Site to Site problems.
Moderators: TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech, TinCanTech
-
- OpenVpn Newbie
- Posts: 2
- Joined: Thu Dec 22, 2011 4:18 am
Site to Site problems.
Ok Computers from both networks can ping each other.
The client and server can ping each other but not other devices...They respond to pings if they are the destination NOT the source.
So whats happening is when you ping from the client or server the source packet is the tunnel interface, not the LAN interface. So other devices on each network does not know about the tunnel interface network just their own and the other end of the VPN.
I could just add a route on both ends, but the server will have 2 tunnels and host cluster witness file shares. This is a hosted machine so I don't want to buy 1 machine for just OpenVpn and another to host file shares.
So I need the server to source packets with its LAN address not its tunnel address even if its going to the remote network.
Is such a thing possible?
The client and server can ping each other but not other devices...They respond to pings if they are the destination NOT the source.
So whats happening is when you ping from the client or server the source packet is the tunnel interface, not the LAN interface. So other devices on each network does not know about the tunnel interface network just their own and the other end of the VPN.
I could just add a route on both ends, but the server will have 2 tunnels and host cluster witness file shares. This is a hosted machine so I don't want to buy 1 machine for just OpenVpn and another to host file shares.
So I need the server to source packets with its LAN address not its tunnel address even if its going to the remote network.
Is such a thing possible?
- Mimiko
- Forum Team
- Posts: 1564
- Joined: Wed Sep 22, 2010 3:18 am
Re: Site to Site problems.
Yes, using iptables and masquerading.Is such a thing possible?
-
- OpenVpn Newbie
- Posts: 1
- Joined: Thu Jan 05, 2012 10:15 pm
Re: Site to Site problems.
Hi. I did not know that this is possible. Thank you for sharing the information. =)
-
- OpenVpn Newbie
- Posts: 1
- Joined: Sat Jan 07, 2012 5:22 am
Re: Site to Site problems.
Thanks a lot. It was helpful for me too.
- Mimiko
- Forum Team
- Posts: 1564
- Joined: Wed Sep 22, 2010 3:18 am
Re: Site to Site problems.
See method 4 from topic9465.htmllupitarupert wrote:but how??
-
- OpenVpn Newbie
- Posts: 1
- Joined: Sun Jan 08, 2012 4:19 am
Re: Site to Site problems.
Yes but generally the masquerading isn't very efficient. Unless you know of a better way to do it than I do...Mimiko wrote:Yes, using iptables and masquerading.Is such a thing possible?
- Mimiko
- Forum Team
- Posts: 1564
- Joined: Wed Sep 22, 2010 3:18 am
Re: Site to Site problems.
Using netmask option of iptables.fanbi wrote:Unless you know of a better way to do it than I do...
-
- OpenVpn Newbie
- Posts: 1
- Joined: Sat May 12, 2012 6:53 am
- Location: united states
- Contact:
Re: Site to Site problems.
Recheck all the software...may be hardware connecting software....... or there can be virus problem into the system....