Hello List,
I have the following setup.
Internet -> VPNServer -> VPNClient -> LAN Subnet
ETH0 TUN0 TUN0 BR0
I have given a /48 netblock from the ISP for my VPN server.
VPNSRV_EXT 2a02:111:2222:333:444:55:666:1/48
VPNSRV_INT 2a02:111:2222:333::1/64
VPNCLN_EXT 2a02:111:2222:333::1000/64
VPNCLN_INT 2a02:111:2222:1::1/64
Up until this point the VPNCLIENT it works by running NDPPD on the servers
public interface advertising the 2a02:111:2222:333::/64 network. The VPNclient
is fully reachable on it's IPV6 address from the outside and it can also
connect anywhere.
Now the next step would be to make it's entire subnet reachable the same way so
I have configured another /64 network on the internal interface which is
basically LAN bridge (br0) and I have enabled ipv6 forwarding on the VPNCLIENT.
If I try to ping the internal bridge ip of this client from the vpn server it
is not reachable, I have even configured ndppd on the tun0 interface to
advertise that network, however I'm not sure that this daemon can operate on
tun interface it might needs tap since it's some layer 2 discovery thingy.
Even if I try to add a static route for the network on the VPN server it does
not go into the tunnel interface:
ip -6 r a 2a02:111:2222:1::/64 via 2a02:111:2222:333::1000
I assume I might messed something up with the subnetting. Any ideas?
Thanks
_______________________________________________
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users
