[OpenVPN home]	[Date Prev]	[Date Index]	[Date Next]
[OpenVPN mailing lists]	[Thread Prev]	[Thread Index]	[Thread Next]

Re: [Openvpn-users] how to add route to openvpn internal routing table

Subject: Re: [Openvpn-users] how to add route to openvpn internal routing table
From: Konrad Karl <kk_konrad@xxxxxx>
Date: Wed, 5 Oct 2005 14:14:31 +0200

Hi,

On Wed, Oct 05, 2005 at 11:28:17AM +0000, Erich Titl wrote:
> Konrad Karl wrote:
> > Hi,
> > 
> > yes, I know that it may seem wierd what I want to do, but pls
> > look below.
> > 
> > On Wed, Oct 05, 2005 at 01:00:31AM -0500, /dev/rob0 wrote:
> > 
> >>On Tuesday 2005-October-04 09:02, Konrad Karl wrote:
> >>
> >>>---- 192.168.1.1/24 --- eth0 ----
> >>>
> >>>                    | Machine A  |
> >>>                    |
> >>>                    | tun0       |
> >>>                    | 10.100.0.4 |
> >>>
> >>>		    -------------
> >>>                    -------------
> >>>
> >>>                    | Machine M  |
> >>>
> >>>                    -------------
> >>>                    -------------
> >>>
> >>>                    | 10.100.0.8 |
> >>>                    | tun        |
> >>>                    | Machine B  |                           
> >>>                    | -------------------------
> >>>
> >>>		     ----eth0 ----192.168.2.1/24--- ROUTER -- |172.16.1.1/16 Machine D|--
> >>>
> >>>Machines A and B are behind some NATting firewalls, Machine M has got
> >>>an official IP address and is only being used to establish
> >>>connectivity between A and B. (this connectivity is working OK)
> >>
> >>Then it looks like openvpn is not a factor here.
> >>
> >>
> >>>Machine A wants to access machine D via NAT/MASQUERADE on machine B.
> 
> You will need to do some port forwarding on B, else everything looks
> normal. You should not need to worry about M if you port forward
> tunneled traffic. Machine A will address some port on machine B for the
> connection to D.

This was the first thing I tried and failed. The normal usage is that
there is a web  browser running on B and communicating with D. There
is also some Java code involved and this code seems to open connections
to D as well on different ports (no analysis has been done on this so
far).  
Therefore I would like to use masquerading in order to get the forwarding
been done automatically.

I have not yet tried if browsing would work using a proxy on B.

masquerading yes or not, my main question is how to establish routing
(on M) so that e.g the whole subnet of D is accessible from A.
in my (perhaps little) understanding I need the co-operation 
from M in oder to do this but the question is how to tell M to insert
a proper route since the packets are supposed to travel only  from
one virtual endpoint inside M's openvpn server to another one.

(masquerading just came into play because of the firewalling on D)

Thanks for your time,

Konrad

____________________________________________
Openvpn-users mailing list
Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/openvpn-users

References:
- Re: [Openvpn-users] how to add route to openvpn internal routing table
  - From: /dev/rob0
- Re: [Openvpn-users] how to add route to openvpn internal routing table
  - From: Erich Titl

Prev by Date: Re: [Openvpn-users] Re: Can tunneled TCP connections survive Internet connection interruption?
Next by Date: Re: [Openvpn-users] Re: Can tunneled TCP connections survive Internet connection interruption?
Previous by thread: Re: [Openvpn-users] how to add route to openvpn internal routing table
Next by thread: Re: [Openvpn-users] how to add route to openvpn internal routing table
Index(es):
- Date
- Thread