[Openvpn-users] routing between 2 openvpn instances

[Sunny <sloncho@xxxxxxxxx>]

Hi,
I have the following setup:

prodvpn - this is the production firewall, which runs openvpn as
server. it allows client connections, and access to the machines
behind it. tuns on tun0, 10.136.136.0 virtual network

officevpn - runs as as client for prodvpn, allowing access from the
internal network (192.168.x.x) to the production machines, using tun0
and the same virtual network 10.136.136.0.

Now, I'm trying to setup the officevpn to accept client connections,
so I can connect while I'm on the road. I created a second .conf file,
which acts as server, opening tun1 device and using 10.136.135.0 virt.
network. I set up routing, etc. When a client connects to this vpn,
everything works as expected - I can access from a remote client the
internal network (192.168.x.x).

But, for some reason, I can not access the prodvpn trough this
connection. Looks like it does not route between tun1 (connected
client) and tun0 (which is the connection to the prodvpn).

In the firewall logs, I do not see any rejected packages. I set a NAT,
so all connected clients are visible as 192.168.x.x, as well, as I do
allow 192.168.x.x to access everywhere.

So, in summary - from the office machines I can access prod machines
over the vpn gateway

>From a client to the office network I can access everything OK. But I
can not reach the prod network.

Is there something special I have to do to allow routing between 2
openvpn instances running on the same machine as client and server?



-- 
--
Svetoslav Milenov (Sunny)

Windows is a 32-bit extension to a 16-bit graphical shell for an 8-bit
operating system originally coded for a 4-bit microprocessor by a
2-bit company that can't stand 1 bit of competition.
______________________
OpenVPN mailing lists
https://lists.sourceforge.net/lists/listinfo/openvpn-users