OpenVPN routing question
-
Hi,
I have the following setup:
I act as OVPN server for two buddies, one site to site and one where the buddy is acting only as client.
My local network is 192.168.5.0/24, the buddy with site2site has 192.168.1.0/24 and the clientbuddy has 192.168.3.0/24.What i want to do is the following:
Enable the clientbuddy to access the site2site buddys network via the OVPN tunnels.So what i did was to push a route to the clientbuddy that said to point traffic with dest 192.168.1.0/24 into the tunnel and will end up at my Pfsense boxs OVPN interface.
This did not however have the wanted effect and traffic is not arriving at target, what am i doing wrong here? Im kinda new to routing so please be gentle :)
Dont know if this is understandable but please ask if i can provide any info to make it clearer, any help to point me at the right direction is much appreciated.
Any Ideas?
Thank you!
-
You'll probably have to push a route back to your buddy's network for the site2site network too.
-
ah right, of course :) Will try this after work and let you know how it works out.
Thank you Bern! -
Please note, that you can only use pushes in a PKI.
For a simple site-to-site connection a PKI is overkill and a PSK setup is better.
You can simply add a route command to the other side of the tunnel. -
Aha thanks for the tip!
So its not possible at all to push routes when using PSK? Is this a "limitation" in Pfsense or OpenVPN ? -
This is how openVPN works.
Not a limitation.For more information read up on http://openVPN.net
The best way to learn how it works is to write a config yourself.
A good start are the example-configs. -
Thats why i put limitation between "" :) I have actually written configs myself, never came across this problem when i did though.
Thank you for all the information GruensFroeschli, you probably saved me a few hours of trying to get this to work.Regards
Chillster -
Hehe. I had to run into this a few times myself until i got it ;)
