On 2014-07-27 18:04, Stefan Sieg wrote:
On 27.07.2014 13:46, Gordon Turner wrote:
On 2014-07-27 08:06, Stefan Sieg wrote:
>On 26.07.2014 17:34, Gordon Turner wrote:
and you need a route to 10.0.0.0/24 for the hosts in your
192.168.2.0/24 network.
Without that route your hosts in your LAN have no idea how to reach
10.0.0.0/24. This is needed because your VPN is not terminated on your
default gateway.
If the address of your OpenBSD box is assigned by dhcp, then you should
change
that to static and use this as the gateway to 10.0.0.0/24.
The OpenBSD ip (192.168.2.232) is statically assigned by the dhcp
server.
I added a static route to my router / firewall:
Destination: 10.0.0.0
Gateway: 192.168.2.232
Subnet Mask: 255.255.255.0
But testing with an iOS device that doesn't seem to be enough.
Do I have to add routing on the OpenBSD box?
If this is your whole config then actually everything is allowed,
you might want to change that ... the pf faq is really good.
Yeah, definitely, once I get the routing sorted.
Gord
