[OpenVPN home] [Date Prev] [Date Index] [Date Next]
[OpenVPN mailing lists] [Thread Prev] [Thread Index] [Thread Next]
Google
 
Web openvpn.net

Re: [Openvpn-users] Newbie VPN setup problems

  • Subject: Re: [Openvpn-users] Newbie VPN setup problems
  • From: Jon Bendtsen <jon.bendtsen@xxxxxxxxxx>
  • Date: Mon, 3 Apr 2006 22:31:58 +0200
Den søndag 2.apr kl. 14:54 skrev Marko Asplund:

Jeffrey Gross wrote: 
it might be that the connection you're establishing with your VPN
is on a different subnet than the rest of your network.

There's instructions on routing here: http://openvpn.net/ howto.html#scope

thanks for the replies.

i read through the references but being a bit new to this it's still not clear to me how i should setup OpenVPN.

here's a bit more background on my network setup:

- OpenVPN setup uses the 10.8.0.0/24 net
- company internal net includes just a single subnet a.b.c.d/25 which uses public IPs
- VPN server is in the internal net (connections to other servers is blocked by the firewall)

my problem, as far as i understand, is that i need to access servers in the same network where the VPN server is located and that their addresses are in public DNS. i can't just route all traffic to a.b.c.d/25 through the VPN since that would also route the tunnel through the tunnel :-)

how is this sort of scenario typically handled with OpenVPN?

Either by adding lots of routes for those machines. Suppose you have a /24.
That /24 can be divided into 2 /25. One of these /25 does NOT contain the
OpenVPN server, so you can just add a route for that /25. The other / 25 can
be divided the same way, untill you get down to just a few hosts arround the
openvpn server. Add /32 routes for these hosts.

The other solution is to look at the --redirect-gateway directive and send ALL
traffic through the tunnel.



JonB

-------------------------------------------------------
This SF.Net email is sponsored by xPML, a groundbreaking scripting language
that extends applications into web and mobile media. Attend the live webcast
and join the prime developer group breaking into this new coding territory!
Openvpn-users mailing list
Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/openvpn-users


Warning: require_once(../../../archive_common.php) [function.require-once]: failed to open stream: No such file or directory in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2006-04/msg00027.html on line 218

Fatal error: require_once() [function.require]: Failed opening required '../../../archive_common.php' (include_path='/usr/local/lib/php') in /home/openvpn/domains/openvpn.net/public_html/archive/openvpn-users/2006-04/msg00027.html on line 218