the VPN server, both for LAN and cloud access? think of routes, iptables, etc etc *on the VPN server*
Two remarks:
1) do you really need bridging? it gives you a nice performance hit and a lot of users don't really need it. The advantage is that the VPN clients will get an IP address from the same range as the LAN
2) are all forwarding rules set up correctly on the VPN server, both for LAN and cloud access? think of routes, iptables, etc etc *on the VPN server*
-
adminbhc
- OpenVpn Newbie
- Posts: 3
- Joined: Fri Jan 25, 2013 1:56 pm
Re: Can't connect client through tunnel to VM
I probably don't require bridging. It was setup that way when I got here. All the client keys are created that way and I am not sure I want to edit them all at this point.
I have enable IP forwarding on the VPN server. I am unsure of how to do the other recommended changes to the server.
tap/tun forwarding, iptables, etc?
I have enable IP forwarding on the VPN server. I am unsure of how to do the other recommended changes to the server.
tap/tun forwarding, iptables, etc?