librelist archives

« back to archive

Help requested for route command ( To access other side of VPN Server )

Help requested for route command ( To access other side of VPN Server )

From:
Joseph John
Date:
2014-08-07 @ 07:20
Hi All,
I have been success in setting up a OpenVPN server and I am able to connect
to the server from my clients, but clients cannot ping behind VPN eth1
interfaces
ie from my client I can ping VPNServer eth1 (192.168.50.30), but cannot
ping to the other side, It has to do some setting with route command

see this traceroute results from the client

joseph@saji:~$ traceroute 192.168.50.30
traceroute to 192.168.50.30 (192.168.50.30), 30 hops max, 60 byte packets
 1  192.168.50.30 (192.168.50.30)  294.031 ms  294.041 ms  294.050 ms
joseph@saji:~$

but when I do trace route to some IP inside the LAN it stops
joseph@saji:~$ traceroute 192.168.50.10
traceroute to 192.168.50.10 (192.168.50.10), 30 hops max, 60 byte packets
 1  10.28.0.1 (10.28.0.1)  296.795 ms  296.802 ms  296.803 ms
 2  * * *
 3  * * *
 4  * * *

So it reaches till the VPN server tunnel interface (10.28.0.1) then gets
confused, we have to tell the packet from 10.28.0.1 to go to eth1. I tried
with some route command which all was not correct
Like to get help, details of the network are given below



My VPN Client ip is 192.168.3.101

and My VPN Server  interfaces are
eth0= connected to the public IP
eth1= interface is 192.168.50.30/24


I did a openvpn connection from my client to OpenVP Server now
my client interfaces are
eth0 = 192.168.3.101
tun0 = 10.28.0.10

My Server interfaces are
eth0 = Public IP
eth1 = 192.168.50.30/24
tun0 = 10.28.0.1

My Server route -n command shows

[root@reserved-94 openvpn]# route -n
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use
Iface
10.10.10.11     0.0.0.0         255.255.255.255 UH    0      0        0 ppp0
10.28.0.2       0.0.0.0         255.255.255.255 UH    0      0        0 tun0
XXX.XX.XX.XX    0.0.0.0         255.255.255.252 U     1      0        0 eth0
10.28.0.0       10.28.0.2       255.255.255.0   UG    0      0        0 tun0
192.168.50.0    0.0.0.0         255.255.255.0   U     1      0        0 eth1
0.0.0.0         XXX.XX.XX.XX    0.0.0.0         UG    0      0        0 eth0

Advice and help requested
thanks
Joseph John