Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Communication between OpenVPN clients. Problem…

    OpenVPN
    2
    3
    707
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      m-gleb last edited by

      Hi All. I need help:
      We have 2 offices connected through OpenVPN PSK

      Main ofice  (192.168.0.0/24) OpenVPN server < – (vpn tunnel 192.168.100.0/24) -->  OpenVPN client Branch ofice (192.168.1.0/24)

      from branch office I can access to server lan, and from main office I can access to client lan. All works fine. And now i need to connect from my notebook main office and get access to both networks. Is it possible? I created new instance of OpenVPN PSK server  in main office (vpn tunnel 192.168.101.0/24). After connect from notebook

      dev tun
      persist-tun
      persist-key
      proto udp
      cipher BF-CBC
      auth SHA1
      resolv-retry infinite
      remote X.X.X.X 1196
      ifconfig 192.168.102.2 192.168.102.1
      route 192.168.1.0 255.255.255.0
      keepalive 10 60
      ping-timer-rem
      secret Router-udp-1196.secret

      I have access to server lan (192.168.0.0/24) but can not connect to branch office lan.

      in pfsence routes in main office present
      192.168.1.0/24 192.168.100.2 // route to branch office

      in notebook routes present
      net - 192.168.0.0 mask - 255.255.255.0 gw - 192.168.101.5 if 192.168.101.6  (its work, net 192.168.0.0/24 avalible )
      net - 192.168.1.0 mask - 255.255.255.0 gw - 192.168.101.5 if 192.168.101.6  (its not work, net 192.168.1.0/24 not avalible )

      a can ping 192.168.100.2 from notebook.

      tracert 192.168.1.1 is finesed on 192.168.101.1 ...

      what can I do to access to network of branch office?

      Sorry for my english ...

      1 Reply Last reply Reply Quote 0
      • P
        phil.davis last edited by

        I created new instance of OpenVPN PSK server  in main office (vpn tunnel 192.168.101.0/24)

        but then the config has:

        ifconfig 192.168.102.2 192.168.102.1
        

        Is it 101 or 102? Anyway, make sure that is done the same everywhere.
        The config also has only this route:

        route 192.168.1.0 255.255.255.0
        

        So I do not see how you are getting the route to 192.168.0.0/24, which is to main office and works!?
        But the notebook routes are good, so what you finally have on the notebook is probably OK.
        Branch office will need to know that the OpenVPN link to main office is also a route to the notebook VPN subnet. In the Branch office OpenVPN Remote Networks box, put both remote networks separated by comma. Something like:

        192.168.0.0/24,192.168.101.0/24
        

        Maybe that will be enough clues to help?

        1 Reply Last reply Reply Quote 0
        • M
          m-gleb last edited by

          Thank your !
          After I added 192.168.101.0/24 to remote networks in branch office,  all working fine!

          102 addres - it was my error while i write this message.

          1 Reply Last reply Reply Quote 0
          • First post
            Last post

          Products

          • Platform Overview
          • TNSR
          • pfSense
          • Appliances

          Services

          • Training
          • Professional Services

          Support

          • Subscription Plans
          • Contact Support
          • Product Lifecycle
          • Documentation

          News

          • Media Coverage
          • Press
          • Events

          Resources

          • Blog
          • FAQ
          • Find a Partner
          • Resource Library
          • Security Information

          Company

          • About Us
          • Careers
          • Partners
          • Contact Us
          • Legal
          Our Mission

          We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

          Subscribe to our Newsletter

          Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

          © 2021 Rubicon Communications, LLC | Privacy Policy