The client connects, and I can ssh into the client. I can ping back into my network. All of that works.
Now I want to use the openvpn client as a gateway to the subnet it's attached to. No joy. I can route packets into the openvpn tunnel; I can see it with tcpdump, and NOTHING comes out the other end.
Code: Select all
VPN Server (192.168.4.x) <---> Openvpn tunnel (192.168.2.x) <---> VPN Client subnet (10.0.1.x)
Code: Select all
root@AP1:~# ip route show table bluebell
default via 192.168.2.1 dev tun1
192.168.4.0/24 via 192.168.4.1 dev eth1.4
root@AP1:~# ip rule show
0: from all lookup 128
1: from all lookup local
16383: from 192.168.4.99 lookup bluebell
32766: from all lookup main
32767: from all lookup default
root@AP1:~#
Code: Select all
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
default 10.0.1.1 0.0.0.0 UG 0 0 0 eth0.2
10.0.1.0 * 255.255.255.0 U 0 0 0 eth0.2
10.0.1.1 * 255.255.255.255 UH 0 0 0 eth0.2
192.168.1.0 * 255.255.255.0 U 0 0 0 br-lan
192.168.2.1 192.168.2.5 255.255.255.255 UGH 0 0 0 tun0
192.168.2.5 * 255.255.255.255 UH 0 0 0 tun0
192.168.4.0 192.168.2.5 255.255.255.0 UG 0 0 0 tun0
I have my iptables rules set up to allow input, output, and forwarding on the tun interfaces on both server and client.
tcpdump shows packets bound for 10.0.1.x entering the tunnel on the server, but no packets leaving the tunnel.
What can I try to remedy this?