Open VPN Routing Issue Has me Stumped!
-
I posted this over on the OpenVPN forum but I am almost certain this is a routing issue, so the experts here maybe able to help! :)
I have 2 pfSense routers setup, one at my house and one at my parents house. I successfully got an Open VPN connection up and working between them. The problem I am running into now is I cannot hit hosts behind the router at my parent's house. I can ping the router all day long though. Also, from my parent's side, they can ping my router and all hosts behind it. I know its something with the routing table but I am not sure what as I am not too familiar with open VPN tunnels.
Here is the data:
My house network: 192.168.0.0 /24 GW 192.168.0.1
Parent's House: 192.168.1.0 /24 GW: 192.168.1.1
VPN Tunnel 192.168.254.1 - 2
Now below are the route tables. Public ips are xxx'd out a bit.Parent's House Route Table: (open vpn client)
default 75.66.xxx.1 UGS 0 8691 1500 fxp1 75.66.xxx.0/21 link#2 UC 0 0 1500 fxp1 75.66.xxx.1 00:01:5c:24:59:02 UHLW 2 20 1500 fxp1 1200 75.66.xxx.xxx 127.0.0.1 UGHS 0 0 16384 lo0 127.0.0.1 127.0.0.1 UH 1 0 16384 lo0 192.168.1.0/24 link#1 UC 0 0 1500 fxp0 192.168.1.10 00:16:b6:4b:4e:84 UHLW 1 8 1500 fxp0 1081 192.168.1.11 00:14:bf:90:6f:d1 UHLW 1 13 1500 fxp0 1179 192.168.1.102 00:e0:4d:74:77:74 UHLW 1 6467 1500 fxp0 981 192.168.2.0/24 192.168.254.1 UGS 0 306 1500 tun0 192.168.254.1 192.168.254.2 UH 1 0 1500 tun0
My House routing table: (openvpn server)
default 75.66.xxx.1 UGS 0 69675 1500 dc1 75.66.xxx.0/24 link#2 UC 0 0 1500 dc1 75.66.xxx.1 00:09:12:80:60:01 UHLW 2 80 1500 dc1 1198 75.66.xxx.xxx 127.0.0.1 UGHS 0 0 16384 lo0 127.0.0.1 127.0.0.1 UH 1 0 16384 lo0 192.168.1.0/24 192.168.254.2 UGS 0 286 1500 tun0 192.168.2.0/24 link#1 UC 0 0 1500 dc0 192.168.2.10 00:04:23:cd:25:5d UHLW 1 70 1500 dc0 1096 192.168.2.20 00:18:f3:6c:1a:ca UHLW 1 71020 1500 dc0 473 192.168.2.21 00:03:ff:6e:12:ef UHLW 1 341 1500 dc0 975 192.168.2.22 00:16:cf:14:50:49 UHLW 1 256 1500 dc0 1133 192.168.254.2 192.168.254.1 UH 1 8 1500 tun0
Traceroute to remote host from Parent's house (trace to 192.168.2.10):
1 192.168.254.1 (192.168.254.1) 40.187 ms 24.350 ms 32.570 ms 2 192.168.2.10 (192.168.2.10) 20.251 ms 18.509 ms 25.925 ms
Traceroute to remote host from my house (trace to 192.168.1.10):
1 192.168.254.2 (192.168.254.2) 24.495 ms 21.881 ms 24.568 ms 2 * * * -continues timing out to max hops-
I have tried adding a push "route 192.168.0.0 255.255.255.0" with no success.
I have also verified my firewall on both sides. I have it to allow all traffic on the LAN and I see nothing to suspect the firewall is the issue in the system logs. -
Hi
Try to put these and see if it works:
On the server side of ovpn(let's say that is your box) -> edit -> at the bottom go to custom options and in the box add this line:
route 192.168.1.0 255.255.255.0
On the client side(let's say that is your parents box) ->edit -> custom options:
route add 192.168.0.0 255.255.255.0
hope it helps