I'm a software programmer and not familiar with advanced network routing, I tried to follow community resources but still can't get my setup to work, here is my setup:
Office Network
PFSense
Open VPN Server configured:
- Server mode: Remote Access (SSL/TLS)
- Device mode: tun
- Tunnel network: 172.21.20.0/24
- Custom options:
Code: Select all
route 192.168.222.0 255.255.255.0; push "route 192.168.222.0 255.255.255.0"; client-to-client;
- Client Specific Overrides (for Client A):
Code: Select all
iroute 192.168.222.0 255.255.255.0;
Client A
Ubuntu server with 2 NICs (one physical, one usb).
- enp3s0 (physical): Static IP 192.168.222.2, connected directly to a Siemen PLC (also static IP, no router here)
- enx* (usb dongle): 192.168.1.60, configured DHCP on local network with internet.
- tun0 (openvpn ip): 172.21.20.2
- Static IP: 192.168.222.223, connected directly to the physical ethernet enp3s0 of the client above (no router, all static ips)
Client B
Any computer connected to VPN, in my case a Technician with a laptop
- VPN IP: 172.21.20.2
Code: Select all
10:30:06.117494 ip: 172.21.20.2 > 192.168.222.223: ICMP echo request, id 1, seq 4802, length 40
10:30:09.193062 ip: 172.21.20.3 > 172.21.20.2: ICMP host 192.168.222.223 unreachable, length 68