Hi,
On Mon, Mar 28, 2016 at 3:37 PM, Sumit Dahiya <sumit.dah...@eistech.com>
wrote:
> You are right, our current site-to-site setup does not use OpenVPN.
> Instead,
> it uses router's built-in functionality. Couple of additional facts based
> on
> your comments: -
>
> 1. Our OpenVPN does not run on the router - it runs on a dedicated VPN
> server behind the router.
>
2. We have successfully added additional routes so router can see the VPN
> network and everything works great at Site A.
>
3. We already use --redirect-gateway in OpenVPN server's config file.
>
You mean client's config file ?
> 4. I will draw up a diagram and share it soon.\
>
Assuming any machine on site A can be pinged from the vpn clients, the only
missing route may be one on siteB's router for packets to the vpn clients
to get back. That is, if vpn clients get addresses in 10.8.0.0/24, then
siteB router needs a route to 10.8.0.0/24 via router A.
This is assuming (i) the VPN server forwards packets, (ii) router A has a
route to, say, 10.8.0.0/24 via the vpn server and (iii) either
--redirect-gateway or routes to siteA and siteB through the tunnel are in
the client config.
Selva
------------------------------------------------------------------------------
Transform Data into Opportunity.
Accelerate data analysis in your applications with
Intel Data Analytics Acceleration Library.
Click to learn more.
http://pubads.g.doubleclick.net/gampad/clk?id=278785471&iu=/4140
_______________________________________________
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users
