[OpenVPN home] [Date Prev] [Date Index] [Date Next]
[OpenVPN mailing lists] [Thread Prev] [Thread Index] [Thread Next]
Web openvpn.net

Re: [Openvpn-users] Possible routing problem

Title: [Openvpn-users] Possible routing problem
Is there any difference between the routing tables on client A and client B ?

From: openvpn-users-bounces@xxxxxxxxxxxxxxxxxxxxx on behalf of Daniel L. Miller
Sent: Tue 28-Aug-07 01:20
To: openvpn-users@xxxxxxxxxxxxxxxxxxxxx
Subject: [Openvpn-users] Possible routing problem


I'm trying to reach a vpn client from an internal workstation.  The setup:

Linux OpenVPN server, LAN address, routed TUN address
Windows XP OpenVPN client "B", VPN address
Windows XP OpenVPN client "A", VPN address
Windows XP LAN Workstation (well, technically virtual workstation on
OpenVPN server),

 From the OpenVPN server, I can ping any of the above.  Some routing and
address output: dev tun0  proto kernel  scope link  src dev vmnet8  proto kernel  scope link  src via dev tun0 dev eth0  proto kernel  scope link  src dev br1  proto kernel  scope link  src dev vmnet1  proto kernel  scope link  src
default via dev eth0

8: tun0: <POINTOPOINT,MULTICAST,NOARP,UP,10000> mtu 1500 qdisc
pfifo_fast qlen 100
    inet peer scope global tun0

BTW - I don't know what that "peer" means - I can't ping it
from anywhere.

On the virtual workstation, I have executed some routing commands, like,
"route add mask".  The routing
table now shows:
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
                         10             1             1                 
         1           10            10         10                    10       1
Default Gateway:

 From this workstation, I can ping (the server) and
(workstation "A").  However, I cannot ping workstation "B".  But I CAN
ping workstation "B" from the server.  From this I deduce workstation
"B" is configured reasonably well, and there's no firewall or routing
issues on that workstation (or the server couldn't reach it).  But why
can I not ping that workstation from another workstation - when I can do
so for others?

This SF.net email is sponsored by: Splunk Inc.
Still grepping through log files to find problems?  Stop.
Now Search log events and configuration files using AJAX and a browser.
Download your FREE copy of Splunk now >>  http://get.splunk.com/
Openvpn-users mailing list