[an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] (none) [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] (none) [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive]
 
[an error occurred while processing this directive] [an error occurred while processing this directive]
Skåne Sjælland Linux User Group - http://www.sslug.dk Home   Subscribe   Mail Archive   Forum   Calendar   Search
MhonArc Date: [Date Prev] [Date Index] [Date Next]   Thread: [Date Prev] [Thread Index] [Date Next]   MhonArc
 

Re: [NETVAERK] VPN og routetable



man, 12 06 2006 kl. 14:47 +0200, skrev Jacob Bunk Nielsen:
> Christoffer Holm Kjølbæk <sslug@sslug> writes:
> > fre, 09 06 2006 kl. 14:49 +0200, skrev Jacob Bunk Nielsen:
> >
> >> Har du husket at du skal have tingene i forskellige subnet, og at du
> >> skal slå ip-forwarding til?
> >
> > Ip-forwarding er slået til, og jeg tror jeg har fået dem i forskellige
> > subnet, men er ikke sikker?:
> > http://ostehamster.dk/sslug/openwrt_med_openvpn.html
> 
> Det har du ikke.
> 
> Prøv at lave en konfiguration på klienten i stil med:
> 
> remote xxxx
> port xxxx
> dev tun
> ifconfig 10.1.0.1 10.1.0.2
> secret /etc/openvpn/secret.key
> #daemon
> ping 15
> ping-restart 300 # 5 minutes
> resolv-retry 300 # 5 minutes
> persist-tun
> persist-key
> 
> Og på serveren:
> 
> dev tun
> port xxx
> push "route 192.168.0.0 255.255.254.0"
> ifconfig 10.1.0.2 10.1.0.1
> route 10.1.0.0 255.255.255.252
> secret /etc/openvpn.key
> daemon
> 
> 
> Det giver dig godt nok kun mulighed for en klient, men det er vist
> også hvad du vil i første omgang. Ovenstående er i øvrigt totalt
> utestet og uden garantier for at det virker, men det burde give din
> klient 10.1.0.1 og din VPN-server 10.1.0.2 på tun-interfacet.

Klient kan pinge VPN-server på 10.1.0.2, VPN-server kan pinge klient
10.1.0.1. En maskine bare VPN-serveren med 192.168.1.2 kan pinge
VPN-server på 10.1.0.1, men ikke klienten på 10.1.0.1

Klient kan heller ikke pinge 192.168.1.2

Tror bare jeg dropper det indtil videre... Øv...

Men takker for den megen hjælp :)

/Christoffer

> 



 
Home   Subscribe   Mail Archive   Index   Calendar   Search

 
 
Questions about the web-pages to <www_admin>. Last modified 2006-07-01, 02:01 CEST [an error occurred while processing this directive]
This page is maintained by [an error occurred while processing this directive]MHonArc [an error occurred while processing this directive] # [an error occurred while processing this directive] *