Default Gateway through remote VPN client

statisticavg · Post by **statisticavg** » Sat Nov 07, 2020 9:01 am

I've got 1 server and 2 clients. I want to route all traffic from "client2" and any other clients through the VPN but not through the VPN server's default route itself but back through "client" one of the clients on the VPN. Whats the best way to achieve this? Below is my attempt using ifconfig-push and iroute on "client" but how can I configure the "redirect-gateway" directive to route all traffic through "client" instead of the server?

Server: 10.8.0.1
cn="client": 10.8.0.2
cn="client2": 10.8.0.3

server.conf

Server Config

client-config-dir ccd
client-to-client
server 10.8.0.0 255.255.255.0
push "route 10.8.0.2 255.255.255.0"
;push "route 192.168.20.0 255.255.255.0"
push "redirect-gateway def1"
push "dhcp-option DNS 1.1.1.1"

ccd/client

Server Config

ifconfig-push 10.8.0.2 255.255.255.255
iroute 10.8.0.2 255.255.255.255

ccd/client2

Server Config

route 10.8.0.2 255.255.255.0

castle15 · Post by **castle15** » Fri Nov 13, 2020 5:24 pm

I think you should start here viewtopic.php?f=30&t=22603

I'm trying to do the same thing and I got most of it working. I don't think you need this route on ccd/client2 nor push "route ..." and change iroute on ccd/client to

Code: Select all

iroute 0.0.0.0 128.0.0.0

also you need to be able to deal with the traffic from client 2 either by NAT or routing. And if you want all traffic from server to go through client, I'm not really sure how to do it.

I followed this guy's guide adapting a couple of things. Maybe it can help you
P.S. he used all those iroutes instead of what I wrote here but that was a bug and I believe it was fixed so my code should work.
https://astojanov.github.io/blog/2013/0 ... outes.html