[Openvpn-users] First Routed VPN

["Bryan Christian" <bchristian@xxxxxxxxxxx>]

My company's been using bridged OpenVPN configurations for some time to connect our offices.  For various reasons we're attempting to move to a routed setup.  At this point we've gotten a test configuration worked out that appears to be functional, however I'm having some issues going the last mile.
 
Here's the configuration we're going for
 
Network at Location 1 <--> VPN Server  location 1 <-->VPN Server Location 2 <--> Network at Location 2
192.168.1.x                  OpenBSD                           OpenBSD                 172.16.21.x
 
We're in the middle of moving to a new addressing scheme along with this change.  What I'd like to do is setup a connection between the two servers and have the networks be able to talk in both directions.   I'll be running WINS to keep windows filesharing working and we'll have a secondary AD box at Location 2.  
 
What currently works:
I can ping anything at location 1 from location 2 Server
I can ping the location 2 server from location 1
 
What currently doesn't:
Location 2 other than the server cannot contact location 1
Location 1 cannot contact anything but the server at location 2
 
What am I missing here?
 
Configuration files are:
Server Location 1:
port 5001
dev-type tun
dev tun3
daemon
keepalive 5 15
persist-tun
server 172.16.21.0 255.255.255.0
push "route 192.168.1.0 255.255.255.0"

tun-mtu 1469
tun-mtu-extra 32
mssfix 1200
replay-window 64 15
 
tls-server
*Key info removed to cut length
mlock

Server Location 2:
client
port 5001
dev-type tun
dev tun0
daemon
keepalive 5 15
persist-tun
persist-key

remote 192.168.0.5
remote 192.168.0.2

#tcp stuff
#comp-lzo
tun-mtu 1469
tun-mtu-extra 32
mssfix 1200
replay-window 64 15
float
 
tls-client
ns-cert-type server
*Key info removed to cut length
mlock

 
Bryan Christian


_______________________________________________
Openvpn-users mailing list
Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/openvpn-users