OpenVPN Support Forum

Community Support Forum
https://forums.openvpn.net/

iroute 0.0.0.0 0.0.0.0 or alternatives

https://forums.openvpn.net/viewtopic.php?t=13095

Page 1 of 1

iroute 0.0.0.0 0.0.0.0 or alternatives

Posted: Thu Jun 06, 2013 9:52 am
by lzecca
Hi guys,
i am wondering if there is a solution or trick for the following situation :

|vpn_client|---------- |internet| -----------|vpn-server|------|lan_1|

All i want is that all traffic from |lan_1| pass throught |vpn_client|.
All seems to work fine till when i specify in the ccd file single subnet as follow for example :

iroute 8.0.0.0 255.0.0.0

but when i try to put "all" in the ccd file descriptor :

iroute 0.0.0.0 0.0.0.0

openvpn seems to be unable to handle this entry.
Does anyone know how to reach this goal?
Every info is appreciated! Thanks !
Luca

Re: iroute 0.0.0.0 0.0.0.0 or alternatives

Posted: Thu Jun 06, 2013 10:27 am
by lzecca
Actually i did something like this :

Code: Select all

for (( i=1 ; i<=255 ; ++i )) ; do echo iroute $i.0.0.0 255.0.0.0 >> ccd-file;done;
Paying attention to add into the server.conf the following directive :

Code: Select all

max-routes-per-client 50000
Right now is catching every ip i try to reach, althought is not a "clean solution" :cry:

Re: iroute 0.0.0.0 0.0.0.0 or alternatives

Posted: Fri Jun 07, 2013 9:10 am
by janjust
Interesting setup... if it's single server / single client I would use a different confiig: instead of client/server I'd use P2P and then route all traffic; in a P2P setup there's no need to use 'iroute'.
All times are UTC
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/