Re: [Openvpn-users] First Routed VPN

[Phil Burrow <philburrow@xxxxxxxxxxxxxxxx>]

Bryan Christian wrote:
> My company's been using bridged OpenVPN configurations for some time to connect our offices.  For various reasons we're attempting to move to a routed setup.  At this point we've gotten a test configuration worked out that appears to be functional, however I'm having some issues going the last mile.
>  
> Here's the configuration we're going for
>  
> Network at Location 1 <--> VPN Server  location 1 <-->VPN Server Location 2 <--> Network at Location 2
> 192.168.1.x                  OpenBSD                           OpenBSD                 172.16.21.x
>  
> We're in the middle of moving to a new addressing scheme along with this change.  What I'd like to do is setup a connection between the two servers and have the networks be able to talk in both directions.   I'll be running WINS to keep windows filesharing working and we'll have a secondary AD box at Location 2.  
>  
> What currently works:
> I can ping anything at location 1 from location 2 Server
> I can ping the location 2 server from location 1
>  
> What currently doesn't:
> Location 2 other than the server cannot contact location 1
> Location 1 cannot contact anything but the server at location 2
>  
> What am I missing here?

Hi Bryan,

If you want to be able to access the subnet behind Network 2, you need a 
file in your ccd directory on Server 1 named after Server 2. So if your 
Server 2 had common name "myserver" then create a file ccd/myserver on 
Server 1 and put in it:

iroute 172.16.21.0 255.255.255.0

In addition, add this line into your server.conf on Server 1:

route 172.16.21.0 255.255.255.0

That should do it. :)

Phil



_______________________________________________
Openvpn-users mailing list
Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/openvpn-users