Re: OpenVPN and IP Forwarding

To: debian-user <debian-user@lists.debian.org>
Subject: Re: OpenVPN and IP Forwarding
From: Pascal Hambourg <pascal@plouf.fr.eu.org>
Date: Sat, 19 Jan 2013 15:01:03 +0100
Message-id: <[🔎] 50FAA71F.4070304@plouf.fr.eu.org>
In-reply-to: <653296968.3261.1358243191686.JavaMail.sas@[172.29.249.242]>
References: <653296968.3261.1358243191686.JavaMail.sas@[172.29.249.242]>

cletusjenkins a écrit :
> I can ping the machine from the private network, but not the other way around.

What does this mean exactly ? Please provide the exact commands and output.

Also please provide the output of iptables-save.

> Kernel IP routing table
> Destination     Gateway         Genmask         Flags   MSS Window  irtt Iface
> 10.10.0.1        10.10.0.249     255.255.255.255 UGH       0 0          0 tun0
> 99.88.77.66     11.22.33.44    255.255.255.255 UGH       0 0          0 eth1
> 192.168.2.0     0.0.0.0         255.255.255.255 UH        0 0          0 eth0
> 10.10.0.249     0.0.0.0         255.255.255.255 UH        0 0          0 tun0
> 11.22.33.40     0.0.0.0         255.255.255.252 U         0 0          0 eth1
> 192.168.2.0     0.0.0.0         255.255.255.0   U         0 0          0 eth0
> 0.0.0.0           10.10.0.249     0.0.0.0         UG        0 0          0 tun0

Looks fine, except for the useless route to 192.168.2.0/32.

> I searched and found some instructions with iptables commands that
> would allow ip forwarding over the VPN, but it didn't seem to make
> any difference:

The effect of each single iptables rule may vary depending on the global
ruleset. Hence my request above.

Reply to:

References:
- OpenVPN and IP Forwarding
  - From: cletusjenkins <cletusjenkins@zoho.com>

Prev by Date: Re: 32-bit Kernel on 64-bit CPU?
Next by Date: Re: Why the 64 bit ISA is better
Previous by thread: Re: OpenVPN and IP Forwarding
Next by thread: Install from DVD set
Index(es):
- Date
- Thread