OpenVPN Support Forum

Ok, I must be dumb but I'm sick of semi-answers gathered in some other places that don't help , so here my is precise question:

- Site A has an internal subnet of 192.168.2.0/24 and an external address of xxx.xxx.com (dynDNS), the main router redirecting port 1194 to an OpenWRT 19.07.3 box running OpenVPN (but that doesn't matter I guess, let's just say it's Unix/Linux box)

- Site B has an internal subnet of 192.168.3.0/24 and an external address of yyy.yyy.com (dynDNS), the main router redirecting port 1194 to a pure Linux box running OpenVPN.

Now how do I setup OpenVPN to have a permanent resilient bidirectional tunnel between both sites, where everyone in 192.168.2.x can see everyone in 192.168.3.x and vice-versa, with no limitation at all?

This question might sound overly simplistic, but so far I've not had a simple and clear answer, so sorry about my current mood as I'm not a total beginner I'm just late in the game

you need to read how to so you learn how it works , free software mean we do it our self so this is your job , when you do some thing stuck you can post in here so some one can help you but the main thing is your job first. no one will write a step by step how to make site to site with openvpn for you . if you can hide someone can do that job for you.

You really have to start here:
https://community.openvpn.net/openvpn/wiki/HOWTO

If you encounter problems then first read here:
viewtopic.php?t=22603

Mmmmhh thanks, that does sound a lot to what I used to tell Unix/Linux beginners: "man man"
In my case, it's not the step by step instructions that I need but an understanding of how OpenVPN can handle bidirectional resilient tunnels, such as do you need a single server/client or a pair of them, etc.

it's not the step by step instructions that I need but an understanding of how OpenVPN can handle bidirectional resilient tunnels

In that case also take a look at:
https://community.openvpn.net/openvpn/w ... gConflicts
or a bit more detailed:
https://community.openvpn.net/openvpn/w ... acketsFlow

zefox wrote: ↑

Fri Sep 04, 2020 12:51 pm

I must be dumb but I'm sick of semi-answers gathered in some other places that don't help

Maybe you asked in the wrong places.

Pippin wrote: ↑

Fri Sep 04, 2020 4:24 pm

You really have to start here:
https://community.openvpn.net/openvpn/wiki/HOWTO

If you encounter problems then first read here:
viewtopic.php?t=22603

Good answer

zefox wrote: ↑

Fri Sep 04, 2020 12:51 pm

how do I setup OpenVPN to have a permanent resilient bidirectional tunnel between both sites, where everyone in 192.168.2.x can see everyone in 192.168.3.x and vice-versa

See above.

zefox wrote: ↑

Fri Sep 04, 2020 12:51 pm

with no limitation at all?

When you ask such a question you give yourself away ..
There is no such thing as no limitations when it comes to networking.

zefox wrote: ↑

Mon Sep 07, 2020 4:56 pm

that does sound a lot to what I used to tell Unix/Linux beginners: "man man"

A seasoned professional like yourself should have no difficulty understanding the howto.

"give myself away"... lol... I don't think you quite understand where I'm coming from : I used to be top of the game 25/30 years ago as a system administrator but I lost myself in financial applications since, so anyone lecturing me about basic TCP/IP is an annoyance, but I'm a pure virgin as far as OpenVPN goes. So yes it ends up with me being frustrated by the answers and the others resenting me as an impostor who doesn't really understand what he's talking about.
So be it, what can I say in my defense? I don't have time anymore to build a few boxes and play with them as I used to, but I'm not stupid and I can perfectly understand straight answers without going through all the manuals, now if that it too much to ask, I will play the game once more but please understand that system administration is not what I do anymore in a professional environment, I'm just trying to establish a clean resilient tunnel between my two homes.
Anyway, the joke is on myself, I realize it as I have been in your shoes for quite a long time, how ironic is that?
Now I'm going to follow Pippin links, hoping they are going to clarify a bit more.

If you only want to connect two home with very simple to do . Buy two gl.inet router . That router have wireguard server and wireguard client .with under 10 click to setup and you got site to site connection between two home under 2 minutes setup. Wireguard work point to point connection as openvpn and it works faster too.

If i were you i didnt come here to ask first but going to help section to reading as many as possible and gap the basic thing. After that setup myself a system as i like and if i have a trouble somewhere i would like to ask a help but i will give out full of what i did and what i want to do