OpenVPN problems
- From: sealinux@xxxxxxxxx
- Date: 23 Jan 2006 23:15:04 -0800
Okay, here's the situation:
I have a three-legged firewall. fxp0 is the external interface with IP
1.2.3.4. fxp1 is the internal interface to my client network, it has
IP 10.0.0.1. sis0 is the interface to the server I want to access
securely via my laptop from, e.g., campus. It has IP address
192.168.0.1. I want to configure OpenVPN to use 172.160.0.0/16 as IPs,
to that end, I did
route add 172.16.0.0/16 192.168.0.1
so the traffic can route to the server.
Below I have the output of the various configuration files, please
advise if I've made any mistakes. As always, any help would be
appreciated.
/etc/bridgename.bridge0:
add fxp1
add tun0
up
/etc/openvpn/server.conf :
port 1194
proto udp
dev tun0
dev-type tap
ca /etc/openvpn/keys/ca.crt
cert /etc/openvpn/keys/server.crt
key /etc/openvpn/keys/server.key
dh /etc/openvpn/keys/dh1024.pem
ifconfig-pool-persist ipp.txt
server-bridge 172.16.0.1 255.255.255.0 172.16.0.2 172.16.0.254
push "route 192.168.0.0 255.255.255.0"
client-to-client
keepalive 10 120
cipher BF-CBC # Blowfish (default)
comp-lzo
user _openvpn
group _openvpn
daemon openvpn
writepid /var/openvpn/pid
persist-key
persist-tun
status openvpn-status.log
verb 4
mute 20
chroot /var/empty
/var/log/daemon
If anyone needs to see anything else, I'll post it, but please advise
if there's anything obviously wrong here.
.
- Follow-Ups:
- Re: OpenVPN problems
- From: jKILLSPAM . schipper
- Re: OpenVPN problems
- Prev by Date: Re: BSD newbie needs help: can't compile 3.8-current on 3.8 original...?
- Next by Date: Re: OpenVPN problems
- Previous by thread: BSD newbie needs help: can't compile 3.8-current on 3.8 original...?
- Next by thread: Re: OpenVPN problems
- Index(es):
Relevant Pages
|
|
