Menu
▾
▴
Re: [Openvpn-users] Routed VPN cannot connect to bridge on same host
|
From: Jan J. K. <ja...@ni...> - 2009-12-10 14:28:31
|
Hi , Schley Andrew Kutz wrote: > The KVM guests are on the 192.168.0.0/24 network (the first and only guest has 192.168.0.50). From the VPN client I can ping EVERY IP address in my home network, including those on the VPN server (the KVM host), JUST NOT the Guest IPs. From the KVM Guests I can ping every IP in my home network except the VPN client IPs (on the 192.168.1.0/24) network. The LAN gateway (my DD-WRT router) does not have a route for 192.168.1.0/24 -- it's never needed one. Everything works fine except for the KVM Guest<-->VPN Client connectivity. Oh, and I have no IP tables enabled. > > Do you think I need to make br0 and tun0 aware of each other through FORWARDing rules? > > the default is that everything is allowed ; iptables -L -n -v will show you that (maybe list 'iptables -t nat -L -n -v' to be safe). > It's the weirdest thing. KVM guests work PERFECTLY. VPN clients work PERFECTLY. The only problem is that the VPN clients cannot see the KVM guests and vice versa. Both of them see everyone/everything else just fine. > routing is enabled on the machine, I assume (because otherwise some other things would have failed already) ? I'd run tcpdump on the box on various interfaces (eth0, eth2, br0, tun0) and then do a ping from the KVM client to the OpenVPN client. Who's responding and who isn't ? Also, what do the ARP tables show after a ping attempt? cheers, JJK |
