Open VPN Routing Issue Has me Stumped!

bugalou

I posted this over on the OpenVPN forum but I am almost certain this is a routing issue, so the experts here maybe able to help! :)

I have 2 pfSense routers setup, one at my house and one at my parents house.  I successfully got an Open VPN connection up and working between them.  The problem I am running into now is I cannot hit hosts behind the router at my parent's house.  I can ping the router all day long though.  Also, from my parent's side, they can ping my router and all hosts behind it.  I know its something with the routing table but I am not sure what as I am not too familiar with open VPN tunnels.

Here is the data:

My house network: 192.168.0.0 /24   GW 192.168.0.1
Parent's House: 192.168.1.0 /24     GW: 192.168.1.1
VPN Tunnel 192.168.254.1 - 2
Now below are the route tables.  Public ips are xxx'd out a bit.

Parent's House Route Table:  (open vpn client)

default 	75.66.xxx.1 	UGS 	0 	8691 	1500 	fxp1 	 
75.66.xxx.0/21 	link#2 	UC 	0 	0 	1500 	fxp1 	 
75.66.xxx.1 	00:01:5c:24:59:02 	UHLW 	2 	20 	1500 	fxp1 	1200
75.66.xxx.xxx 	127.0.0.1 	UGHS 	0 	0 	16384 	lo0 	 
127.0.0.1 	127.0.0.1 	UH 	1 	0 	16384 	lo0 	 
192.168.1.0/24 	link#1 	UC 	0 	0 	1500 	fxp0 	 
192.168.1.10 	00:16:b6:4b:4e:84 	UHLW 	1 	8 	1500 	fxp0 	1081
192.168.1.11 	00:14:bf:90:6f:d1 	UHLW 	1 	13 	1500 	fxp0 	1179
192.168.1.102 	00:e0:4d:74:77:74 	UHLW 	1 	6467 	1500 	fxp0 	981
192.168.2.0/24 	192.168.254.1 	UGS 	0 	306 	1500 	tun0 	 
192.168.254.1 	192.168.254.2 	UH 	1 	0 	1500 	tun0 	 

My House routing table:  (openvpn server)

default 	75.66.xxx.1 	UGS 	0 	69675 	1500 	dc1 	 
75.66.xxx.0/24 	link#2 	UC 	0 	0 	1500 	dc1 	 
75.66.xxx.1 	00:09:12:80:60:01 	UHLW 	2 	80 	1500 	dc1 	1198
75.66.xxx.xxx 	127.0.0.1 	UGHS 	0 	0 	16384 	lo0 	 
127.0.0.1 	127.0.0.1 	UH 	1 	0 	16384 	lo0 	 
192.168.1.0/24 	192.168.254.2 	UGS 	0 	286 	1500 	tun0 	 
192.168.2.0/24 	link#1 	UC 	0 	0 	1500 	dc0 	 
192.168.2.10 	00:04:23:cd:25:5d 	UHLW 	1 	70 	1500 	dc0 	1096
192.168.2.20 	00:18:f3:6c:1a:ca 	UHLW 	1 	71020 	1500 	dc0 	473
192.168.2.21 	00:03:ff:6e:12:ef 	UHLW 	1 	341 	1500 	dc0 	975
192.168.2.22 	00:16:cf:14:50:49 	UHLW 	1 	256 	1500 	dc0 	1133
192.168.254.2 	192.168.254.1 	UH 	1 	8 	1500 	tun0 	 

Traceroute to remote host from Parent's house (trace to 192.168.2.10):

 1  192.168.254.1 (192.168.254.1)  40.187 ms  24.350 ms  32.570 ms
 2  192.168.2.10 (192.168.2.10)  20.251 ms  18.509 ms  25.925 ms

Traceroute to remote host from my house (trace to 192.168.1.10):

 1  192.168.254.2 (192.168.254.2)  24.495 ms  21.881 ms  24.568 ms
 2  * * *
-continues timing out to max hops-

I have tried adding a push "route 192.168.0.0 255.255.255.0" with no success.
I have also verified my firewall on both sides.  I have it to allow all traffic on the LAN and I see nothing to suspect the firewall is the issue in the system logs.

acidrop

Hi

Try to put these and see if it works:

On the server side of ovpn(let's say that is your box) -> edit -> at the bottom go to custom options and in the box add this line:

route 192.168.1.0 255.255.255.0

On the client side(let's say that is your parents box) ->edit -> custom options:

route add 192.168.0.0 255.255.255.0

hope it helps