Re: [Openvpn-users] Re: Re: Routing forever

  • Subject: Re: [Openvpn-users] Re: Re: Routing forever
  • From: Mathias Sundman <mathias@xxxxxxxxxx>
  • Date: Thu, 20 Jan 2005 15:17:22 +0100 (CET)

On Thu, 20 Jan 2005, Jochen Witte wrote:

I have a rather simple setup:
- 2 static, public ip servers (<pip1>, <pip2>)
- 2 private subnets (,
- OpenVPN network:<->

Here is the picture:

Subnet A                 GW1            GW2           SubnetB<---><--->
                      |                 |

Obviously this is a routing problem (no firewalling, since all packets are
logged for debuggung).

GW1 routes: UH    0      0        0 tun0
<pipnet1> U     0      0        0 eth1   U     0      0        0 eth0   UG    0      0        0 tun0     U     0      0        0 eth1     <default-gw>         UG    0      0        0 eth1

GW2 routes:
<default-gw> UH    0      0        0 ppp0 UH    0      0        0 tun0   UG    0      0        0 tun0     U     0      0        0 eth0         <default-gw>      UG    0      0        0 ppp0

The packets get stuck immediately in the gateway. (GW1 for packets from and GW2 for

Can you see it both on the ethX device and on tun0?

No, I just see it on my internal ethx and then it is gone. I even can't
see it on the external device (e.g. ppp0)

Then I'd bet on a firewall problem after all. If routing is enabled, but you still can't see the packet traverse from ethX to tun0, then it's most likly blocked by netfilter.

If you would have seen it on some other interface, like ppp0, then it would have been a routing problem.

Mathias Sundman                  (^)   ASCII Ribbon Campaign
OpenVPN GUI for Windows           X    NO HTML/RTF in e-mail
http://www.nilings.se/openvpn    / \   NO Word docs in e-mail

