Communication between OpenVPN clients. Problem…
-
Hi All. I need help:
We have 2 offices connected through OpenVPN PSKMain ofice (192.168.0.0/24) OpenVPN server < – (vpn tunnel 192.168.100.0/24) --> OpenVPN client Branch ofice (192.168.1.0/24)
from branch office I can access to server lan, and from main office I can access to client lan. All works fine. And now i need to connect from my notebook main office and get access to both networks. Is it possible? I created new instance of OpenVPN PSK server in main office (vpn tunnel 192.168.101.0/24). After connect from notebook
dev tun
persist-tun
persist-key
proto udp
cipher BF-CBC
auth SHA1
resolv-retry infinite
remote X.X.X.X 1196
ifconfig 192.168.102.2 192.168.102.1
route 192.168.1.0 255.255.255.0
keepalive 10 60
ping-timer-rem
secret Router-udp-1196.secretI have access to server lan (192.168.0.0/24) but can not connect to branch office lan.
in pfsence routes in main office present
192.168.1.0/24 192.168.100.2 // route to branch officein notebook routes present
net - 192.168.0.0 mask - 255.255.255.0 gw - 192.168.101.5 if 192.168.101.6 (its work, net 192.168.0.0/24 avalible )
net - 192.168.1.0 mask - 255.255.255.0 gw - 192.168.101.5 if 192.168.101.6 (its not work, net 192.168.1.0/24 not avalible )a can ping 192.168.100.2 from notebook.
tracert 192.168.1.1 is finesed on 192.168.101.1 ...
what can I do to access to network of branch office?
Sorry for my english ...
-
I created new instance of OpenVPN PSK server in main office (vpn tunnel 192.168.101.0/24)
but then the config has:
ifconfig 192.168.102.2 192.168.102.1
Is it 101 or 102? Anyway, make sure that is done the same everywhere.
The config also has only this route:route 192.168.1.0 255.255.255.0
So I do not see how you are getting the route to 192.168.0.0/24, which is to main office and works!?
But the notebook routes are good, so what you finally have on the notebook is probably OK.
Branch office will need to know that the OpenVPN link to main office is also a route to the notebook VPN subnet. In the Branch office OpenVPN Remote Networks box, put both remote networks separated by comma. Something like:192.168.0.0/24,192.168.101.0/24
Maybe that will be enough clues to help?
-
Thank your !
After I added 192.168.101.0/24 to remote networks in branch office, all working fine!102 addres - it was my error while i write this message.