Re: network newbie seeks assistance debugging iptables for VPN tunnel
Tom Roche Wed, 21 Jan 2015 12:50:04 -0500 [1]
>> I need to tunnel one SSL VPN (F5, running on one debian host) through
>> another (OpenVPN, running on another debian host), but lose networking
>> (e.g., `ping`) after the F5 VPN connects. I'm not sure whether this
>> is due to my firewall/iptables or VPN configuration, but suspect the
>> former. Unfortunately I am not knowledgeable regarding networking, so
>> I'd appreciate any assistance you could provide.
...
slightly revised ASCII art
<-MY CONTROL AGENCY CONTROL->
firewall
+----------+ +-----------+ +---------------+ | +---------+
| laptop + | | linode + | | remote-access | | | cluster |
| F5NAP + | <--> | OpenVPN | <--> | website + | <-|-> | node(s) |
| OpenVPN | | server + | | F5VPN server | | | |
| client | | security | | | | | |
+----------+ +-----------+ +---------------+ | +---------+
Matt Ventura Wed, 21 Jan 2015 09:58:38 -0800 [2]
> First thing to check would be the routing table while the VPN is active.
The `route -n` for while the OpenVPN connection is active is here[3], which is part of a longer section[4] with "all the gory details" ...
and thanks! your prompt assistance is appreciated, Tom Roche <Tom_Roche@pobox.com>
[1]: https://lists.debian.org/debian-user/2015/01/msg00732.html
[2]: https://lists.debian.org/debian-user/2015/01/msg00733.html
[3]: https://bitbucket.org/tlroche/linode_jumpbox_config/downloads/client_networking_investigation.txt
[4]: https://bitbucket.org/tlroche/linode_jumpbox_config/wiki/OpenVPN_install#rst-header-dns-problem
Reply to: