|
|
On Sat, 5 Mar 2005, Mathias Sundman wrote: > On Sat, 5 Mar 2005, Rhaurison Bergamin wrote: > > > After a successful vpn connection, I'm able to ping from the client to > > sub-net behind server , bat i can't ping from any machine behind client. > > routes are ok, iptables too, forward ok... > > > > Mar 5 15:56:38 ras openvpn[10884]: note001/200.222.140.15:32829 MULTI: > > bad source address from client [192.168.100.249], packet dropped By default, an OpenVPN server will only accept packets from the client machine itself, not from any subnet behind the client. In this case, OpenVPN is dropping the packet because it doesn't have an internal route pointing back to the client. You can use client-config-dir/iroute to set this up. > > when i try to ping from behind client for any machine behind server. > > Use --client-config-dir and create a ccd file for your client containing > the iroute option to tell OpenVPN that the 192.168.100.0/24 network is > available behind this client. This is explained in the HOWTO: http://openvpn.net/howto.html#scope James ____________________________________________ Openvpn-users mailing list Openvpn-users@xxxxxxxxxxxxxxxxxxxxx https://lists.sourceforge.net/lists/listinfo/openvpn-users Warning: require_once(../../../archive_common.php) [function.require-once]: failed to open stream: No such file or directory in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2005-03/msg00091.html on line 203 Fatal error: require_once() [function.require]: Failed opening required '../../../archive_common.php' (include_path='/usr/local/lib/php') in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2005-03/msg00091.html on line 203 |