Issue sending traffic over openvpn

kr0490

ok so after a reboot the VPN is established again, but still cannot ping either side

kr0490

@kr0490 So just to be clear the tunnel network which is the 10.X.X.X is supposed to be different from the remote network which i have as a 192.168.3.1/24 network, and i cannot ping the 3.1 from the server side network, and cannot ping the 1.1/24 network from the remote side

viragomann

@kr0490 said in Issue sending traffic over openvpn:

So just to be clear the tunnel network which is the 10.X.X.X is supposed to be different from the remote network which i have as a 192.168.3.1/24 network

Yes, but both are NETWORKS.
And a /24 network EVER has a 0 at the end!

kr0490

@kr0490 yep i checked, not sure what else is causing traffic to not route accross :(

viragomann

@kr0490
Consider that the destination device can block access from the remote or from outside in general by its own firewall.

For further investigation post the routing tables of both nodes.

kr0490

@viragomann I have an allow all rule on the open vpn interface on both sides

kr0490

@kr0490
Server Side
Destination Gateway Flags Use Mtu Netif Expire
default REDACTED PUBLIC IP UGS 17340 1500 igb0
REDACTED PUBLIC IP/22 link#1 U 9544 1500 igb0
REDACTED PUBLIC IP link#1 UHS 0 16384 lo0
127.0.0.1 link#7 UH 43 16384 lo0
172.16.12.0/24 172.16.12.2 UGS 0 1500 ovpns1
172.16.12.1 link#10 UHS 0 16384 lo0
172.16.12.2 link#10 UH 6977 1500 ovpns1
192.168.1.0/24 link#2 U 497896 1500 igb1
192.168.1.1 link#2 UHS 0 16384 lo0
192.168.2.254 b4:fb:e4:86:40:10 UHS 3 1500 igb0

kr0490

REMOTE/CLIENT

IPv4 Routes
Destination Gateway Flags Use Mtu Netif Expire
default 192.168.0.1 UGS 8490 1500 re1
10.0.0.1 link#7 UH 0 1500 ovpnc1
10.0.0.2 link#7 UHS 0 16384 lo0
127.0.0.1 link#4 UH 32 16384 lo0
192.168.0.0/24 link#2 U 0 1500 re1
192.168.0.1 78:45:c4:24:e8:90 UHS 9632 1500 re1
192.168.0.50 link#2 UHS 0 16384 lo0
192.168.1.0/24 10.0.0.1 UGS 3 1500 ovpnc1
192.168.3.0/24 link#1 U 3465 1500 re0
192.168.3.1 link#1 UHS 0 16384 lo0

kr0490

@kr0490
I don’t see routes for either remote networks on the other side boxes

viragomann

@kr0490
Cannot find any matching VPN tunnel here.
On the server you have 172.16.12.0/24.
And on the client 10.0.0.2.

kr0490

@viragomann that 172.16 is my personal vpn from my laptop to the server, not the site to site, i checked the site to side is both set to 10.0.0.1/30 on both sides

viragomann

@kr0490 said in Issue sending traffic over openvpn:

i checked the site to side is both set to 10.0.0.1/30 on both sides

But it is not shown up on the server. So there might be something wrong in the settings.

kr0490

@viragomann hmmm I’m not sure where it would be

kr0490

@kr0490 I checked and can’t find a misconfiguration with ips. Do I need to create some kind of routing entry?

kr0490

@kr0490 by adding an interface i now see the proper route tables showing, below is an example from the server. But still cannot ping or access things on the opposite network.

IPv4 Routes
Destination Gateway Flags Use Mtu Netif Expire
default 76.223.240.1 UGS 3979 1500 igb0
10.0.0.1 link#11 UHS 0 16384 lo0
10.0.0.2 link#11 UH 0 1500 ovpns2
76.223.240.0/22 link#1 U 277 1500 igb0
76.223.240.119 link#1 UHS 0 16384 lo0
127.0.0.1 link#7 UH 41 16384 lo0
172.16.12.0/24 172.16.12.2 UGS 0 1500 ovpns1
172.16.12.1 link#10 UHS 0 16384 lo0
172.16.12.2 link#10 UH 2544 1500 ovpns1
192.168.1.0/24 link#2 U 14718 1500 igb1
192.168.1.1 link#2 UHS 0 16384 lo0
192.168.2.254 b4:fb:e4:86:40:10 UHS 1 1500 igb0
192.168.3.0/24 10.0.0.2 UGS 0 1500 ovpns2

kr0490

@kr0490 got it working, added interface on both for open vpn, and then added some firewall rules, now it’s all good! Thanks for all the help!