I'll explain:
Client is a server in a lan with a dynamic public ip. The router forwards port 22 to it and I use dyndns.org to keep me up to date. This is my home network.
Server1 is a dedicated box on the internet with a direct connection and a static ip. It acts as openvpn server for the client.
Server2 is another dedicated box on the internet with a direct connection and static ip.
When VPN on the Client is off:
I can connect to Server2 by ssh. From Server2 I can connect by ssh to the client using the dyndns.org host or the public ip without problems.
When VPN on the Client is on:
I can connect from Server2 to Server1 by ssh. Then I can use the Clients vpn-ip and connect by ssh to the Client.
However I cannot connect anymore from Server2 by ssh to the client using the dyndns.org host or the public ip.
In the lan where the Client is, I can connect from other machines just fine to it's lan ip.
client config:
Code: Select all
client
dev tun
proto udp
remote ks357331.kimsufi.com
resolv-retry infinite
nobind
persist-key
persist-tun
ca ca.crt
cert rubi.crt
key rubi.key
ns-cert-type server
comp-lzo
verb 6
mute 50
log openvpn.logCode: Select all
server 10.8.0.0 255.255.255.0
ifconfig-pool-persist ipp.txt
push "redirect-gateway def1" # leitet den Internettraffic am Client zum Server um
push "dhcp-option DNS 208.67.222.222" # DNS-Server 1
push "dhcp-option DNS 208.67.220.220" # DNS-Server 2 (falls vorhanden)
ping-timer-rem
keepalive 20 180
comp-lzo
user openvpn
group openvpn
persist-key
persist-tun
status openvpn-status.log
verb 6
mute 50
log openvpn.log