Re: [IPCop-user] Internet access from BLUE throug OpenVPN

[Simone P. <pic...@tr...>]

olaf wrote:
> J=E4rvinen Mauri wrote:
>=20
>=20
>>> Yes. You do not need "Blue Access" if you are connecting to your IPCo=
p=20
>>> Box using an OpenVPN Tunnel.
>> I think he meant connecting out of blue network to internet. If you do=
n't use Blue Access you cant open VPN tunnel out from blue (I think).
>=20
> Zerina will insert the needed IPTables rules, allow udp/1194 (or=20
> whatever Zerina was configured with).
>=20
> So you do not need Blue Access
Sorry probaby I was not clear enough.

I'm connecting from BLUE (192.168.100.0/24), I have DHCP on blue that
give me the IP address and the gateway (the IPCOP box on 192.168.100.1).
Then I start OpenVPN to have the access, but it gives me the access just
to the RED (192.168.1.0/24).

My routing table after OpenVPN is:

Destination     Gateway         Genmask         Flags Metric Ref    Use
Iface
10.118.56.1     10.118.56.5     255.255.255.255 UGH   0      0        0 t=
un0
10.118.56.5     0.0.0.0         255.255.255.255 UH    0      0        0 t=
un0
192.168.100.0   0.0.0.0         255.255.255.0   U     0      0        0 e=
th0
192.168.1.0     10.118.56.5     255.255.255.0   UG    0      0        0 t=
un0
0.0.0.0         192.168.100.1   0.0.0.0         UG    0      0        0 e=
th0

So if I don't have access on BLUE I'm blocked on the default route to go
both in ORANGE and in RED. At least I think so, because I cannot ping
nor in ORANGE (192.168.2.0/24), nor in RED.

I'm just using the default configuration for Zerina.

Best Regards
--=20
Simone Piccardi                                 Truelite Srl
pic...@tr... (email/jabber)             Via Monferrato, 6
Tel. +39-347-1032433                            50142 Firenze
http://www.truelite.it  Tel. +39-055-7879597    Fax. +39-055-7333336