[Openvpn-users] Routing Issues

[Misty Stanley-Jones <misty@xxxxxxxxxxxxxx>]

I have the following setup:

VPN Server pushes the following info to clients:
# Corp
push "route 192.168.1.0 255.255.255.0"
# Furn
push "route 192.168.2.0 255.255.255.0"
push "route 192.168.3.0 255.255.255.0"
# Dutch
push "route 192.168.4.0 255.255.255.0"
client-config-dir /usr/local/openvpn/etc/ccd
route 192.168.4.0 255.255.255.0
route 192.168.5.0 255.255.255.0
push "dhcp-option WINS 192.168.1.101"
push "dhcp-options DNS 192.168.1.101"
#push "redirect-gateway"
client-to-client


LAN Subnets on 192.168.1.0, 192.168.2.0, 192.168.3.0
VPN gateway connection to 192.168.4.0 and 192.168.5.0
VPN network itself is 192.168.100.0.

Road Warrior which has static IP address of 192.168.1.106 (this is my test 
box)

When I connect this test box to the VPN the TAP32 interface gets ip address of 
192.168.100.10 as expected.  However, unless I use the option 'push 
"redirect-gateway"' I can ping nothing.  This is because the client uses its 
routes in the wrong order.  It is Windows XP and its routes are like:
# Route from LAN Connection
192.168.1.0    255.255.255.0    192.168.1.106   192.168.1.106       20 
# Route from VPN
192.168.1.0    255.255.255.0    192.168.100.9  192.168.100.10       1

Those two routes are in conflict.  I think the second one needs to be first.  
I do not want to use the "redirect gateway" option because I have some other 
VPN clients which have direct connections to the internet and I do not want 
all those connections getting routed through the VPN machine.  Is there a 
better way for me to push the routes so that I have better control over their 
order in the routing table?

Misty

____________________________________________
Openvpn-users mailing list
Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/openvpn-users