Re: [Openvpn-users] easy-rsa

Sat, 30 Dec 2023 14:10:39 -0800
The original server from which I took all of these initial settings was and still is working perfectly. I am building this new server as the original one is at it's EOL though I am not testing the new one in the production servers environment until I am fairly certain that it might work. 


This is actually a migration of openvpn 2.4 to 2.5 as well as the 
supporting dependencies such as open ssl, System D, Easy-rsa. ...


I'll check out SNAT possibilities.

Thanks so much for all of the invaluable help thus far.


Richard




On 12/30/23 14:40, Antonio Quartulli wrote:

Hi,

On 30/12/2023 21:35, Richard Couture wrote:

Things look good but I can NOT reach the desired net 192.168.51.0/24 
via the VPN



First of all, I'd like to say that here we are moving from problem to 
problem and they are all being *addressed* one by one :-)



You started with easy-rsa and now we are talking about routing networks 
behinda server :-)


This said, do hosts in 192.168.51.0/24 have a route towards 10.34.0.0/24?

If not, how do you expect them to send traffic back to your VPN client?

You have two options here:
1) find a way for those hosts to have a route towards the VPN;

2) enable NAT on the server. this way it will be the server's IP to 
reach 192.168.51.0/24 and the connection will/should work.


Did this work before?

Cheers,






--
LinuxCabal Asociación Civil
Ing. Richard Couture
Novell CNE, ECNE, MCNE
HP/Compaq ASE
Cel.: (+52) 333 377-7505
Web: http://www.LinuxCabal.org
E-Mail: r...@linuxcabal.org
Hosted en la nube Cloud Sigma - www.CloudSigma.com


AVISO DE CONFIDENCIALIDAD: Este correo electrónico, incluyendo en su 
caso, los archivos adjuntos al mismo, pueden contener información de 
carácter confidencial y/o privilegiada, y se envían a la atención única 
y exclusivamente de la persona y/o entidad a quien va dirigido. La 
copia, revisión, uso, revelación y/o distribución de dicha información 
confidencial sin la autorización por escrito de LinuxCabal está 
prohibida. Si usted no es el destinatario a quien se dirige el presente 
correo, favor de contactar al remitente respondiendo al presente correo 
y eliminar el correo original incluyendo sus archivos, así como 
cualesquiera copia del mismo. Mediante la recepción del presente correo 
usted reconoce y acepta que en caso de incumplimiento de su parte y/o de 
sus representantes a los términos antes mencionados, LinuxCabal tendrá 
derecho a los daños y perjuicios que esto le cause.




_______________________________________________
Openvpn-users mailing list
Openvpn-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openvpn-users

























					Reply via email to